This topic describes how to enable back-to-origin authorization for a private bucket.
Background information
You must grant permissions to domain name for CDN and enable the Back-to-Origin of Private Bucket feature before the domain name can access a private OSS bucket. You can also use the referer-based hotlink protection and URL authentication features provided by ApsaraVideo VOD to ensure resource security.
Notice
- After back-to-origin is authorized and enabled for a specific domain name for CDN, the domain name can access the resources in your private bucket. Proceed with caution. If the resources in the private bucket are not suitable to be used as the back-to-origin content of the CDN domain, do not authorize or enable the feature.
- If your domain name for CDN uses a private bucket as its origin, do not disable the back-to-origin feature.
- If your website is at risk of attacks, purchase the Anti-DDoS Pro service and do not authorize or enable back-to-origin of private buckets.