Cloudflare products
vanityURLs is a URL shortener that runs on Cloudflare’s edge network with your own domain.
| Product | Role in vanityURLs |
|---|---|
| Cloudflare DNS | Authoritative DNS for the short domain, including the proxied Worker custom domain record |
| Cloudflare Workers | Runtime for redirects, protected operational pages, generated static assets, and server-side analytics dispatch |
| Cloudflare Access | Zero Trust Network Access (ZTNA) protection for protected operational surfaces such as the Stats dashboard and Runtime test matrix |
| Cloudflare SSL/TLS | Edge certificates, Universal SSL, HTTPS enforcement, and minimum TLS configuration |
Network protection before traffic reaches the vanityURLs instance
| Product or surface | Role in vanityURLs |
|---|---|
| Web Application Firewall | Custom security rules for scanner probes, unexpected methods, suspicious clients, unwanted AI crawlers, and other edge-blocked traffic |
| Cloudflare Rate Limiting | Rate limiting for abuse patterns that should not spend Worker resources |
| Distributed Denial-of-Service (DDoS) Protection | Always-on network protection |
| Cloudflare Bot Management | Bot controls used to reduce automated abuse before requests reach the Worker |
| Cloudflare AI Crawl Control | Crawler-specific controls for selected AI crawler families |
| Cloudflare Rules | Managed Transforms and URL normalization before traffic reaches the vanityURLs instance |
| Cloudflare Security Events | Review surface for mitigations applied before the Worker runs |
Cloudflare is an evergreen SaaS platform: features, APIs, dashboard labels, and navigation can change continuously without major version numbers. To keep the documentation aligned with that moving surface, vanityURLs maintains a structured Cloudflare dashboard capture in JSON. The capture helps maintainers compare UI changes over time and update the documentation deliberately. For the maintenance rationale, see ADR 0012 and The JSON audit ledger behind the Cloudflare setup docs.