Building Cost-Effective Full-Stack Applications with Cloudflare R2 and D1#

Cloudflare’s R2 object storage and D1 database enable building complete serverless applications at a fraction of traditional cloud costs. R2 provides S3-compatible storage with zero egress fees, while D1 offers globally distributed SQLite databases. Combined with Workers, you get a complete full-stack platform optimized for performance and cost.

Table of Contents#

Why R2 and D1?#

Cost Comparison#

1
// Monthly costs for 1TB storage + 10TB egress
2
const costComparison = {
3
  aws: {
4
    s3Storage: 25,        // $0.025/GB
5
    egress: 900,          // $0.09/GB
6
    rds: 120,             // t3.micro
7
    lambda: 50,           // 10M requests
8
    total: 1095
9
  },
10

11
  azure: {
12
    blobStorage: 24,      // Hot tier
13
    egress: 870,          // $0.087/GB
14
    sqlDatabase: 130,     // Basic tier
15
    functions: 45,        // 10M requests
16
    total: 1069
17
  },
18

19
  cloudflare: {
20
    r2Storage: 15,        // $0.015/GB
21
    egress: 0,            // FREE!
22
    d1Database: 5,        // 25M row reads
23
    workers: 5,           // 10M requests
24
    total: 25             // 97.7% savings!
25
  }
26
};

Performance Benefits#

Global Distribution: R2 and D1 replicate across Cloudflare’s network
Edge Computing: Logic runs in 330+ data centers
Zero Cold Starts: V8 Isolates eliminate startup latency
Consistent Performance: Sub-10ms database queries globally

Architecture Overview#

1
graph TB
2
    subgraph "Client Tier"
3
        WEB[Web App]
4
        MOBILE[Mobile App]
5
        API[API Client]
6
    end
7

8
    subgraph "Edge Computing"
9
        CF[Cloudflare CDN]
10
        WORKER[Workers]
11
        PAGES[Pages]
12
    end
13

14
    subgraph "Data Layer"
15
        D1[(D1 Database)]
16
        R2[R2 Storage]
17
        KV[Workers KV]
18
        DO[Durable Objects]
19
    end
20

21
    subgraph "External Services"
22
        AUTH[Auth Provider]
23
        PAYMENT[Payment Gateway]
24
        EMAIL[Email Service]
25
    end
26

27
    WEB --> CF
28
    MOBILE --> CF
29
    API --> CF
30

31
    CF --> PAGES
32
    CF --> WORKER
33

34
    WORKER --> D1
35
    WORKER --> R2
36
    WORKER --> KV
37
    WORKER --> DO
38

39
    WORKER --> AUTH
40
    WORKER --> PAYMENT
41
    WORKER --> EMAIL
42

43
    PAGES --> WORKER

Project Setup#

1. Initialize Full-Stack Project#

1
# Create project structure
2
mkdir cloudflare-fullstack
3
cd cloudflare-fullstack
4

5
# Initialize frontend (using Astro)
6
npm create astro@latest frontend
7
# Choose "Minimal" template
8
# Select TypeScript
9

10
# Initialize API (Workers)
11
cd ..
12
npm create cloudflare@latest api
13
# Choose "Hello World" Worker
14
# Select TypeScript
15

16
# Project structure
17
project/
18
├── frontend/          # Astro frontend
19
├── api/              # Workers API
20
├── shared/           # Shared types and utils
21
└── infrastructure/   # Wrangler configs

2. Shared Types Definition#

1
export interface User {
2
  id: string;
3
  email: string;
4
  name: string;
5
  avatar?: string;
6
  createdAt: string;
7
  updatedAt: string;
8
}
9

10
export interface Post {
11
  id: string;
12
  userId: string;
13
  title: string;
14
  content: string;
15
  excerpt: string;
16
  slug: string;
17
  imageUrl?: string;
18
  tags: string[];
19
  published: boolean;
20
  views: number;
21
  createdAt: string;
22
  updatedAt: string;
23
}
24

25
export interface MediaFile {
26
  id: string;
27
  userId: string;
28
  filename: string;
29
  originalName: string;
30
  mimeType: string;
31
  size: number;
32
  r2Key: string;
33
  publicUrl: string;
34
  metadata?: Record<string, any>;
35
  createdAt: string;
36
}
37

38
export interface ApiResponse<T = any> {
39
  success: boolean;
40
  data?: T;
41
  error?: string;
42
  message?: string;
43
}
44

45
// Request/Response types
46
export interface CreatePostRequest {
47
  title: string;
48
  content: string;
49
  excerpt?: string;
50
  tags?: string[];
51
  published?: boolean;
52
  imageFile?: File;
53
}
54

55
export interface UpdatePostRequest extends Partial<CreatePostRequest> {
56
  id: string;
57
}
58

59
export interface PaginationParams {
60
  page?: number;
61
  limit?: number;
62
  search?: string;
63
  tags?: string[];
64
  published?: boolean;
65
}
66

67
export interface PaginatedResponse<T> {
68
  data: T[];
69
  pagination: {
70
    page: number;
71
    limit: number;
72
    total: number;
73
    totalPages: number;
74
    hasNext: boolean;
75
    hasPrev: boolean;
76
  };
77
}

Database Setup with D1#

1. Database Schema#

1
-- api/database/schema.sql
2
-- Users table
3
CREATE TABLE IF NOT EXISTS users (
4
  id TEXT PRIMARY KEY,
5
  email TEXT UNIQUE NOT NULL,
6
  name TEXT NOT NULL,
7
  avatar TEXT,
8
  password_hash TEXT NOT NULL,
9
  email_verified BOOLEAN DEFAULT FALSE,
10
  created_at DATETIME DEFAULT CURRENT_TIMESTAMP,
11
  updated_at DATETIME DEFAULT CURRENT_TIMESTAMP
12
);
13

14
-- Posts table
15
CREATE TABLE IF NOT EXISTS posts (
16
  id TEXT PRIMARY KEY,
17
  user_id TEXT NOT NULL,
18
  title TEXT NOT NULL,
19
  content TEXT NOT NULL,
20
  excerpt TEXT,
21
  slug TEXT UNIQUE NOT NULL,
22
  image_url TEXT,
23
  tags TEXT, -- JSON array as string
24
  published BOOLEAN DEFAULT FALSE,
25
  views INTEGER DEFAULT 0,
26
  created_at DATETIME DEFAULT CURRENT_TIMESTAMP,
27
  updated_at DATETIME DEFAULT CURRENT_TIMESTAMP,
28
  FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
29
);
30

31
-- Media files table
32
CREATE TABLE IF NOT EXISTS media_files (
33
  id TEXT PRIMARY KEY,
34
  user_id TEXT NOT NULL,
35
  filename TEXT NOT NULL,
36
  original_name TEXT NOT NULL,
37
  mime_type TEXT NOT NULL,
38
  size INTEGER NOT NULL,
39
  r2_key TEXT UNIQUE NOT NULL,
40
  public_url TEXT NOT NULL,
41
  metadata TEXT, -- JSON as string
42
  created_at DATETIME DEFAULT CURRENT_TIMESTAMP,
43
  FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
44
);
45

46
-- Sessions table (for authentication)
47
CREATE TABLE IF NOT EXISTS sessions (
48
  id TEXT PRIMARY KEY,
49
  user_id TEXT NOT NULL,
50
  expires_at DATETIME NOT NULL,
51
  created_at DATETIME DEFAULT CURRENT_TIMESTAMP,
52
  FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
53
);
54

55
-- Comments table (optional)
56
CREATE TABLE IF NOT EXISTS comments (
57
  id TEXT PRIMARY KEY,
58
  post_id TEXT NOT NULL,
59
  user_id TEXT NOT NULL,
60
  content TEXT NOT NULL,
61
  parent_id TEXT, -- For threaded comments
62
  created_at DATETIME DEFAULT CURRENT_TIMESTAMP,
63
  FOREIGN KEY (post_id) REFERENCES posts(id) ON DELETE CASCADE,
64
  FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
65
  FOREIGN KEY (parent_id) REFERENCES comments(id) ON DELETE CASCADE
66
);
67

