The Plugin Publishing System is a streamlined solution for managing and distributing plugins using Cloudflare Workers and R2 storage. This system allows you to easily upload, version, and distribute plugins for your platform.
Before you begin, ensure you have the following:
- A Cloudflare account with Workers and R2 enabled
- Node.js (version 12 or later) and npm installed
- Wrangler CLI installed and authenticated with your Cloudflare account
-
Run the setup script:
./setup.sh -
Follow the prompts to complete the setup process.
-
The API key given at the end of setup is used to publish. This key should be in the root of your project directory as
API_KEY=<yourkey>(and omit the.envfile from version control) One workflow tip I would recommend is rolling the key on every publish so your stored credentials at .env are constantly out of sync after deploy.
-
Ensure you're logged in to your Cloudflare account via Wrangler:
npx wrangler login -
Run the
setup.shscript and provide a name for your project when prompted. -
The script will:
- Generate or update the
wrangler.tomlconfiguration file - Create an R2 bucket for storing plugin files
- Prompt you to select the appropriate Cloudflare account (if you have multiple)
- Deploy the existing worker code from
src/index.js - Generate and set an API secret
- Generate or update the
-
After the script completes, you'll receive:
- The R2 Bucket URL
- An API Secret (save this securely)
-
Your worker is now deployed with the implementation from
src/index.js.
The wrangler.toml file in your project directory contains the configuration for your worker and R2 bucket. Key configurations include:
name: The name of your worker (micro-plugin-publisher)main: The entry point of your worker code (src/worker.js)compatibility_date: The date for compatibility (2024-10-25)compatibility_flags: Flags for compatibility (["nodejs_compat"])account_id: Your Cloudflare account ID (95d5ca589c39bf4189b080cfc8417c8e)
DOWNLOAD_COUNTS:DOWNLOAD_RATELIMIT:DOWNLOAD_QUEUE:
PLUGIN_REGISTRY: Class name (PluginRegistryDO)USER_AUTH: Class name (UserAuthDO)
PLUGIN_BUCKET_URL: The URL of your R2 bucket
PLUGIN_BUCKET: Bucket name for plugin storage
The Plugin Publishing System provides the following endpoints:
/: Homepage with author listings/plugin-data: Retrieve plugin data (cached)/author-data: Retrieve author data (cached)/authors-list: Get a list of all authors (cached)/directory/{author}/{slug}: Get the HTML page for a specific plugin (cached)/author/{author}: Get the HTML page for a specific author (cached)/version-check: Compare new version against author/slug/slug.json/download: Download a plugin file/download-count: Get download count for a plugin/search: Search plugins with optional tag filtering/directory/search: Get HTML search results page/activate: Record plugin activation/activation-count: Get activation count for a plugin/register: Get registration page HTML/roll-api-key: Get API key roll interface/roll-key-with-token: Complete key roll with verification token/clear-cache: Public cache clearing endpoint
/create-user: Register new user (no auth required, needs invite code)/delete-user: Remove user and associated data (admin only)/rotate-key: Standard API key rotation/admin-update-user: Update user details (admin only)/initiate-key-roll: Start key recovery process/verify-key-roll: Complete key recovery with GitHub verification/migrate-data: Migrate existing data to SQLite database/migrate-authors: Migrate author data to new format/delete-plugin: Remove a specific plugin/delete-author: Remove an author and all associated data/record-download: Record a plugin download/plugin-upload-chunk: Upload a chunk of a plugin file/plugin-upload-json: Upload JSON metadata for a plugin/plugin-upload-assets: Upload plugin assets (icons, banners)/plugin-upload-complete: Finalize a plugin upload/update-author-info: Update author information/backup-plugin: Create backup of currently live files/clear-cache: Clear cached responses (authenticated)
Most POST endpoints require authentication via API key in the Authorization header:
curl -X POST https://your-worker.dev/endpoint \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json"POST Exceptions (no auth required):
/create-user/register/initiate-key-roll/verify-key-roll/search
Admin-only endpoints require the main API secret:
curl -X POST https://your-worker.dev/admin-update-user \
-H "Authorization: Bearer YOUR_API_SECRET" \
-H "Content-Type: application/json"All GET endpoints that return HTML or JSON data are cached at the edge with a 1-hour TTL. Cache can be bypassed by:
- Including a valid API key in the request
- Using the
/clear-cacheendpoint - Uploading new content (automatic cache invalidation)
The API implements caching for all GET requests. Features include:
- CDN edge caching with 1-hour TTL
- Version-based cache keys
- Automatic cache invalidation on content updates
- Auth-based cache bypassing when using API secret
Cached responses are automatically invalidated when:
- A new plugin is published
- Author information is updated
- A GET request contains a valid API secret
The Plugin Publishing System includes a robust version checking and backup mechanism to ensure data integrity and prevent accidental overwrites.
