Publishing a Page

Publishing a Page

1. Log in to Huawei Cloud Astro Canvas by referring to Logging In to Huawei Cloud Astro Canvas.
2. On the Projects page, click the project where the page is located to go to the project.
3. Move the cursor to the target page and click .
   • Publish link: Click the button next to Publish Link. The page address is displayed. Click the address to access the published page.
     For new projects, set access control for the published link using share code or token authentication. Without this, the link will not be accessible in the runtime environment.

     Figure 1 Obtaining the link (existing project)
     

     Figure 2 Obtaining the link (new project)
     

     Click to generate a new link. The original link will be invalid. Click to copy the link.

   • Version management: You can only view the version of the page and edit the description of the version.
   • Share code: You can set a page share code and its validity period for secure page access. For details, see Setting a Share Code.
     Figure 3 Share code settings
     
     • A share code must:
       • Contain 8 to 32 characters and can contain only letters, digits, and special characters.
       • Contain at least one lowercase letter (a-z).
       • Contain at least one uppercase letter (A-Z).
       • Contain at least one digit (0–9).
       • Contain at least one of the following special characters: ~!@#$%^&*()_=+\|[]{};:'",<.>/?-
     • : Click this icon to view the configured share code.
     • Expiration date: You can set a validity period for a share code. If this function is disabled, the share code is permanently valid.
   • Token authentication: With this function, you can perform signature authentication on the parameters transmitted during large screen interaction, preventing the URL parameters of the large screen from being modified. For details about how to set token authentication, see Configuring Token Authentication.
     Figure 4 Setting token authentication information
     
     • : After token authentication is enabled, the platform generates a token. You can click this icon to copy the token.
     • One-time token: If this function is enabled, the signature address can be accessed only in the current browser. After the browser is closed, you need to obtain the signature address again for the next access. If this function is disabled, the number of access times is not limited, but the validity period can be set.
     • Expiration date: You can set a validity period for a token. If this function is disabled, the token is permanently valid.
   • Content security policy: Enable this function if a large screen page is embedded into a third-party system (for example, in iframe mode) and cross-domain access is involved. This function reduces and reports XSS attacks and mitigates cross-site scripting attacks. In addition to restricting the domains that can load content, you can also specify the protocols that can be used to mitigate packet sniffing attacks. For details about how to set content security policies, see Configuring Content Security Policies.
     Figure 5 Enabling content security policy
     

     When the content security policy is enabled, ensure that third-party cookies are not blocked when previewing the page in the traceless mode. Otherwise, the page won't preview correctly.