Introduction
You can use the Security Token feature to improve the security of your URLs. You can use directives from the Secure Link module to require that clients include a specific hashed string in the URL of the asset they are requesting.
A security token module verifies the validity of a requested resource by comparing an encoded string in the URL of the HTTP request with the string it computes for that request.
Enable Security Token Feature
To create a security token for your domain, follow the steps below.
Step 1: Go to Domains
Click on the CDN feature under Tools, followed by clicking on Manage Domains. This should show you the list of domains you have added under your CDN service.
Step 2: Select a Domain
Click on the Manage button under 'Action' for the domain to add a security token. This should give you a list of Security related modules/features.
Step 3: Security Token
Under the Security feature, click on Security Token (Beta) to add the feature.
Step 4: Enable Security Token
Under 'Secure Token,' you can see a list of Locations added here. We need to enable first enable the Secure Token feature for the location. Click on the Edit function associated with the location to proceed further. Click on the toggle button next to Secure token to activate it. Note: If you want to know how to add a 'Location,' please refer to the following article https://www.psychz.net/client/kb/en/create-location-.html
Step 5: Choose Token type.
You can choose token type between Primary and Secondary. By default, the system chooses Primary.
Note: In secondary secure token, the secure URL generated uses file name, expiry time(optional), compared to IP and expiry time and not the file name in Primary method.
Step 6: Secret Key
Enter a minimum of 6 digit Key to generate a Base64‑encoded binary‑format MD5 hash.
Step 7: Add IP Address (Optional step)
Click on the toggle button to enable this option. You can add the client/end user's IP address to make the hash link exclusive only to the user. However, this step is optional.
Step 8: Expiry Time
Click on the toggle button to enable this option. At the time of generating token key, you can define the expiry time.
Step 9: Save
Click Save to commit the changes.
Once you click on the Save button, you will be redirected to the Secure Token page, where you can find the location you just enabled the secure token. You can also see the status changed to 'Active' under SECURE TOKEN STATUS.
Generate Token
Let us now see how to Generate the Secure Token for the desired location.
Step 1: Go to Create Page
Click on the 'Generate' button on the top right corner of the Secure Token page.
Step 2: Select Domain
From the dropdown menu, select the domain to which you want to create the Security Token.
Step 3: Select Location
Using the search tab from the dropdown menu, you can select the location to include the hash right after the URL prefix. For example, if you select location '/ABC and the domain selected (from the previous tab) is 'www.testdomain.com,' then the security token will be attached to and every sub-folder under '/abc'
Note: The Secret key and the Token Type fields will be disabled as you have already added them while enabling secure token in previous steps.
Step 4: Add IP Address (Optional step)
You can add the client/end user's IP address to make the hash link exclusive only to the user. However, this step is optional.
Step 6: Expiry Time
You can specify an expiration date when the URL will no longer work, even if the hash is correct. The format for time is yyyy-mm-dd hrs:min: sec.
Step 7: Save
Click Generate to save the elements.
Your security token has been generated successfully, and Please make sure to save the details at your end.