The system uses semantic versioning to manage plugin versions. Before any upload, a version check is performed:
- Endpoint:
GET /version-check - Query parameters:
author: The plugin author's identifierpluginName: The name of the pluginnewVersion: The version being uploaded
- Response:
{ "isNew": boolean, "canUpload": boolean, "currentVersion": string }
This endpoint determines if the new version can be uploaded based on the existing version in the system. It prevents uploading of older or identical versions.
Before updating an existing plugin, the system creates a backup of the current version:
- Endpoint:
POST /backup-plugin - Request body:
{ "author": string, "slug": string, "version": string } - Response: Success or failure message
The backup process:
- Creates a new folder named with the current version number.
- Copies the current plugin files (JSON metadata, ZIP file, and assets) into this backup folder.
- Updates the main plugin metadata to reflect the current version.
If a backup already exists for the given version, the endpoint returns a message indicating so without creating a duplicate backup.
This system uses a SQLite database within a Durable Object to provide search functionality and efficient plugin management. The database automatically syncs with the R2 storage system when plugins are uploaded or updated.
The system provides a search endpoint:
# Basic search
curl 'https://your-worker.workers.dev/search?q=pluginname'
# Search by tag
curl 'https://your-worker.workers.dev/search?tag=xr'
# Combined search with pagination
curl 'https://your-worker.workers.dev/search?q=pluginname&tag=xr&limit=20&offset=0'Search parameters:
q: Text to search for (searches across name, description, and author)tag: Filter by tag (can be specified multiple times)limit: Maximum number of results (default: 20)offset: Pagination offset (default: 0)
HTML Interface: The system also provides a browser-friendly search interface at /directory/search with:
- Real-time search results
- Tag filtering
- Grid view of plugins with:
- Banner images
- Plugin icons
- Version info
- Last update date
- Author attribution
- Pagination controls
- Direct links to plugin detail pages
The system uses a combination of SQLite databases (via Durable Objects) and Cloudflare KV for data management. Here's the current structure:
-- Plugin metadata table
CREATE TABLE plugins (
id INTEGER PRIMARY KEY AUTOINCREMENT,
author TEXT NOT NULL,
slug TEXT NOT NULL,
name TEXT NOT NULL,
short_description TEXT,
version TEXT NOT NULL,
download_count INTEGER DEFAULT 0,
activation_count INTEGER DEFAULT 0,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
icons_1x TEXT,
icons_2x TEXT,
banners_high TEXT,
banners_low TEXT,
UNIQUE(author, slug)
);
-- Plugin tags for search
CREATE TABLE plugin_tags (
plugin_id INTEGER,
tag TEXT NOT NULL,
FOREIGN KEY(plugin_id) REFERENCES plugins(id),
PRIMARY KEY(plugin_id, tag)
);
-- Authors table
CREATE TABLE authors (
id INTEGER PRIMARY KEY AUTOINCREMENT,
username TEXT NOT NULL UNIQUE,
email TEXT,
avatar_url TEXT,
bio TEXT,
member_since TIMESTAMP,
website TEXT,
twitter TEXT,
github TEXT,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);-- Users table
CREATE TABLE users (
id INTEGER PRIMARY KEY AUTOINCREMENT,
username TEXT NOT NULL UNIQUE,
email TEXT NOT NULL,
github_username TEXT,
key_id TEXT NOT NULL UNIQUE,
key_hash TEXT NOT NULL,
invite_code_used TEXT NOT NULL,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
last_key_rotation TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
-- Key roll verification table
CREATE TABLE key_roll_verifications (
id INTEGER PRIMARY KEY AUTOINCREMENT,
username TEXT NOT NULL,
verification_token TEXT NOT NULL UNIQUE,
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
expires_at TIMESTAMP NOT NULL,
used BOOLEAN DEFAULT 0,
FOREIGN KEY(username) REFERENCES users(username)
);The system uses Cloudflare KV for download and activation tracking:
- Each download/activation is recorded in KV with a 1-hour expiration
- A scheduled worker processes the queue periodically and updates the database
- Rate limiting is enforced at 5 downloads per hour per IP/plugin combination
- The system maintains consistency through atomic updates via Durable Objects
The following indexes are maintained for optimal performance:
CREATE INDEX idx_plugins_search ON plugins(name, short_description);
CREATE INDEX idx_plugins_downloads ON plugins(download_count DESC);
CREATE INDEX idx_authors_username ON authors(username);
CREATE INDEX idx_users_key_id ON users(key_id);Downloads are tracked in a queue system to ensure accurate counting under high load:
- Records each download in the queue
- Processes downloads in batches
- Updates plugin download counts safely through Durable Objects
- Maintains consistency under concurrent access
The queue system prevents:
- Race conditions during updates
- Lost download counts under high load
- Data inconsistency across zones
To enable the SQLite functionality, your wrangler.toml needs:
[[durable_objects.bindings]]
name = "PLUGIN_REGISTRY"
class_name = "PluginRegistryDO"
[[migrations]]
tag = "v1"
new_sqlite_classes = ["PluginRegistryDO"]This binds the Durable Object to your worker and enables SQLite for the database.
