Skip to main content

Cloudflare API Credentials

Description#

General#

  • Documentation: https://api.cloudflare.com/
  • Summary: Cloudflare protects and accelerates websites, providing CDN services, DDoS mitigation, network security and DNS. Cloudflare's API exposes the entire Cloudflare infrastructure via a standardized programmatic interface : anything that can be done on cloudflare.com dashboard can be done using the API : that's the reason why Cloudflare credentials are highly sensitive. The API provides multiple way to authenticate:
  • With an API token
  • With a CA Key
  • With a Global API Key associated to an email address.
  • IPs allowlist: This feature is not supported.
  • Scopes: Scopes are specified when creating the token, but custom scopes cannot be set for Global API key and CA key

Revoke the secret#

An API token can be revoked via cloudflare's dashboard or with the API, see this [documentation] (https://api.cloudflare.com/#user-api-tokens-delete-token) for more details. The Global API key and CA keycan only be changed from Cloudflare's dashboard

Check for suspicious activity#

The application offers audit logs to check for suspicious activity. See docs

Details for Cloudflare ca key#

  • Category: Other

  • Company: Cloudflare

  • High recall: False

  • Validity check available: True

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 1

  • Occurrences found for one million commits: very rare

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - cloudflare- type: ContentWhitelistPreValidator  patterns:  - v1\.0-

Examples#

- text: >    "curl -X DELETE "https://api.cloudflare.com/client/v4/certificates/3664634374038615934" \     -H "X-Auth-User-Service-Key: v1.0-e24fd090c02efcfecb4de8f4ff246fd5c75b48946fdf0ce26c59f91d0d90797b-cfa33fe60e8e34073c149323454383fc9005d25c9b4c502c2f063457ef65322eade065975001a0b4b4c591c5e1bd36a6e8f7e2d4fa8a9ec01c64c041e99530c2-07b9efe0acd78c82c8d9c690aacb8656d81c369246d7f996a205fe3c18e9254a"  apikey: "v1.0-e24fd090c02efcfecb4de8f4ff246fd5c75b48946fdf0ce26c59f91d0d90797b-cfa33fe60e8e34073c149323454383fc9005d25c9b4c502c2f063457ef65322eade065975001a0b4b4c591c5e1bd36a6e8f7e2d4fa8a9ec01c64c041e99530c2-07b9efe0acd78c82c8d9c690aacb8656d81c369246d7f996a205fe3c18e9254a"- text: >    "curl -X DELETE "https://api.cloudflare.com/client/v4/certificates/3664634374033242543" \     -H "X-Auth-User-Service-Key: v1.0-126a8b5599b626526fc7620b-4734f25dc3e1f768241132453456747648735645637653785ccc7570dda15e8fa31cd2ba0888249be88800f8ac21998d8cee2016ebca71588c5ad4034b3cfcefe5c30aea43141165"  apikey: "v1.0-126a8b5599b626526fc7620b-4734f25dc3e1f768241132453456747648735645637653785ccc7570dda15e8fa31cd2ba0888249be88800f8ac21998d8cee2016ebca71588c5ad4034b3cfcefe5c30aea43141165"

Details for Cloudflare auth email#

  • Category: Other

  • Company: Cloudflare

  • High recall: False

  • Validity check available: True

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 2

  • Occurrences found for one million commits: 1.88

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - cloudflare

Examples#

- text: >    email="foo.bar@mail.com", apikey="78aa561a1a15305a2c6454c96fd9175a45e6f", endpoint="https://api.cloudflare.com/client/v4/"  client_id: "foo.bar@mail.com"  client_secret: "78aa561a1a15305a2c6454c96fd9175a45e6f"

Details for Cloudflare api token#

  • Category: Other

  • Company: CloudFlare

  • High recall: False

  • Validity check available: True

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.24

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - cloudflare

Examples#

- text: >    CLOUDFLARE_API_TOKEN=8wXU_dJJM-wQfDoBVGMm90-Jnw8UK__7mExAmPle
  apikey: 8wXU_dJJM-wQfDoBVGMm90-Jnw8UK__7mExAmPle