Workers
Create an Artifacts repo from a Worker and use a standard Git client to push and pull content.
By the end of this guide, you will create a Worker, bind it to Artifacts, create a repo through the Workers binding, push a commit, and clone the same repo back with a standard Git client.
Start by reading Namespaces, then choose the namespace name you will use. This guide uses default in the examples.
- Sign up for a Cloudflare account ↗.
- Install
Node.js↗.
Node.js version manager
Use a Node version manager like Volta ↗ or nvm ↗ to avoid permission issues and change Node.js versions. Wrangler, discussed later in this guide, requires a Node version of 16.17.0 or later.
You also need:
- Wrangler installed. If you use local Wrangler commands in this guide, authenticate Wrangler first. For local OAuth authentication or CI setup, refer to
wrangler loginand Running Wrangler in CI/CD. - Access to Artifacts in your Cloudflare account.
- A namespace name, for example
default. - A local
gitclient. jq, if you want to extract response fields automatically.
-
Create a new Worker project with C3:
npm create cloudflare@latest -- artifacts-workeryarn create cloudflare artifacts-workerpnpm create cloudflare@latest artifacts-workerFor setup, select the following options:
- For What would you like to start with?, choose
Hello World example. - For Which template would you like to use?, choose
Worker only. - For Which language do you want to use?, choose
TypeScript. - For Do you want to use git for version control?, choose
Yes. - For Do you want to deploy your application?, choose
No(we will be making some changes before deploying).
- For What would you like to start with?, choose
-
Move into the project directory:
Terminal window cd artifacts-worker
Open your Wrangler config file and add the Artifacts binding:
{ "$schema": "./node_modules/wrangler/config-schema.json", "name": "artifacts-worker", "main": "src/index.ts", // Set this to today's date "compatibility_date": "2026-05-06", "artifacts": [ { "binding": "ARTIFACTS", "namespace": "default" } ]}name = "artifacts-worker"main = "src/index.ts"# Set this to today's datecompatibility_date = "2026-05-06"
[[artifacts]]binding = "ARTIFACTS"namespace = "default"# Set remote = true if you want Wrangler to use the remote Artifacts service in local dev.This exposes Artifacts as env.ARTIFACTS inside your Worker.
If you are using TypeScript, regenerate your local binding types:
npx wrangler typesyarn wrangler typespnpm wrangler typesWrangler adds an Artifacts type to your generated worker-configuration.d.ts file.
Replace src/index.ts with the following code:
export default { async fetch(request, env) { const url = new URL(request.url);
if (request.method === "POST" && url.pathname === "/repos") { // Read the repo name from the request body so the route is reusable. const body = await request.json().catch(() => ({}));
const repoName = body.name ?? "starter-repo";
// Create the repo and return the remote URL plus initial write token. const created = await env.ARTIFACTS.create(repoName);
return Response.json({ name: created.name, remote: created.remote, token: created.token, }); }
return new Response("Use POST /repos to create an Artifacts repo.", { status: 405, headers: { Allow: "POST" }, }); },};interface Env { ARTIFACTS: Artifacts;}
export default { async fetch(request: Request, env: Env): Promise<Response> { const url = new URL(request.url);
if (request.method === "POST" && url.pathname === "/repos") { // Read the repo name from the request body so the route is reusable. const body = (await request.json().catch(() => ({}))) as { name?: string; }; const repoName = body.name ?? "starter-repo";
// Create the repo and return the remote URL plus initial write token. const created = await env.ARTIFACTS.create(repoName);
return Response.json({ name: created.name, remote: created.remote, token: created.token, }); }
return new Response("Use POST /repos to create an Artifacts repo.", { status: 405, headers: { Allow: "POST" }, }); },} satisfies ExportedHandler<Env>;This Worker does one job: create an Artifacts repo and return the values your Git client needs next.
For the demo, the Worker returns the initial write token. In production, mint short-lived read tokens for clone and pull flows, and mint write tokens only for operations that need push access.
Start local development:
npx wrangler devyarn wrangler devpnpm wrangler devIn a second terminal, choose one of the following ways to create a repo through your Worker.
If you rerun this guide, use a different repo name in the request body.
curl http://localhost:8787/repos \ --header "Content-Type: application/json" \ --data '{ "name": "starter-repo" }'The response resembles the following:
{ "name": "starter-repo", "remote": "https://<ACCOUNT_ID>.artifacts.cloudflare.net/git/default/starter-repo.git", "token": "art_v1_0123456789abcdef0123456789abcdef01234567?expires=1760000000"}Use the exact remote value from the response. The example above uses <ACCOUNT_ID> as a placeholder for your Cloudflare account ID.
The returned token encodes its expiry directly in the ?expires= suffix.
Copy the remote and token values into local shell variables:
export ARTIFACTS_REMOTE="<PASTE_REMOTE_FROM_RESPONSE>"export ARTIFACTS_TOKEN="<PASTE_TOKEN_FROM_RESPONSE>"RESPONSE=$(curl --silent http://localhost:8787/repos \ --header "Content-Type: application/json" \ --data '{"name":"starter-repo"}')
export ARTIFACTS_REMOTE=$(printf '%s' "$RESPONSE" | jq -r '.remote')export ARTIFACTS_TOKEN=$(printf '%s' "$RESPONSE" | jq -r '.token')Create a local repository and push it to Artifacts:
mkdir artifacts-democd artifacts-demogit init -b mainprintf '# Artifacts demo\n' > README.mdgit add README.mdgit commit -m "Initial commit"git remote add origin "$ARTIFACTS_REMOTE"git -c http.extraHeader="Authorization: Bearer $ARTIFACTS_TOKEN" push -u origin mainThis uses the recommended header-based form and keeps the token out of the remote URL.
If you need a self-contained remote URL for a short-lived command, build one from the token secret instead:
export ARTIFACTS_TOKEN_SECRET="${ARTIFACTS_TOKEN%%\?expires=*}"export ARTIFACTS_AUTH_REMOTE="https://x:${ARTIFACTS_TOKEN_SECRET}@${ARTIFACTS_REMOTE#https://}"git push "$ARTIFACTS_AUTH_REMOTE" HEAD:mainClone the same repo into a second directory:
cd ..git -c http.extraHeader="Authorization: Bearer $ARTIFACTS_TOKEN" clone "$ARTIFACTS_REMOTE" artifacts-clonegit -C artifacts-clone log --oneline -1You should see the commit you pushed in the previous step.
You can also clone with a self-contained remote URL for a short-lived command:
git clone "$ARTIFACTS_AUTH_REMOTE" artifacts-cloneDeploy the Worker so you can create repos without running wrangler dev:
npx wrangler deployyarn wrangler deploypnpm wrangler deployWrangler prints your workers.dev URL. Use the same curl request against that URL to create additional repos from production.