Protected by Cloudflare Access

Static, fast, and protected before your app even loads.

This starter uses Cloudflare Pages for hosting, Cloudflare Access for identity-aware protection, and GitHub Actions for continuous deployment.

See architecture Access docs

Why this is stronger

  • Authentication happens in Cloudflare Zero Trust before your Pages app responds.
  • No shared password in the app and no auth secrets in repo code.
  • Use email OTP, Google, GitHub, Microsoft, Okta, or other Access identity providers.

Deploy flow

  1. Push to GitHub.
  2. GitHub Actions tests and deploys to Cloudflare Pages.
  3. Cloudflare Access protects the site on your custom hostname.

What to customize

Replace the starter copy, add more static pages, and tune Access policies for your team, contractors, or private preview users.