68
-- Indexes for performance
69
CREATE INDEX IF NOT EXISTS idx_posts_user_id ON posts(user_id);
70
CREATE INDEX IF NOT EXISTS idx_posts_slug ON posts(slug);
71
CREATE INDEX IF NOT EXISTS idx_posts_published ON posts(published);
72
CREATE INDEX IF NOT EXISTS idx_posts_created_at ON posts(created_at DESC);
73
CREATE INDEX IF NOT EXISTS idx_media_user_id ON media_files(user_id);
74
CREATE INDEX IF NOT EXISTS idx_media_r2_key ON media_files(r2_key);
75
CREATE INDEX IF NOT EXISTS idx_sessions_user_id ON sessions(user_id);
76
CREATE INDEX IF NOT EXISTS idx_sessions_expires ON sessions(expires_at);
77
CREATE INDEX IF NOT EXISTS idx_comments_post_id ON comments(post_id);
78
CREATE INDEX IF NOT EXISTS idx_comments_parent_id ON comments(parent_id);
79

80
-- Initial data (optional)
81
INSERT OR IGNORE INTO users (id, email, name, password_hash, email_verified)
82
VALUES
83
  ('user_1', 'demo@example.com', 'Demo User', 'hashed_password_here', TRUE),
84
  ('user_2', 'admin@example.com', 'Admin User', 'hashed_password_here', TRUE);

2. Database Configuration#

1
# Create D1 database
2
wrangler d1 create blog-database
3

4
# Apply schema
5
wrangler d1 execute blog-database --file=database/schema.sql
6

7
# For local development
8
wrangler d1 execute blog-database --local --file=database/schema.sql

3. Database Models#

1
export abstract class BaseModel {
2
  constructor(protected db: D1Database) {}
3

4
  protected generateId(): string {
5
    return `${Date.now().toString(36)}_${Math.random().toString(36).substr(2, 9)}`;
6
  }
7

8
  protected now(): string {
9
    return new Date().toISOString();
10
  }
11
}
12

13
// api/src/models/user.ts
14
import { BaseModel } from './base';
15
import type { User } from '../../../shared/types';
16
import bcrypt from 'bcryptjs';
17

18
export class UserModel extends BaseModel {
19
  async create(userData: {
20
    email: string;
21
    name: string;
22
    password: string;
23
    avatar?: string;
24
  }): Promise<User> {
25
    const id = this.generateId();
26
    const passwordHash = await bcrypt.hash(userData.password, 12);
27
    const now = this.now();
28

29
    await this.db
30
      .prepare(`
31
        INSERT INTO users (id, email, name, avatar, password_hash, created_at, updated_at)
32
        VALUES (?, ?, ?, ?, ?, ?, ?)
33
      `)
34
      .bind(
35
        id,
36
        userData.email,
37
        userData.name,
38
        userData.avatar || null,
39
        passwordHash,
40
        now,
41
        now
42
      )
43
      .run();
44

45
    return this.findById(id);
46
  }
47

48
  async findById(id: string): Promise<User | null> {
49
    const result = await this.db
50
      .prepare('SELECT id, email, name, avatar, created_at, updated_at FROM users WHERE id = ?')
51
      .bind(id)
52
      .first();
53

54
    if (!result) return null;
55

56
    return {
57
      id: result.id as string,
58
      email: result.email as string,
59
      name: result.name as string,
60
      avatar: result.avatar as string,
61
      createdAt: result.created_at as string,
62
      updatedAt: result.updated_at as string,
63
    };
64
  }
65

66
  async findByEmail(email: string): Promise<User | null> {
67
    const result = await this.db
68
      .prepare('SELECT id, email, name, avatar, created_at, updated_at FROM users WHERE email = ?')
69
      .bind(email)
70
      .first();
71

72
    if (!result) return null;
73

74
    return {
75
      id: result.id as string,
76
      email: result.email as string,
77
      name: result.name as string,
78
      avatar: result.avatar as string,
79
      createdAt: result.created_at as string,
80
      updatedAt: result.updated_at as string,
81
    };
82
  }
83

84
  async validatePassword(email: string, password: string): Promise<User | null> {
85
    const result = await this.db
86
      .prepare('SELECT * FROM users WHERE email = ?')
87
      .bind(email)
88
      .first();
89

90
    if (!result) return null;
91

92
    const isValid = await bcrypt.compare(password, result.password_hash as string);
93
    if (!isValid) return null;
94

95
    return {
96
      id: result.id as string,
97
      email: result.email as string,
98
      name: result.name as string,
99
      avatar: result.avatar as string,
100
      createdAt: result.created_at as string,
101
      updatedAt: result.updated_at as string,
102
    };
103
  }
104

105
  async update(id: string, updates: Partial<User>): Promise<User> {
106
    const setClause = Object.keys(updates)
107
      .filter(key => key !== 'id' && key !== 'createdAt')
108
      .map(key => `${this.camelToSnake(key)} = ?`)
109
      .join(', ');
110

111
    const values = Object.entries(updates)
112
      .filter(([key]) => key !== 'id' && key !== 'createdAt')
113
      .map(([, value]) => value);
114

115
    values.push(this.now(), id);
116

117
    await this.db
118
      .prepare(`UPDATE users SET ${setClause}, updated_at = ? WHERE id = ?`)
119
      .bind(...values)
120
      .run();
121

122
    return this.findById(id);
123
  }
124

125
  private camelToSnake(str: string): string {
126
    return str.replace(/[A-Z]/g, letter => `_${letter.toLowerCase()}`);
127
  }
128
}
129

130
// api/src/models/post.ts
131
import { BaseModel } from './base';
132
import type { Post, PaginatedResponse, PaginationParams } from '../../../shared/types';
133

134
export class PostModel extends BaseModel {
135
  async create(postData: {
136
    userId: string;
137
    title: string;
138
    content: string;
139
    excerpt?: string;
140
    slug: string;
141
    imageUrl?: string;
142
    tags?: string[];
143
    published?: boolean;
144
  }): Promise<Post> {
145
    const id = this.generateId();
146
    const now = this.now();
147

148
    await this.db
149
      .prepare(`
150
        INSERT INTO posts (id, user_id, title, content, excerpt, slug, image_url, tags, published, created_at, updated_at)
151
        VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
152
      `)
153
      .bind(
154
        id,
155
        postData.userId,
156
        postData.title,
157
        postData.content,
158
        postData.excerpt || null,
159
        postData.slug,
160
        postData.imageUrl || null,
161
        JSON.stringify(postData.tags || []),
162
        postData.published || false,
163
        now,
164
        now
165
      )
166
      .run();
167

168
    return this.findById(id);
169
  }
170

171
  async findById(id: string): Promise<Post | null> {
172
    const result = await this.db
173
      .prepare('SELECT * FROM posts WHERE id = ?')
174
      .bind(id)
175
      .first();
176

177
    if (!result) return null;
178

179
    return this.mapToPost(result);
180
  }
181

182
  async findBySlug(slug: string): Promise<Post | null> {
183
    const result = await this.db
184
      .prepare('SELECT * FROM posts WHERE slug = ?')
185
      .bind(slug)
186
      .first();
187

188
    if (!result) return null;
189

190
    // Increment view count
191
    await this.db
192
      .prepare('UPDATE posts SET views = views + 1 WHERE id = ?')
193
      .bind(result.id)
194
      .run();
195

196
    return this.mapToPost(result);
197
  }
198

199
  async findMany(params: PaginationParams = {}): Promise<PaginatedResponse<Post>> {
200
    const {
201
      page = 1,
202
      limit = 10,
203
      search,
204
      tags,
205
      published
206
    } = params;
207

