Building Full-Stack Applications with Cloudflare Workers and D1 Database#

Cloudflare Workers and D1 Database provide a powerful platform for building globally distributed, serverless applications. This comprehensive guide walks through creating a full-stack application with authentication, CRUD operations, and performance optimization.

Table of Contents#

Introduction#

Cloudflare D1 is a serverless SQL database built on SQLite, designed specifically for Cloudflare Workers. Combined with Workers’ edge computing capabilities, you can build applications that run close to users worldwide with ultra-low latency.

Key Benefits#

Global Distribution: Data automatically replicated across Cloudflare’s network
SQLite Compatibility: Use familiar SQL syntax and tools
Serverless Architecture: No infrastructure management required
Cost-Effective: Pay only for what you use
Zero-Latency Reads: Read replicas available in multiple regions

Prerequisites#

Before starting, ensure you have:

Node.js 18+ installed
Cloudflare account (free tier works)
Wrangler CLI installed (npm install -g wrangler)
Basic knowledge of JavaScript/TypeScript and SQL

Setting Up Your Project#

1. Initialize the Project#

1
# Create a new Workers project
2
npm create cloudflare@latest my-d1-app
3
cd my-d1-app
4

5
# Select "Worker" when prompted
6
# Choose TypeScript for better type safety

2. Configure wrangler.toml#

1
name = "my-d1-app"
2
main = "src/index.ts"
3
compatibility_date = "2025-01-10"
4

5
# D1 Database binding
6
[[d1_databases]]
7
binding = "DB"
8
database_name = "my-app-db"
9
database_id = "YOUR_DATABASE_ID"
10

11
# Environment variables
12
[vars]
13
JWT_SECRET = "your-secret-key"
14
API_VERSION = "v1"
15

16
# Custom domains (optional)
17
routes = [
18
  { pattern = "api.yourdomain.com/*", zone_name = "yourdomain.com" }
19
]

Creating and Managing D1 Database#

1. Create a D1 Database#

1
# Create a new D1 database
2
wrangler d1 create my-app-db
3

4
# This will output a database_id - add it to wrangler.toml

2. Define Database Schema#

Create schema.sql:

1
-- Users table with authentication
2
CREATE TABLE IF NOT EXISTS users (
3
  id INTEGER PRIMARY KEY AUTOINCREMENT,
4
  email TEXT UNIQUE NOT NULL,
5
  username TEXT UNIQUE NOT NULL,
6
  password_hash TEXT NOT NULL,
7
  created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
8
  updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
9
  is_active BOOLEAN DEFAULT 1
10
);
11

12
-- Posts table for blog content
13
CREATE TABLE IF NOT EXISTS posts (
14
  id INTEGER PRIMARY KEY AUTOINCREMENT,
15
  user_id INTEGER NOT NULL,
16
  title TEXT NOT NULL,
17
  slug TEXT UNIQUE NOT NULL,
18
  content TEXT NOT NULL,
19
  excerpt TEXT,
20
  published BOOLEAN DEFAULT 0,
21
  views INTEGER DEFAULT 0,
22
  created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
23
  updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
24
  FOREIGN KEY (user_id) REFERENCES users (id) ON DELETE CASCADE
25
);
26

27
-- Comments table
28
CREATE TABLE IF NOT EXISTS comments (
29
  id INTEGER PRIMARY KEY AUTOINCREMENT,
30
  post_id INTEGER NOT NULL,
31
  user_id INTEGER NOT NULL,
32
  content TEXT NOT NULL,
33
  created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
34
  FOREIGN KEY (post_id) REFERENCES posts (id) ON DELETE CASCADE,
35
  FOREIGN KEY (user_id) REFERENCES users (id) ON DELETE CASCADE
36
);
37

38
-- Tags table
39
CREATE TABLE IF NOT EXISTS tags (
40
  id INTEGER PRIMARY KEY AUTOINCREMENT,
41
  name TEXT UNIQUE NOT NULL,
42
  slug TEXT UNIQUE NOT NULL
43
);
44

45
-- Post-Tag relationship
46
CREATE TABLE IF NOT EXISTS post_tags (
47
  post_id INTEGER NOT NULL,
48
  tag_id INTEGER NOT NULL,
49
  PRIMARY KEY (post_id, tag_id),
50
  FOREIGN KEY (post_id) REFERENCES posts (id) ON DELETE CASCADE,
51
  FOREIGN KEY (tag_id) REFERENCES tags (id) ON DELETE CASCADE
52
);
53

