[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-75887":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":9,"language":10,"languages":9,"totalLinesOfCode":9,"stars":11,"forks":12,"watchers":13,"openIssues":14,"contributorsCount":15,"subscribersCount":15,"size":15,"stars1d":15,"stars7d":15,"stars30d":16,"stars90d":15,"forks30d":15,"starsTrendScore":15,"compositeScore":17,"rankGlobal":9,"rankLanguage":9,"license":18,"archived":19,"fork":19,"defaultBranch":20,"hasWiki":21,"hasPages":19,"topics":22,"createdAt":9,"pushedAt":9,"updatedAt":23,"readmeContent":24,"aiSummary":25,"trendingCount":15,"starSnapshotCount":15,"syncStatus":14,"lastSyncTime":26,"discoverSource":27},75887,"cloudflare-auth","leopoldsw\u002Fcloudflare-auth","leopoldsw","Self-deployed auth for Cloudflare Workers and D1: email\u002Fpassword login, magic links, verification, password reset, secure sessions, CLI setup, and production-ready defaults.",null,"TypeScript",136,7,1,2,0,29,2.71,"Other",false,"main",true,[],"2026-06-12 02:03:37","# Cloudflare Auth\n\nCloudflare Auth is an independent open-source authentication kit for Cloudflare Workers applications. It provides self-deployed email\u002Fpassword auth, username login, magic links, email verification, password reset, D1-backed opaque sessions, local terminal email, and adapters for Hono and plain Workers. Developers own the Worker, D1 database, secrets, email configuration, and user data in their own Cloudflare account. This project is not affiliated with, endorsed by, or sponsored by Cloudflare.\n\n## 5-Minute Quickstart\n\n```bash\nnpx --package @cf-auth\u002Fcli@latest cf-auth init my-app --template hono-basic\ncd my-app\npnpm install\nnpx --package @cf-auth\u002Fcli@latest cf-auth migrate --local\nnpm run dev\n```\n\nThe local template runs auth at `\u002Fauth`, stores data in D1, prints development email links to the terminal, and uses an unprefixed local cookie on `http:\u002F\u002Flocalhost`.\n\n## Existing Hono App\n\n```bash\nnpx --package @cf-auth\u002Fcli@latest cf-auth init\npnpm install\nnpx --package @cf-auth\u002Fcli@latest cf-auth migrate --local\nnpm run dev\n```\n\nMount the generated routes once:\n\n```ts\napp.route(authConfig.basePath, createAuthRoutes(authConfig));\n```\n\n## Local Development Email\n\nDevelopment uses the terminal email adapter by default. Magic-link, verification, and reset URLs are printed locally and can optionally appear in the development outbox at `\u002Fauth\u002Fdev\u002Femails`. Terminal email is rejected in preview and production.\n\n## Deploy To Cloudflare\n\n```bash\nnpx --package @cf-auth\u002Fcli@latest cf-auth doctor --env production\nnpx --package @cf-auth\u002Fcli@latest cf-auth migrate --remote --env production\nnpx --package @cf-auth\u002Fcli@latest cf-auth deploy --env production\n```\n\nUse `npx --package @cf-auth\u002Fcli@latest cf-auth deploy --migrate --env production` when you want the CLI to run migration checks during deployment.\n\nRun `npx --package @cf-auth\u002Fcli@latest cf-auth doctor --report --env production` when you need redaction-safe JSON for support or release records.\n\n## Security Defaults\n\nCloudflare Auth stores only HMAC-hashed session and email tokens, uses versioned password hash envelopes, validates redirect targets before token creation, consumes magic and verification links only on `POST`, uses D1 rate limits with opaque derived keys, and keeps request-origin and redirect-origin allowlists separate.\n\nOperational event queries are documented in [docs\u002Fmetrics.md](docs\u002Fmetrics.md). Event rows use HMACed IP and user-agent values and do not store raw identifiers, tokens, cookies, or passwords.\n\n## Supported Frameworks\n\nThe v1 surface supports Hono and plain Cloudflare Workers. The browser client SDK is framework-agnostic.\n\n## Troubleshooting\n\nThe full command surface is documented in [docs\u002Fcli.md](docs\u002Fcli.md).\n\nSee [docs\u002Ftroubleshooting.md](docs\u002Ftroubleshooting.md) for missing D1 bindings, unapplied migrations, secret setup, cookie issues, email binding failures, and package-name fallback commands.\n\nKnown v1 limitations are listed in [docs\u002Fknown-limitations.md](docs\u002Fknown-limitations.md).\n\n## Non-Goals\n\nOAuth\u002Fsocial login, SAML\u002Fenterprise SSO, passkeys, MFA, organizations\u002Fteams, role\u002Fpermission framework, hosted dashboard, hosted auth service, billing integration, admin impersonation, multi-project control plane, and password peppering are outside v1. See [docs\u002Fnon-goals.md](docs\u002Fnon-goals.md).\n\n## Security Policy\n\nSupported versions and vulnerability reporting instructions live in [SECURITY.md](SECURITY.md).\n","Cloudflare Auth 是一个为 Cloudflare Workers 应用程序设计的独立开源认证工具包，提供自部署的邮箱\u002F密码登录、魔法链接、邮件验证、密码重置等功能。该项目采用 TypeScript 编写，支持 D1 数据库作为后端存储，确保会话安全，并且通过 CLI 工具简化了配置与部署流程。适用于需要在 Cloudflare 平台上构建包含用户认证功能的应用场景，如网站或 API 服务。其内置的安全默认设置，如 HMAC 哈希存储、版本化的密码加密信封等，保障了应用的数据安全性。此外，它还提供了对 Hono 和普通 Workers 的适配器支持，便于开发者快速集成到现有项目中。","2026-06-11 03:53:35","CREATED_QUERY"]