Token Authentication for Cached Private Content and APIs
Cloudflare's Token Authentication feature allows customers to implement access control via URL tokens or HTTP request headers without building complex back-end systems. The edge network checks these tokens before any request is relayed to an origin server, blocking invalid requests and preventing malicious users from reaching the origin. This solution provides benefits such as reduced load on API servers, protection against CSFR attacks, and selective access to third party applications. Token Authentication can be used for both content access control and API protection, with customizable JSON responses for API endpoints.
Company
Cloudflare
Date published
Jan. 10, 2017
Author(s)
Michael Tremante
Word count
1247
Language
English
Hacker News points
None found.