update zone http securetoken setting

curl -X POST "https://api.5centscdn.com/v2/zones/http/settings/security/securetoken" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: YOUR_API_KEY" \
  -d '{
  "enabled": "Y",
  "policy": "Q",
  "keyip": "N",
  "list": "ab12cd34ef56gh78",
  "timeout": 3600,
  "session": "0",
  "ips": "1.2.3.4",
  "mode": "save"
}'

import requests
import json

url = "https://api.5centscdn.com/v2/zones/http/settings/security/securetoken"
headers = {
  "Content-Type": "application/json",
  "X-API-Key": "YOUR_API_KEY"
}
data = {
  "enabled": "Y",
  "policy": "Q",
  "keyip": "N",
  "list": "ab12cd34ef56gh78",
  "timeout": 3600,
  "session": "0",
  "ips": "1.2.3.4",
  "mode": "save"
}

response = requests.post(url, headers=headers, json=data)
print(response.json())

const response = await fetch("https://api.5centscdn.com/v2/zones/http/settings/security/securetoken", {
  method: "POST",
  headers: {
  "Content-Type": "application/json",
  "X-API-Key": "YOUR_API_KEY"
},
  body: JSON.stringify({
  "enabled": "Y",
  "policy": "Q",
  "keyip": "N",
  "list": "ab12cd34ef56gh78",
  "timeout": 3600,
  "session": "0",
  "ips": "1.2.3.4",
  "mode": "save"
})
});

const data = await response.json();
console.log(data);

package main

import (
    "fmt"
    "net/http"
    "bytes"
    "encoding/json"
)

func main() {
    data := []byte(`{
  "enabled": "Y",
  "policy": "Q",
  "keyip": "N",
  "list": "ab12cd34ef56gh78",
  "timeout": 3600,
  "session": "0",
  "ips": "1.2.3.4",
  "mode": "save"
}`)

    req, err := http.NewRequest("POST", "https://api.5centscdn.com/v2/zones/http/settings/security/securetoken", bytes.NewBuffer(data))
    if err != nil {
        panic(err)
    }

    req.Header.Set("Content-Type", "application/json")
    req.Header.Set("X-API-Key", "YOUR_API_KEY")

    client := &http.Client{}
    resp, err := client.Do(req)
    if err != nil {
        panic(err)
    }
    defer resp.Body.Close()

    fmt.Println("Response Status:", resp.Status)
}

require 'net/http'
require 'json'

uri = URI('https://api.5centscdn.com/v2/zones/http/settings/security/securetoken')
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = true

request = Net::HTTP::Post.new(uri)
request['Content-Type'] = 'application/json'
request['X-API-Key'] = 'YOUR_API_KEY'
request.body = '{
  "enabled": "Y",
  "policy": "Q",
  "keyip": "N",
  "list": "ab12cd34ef56gh78",
  "timeout": 3600,
  "session": "0",
  "ips": "1.2.3.4",
  "mode": "save"
}'

response = http.request(request)
puts response.body

{
  "result": "success",
  "message": "Zone Settings Updated"
}

POST

/zones/http/settings/security/securetoken

POST

Base URLstring

Target server for requests. Edit to use your own host.

API Key (header: X-API-Key)

X-API-Keystring

Required

API key (sent in header)

Content-Typestring

Required

The media type of the request body

Options: application/json

enabledstring

Enable or disable secure token globally for HTTP zones. Y means enabled, N means disabled.

Options: Y, N

policystring

Defines how the token is computed. Q = Query string mode (token applied per query string parameter). F = Full path mode (token covers the full URL path). D = Directory/path-embedded mode (token is embedded within the URL path).

Options: Q, F, D

keyipstring

Bind token validation to the originating client IP address. Y = token is only valid from the IP that generated it, preventing sharing or theft. N = IP binding is disabled.

Options: Y, N

liststring

16-character hexadecimal secret key used for token generation.

Pattern: ^[a-fA-F0-9]{16}$

timeoutnumber

Token expiry time in seconds. Minimum 5, maximum 25200.

Min: 5 • Max: 25200

sessionstring

Defines the token expiry behavior. "0" = Fixed expiry (token expires at a set time). "1" = Rolling/Moving expiry (token timeout resets with each request for active sessions).

Options: 0, 1

ipsstring

Comma-separated IPs excluded from token check.

modestring

Controls how the settings are applied to zones. save — only saves the settings, no changes will be made to existing zone settings. append — appends the values to existing zones data and updates. overwrite — overwrites the existing zones values, replacing them and updates.

Options: save, append, overwrite

Request Preview

Response

Response will appear here after sending the request

Authentication

header

X-API-Keystring

Required

API Key for authentication. Provide your API key in the header.

Body

application/json

enabledstring

Enable or disable secure token globally for HTTP zones. Y means enabled, N means disabled.

Allowed values:YN

policystring

Allowed values:QFD

keyipstring

Bind token validation to the originating client IP address. Y = token is only valid from the IP that generated it, preventing sharing or theft. N = IP binding is disabled.

Allowed values:YN

liststring

16-character hexadecimal secret key used for token generation.

Example:

ab12cd34ef56gh78

timeoutnumber

Token expiry time in seconds. Minimum 5, maximum 25200.

Example:

3600

sessionstring

Defines the token expiry behavior. "0" = Fixed expiry (token expires at a set time). "1" = Rolling/Moving expiry (token timeout resets with each request for active sessions).

Allowed values:01

ipsstring

Comma-separated IPs excluded from token check.

Example:

1.2.3.4

modestring

Allowed values:saveappendoverwrite

Responses

resultstring

Status of the API response.

messagestring

Human-readable status or result message

Was this page helpful?

curl -X POST "https://api.5centscdn.com/v2/zones/http/settings/security/securetoken" \ -H "Content-Type: application/json" \ -H "X-API-Key: YOUR_API_KEY" \ -d '{ "enabled": "Y", "policy": "Q", "keyip": "N", "list": "ab12cd34ef56gh78", "timeout": 3600, "session": "0", "ips": "1.2.3.4", "mode": "save" }'