Assuming you want to stream some flv videos, what is the best way to secure them via authentication while also embedding them in some kind of web flash player?
I'm having the same trouble with securing my videos for my latest app. A simple before_filter can stop the user from accessing the page, but once the video streams via a web player, the user can easily steal it.
Only solution I can think of is to use amazon s3's url expiration, but that gets overly complicated.
Here's a good walk-through explaining some solutions to this problem. Basically, you create a view that streams the file to the visitor with send_file from a protected location -- not the usual public/system space enjoyed by a normal Paperclip install.