Loading source
Pulling the file list, source metadata, and syntax-aware rendering for this listing.
Source from repo
Comprehensive Cloudflare platform skill covering Workers, D1, R2, KV, AI, Durable Objects, and security.
Files
Skill
Size
Entrypoint
Format
Open file
Syntax-highlighted preview of this file as included in the skill package.
references/flagship/api.md
1# Flagship API Reference2## Binding API (Workers)4The binding is available as `env.FLAGS` (type `Flagship` from `@cloudflare/workers-types`).6### Evaluation Methods8All methods are async, never throw, and return the `defaultValue` on errors.10| Method | Signature | Returns |12|--------|-----------|---------|13| `get` | `get(flagKey, defaultValue?, context?)` | `Promise<unknown>` |14| `getBooleanValue` | `getBooleanValue(flagKey, defaultValue, context?)` | `Promise<boolean>` |15| `getStringValue` | `getStringValue(flagKey, defaultValue, context?)` | `Promise<string>` |16| `getNumberValue` | `getNumberValue(flagKey, defaultValue, context?)` | `Promise<number>` |17| `getObjectValue` | `getObjectValue<T>(flagKey, defaultValue, context?)` | `Promise<T>` |18| `getBooleanDetails` | `getBooleanDetails(flagKey, defaultValue, context?)` | `Promise<FlagshipEvaluationDetails<boolean>>` |19| `getStringDetails` | `getStringDetails(flagKey, defaultValue, context?)` | `Promise<FlagshipEvaluationDetails<string>>` |20| `getNumberDetails` | `getNumberDetails(flagKey, defaultValue, context?)` | `Promise<FlagshipEvaluationDetails<number>>` |21| `getObjectDetails` | `getObjectDetails<T>(flagKey, defaultValue, context?)` | `Promise<FlagshipEvaluationDetails<T>>` |22### Parameters (shared across all methods)24| Parameter | Type | Required | Description |26|-----------|------|----------|-------------|27| `flagKey` | `string` | Yes | Flag key to evaluate |28| `defaultValue` | varies | Yes (except `get`) | Fallback if evaluation fails or flag not found |29| `context` | `FlagshipEvaluationContext` | No | Attributes for targeting rules (`{ userId: "user-42", country: "US" }`) |30### Types32```typescript34type FlagshipEvaluationContext = Record<string, string | number | boolean>;35interface FlagshipEvaluationDetails<T> {37flagKey: string;38value: T;39variant?: string; // name of the matched variation40reason?: string; // "TARGETING_MATCH" | "DEFAULT" | "DISABLED" | "SPLIT"41errorCode?: string; // "TYPE_MISMATCH" | "GENERAL"42errorMessage?: string;43}44```45### Example47```typescript49export default {50async fetch(request: Request, env: Env): Promise<Response> {51const enabled = await env.FLAGS.getBooleanValue("new-feature", false, {52userId: "user-42",53});54return new Response(enabled ? "Feature on" : "Feature off");55},56};57```58---60## OpenFeature SDK62Package: `@cloudflare/flagship`64### Server Provider (`FlagshipServerProvider`)66For Workers, Node.js, and server-side JavaScript.68**With binding (recommended inside Workers):**70```typescript72import { OpenFeature } from "@openfeature/server-sdk";73import { FlagshipServerProvider } from "@cloudflare/flagship";74await OpenFeature.setProviderAndWait(76new FlagshipServerProvider({ binding: env.FLAGS }),77);78const client = OpenFeature.getClient();79const enabled = await client.getBooleanValue("new-checkout", false, {80targetingKey: "user-42",81});82```83**With app ID (Node.js / non-Worker runtimes):**85```typescript87import { OpenFeature } from "@openfeature/server-sdk";88import { FlagshipServerProvider } from "@cloudflare/flagship";89await OpenFeature.setProviderAndWait(91new FlagshipServerProvider({92appId: "<APP_ID>",93accountId: "<ACCOUNT_ID>",94authToken: "<API_TOKEN>",95}),96);97const client = OpenFeature.getClient();98const enabled = await client.getBooleanValue("new-checkout", false, {99targetingKey: "user-42",100});101```102### Client Provider (`FlagshipClientProvider`)104For browser applications. Pre-fetches flags on init, evaluates synchronously.106```typescript108import { OpenFeature } from "@openfeature/web-sdk";109import { FlagshipClientProvider } from "@cloudflare/flagship";110await OpenFeature.setProviderAndWait(112new