Last updated: 2020-04-13 20:19:40

    Algorithm Description

    Access URL format

    Algorithm description

    • timestamp: a hex timestamp in UNIX format.
    • md5hash: MD5 (custom key + file path + timestamp).

    Sample request

    When the MD5 value is calculated, if the request path is, then the path used for MD5 calculation will be /test.jpg.

    Configuration Guide

    Parameter description

    TypeC requires the following configuration:

    Custom Authentication Key: it contains 6–32 uppercase and lowercase letters and digits. The key should be kept private and known only to the client and server.
    Custom Validity Period: the timestamp value in the request path, plus the configured validity period, is compared with the current time to determine whether the request has expired. If yes, a 403 error will be directly returned.


    After configuring the key, parameter name, and validity period, you can specify the authentication object as needed. The following three modes are supported:

    • All files under a specified domain name need to be authenticated.
    • All files except those in a specified type need to be authenticated.
    • Only files in a specified type need to be authenticated.


    Cache hit rate
    If you have enabled TypeC authentication for a domain name, it will be carried in the access URL path. When a CDN node caches the resource, it will automatically ignore the authentication path and thus not affect the cache hit rate.
    Origin-pull policy
    The access format of a domain name with TypeC authentication mode enabled is as follows:

    If the CDN node is not hit after successful authentication, it will initiate an origin-pull request, in which the md5hash and timestamp will be removed from the path. The origin server does not need to process the authentication information.

    Was this page helpful?

    Was this page helpful?

    • Not at all
    • Not very helpful
    • Somewhat helpful
    • Very helpful
    • Extremely helpful
    Send Feedback