In theory you shouldn’t need to… but I usually do to protect from the off-chance that ZeroTrust gets

In theory you shouldn’t need to… but I usually do to protect from the off-chance that ZeroTrust gets some sort of bug that allows an endpoint public access accidentally. Since I’m verifying the token from the header, I can still shut it down. If you don’t verify it but just trust the jwt contents blindly, you could be exposed. But again, this is talking about what is probably really really rare

zwilyOP•6/27/24, 8:23 PM

Another potential scenario (and more likely) is that I screw up the ZT rules and expose an endpoint myself.

Zzwily In theory you shouldn’t need to… but I usually do to protect from the off-chance...

Chaika•6/27/24, 8:31 PM

fwiw there has been two publicily disclosed reports of being able to skip access in the past:
https://hackerone.com/reports/1478633
https://hackerone.com/reports/1575912
older now, and one can hope CF has upped their game to prevent that sort of thing further, but verifying the JWT is def recommended

FrostTaco•6/28/24, 12:04 AM

I know it's been discussed many times and there's a workaround with an extra worker(which I really don't want to do), but is there any timeline for wildcard subdomains/is it even planned at some point?

Guilherme Esdras•6/28/24, 12:38 AM

Hello guys!

I'm receiving the following error on my pages project:

"Error 1101 Ray ID: 89a99b477a8a646d • 2024-06-28 00:37:09 UTC
Worker threw exception"

Does anyone here already faced that issue?

My project was built using Nuxt 3 (with SSR on and cloudflare-pages plugin), TypeScript, Vuetify.

Guilherme Esdras•6/28/24, 12:39 AM

And is random. Sometimes it occurs, sometimes not.

Folyd•6/28/24, 9:12 PM

why changelogs of pages has no updates after 2023-09-13
https://developers.cloudflare.com/pages/platform/changelog/

Cloudflare Docs

Changelog · Cloudflare Pages docs

Updated all API messaging to be more helpful.

ZachHandley•6/28/24, 9:31 PM

Hey I'm just curious. Why can't I use externalized libraries in SSR environment and why aren't the nodejs polyfill's supported by default or via discovery? I'm really confused as to what the heck is going on in my Astro Application.

I've deployed packages to Cloudflare Pages before, but for some reason this one specifically is giving me all kinds of errors about node:buffernode:buffer, and Astro recommends using the ssr: { external: ["node:buffer"]ssr: { external: ["node:buffer"] -- cool. But is the solution if something imports fsfs to seriously reach out to the author? Is there no better solution? Why can't I just build it with the polyfills in there?

ZachHandley•6/28/24, 9:47 PM

I just am massively confused as to why one of my fav development companies said screw you to any packages that aren't updated to the current node:fs/whatevernode:fs/whatever stuff.

Why wouldn't the worker just assume it's correct, and it's up to the user to distinguish what's breaking what? My editor can understand I mean node:fsnode:fs and build, but cloudflare can't?

ZZachHandley Hey I'm just curious. Why can't I use externalized libraries in SSR environment ...

Hello, I’m Allie!•6/28/24, 9:54 PM

You can? You just have to add the polyfills to whatever builds your app(in this case, Astro).

ZachHandley•6/28/24, 9:54 PM

didn't work even a little bit lol

Hello, I’m Allie!•6/28/24, 9:54 PM

Though note that for stuff like fs, it won't be able to emulate an actual filesystem

Hello, I’m Allie!•6/28/24, 9:54 PM

Since that doesn't exist on Workers

ZachHandley•6/28/24, 9:54 PM

export default defineConfig({
  site: "https://mysite.com",
  plugins: [
    tsconfigPaths(),
    nodePolyfills({
      // Specific modules that should not be polyfilled.
      exclude: [],
      // Whether to polyfill specific globals.
      globals: {
        Buffer: true, // can also be 'build', 'dev', or false
        global: true,
        process: true,
      },
      // Whether to polyfill `node:` protocol imports.
      protocolImports: true,
    }),
  ],

export default defineConfig({
  site: "https://mysite.com",
  plugins: [
    tsconfigPaths(),
    nodePolyfills({
      // Specific modules that should not be polyfilled.
      exclude: [],
      // Whether to polyfill specific globals.
      globals: {
        Buffer: true, // can also be 'build', 'dev', or false
        global: true,
        process: true,
      },
      // Whether to polyfill `node:` protocol imports.
      protocolImports: true,
    }),
  ],

ZachHandley•6/28/24, 9:55 PM

I have this

ZachHandley•6/28/24, 9:55 PM

and I just spent like

ZachHandley•6/28/24, 9:55 PM

4 gosh darn hours trying a lot of things

ZachHandley•6/28/24, 9:56 PM

my problem is

ZachHandley•6/28/24, 9:56 PM

it's mad about fsfs from appwriteappwrite

ZachHandley•6/28/24, 9:58 PM

I included node:fsnode:fs, even if it emulates it it doesn't matter, I don't need or use the file system

ZachHandley•6/28/24, 9:59 PM

nor does that package in my usecase

ZachHandley•6/28/24, 9:59 PM

so essentially in the build pipeline, it's going build -> Cloudflare -> Astrobuild -> Cloudflare -> Astro even on static pages and then Cloudflare is telling me it knows more than me on pages it has no business being a part of.

