官网
https://workers.cloudflare.com/
登陆的时候有时会自动定向到CDN的控制台,这个时候可以返回官网然后点Log in,就会定向到worker的控制台,我有一次把注册当成了登陆输入了半天
简要概括
用一句不严谨的话来说就是
cloudflare workers 一个可以让你免费在云上运行一个代理脚本
1.脚本可以使用 javascript 编写, 并且使用的API跟浏览器Service Worker API类似但有一些细节上的扩充,浏览器Service Worker API是可以运行在本地浏览器中的前置代理,而cloudflare workers不在你的浏览器中运行,但是应该可以跟浏览器Service Worker API配合使用
2.简单使用不需要自己注册域名,会分配一个cloudflare的子域名给你,而每一个worker项又在你的子域名上再派生一个子域名,所以只要添加了worker项,立即就可以根据分配的域名访问,完整自动分配的域名类似于 worker项的名字.你起的名字.cloudflare的域
3.只要是cloudflare任播网络的IP节点,都可以通过URL来访问你的worker项,也就是说ip很多,随便哪个都可以用来访问你的worker项
4.(我也一知半解)cloudflare workers在边缘网络运行,或者说你手动指向位于其他国家的任播网络ip节点来访问你的worker,那么worker就会就近运行进行DNS解析之类的,那么源站看到的请求ip就是该国家的ip(话说我也不太确定这句话对不对),默认国内解析出的ip反正都不位于国内
5.只要源站不屏蔽任播网络的节点,理论上你可以用它访问任何网站
6.貌似应该支持视频流,API中有Stream这个东西
一些问题
1.不怕你无法访问worker,就怕源站屏蔽任播网络的节点,导致worker去访问源站出现404或者被判为爬虫,一直进行人机验证
2.单纯不依赖其他代理软件,以纯worker的形式代理一个网站,需要将响应的html修改,把网站的脚本和图片之类的链接修改为你的worker的域名,除非目标网站全部采用相对链接,所以网上找到的worker模板有的只是单纯代理一个域名,网站图片就可能无法加载
参考
可以在浏览器搜索栏中输入
cloudflare workers
看看它自动提示什么
也可以参考博客
https://blog.superpotato.dev/2019/10/02/cloudflare-break-the-wall/
模板
我个人只知道两个模板,一个简单些(需要自己设置),一个复杂些(但是可以粘贴就用,支持好多网站)
模板一
项目链接
https://github.com/xiaoyang-liu-cs/booster.js
只要将下面的模板粘贴到worker中保存部署,就可以立刻访问URL查看效果,但是网站图片无法加载
我也有录制的简单讲解视频
https://www.bilibili.com/video/BV19K4y1m7oA
注释是我加的
//主要配置这个对象 const config = { basic: { //源站的url upstream: 'https://en.wikipedia.org/', //对于移动端的源站url mobileRedirect: 'https://en.m.wikipedia.org/', }, //屏蔽的国家,默认有CN被我删了,否则会返回错误 firewall: { blockedRegion: ['KP', 'SY', 'PK', 'CU'], blockedIPAddress: [], scrapeShield: true, }, //不同地区源站url的特化 routes: { TW: 'https://zh.wikipedia.org/', HK: 'https://zh.wikipedia.org/', FR: 'https://fr.wikipedia.org/', }, //这些我也不知道是啥 optimization: { cacheEverything: false, cacheTtl: 5, mirage: true, polish: 'off', minify: { javascript: true, css: true, html: true, }, }, }; //下面的都是共用的模板 async function isMobile(userAgent) { const agents = ['Android', 'iPhone', 'SymbianOS', 'Windows Phone', 'iPad', 'iPod']; return agents.any((agent) => userAgent.indexOf(agent) > 0); } async function fetchAndApply(request) { const region = request.headers.get('cf-ipcountry') || ''; const ipAddress = request.headers.get('cf-connecting-ip') || ''; const userAgent = request.headers.get('user-agent') || ''; //根据屏蔽的国家返回错误 if (region !== '' && config.firewall.blockedRegion.includes(region.toUpperCase())) { return new Response( 'Access denied: booster.js is not available in your region.', { status: 403, }, ); } if (ipAddress !== '' && config.firewall.blockedIPAddress.includes(ipAddress)) { return new Response( 'Access denied: Your IP address is blocked by booster.js.', { status: 403, }, ); } const requestURL = new URL(request.url); let upstreamURL = null; //构造请求的url if (userAgent && isMobile(userAgent) === true) { upstreamURL = new URL(config.basic.mobileRedirect); } else if (region && region.toUpperCase() in config.routes) { upstreamURL = new URL(config.routes[region.toUpperCase()]); } else { upstreamURL = new URL(config.basic.upstream); } //假如源站url有路径就都加一起 requestURL.protocol = upstreamURL.protocol; requestURL.host = upstreamURL.host; requestURL.pathname = upstreamURL.pathname + requestURL.pathname; //有请求主体的跟没有请求主体的 let newRequest; if (request.method === 'GET' || request.method === 'HEAD') { newRequest = new Request(requestURL, { cf: { cacheEverything: config.optimization.cacheEverything, cacheTtl: config.optimization.cacheTtl, mirage: config.optimization.mirage, polish: config.optimization.polish, minify: config.optimization.minify, scrapeShield: config.firewall.scrapeShield, }, method: request.method, headers: request.headers, }); } else { const requestBody = await request.text(); newRequest = new Request(requestURL, { cf: { cacheEverything: config.optimization.cacheEverything, cacheTtl: config.optimization.cacheTtl, mirage: config.optimization.mirage, polish: config.optimization.polish, minify: config.optimization.minify, scrapeShield: config.firewall.scrapeShield, }, method: request.method, headers: request.headers, body: requestBody, }); } const fetchedResponse = await fetch(newRequest); //这个貌似是处理重定向 const modifiedResponseHeaders = new Headers(fetchedResponse.headers); if (modifiedResponseHeaders.has('x-pjax-url')) { const pjaxURL = new URL(modifiedResponseHeaders.get('x-pjax-url')); pjaxURL.protocol = requestURL.protocol; pjaxURL.host = requestURL.host; pjaxURL.pathname = pjaxURL.path.replace(requestURL.pathname, '/'); modifiedResponseHeaders.set( 'x-pjax-url', pjaxURL.href, ); } return new Response( fetchedResponse.body, { headers: modifiedResponseHeaders, status: fetchedResponse.status, statusText: fetchedResponse.statusText, }, ); } // eslint-disable-next-line no-restricted-globals addEventListener('fetch', (event) => { event.respondWith(fetchAndApply(event.request)); });
模板二
项目链接
https://github.com/EtherDream/jsproxy/tree/master/cf-worker
同样的把下面的代码无脑粘贴就能看效果,这个强大很多,默认从'https://etherdream.github.io/jsproxy'加载配置文件
这个注释是原本就有的
'use strict' /** * static files (404.html, sw.js, conf.js) */ const ASSET_URL = 'https://etherdream.github.io/jsproxy' const JS_VER = 10 const MAX_RETRY = 1 /** @type {RequestInit} */ const PREFLIGHT_INIT = { status: 204, headers: new Headers({ 'access-control-allow-origin': '*', 'access-control-allow-methods': 'GET,POST,PUT,PATCH,TRACE,DELETE,HEAD,OPTIONS', 'access-control-max-age': '1728000', }), } /** * @param {any} body * @param {number} status * @param {Object<string, string>} headers */ function makeRes(body, status = 200, headers = {}) { headers['--ver'] = JS_VER headers['access-control-allow-origin'] = '*' return new Response(body, {status, headers}) } /** * @param {string} urlStr */ function newUrl(urlStr) { try { return new URL(urlStr) } catch (err) { return null } } addEventListener('fetch', e => { const ret = fetchHandler(e) .catch(err => makeRes('cfworker error:\n' + err.stack, 502)) e.respondWith(ret) }) /** * @param {FetchEvent} e */ async function fetchHandler(e) { const req = e.request const urlStr = req.url const urlObj = new URL(urlStr) const path = urlObj.href.substr(urlObj.origin.length) if (urlObj.protocol === 'http:') { urlObj.protocol = 'https:' return makeRes('', 301, { 'strict-transport-security': 'max-age=99999999; includeSubDomains; preload', 'location': urlObj.href, }) } if (path.startsWith('/http/')) { return httpHandler(req, path.substr(6)) } switch (path) { case '/http': return makeRes('请更新 cfworker 到最新版本!') case '/ws': return makeRes('not support', 400) case '/works': return makeRes('it works') default: // static files return fetch(ASSET_URL + path) } } /** * @param {Request} req * @param {string} pathname */ function httpHandler(req, pathname) { const reqHdrRaw = req.headers if (reqHdrRaw.has('x-jsproxy')) { return Response.error() } // preflight if (req.method === 'OPTIONS' && reqHdrRaw.has('access-control-request-headers') ) { return new Response(null, PREFLIGHT_INIT) } let acehOld = false let rawSvr = '' let rawLen = '' let