token authentication with "is_timed_hmac_valid_v0" failed dealing uri with Unsafe characters
we enable token authentication following this document "https://developers.cloudflare.com/waf/custom-rules/use-cases/configure-token-authentication/#option-2-configure-using-waf-custom-rules" everything works except uri contains Unsafe characters with URL encoding .
such as "/download/202404/15/2024041510973709%20test%20F1000%5btest%5d%5btest%5d%20test%20Series%20test%20test(V7)-test_0.pdf".
Anything I missed to deal with those URI? Thanks.
Cloudflare Docs
Configure token authentication · Cloudflare Web Application Firewal...
Token authentication allows you to restrict access to documents, files, and media to select users without requiring them to register. This helps protect paid/restricted content from leeching and unauthorized sharing.
1 Reply
Just fig it out, "(" ")" are reserved characters, they must be
percent-encoded.