Download the PHP package emotality/laravel-block-cf-origin without Composer
On this page you can find all versions of the php package emotality/laravel-block-cf-origin. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download emotality/laravel-block-cf-origin
More information about emotality/laravel-block-cf-origin
Files in emotality/laravel-block-cf-origin
Package laravel-block-cf-origin
Short Description Laravel package to block direct requests to your Cloudlfare-protected origin server.
License MIT
Homepage https://github.com/emotality/laravel-block-cf-origin
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package laravel-block-cf-origin
Block non-Cloudflare requests in Laravel
Laravel package to block direct requests to your Cloudlfare-protected origin server.
Overview
This packages should only be used when the following applies:
- You can't add firewall rules (to only accept requests from CF Edge IP addresses) because your server is shared with other projects that don't use Cloudflare. If you have a single app running on your server, rather add firewall rules.
- You can't add deny/allow rules to your Nginx/Apache config because you are using the
set_real_ip_from/mod_remoteipmodule to forward the user's real IP (X-Forwarded-For). If you don't need to forward the user's real IP, rather add deny/allow rules to your Nginx/Apache config. - You can't install
cloudflaredand create a tunnel. Read more
See Useful Links section below for more information.
Requirements
- PHP 8.0+
- PHP Redis extension
- Laravel 9.0+
*Note: This package only supports the Redis cache driver!
Installation
composer require emotality/laravel-block-cf-originphp artisan vendor:publish --provider="Emotality\Cloudflare\CloudflareBlockOriginServiceProvider"-
Add the middleware in
app/Http/Kernel.php: -
Add the cronjob to update Cloudflare's netmasks:
- Update your
config/cloudflare-block.phpconfig and.envaccordingly. - Add FastCGI (PHP-FPM) param to your Nginx config:
_$realip_remote_addr will be Cloudflare's IP if the request went through a Cloudflare Edge proxy, or the user's IP if the request was direct.
$remote_addr will be the user's IP address._
Useful Links
- Cloudflare IP ranges
- Cloudflare IP addresses
- Cloudflare Tunnel
- Restoring original visitor IPs
- Protect your origin server
- Authenticated Origin Pulls
Contributing
This package is in its early stages, feel free to report any issues or suggest improvements. Please use the master branch for any pull requests.
License
laravel-block-cf-origin is released under the MIT license. See LICENSE for details.
All versions of laravel-block-cf-origin with dependencies
ext-redis Version *
illuminate/cache Version ^9.0|^10.0|^11.0
illuminate/console Version ^9.0|^10.0|^11.0
illuminate/http Version ^9.0|^10.0|^11.0
illuminate/support Version ^9.0|^10.0|^11.0
symfony/http-kernel Version ^6.0|^7.0