Skip to content

fingerprintjs/flow-cloudflare-worker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

526 Commits
.changeset
.changeset
 
 
.github/workflows
.github/workflows
 
 
.husky
.husky
 
 
__tests__
__tests__
 
 
build-utils
build-utils
 
 
e2e
e2e
 
 
scripts
scripts
 
 
src
src
 
 
test-apps/react-spa
test-apps/react-spa
 
 
.env.dev
.env.dev
 
 
.eslintrc.cjs
.eslintrc.cjs
 
 
.gitignore
.gitignore
 
 
.prettierrc
.prettierrc
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODEOWNERS
CODEOWNERS
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
commitlint.config.cjs
commitlint.config.cjs
 
 
contributing.md
contributing.md
 
 
package.json
package.json
 
 
pnpm-lock.yaml
pnpm-lock.yaml
 
 
pnpm-workspace.yaml
pnpm-workspace.yaml
 
 
tsconfig.agent-processor.json
tsconfig.agent-processor.json
 
 
tsconfig.instrumentor.json
tsconfig.instrumentor.json
 
 
tsconfig.json
tsconfig.json
 
 
tsconfig.tests.json
tsconfig.tests.json
 
 
tsconfig.vite.json
tsconfig.vite.json
 
 
tsconfig.worker.json
tsconfig.worker.json
 
 
tsconfig.worker.tests.json
tsconfig.worker.tests.json
 
 
vite-env.d.ts
vite-env.d.ts
 
 
vite.agent-processor.ts
vite.agent-processor.ts
 
 
vite.instrumentor.ts
vite.instrumentor.ts
 
 
vite.worker.ts
vite.worker.ts
 
 
vitest.config.ts
vitest.config.ts
 
 
worker-configuration.d.ts
worker-configuration.d.ts
 
 
wrangler.example.jsonc
wrangler.example.jsonc
 
 

Repository files navigation

Fingerprint logo

Build status coverage Release status MIT license Documentation

Flow Cloudflare Worker

Cloudflare Worker for Fingerprint Flow.

⚠️ Work in progress: This is a beta version of the Flow Cloudflare Worker.

Requirements

  • Fingerprint account with the Editor role assigned (or any role with Edit configuration permission).
  • A website served by Cloudflare. For maximum accuracy benefits, your website should be proxied by Cloudflare (not DNS-only).

Deploying

To use Fingerprint Flow, please deploy an instance of this worker using the Fingerprint dashboard.

Configuration

The worker is configured using a wrangler.jsonc file. An example file wrangler.example.jsonc is provided in the repository.

Variables

  • FP_REGION: The Fingerprint region to use. Can be us, eu, or ap.
  • WORKER_ROUTE_PREFIX: A prefix for specific routes handled by the worker. This is used to avoid conflicts with other routes on the same domain.
  • FP_PUBLIC_KEY: Your Fingerprint public key.
  • FP_SECRET_KEY: Your Fingerprint secret key.
  • FP_RULESET_ID: Your Fingerprint ruleset ID.
    • If not provided, the worker will default to a "monitor mode" where it still identifies the visitor for any request to PROTECTED_APIS but does not evaluate a ruleset for those requests.
  • PROTECTED_APIS: An array of APIs to protect with Fingerprint. Each object in the array should have a method and url property. The url pattern cannot be relative but it can contain wildcards.
    • Example: [ { method: 'POST', url: 'https://example.com/sign-up/*' }]
  • IDENTIFICATION_PAGE_URLS: An array of url patterns that cannot be relative but can contain wildcards where the Fingerprint identification script should be injected.
    • Example: [ 'https://example.com/login', 'https://example.com/signup/*' ]

Architecture

Worker

The Worker is a Cloudflare Worker that acts as a reverse proxy. Its main responsibilities are:

  • Injecting the instrumentor and agent loader scripts on pages matching IDENTIFICATION_PAGE_URLS.
  • Proxying Fingerprint API requests made by the JavaScript agent.
  • When a request to PROTECTED_APIS are made, the worker reads signals injected by the instrumentor and sends a request to the Fingerprint Identification API. The API returns a specific action (e.g., allow/block) for the worker to take to with the protected API request.

The entry point for the worker is src/worker/index.ts.

Instrumentor

The Instrumentor is a script that is injected into the page by the worker. It patches the fetch function to automatically add Fingerprint headers to protected API requests. The entry point for the instrumentor is src/scripts/instrumentor/index.ts.

The Instrumentor code is bundled and included in the Worker binary during the build process.

Agent data processor

Located in src/scripts/agent-data-processor/index.ts, the Agent data processor is responsible for processing the data returned by the Fingerprint Identification API. It is used for the HTML forms that are not sent via fetch or XMLHttpRequest. After the form is submitted, if it's action is listed in protected APIs, the agent processor script will be injected into the response to process agent data received from the initial identification request.

About

Cloudflare Worker for Flow.

Topics

browser detection fingerprint identification fingerprinting browser-fingerprinting browser-fingerprint fraud-detection fraud audio-fingerprinting fingerprintjs visitor-identifier fingerprintjs-pro device-intelligence

Resources

Readme

License

MIT license

Contributing

Contributing
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 6

flow-cloudflare-worker@0.4.1 Latest
Dec 16, 2025
+ 5 releases

Contributors 6

Languages