ZZachHandley so essentially in the build pipeline, it's going `build -> Cloudflare -> Astro` ...

Hello, I’m Allie!•6/28/24, 10:00 PM

Do you have a repo?

ZachHandley•6/28/24, 10:02 PM

Not directly, it's for a client, but it's mostly happening from thirdwebthirdweb, and appwriteappwrite/node-appwritenode-appwrite, I can make a reproduction, but really it seems like if you just install something like appwriteappwrite that requires fsfs instead of node:fsnode:fs, it would fail no?

ZachHandley•6/28/24, 10:02 PM

it's essentially just bunx/npx/whatever astro create@latestbunx/npx/whatever astro create@latest and then bunx/npx astro add cloudflarebunx/npx astro add cloudflare and then install anything with fsfs?

ZachHandley•6/28/24, 10:03 PM

I had a whole thread in Astro before coming here, I didn't come straight here.

ZZachHandley Not directly, it's for a client, but it's mostly happening from `thirdweb`, and ...

Hello, I’m Allie!•6/28/24, 10:03 PM

Just wondering, might be able to take a crack at getting it working tomorrow

ZachHandley•6/28/24, 10:04 PM

https://discord.com/channels/830184174198718474/1256302903510044672 if anyone is in the Astro discord

HHello, I’m Allie!Just wondering, might be able to take a crack at getting it working tomorrow

ZachHandley•6/28/24, 10:06 PM

please feel fre to DM me if you have any problems, I'd love to help be a part of the solution if needed

ZachHandley•6/28/24, 10:06 PM

I hate creating dockerfiles and using Node, but yeah this ones a weird one with its compatibility

ZachHandley•6/28/24, 10:09 PM

As far as I understand it, Cloudflare's adapter for Astro essentially hoists the server rendered pages to workers, which is cool, but it was also interfering with my static generation too, which was odd

Hello, I’m Allie!•6/28/24, 10:40 PM

!remind 11h pages-discussions

Flare•6/28/24, 10:40 PM

I will remind you in 11 hours at Jun 29, 2024 at 11:40 CEST

Flare•6/29/24, 9:40 AM

Reminder for @Unknown user: pages-discussions
Set June 28, 2024

Baqir•6/29/24, 10:55 AM

Hi guys, I have a basic application on Next JS and it connects to D1 database (in APAC region) and then display a row from a table. The table only has 1 row.

When I ran it through speed vitals, I m getting most of the results for TTFB more than 500ms.

Is this expected or am I doing something wrong? Isn't the benefit of using cloudflare pages & D1 is that you application is deployed on the EDGE everywhere in the world? Or may be my understanding isn't correct here and these are the best results that can be achieved.

LMK your thoughts

Some screenshots:

Baqir•6/29/24, 11:26 AM

I understand that, I thought there was some sort of replication going on at D1 level.

BBaqir Hi guys, I have a basic application on Next JS and it connects to D1 database (i...

Nob•6/29/24, 1:42 PM

even without db, you can see that the requests take quite some time with nextjs

Nob•6/29/24, 1:46 PM

I get around 400ms response time from all around the world without any network call in my app

ZachHandley•6/29/24, 2:59 PM

@Hello, I’m Allie! https://stackblitz.com/edit/github-oqgbvn?file=astro.config.mjs a stackblitz that replaces all “fs” with “node:fs using Vite

StackBlitzNate Moore

Namespace Builtins Vite Plugin - StackBlitz

Run official live example code for Astro Minimal, created by Withastro on StackBlitz

neoney•6/29/24, 3:32 PM

Is it yet possible to use hyperdrive in getPlatformProxy?

Walshy•6/30/24, 1:37 PM

What's the issue?

Walshy•6/30/24, 1:39 PM

What are your functions?

Walshy•6/30/24, 1:41 PM

Ok, what are your functions?

KKashall What can I do if the apex of my domain (when pointing to Cloudflare Pages) alway...

Chaika•6/30/24, 5:49 PM

did you add it under your Pages Custom Domains tab? If you were using both wwwwww and apex for example, both of them would need to be added seperately

KKashall I did, my other domain is also showing:

Chaika•6/30/24, 5:54 PM

that error could be a lot of things, either you not adding the pages custom domain for that, you misconfigured dns, etc. If you can share the domain name it'd be way easier

In theory you shouldn’t need to… but I usually do to protect from the off-chance that ZeroTrust gets

Similar Threads

Similar Threads

Similar Threads