Release Notes and Announcements
- Release Notes
- Security Announcement
- Announcements
Product Introduction
- Overview
- Strengths
- Use Cases
- Comparison Between EdgeOne and CDN Products
- Use Limits
Purchase Guide
- Description of Trial Plan Experience Benefits
- Free Plan Guide
- Billing Overview
- Billing Items
- Subscriptions
- Renewals
- Instructions for overdue and refunds
- Comparison of EdgeOne Plans
- About "clean traffic" billing instructions
- DDoS Protection Capacity Description
Getting Started
- Choose business scenario
- Quick access to website security acceleration
- Deploying Websites Quickly via Makers
- Access Your First Site via the EdgeOne Skill Dialog
Domain Service&Origin Configuration
- Domain Service
- HTTPS Certificate
- Origin Configuration
Site Acceleration
- Overview
- Access Control
- Smart Acceleration
- Cache Configuration
- File Optimization
- Network Optimization
- URL Rewrite
- Modifying Header
- Modify the response content
- Rule Engine
- Image&Video Processing
- Speed limit for single connection download
DDoS & Web Protection
- Overview
- DDoS Protection
- Web Protection
- Bot Management
- API Discovery（Beta）
Edge Functions
- Overview
- Getting Started
- Operation Guide
- Runtime APIs
- Sample Functions
- Best Practices
KV Storage
- Overview
- Operation Guide
Edge inference
- Edge Inference Overview
- Quick Guide
Makers
L4 Proxy
- Overview
- Creating an L4 Proxy Instance
- Modifying an L4 Proxy Instance
- Disabling or Deleting an L4 Proxy Instance
- Batch Configuring Forwarding Rules
- Obtaining Real Client IPs
Data Analysis&Log Service
- Log Service
- Data Analysis
- Alarm Service
Site and Billing Management
- Billing Management
- Site Management
- Version Management
- General Policy
General Reference
- Configuration Syntax
- Request and Response Actions
- Country/region and Corresponding Codes
Terraform
- Overview
- Installing and Configuring Terraform
Practical Tutorial
- Automatic Warm-up/Cache Purge
- Resource Abuse/hotlinking Protection Practical
- HTTPS Related Practices
- Acceleration Optimization
- Origin Server Configuration
- Scheduling Traffic
- Data Analysis and Alerting
- Log Platform Integration Practices
- CORS Response Configuration
AI Resources and Terraform
- AI Resources
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Site APIs
- Accelerated Domain Name Management APIs
- Site Acceleration Configuration APIs
- Edge Function APIs
- Alias Domain APIs
- Security Configuration APIs
- Layer 4 Application Proxy APIs
- Content Management APIs
- Data Analysis APIs
- Log Service APIs
- Billing APIs
- Certificate APIs
- Origin Protection APIs
- Load Balancing APIs
- Diagnostic Tool APIs
- Custom Response Page APIs
- Version Management APIs
- API Security APIs
- DNS Record APIs
- Content Identifier APIs
- Legacy APIs
- Ownership APIs
- Image and Video Processing APIs
- Multi-Channel Security Gateway APIs
- KV Storage APIs
- Data Types
- Error Codes
FAQs
- Product Features FAQs
- DNS Record FAQs
- Domain Configuration FAQs
- Site Acceleration FAQs
- Data and Log FAQs
- Security Protection-related Queries
- Origin Configuration FAQs
Troubleshooting
- Reference for Abnormal Status Codes
- Troubleshooting Guide for EdgeOne 4XX/5XX Status Codes
- 520/524 Status Code Troubleshooting Guide
- 521/522 Status Code Troubleshooting Guide
- Tool Guide
Agreements
- Service Level Agreement
- Origin Protection Enablement Conditions of Use
TEO Policy
- Privacy Policy
- Data Processing And Security Agreement
Contact Us
Glossary

Authentication Method B

Download

Focus Mode

Font Size

Last updated: 2026-06-15 14:57:45

Authentication URL format
http://Hostname/timestamp/md5hash/Filename
https://Hostname/timestamp/md5hash/Filename
Parameter description
Field
Description
Hostname
Site Acceleration Domain.
Path
Resource access path, authentication requires prefixing with /.
timestamp
UTC+8 Time, format: YYYYMMDDHHMM, e.g., 201807301000.
md5hash
A fixed length string of 32 bits calculated using the MD5 algorithm:
Algorithm: MD5(Key + timestamp + Path).
Authentication Logic: If the request has not expired, the node compares this string value with the md5hash value carried in the request URL. If the values are the same, authentication passes, and the request is responded to; if the values are different, authentication fails, returning 403.
Configuration Samples
Assume the request URL https://www.example.com/foo.jpg uses Authentication Method B. Since this method prepends the authentication information /{timestamp}/{md5hash} before the actual resource path﻿, the actual URL Path when the request reaches the node is /{timestamp}/{md5hash}/foo.jpg. The rule engine's "URL Path" matching operates on the original request path carrying the authentication prefix, not the actual business path.
Therefore, the matching condition must use "Regular Expression Matching" to include the authentication prefix. It cannot be configured based on the actual business path (for example, URL Path equals /foo.jpg), otherwise the request will fail to match the rule.
A configuration example is provided below:
﻿
Get authentication parameters:
Path:/foo.jpg.
timestamp: The server-side generated authentication URL time is July 15, 2024, 15:33:50 (UTC+8), expressed in decimal (YYYYMMDDHHmm) format as 202407151533.
Key: DvYmqE81E1F9R791H6lmht.
md5hash: MD5(Key + timestamp + Path) = MD5(DvYmqE81E1F9R791H6lmht202407151533/foo.jpg) = d1f0b51c6894231fc12e054fcc7f0b3e.  
Authentication URL generated by the client request
https://www.example.com/202407151533/d1f0b51c6894231fc12e054fcc7f0b3e/foo.jpg.
Node Authentication
When the Node Server receives a request sent by a client via an encrypted URL, it parses the timestamp parameter from the URL, adds the configured effective duration of "1 second", and compares it with the current time:
1. exceed the "timestamp + effective duration" time, the request is not expired, continue to step 2.
2. The Node Server calculates the md5hash value using the obtained authentication parameters and compares it with the md5hash value carried in the request URL. If the values are the same, authentication passes and the request is responded to; if the values are different, authentication fails, returning 403.
3. After node authentication passes, the system automatically strips the /{timestamp}/{md5hash} prefix and uses the actual business path /foo.jpg to fetch the content from the origin.
﻿
﻿
﻿
﻿

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

tencent cloud

Tencent Cloud EdgeOne

Authentication Method B

Authentication URL format

Parameter description

Configuration Samples

Get authentication parameters:

Authentication URL generated by the client request

Node Authentication

Help and Support

Field	Description
Hostname	Site Acceleration Domain.
Path	Resource access path, authentication requires prefixing with `/`.
timestamp	UTC+8 Time, format: YYYYMMDDHHMM, e.g., 201807301000.
md5hash	A fixed length string of 32 bits calculated using the MD5 algorithm: Algorithm: MD5(Key + timestamp + Path). Authentication Logic: If the request has not expired, the node compares this string value with the `md5hash` value carried in the request URL. If the values are the same, authentication passes, and the request is responded to; if the values are different, authentication fails, returning 403.