Alibaba Cloud Content Delivery Network (CDN) provides the URL signing feature to protect origin servers from unauthorized downloads or access. The URL signing feature supports three signing types. This topic describes how type B signing works.
How it works
|DomainName||The accelerated domain name.|
|timestamp||The time when the URL expires. The time is included in the URL and is used to calculate the
For example, if you set the access time to 15:00:00 (UTC+8) on August 15, 2020 (2020-08-15 15:00:00), the request URL expires at 15:30:00 (UTC+8) on August 15, 2020 (2020-08-15 15:30:00).
|md5hash||The string that is calculated by using the MD5 algorithm. The string must be 32 characters in length, and can contain digits and lowercase letters.|
|Filename||The actual URL that points to the requested resource on the origin server. The FileName field must start with a forward slash (
- Retrieve the following object from the origin server.
- Set the key to aliyuncdnexp1234.
- Set the time when the origin server is accessed to 201508150800.
- The CDN node constructs a signature string to calculate the
- Alibaba Cloud CDN calculates the
md5hashvalue based on the signature string
md5hash = md5sum("aliyuncdnexp1234201508150800/4/44/44c0909bcfc20a01afaf256ca99a8b8b.mp3") = 9044548ef1527deadafa49a890a377f0
- Sign the URL.
md5hash value calculated by Alibaba Cloud CDN is the same as the
md5hash contained in the request (both are 9044548ef1527deadafa49a890a377f0 in this example), the request passes the authentication. Otherwise, the request fails the authentication.