api-worker

This repo is a Cloudflare Worker that serves the Ace Archive API using data from the Cloudflare D1 SQLite database.

See the website for more information.

Pagination cursor encryption

Pagination cursors are encrypted, for a few reasons:

We can trivially detect an invalid cursor argument without any complex logic or querying the upstream data source.
The contents of the cursor are opaque to the user, which prevents them from trying to interpret or parse it.
The cursor we return is always different for every request. This prevents the user from relying on the contents of the cursor being deterministic.

The encryption key is stored in a worker secret called CURSOR_ENCRYPTION_KEY. You can generate a key in the browser JS console like this:

const key = await crypto.subtle.generateKey({ name: "AES-GCM", length: 128 }, true, ["encrypt", "decrypt"])
const jwk = JSON.stringify(await crypto.subtle.exportKey("jwk", key));
console.log(jwk);

Name		Name	Last commit message	Last commit date
Latest commit History 101 Commits
src		src
.editorconfig		.editorconfig
.eslintignore		.eslintignore
.eslintrc.yaml		.eslintrc.yaml
.gitignore		.gitignore
.prettierignore		.prettierignore
.prettierrc.yaml		.prettierrc.yaml
LICENSE		LICENSE
README.md		README.md
jest.config.json		jest.config.json
openapi.yaml		openapi.yaml
package-lock.json		package-lock.json
package.json		package.json
tsconfig.json		tsconfig.json
wrangler.toml		wrangler.toml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

api-worker

Pagination cursor encryption

About

Releases

Languages

License

acearchive/api-worker

Folders and files

Latest commit

History

Repository files navigation

api-worker

Pagination cursor encryption

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Languages