FlagshipClientProvider({113appId: "<APP_ID>",114accountId: "<ACCOUNT_ID>",115authToken: "<API_TOKEN>",116prefetchFlags: ["promo-banner", "dark-mode"],117}),118);119await OpenFeature.setContext({ targetingKey: "user-42", plan: "enterprise" });120const client = OpenFeature.getClient();121// Synchronous — no await needed123const showBanner = client.getBooleanValue("promo-banner", false);124```125**Important:** Only flags listed in `prefetchFlags` are available. Unlisted flags return `FLAG_NOT_FOUND`.127### SDK Hooks129```typescript131import { LoggingHook, TelemetryHook } from "@cloudflare/flagship";132OpenFeature.addHooks(new LoggingHook(), new TelemetryHook());133```134---136## REST API (Flag Management)138Source of truth: [Cloudflare Flagship API reference](https://developers.cloudflare.com/api/resources/flagship/). Use it to verify REST paths, envelopes, response fields, and permission wording before relying on examples here.140### FIRST: Check Prerequisites142Before making any REST API calls (create, read, update, delete, toggle flags), verify these environment variables are set:144| Variable | Purpose | How to get |146|----------|---------|------------|147| `CLOUDFLARE_ACCOUNT_ID` | Account identifier | Dashboard URL or `wrangler whoami` |148| `CLOUDFLARE_API_TOKEN` | Bearer token for API auth | [Create API token](https://dash.cloudflare.com/profile/api-tokens) with Flagship permissions |149| `FLAGSHIP_APP_ID` | Target app UUID | Dashboard under **Compute > Flagship**, or `GET /apps` endpoint |150Check with:152```bash154echo "CLOUDFLARE_ACCOUNT_ID=${CLOUDFLARE_ACCOUNT_ID:-(not set)}"155echo "CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN:-(not set)}"156echo "FLAGSHIP_APP_ID=${FLAGSHIP_APP_ID:-(not set)}"157```158**If any are missing, ask the user to provide them before proceeding.**160### Base URL and Auth162Base URL: `https://api.cloudflare.com/client/v4/accounts/{account_id}/flagship`164Authentication: `Authorization: Bearer <API_TOKEN>`166Management endpoints use the Cloudflare v4 envelope. On success, the payload is under `result`; errors are an array under `errors`.168```jsonc170// Success171{ "success": true, "result": <T>, "errors": [], "messages": [] }172// Paginated success174{175"success": true,176"result": [<T>],177"result_info": { "count": 50, "cursor": "next-cursor-or-null" },178"errors": [],179"messages": []180}181// Error183{ "success": false, "result": null, "errors": [{ "message": "message" }], "messages": [] }184```185### App Endpoints187| Method | Path | Description |189|--------|------|-------------|190| `GET` | `/apps` | List all apps |191| `GET` | `/apps/{app_id}` | Get app |192| `POST` | `/apps` | Create app (`{ "name": "my-app" }`) |193| `PUT` | `/apps/{app_id}` | Update app (`{ "name": "new-name" }`) |194| `DELETE` | `/apps/{app_id}` | Delete app |195App name constraints: alphanumeric + hyphens + underscores, 1-64 chars.197### Flag Endpoints199| Method | Path | Description |201|--------|------|-------------|202| `GET` | `/apps/{app_id}/flags?limit=50&cursor=<cursor>` | List flags (paginated) |203| `GET` | `/apps/{app_id}/flags/{flag_key}` | Get flag |204| `POST` | `/apps/{app_id}/flags` | Create flag |205| `PUT` | `/apps/{app_id}/flags/{flag_key}` | Update flag (full replace) |206| `DELETE` | `/apps/{app_id}/flags/{flag_key}` | Delete flag |207| `GET` | `/apps/{app_id}/flags/{flag_key}/changelog?limit=20&cursor=<cursor>` | Flag changelog |208### Evaluate Endpoint210```212GET /apps/{app_id}/evaluate?flagKey=<key>&<context-attrs>213```214Requires an API token with the `com.cloudflare.account.flagship.evaluate` permission. Context attributes passed as query params. This endpoint is not wrapped in the management envelope; the SDK contract returns OpenFeature-style camelCase:216```json218{219"flagKey": "my-flag",220"value": true,221"variant": "on",222"reason": "SPLIT"223}224```225Reasons: `TARGETING_MATCH`, `SPLIT`, `DEFAULT`, `DISABLED`.227### Management Response Payloads229Management endpoints are wrapped in the Cloudflare v4 envelope shown above. Common `.result` payloads:231**App