I have to validate the user through a JWT token or OTP. How I can achieve that.
Currently, this HTML URL has no security; anyone can play the file because an encrypted key is inside the HTML file. I want to give access to the video for limited time. Is this possible?
@rajesh.rai Yes, agree. The keys should not be hardcoded in the HTML file. You should have a backend service to validate the user and then return the tokens via an HTTP call, which you should then pass to the player configuration.
Hi Kishore, Thanks for your prompt response. Even though your key is static for that title or video. If you want to change the key, we need to encode that asset with a new key.
Is there any way that we can change the key without the encoding?
Hi @rajesh.rai I checked with the team internally, and it is not currently supported, and key rotation is primarily advised for live streams. I forwarded the details to the Product Owner, who will add it to the roadmap based on market demand and feedback from other customers.
If you want to change the keys, you’ll have to re-encode the content with different keys for now.
Please also keep an eye on our Product Release pages for Player, Encoding and Analytics for new updates, as the product teams regularly make updates and release features that might be relevant to you.