Improve security of download data by using ACLs

[jthrilly]

Currently, exported data can be dowloaded by anyone who can get access to the URL. Although the URL is obfuscated and it is unrealistic for an attacker to be able to guess it, this is a security loophole I would like to close.

It seeks UploadThing supports ACLs for files: https://docs.uploadthing.com/concepts/regions-acl#access-controls

The ideal solution would be:

• Accessing the exported data zip files is protected by an ACL
• These files can only be access by logged in users
• We find a way to make certain data, such as data export zip's, automatically expire after a set amount of time. We want to implement this natively within S3, rather than having it be part of our app logic, because if the app breaks so does the cleanup!

[jthrilly]

Looking at the implementation, I am actually not sure why we need to use uploadthing at all for this. Why can't we construct the zip on the server and stream directly to the client in a route handler?