208
    const offset = (page - 1) * limit;
209
    let whereClause = '';
210
    let bindings: any[] = [];
211

212
    // Build WHERE clause
213
    const conditions = [];
214

215
    if (published !== undefined) {
216
      conditions.push('published = ?');
217
      bindings.push(published);
218
    }
219

220
    if (search) {
221
      conditions.push('(title LIKE ? OR content LIKE ?)');
222
      bindings.push(`%${search}%`, `%${search}%`);
223
    }
224

225
    if (tags && tags.length > 0) {
226
      const tagConditions = tags.map(() => 'tags LIKE ?').join(' OR ');
227
      conditions.push(`(${tagConditions})`);
228
      tags.forEach(tag => bindings.push(`%"${tag}"%`));
229
    }
230

231
    if (conditions.length > 0) {
232
      whereClause = 'WHERE ' + conditions.join(' AND ');
233
    }
234

235
    // Get total count
236
    const countResult = await this.db
237
      .prepare(`SELECT COUNT(*) as count FROM posts ${whereClause}`)
238
      .bind(...bindings)
239
      .first();
240

241
    const total = countResult?.count as number || 0;
242
    const totalPages = Math.ceil(total / limit);
243

244
    // Get paginated results
245
    const results = await this.db
246
      .prepare(`
247
        SELECT * FROM posts
248
        ${whereClause}
249
        ORDER BY created_at DESC
250
        LIMIT ? OFFSET ?
251
      `)
252
      .bind(...bindings, limit, offset)
253
      .all();
254

255
    const posts = results.results?.map(row => this.mapToPost(row)) || [];
256

257
    return {
258
      data: posts,
259
      pagination: {
260
        page,
261
        limit,
262
        total,
263
        totalPages,
264
        hasNext: page < totalPages,
265
        hasPrev: page > 1
266
      }
267
    };
268
  }
269

270
  async findByUserId(userId: string, params: PaginationParams = {}): Promise<PaginatedResponse<Post>> {
271
    return this.findMany({
272
      ...params,
273
      // Add userId filter to the WHERE clause
274
    });
275
  }
276

277
  async update(id: string, updates: Partial<Post>): Promise<Post> {
278
    const allowedFields = ['title', 'content', 'excerpt', 'slug', 'imageUrl', 'tags', 'published'];
279
    const setClause = Object.keys(updates)
280
      .filter(key => allowedFields.includes(key))
281
      .map(key => `${this.camelToSnake(key)} = ?`)
282
      .join(', ');
283

284
    const values = Object.entries(updates)
285
      .filter(([key]) => allowedFields.includes(key))
286
      .map(([key, value]) => {
287
        if (key === 'tags') {
288
          return JSON.stringify(value);
289
        }
290
        return value;
291
      });
292

293
    values.push(this.now(), id);
294

295
    await this.db
296
      .prepare(`UPDATE posts SET ${setClause}, updated_at = ? WHERE id = ?`)
297
      .bind(...values)
298
      .run();
299

300
    return this.findById(id);
301
  }
302

303
  async delete(id: string): Promise<boolean> {
304
    const result = await this.db
305
      .prepare('DELETE FROM posts WHERE id = ?')
306
      .bind(id)
307
      .run();
308

309
    return result.changes > 0;
310
  }
311

312
  private mapToPost(row: any): Post {
313
    return {
314
      id: row.id,
315
      userId: row.user_id,
316
      title: row.title,
317
      content: row.content,
318
      excerpt: row.excerpt,
319
      slug: row.slug,
320
      imageUrl: row.image_url,
321
      tags: row.tags ? JSON.parse(row.tags) : [],
322
      published: Boolean(row.published),
323
      views: row.views || 0,
324
      createdAt: row.created_at,
325
      updatedAt: row.updated_at,
326
    };
327
  }
328

329
  private camelToSnake(str: string): string {
330
    return str.replace(/[A-Z]/g, letter => `_${letter.toLowerCase()}`);
331
  }
332
}

File Storage with R2#

1. R2 Configuration#

1
# Create R2 bucket
2
wrangler r2 bucket create blog-storage
3

4
# Configure CORS
5
wrangler r2 bucket cors put blog-storage --file cors.json

1
[
2
  {
3
    "AllowedOrigins": ["*"],
4
    "AllowedMethods": ["GET", "PUT", "POST", "DELETE"],
5
    "AllowedHeaders": ["*"],
6
    "ExposeHeaders": ["ETag"],
7
    "MaxAgeSeconds": 3600
8
  }
9
]

2. File Upload Service#

1
export class FileUploadService {
2
  constructor(private r2: R2Bucket, private db: D1Database) {}
3

4
  async uploadFile(
5
    file: File,
6
    userId: string,
7
    folder: string = 'uploads'
8
  ): Promise<MediaFile> {
9
    // Generate unique filename
10
    const fileId = this.generateFileId();
11
    const extension = this.getFileExtension(file.name);
12
    const filename = `${fileId}${extension}`;
13
    const r2Key = `${folder}/${new Date().getFullYear()}/${filename}`;
14

15
    // Validate file
16
    this.validateFile(file);
17

18
    // Upload to R2
19
    const arrayBuffer = await file.arrayBuffer();
20
    await this.r2.put(r2Key, arrayBuffer, {
21
      httpMetadata: {
22
        contentType: file.type,
23
        cacheControl: 'public, max-age=31536000', // 1 year
24
      },
25
    });
26

27
    // Generate public URL
28
    const publicUrl = `https://blog-storage.yourdomain.com/${r2Key}`;
29

30
    // Save metadata to D1
31
    const mediaFile: MediaFile = {
32
      id: fileId,
33
      userId,
34
      filename,
35
      originalName: file.name,
36
      mimeType: file.type,
37
      size: file.size,
38
      r2Key,
39
      publicUrl,
40
      createdAt: new Date().toISOString(),
41
    };
42

43
    await this.db
44
      .prepare(`
45
        INSERT INTO media_files
46
        (id, user_id, filename, original_name, mime_type, size, r2_key, public_url, created_at)
47
        VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)
48
      `)
49
      .bind(
50
        mediaFile.id,
51
        mediaFile.userId,
52
        mediaFile.filename,
53
        mediaFile.originalName,
54
        mediaFile.mimeType,
55
        mediaFile.size,
56
        mediaFile.r2Key,
57
        mediaFile.publicUrl,
58
        mediaFile.createdAt
59
      )
60
      .run();
61

62
    return mediaFile;
63
  }
64

65
  async deleteFile(fileId: string, userId: string): Promise<boolean> {
66
    // Find file record
67
    const file = await this.db
68
      .prepare('SELECT * FROM media_files WHERE id = ? AND user_id = ?')
69
      .bind(fileId, userId)
70
      .first();
71

72
    if (!file) return false;
73

74
    // Delete from R2
75
    await this.r2.delete(file.r2_key as string);
76

77
    // Delete from database
78
    await this.db
79
      .prepare('DELETE FROM media_files WHERE id = ?')
80
      .bind(fileId)
81
      .run();
82

83
    return true;
84
  }
85

86
  async getFileUrl(r2Key: string, expiresIn: number = 3600): Promise<string> {
87
    // Generate signed URL for private files
88
    return this.r2.presignedUrl('GET', r2Key, { expiresIn });
89
  }
90

91
  async processImage(
92
    file: File,
93
    options: {
94
      maxWidth?: number;
95
      maxHeight?: number;
96
      quality?: number;
97
      format?: 'webp' | 'jpeg' | 'png';
98
    } = {}
99
  ): Promise<ArrayBuffer> {
100
    // Image processing using Cloudflare Images API or sharp alternative
101
    // For now, return original file
102
    return file.arrayBuffer();
103
  }
104

105
  private generateFileId(): string {
106
    return `${Date.now().toString(36)}_${Math.random().toString(36).substr(2, 9)}`;
107
  }
108

