with the authroization, i want to check if `Bearer [ACCESS_TOKEN]`, is it safe to do that with WAF?

KKurzon with the authroization, i want to check if `Bearer [ACCESS_TOKEN]`, is it safe t...

C

Cyb3r-Jak3•5/20/24, 11:25 PM

Sure, just make sure the people who have access to your dashboard, you would be okay with sharing the token with

CCyb3r-Jak3 Sure, just make sure the people who have access to your dashboard, you would be ...

K

KurzonOP•5/20/24, 11:25 PM

So, let's say some user got blocked

K

KurzonOP•5/20/24, 11:26 PM

would it count as a "request" of the 100k requests per day

C

Cyb3r-Jak3•5/20/24, 11:32 PM

No. The request got blocked by Cloudflare before it even reached the worker

CCyb3r-Jak3 No. The request got blocked by Cloudflare before it even reached the worker

K

KurzonOP•5/20/24, 11:32 PM

So I added an API key and subdomain. Do you have any more suggestions for the best protection from any attacks?

K

KurzonOP•5/20/24, 11:33 PM

You're more experienced than me so I would like to know lol

KKurzon So I added an API key and subdomain. Do you have any more suggestions for the be...

C

Cyb3r-Jak3•5/20/24, 11:49 PM

API Key is the best way. Means all requests need to have it so you can easily filter requests

J

jdaccount•5/21/24, 5:30 AM

Hey guys, I facing the issues all my pages and workers throwing Error 1101 Worker threw exception all of a sudden, anyone facing this or know why this happen?

A

Advany•5/21/24, 5:56 AM

Is ghet

B

berkinovish•5/21/24, 12:43 PM

Hi guys,

We are using Workers and Queues to upload large files (500+ MB) to R2. We stream files from the source, via the Queue consumer, to R2. According to the docs on Worker limits, Queue consumers should have 15 minutes of CPU time. However, we consistently get an

exceededCpu

exceededCpu

exceededCpu

exceededCpu error after just 30 seconds of CPU time. Are the docs incorrect, or are we doing something wrong?

I created a small reproducible demo here: https://github.com/dealside/r2-upload-queue

S

Sandeep•5/21/24, 3:23 PM

Hello everyone!
Is there any way possible in the worker script where I can generate thumbnail of a video which is uploaded to the R2 bucket?

I

Isak•5/21/24, 3:47 PM

When will pages support rate limit bindings?

R

Rabid•5/21/24, 3:47 PM

Anyone have an example of a self binding worker?

R

Rabid•5/21/24, 3:47 PM

I have my cron handler here:

export default {
  async scheduled(controller, env, ctx) {

    console.log(await env.LEADERBOARD_FETCHER.fetchRegionLeaderboardData('us', '2v2'))
  }
}

export default {
  async scheduled(controller, env, ctx) {

    console.log(await env.LEADERBOARD_FETCHER.fetchRegionLeaderboardData('us', '2v2'))
  }
}

export default {
  async scheduled(controller, env, ctx) {

    console.log(await env.LEADERBOARD_FETCHER.fetchRegionLeaderboardData('us', '2v2'))
  }
}

export default {
  async scheduled(controller, env, ctx) {

    console.log(await env.LEADERBOARD_FETCHER.fetchRegionLeaderboardData('us', '2v2'))
  }
}

R

Rabid•5/21/24, 3:48 PM

And in the same file/worker I have my function:

export class LeaderboardFetcher extends WorkerEntrypoint {
  async fetchRegionLeaderboardData(region, type) {

export class LeaderboardFetcher extends WorkerEntrypoint {
  async fetchRegionLeaderboardData(region, type) {

R

Rabid•5/21/24, 3:48 PM

I get "The RPC receiver does not implement the mthod "fetchRegionLeaderboardData"

R

Rabid•5/21/24, 4:19 PM

And how to access env (for D1 bindings) in the called RPC function.

J

johtso•5/21/24, 6:43 PM

what's the default fetch timeout in workers?

C

Chaika•5/21/24, 6:56 PM

there's a nice doc going over all the network limits now: https://developers.cloudflare.com/fundamentals/reference/connection-limits/

Cloudflare Docs

Connection limits · Cloudflare Fundamentals docs

When HTTP/HTTPS traffic is proxied through Cloudflare, there are often two established TCP connections: the first is between the requesting client to …

A

Anthony•5/21/24, 8:06 PM

Would you reccomend d1 or kv for a discord bot?

L

lbguilherme•5/21/24, 8:12 PM

Sharing here for more visibility: Does Smart Placement work with Hyperdrive? It seems that it doesn't. (workers-and-pages-helpDoes Smart Placement support Hyperdrive? I'm using Next.js with Postgres)

CChaika there's a nice doc going over all the network limits now: https://developers.clo...

J

johtso•5/21/24, 8:40 PM

Is this relevant to requests made to other servers from workers? I don't see any mention of the 100s timeout..

J

johtso•5/21/24, 10:41 PM

how do I pause a cloudlflare worker?

