Skip to content

fix: route all Pages hostnames through Cloudflare Access#2

Merged
lightsofapollo merged 1 commit into
mainfrom
fix/protect-pages-aliases
Jul 16, 2026
Merged

fix: route all Pages hostnames through Cloudflare Access#2
lightsofapollo merged 1 commit into
mainfrom
fix/protect-pages-aliases

Conversation

@lightsofapollo

Copy link
Copy Markdown
Collaborator

Summary

  • add a Pages advanced-mode Worker guard
  • serve assets only on the Access-protected canonical hostname
  • redirect branch aliases and immutable deployment hostnames to the canonical Access login path
  • add unit coverage for canonical serving and alias redirects

Verification

  • npm test: 4 passing
  • npm run check: clean
  • npm run design:audit: clean

This security fix has been deployed immediately; the PR remains draft for repository review.

@lightsofapollo
lightsofapollo marked this pull request as ready for review July 16, 2026 01:28
@lightsofapollo
lightsofapollo merged commit 7c93852 into main Jul 16, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant