Security & Abuse Prevention
Embed locking
- Allowlist embedding domains (supports wildcard)
- Optional IP allowlist / CIDR
Tokenized delivery
- Short-lived, signed HLS URLs
- Path-based tokens so HLS segments inherit auth
Bot mitigation
- Block common scraping/bot user agents
- Rate limits on event ingest endpoints
Billing controls
- PAYG wallet gating
- Auto-recharge (Stripe)