54
-- Create indexes for better performance
55
CREATE INDEX idx_posts_user_id ON posts(user_id);
56
CREATE INDEX idx_posts_published ON posts(published);
57
CREATE INDEX idx_posts_slug ON posts(slug);
58
CREATE INDEX idx_comments_post_id ON comments(post_id);
59
CREATE INDEX idx_comments_user_id ON comments(user_id);

3. Apply Schema to Database#

1
# Apply schema to local database
2
wrangler d1 execute my-app-db --local --file=./schema.sql
3

4
# Apply to production database
5
wrangler d1 execute my-app-db --remote --file=./schema.sql

Building the Worker Application#

1. Project Structure#

1
my-d1-app/
2
├── src/
3
│   ├── index.ts          # Main entry point
4
│   ├── router.ts         # Request routing
5
│   ├── middleware/
6
│   │   ├── auth.ts       # Authentication middleware
7
│   │   ├── cors.ts       # CORS handling
8
│   │   └── rateLimit.ts  # Rate limiting
9
│   ├── handlers/
10
│   │   ├── auth.ts       # Auth endpoints
11
│   │   ├── posts.ts      # Posts CRUD
12
│   │   └── users.ts      # User management
13
│   ├── models/
14
│   │   ├── user.ts       # User model
15
│   │   └── post.ts       # Post model
16
│   └── utils/
17
│       ├── db.ts         # Database utilities
18
│       ├── jwt.ts        # JWT handling
19
│       └── validation.ts # Input validation
20
├── wrangler.toml
21
├── package.json
22
└── tsconfig.json

2. Main Worker Entry Point#

src/index.ts:

1
import { Router } from 'itty-router';
2
import { authMiddleware } from './middleware/auth';
3
import { corsMiddleware } from './middleware/cors';
4
import { rateLimitMiddleware } from './middleware/rateLimit';
5
import { authHandler } from './handlers/auth';
6
import { postsHandler } from './handlers/posts';
7
import { usersHandler } from './handlers/users';
8

9
export interface Env {
10
  DB: D1Database;
11
  JWT_SECRET: string;
12
  RATE_LIMIT: KVNamespace;
13
}
14

15
const router = Router();
16

17
// Apply global middleware
18
router.all('*', corsMiddleware);
19
router.all('*', rateLimitMiddleware);
20

21
// Public routes
22
router.post('/api/auth/register', authHandler.register);
23
router.post('/api/auth/login', authHandler.login);
24
router.get('/api/posts', postsHandler.getAll);
25
router.get('/api/posts/:slug', postsHandler.getBySlug);
26

27
// Protected routes
28
router.all('/api/admin/*', authMiddleware);
29
router.post('/api/admin/posts', postsHandler.create);
30
router.put('/api/admin/posts/:id', postsHandler.update);
31
router.delete('/api/admin/posts/:id', postsHandler.delete);
32
router.get('/api/admin/users', usersHandler.getAll);
33

34
// Health check
35
router.get('/health', () => new Response('OK', { status: 200 }));
36

37
// 404 handler
38
router.all('*', () => new Response('Not Found', { status: 404 }));
39

40
export default {
41
  async fetch(request: Request, env: Env, ctx: ExecutionContext): Promise<Response> {
42
    return router.handle(request, env, ctx);
43
  },
44
};

3. Authentication Implementation#

src/handlers/auth.ts:

1
import { Env } from '../index';
2
import { hashPassword, verifyPassword } from '../utils/crypto';
3
import { generateJWT } from '../utils/jwt';
4
import { validateEmail, validatePassword } from '../utils/validation';
5

6
export const authHandler = {
7
  async register(request: Request, env: Env): Promise<Response> {
8
    try {
9
      const { email, username, password } = await request.json();
10

11
      // Validate input
12
      if (!validateEmail(email)) {
13
        return new Response('Invalid email', { status: 400 });
14
      }
15
      if (!validatePassword(password)) {
16
        return new Response('Password must be at least 8 characters', { status: 400 });
17
      }
18

19
      // Check if user exists
20
      const existingUser = await env.DB.prepare(
21
        'SELECT id FROM users WHERE email = ? OR username = ?'
22
      )
23
        .bind(email, username)
24
        .first();
25

26
      if (existingUser) {
27
        return new Response('User already exists', { status: 409 });
28
      }
29

30
      // Hash password and create user
31
      const passwordHash = await hashPassword(password);
32
      const result = await env.DB.prepare(
33
        'INSERT INTO users (email, username, password_hash) VALUES (?, ?, ?)'
34
      )
35
        .bind(email, username, passwordHash)
36
        .run();
37