109
  private getFileExtension(filename: string): string {
110
    return filename.substring(filename.lastIndexOf('.'));
111
  }
112

113
  private validateFile(file: File): void {
114
    const maxSize = 10 * 1024 * 1024; // 10MB
115
    const allowedTypes = [
116
      'image/jpeg',
117
      'image/png',
118
      'image/webp',
119
      'image/gif',
120
      'application/pdf',
121
      'text/plain',
122
      'application/json'
123
    ];
124

125
    if (file.size > maxSize) {
126
      throw new Error('File size too large. Maximum 10MB allowed.');
127
    }
128

129
    if (!allowedTypes.includes(file.type)) {
130
      throw new Error('File type not allowed.');
131
    }
132
  }
133
}

3. Image Optimization#

1
export class ImageOptimizationService {
2
  constructor(private r2: R2Bucket) {}
3

4
  async optimizeAndStore(
5
    file: File,
6
    r2Key: string,
7
    options: {
8
      variants: Array<{
9
        name: string;
10
        width?: number;
11
        height?: number;
12
        quality?: number;
13
        format?: 'webp' | 'jpeg' | 'png';
14
      }>;
15
    }
16
  ): Promise<Record<string, string>> {
17
    const results: Record<string, string> = {};
18
    const originalBuffer = await file.arrayBuffer();
19

20
    // Store original
21
    await this.r2.put(r2Key, originalBuffer, {
22
      httpMetadata: {
23
        contentType: file.type,
24
        cacheControl: 'public, max-age=31536000',
25
      },
26
    });
27
    results.original = r2Key;
28

29
    // Generate variants
30
    for (const variant of options.variants) {
31
      const variantKey = `${r2Key.replace(/\.[^/.]+$/, '')}_${variant.name}${this.getExtension(variant.format || 'webp')}`;
32

33
      // For production, integrate with Cloudflare Images API
34
      // or use a Worker with image processing libraries
35
      const processedBuffer = await this.processImage(originalBuffer, variant);
36

37
      await this.r2.put(variantKey, processedBuffer, {
38
        httpMetadata: {
39
          contentType: `image/${variant.format || 'webp'}`,
40
          cacheControl: 'public, max-age=31536000',
41
        },
42
      });
43

44
      results[variant.name] = variantKey;
45
    }
46

47
    return results;
48
  }
49

50
  private async processImage(
51
    buffer: ArrayBuffer,
52
    options: {
53
      width?: number;
54
      height?: number;
55
      quality?: number;
56
      format?: string;
57
    }
58
  ): Promise<ArrayBuffer> {
59
    // Placeholder implementation
60
    // In production, use Cloudflare Images API or integrate sharp
61
    return buffer;
62
  }
63

64
  private getExtension(format: string): string {
65
    const extensions = {
66
      webp: '.webp',
67
      jpeg: '.jpg',
68
      jpg: '.jpg',
69
      png: '.png',
70
      gif: '.gif'
71
    };
72
    return extensions[format] || '.webp';
73
  }
74
}

API Implementation#

1. Main Worker#

1
import { Router } from 'itty-router';
2
import { UserModel } from './models/user';
3
import { PostModel } from './models/post';
4
import { FileUploadService } from './services/fileUpload';
5
import { AuthService } from './services/auth';
6
import { CacheService } from './services/cache';
7

8
export interface Env {
9
  DB: D1Database;
10
  STORAGE: R2Bucket;
11
  CACHE: KVNamespace;
12
  JWT_SECRET: string;
13
  ENVIRONMENT: 'development' | 'production';
14
}
15

16
const router = Router();
17

18
// CORS headers
19
const corsHeaders = {
20
  'Access-Control-Allow-Origin': '*',
21
  'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE, OPTIONS',
22
  'Access-Control-Allow-Headers': 'Content-Type, Authorization',
23
  'Access-Control-Max-Age': '86400',
24
};
25

26
// Middleware
27
const withCORS = (response: Response) => {
28
  Object.entries(corsHeaders).forEach(([key, value]) => {
29
    response.headers.set(key, value);
30
  });
31
  return response;
32
};
33

34
const withAuth = async (request: Request, env: Env): Promise<string | null> => {
35
  const authorization = request.headers.get('Authorization');
36
  if (!authorization?.startsWith('Bearer ')) return null;
37

38
  const token = authorization.slice(7);
39
  const authService = new AuthService(env.JWT_SECRET);
40

41
  try {
42
    const payload = await authService.verifyToken(token);
43
    return payload.userId;
44
  } catch {
45
    return null;
46
  }
47
};
48

49
// Routes
50
router.options('*', () => new Response(null, { status: 200, headers: corsHeaders }));
51

52
// Health check
53
router.get('/health', () => {
54
  return withCORS(new Response(JSON.stringify({ status: 'ok' }), {
55
    headers: { 'Content-Type': 'application/json' }
56
  }));
57
});
58

59
// Authentication
60
router.post('/auth/login', async (request, env) => {
61
  try {
62
    const { email, password } = await request.json();
63

64
    const userModel = new UserModel(env.DB);
65
    const user = await userModel.validatePassword(email, password);
66

67
    if (!user) {
68
      return withCORS(new Response(JSON.stringify({
69
        success: false,
70
        error: 'Invalid credentials'
71
      }), {
72
        status: 401,
73
        headers: { 'Content-Type': 'application/json' }
74
      }));
75
    }
76

77
    const authService = new AuthService(env.JWT_SECRET);
78
    const token = await authService.generateToken({ userId: user.id });
79

80
    return withCORS(new Response(JSON.stringify({
81
      success: true,
82
      data: { user, token }
83
    }), {
84
      headers: { 'Content-Type': 'application/json' }
85
    }));
86

87
  } catch (error) {
88
    return withCORS(new Response(JSON.stringify({
89
      success: false,
90
      error: 'Internal server error'
91
    }), {
92
      status: 500,
93
      headers: { 'Content-Type': 'application/json' }
94
    }));
95
  }
96
});
97

98
router.post('/auth/register', async (request, env) => {
99
  try {
100
    const { email, name, password } = await request.json();
101

102
    const userModel = new UserModel(env.DB);
103

104
    // Check if user exists
105
    const existingUser = await userModel.findByEmail(email);
106
    if (existingUser) {
107
      return withCORS(new Response(JSON.stringify({
108
        success: false,
109
        error: 'User already exists'
110
      }), {
111
        status: 400,
112
        headers: { 'Content-Type': 'application/json' }
113
      }));
114
    }
115

116
    const user = await userModel.create({ email, name, password });
117
    const authService = new AuthService(env.JWT_SECRET);
118
    const token = await authService.generateToken({ userId: user.id });
119

120
    return withCORS(new Response(JSON.stringify({
121
      success: true,
122
      data: { user, token }
123
    }), {
124
      status: 201,
125
      headers: { 'Content-Type': 'application/json' }
126
    }));
127

128
  } catch (error) {
129
    return withCORS(new Response(JSON.stringify({
130
      success: false,
131
      error: error.message
132
    }), {
133
      status: 500,
134
      headers: { 'Content-Type': 'application/json' }
135
    }));
136
  }
137
});
138

139
// Posts
140
router.get('/posts', async (request, env) => {
141
  try {
142
    const url = new URL(request.url);
143
    const page = parseInt(url.searchParams.get('page') || '1');
144
    const limit = Math.min(parseInt(url.searchParams.get('limit') || '10'), 50);
145
    const search = url.searchParams.get('search') || undefined;
146
    const tagsParam = url.searchParams.get('tags');
147
    const tags = tagsParam ? tagsParam.split(',') : undefined;
148

149
    const cacheService = new CacheService(env.CACHE);
150
    const cacheKey = `posts:${page}:${limit}:${search || ''}:${tags?.join(',') || ''}`;
151

