Cache authenticated responses

anton9 · June 14, 2020, 7:48pm

I have written an API with that requires users to have a valid JWT in order to make requests.

Some endpoints return the same data to every user but they must be authenticated.

What i’d like to do is to cache these authenticated responses whilst ensuring that the endpoints cannot be accessed publicly. If two authenticated users called the same endpoint, then user 1 would get a response from the server and user 2 from Cloudflare cache.

Can this be done with Cloudflare? What the best way to implement this?

cs-cf · June 14, 2020, 8:05pm

Probably using workers. Perhaps something like:

gist.github.com

https://gist.github.com/bcnzer/e6a7265fd368fa22ef960b17b9a76488

cloudflareworker-verifyjwt.js

addEventListener('fetch', event => {
  event.respondWith(handleRequest(event.request))
})

// Following code is a modified version of that found at https://blog.cloudflare.com/dronedeploy-and-cloudflare-workers/

/**
 * Fetch and log a request
 * @param {Request} request
 */

This file has been truncated. show original

anton9 · June 15, 2020, 9:55am

Thanks for sharing that code @cs-cf. I think in my particular case I’ll only need to verify the token and make sure that it is not expired so this could work.