edge origin authorization

Version: `v2023-09-20`	Includes use: Yes

Behavior name: Edge Server Identification

Allows the origin server to use a cookie to ensure requests from Akamai servers are genuine.

This behavior requires that you specify the cookie's domain name, so it is best to deploy within a match of the hostname. It does not work properly when the origin server accepts more than one hostname (for example, using virtual servers) that do not share the same top-level domain.

Default behavior

These samples reflect the behavior's default settings. You can use these as is in your configurations or make adjustments based on the behavior's available options.

data "akamai_property_rules_builder" "edge_origin_authorization" {
  rules_v2025_02_18 {
    name     = "Edge Server Identification"
    comments = "Allows cookie use at the origin server to ensure requests from Akamai servers are genuine."
    behavior {
      edge_origin_authorization {
        enabled     = true
        cookie_name = "AKA_ID"
        value       = ""
        domain      = ""
      }
    }
  }
}

"behaviors": [
  {
  "name": "edgeOriginAuthorization",
  "options": {
    "enabled": true,
    "cookiename": "AKA_ID",
    "value": "",
    "domain": ""
    }
  }
]

Options

Option	Description
`enabled`	Boolean Enables the cookie-authorization behavior.
`cookie_name`	String Specifies the name of the cookie to use for authorization.
`value`	String Specifies the value of the authorization cookie.
`domain`	String Specify the cookie's domain, which needs to match the top-level domain of the `Host` header the origin server receives.