- Backups are stored in the same R2 bucket as the main plugin files, organized by version.
- The system uses a
compareVersionsfunction to ensure proper version ordering. - Version checking and backup creation are integral steps in the plugin upload process.
These features ensure:
- Data integrity by preventing accidental overwrites.
- Version history maintenance for each plugin.
- The ability to rollback to previous versions if needed.
Rate Limiting:
- IP-based rate limiting using Cloudflare KV
- 5 downloads per hour per IP/plugin combination
Chunked Uploads: Large plugin files are handled through chunked uploads. The system:
- Splits files into manageable chunks
- Handles upload interruption/resume
- Validates chunk integrity
- Cleans up incomplete uploads
- Processes chunks using format
{folderName}/chunks_{pluginName}/{pluginName}_chunk_{number}_{total}
When using the API to upload or update plugins, always include the version information and follow the workflow of checking versions and creating backups before finalizing uploads.
Pages can be customized by modifying the generate<type>HTML function in each worker template file. To customize your author page:
-
Edit the
src/authorTemplate.jsfile (or create it if it doesn't exist). -
Implement your custom HTML generation logic. For example:
export default function generateAuthorHTML(authorData) { return ` <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>${authorData.username}'s Plugins</title> <style> /* Add your custom CSS here */ </style> </head> <body> <header> <h1>${authorData.username}</h1> <img src="${authorData.avatar_url}" alt="${authorData.username}'s avatar"> </header> <main> <h2>About</h2> <p>${authorData.bio || 'No bio provided.'}</p> <h2>Plugins</h2> <ul> ${authorData.plugins.map(plugin => ` <li> <h3>${plugin.name}</h3> <p>${plugin.short_description}</p> <a href="/directory/${authorData.username}/${plugin.slug}">View Plugin</a> </li> `).join('')} </ul> </main> </body> </html> `; }
-
Deploy your changes using:
npx wrangler deploy
Remember to clear the cache for your author page after making changes to see the updates immediately. You can bust the cache by hitting the upload plugin button in the Local Addon. In theory this directory should never be out of sync with the latest.
To modify the worker's functionality:
- Edit the
src/index.jsfile. - Deploy your changes using:
npx wrangler deploy
- Keep your API Secret secure. It's used to authenticate requests to your Plugin Publishing System.
- Regularly rotate your API Secret to maintain security.
- Ensure your Cloudflare account has appropriate security measures in place, such as two-factor authentication.
- CSP headers with nonce-based script execution
- HTML sanitization for user-provided content
- URL and resource validation
- Tag and attribute whitelisting
The Plugin Publishing System includes a robust user management system with secure registration, API key management, and GitHub-based verification.