38
      // Generate JWT
39
      const token = await generateJWT(
40
        { userId: result.meta.last_row_id, email },
41
        env.JWT_SECRET
42
      );
43

44
      return new Response(
45
        JSON.stringify({
46
          success: true,
47
          token,
48
          user: { id: result.meta.last_row_id, email, username }
49
        }),
50
        {
51
          status: 201,
52
          headers: { 'Content-Type': 'application/json' }
53
        }
54
      );
55
    } catch (error) {
56
      console.error('Registration error:', error);
57
      return new Response('Internal server error', { status: 500 });
58
    }
59
  },
60

61
  async login(request: Request, env: Env): Promise<Response> {
62
    try {
63
      const { email, password } = await request.json();
64

65
      // Get user from database
66
      const user = await env.DB.prepare(
67
        'SELECT id, email, username, password_hash FROM users WHERE email = ? AND is_active = 1'
68
      )
69
        .bind(email)
70
        .first();
71

72
      if (!user) {
73
        return new Response('Invalid credentials', { status: 401 });
74
      }
75

76
      // Verify password
77
      const isValid = await verifyPassword(password, user.password_hash);
78
      if (!isValid) {
79
        return new Response('Invalid credentials', { status: 401 });
80
      }
81

82
      // Generate JWT
83
      const token = await generateJWT(
84
        { userId: user.id, email: user.email },
85
        env.JWT_SECRET
86
      );
87

88
      return new Response(
89
        JSON.stringify({
90
          success: true,
91
          token,
92
          user: { id: user.id, email: user.email, username: user.username }
93
        }),
94
        {
95
          status: 200,
96
          headers: { 'Content-Type': 'application/json' }
97
        }
98
      );
99
    } catch (error) {
100
      console.error('Login error:', error);
101
      return new Response('Internal server error', { status: 500 });
102
    }
103
  }
104
};

CRUD Operations with D1#

Posts Handler Implementation#

src/handlers/posts.ts:

1
import { Env } from '../index';
2
import { generateSlug } from '../utils/slug';
3

4
export const postsHandler = {
5
  async getAll(request: Request, env: Env): Promise<Response> {
6
    try {
7
      const url = new URL(request.url);
8
      const page = parseInt(url.searchParams.get('page') || '1');
9
      const limit = parseInt(url.searchParams.get('limit') || '10');
10
      const offset = (page - 1) * limit;
11

12
      // Get total count
13
      const countResult = await env.DB.prepare(
14
        'SELECT COUNT(*) as total FROM posts WHERE published = 1'
15
      ).first();
16

17
      // Get posts with user information
18
      const posts = await env.DB.prepare(`
19
        SELECT
20
          p.id,
21
          p.title,
22
          p.slug,
23
          p.excerpt,
24
          p.views,
25
          p.created_at,
26
          p.updated_at,
27
          u.username as author,
28
          GROUP_CONCAT(t.name) as tags
29
        FROM posts p
30
        LEFT JOIN users u ON p.user_id = u.id
31
        LEFT JOIN post_tags pt ON p.id = pt.post_id
32
        LEFT JOIN tags t ON pt.tag_id = t.id
33
        WHERE p.published = 1
34
        GROUP BY p.id
35
        ORDER BY p.created_at DESC
36
        LIMIT ? OFFSET ?
37
      `)
38
        .bind(limit, offset)
39
        .all();
40

41
      return new Response(
42
        JSON.stringify({
43
          posts: posts.results,
44
          pagination: {
45
            page,
46
            limit,
47
            total: countResult.total,
48
            totalPages: Math.ceil(countResult.total / limit)
49
          }
50
        }),
51
        {
52
          status: 200,
53
          headers: { 'Content-Type': 'application/json' }
54
        }
55
      );
56
    } catch (error) {
57
      console.error('Error fetching posts:', error);
58
      return new Response('Internal server error', { status: 500 });
59
    }
60
  },
61

62
  async getBySlug(request: Request, env: Env): Promise<Response> {
63
    try {
64
      const url = new URL(request.url);
65
      const slug = url.pathname.split('/').pop();
66

67
      // Increment view count
68
      await env.DB.prepare(
69
        'UPDATE posts SET views = views + 1 WHERE slug = ?'
70
      ).bind(slug).run();
71

