Lanie
CDCloudflare Developers
•Created by Lanie on 2/13/2025 in #general-help
Help Needed with Cloudflare Zero Trust, Pages, and Workers for ReactFlux + MiniFlux Setup
Wound up switching back to having Caddy get certificates and using Authelia for SSO because Cloudflare was too hard to get working.
12 replies
CDCloudflare Developers
•Created by Lanie on 2/13/2025 in #general-help
Help Needed with Cloudflare Zero Trust, Pages, and Workers for ReactFlux + MiniFlux Setup
I followed the directions here but still no luck: https://community.cloudflare.com/t/access-policy-to-bypass-auth-requirements-for-specific-subpath/455603
12 replies
CDCloudflare Developers
•Created by Lanie on 2/13/2025 in #general-help
Help Needed with Cloudflare Zero Trust, Pages, and Workers for ReactFlux + MiniFlux Setup
I've done some more testing, and I'm seeing this in my logs:
Feb 15 07:13:08 stormux cloudflared[82971]: 2025-02-15T13:13:08Z DBG GET https://rss.laniecarmelo.tech/v1/me HTTP/1.1 connIndex=0 content-length=0 event=1 headers={"Accept":["/"],"Accept-Encoding":["gzip, br"],"Cdn-Loop":["cloudflare; loops=1; subreqs=1"],"Cf-Connecting-Ip":["69.58.156.77"],"Cf-Ew-Via":["15"],"Cf-Ipcountry":["US"],"Cf-Ray":["91258db235f1e91a-DFW"],"Cf-Visitor":["{"scheme":"https"}"],"Cf-Warp-Tag-Id":["a5f2c6fb-dd1f-48f1-9f88-103234cf5e1b"],"Cf-Worker":["laniecarmelo.tech"],"User-Agent":["curl/8.11.1"],"X-Auth-Token":["8FpW9eQWJv75j5ZM6lzBPZjqQFI_G_O6WgqZ1gy9JxI="],"X-Forwarded-For":["69.58.156.77"],"X-Forwarded-Proto":["https"]} host=rss.laniecarmelo.tech ingressRule=7 originService=http://192.168.1.137:80 path=/v1/me
Feb 15 07:13:08 stormux cloudflared[82971]: 2025-02-15T13:13:08Z ERR error="request filtered by middleware handler (AccessJWTValidator) due to: no access token in request" connIndex=0 event=1 ingressRule=7 originService=http://192.168.1.137:80
I'm not sure how to fix this. I already configured Caddy to forward headers.
12 replies
CDCloudflare Developers
•Created by Lanie on 2/13/2025 in #general-help
Help Needed with Cloudflare Zero Trust, Pages, and Workers for ReactFlux + MiniFlux Setup
I'm blind, so I can't see the pictures you posted, but I changed it so there are two access applications. The main one seems to be working correctly, but the one for the API with bypass and include everyone doesn't. I get a 403 error saying I don't have the rights to visit the page when I go there.
12 replies
CDCloudflare Developers
•Created by Lanie on 2/13/2025 in #general-help
Help Needed with Cloudflare Zero Trust, Pages, and Workers for ReactFlux + MiniFlux Setup
I've confirmed it's due to access. My Caddy configuration and MiniFlux setup seem to be set up correctly, and MiniFlux is accessible both locally and at rss.laniecarmelo.tech, but no matter what I do, I either still get asked to sign into Cloudflare Access when visiting the API endpoint, or the whole MiniFlux subdomain gets where I get a 403 error when I try to visit it. Right now, I have one MiniFlux application with both rss.laniecarmelo.tech/v1/* and rss.laniecarmelo.tech/* added as paths, and two policies, one for API access set to allow everyone and one for personal access set to allow only certain emails or login methods. I tried bypass for the API policy but that locked the whole site behind a 403 error.
12 replies