简单三步利用cf works反代api.cloudflare.com

kimigao

接上贴：api.cloudflare.com被墙了，有人宣布对此负责吗

如果你也受api.cloudflare.com假墙影响，可以利用cf Worker反代cf Api

原出处：https://www.nadph.net/archives/145

1.创建一个Worker,部署后编辑代码

2.贴上代码

1. // Website you intended to retrieve for users.
   
2. const upstream = api.cloudflare.com'
   
3. 
   
4. // Custom pathname for the upstream website.
   
5. const upstream_path = '/'
   
6. 
   
7. // Website you intended to retrieve for users using mobile devices.
   
8. const upstream_mobile = upstream
   
9. 
   
10. // Countries and regions where you wish to suspend your service.
    
11. const blocked_region = []
    
12. 
    
13. // IP addresses which you wish to block from using your service.
    
14. const blocked_ip_address = ['0.0.0.0', '127.0.0.1']
    
15. 
    
16. // Whether to use HTTPS protocol for upstream address.
    
17. const https = true
    
18. 
    
19. // Whether to disable cache.
    
20. const disable_cache = false
    
21. 
    
22. // Replace texts.
    
23. const replace_dict = {
    
24.     '$upstream': '$custom_domain',
    
25. }
    
26. 
    
27. addEventListener('fetch', event => {
    
28.     event.respondWith(fetchAndApply(event.request));
    
29. })
    
30. 
    
31. async function fetchAndApply(request) {
    
32.     const region = request.headers.get('cf-ipcountry').toUpperCase();
    
33.     const ip_address = request.headers.get('cf-connecting-ip');
    
34.     const user_agent = request.headers.get('user-agent');
    
35. 
    
36.     let response = null;
    
37.     let url = new URL(request.url);
    
38.     let url_hostname = url.hostname;
    
39. 
    
40.     if (https == true) {
    
41.         url.protocol = 'https:';
    
42.     } else {
    
43.         url.protocol = 'http:';
    
44.     }
    
45. 
    
46.     if (await device_status(user_agent)) {
    
47.         var upstream_domain = upstream;
    
48.     } else {
    
49.         var upstream_domain = upstream_mobile;
    
50.     }
    
51. 
    
52.     url.host = upstream_domain;
    
53.     if (url.pathname == '/') {
    
54.         url.pathname = upstream_path;
    
55.     } else {
    
56.         url.pathname = upstream_path + url.pathname;
    
57.     }
    
58. 
    
59.     if (blocked_region.includes(region)) {
    
60.         response = new Response('Access denied: WorkersProxy is not available in your region yet.', {
    
61.             status: 403
    
62.         });
    
63.     } else if (blocked_ip_address.includes(ip_address)) {
    
64.         response = new Response('Access denied: Your IP address is blocked by WorkersProxy.', {
    
65.             status: 403
    
66.         });
    
67.     } else {
    
68.         let method = request.method;
    
69.         let request_headers = request.headers;
    
70.         let new_request_headers = new Headers(request_headers);
    
71. 
    
72.         new_request_headers.set('Host', upstream_domain);
    
73.         new_request_headers.set('Referer', url.protocol + '//' + url_hostname);
    
74. 
    
75.         let original_response = await fetch(url.href, {
    
76.             method: method,
    
77.             headers: new_request_headers,
    
78.             body: request.body
    
79.         })
    
80. 
    
81.         connection_upgrade = new_request_headers.get("Upgrade");
    
82.         if (connection_upgrade && connection_upgrade.toLowerCase() == "websocket") {
    
83.             return original_response;
    
84.         }
    
85. 
    
86.         let original_response_clone = original_response.clone();
    
87.         let original_text = null;
    
88.         let response_headers = original_response.headers;
    
89.         let new_response_headers = new Headers(response_headers);
    
90.         let status = original_response.status;
    
91.                
    
92.                 if (disable_cache) {
    
93.                         new_response_headers.set('Cache-Control', 'no-store');
    
94.             }
    
95. 
    
96.         new_response_headers.set('access-control-allow-origin', '*');
    
97.         new_response_headers.set('access-control-allow-credentials', true);
    
98.         new_response_headers.delete('content-security-policy');
    
99.         new_response_headers.delete('content-security-policy-report-only');
    
100.         new_response_headers.delete('clear-site-data');
     
101.                
     
102.                 if (new_response_headers.get("x-pjax-url")) {
     
103.             new_response_headers.set("x-pjax-url", response_headers.get("x-pjax-url").replace("//" + upstream_domain, "//" + url_hostname));
     
104.         }
     
105.                
     
106.         const content_type = new_response_headers.get('content-type');
     
107.         if (content_type != null && content_type.includes('text/html') && content_type.includes('UTF-8')) {
     
108.             original_text = await replace_response_text(original_response_clone, upstream_domain, url_hostname);
     
109.         } else {
     
110.             original_text = original_response_clone.body
     
111.         }
     
112.                
     
113.         response = new Response(original_text, {
     
114.             status,
     
115.             headers: new_response_headers
     
116.         })
     
117.     }
     
118.     return response;
     
119. }
     
120. 
     
121. async function replace_response_text(response, upstream_domain, host_name) {
     
122.     let text = await response.text()
     
123. 
     
124.     var i, j;
     
125.     for (i in replace_dict) {
     
126.         j = replace_dict[i]
     
127.         if (i == '$upstream') {
     
128.             i = upstream_domain
     
129.         } else if (i == '$custom_domain') {
     
130.             i = host_name
     
131.         }
     
132. 
     
133.         if (j == '$upstream') {
     
134.             j = upstream_domain
     
135.         } else if (j == '$custom_domain') {
     
136.             j = host_name
     
137.         }
     
138. 
     
139.         let re = new RegExp(i, 'g')
     
140.         text = text.replace(re, j);
     
141.     }
     
142.     return text;
     
143. }
     
144. 
     
145. 
     
146. async function device_status(user_agent_info) {
     
147.     var agents = ["Android", "iPhone", "SymbianOS", "Windows Phone", "iPad", "iPod"];
     
148.     var flag = true;
     
149.     for (var v = 0; v < agents.length; v++) {
     
150.         if (user_agent_info.indexOf(agents[v]) > 0) {
     
151.             flag = false;
     
152.             break;
     
153.         }
     
154.     }
     
155.     return flag;
     
156. }

复制代码

3.绑定自己的域名
因Worker的域名也是被墙的，所以我们需要用自己的域名，在 Worker 的管理界面中，点击 “Custom Domians” 中的 “Add Custom Domain” 按钮以绑定域名，至此成功。

宋喆

一个cf帐号能开几个works?

wange008

学习了