72
      // Get post with related data
73
      const post = await env.DB.prepare(`
74
        SELECT
75
          p.*,
76
          u.username as author,
77
          GROUP_CONCAT(t.name) as tags
78
        FROM posts p
79
        LEFT JOIN users u ON p.user_id = u.id
80
        LEFT JOIN post_tags pt ON p.id = pt.post_id
81
        LEFT JOIN tags t ON pt.tag_id = t.id
82
        WHERE p.slug = ? AND p.published = 1
83
        GROUP BY p.id
84
      `)
85
        .bind(slug)
86
        .first();
87

88
      if (!post) {
89
        return new Response('Post not found', { status: 404 });
90
      }
91

92
      // Get comments
93
      const comments = await env.DB.prepare(`
94
        SELECT
95
          c.id,
96
          c.content,
97
          c.created_at,
98
          u.username as author
99
        FROM comments c
100
        LEFT JOIN users u ON c.user_id = u.id
101
        WHERE c.post_id = ?
102
        ORDER BY c.created_at DESC
103
      `)
104
        .bind(post.id)
105
        .all();
106

107
      return new Response(
108
        JSON.stringify({
109
          post: {
110
            ...post,
111
            tags: post.tags ? post.tags.split(',') : [],
112
            comments: comments.results
113
          }
114
        }),
115
        {
116
          status: 200,
117
          headers: { 'Content-Type': 'application/json' }
118
        }
119
      );
120
    } catch (error) {
121
      console.error('Error fetching post:', error);
122
      return new Response('Internal server error', { status: 500 });
123
    }
124
  },
125

126
  async create(request: Request, env: Env): Promise<Response> {
127
    try {
128
      const { title, content, excerpt, tags, published } = await request.json();
129
      const userId = request.user.userId; // From auth middleware
130

131
      // Generate slug
132
      const slug = generateSlug(title);
133

134
      // Start transaction
135
      const tx = await env.DB.batch([
136
        env.DB.prepare(
137
          'INSERT INTO posts (user_id, title, slug, content, excerpt, published) VALUES (?, ?, ?, ?, ?, ?)'
138
        ).bind(userId, title, slug, content, excerpt, published ? 1 : 0)
139
      ]);
140

141
      const postId = tx[0].meta.last_row_id;
142

143
      // Handle tags
144
      if (tags && tags.length > 0) {
145
        for (const tagName of tags) {
146
          const tagSlug = generateSlug(tagName);
147

148
          // Insert or get tag
149
          await env.DB.prepare(
150
            'INSERT OR IGNORE INTO tags (name, slug) VALUES (?, ?)'
151
          ).bind(tagName, tagSlug).run();
152

153
          const tag = await env.DB.prepare(
154
            'SELECT id FROM tags WHERE slug = ?'
155
          ).bind(tagSlug).first();
156

157
          // Link post to tag
158
          await env.DB.prepare(
159
            'INSERT INTO post_tags (post_id, tag_id) VALUES (?, ?)'
160
          ).bind(postId, tag.id).run();
161
        }
162
      }
163

164
      return new Response(
165
        JSON.stringify({
166
          success: true,
167
          post: { id: postId, slug }
168
        }),
169
        {
170
          status: 201,
171
          headers: { 'Content-Type': 'application/json' }
172
        }
173
      );
174
    } catch (error) {
175
      console.error('Error creating post:', error);
176
      return new Response('Internal server error', { status: 500 });
177
    }
178
  }
179
};

Advanced Features#

1. Full-Text Search#

1
// Enable FTS5 for full-text search
2
const createSearchTable = `
3
CREATE VIRTUAL TABLE IF NOT EXISTS posts_fts USING fts5(
4
  title, content, excerpt,
5
  content=posts
6
);
7

8
-- Trigger to keep FTS table in sync
9
CREATE TRIGGER IF NOT EXISTS posts_fts_insert AFTER INSERT ON posts BEGIN
10
  INSERT INTO posts_fts (rowid, title, content, excerpt)
11
  VALUES (new.id, new.title, new.content, new.excerpt);
12
END;
13

14
CREATE TRIGGER IF NOT EXISTS posts_fts_update AFTER UPDATE ON posts BEGIN
15
  UPDATE posts_fts SET
16
    title = new.title,
17
    content = new.content,
18
    excerpt = new.excerpt
19
  WHERE rowid = new.id;
20
END;
21

22
CREATE TRIGGER IF NOT EXISTS posts_fts_delete AFTER DELETE ON posts BEGIN
23
  DELETE FROM posts_fts WHERE rowid = old.id;
24
END;
25
`;
26

