Nicholai/united-tattoo
1
1
Fork 0
Code Issues 24 Pull Requests Actions 2 Packages Projects Releases Wiki Activity
united-tattoo/.open-next/cloudflare-templates/skew-protection.js
Nicholai 16cee69250 __Admin dashboard scaffolded with D1 database and R2 file uploads__ 
This commit implements the core admin dashboard functionality including NextAuth authentication, Cloudflare D1 database integration with complete schema, and Cloudflare R2 file upload system for portfolio images. Features include artist management, appointment scheduling, and data migration capabilities.
2025-09-17 16:08:34 -06:00

60 lines
2.6 KiB
JavaScript
Raw Blame History

import process from "node:process";
/** Name of the env var containing the mapping */
export const DEPLOYMENT_MAPPING_ENV_NAME = "CF_DEPLOYMENT_MAPPING";
/** Version used for the latest worker */
export const CURRENT_VERSION_ID = "current";
/**
* Routes the request to the requested deployment.
*
* A specific deployment can be requested via:
* - the `dpl` search parameter for assets
* - the `x-deployment-id` for other requests
*
* When a specific deployment is requested, we route to that deployment via the preview URLs.
* See https://developers.cloudflare.com/workers/configuration/previews/
*
* When the requested deployment is not supported a 400 response is returned.
*
* Notes:
* - The re-routing is only active for the deployed version of the app (on a custom domain)
* - Assets are also handled when `run_worker_first` is enabled.
* See https://developers.cloudflare.com/workers/static-assets/binding/#run_worker_first
*
* @param request
* @returns
*/
export function maybeGetSkewProtectionResponse(request) {
// no early return as esbuild would not treeshake the code.
if (__SKEW_PROTECTION_ENABLED__) {
const url = new URL(request.url);
// Skew protection is only active for the latest version of the app served on a custom domain.
if (url.hostname === "localhost" || url.hostname.endsWith(".workers.dev")) {
return undefined;
}
const requestDeploymentId = request.headers.get("x-deployment-id") ?? url.searchParams.get("dpl");
if (!requestDeploymentId || requestDeploymentId === process.env.DEPLOYMENT_ID) {
// The request does not specify a deployment id or it is the current deployment id
return undefined;
}
const mapping = process.env[DEPLOYMENT_MAPPING_ENV_NAME]
? JSON.parse(process.env[DEPLOYMENT_MAPPING_ENV_NAME])
: {};
if (!(requestDeploymentId in mapping)) {
// Unknown deployment id, serve the current version
return undefined;
}
const version = mapping[requestDeploymentId];
if (!version || version === CURRENT_VERSION_ID) {
return undefined;
}
const versionDomain = version.split("-")[0];
const hostname = `${versionDomain}-${process.env.CF_WORKER_NAME}.${process.env.CF_PREVIEW_DOMAIN}.workers.dev`;
url.hostname = hostname;
const requestToOlderDeployment = new Request(url, request);
// Remove the origin header to prevent an error with POST requests
const headers = new Headers(request.headers);
headers.delete("origin");
return fetch(requestToOlderDeployment, { headers });
}
}
Reference in New Issue View Git Blame Copy Permalink