Be default, Refile does not have a way to secure file downloads. It relies on a generated hash that is unknown to users unless the page renders that image or has a download to that file. This is okay sometimes, however, protecting the file from being downloaded for those who have the URL is a bit more involved.

Using ClamAV, scan files uploaded to your application for viruses. In the event of a virus learn how to gracefully handle the infected file and notify the user.

In this episode, we'll explore adding the ability to extend an authenticated session wish is about to expire. We'll be using a Stimulus controller for the bulk of the logic and the provided functionality that Devise gives us out of the box.

Cross-Origin Resource Sharing (CORS) is a mechanism that uses additional HTTP headers to tell browsers to give a web application running at one origin, access to selected resources from a different origin.

Using a hardware security key for multi-factor authentication is a great way to protect user accounts. In this episode, we look at implementing security keys into our Ruby on Rails applications with Devise user accounts.