rawEtag = '' const reqHdrNew = new Headers(reqHdrRaw) reqHdrNew.set('x-jsproxy', '1') // 此处逻辑和 http-dec-req-hdr.lua 大致相同 // https://github.com/EtherDream/jsproxy/blob/master/lua/http-dec-req-hdr.lua const refer = reqHdrNew.get('referer') const query = refer.substr(refer.indexOf('?') + 1) if (!query) { return makeRes('missing params', 403) } const param = new URLSearchParams(query) for (const [k, v] of Object.entries(param)) { if (k.substr(0, 2) === '--') { // 系统信息 switch (k.substr(2)) { case 'aceh': acehOld = true break case 'raw-info': [rawSvr, rawLen, rawEtag] = v.split('|') break } } else { // 还原 HTTP 请求头 if (v) { reqHdrNew.set(k, v) } else { reqHdrNew.delete(k) } } } if (!param.has('referer')) { reqHdrNew.delete('referer') } // cfworker 会把路径中的 `//` 合并成 `/` const urlStr = pathname.replace(/^(https?):\/+/, '$1://') const urlObj = newUrl(urlStr) if (!urlObj) { return makeRes('invalid proxy url: ' + urlStr, 403) } /** @type {RequestInit} */ const reqInit = { method: req.method, headers: reqHdrNew, redirect: 'manual', } if (req.method === 'POST') { reqInit.body = req.body } return proxy(urlObj, reqInit, acehOld, rawLen, 0) } /** * * @param {URL} urlObj * @param {RequestInit} reqInit * @param {number} retryTimes */ async function proxy(urlObj, reqInit, acehOld, rawLen, retryTimes) { const res = await fetch(urlObj.href, reqInit) const resHdrOld = res.headers const resHdrNew = new Headers(resHdrOld) let expose = '*' for (const [k, v] of resHdrOld.entries()) { if (k === 'access-control-allow-origin' || k === 'access-control-expose-headers' || k === 'location' || k === 'set-cookie' ) { const x = '--' + k resHdrNew.set(x, v) if (acehOld) { expose = expose + ',' + x } resHdrNew.delete(k) } else if (acehOld && k !== 'cache-control' && k !== 'content-language' && k !== 'content-type' && k !== 'expires' && k !== 'last-modified' && k !== 'pragma' ) { expose = expose + ',' + k } } if (acehOld) { expose = expose + ',--s' resHdrNew.set('--t', '1') } // verify if (rawLen) { const newLen = resHdrOld.get('content-length') || '' const badLen = (rawLen !== newLen) if (badLen) { if (retryTimes < MAX_RETRY) { urlObj = await parseYtVideoRedir(urlObj, newLen, res) if (urlObj) { return proxy(urlObj, reqInit, acehOld, rawLen, retryTimes + 1) } } return makeRes(res.body, 400, { '--error': `bad len: ${newLen}, except: ${rawLen}`, 'access-control-expose-headers': '--error', }) } if (retryTimes > 1) { resHdrNew.set('--retry', retryTimes) } } let status = res.status resHdrNew.set('access-control-expose-headers', expose) resHdrNew.set('access-control-allow-origin', '*') resHdrNew.set('--s', status) resHdrNew.set('--ver', JS_VER) resHdrNew.delete('content-security-policy') resHdrNew.delete('content-security-policy-report-only') resHdrNew.delete('clear-site-data') if (status === 301 || status === 302 || status === 303 || status === 307 || status === 308 ) { status = status + 10 } return new Response(res.body, { status, headers: resHdrNew, }) } /** * @param {URL} urlObj */ function isYtUrl(urlObj) { return ( urlObj.host.endsWith('.googlevideo.com') && urlObj.pathname.startsWith('/videoplayback') ) } /** * @param {URL} urlObj * @param {number} newLen * @param {Response} res */ async function parseYtVideoRedir(urlObj, newLen, res) { if (newLen > 2000) { return null } if (!isYtUrl(urlObj)) { return null } try { const data = await res.text() urlObj = new URL(data) } catch (err) { return null } if (!isYtUrl(urlObj)) { return null } return urlObj }