What is the name of the domain?
What is the issue you’re encountering
infinityfree has a html security page that tests for a security cookies and runs an aes.js function, this is so that only browsers can access their hosted websites.
The issue is that infinityfree injects this page on any request for any file not just html and cloudflare caches this page instead of the actual web page or file that follows the security check
What steps have you taken to resolve the issue?
I have looked through the cloudflare caching settings to see if there might be a way to detect this annoying security injection and if found re-cache the actual file but I have been unable to do this
What are the steps to reproduce the issue?
The infinityfree security is in place so that only web browsers can access the site files
The way it functions is that when a request (any request for any file !) is made the sever injects a html file with an aes.js script and this thing checks a cookie has been set
So only something able to run javascript and set cookies is allowed to access the site (a browser)
The issue is that infinityfree injects this page before the real file and doesn’t care what its replacing, it could be an image or a css file or anything which causes a mime error
But worst of all is that cloudflare then caches this idiotic security html file as the actual original requested image or css or whatever and then the site is totally broken
I know this isn’t a cloudflare issue but an infinityfree issue but their parent company ifastnet who provide the hosting doesn’t seem to want to fix this broken mess so I was wondering if there is any way that I can set up a rule to automatically detect if this stupid security page got cached and if so then re-read the file to then cache the correct file ?
Thanks
