npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

next-cf-access

v0.1.0

Published

Protect your Next.js + Vercel project using Cloudflare Access

Downloads

4

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

kyori19kyori19

Keywords

Readme

next-cf-access

Protect your Next.js + Vercel project with Cloudflare Access including preview deployments.

Getting Started

Prerequisites

  • Next.js project you want to protect
    • with AppDir support
  • Vercel account with a project
    • Custom domain configured
  • Cloudflare account
  • Your own domain name on Cloudflare

Install the package

Install next-cf-access package inside your Next.js project.

yarn add next-cf-access

Configure the API route

next-cf-access needs 2 API routes under /.ncfa/.

Create app/.ncfa/authorize/route.ts (or route.js if you prefer JavaScript) with the following content:

export * from 'next-cf-access/app/ncfa/authorize';

Create app/.ncfa/redirect/route.ts (or route.js if you prefer JavaScript) with the following content:

export * from 'next-cf-access/app/ncfa/redirect';

(Optional) If you want to try protecting preview deployments ASAP, deploy the project to Production environment on Vercel once here.

Protect your contents

Change app/layout.tsx (or layout.jsx if you prefer JavaScript) to the following:

import { useAccess } from 'next-cf-access';
import { Redirect } from 'next-cf-access/components';

// Must add `async` on RootLayout
export default async function RootLayout({
  children,
}: {
  children: React.ReactNode;
}) {
  // Add this line
  const result = await useAccess();

  return (
    <html lang="en">
      {/** Change the contents of <body> to this trinary operator */}
      {/** You must not return contents when `result && result.err` is true */}
      <body>{result && result.err ? <Redirect /> : children}</body>
    </html>
  )
}

Configure Cloudflare Access

Login to Cloudflare Zero Trust dashboard.

Create a new application with the custom domain you configured on Vercel. You can configure session duration and other settings as you like. Save the application and get the Application Audience (AUD) tag from Application Configuration.

Additionally, you need to create one more application for well-known endpoints. For this application, you must use the same domain as the previous application, and set path to .well-known. Furthermore, you must add the policy with Action: Bypass and Everyone as Include rules.

Issue Vercel Access Token

Login to Vercel and open Access Tokens page. Create and save a new token. Scope must be Full Account if you are deploying to your personal account.

Configure Environment Variables

You need to set the following environment variables on Vercel. All variables must be exposed to the all environments including Production, Preview, and Development.

  • NCFA_AUD - Application Audience (AUD) tag from Cloudflare Access Application Configuration
  • NEXT_PUBLIC_NCFA_DOMAIN - Custom domain name of your Next.js project on Vercel
  • VERCEL_TOKEN - Vercel Access Token

Deploy to Vercel

Deploy your project to Vercel. Your project will now be protected by Cloudflare Access including Preview Deployments.