27
// Search implementation
28
async function searchPosts(query: string, env: Env) {
29
  const results = await env.DB.prepare(`
30
    SELECT
31
      p.id,
32
      p.title,
33
      p.slug,
34
      p.excerpt,
35
      highlight(posts_fts, 0, '<mark>', '</mark>') as highlighted_title,
36
      snippet(posts_fts, 1, '<mark>', '</mark>', '...', 30) as snippet
37
    FROM posts p
38
    JOIN posts_fts ON p.id = posts_fts.rowid
39
    WHERE posts_fts MATCH ?
40
    ORDER BY rank
41
    LIMIT 20
42
  `).bind(query).all();
43

44
  return results;
45
}

2. Caching with Workers KV#

1
// Cache frequently accessed data
2
async function getCachedPost(slug: string, env: Env): Promise<any> {
3
  // Check cache first
4
  const cached = await env.KV.get(`post:${slug}`, { type: 'json' });
5
  if (cached) {
6
    return cached;
7
  }
8

9
  // Fetch from database
10
  const post = await env.DB.prepare(
11
    'SELECT * FROM posts WHERE slug = ?'
12
  ).bind(slug).first();
13

14
  if (post) {
15
    // Cache for 1 hour
16
    await env.KV.put(`post:${slug}`, JSON.stringify(post), {
17
      expirationTtl: 3600
18
    });
19
  }
20

21
  return post;
22
}
23

24
// Invalidate cache on update
25
async function updatePost(id: number, data: any, env: Env) {
26
  const result = await env.DB.prepare(
27
    'UPDATE posts SET ... WHERE id = ?'
28
  ).bind(...values, id).run();
29

30
  // Clear cache
31
  const post = await env.DB.prepare(
32
    'SELECT slug FROM posts WHERE id = ?'
33
  ).bind(id).first();
34

35
  if (post) {
36
    await env.KV.delete(`post:${post.slug}`);
37
  }
38

39
  return result;
40
}

3. Rate Limiting#

src/middleware/rateLimit.ts:

1
export async function rateLimitMiddleware(request: Request, env: Env) {
2
  const ip = request.headers.get('CF-Connecting-IP') || 'unknown';
3
  const key = `rate:${ip}`;
4

5
  // Get current count
6
  const current = await env.RATE_LIMIT.get(key);
7
  const count = current ? parseInt(current) : 0;
8

9
  // Check limit (100 requests per minute)
10
  if (count >= 100) {
11
    return new Response('Rate limit exceeded', {
12
      status: 429,
13
      headers: {
14
        'Retry-After': '60'
15
      }
16
    });
17
  }
18

19
  // Increment counter
20
  await env.RATE_LIMIT.put(key, String(count + 1), {
21
    expirationTtl: 60
22
  });
23
}

Performance Optimization#

1. Query Optimization#

1
// Use prepared statements for better performance
2
const preparedStatements = {
3
  getPost: null,
4
  updateViews: null
5
};
6

7
async function initPreparedStatements(env: Env) {
8
  preparedStatements.getPost = env.DB.prepare(
9
    'SELECT * FROM posts WHERE id = ?'
10
  );
11
  preparedStatements.updateViews = env.DB.prepare(
12
    'UPDATE posts SET views = views + 1 WHERE id = ?'
13
  );
14
}
15

16
// Use batching for multiple operations
17
async function batchOperations(env: Env) {
18
  const operations = [
19
    env.DB.prepare('INSERT INTO ...').bind(...),
20
    env.DB.prepare('UPDATE ...').bind(...),
21
    env.DB.prepare('DELETE ...').bind(...)
22
  ];
23

24
  const results = await env.DB.batch(operations);
25
  return results;
26
}

2. Connection Pooling and Replication#

1
// D1 automatically handles connection pooling
2
// Use read replicas for better performance
3
async function readFromReplica(env: Env) {
4
  // D1 automatically routes read queries to nearest replica
5
  const result = await env.DB.prepare(
6
    'SELECT * FROM posts WHERE published = 1'
7
  ).all();
8

9
  return result;
10
}
11

12
// Write operations always go to primary
13
async function writeToMaster(env: Env) {
14
  const result = await env.DB.prepare(
15
    'INSERT INTO posts ...'
16
  ).run();
17

18
  return result;
19
}

Deployment and Monitoring#

1. Deploy to Production#

1
# Deploy your Worker
2
wrangler publish
3

4
# View logs
5
wrangler tail
6

7
# Check D1 metrics
8
wrangler d1 info my-app-db

2. Monitoring and Analytics#

1
// Add custom analytics
2
async function trackAnalytics(request: Request, env: Env) {
3
  const url = new URL(request.url);
4
  const userAgent = request.headers.get('User-Agent');
5
  const ip = request.headers.get('CF-Connecting-IP');
6

