To prevent unauthorized access, Tencent Cloud supports remote authentication in addition to advanced timestamp authentication at the CDN edge.
The following describes how remote authentication works:
- When the return code is
304, the authentication succeeded. For a successful authentication, the request is allowed with 200 returned; for an authentication failure, it is blocked with 403 returned.
- For now, only synchronized remote authentication is supported, which means that CDN responds after receiving the authentication result from the remote authentication server.
- Note that remote authentication is NOT supported in some regions outside the Chinese mainland.
- Remote authentication is not available for audio and video resources
Log in to the CDN console, select Domain Management on the left sidebar. Click Manage on the right of the domain name to enter its configuration page. Configure remote authentication on the Access Control tab.
Assume the acceleration domain name is
www.example.com and its remote authentication is configured as follows:
CDN will respond to the user request as follows: