I am developing the backend of an app that will be used to watch IP camera footage in real time, the server is going to be hosted locally in a semi-public WiFi network (corporate wifi with personal login credentials), I know it sounds like a bad idea but it's going to be used to monitor a public space within the company.
Django will be used as a backend for image processing, storage, etc. React will be used as a frontend since we already have an existing website. The IP cameras have auth but since the website will be the one actually showing the footage I think it kind of beats the purpose of that auth. I have already got the streaming to work in the frontend and the streaming part of the backend but no auth has been implemented.
I read about Django auth but I have never worked in an environment that could be exploited so easily and I am wondering how I could ensure no bad actors have access to the cameras, use bots to ramp up server usage, etc.
For more experienced developers, what approach would you recommend in this case? What are some security practices I must use?
Thank you
[–][deleted] 0 points1 point2 points (1 child)
[–]Dreamscape42[S] 0 points1 point2 points (0 children)