linux

Online video proxying: block streams from direct access - secure_download + ???

The situation is simple - there are video streams that only registered users can watch - links to the corresponding streams with API keys, individual for each user, are sewn into the downloaded playlists. When a user wants to watch a stream, he clicks on a link to a script that authorizes the user and redirects him to a link closed with a secure_download link. With this, everything is fine and the links are correctly closed.

The system is such that there is a front-end node that processes WEB requests and a set of streaming servers.

And now the tricky part is that the person gets to the viewing link and I need to send the person through the script to the stream so that he would not see the address of the stream itself. X-Accel-Redirect suggests itself, but it only allows you to redirect to internal links, i.e. you cannot use this technology to proxy to an external server.

There are not many options on the Internet, but I found this solution: kovyrin.net/2010/07/24/nginx-fu-x-accel-redirect-remote/

Another option that came to my mind is to put the WEB part on each server and redirect the user with the new secure_link to the external server where the stream is, and already there do an internal nginx redirect to proxy the stream.

The question is, what other options are there?