Cloudflare Docs

Cloudflare Docs

Overview
Get started
Guide
Quickstarts
Examples
Tutorials
Playground
Configuration
Bindings
Compatibility dates
Continuous integration
Cron Triggers
Environment variables
Integrations
APIs
External Services
Momento
Page Rules
Routes and domains
Custom Domains
Routes
workers.dev
Secrets
Smart Placement (beta)
Versions & Deployments
Gradual deployments
Rollbacks
Workers Sites
Start from existing
Start from scratch
Start from Worker
Workers Sites configuration
Runtime APIs
Bindings (env)
AI
Analytics Engine
Browser Rendering
D1
Durable Objects
Environment Variables
Hyperdrive
KV
mTLS
Queues
R2
Rate Limiting
Secrets
Service bindings
HTTP
RPC (WorkerEntrypoint)
Vectorize
Version metadata
Cache
Console
Context (ctx)
Encoding
Fetch
Handlers
Alarm Handler
Email Handler
Fetch Handler
Queue Handler
Scheduled Handler
Tail Handler
Headers
HTMLRewriter
Node.js compatibility
assert
AsyncLocalStorage
Buffer
Crypto
Diagnostics Channel
EventEmitter
path
process
Streams
StringDecoder
test
util
Performance and timers
Remote-procedure call (RPC)
Lifecycle
Reserved Methods
Visibility and Security Model
TypeScript
Error handling
Request
Response
Streams
ReadableStream
ReadableStream BYOBReader
ReadableStream DefaultReader
TransformStream
WritableStream
WritableStream DefaultWriter
TCP sockets
Web Crypto
Web standards
WebAssembly (Wasm)
Wasm in JavaScript
WebSockets
Databases
Connect to databases
Analytics Engine
Vectorize (vector database)
Cloudflare D1
Hyperdrive
Database Integrations (beta)
Neon
PlanetScale
Supabase
Turso
Upstash
Xata
Testing
Local development
Unit testing
Integration testing
Debugging tools
Vitest integration
Get started
Write your first test
Migrate from Miniflare 2's test environments
Migrate from unstable_dev
Recipes
Configuration
Test APIs
Isolation and concurrency
Known issues
Observability
Baselime integration (beta)
Errors and exceptions
Logging
Logpush
Real-time logs
Tail Workers
Metrics and analytics
Sentry integration (beta)
Source maps and stack traces
Wrangler
Install/Update Wrangler
API
Bundling
Commands
Configuration
Custom builds
Deprecations
Environments
Migrations
Migrate from Wrangler v1 to v2
1. Migrate webpack projects
2. Update to Wrangler v2
Wrangler v1 (legacy)
Install / Update
Authentication
Commands
Configuration
Webpack
Migrate from Wrangler v2 to v3
Run in CI/CD
System environment variables
Languages
JavaScript
TypeScript
Python
How Python Workers Work
Standard Library
Examples
Foreign Function Interface (FFI)
Packages
FastAPI
Langchain
Rust
Supported crates
Platform
Pricing
Limits
Choose a data or storage product
Changelog
Wrangler
Betas
Known issues
Reference
How the Cache works
How Workers works
Migrate from Service Workers to ES Modules
Protocols
Security model
Glossary
AI Assistant

External Services

Many external services provide libraries and SDKs to interact with their APIs. While many Node-compatible libraries work on Workers right out of the box, some, which implement fs, http/net, or access the browser window do not directly translate to the Workers runtime, which is v8-based.

Authentication

If your service requires authentication, use Wrangler secrets to securely store your credentials. To do this, create a secret in your Cloudflare Workers project using the following wrangler secret command:

wrangler secret put SECRET_NAME

Then, retrieve the secret value in your code using the following code snippet:

const secretValue = env.SECRET_NAME;

Then use the secret value to authenticate with the external service. For example, if the external service requires an API key for authentication, include the secret in your library’s configuration.

For services that require mTLS authentication, use mTLS certificates to present a client certificate.

Use Custom Domains when communicating with external APIs, which treat your Worker as your core application.