Jjohtso how do I pause a cloudlflare worker?

H

Hello, I’m Allie!•5/21/24, 10:42 PM

Undeploy it/remove all its triggers

J

johtso•5/21/24, 10:42 PM

for example if I only want to run my staging worker while actively testing things

J

johtso•5/21/24, 10:43 PM

how do you undeploy a worker?

Jjohtso how do you undeploy a worker?

H

Hello, I’m Allie!•5/21/24, 10:43 PM

I believe it is wrangler delete

J

johtso•5/21/24, 10:43 PM

ah okay, and you're saying that's an alternative to removing the triggers

J

johtso•5/21/24, 10:44 PM

removing the triggers would involve editing the wrangler config and redeploying I guess

Jjohtso ah okay, and you're saying that's an alternative to removing the triggers

H

Hello, I’m Allie!•5/21/24, 10:44 PM

Yeah. There is no reason to leave the Worker up at all if you are going to change the code later anyway

J

johtso•5/21/24, 10:45 PM

feel like there might be some strange stuff with queues

J

johtso•5/21/24, 10:45 PM

unconsumed messages that are then out of date when I next spin up the worker

Jjohtso feel like there might be some strange stuff with queues

H

Hello, I’m Allie!•5/21/24, 10:45 PM

As long as staging has a unique name/id for each binding, there shouldn’t be issues

H

Hello, I’m Allie!•5/21/24, 10:45 PM

Uh

H

Hello, I’m Allie!•5/21/24, 10:46 PM

Maybe there is a command to purge a Queue?

J

johtso•5/21/24, 10:46 PM

I guess that's an issue regardless of whether it's staging or prod though

HHello, I’m Allie!*Maybe* there is a command to purge a Queue?

J

johtso•5/21/24, 10:48 PM

don't think there's any functionality like that

J

johtso•5/21/24, 10:50 PM

I guess you could just delete it and create it again

B

boywonder350•5/22/24, 1:53 AM

I want to set up a cron trigger to run everyday at 6pm ET. Is this possible? What timezone is the cron trigger evaluated in? I could not find documentation around it. Thank you!

Bboywonder350 I want to set up a cron trigger to run everyday at 6pm ET. Is this possible? Wha...

C

Chaika•5/22/24, 1:56 AM

yes and utc, the dash has a pretty nice ui for it
(eventually daylight savings will happen and you'd need to adjust it because utc doesn't move, if you wanted to say strictly 6 pm est)

B

BallisticSwami•5/22/24, 4:56 AM

I am using Hono 3.1.8 in for my workers backend. Today the function c.cookie has stopped working suddenly.

D

Denver James Duran•5/22/24, 5:16 AM

Hi team, Is mongoose still unsupported by Cloudflare workers to this date? thank you

BBallisticSwami I am using Hono 3.1.8 in for my workers backend. Today the function c.cookie has...

Z

zensin•5/22/24, 7:09 AM

Remind me again why one would want to use Hono instead of the built-in thing?

Zzensin Remind me again why one would want to use Hono instead of the built-in thing?

B

BallisticSwami•5/22/24, 7:10 AM

I know. Its an old codebase. We have plans to shift it. But its weird that stuff stopped working today as we didnt update hono version

BBallisticSwami I know. Its an old codebase. We have plans to shift it. But its weird that stuff...

Z

zensin•5/22/24, 7:11 AM

oh, I wasn't referring to any specific thing. I meant generally

Z

zensin•5/22/24, 7:12 AM

anybody know how much average latency is added by this AI gateway thing?

Z

zensin•5/22/24, 7:12 AM

im not inclined to messs with it without knowing

A

Alejandro Mery•5/22/24, 9:41 AM

hi, I'm trying to

wrangler login

wrangler login

but....

Access to manifest at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
consent.dash.cloudflare.com/manifest.json:1 
       Failed to load resource: net::ERR_FAILED
consent-form:1 Access to internal resource at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Access to manifest at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
consent.dash.cloudflare.com/manifest.json:1 
       Failed to load resource: net::ERR_FAILED
consent-form:1 Access to internal resource at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Access to manifest at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
consent.dash.cloudflare.com/manifest.json:1 
       Failed to load resource: net::ERR_FAILED
consent-form:1 Access to internal resource at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Access to manifest at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
consent.dash.cloudflare.com/manifest.json:1 
       Failed to load resource: net::ERR_FAILED
consent-form:1 Access to internal resource at 'https://consent.dash.cloudflare.com/manifest.json' from origin 'https://dash.cloudflare.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

any chance this is a problem on my side?

A

Alejandro Mery•5/22/24, 9:55 AM

leading to

✘ [ERROR] Timed out waiting for authorization code, please try again.

✘ [ERROR] Timed out waiting for authorization code, please try again.

as

[Allow]

[Allow]

never succeeds

with the authroization, i want to check if `Bearer [ACCESS_TOKEN]`, is it safe to do that with WAF?

Similar Threads

Similar Threads

Similar Threads