Cloudflare Integration for new accounts

Fingerprint Pro JS agent v3.6.0 or later is required.

🚧

New accounts only

This document covers Cloudflare Integration information and setup for newly created accounts only. For existing accounts, please refer to this guide instead.

Fingerprint Pro Cloudflare Integration consists of three fundamental parts:

  • Fingerprint Pro infrastructure,
  • Cloudflare worker,
  • Fingerprint Pro JS agent.

Fingerprint Pro infrastructure creates a Cloudflare Worker that's available on the specific path on your site. The rest of your site is not affected.

941941

Cloudflare worker registered on a specific path

Cloudflare worker code is 100% open-source and available on GitHub. Once the Fingerprint Pro JS agent is configured on your site correctly, the worker is responsible for delivering the latest fingerprinting client-side logic as well as proxying identification requests and responses between your site and Fingerprint Pro's APIs.

The benefits of using the Cloudflare Integration

  • Significant increase in accuracy in browsers with strict privacy features such as Safari or Firefox.
  • Cookies are now recognized as β€œfirst-party.” This means they can live longer in the browser and extend the lifetime of visitorIds.
  • Ad blockers will not block our Fingerprint Pro JS agent from loading. Attempts to connect to an external URL will be stopped by most ad blockers while attempts to connect to the same site URL will be allowed.
  • Ad blockers will not block our identification requests since they are sent to the specific path or subdomain that belongs to the same site.
  • Insight and control over the identification requests that can be combined with other Cloudflare features like WAF or Analytics.
  • With the Cloudflare Integration, you can manage unlimited subdomains and paths and provide Fingerprint Pro services to all your customers at any scale while benefiting from all the 1st-party integration improvements.
  • Easy to meet compliance and auditing requirements.
  • Improved performance without the need to do the TLS handshakes.

Setup process

For existing accounts, please refer to this guide.

Newly created accounts

After creating an account at fingerprint.com, you will continue the onboarding flow with our SDKs and integrations. You can find the Cloudflare Integration on the Integrations tab. Select Cloudflare to start the configuration of the Cloudflare Integration.

πŸ“˜

Prerequsities

Your site needs to be added to Cloudflare.

10791079

Select Integrations

10931093

Select Cloudflare Integration

After selecting Cloudflare Integration, you will proceed to a form where you need to put the information about your Cloudflare account.

10811081

Cloudflare Credentials

Name

Example

Short description

Cloudflare Account ID

88e2a7348d589a61edd0918e57fb136f

The Account ID obtained from the Cloudflare Dashboard.

Cloudflare API Token

YQSnnxWAQiiEh9qM58wZNnyQS7FUdoqGIUAbrh7T

API Token generated from the Cloudflare's User Profile 'API Tokens' page.

Cloudflare Account ID

The Account ID is required to deploy workers. Go to Cloudflare Workers and copy the Account ID.

Cloudflare API Token

The API Token is required to deploy workers. Go to the API Tokens page, select Create Custom Token, and follow the steps bellow.

  • Type "fingerprint.com" in the name field.
  • Add Account > Worker Scripts > Edit permission.
  • Add Zone > Worker Routes > Edit permission.
  • Select the account in the Account Resources.
  • Select Specific zone > yourwebsite in the Zone Resources.
  • Add IP Filtering > 3.23.16.20.
  • Do not set any TTL.
899899

API Token Creation Form

In the next step, you should see the summary and then Create Token.

717717

API Token Summary

πŸ“˜

API Token Safety

When creating an API Token, it is considered best practice to grant it as few privileges as possible. In the example above, the API Token has permissions to only manage workers in your account. Fingerprint Pro will use your API Token for managing the Fingerprint Pro Cloudflare Worker and nothing else.

Fingerprint always encrypts customer data, including API tokens and configuration items. This guarantees that the data we get from our customers is securely transmitted and stored. The Client IP Address Filtering functionality adds an additional layer of security. Whitelisting our public Cloudflare service IP address ensures that the API Token can only be used by Fingerprint services and no one else.

After entering Account ID and API Token, proceed to the next step.

10841084

Choose domain

Enter the same domain you had created the API Token for before. This domain must be managed by your Cloudflare account and must belong to the provided Account ID.

11071107

Cloudflare Worker Review

Press the deploy button to start the deployment process. This process may take several minutes.

10761076

πŸ‘

Worker deployment

When you provide the integration wizard with the information above, we will create a Cloudflare Worker in your Cloudflare account. Since we are responsible for updating and maintenance of the Cloudflare Worker, please don't make any changes to the API Token or revoke it.

Cloudflare Worker will be named fingerprint-pro-cloudflare-worker-yourwebsite, you will be able to see it in Cloudflare Workers Dashboard once it is deployed.

Fingerprint Pro JS agent configuration

Once the worker is deployed, you need to configure your client-side application accordingly. In this step, you can choose from a variety of frameworks, platforms, and approaches.

10751075

Code Snippets


Did this page help you?