Is it possible to secure a Cloudflare Pages deployed application using Cloudflare Zerotrust/Access?
We know it is possible to secure the website domain associated with the deployed pages, but what about the site origin, pages-name.pages.dev. Since we do not own *.pages.dev, it isn’t possible to protect the primary URL of the pages application.
Is there a method around this that eliminates the bypass of the pages being accessed as pages-name.pages.dev and only be served from our domain which we can associate with ZeroTrust/Access applications?
The only documentation on this matter I could find from CF suggested the use of a Pages plugin to retrieve information from an existing Access session JWT. We do not need to query information from the JWT, we only need the Pages deployed site to be protected behind ZeroTrust natively despite the deployment of pages-name.pag