152
    // Try cache first
153
    const cached = await cacheService.get(cacheKey);
154
    if (cached) {
155
      return withCORS(new Response(JSON.stringify({
156
        success: true,
157
        data: cached
158
      }), {
159
        headers: { 'Content-Type': 'application/json' }
160
      }));
161
    }
162

163
    const postModel = new PostModel(env.DB);
164
    const result = await postModel.findMany({
165
      page,
166
      limit,
167
      search,
168
      tags,
169
      published: true
170
    });
171

172
    // Cache for 5 minutes
173
    await cacheService.set(cacheKey, result, 300);
174

175
    return withCORS(new Response(JSON.stringify({
176
      success: true,
177
      data: result
178
    }), {
179
      headers: { 'Content-Type': 'application/json' }
180
    }));
181

182
  } catch (error) {
183
    return withCORS(new Response(JSON.stringify({
184
      success: false,
185
      error: error.message
186
    }), {
187
      status: 500,
188
      headers: { 'Content-Type': 'application/json' }
189
    }));
190
  }
191
});
192

193
router.get('/posts/:slug', async (request, env, ctx) => {
194
  try {
195
    const { slug } = ctx.params;
196

197
    const cacheService = new CacheService(env.CACHE);
198
    const cacheKey = `post:${slug}`;
199

200
    // Try cache first
201
    const cached = await cacheService.get(cacheKey);
202
    if (cached) {
203
      return withCORS(new Response(JSON.stringify({
204
        success: true,
205
        data: cached
206
      }), {
207
        headers: { 'Content-Type': 'application/json' }
208
      }));
209
    }
210

211
    const postModel = new PostModel(env.DB);
212
    const post = await postModel.findBySlug(slug);
213

214
    if (!post) {
215
      return withCORS(new Response(JSON.stringify({
216
        success: false,
217
        error: 'Post not found'
218
      }), {
219
        status: 404,
220
        headers: { 'Content-Type': 'application/json' }
221
      }));
222
    }
223

224
    // Cache for 10 minutes
225
    await cacheService.set(cacheKey, post, 600);
226

227
    return withCORS(new Response(JSON.stringify({
228
      success: true,
229
      data: post
230
    }), {
231
      headers: { 'Content-Type': 'application/json' }
232
    }));
233

234
  } catch (error) {
235
    return withCORS(new Response(JSON.stringify({
236
      success: false,
237
      error: error.message
238
    }), {
239
      status: 500,
240
      headers: { 'Content-Type': 'application/json' }
241
    }));
242
  }
243
});
244

245
router.post('/posts', async (request, env) => {
246
  try {
247
    const userId = await withAuth(request, env);
248
    if (!userId) {
249
      return withCORS(new Response(JSON.stringify({
250
        success: false,
251
        error: 'Unauthorized'
252
      }), {
253
        status: 401,
254
        headers: { 'Content-Type': 'application/json' }
255
      }));
256
    }
257

258
    const formData = await request.formData();
259
    const title = formData.get('title') as string;
260
    const content = formData.get('content') as string;
261
    const excerpt = formData.get('excerpt') as string;
262
    const tagsString = formData.get('tags') as string;
263
    const published = formData.get('published') === 'true';
264
    const imageFile = formData.get('image') as File;
265

266
    const tags = tagsString ? tagsString.split(',').map(t => t.trim()) : [];
267
    const slug = title.toLowerCase().replace(/[^a-z0-9]+/g, '-').replace(/(^-|-$)/g, '');
268

269
    let imageUrl: string | undefined;
270

271
    // Handle image upload
272
    if (imageFile && imageFile.size > 0) {
273
      const fileService = new FileUploadService(env.STORAGE, env.DB);
274
      const mediaFile = await fileService.uploadFile(imageFile, userId, 'post-images');
275
      imageUrl = mediaFile.publicUrl;
276
    }
277

278
    const postModel = new PostModel(env.DB);
279
    const post = await postModel.create({
280
      userId,
281
      title,
282
      content,
283
      excerpt,
284
      slug,
285
      imageUrl,
286
      tags,
287
      published
288
    });
289

290
    // Clear cache
291
    const cacheService = new CacheService(env.CACHE);
292
    await cacheService.invalidatePattern('posts:*');
293

294
    return withCORS(new Response(JSON.stringify({
295
      success: true,
296
      data: post
297
    }), {
298
      status: 201,
299
      headers: { 'Content-Type': 'application/json' }
300
    }));
301

302
  } catch (error) {
303
    return withCORS(new Response(JSON.stringify({
304
      success: false,
305
      error: error.message
306
    }), {
307
      status: 500,
308
      headers: { 'Content-Type': 'application/json' }
309
    }));
310
  }
311
});
312

313
// File upload endpoint
314
router.post('/upload', async (request, env) => {
315
  try {
316
    const userId = await withAuth(request, env);
317
    if (!userId) {
318
      return withCORS(new Response(JSON.stringify({
319
        success: false,
320
        error: 'Unauthorized'
321
      }), {
322
        status: 401,
323
        headers: { 'Content-Type': 'application/json' }
324
      }));
325
    }
326

327
    const formData = await request.formData();
328
    const file = formData.get('file') as File;
329
    const folder = (formData.get('folder') as string) || 'uploads';
330

331
    if (!file) {
332
      return withCORS(new Response(JSON.stringify({
333
        success: false,
334
        error: 'No file provided'
335
      }), {
336
        status: 400,
337
        headers: { 'Content-Type': 'application/json' }
338
      }));
339
    }
340

341
    const fileService = new FileUploadService(env.STORAGE, env.DB);
342
    const mediaFile = await fileService.uploadFile(file, userId, folder);
343

344
    return withCORS(new Response(JSON.stringify({
345
      success: true,
346
      data: mediaFile
347
    }), {
348
      status: 201,
349
      headers: { 'Content-Type': 'application/json' }
350
    }));
351

352
  } catch (error) {
353
    return withCORS(new Response(JSON.stringify({
354
      success: false,
355
      error: error.message
356
    }), {
357
      status: 500,
358
      headers: { 'Content-Type': 'application/json' }
359
    }));
360
  }
361
});
362

363
// Handle all requests
364
export default {
365
  async fetch(request: Request, env: Env, ctx: ExecutionContext): Promise<Response> {
366
    try {
367
      return await router.handle(request, env, ctx);
368
    } catch (error) {
369
      return withCORS(new Response(JSON.stringify({
370
        success: false,
371
        error: 'Internal server error'
372
      }), {
373
        status: 500,
374
        headers: { 'Content-Type': 'application/json' }
375
      }));
376
    }
377
  }
378
};

2. Cache Service#

1
export class CacheService {
2
  constructor(private kv: KVNamespace) {}
3

4
  async get<T = any>(key: string): Promise<T | null> {
5
    const value = await this.kv.get(key, 'json');
6
    return value as T | null;
7
  }
8

9
  async set<T = any>(key: string, value: T, ttl: number = 3600): Promise<void> {
10
    await this.kv.put(key, JSON.stringify(value), {
11
      expirationTtl: ttl,
12
      metadata: {
13
        cachedAt: Date.now(),
14
        ttl
15
      }
16
    });
17
  }
18

19
  async delete(key: string): Promise<void> {
20
    await this.kv.delete(key);
21
  }
22

23
  async invalidatePattern(pattern: string): Promise<void> {
24
    // List all keys matching the pattern
25
    const list = await this.kv.list({ prefix: pattern });
26

27
    // Delete all matching keys
28
    await Promise.all(
29
      list.keys.map(key => this.kv.delete(key.name))
30
    );
31
  }
32

33
  async getOrSet<T>(
34
    key: string,
35
    fetcher: () => Promise<T>,
36
    ttl: number = 3600
37
  ): Promise<T> {
38
    const cached = await this.get<T>(key);
39
    if (cached) return cached;
40

41
    const value = await fetcher();
42
    await this.set(key, value, ttl);
43
    return value;
44
  }
45
}

