Jack
Jack
PostsComments
CDCloudflare Developers
Created by Jack on 2/24/2025 in #general-help
Platform-Level Security for Internal Apps: Enforcing Trust with Wildcard Subdomains
Hey everyone, I'm looking for some advice on a project I'm working on. I currently have two internal apps – Application One and Application Two – that are both set up with DNS CNAME records pointing to a Heroku Node app. My goal is to secure any subdomain under our main domain so that communication between these apps remains secure and seamless. The idea is to secure all these apps at a platform level rather than individually, with each app only accepting requests from *.mydomain.com. I did consider using Cloudflare tunnels to achieve this, but I'm not able to install the cloudflared tunnel on Heroku. Specifically, I'm wondering: Configuration: Are there any recommended settings or configurations within Cloudflare that help enforce secure communication between multiple internal apps? Best Practices: Any insights or best practices on managing cross-app communication securely in this kind of setup would be greatly appreciated. Thanks in advance for any pointers or shared experiences!
1 replies
CDCloudflare Developers
Created by Jack on 2/13/2025 in #general-help
How to manage client cert signing & IP control with Cloudflare?
Hey everyone! I'm looking into ways to handle client certificate signing for third-party suppliers using Cloudflare. Right now, we're signing the requests in our Node app, but as we grow, I want to take that complexity off the devs and handle it at the platform level. The provider we use is a company called Equisoft. They've given us their own cert and have whitelisted our IPs. Ideally, I’d like Cloudflare to handle this via a proxy of some sort, letting us specify which IP to use, etc. Has anyone tackled this before? Do you use an API gateway or something else? Would love to hear your thoughts—cheers! Feel free to reach out if you need any more info.
1 replies
CDCloudflare Developers
Created by Jack on 1/10/2024 in #workers-help
Storage Technologies
We're partly porting over functionality that uses MongoDB for JSON document storage, so I'm looking at the best option for storing this data on Cloudflare (and if not on Cloudflare, what the best storage tool in the ecosystem is). I want to help understand the storage technologies and help understand their pros and cons.
2 replies