Security

Validation and moderation

When uploading files to your project, you can validate the types of files you want to accept, and apply various checks after (e.g., virus checking).

Maximum file size

You can set the maximum file size accepted by API up to 5TB (5242880 MB).

The size of the uploaded file is limited by project settings. Configure your validation options in the Validation section.

MIME type filtering

MIME type filtering allows you to control which types of files can be uploaded to your project. By default, all file types are allowed, but you can customize this by selecting specific MIME types to allow or block.

Available categories include:

  • Audio
  • Documents
  • Fonts
  • Images
  • Video
  • Other (includes additional file types not covered in the main categories)

You can also select all file types at once or fine-tune your selection by choosing specific formats within each category.

By default, MIME type filtering is disabled. To enable it:

  1. Go to the MIME type filtering section in your project settings.
  2. Select the file types you want to allow or block.
  3. Save changes to apply the settings.

MIME type filtering is only available on paid plans.

Search engine indexing

Restrict search engines to analyze and index content in your project for global search: image and text. Setup search engine indexing behavior for each of your projects.

Signed webhooks

Control who and when can call your webhook endpoint (URL). Without verification, anyone can spoof a request sent to the webhook URL. The solution is to sign each webhook payload with a secret.

SVG validation

Uploadcare’s automatic SVG file verification feature protects against potential security vulnerabilities. SVG files containing JavaScript code can pose a significant risk. If JavaScript is found inside the SVG file, it will be rejected from uploading.

By default, this feature is disabled.

You can enable SVG validation for your project in the Dashboard. Once this feature is enabled, all newly uploaded files will be validated.

This option is available on paid plans.

Frontend file validation

Our new File Uploader is easily set up to:

  • Limit file size
  • Restrict to images only
  • File input accepts attribute value

Similar validation settings in our jQuery File Uploader:

  • Limit file size
  • Restrict file type
  • Image dimensions
  • Image orientation
  • File input accept attribute value