For compatibility with CDN, any web headers (Referrer, User-Agent) will be accepted and passed onto the rule engine
SecurityCookieBlaizeSession or JwtQuery or JwtHeaderXBlaizeJwt or JwtHeaderXZephrJwt or JwtBearer or JwtCookie
Request
query Parameters
path
required
string
Uniquely identifies the content Zephr is making a decision about. Request rules can be configured to only execute when the request path matches a provided regular expression.
session
required
string
Zephr Session ID - same as the blaize_session cookie used by the CDN and authentication endpoints
foreign_id.xxx
required
string
Foreign ID used to identify the user. The foreign system is parsed as the remainder of the parameter key name following 'foreign_id.'
content_id
required
string
Passed as metadata.content_id to the Content API template, used to
perform requests to a 3rd party API for additional content
information used in making a decision
jwt
required
string
A Json Web Token, may include identity or product holding claims
btr
required
string
A trusted referrer token. If Zephr generates a matching token using path, passed-in Referer header and a configured secret, all entitlements used in this decision will be temporarily granted for this request
Responses
200
Response status and body are determined by the executed rule. If there is an error executing the rule, a 200 will be returned.