We are using a flash media server to serve streaming media (H.264) for our application. Within the application itself we have implemented authentication (CAS) and authorization so only certain people can see certain videos. The problem, however, is that if the users just looked at the source they could see the external link to our flash streaming server and just send that URL out to whomever, thus by-passing our application. Is there anyway to implement security on a per video basis on the flash media server? If it could integrate with CAS, that would be even better.
The only help I've found so far is through Adobe's site but was hoping someone here had a better solution.
Adobe Flash Media Server 3.5 * Developing an Authorization plug-in
Protect video content (Flash Media Server)
I would place lightweight proxy in front of media server like nginx. This would allow you to do load balancing AND any restrictions you need (you may only allow certain IPs on certain URLs).