CD
Cloudflare Developers4w ago
hyperknot

Specify host header in fetch request

I'm trying to health-check load balanced hosts, for which I need to fetch using IP address + Host header. In curl it's super simple, like this: 
curl -H "Host: direct.openfreemap.org" -I http://144.76.168.195/styles/liberty
curl -H "Host: direct.openfreemap.org" -I http://144.76.168.195/styles/liberty
However I cannot replicate the same in a Worker JS environment. For example this does not work (network connection lost): 
    const resp = await fetch('http://144.76.168.195/styles/liberty', {
      headers: {
        Host: 'direct.openfreemap.org',
      },
    })
    const resp = await fetch('http://144.76.168.195/styles/liberty', {
      headers: {
        Host: 'direct.openfreemap.org',
      },
    })
How can I make either fetch work with Host headers, or use a lower level library for that?
8 Replies
Chaika
Chaika4w ago
it's a security thing, you mostly can't. You can't fetch raw IPs either. Workers do have resolveOverride but the host header would still match the URL and both the url and host in resolveOverride would have be in the same zone/domain the worker is running on. https://developers.cloudflare.com/workers/runtime-apis/request/#incomingrequestcfproperties You could hack something together with TCP Sockets yea: https://developers.cloudflare.com/workers/runtime-apis/tcp-sockets/, I know I've heard of people messing around with that sort of idea before, I don't know of any exact examples though, and TCP Sockets use WARP IPs (undocumented), not the normal CDN IPs Fetch() goes through the entire cdn flow sort of like a normal request, which makes it special
hyperknot
hyperknot4w ago
I see. It's a bit weird, as the non-JS runtimes can support anything I guess. Like if I write it in Python then I'm allowed to do whatever I want, but if I choose the native JS runtime then I'm in this security sandbox kind of thing?
Chaika
Chaika4w ago
In Cloudflare Workers, everything goes through the JS layer to some extent There is only one runtime supported, and it's V8. Python Workers run via WASM You could check workerd to see how they patch into the javascript side of things, but I imagine they just use fetch with the same restrictions too. It's either that or TCP Sockets
hyperknot
hyperknot4w ago
I see, thanks for the help!
Chaika
Chaika4w ago
Sure yea looks like both the patches for aiohttp and httpx just use JS Fetch: https://github.com/cloudflare/workerd/blob/c5ebbe29e3b3bcc5b2009b399074fdaca703e865/src/pyodide/internal/patches/httpx.py, should be all the same limitations
grouch
grouch3w ago
@hyperknot did you ever find a solution to this? i'm doing something similar right now using origin rules but the number of rules i have is starting to become unmanagable.. wanted to move everything to a worker, but it's proving to be more difficult than expected. with origin rules i can set a separate host header and dns address, but i haven't been able to reproduce that functionality in a worker.
hyperknot
hyperknot2w ago
I moved to Python and host it on a VM, gave up on CF workers for this.
grouch
grouch2w ago
haha ok i suppose that's one way to do it, not really the way i'm looking to do thanks for the update
Want results from more Discord servers?
Add your server
More Posts
500 Internal Server Error for random js filesDeployment ID: 9e4ea0f3-58ef-4827-87e7-1a7f4b5b3f72How to increase output tokens length for workers AI ?I'm trying to increase output tokens length of cloudflare AI llama2 7b model. The documentation is nHow do I store websocket connections for later use?Hey there, I just got started with Durable objects and thought I would be able to use them to store i cant redeem my points on microsoft its saying im not a human i was directed herehelp me #general-helpSetting up build and deployment with webpackHello friends. I am developing a simple web application, with HTML code and some js functions. I am hi all, i'm developing a worker that hashi all, i'm developing a worker that has access to D1 databases through D1 database bindings (set asCloudflare warp not allowing internal access from remote.Cloudflare WARP not allowing connection on mobile data to internal resources.How do I tunnel my minecraft server?Hey there, I'm trying to host my minecraft which is both java and bedrock but I can't join with clouMigrated react app from firebase to pages, getting error e is null during runtimeI migrated my create react app from firebase to cloudflare pages but now it gives an error e is nullOrange cloud breaks websocket appHellooooooo Cloudflare and general programming noob here. I've made a website that relies on a secur