Hey guys! Might be a dumb question but, is the Cloudflare workers cache API suitable for credential

Hey guys!

Might be a dumb question but, is the Cloudflare workers cache API suitable for credential and authorization policy caching?

Would it be secure to store this kinds of sensitive information in a custom cache instance (cache.open)?

Are cache instances guaranteed to be private inside a CF account?

NNatan Parmigiano Hey guys! Might be a dumb question but, is the Cloudflare workers cache API sui...

Hard@Work•6/28/24, 5:28 PM

They are guaranteed to only be accessible within your account. You can even use a fake URL like https://mystore/somepersonhttps://mystore/someperson

Natan ParmigianoOP•6/28/24, 6:06 PM

that was exactly my main worry, i, currently using something to the lines of https://<tenantid>.policyengine/<role>
i was worried if collisions with other accounts were a risk

Natan ParmigianoOP•6/28/24, 6:06 PM

thank you for the clarification

Lume•6/28/24, 6:15 PM

Can I call multiple user workers from a dynamic dispatch worker in a single request?

HHard@Work They are guaranteed to only be accessible within your account. You can even use ...

Natan ParmigianoOP•6/28/24, 6:17 PM

About the cache purge situation, is there really no way to purge a single URL outside the enterprise plan?,,
Thats inviabilizes the idea.. if so i might need to go to KV or Redis instead

I was thinking of using it as a Cedar policy cache, i managed to run the recently open-sourced cedar policy engine (the AWS permissions engine) inside a rust worker, and im trying to build a low cost api gateway alternative with CEDAR policy resource management suport. adding the requirement of one or more kv requests per api call seems a shame while having an amazing cache api, but an authorization service without near instant policies updating seems.. wrong

NNatan Parmigiano About the cache purge situation, is there really no way to purge a single URL ou...

Hard@Work•6/28/24, 6:18 PM

For Zones on Free/Pro/Business plan, you may purge up to 30 URLs in one API call

Hard@Work•6/28/24, 6:19 PM

Though this only applies to

caches.default

caches.default

iirc

HHard@Work Though this only applies to `caches.default` iirc

Natan ParmigianoOP•6/28/24, 6:19 PM

Oh.. thats.. ok i guess?
Would it be ok to save the cache in the default cache while using a fictional url like we talked about above?

LLume Can I call multiple user workers from a dynamic dispatch worker in a single requ...

Lume•6/28/24, 6:20 PM

And if so, how would that be billed?

NNatan Parmigiano Oh.. thats.. ok i guess? Would it be ok to save the cache in the default cache w...

Hard@Work•6/28/24, 6:20 PM

It should be fine. You could even use a real URL that isn't on your account, like

google.com

google.com

Natan ParmigianoOP•6/28/24, 6:21 PM

If that URL never comes to actually exist, and be publically hosted in my CF account, theres no risk of the contents being exposed, is that correct?

HHard@Work > For Zones on Free/Pro/Business plan, you may purge up to 30 URLs in one API ca...

Natan ParmigianoOP•6/28/24, 6:22 PM

If thats not too much to ask, would you be able to provide me with a link to the docs for that API call or SDK? On the cache documentation i only found the prefix based cache purge (marked as Enterprise)

NNatan Parmigiano If thats not too much to ask, would you be able to provide me with a link to the...

Hard@Work•6/28/24, 6:22 PM

https://developers.cloudflare.com/api/operations/zone-purge

Cloudflare API Documentation

Interact with Cloudflare's products and services via the Cloudflare API

Natan ParmigianoOP•6/28/24, 6:23 PM

Thanks!
Ill try it out, if i have good results (and performance) ill probably open source my cedar-policy-on-cf repo

Natan ParmigianoOP•6/28/24, 6:47 PM

Right now im getting 3ms for policy lookup, parsing and allowed/denied outcome on a 20 entities, 10 principals setup, seems amazingly quick! With added JWT parsing (and maybe caching with TTL equal to token exp) im thinking ican keep it under 25ms total, which blows AWS API Gateway out of the water!

Ppeshakoo Would it be bad to send a non cryptographically secure 8 length long code *JUST*...

Hello, I’m Allie!•6/28/24, 9:49 PM

I’d say no. Some places even just use 6 digits. Though, you could probably go much longer if you made it a link

safah222•6/28/24, 10:34 PM

is there a way to decrease number of requests for workers , as each visit to my website is hitting the worker hundreds of time , for each path , and for each request it count 1 request
?

safah222•6/28/24, 10:46 PM

each visit cost me more than 1000 request worker , I just need the worker to work 1 time for each ip address

Silent•6/28/24, 10:52 PM

the md5 option in r2 bucket#put accepts arraybuffer and string. I input a hexadecimal string however,
the bucket response#checksums#md5 returns an arraybuffer regardless. How do i get it as a string, does cloudflare change it in any way while storing it?

Ssafah222 is there a way to decrease number of requests for workers , as each visit to my ...

