�PNG
�
���
IHDR�������������;�������IDATx��ܻn�0����K���
�)(�pA���������7�L�eG{��� ��§㻢|����ذaÆ
�6lذaÆ
�6lذaÆ
�6lom��$^�y���ذa�g�5�bÆ
�6lذaÆ
�6lذa{����
�6lذaÆ
�`������}H�Fkm�,�m����Ӫ���ô��ô!���x�|'ܢ˟;�E:���9�&ᶒ�}�{�v]�n&�6�
�h��_��t�ڠ͵-ҫ���Z;��Z$�.�P���k�ž)�!��o���>}�l�eQf�J�T��u і���چ��\��X=8��Rن4`Vw�l�>����n�G�^���i�s��"ms�$�u��i��?w�b�s[m��6�K4���O����.�4��%�����/������b�C%��t���M�ז� �-l�G6�mrz2����s�%�9��s@���-�k�9��=����)������k�B5����\��+͂�Zsٲ���Rn��~G���R����C����������wIcI����n7jJ����hۛNCS|���j0��8y�iHKֶۛ�k�Ɉ+;Sz�������L�/��F��*\��Ԕ�#"5��m�2��[S������������=�g��n�a�P�e�ғ�L��
lذaÆ
�6l�^k��̱aÆ
�6lذaÆ
�6lذa;�����
��_���ذaÆ
�6lذaÆ
�6lذaÆ
������R�������IEND�B`
---
layout: default
title: Security
---
# Security
Secure your Glide image server with HTTP signatures. By signing each request with a private key, no alterations can be made to the URL parameters.
It is highly recommended that you use signed URLs in production environments, otherwise your application will be open to mass image-resize attacks.
## Configuration
Start by configuring the Glide server to validate each request before you output the image. In the event that the validation fails, Glide will throw an `SignatureException` exception.
~~~ php
validateRequest($path, $_GET);
} catch (SignatureException $e) {
// Handle error
}
~~~
We recommend using a 128 character (or larger) signing key to prevent trivial key attacks. Consider using a package like CryptoKey to generate a secure key.
## Generating secure URLs
Next, generate a signature for each image request you make. Glide comes with a URL builder to make this process easy. Be sure to use the same signing key you configured earlier.
~~~ php
getUrl('cat.jpg', ['w' => 500]);
// Use the URL in your app
echo '
';
// Prints out
~~~
## Max image size
In addition signing URLs, you can also limit how large images can be generated. The following setting will set the maximum allowed total image size, in pixels.
~~~ php
2000*2000,
]);
~~~
Notice that Glide doesn't actually restrict the width or height, but rather the total image size. In the above example it would be `4000000px`. This accomplishes the same thing, while offering more flexibility with your image sizes.