@kopper@not-brain.d.on-t.work@gabboman a good way to handle the database part would be to, instead of doing a database lookup on every GET, have the part of your code producing media proxy URLs sign the proxied URL with a key only accessible to your backend. you'll only have to do one signature verification instead of reaching out to a database, which may be faster depending on your free CPU overhead