Hello, I’m Allie!•6/28/24, 11:04 PM

You have already asked this question

safah222•6/28/24, 11:13 PM

and no one answered me

safah222•6/28/24, 11:13 PM

the answer was not related to my question which was to decrease number of requests

safah222•6/28/24, 11:14 PM

I just want to trigger 1 worker request for each ip address

Ssafah222 and no one answered me

Hello, I’m Allie!•6/28/24, 11:14 PM

I did: https://canary.discord.com/channels/595317990191398933/779390076219686943/1255885652306694234

Hello, I’m Allie!•6/28/24, 11:15 PM

But basically, if someone makes multiple requests to your Worker, then you will be billed

safah222•6/28/24, 11:15 PM

I just want to trigger the worker 1 time for each ip address , is there a way to control that

Ssafah222 I just want to trigger the worker 1 time for each ip address , is there a way to...

Hello, I’m Allie!•6/28/24, 11:16 PM

That’s not a thing, no

Hello, I’m Allie!•6/28/24, 11:16 PM

Unless you make requests go over a WebSocket or something

safah222•6/28/24, 11:18 PM

hmmmm thank you

Harris•6/29/24, 2:38 AM

can a worker that acts as a backend for a react page hosted on cloudflare pages have the same origin?

Llll-QWQ Hi, I want to make websocket server for a game in worker. What does "Max of 30 s...

lll-QWQ•6/29/24, 5:37 AM

just in case if anyone wants to know, it's in documentation
" Each incoming HTTP request or WebSocket message resets the remaining available CPU time to 30 seconds. This allows the Durable Object to consume up to 30 seconds of compute after each incoming network request, with each new network request resetting the timer. If you consume more than 30 seconds of compute between incoming network requests, there is a heightened chance that the individual Durable Object is evicted and reset."

Mickey•6/29/24, 8:44 AM

Does cache api work in local development?

MMickey Does cache api work in local development?

Hello, I’m Allie!•6/29/24, 8:48 AM

Yes

Silent•6/29/24, 7:35 PM

Im noticing that cf is adding an md5 checksum automatically to a file i puting in r2 bucket. Any way to disable?

Walshy•6/29/24, 7:50 PM

why do you want to disable?

Steven•6/30/24, 4:07 PM

I want to know if it's possible to have a cache for CF workers such that if I come up against the rate limiter, I can just get my response from the cache even if it's stale just to have something returning.

SSteven I want to know if it's possible to have a cache for CF workers such that if I co...

Hello, I’m Allie!•6/30/24, 4:09 PM

You could use KV/R2?

Hello, I’m Allie!•6/30/24, 4:09 PM

Though both of these options would incur billable usage in addition to the Worker Invocation

HHello, I’m Allie!You could use KV/R2?

Steven•6/30/24, 5:17 PM

sure so I can setup a cron job to hit the r2 to cache worker responses. I'd then be hitting R2 first always to see if the response is cached there and if not/"stale hit" then hit the worker, and just in case the worker comes back with an rate limiting error I can just use what I got from R2.

SSteven sure so I can setup a cron job to hit the r2 to cache worker responses. I'd then...

Hello, I’m Allie!•6/30/24, 5:35 PM

Yeah, though unless you set a Lifecycle rule then there should always be something in R2 once you trigger the Cron for the first time

ehrenmann•6/30/24, 6:47 PM

hey guys, i have a cloudflare worker that does only redirections.
for example mydomain.com/path1 then it searches the KVs value for /path1 and redirects to that URL.
But i noticed that i get less visitors on my domain after that. do you maybe know what the issue could be?

LLume Can I call multiple user workers from a dynamic dispatch worker in a single requ...

Lume•6/30/24, 6:55 PM

Could someone from Cloudflare answer this?

Eehrenmann hey guys, i have a cloudflare worker that does only redirections. for example my...

Cyb3r-Jak3•6/30/24, 7:26 PM

Less people are visting your site?

CCyb3r-Jak3 Less people are visting your site?

ehrenmann•6/30/24, 7:28 PM

the domain gets really low number of requests with the worker. its about 50 requests daily now, before it was about 200 hundred
i even removed the worker and got more requests directly the enxt day

Eehrenmann the domain gets really low number of requests with the worker. its about 50 requ...

Steven•6/30/24, 9:07 PM

to me it sounds like you're not counting the requests coming through the worker and the requests directly to the site and adding them together

Original message was deleted

Isaac McFadyen•6/30/24, 9:07 PM

I'd recommend putting this in #off-topic, it doesn't really sound related to Cloudflare Workers.

SSteven to me it sounds like you're not counting the requests coming through the worker ...

ehrenmann•6/30/24, 9:09 PM

I dont actually have a page, the domain is only for redirection.
Before i used the rules and now switched to worker

Hey guys! Might be a dumb question but, is the Cloudflare workers cache API suitable for credential

Similar Threads

Similar Threads

Similar Threads