I'm developing a web app that will save the data to ipfs.
To make the resolving and fetching of files faster I want to use https://github.com/ipfs/js-ipfs-api that will connect to my local node.
But is it save that the browser will connect to the ipfs node directly?
If I'm adding files with
ipfs.files.add and view that with
ipfs.files.cat. I store the hashes in Ethereum smart contracts.
As I understand from the api, the files cannot be deleted using the ipfs api. I hope I'm right
But I think malicious users can do a kind of dos attack on my ipfs server by adding unnecessary files through the api? As I see it now, using IPFS in the browser isn't too much safe.
Any judgement from IPFS experts ?