cloudflare-access-setup

Configures Cloudflare Access with Google OAuth for secure authentication and service protection.

Install this skill

or

29/100

Security score

The cloudflare-access-setup skill was audited on Feb 9, 2026 and we found 23 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 178

Curl to non-GitHub URL

SourceSKILL.md

178	curl -I https://webhook.temet.ai/hooks/health

medium line 143

Webhook reference - potential data exfiltration

SourceSKILL.md

143	5. Create bypass policy for webhook

medium line 154

Webhook reference - potential data exfiltration

SourceSKILL.md

154	- webhook.temet.ai (no auth for GitHub)

medium line 176

Webhook reference - potential data exfiltration

SourceSKILL.md

176	CLI Test (webhook bypass):

low line 178

Webhook reference - potential data exfiltration

SourceSKILL.md

178	curl -I https://webhook.temet.ai/hooks/health

medium line 216

Webhook reference - potential data exfiltration

SourceSKILL.md

216	- Bypass policy configured for webhook

medium line 268

Webhook reference - potential data exfiltration

SourceSKILL.md

268	- [ ] Do not delete webhook bypass policy (breaks GitHub deployments)

medium line 9

Access to .env file

SourceSKILL.md

9	login remotely". Works with cf-access-setup.sh, .env OAuth credentials, and Cloudflare

low line 30

Access to .env file

SourceSKILL.md

30	# 2. If OAuth credentials missing, configure .env first (see Section 3.2)

medium line 78

Access to .env file

SourceSKILL.md

78	1. Verifies Prerequisites - Checks OAuth credentials exist in .env

low line 93

Access to .env file

SourceSKILL.md

93	cd /home/dawiddutoit/projects/network && source .env && echo "Checking OAuth credentials..."

medium line 123

Access to .env file

SourceSKILL.md

123	Step 4: Update .env

medium line 225

Access to .env file

SourceSKILL.md

225	- "Missing GOOGLE_OAUTH_CLIENT_ID" -> Configure .env first

medium line 246

Access to .env file

SourceSKILL.md

246	Environment Variables (in .env):

medium line 261

Access to .env file

SourceSKILL.md

261	- Read (for checking .env and script output)

low line 36

External URL reference

SourceSKILL.md

36	After setup, test by visiting https://pihole.temet.ai - you should see Google login.

low line 107

External URL reference

SourceSKILL.md

107	- URL: https://console.cloud.google.com/apis/credentials

low line 120

External URL reference

SourceSKILL.md

120	- Authorized redirect URI: `https://temetai.cloudflareaccess.com/cdn-cgi/access/callback`

low line 170

External URL reference

SourceSKILL.md

170	2. Navigate to: https://pihole.temet.ai

low line 178

External URL reference

SourceSKILL.md

178	curl -I https://webhook.temet.ai/hooks/health

low line 189

External URL reference

SourceSKILL.md

189	https://one.dash.cloudflare.com -> Logs -> Access

low line 199

External URL reference

SourceSKILL.md

199	echo "Access Logs: https://one.dash.cloudflare.com"

low line 277

External URL reference

SourceSKILL.md

277	- OAuth redirect URI must be exactly: `https://temetai.cloudflareaccess.com/cdn-cgi/access/callback`

Scanned on Feb 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categoryoperations

UpdatedMay 21, 2026

openclaw api it-operations devops-sre security-engineer operations development

majiayu000/claude-skill-registry