Frontend Integration#

1. API Client#

1
import type {
2
  User,
3
  Post,
4
  MediaFile,
5
  ApiResponse,
6
  PaginatedResponse,
7
  CreatePostRequest,
8
  PaginationParams
9
} from '../../../shared/types';
10

11
class ApiClient {
12
  private baseUrl: string;
13
  private token: string | null = null;
14

15
  constructor(baseUrl: string) {
16
    this.baseUrl = baseUrl;
17
    this.loadToken();
18
  }
19

20
  private loadToken(): void {
21
    if (typeof window !== 'undefined') {
22
      this.token = localStorage.getItem('auth_token');
23
    }
24
  }
25

26
  private saveToken(token: string): void {
27
    this.token = token;
28
    if (typeof window !== 'undefined') {
29
      localStorage.setItem('auth_token', token);
30
    }
31
  }
32

33
  private clearToken(): void {
34
    this.token = null;
35
    if (typeof window !== 'undefined') {
36
      localStorage.removeItem('auth_token');
37
    }
38
  }
39

40
  private async request<T>(
41
    endpoint: string,
42
    options: RequestInit = {}
43
  ): Promise<ApiResponse<T>> {
44
    const url = `${this.baseUrl}${endpoint}`;
45
    const headers: HeadersInit = {
46
      'Content-Type': 'application/json',
47
      ...options.headers,
48
    };
49

50
    if (this.token) {
51
      headers.Authorization = `Bearer ${this.token}`;
52
    }
53

54
    try {
55
      const response = await fetch(url, {
56
        ...options,
57
        headers,
58
      });
59

60
      const data = await response.json();
61

62
      if (!response.ok) {
63
        throw new Error(data.error || 'Request failed');
64
      }
65

66
      return data;
67
    } catch (error) {
68
      throw new Error(error.message || 'Network error');
69
    }
70
  }
71

72
  // Authentication
73
  async login(email: string, password: string): Promise<{ user: User; token: string }> {
74
    const response = await this.request<{ user: User; token: string }>('/auth/login', {
75
      method: 'POST',
76
      body: JSON.stringify({ email, password }),
77
    });
78

79
    if (response.success && response.data) {
80
      this.saveToken(response.data.token);
81
      return response.data;
82
    }
83

84
    throw new Error(response.error || 'Login failed');
85
  }
86

87
  async register(email: string, name: string, password: string): Promise<{ user: User; token: string }> {
88
    const response = await this.request<{ user: User; token: string }>('/auth/register', {
89
      method: 'POST',
90
      body: JSON.stringify({ email, name, password }),
91
    });
92

93
    if (response.success && response.data) {
94
      this.saveToken(response.data.token);
95
      return response.data;
96
    }
97

98
    throw new Error(response.error || 'Registration failed');
99
  }
100

101
  logout(): void {
102
    this.clearToken();
103
  }
104

105
  // Posts
106
  async getPosts(params: PaginationParams = {}): Promise<PaginatedResponse<Post>> {
107
    const searchParams = new URLSearchParams();
108

109
    if (params.page) searchParams.set('page', params.page.toString());
110
    if (params.limit) searchParams.set('limit', params.limit.toString());
111
    if (params.search) searchParams.set('search', params.search);
112
    if (params.tags) searchParams.set('tags', params.tags.join(','));
113

114
    const response = await this.request<PaginatedResponse<Post>>(
115
      `/posts?${searchParams.toString()}`
116
    );
117

118
    if (response.success && response.data) {
119
      return response.data;
120
    }
121

122
    throw new Error(response.error || 'Failed to fetch posts');
123
  }
124

125
  async getPost(slug: string): Promise<Post> {
126
    const response = await this.request<Post>(`/posts/${slug}`);
127

128
    if (response.success && response.data) {
129
      return response.data;
130
    }
131

132
    throw new Error(response.error || 'Post not found');
133
  }
134

135
  async createPost(postData: CreatePostRequest): Promise<Post> {
136
    const formData = new FormData();
137

138
    formData.append('title', postData.title);
139
    formData.append('content', postData.content);
140
    if (postData.excerpt) formData.append('excerpt', postData.excerpt);
141
    if (postData.tags) formData.append('tags', postData.tags.join(','));
142
    if (postData.published) formData.append('published', postData.published.toString());
143
    if (postData.imageFile) formData.append('image', postData.imageFile);
144

145
    const response = await fetch(`${this.baseUrl}/posts`, {
146
      method: 'POST',
147
      headers: {
148
        Authorization: `Bearer ${this.token}`,
149
      },
150
      body: formData,
151
    });
152

153
    const data = await response.json();
154

155
    if (data.success && data.data) {
156
      return data.data;
157
    }
158

159
    throw new Error(data.error || 'Failed to create post');
160
  }
161

162
  // File upload
163
  async uploadFile(file: File, folder?: string): Promise<MediaFile> {
164
    const formData = new FormData();
165
    formData.append('file', file);
166
    if (folder) formData.append('folder', folder);
167

168
    const response = await fetch(`${this.baseUrl}/upload`, {
169
      method: 'POST',
170
      headers: {
171
        Authorization: `Bearer ${this.token}`,
172
      },
173
      body: formData,
174
    });
175

176
    const data = await response.json();
177

178
    if (data.success && data.data) {
179
      return data.data;
180
    }
181

182
    throw new Error(data.error || 'File upload failed');
183
  }
184
}
185

186
// Export singleton instance
187
export const api = new ApiClient(import.meta.env.PUBLIC_API_URL || 'http://localhost:8787');

2. Astro Components#

1
---
2
import type { Post } from '../../../shared/types';
3

4
export interface Props {
5
  post: Post;
6
}
7

8
const { post } = Astro.props;
9
---
10

11
<article class="post-card">
12
  {post.imageUrl && (
13
    <div class="post-image">
14
      <img src={post.imageUrl} alt={post.title} loading="lazy" />
15
    </div>
16
  )}
17

18
  <div class="post-content">
19
    <div class="post-meta">
20
      <time datetime={post.createdAt}>
21
        {new Date(post.createdAt).toLocaleDateString()}
22
      </time>
23
      <span class="views">{post.views} views</span>
24
    </div>
25

26
    <h3 class="post-title">
27
      <a href={`/posts/${post.slug}`}>{post.title}</a>
28
    </h3>
29

30
    <p class="post-excerpt">{post.excerpt}</p>
31

32
    {post.tags.length > 0 && (
33
      <div class="post-tags">
34
        {post.tags.map(tag => (
35
          <span class="tag">{tag}</span>
36
        ))}
37
      </div>
38
    )}
39
  </div>
40
</article>
41

42
<style>
43
  .post-card {
44
    border: 1px solid #e2e8f0;
45
    border-radius: 8px;
46
    overflow: hidden;
47
    transition: transform 0.2s, box-shadow 0.2s;
48
  }
49

50
  .post-card:hover {
51
    transform: translateY(-2px);
52
    box-shadow: 0 4px 12px rgba(0, 0, 0, 0.1);
53
  }
54

55
  .post-image img {
56
    width: 100%;
57
    height: 200px;
58
    object-fit: cover;
59
  }
60

61
  .post-content {
62
    padding: 1.5rem;
63
  }
64

65
  .post-meta {
66
    display: flex;
67
    justify-content: space-between;
68
    font-size: 0.875rem;
69
    color: #64748b;
70
    margin-bottom: 0.5rem;
71
  }
72

73
  .post-title {
74
    margin: 0 0 1rem 0;
75
    font-size: 1.25rem;
76
    font-weight: 600;
77
  }
78

79
  .post-title a {
80
    color: inherit;
81
    text-decoration: none;
82
  }
83

84
  .post-title a:hover {
85
    color: #3b82f6;
86
  }
87

88
  .post-excerpt {
89
    color: #64748b;
90
    line-height: 1.5;
91
    margin-bottom: 1rem;
92
  }
93

