Content distributed by ApsaraVideo VOD is publicly accessible by default. Users can access the content after they obtain the URL. To prevent unauthorized downloads of your resources, configure access control policies for your domain names to restrict unauthorized access requests.
Procedure
Log on to the ApsaraVideo VOD console.
In the left navigation pane, choose .
Find the domain name for which you want to configure access control policies and click Configure in the Actions column.
Click Resource Access Control.
Select an appropriate access control feature as needed.
Feature
Description
References
Hotlink protection
Blocks or allows requests based on the HTTP Referer header. You can configure a whitelist or a blacklist (mutually exclusive) to control which domains are permitted to embed your video resources, effectively preventing hotlinking.
Configure a Referer whitelist or blacklist to enable hotlink protection
URL signing
Protects your resources by requiring requests to include a signed URL with an encrypted string and an expiration timestamp. This provides a more secure and effective way to protect your origin server assets.
Remote authentication
Forwards user requests from Alibaba Cloud CDN edge nodes to your own authentication server for validation. The CDN then serves or denies content based on the validation result returned by your server.
IP address blacklist/whitelist
Filters requests by allowing or blocking access from specific IP addresses. This is an effective way to control access sources and mitigate issues like malicious traffic or DDoS attacks.
User-Agent blacklist/whitelist
Identifies and filters visitors by their User-Agent string. This allows you to restrict access to your VOD resources based on the client (such as a specific browser, application, or bot), enhancing security.