Referer Restrictions
This section describes how to configure a Referer allowlist or blocklist to enable hotlink protection.
Last updated
This section describes how to configure a Referer allowlist or blocklist to enable hotlink protection.
Last updated
Referer-based hotlink protection refers to access control based on the Referer header.
For example, you can configure a Referer whitelist to allow only specified requests to access your resources or a blacklist to block specified requests. Referer-based hotlink protection identifies and filters user identities and protects your resources from unauthorized access.
| Parameter | Description |
|---|---|
Allow No Referer
The rule allows the client to not include the UA field in the request header.
Allow Empty Referer
The rule allows clients to request UA with empty value in the header
Allow List & Block List
Allow list
Specifies the redirect URL. If the Referer information in the request does not match the whitelist, the HTTP 403 status code is not returned after the request is blocked. Instead, the HTTP 302 status code and the Location header are returned. This parameter is the value of the Location header that starts with http:// or https://, such as http://www.example.com.
Block list
Specifies the redirect URL. If the Referer information in the request matches the blacklist, the HTTP 403 status code is not returned after the request is blocked. Instead, the HTTP 302 status code and the Location header are returned. This parameter is the value of the Location header that starts with http:// or https://, such as http://www.example.com.
