Authentication modes

Website application

You can select whether to enable domain name authentication based on App ID authentication based on different project security requirements.

App ID + Domain name whitelist authentication

TikCDN recommends that you enable domain whitelist authentication with higher security.

You can find the App ID Only switch on the project details page and turn off the switch to use domain name authentication. After the switch is turned off, the Web SDK obtains the domain name through the Origin field of HTTP request in addition to verifying the App ID, and verifies whether the domain name is consistent with the bound domain name. If it is consistent, the acceleration service can be used. If not, the accelerated service cannot be used.

tip

The root domain name can match all subdomain names
If the iFrame is embedded, you need to configure the src domain name in the background

App ID authentication only

TikCDN does not recommend that you use only App ID authentication.

Scenarios where App ID only authentication is used:

Integration of Web SDK by Electron (It is recommended to create a project separately and turn on the App ID Only switch under the project)

App application

When creating an App, enter the correct information on each end. Otherwise, authentication fails and the acceleration service cannot be used.

Website application​

App ID + Domain name whitelist authentication​

App ID authentication only​

App application​

Website application

App ID + Domain name whitelist authentication

App ID authentication only

App application