94
  .post-tags {
95
    display: flex;
96
    gap: 0.5rem;
97
    flex-wrap: wrap;
98
  }
99

100
  .tag {
101
    background: #f1f5f9;
102
    color: #475569;
103
    padding: 0.25rem 0.5rem;
104
    border-radius: 4px;
105
    font-size: 0.75rem;
106
  }
107
</style>

1
---
2
import Layout from '../layouts/Layout.astro';
3
import PostCard from '../components/PostCard.astro';
4
import { api } from '../lib/api';
5

6
// Fetch posts at build time
7
let posts;
8
let error;
9

10
try {
11
  const response = await api.getPosts({ limit: 12 });
12
  posts = response.data;
13
} catch (e) {
14
  error = e.message;
15
  posts = [];
16
}
17
---
18

19
<Layout title="Home">
20
  <div class="container">
21
    <header class="hero">
22
      <h1>Welcome to Our Blog</h1>
23
      <p>Discover the latest articles and insights</p>
24
    </header>
25

26
    {error && (
27
      <div class="error">
28
        Error loading posts: {error}
29
      </div>
30
    )}
31

32
    <section class="posts-grid">
33
      {posts.map(post => (
34
        <PostCard post={post} />
35
      ))}
36
    </section>
37

38
    {posts.length === 0 && !error && (
39
      <div class="empty-state">
40
        <p>No posts found.</p>
41
      </div>
42
    )}
43
  </div>
44
</Layout>
45

46
<style>
47
  .container {
48
    max-width: 1200px;
49
    margin: 0 auto;
50
    padding: 2rem;
51
  }
52

53
  .hero {
54
    text-align: center;
55
    margin-bottom: 3rem;
56
  }
57

58
  .hero h1 {
59
    font-size: 3rem;
60
    margin-bottom: 1rem;
61
  }
62

63
  .hero p {
64
    font-size: 1.25rem;
65
    color: #64748b;
66
  }
67

68
  .posts-grid {
69
    display: grid;
70
    grid-template-columns: repeat(auto-fit, minmax(350px, 1fr));
71
    gap: 2rem;
72
  }
73

74
  .error, .empty-state {
75
    text-align: center;
76
    padding: 2rem;
77
    background: #fef2f2;
78
    border: 1px solid #fecaca;
79
    border-radius: 8px;
80
    color: #991b1b;
81
  }
82

83
  .empty-state {
84
    background: #f8fafc;
85
    border-color: #e2e8f0;
86
    color: #64748b;
87
  }
88
</style>

Deployment Configuration#

1. Worker Configuration#

1
name = "blog-api"
2
main = "src/index.ts"
3
compatibility_date = "2025-01-01"
4

5
[env.production]
6
vars = { ENVIRONMENT = "production" }
7

8
[[env.production.d1_databases]]
9
binding = "DB"
10
database_name = "blog-database"
11
database_id = "your-database-id"
12

13
[[env.production.r2_buckets]]
14
binding = "STORAGE"
15
bucket_name = "blog-storage"
16

17
[[env.production.kv_namespaces]]
18
binding = "CACHE"
19
id = "your-kv-namespace-id"
20

21
# Secrets (set via wrangler secret)
22
# JWT_SECRET = "your-jwt-secret"
23

24
[env.development]
25
vars = { ENVIRONMENT = "development" }
26

27
[[env.development.d1_databases]]
28
binding = "DB"
29
database_name = "blog-database"
30
database_id = "your-database-id"
31

32
[[env.development.r2_buckets]]
33
binding = "STORAGE"
34
bucket_name = "blog-storage-dev"
35

36
[[env.development.kv_namespaces]]
37
binding = "CACHE"
38
id = "your-kv-namespace-id-dev"

2. Frontend Configuration#

1
import { defineConfig } from 'astro/config';
2
import tailwind from '@astrojs/tailwind';
3

4
export default defineConfig({
5
  integrations: [tailwind()],
6
  output: 'static',
7
  site: 'https://yourblog.pages.dev',
8
  build: {
9
    assets: '_assets'
10
  },
11
  vite: {
12
    define: {
13
      'import.meta.env.PUBLIC_API_URL': JSON.stringify(
14
        process.env.NODE_ENV === 'production'
15
          ? 'https://blog-api.yourname.workers.dev'
16
          : 'http://localhost:8787'
17
      )
18
    }
19
  }
20
});

3. Deployment Scripts#

1
#!/bin/bash
2
echo "Deploying Cloudflare Full-Stack Application..."
3

4
# Deploy API first
5
echo "Deploying API..."
6
cd api
7
wrangler deploy --env production
8
cd ..
9

10
# Build and deploy frontend
11
echo "Building frontend..."
12
cd frontend
13
npm run build
14

15
# Deploy to Cloudflare Pages
16
npx wrangler pages deploy dist --project-name=blog-frontend
17

18
echo "Deployment complete!"
19
echo "API: https://blog-api.yourname.workers.dev"
20
echo "Frontend: https://yourblog.pages.dev"

Performance Optimization#

1. Caching Strategy#

1
// Advanced caching with stale-while-revalidate
2
export class AdvancedCacheService {
3
  constructor(private kv: KVNamespace) {}
4

5
  async swr<T>(
6
    key: string,
7
    fetcher: () => Promise<T>,
8
    ttl: number = 3600,
9
    staleTime: number = 86400
10
  ): Promise<T> {
11
    const cached = await this.kv.getWithMetadata(key, 'json');
12

13
    if (cached.value && cached.metadata) {
14
      const age = Date.now() - (cached.metadata.cachedAt as number);
15

16
      // Return fresh data
17
      if (age < ttl * 1000) {
18
        return cached.value as T;
19
      }
20

21
      // Return stale data and revalidate
22
      if (age < staleTime * 1000) {
23
        // Revalidate in background
24
        this.revalidate(key, fetcher, ttl);
25
        return cached.value as T;
26
      }
27
    }
28

29
    // Fetch fresh data
30
    const fresh = await fetcher();
31
    await this.set(key, fresh, ttl);
32
    return fresh;
33
  }
34

35
  private async revalidate<T>(
36
    key: string,
37
    fetcher: () => Promise<T>,
38
    ttl: number
39
  ): Promise<void> {
40
    try {
41
      const fresh = await fetcher();
42
      await this.set(key, fresh, ttl);
43
    } catch (error) {
44
      console.error('Revalidation failed:', error);
45
    }
46
  }
47

48
  private async set<T>(key: string, value: T, ttl: number): Promise<void> {
49
    await this.kv.put(key, JSON.stringify(value), {
50
      expirationTtl: ttl,
51
      metadata: { cachedAt: Date.now() }
52
    });
53
  }
54
}

2. Database Optimization#

1
-- Additional indexes for performance
2
CREATE INDEX IF NOT EXISTS idx_posts_user_published ON posts(user_id, published);
3
CREATE INDEX IF NOT EXISTS idx_posts_tags ON posts(tags);
4
CREATE INDEX IF NOT EXISTS idx_posts_views ON posts(views DESC);
5
CREATE INDEX IF NOT EXISTS idx_media_created ON media_files(created_at DESC);
6

7
-- Full-text search (if needed)
8
CREATE VIRTUAL TABLE IF NOT EXISTS posts_fts USING fts5(
9
  title, content, excerpt,
10
  content='posts',
11
  content_rowid='rowid'
12
);
13

14
-- Triggers to keep FTS updated
15
CREATE TRIGGER IF NOT EXISTS posts_fts_insert AFTER INSERT ON posts BEGIN
16
  INSERT INTO posts_fts(rowid, title, content, excerpt)
17
  VALUES (new.rowid, new.title, new.content, new.excerpt);
18
END;
19

