Cloudflare access JWT validation in cloudflare workers
Hello, I am securing a worker with cloudflare access (in zero trust/cloudflare one).
To verify that the worker is indeed being called from cf access, I found this example to validate the JWT: https://developers.cloudflare.com/cloudflare-one/identity/authorization-cookie/validating-json/#javascript-example
Is this the right way to go about it? Or is there any direct way or another to verify since both are cloudflare services?
To verify that the worker is indeed being called from cf access, I found this example to validate the JWT: https://developers.cloudflare.com/cloudflare-one/identity/authorization-cookie/validating-json/#javascript-example
Is this the right way to go about it? Or is there any direct way or another to verify since both are cloudflare services?
When Cloudflare sends a request to your origin, the request will include an application token as a Cf-Access-Jwt-Assertion request header and as a …
