d-bis/proxmox
4
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
cb47cce074da46f3ce5910b752d435c4a3ee87d0
proxmox/docs/04-configuration/CLOUDFLARE_CREDENTIALS_UPDATED.md

104 lines
2.9 KiB
Markdown
Raw Normal View History

Complete markdown files cleanup and organization - Organized 252 files across project - Root directory: 187 → 2 files (98.9% reduction) - Moved configuration guides to docs/04-configuration/ - Moved troubleshooting guides to docs/09-troubleshooting/ - Moved quick start guides to docs/01-getting-started/ - Moved reports to reports/ directory - Archived temporary files - Generated comprehensive reports and documentation - Created maintenance scripts and guides All files organized according to established standards.
2026-01-06 01:46:25 -08:00
# Cloudflare Credentials Updated
**Date:** 2025-01-20
**Status:** ✅ Credentials Updated
**Purpose:** Document Cloudflare credentials update
---
## Summary
Cloudflare credentials have been updated in the `.env` file with the provided values.
---
## Updated Credentials
### Global API Key
- **Variable:** `CLOUDFLARE_API_KEY`
- **Value:** `65d8f07ebb3f0454fdc4e854b6ada13fba0f0`
- **Status:** ✅ Updated in `.env`
- **Note:** This is the legacy API key method. Consider migrating to API Token for better security.
### Origin CA Key
- **Variable:** `CLOUDFLARE_ORIGIN_CA_KEY`
- **Value:** `v1.0-e7109fbbe03bfeb201570275-231a7ddf5c59799f68b0a0a73a3e17d72177325bb60e4b2c295896f9fe9c296dc32a5881a7d23859934d508b4f41f1d86408e103012b44b0b057bb857b0168554be4dc215923c043bd`
- **Status:** ✅ Updated in `.env`
- **Purpose:** Used for Cloudflare Origin CA certificates
---
## Current Configuration
The `.env` file now contains:
```bash
CLOUDFLARE_API_KEY="65d8f07ebb3f0454fdc4e854b6ada13fba0f0"
CLOUDFLARE_ORIGIN_CA_KEY="v1.0-e7109fbbe03bfeb201570275-231a7ddf5c59799f68b0a0a73a3e17d72177325bb60e4b2c295896f9fe9c296dc32a5881a7d23859934d508b4f41f1d86408e103012b44b0b057bb857b0168554be4dc215923c043bd"
```
---
## Security Recommendations
### 1. Migrate to API Token (Recommended)
While the Global API Key is functional, Cloudflare recommends using API Tokens for better security:
**Benefits of API Tokens:**
- ✅ More secure (limited scopes)
- ✅ Can be revoked individually
- ✅ Better audit trail
- ✅ Recommended by Cloudflare
**Migration Steps:**
1. Create API Token at: https://dash.cloudflare.com/profile/api-tokens
2. Use "Edit zone DNS" template OR create custom token with:
- **Zone** → **DNS****Edit**
- **Account** → **Cloudflare Tunnel****Edit**
3. Add to `.env`: `CLOUDFLARE_API_TOKEN="your-token"`
4. Update scripts to use `CLOUDFLARE_API_TOKEN`
5. Keep `CLOUDFLARE_API_KEY` temporarily for backwards compatibility
6. Remove `CLOUDFLARE_API_KEY` after verification
**See:** `SECURE_SECRETS_MIGRATION_GUIDE.md` (Phase 4)
---
## Verification
### Verify Credentials Are Set
```bash
# Check .env file
grep -E "CLOUDFLARE_API_KEY|CLOUDFLARE_ORIGIN_CA_KEY" .env
# Test API Key (if needed)
curl -X GET "https://api.cloudflare.com/client/v4/user" \
-H "X-Auth-Email: your-email@example.com" \
-H "X-Auth-Key: 65d8f07ebb3f0454fdc4e854b6ada13fba0f0" \
-H "Content-Type: application/json"
```
---
## Related Documentation
- [Secure Secrets Migration Guide](./SECURE_SECRETS_MIGRATION_GUIDE.md)
- [Required Secrets Inventory](./REQUIRED_SECRETS_INVENTORY.md)
- [Cloudflare API Setup](../CLOUDFLARE_API_SETUP.md)
---
## Next Steps
1. ✅ Credentials updated in `.env`
2. ⏳ Consider migrating to API Token (recommended)
3. ⏳ Test API operations with updated credentials
4. ⏳ Update scripts if needed
---
**Last Updated:** 2025-01-20
**Status:** ✅ Credentials Updated
**Next Review:** After API Token migration (if applicable)
Reference in New Issue Copy Permalink