20
CREATE TRIGGER IF NOT EXISTS posts_fts_delete AFTER DELETE ON posts BEGIN
21
  INSERT INTO posts_fts(posts_fts, rowid, title, content, excerpt)
22
  VALUES('delete', old.rowid, old.title, old.content, old.excerpt);
23
END;
24

25
CREATE TRIGGER IF NOT EXISTS posts_fts_update AFTER UPDATE ON posts BEGIN
26
  INSERT INTO posts_fts(posts_fts, rowid, title, content, excerpt)
27
  VALUES('delete', old.rowid, old.title, old.content, old.excerpt);
28
  INSERT INTO posts_fts(rowid, title, content, excerpt)
29
  VALUES (new.rowid, new.title, new.content, new.excerpt);
30
END;

Monitoring and Analytics#

1. Custom Analytics#

1
// Analytics service
2
export class AnalyticsService {
3
  constructor(private kv: KVNamespace) {}
4

5
  async trackPageView(path: string, userAgent: string, country: string): Promise<void> {
6
    const date = new Date().toISOString().split('T')[0]; // YYYY-MM-DD
7
    const hourKey = `pageviews:${date}:${new Date().getHours()}`;
8
    const pathKey = `pageviews:path:${path}:${date}`;
9
    const countryKey = `pageviews:country:${country}:${date}`;
10

11
    // Increment counters
12
    await Promise.all([
13
      this.increment(hourKey),
14
      this.increment(pathKey),
15
      this.increment(countryKey),
16
      this.increment(`pageviews:total:${date}`)
17
    ]);
18
  }
19

20
  async trackPostView(postId: string): Promise<void> {
21
    const date = new Date().toISOString().split('T')[0];
22
    const key = `post_views:${postId}:${date}`;
23
    await this.increment(key);
24
  }
25

26
  private async increment(key: string): Promise<void> {
27
    const current = await this.kv.get(key);
28
    const count = current ? parseInt(current) + 1 : 1;
29

30
    await this.kv.put(key, count.toString(), {
31
      expirationTtl: 86400 * 30 // 30 days
32
    });
33
  }
34

35
  async getAnalytics(date: string): Promise<any> {
36
    const keys = [
37
      `pageviews:total:${date}`,
38
      `pageviews:path:/:${date}`,
39
      `pageviews:path:/posts:${date}`
40
    ];
41

42
    const results = await Promise.all(
43
      keys.map(key => this.kv.get(key))
44
    );
45

46
    return {
47
      totalViews: parseInt(results[0] || '0'),
48
      homeViews: parseInt(results[1] || '0'),
49
      postsViews: parseInt(results[2] || '0')
50
    };
51
  }
52
}

2. Error Tracking#

1
// Error tracking service
2
export class ErrorTrackingService {
3
  constructor(private kv: KVNamespace) {}
4

5
  async logError(error: Error, context: {
6
    url: string;
7
    userAgent?: string;
8
    userId?: string;
9
    timestamp?: string;
10
  }): Promise<void> {
11
    const errorId = crypto.randomUUID();
12
    const errorData = {
13
      id: errorId,
14
      message: error.message,
15
      stack: error.stack,
16
      ...context,
17
      timestamp: context.timestamp || new Date().toISOString()
18
    };
19

20
    // Store error details
21
    await this.kv.put(`error:${errorId}`, JSON.stringify(errorData), {
22
      expirationTtl: 86400 * 7 // 7 days
23
    });
24

25
    // Increment error counter
26
    const date = new Date().toISOString().split('T')[0];
27
    const counterKey = `errors:count:${date}`;
28
    await this.increment(counterKey);
29
  }
30

31
  private async increment(key: string): Promise<void> {
32
    const current = await this.kv.get(key);
33
    const count = current ? parseInt(current) + 1 : 1;
34

35
    await this.kv.put(key, count.toString(), {
36
      expirationTtl: 86400 * 30
37
    });
38
  }
39
}

Cost Optimization#

1. Request Optimization#

1
// Batch operations to reduce costs
2
export class BatchOperationService {
3
  private batch: Array<() => Promise<any>> = [];
4
  private batchTimer?: number;
5

6
  constructor(private maxBatchSize = 10, private batchDelay = 100) {}
7

8
  async addToBatch<T>(operation: () => Promise<T>): Promise<T> {
9
    return new Promise((resolve, reject) => {
10
      this.batch.push(async () => {
11
        try {
12
          const result = await operation();
13
          resolve(result);
14
        } catch (error) {
15
          reject(error);
16
        }
17
      });
18

19
      if (this.batch.length >= this.maxBatchSize) {
20
        this.processBatch();
21
      } else if (!this.batchTimer) {
22
        this.batchTimer = setTimeout(() => this.processBatch(), this.batchDelay);
23
      }
24
    });
25
  }
26

27
  private async processBatch(): Promise<void> {
28
    if (this.batchTimer) {
29
      clearTimeout(this.batchTimer);
30
      this.batchTimer = undefined;
31
    }
32

33
    const currentBatch = this.batch.splice(0, this.maxBatchSize);
34

35
    // Execute all operations in parallel
36
    await Promise.allSettled(
37
      currentBatch.map(operation => operation())
38
    );
39

40
    // Process remaining items
41
    if (this.batch.length > 0) {
42
      setTimeout(() => this.processBatch(), this.batchDelay);
43
    }
44
  }
45
}

2. Storage Optimization#

1
// Optimize R2 storage costs
2
export class StorageOptimizationService {
3
  constructor(private r2: R2Bucket) {}
4

5
  async optimizeImages(key: string): Promise<void> {
6
    const object = await this.r2.get(key);
7
    if (!object) return;
8

9
    const contentType = object.httpMetadata?.contentType;
10
    if (!contentType?.startsWith('image/')) return;
11

12
    // Generate optimized versions
13
    const optimizedSizes = [400, 800, 1200];
14
    const formats = ['webp', 'avif'];
15

16
    for (const size of optimizedSizes) {
17
      for (const format of formats) {
18
        const optimizedKey = `${key}_${size}w.${format}`;
19

20
        // Check if optimized version exists
21
        const exists = await this.r2.head(optimizedKey);
22
        if (exists) continue;
23

24
        // Generate optimized version
25
        const optimized = await this.processImage(
26
          await object.arrayBuffer(),
27
          { width: size, format }
28
        );
29

30
        await this.r2.put(optimizedKey, optimized, {
31
          httpMetadata: {
32
            contentType: `image/${format}`,
33
            cacheControl: 'public, max-age=31536000'
34
          }
35
        });
36
      }
37
    }
38
  }
39

40
  private async processImage(
41
    buffer: ArrayBuffer,
42
    options: { width: number; format: string }
43
  ): Promise<ArrayBuffer> {
44
    // Implement image processing
45
    // This would typically use a service like Cloudflare Images
46
    return buffer;
47
  }
48

49
  async cleanupOldFiles(olderThanDays: number = 90): Promise<void> {
50
    const cutoff = new Date();
51
    cutoff.setDate(cutoff.getDate() - olderThanDays);
52

53
    const objects = await this.r2.list();
54

55
    for (const object of objects.objects) {
56
      if (object.uploaded < cutoff) {
57
        await this.r2.delete(object.key);
58
      }
59
    }
60
  }
61
}

Conclusion#

Building full-stack applications with Cloudflare R2 and D1 provides exceptional performance and cost benefits:

Key Benefits#

97% Cost Savings compared to traditional cloud providers
Global Performance with edge computing and distribution
Zero Egress Fees for unlimited data transfer
Simplified Architecture with unified platform
Automatic Scaling without infrastructure management

Best Practices#

Leverage Caching: Use KV and browser caching extensively
Optimize Images: Generate multiple formats and sizes
Batch Operations: Reduce API calls and costs
Monitor Performance: Track metrics and optimize bottlenecks
Security First: Implement proper authentication and validation

This architecture scales from personal blogs to enterprise applications while maintaining excellent performance and minimal costs.