edge_​origin_​authorization

Version: v2024-08-13Includes use: Yes

Behavior name: Edge Server Identification

Allows the origin server to use a cookie to ensure requests from Akamai servers are genuine.

This behavior requires that you specify the cookie's domain name, so it is best to deploy within a match of the hostname. It does not work properly when the origin server accepts more than one hostname (for example, using virtual servers) that do not share the same top-level domain.

Default behavior

These samples reflect the behavior's default settings. You can use these as is in your configurations or make adjustments based on the behavior's available options.

data "akamai_property_rules_builder" "edge_origin_authorization" {
  rules_v2024_08_13 {
    name     = "Edge Server Identification"
    comments = "Allows cookie use at the origin server to ensure requests from Akamai servers are genuine."
    behavior {
      edge_origin_authorization {
        enabled     = true
        cookie_name = "AKA_ID"
        value       = ""
        domain      = ""
      }
    }
  }
}
"behaviors": [
  {
  "name": "edgeOriginAuthorization",
  "options": {
    "enabled": true,
    "cookiename": "AKA_ID",
    "value": "",
    "domain": ""
    }
  }
]

Options

Option Description
enabled
Enables the cookie-authorization behavior.
cookie_name
Specifies the name of the cookie to use for authorization.
value
Specifies the value of the authorization cookie.
domain
Specify the cookie's domain, which needs to match the top-level domain of the Host header the origin server receives.