7
  await env.DB.prepare(`
8
    INSERT INTO analytics (path, user_agent, ip, timestamp)
9
    VALUES (?, ?, ?, ?)
10
  `).bind(
11
    url.pathname,
12
    userAgent,
13
    ip,
14
    new Date().toISOString()
15
  ).run();
16
}
17

18
// Query analytics
19
async function getAnalytics(env: Env) {
20
  const stats = await env.DB.prepare(`
21
    SELECT
22
      COUNT(*) as total_requests,
23
      COUNT(DISTINCT ip) as unique_visitors,
24
      path,
25
      COUNT(*) as hits
26
    FROM analytics
27
    WHERE timestamp > datetime('now', '-7 days')
28
    GROUP BY path
29
    ORDER BY hits DESC
30
    LIMIT 10
31
  `).all();
32

33
  return stats;
34
}

Security Best Practices#

1. SQL Injection Prevention#

1
// Always use parameterized queries
2
// GOOD
3
const user = await env.DB.prepare(
4
  'SELECT * FROM users WHERE id = ?'
5
).bind(userId).first();
6

7
// BAD - Never do this!
8
// const user = await env.DB.prepare(
9
//   `SELECT * FROM users WHERE id = ${userId}`
10
// ).first();

2. Input Validation#

1
import { z } from 'zod';
2

3
const PostSchema = z.object({
4
  title: z.string().min(1).max(200),
5
  content: z.string().min(1).max(50000),
6
  excerpt: z.string().max(500).optional(),
7
  tags: z.array(z.string()).max(10).optional(),
8
  published: z.boolean().default(false)
9
});
10

11
async function validatePostInput(data: unknown) {
12
  try {
13
    return PostSchema.parse(data);
14
  } catch (error) {
15
    throw new Error('Invalid input');
16
  }
17
}

3. Authentication & Authorization#

1
// Implement role-based access control
2
async function checkPermission(userId: number, resource: string, action: string, env: Env) {
3
  const permission = await env.DB.prepare(`
4
    SELECT COUNT(*) as allowed
5
    FROM user_permissions up
6
    JOIN permissions p ON up.permission_id = p.id
7
    WHERE up.user_id = ? AND p.resource = ? AND p.action = ?
8
  `).bind(userId, resource, action).first();
9

10
  return permission.allowed > 0;
11
}
12

13
// Use in handlers
14
if (!await checkPermission(userId, 'posts', 'delete', env)) {
15
  return new Response('Forbidden', { status: 403 });
16
}

Troubleshooting Common Issues#

1. Database Locked Error#

1
// Implement retry logic for concurrent writes
2
async function retryableWrite(fn: Function, maxRetries = 3) {
3
  for (let i = 0; i < maxRetries; i++) {
4
    try {
5
      return await fn();
6
    } catch (error) {
7
      if (error.message.includes('database is locked') && i < maxRetries - 1) {
8
        await new Promise(resolve => setTimeout(resolve, 100 * Math.pow(2, i)));
9
        continue;
10
      }
11
      throw error;
12
    }
13
  }
14
}

2. Query Performance Issues#

1
// Use EXPLAIN QUERY PLAN to analyze slow queries
2
async function analyzeQuery(query: string, env: Env) {
3
  const plan = await env.DB.prepare(
4
    `EXPLAIN QUERY PLAN ${query}`
5
  ).all();
6

7
  console.log('Query plan:', plan);
8

9
  // Look for table scans and missing indexes
10
  const issues = plan.results.filter(row =>
11
    row.detail.includes('SCAN TABLE')
12
  );
13

14
  if (issues.length > 0) {
15
    console.warn('Performance issue: Table scan detected');
16
  }
17
}

Conclusion#

Cloudflare Workers with D1 Database provides a powerful platform for building globally distributed, full-stack applications. Key takeaways:

D1 offers SQLite compatibility with serverless benefits
Automatic replication ensures low-latency reads worldwide
Built-in security features when following best practices
Cost-effective scaling with pay-per-use pricing
Integrated ecosystem with KV, R2, and other Cloudflare services

Next Steps#

Explore D1 read replicas for enhanced performance
Implement Durable Objects for stateful applications
Add Cloudflare R2 for file storage
Set up Workers Analytics Engine for custom metrics