Authentication method A

http://DomainName/Filename?auth_key=timestamp-rand-uid-md5hash

• You can set the PrivateKey field.
• The validity period 1,800 seconds indicates that the authentication fails when the user fails to access the client source server 1,800 seconds after the preset access time. For example, if the user sets the access expiration time to 2020-08-15 15:00:00, the link actually fails at 2020-08-15 15:30:00.

  Field	Description
  timestamp	The expiration time. It is a positive integer with a fixed length of 10 and a time in seconds from January 1, 1970. This 10-digit integer is used to control the expiration time. Effective time is 1,800 seconds.
  rand	random number, we recommend that you use UUID (not including hyphen“-”, for example, 477b3bbc253f467b8def6711128c7bec format)
  uid	Not used yet (set to 0).
  md5hash	Verification string calculated by the MD5 algorithm, which is a combination of numbers 0 to 9 and lowercase English letters a to z, with a fixed length of 32 characters

  When the CDN server receives a request, it first determines whether the timestamp in the request is earlier than the current time.

  • If the `Timestamp` is earlier than the current time, the URL is regarded as expired, and the CDN server returns an HTTP 403 error.
  • If the timestamp is later than the current time, the CDN server constructs an equivalent string (see the construction of the sstring field described later). Use the MD5 algorithm to calculate HashValue, and compare it with md5hash . If they are consistent, the request passes the authentication and the requested file is returned. Otherwise, the request fails the authentication, and an HTTP 403 error is returned.
• The `HashValue` is calculated based on the following string:

  sstring = "URI-Timestamp-rand-uid-PrivateKey" (URI is the relative address of the user's request object. It does not contain parameters such as /Filename.)
  HashValue = md5sum(sstring)