Cloudflare Docs

Cloudflare Docs

Overview
Get started
Framework guides
Deploy a Blazor Site
Deploy a Brunch site
Deploy a Docusaurus site
Deploy a Gatsby site
Deploy a Gridsome site
Deploy a Hexo site
Deploy a Hono site
Deploy a Hugo site
Deploy a Jekyll site
Deploy a Next.js site
Deploy a Nuxt site
Deploy a Pelican site
Deploy a Preact site
Deploy a Qwik site
Deploy a React site
Deploy a Remix site
Deploy a Solid site
Deploy a Sphinx site
Deploy a Svelte site
Deploy a Vite 3 site
Deploy a Vue site
Deploy a Vuepress site
Deploy a Zola site
Deploy an Angular site
Deploy an Astro site
Deploy an Elder.js site
Deploy an Eleventy site
Deploy an Ember site
Deploy an Mkdocs site
Deploy your site
How to
Add a custom domain to a branch
Add custom HTTP headers
Deploy a static WordPress site
Enable Web Analytics
Install private packages
Preview Local Projects with Cloudflare Tunnel
Redirecting www to domain apex
Refactor a Worker to a Pages Function
Set build commands per branch
Use Direct Upload with continuous integration
Use Pages Functions for A/B testing
Tutorials
Add a React form with Formspree
Add an HTML form with Formspree
Build a blog using Nuxt.js and Sanity.io on Cloudflare Pages
Build an API for your front end using Cloudflare Workers
Create an HTML form
Migration guides
Migrating a Jekyll-based site from GitHub Pages
Migrating from Firebase
Migrating from Netlify to Pages
Migrating from Vercel to Pages
Migrating from Workers Sites to Pages
Platform
Branch build controls
Build configuration
Changelog
Custom domains
Debugging Pages
Deploy Hooks
Direct Uploads
Early Hints
Functions
Get started
Routing
API reference
Examples
A/B testing with middleware
Adding CORS headers
Middleware
Local development
Bindings
TypeScript
Advanced mode
Pages Plugins
Cloudflare Access
Google Chat
GraphQL
hCaptcha
Honeycomb
MailChannels
Sentry
Static Forms
Stytch
Community Plugins
vercel/og
Metrics
Debugging and logging
Pricing
Module support
Git integration
Headers
Known issues
Language support and tools
Limits
Preview deployments
Redirects
REST API
Rollbacks
Serving Pages

Stytch Pages Plugin

The Stytch Pages Plugin is a middleware which validates all requests and their session_token.

Installation

$ npm install @cloudflare/pages-plugin-stytch

Usage

functions/_middleware.tsimport stytchPlugin from "@cloudflare/pages-plugin-stytch";
import { envs } from "@cloudflare/pages-plugin-stytch/api";

export const onRequest: PagesFunction = stytchPlugin({  project_id: "YOUR_STYTCH_PROJECT_ID",  secret: "YOUR_STYTCH_PROJECT_SECRET",  env: envs.live});

We recommend storing your secret in KV rather than in plain text as above.

The Stytch Plugin takes a single argument, an object with several properties. project_id and secret are mandatory strings and can be found in Stytch’s dashboard. env is also a mandatory string, and can be populated with the envs.test or envs.live variables in the API. By default, the Plugin validates a session_token cookie of the incoming request, but you can also optionally pass in a session_token or session_jwt string yourself if you are using some other mechanism to identify user sessions. Finally, you can also pass in a session_duration_minutes in order to extend the lifetime of the session. More information on these parameters can be found in Stytch’s documentation.

The validated session response containing user information is made available to subsequent Pages Functions on data.stytch.session.