The URL authentication feature protects origin server resources from unauthorized download and access. You can prevent some hotlinking issues by configuring a referer blacklist or whitelist with hotlink protection. However, this method cannot completely protect resources on the origin server because referer content can be forged. URL authentication is a more secure and effective method to protect resources on the origin server.
Background information
URL authentication is a more secure and reliable method that integrates CDN nodes
with the origin server to protect resources on the origin server.
- The origin server provides encrypted URLs that contain permission verification information.
- You can send a request to a CDN node by accessing an encrypted URL.
- The CDN node authenticates the permission information in the encrypted URL to determine whether the request is valid. If the request is valid, the CDN node returns a successful response. If the request is invalid, the CDN node rejects the request.
For more information about sample Python authentication code, see Sample authentication code.
Procedure
- In the URL Authentication section, click Modify.
What to do next
You can perform the following steps to generate a signed URL.
- In the Generate Signed URL section, configure Original URL and authentication information.
Parameter Description Original URL The complete original URL. For example, https://www.aliyun.com. Type The authentication type. Select one of the following URL authentication types:Cryptographic Key The authentication password. Cryptographic Key can be Primary Key or Secondary Key configured in the Set URL Authentication dialog box. Validity Period The validity period for URL authentication. Unit: seconds. Example value: 1,800. 
- Click Generate.
Obtain Authentication URL and Timestamp.
