Internal project · DevOps / Infrastructure · 1 week
Self-Hosted File Service with Security Audit
File exchange on VPS with no cloud dependency – API access, security audit, bot integration
<2 sec
Upload up to 100 MB
0
Critical vulnerabilities
24/7
Uptime
Problem
Standard file-sharing tools (Google Drive, Dropbox) didn’t fit: needed full server control, no file size limits, and API access for bot and automation integration.
Solution
Built a file service from scratch:
- Backend: Node.js + Express, REST API for upload/download/management
- Storage: server filesystem with JSON metadata
- Security audit: path traversal protection, MIME validation, rate limiting, CORS, security headers
- Deployment: VPS + PM2 + Caddy reverse proxy + Let’s Encrypt SSL
Result
- Autonomous file exchange with no subscriptions
- API integration with Telegram bots
- Security audit passed: 0 critical, all high-severity fixed
- Open source on GitHub
Technologies
Node.jsExpressREST APIVPSLinuxSecurity Auditsystemd
Need similar automation? Get in touch – let's discuss your case for free
Discuss a project