result**233```json235{236"id": "app-uuid",237"name": "my-app",238"created_at": "2026-06-09T12:00:00.000Z",239"updated_at": "2026-06-09T12:00:00.000Z",240"updated_by": "[email protected]"241}242```243**Flag result**245```json247{248"key": "my-flag",249"type": "boolean",250"default_variation": "off",251"variations": { "on": true, "off": false },252"rules": [],253"description": "Enables the new feature",254"enabled": true,255"updated_at": "2026-06-09T12:00:00.000Z",256"updated_by": "[email protected]"257}258```259**Changelog entry**261```json263{264"flag_key": "my-flag",265"event": "update",266"after": { "key": "my-flag", "default_variation": "off", "variations": { "on": true, "off": false }, "rules": [], "enabled": true },267"diff": { "enabled": { "from": false, "to": true } }268}269```270Changelog entries include the full flag state after the change. `update` entries also include `diff`.272---274## FlagDefinition Schema276```json278{279"key": "my-flag",280"type": "boolean",281"default_variation": "off",282"variations": {283"on": true,284"off": false285},286"rules": [287{288"priority": 1,289"conditions": [290{291"attribute": "email",292"operator": "ends_with",293"value": "@cloudflare.com"294}295],296"serve_variation": "on",297"rollout": { "percentage": 100 }298}299],300"description": "Enables the new feature",301"enabled": true302}303```304### Field Constraints306| Field | Type | Constraints |308|-------|------|-------------|309| `key` | string | 1-64 chars, `/^[a-zA-Z0-9_-]+$/` |310| `type` | enum | Optional. `boolean`, `string`, `number`, `json` (auto-inferred from variations) |311| `default_variation` | string | Must be a key in `variations` |312| `variations` | `Record<string, T>` | At least one. All values same type. Keys: alphanumeric/hyphens/underscores, max 64 chars. Values max 10KB. |313| `rules` | `Rule[]` | Can be empty. No duplicate priorities. |314| `description` | string? | Max 512 chars, nullable |315| `enabled` | boolean | Required. `false` = always returns default variation. |316### Rule Schema318```json320{321"priority": 1,322"conditions": [ /* Condition[] */ ],323"serve_variation": "on",324"rollout": { "percentage": 50, "attribute": "targetingKey" }325}326```327- `priority`: integer >= 1, unique across rules in the flag (lower = evaluated first)329- `conditions`: array of base or logical conditions330- `serve_variation`: must be a key in `variations`331- `rollout`: optional. `percentage` 0-100. `attribute` defaults to `targetingKey`.332### Condition Schema334**Base condition:**336```json338{ "attribute": "email", "operator": "ends_with", "value": "@cloudflare.com" }339```340**Logical condition (AND/OR):**342```json344{345"logical_operator": "AND",346"clauses": [347{ "attribute": "country", "operator": "equals", "value": "US" },348{ "attribute": "plan", "operator": "in", "value": ["enterprise", "business"] }349]350}351```352Nesting supported up to 6 levels deep.354### Operators356| Operator | Description | Value Type |358|----------|-------------|------------|359| `equals` | Exact match (case-sensitive) | String |360| `not_equals` | Not exact match | String |361| `greater_than` | Numeric / datetime > | Number, ISO 8601 |362| `less_than` | Numeric / datetime < | Number, ISO 8601 |363| `greater_than_or_equals` | >= | Number, ISO 8601 |364| `less_than_or_equals` | <= | Number, ISO 8601 |365| `contains` | Substring match (case-sensitive) | String |366| `starts_with` | Prefix match | String |367| `ends_with` | Suffix match | String |368| `in` | Value in array | Array |369| `not_in` | Value not in array | Array |370---372## Rate Limits374| Operation | Limit |376|-----------|-------|377| Mutations (POST/PUT/DELETE) | 60 per 60s per account:app |378| Reads (GET) | 600 per 60s per account:app |379## Error Codes381| HTTP Status | Meaning |383|-------------|---------|384| 200 | Success (read/update/delete) |385| 201 | Created (create) |386| 400 | Validation error (check `errors[].message`) |387| 401 | Invalid or missing token |388| 404 | Flag or app not found |389| 409 | Flag key already exists (create) |390| 429 | Rate limited |391