Cloudflare js worker allow list of countries and block the rest

mohamed.eltayeb · May 13, 2019, 9:38am

i’m trying to adjust the following code to be like allow if the country in the list and block if not , the current code does the oppiste block if the country in the list and allow if not

any tips here i’m not that good in js ?

addEventListener('fetch', event => {
  event.respondWith(blockCountries(event.request))
})

//Add countries to this Set to block them
const countries = new Set([  
  "US", // United States
  "SG", // Singapore 
  "BR"  // Brazil
])

async function blockCountries(request) {
  // Get country value from request headers
  let country = request.headers.get('cf-ipcountry')

  // Find out if country is on the block list
  let countryBlocked = countries.has(country)

  // If it's on the blocked list, give back a 403
  if (countryBlocked){
    return new Response("This page not available in your country",
        { status: 403, statusText: "Forbidden" })
  }

  // Catch-all return of the original response
  return await fetch(request)
}

sandro · May 13, 2019, 9:39am

Is there a particular reason you’d like to do this via a worker?

mohamed.eltayeb · May 13, 2019, 9:43am

yeah , i’ve some VOD with geo location restriction due copy rights , so i’ve to play it in MENA regain only , i’ve to set URLs for that vods in the rule , that why

sandro · May 13, 2019, 9:43am

And you cant do this with firewall rules?

mohamed.eltayeb · May 13, 2019, 9:44am

i need to through custom error msg on the jwplayer can i do this via firewall rules ?

sandro · May 13, 2019, 9:45am

You could customise the overall message, but not specifically for one firewall rule. In that case a worker might be the better choice.

mohamed.eltayeb · May 13, 2019, 9:47am

yeah i believe so ,

adaptive · May 13, 2019, 9:58am

This should work:

addEventListener('fetch', event => {
  event.respondWith(blockCountries(event.request))
})

//Add countries to this Set to Allow them
const countries = new Set([  
  "US", // United States
  "SG", // Singapore 
  "BR"  // Brazil
])

async function blockCountries(request) {
  // Get country value from request headers
  let country = request.headers.get('cf-ipcountry')

  // Find out if country is on the allow list
  let countryAllowed = countries.has(country)

  // If it's on the allow list, give back a 403
  if (countryAllowed){
    // Catch-all return of the original response
    return await fetch(request)
    
  }
  return new Response("This page not available in your country",
        { status: 403, statusText: "Forbidden" })
}

vinod.deshmane · July 25, 2019, 9:24am

Hi,Is there any way to redirect to any custom html page .

sandro · July 25, 2019, 9:25am

Redirect what? Country specific requests?

vinod.deshmane · July 25, 2019, 9:30am

suppose visitors from Europian Continent try to access my site. For e.g. https://abc.com then I want to show them one gdpr access denied message which is showing in html page.
so we want them to redirect on https://abc.com/gdpr.html.

adaptive · July 25, 2019, 11:15am

@vinod.deshmane Do the effort of being GDPR compliant, it is better for your business, in all factors.

//You need to add the other EU contries
const eu_countries = new Set(["FR", "DE", "DK", "SE"]);

const blockCountries = async request => {
  let country = request.headers.get("cf-ipcountry");

  if (eu_countries.has(country)) {
    return await fetch("https://abc.com/gdpr.html");
  }
  return await fetch(request);
};

addEventListener("fetch", event => {
  event.respondWith(blockCountries(event.request));
});

vinod.deshmane · July 25, 2019, 12:28pm

Thanks