New users can register through the /register endpoint which provides a web interface for:
- Creating a new author account
- Setting up GitHub integration
- Generating initial API credentials
- Requiring invite codes for controlled access
Registation workflow:
- User visits the registration page
- Provides username, email, GitHub username, and invite code
- System validates credentials and invite code
- Generates initial API key
- Downloads configuration file with credentials
The system provides several methods for managing API keys:
- Endpoint:
POST /rotate-key - Requires current API key authentication
- Generates new credentials immediately
- Invalidates previous key
For users who need to recover access, the system provides a secure GitHub-based verification:
-
Initiate Recovery
- Endpoint:
POST /initiate-key-roll - Required fields:
{ "username": "string", "email": "string" } - Returns verification instructions and token
- Endpoint:
-
Create Verification Gist
- User creates a public GitHub gist
- Filename must match pattern:
plugin-publisher-verify-{username}.txt - Content must include provided verification token
-
Complete Verification
- Endpoint:
POST /verify-key-roll - Required fields:
{ "gistUrl": "string", "verificationToken": "string" } - System verifies:
- Gist ownership matches registered GitHub username
- Verification token is valid and not expired
- File content matches expected format
- Returns new API key upon successful verification
- Endpoint:
| Endpoint | Method | Description | Auth Required |
|---|---|---|---|
/register |
GET | Registration page | No |
/create-user |
POST | Create new user account | No (requires invite code) |
/rotate-key |
POST | Standard key rotation | Yes |
/roll-api-key |
GET | Key recovery interface | No |
/initiate-key-roll |
POST | Start recovery process | No |
/verify-key-roll |
POST | Complete recovery process | No |
- Rate Limiting: Prevents brute force attempts
- Invite Code System: Controls user registration with a simple wrangler command to roll it
- GitHub Verification: Links accounts to GitHub users
- Secure Key Generation: Uses cryptographic random values
- Short-lived Verification Tokens: Expires after 1 hour (considering lowering to much lower, like 5 minutes tbd...)
- Atomic Key Updates: Prevents race conditions during key changes
The system generates a configuration file (plugin-publisher-config.txt) containing:
API_KEY=username.keyid
PLUGIN_API_URL=https://pluginpublisher.com
BUCKET_URL=https://assets.pluginpublisher.com
-
API Key Security
- Store API keys securely
- Never commit keys to version control
- Rotate keys regularly
- Use environment variables for key storage
-
Recovery Preparation
- Keep email address up to date
- Maintain accurate GitHub username in profile
- Document recovery process for team members
-
GitHub Integration
- Use a personal GitHub account
- Ensure gists are publicly accessible
- Maintain same GitHub username as registered
Some imagined issues and solutions:
-
Registration Failed
- Verify invite code is valid
- Check if username/email already exists
- Ensure GitHub username is accurate
-
Key Recovery Issues
- Confirm email matches registration
- Verify GitHub username ownership
- Check gist visibility settings
- Ensure verification token hasn't expired
-
API Key Errors
- Verify key format (username.keyid)
- Check if key has been rotated
- Confirm proper environment configuration
For system administrators:
-
User Management
# Update user details curl -X POST https://your-worker.dev/admin-update-user \ -H "Authorization: Bearer YOUR_ADMIN_SECRET" \ -H "Content-Type: application/json" \ -d '{"username":"user","github_username":"ghuser","email":"[email protected]"}'
-
User Deletion
# Remove user and associated data curl -X POST https://your-worker.dev/delete-user \ -H "Authorization: Bearer YOUR_ADMIN_SECRET" \ -H "Content-Type: application/json" \ -d '{"username":"user"}'
- Wrangler not found: Ensure Wrangler is installed globally:
npm install -g wrangler - Deployment fails: Verify you're logged in to your Cloudflare account:
npx wrangler login - R2 bucket creation fails: Confirm R2 is enabled for your Cloudflare account
- API requests fail: Double-check you're using the correct API Secret in your requests
- The setup script assumes you have the necessary permissions to create resources and deploy workers in your Cloudflare account.
- The script does not provide options for cleaning up resources if the setup fails midway.
- Existing resources with the same names may be overwritten without warning.
- Caching is set to a fixed duration (1 hour). Adjust the
max-agevalue in the code if you need different caching behavior.
Contributions to improve the Plugin Publishing System are welcome. Please submit issues and pull requests on the project's GitHub repository.
If you encounter issues or need assistance:
- Check the Troubleshooting section in this README.
- Review the Cloudflare Workers documentation.
- Open an issue on the GitHub repository for this project.
- For Cloudflare-specific problems, contact Cloudflare support.
This project uses Cloudflare Workers and R2, powerful tools for building and deploying serverless applications and object storage. It also leverages Cloudflare's caching capabilities to improve performance and reduce load on the backend.