Cloudflare Docs

Cloudflare for Platforms

Cloudflare Docs

Cloudflare for Platforms

Overview
Workers for Platforms
Get started

Configure Workers for Platforms
Create a dynamic dispatch Worker

Learning

How Workers for Platforms works

Platform

Custom limits
Limits
Observability
Outbound Workers
Tags
User Worker metadata
Cloudflare for SaaS
Plans
Get started

Enable
Configuring Cloudflare for SaaS
Advanced Settings

Apex proxying

Setup

Regional Services for SaaS
Custom origin server
Workers as your fallback origin

Common API Calls

Custom hostnames

Create custom hostnames
Hostname validation

Pre-validation
Real-time validation
Backoff schedule
Validation status
Error codes

Move hostnames
Remove custom hostnames
Custom metadata

Security

Certificate Management

Certificate statuses
Issue and validate certificates

Issue
Validate

Delegated
TXT
HTTP
CNAME
Email
Troubleshooting

Renew

TLS Management
Custom certificates

Manage custom certificates
Certificate signing requests (CSRs)

Webhook definitions

WAF for SaaS

Managed Rulesets

Secure with Cloudflare Access

Performance

Argo Smart Routing for SaaS
Cache for SaaS
Early Hints for SaaS

Analytics
SaaS customers

How it works
Provider guides

BigCommerce
Shopify
WP Engine

Product compatibility
Remove domain

Reference

Connection request details
Troubleshooting
Status codes

Custom hostnames
Custom CSRs
Certificate authority specific

Token validity periods
Deprecation - Version 1
Certificate and hostname priority
Certificate authorities
Certificate statuses
Domain control validation backoff schedule

API reference

Certificate authority specific

DigiCert

These codes are rooted on the /v4/zones/:zone_id/custom_hostnames API endpoint. They will be reported in the validation_errors attribute of the ssl attribute for a custom_hostname resource.

HTTP Status Code	Error	Status	Reason
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	%s reported as potential risk: google_safe_browsing	pending_validation	Google maintains a list of URLs that contain malware or phishing. If the domain submitted for validation matches any domain in a Google URL, it will fail the risk check.
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	%s reported as potential risk: risky_keywords	pending_validation	Risky Keywords are a set of DigiCert Rules for domains that have potential risk to us or our customers. If the domain submitted for validation matches any of the risky keyword rules it will fail the risk check. (some example rules: “contains google.com”, “ends with amazon.com”, “equals bing.com”)
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	%s reported as potential risk: phishtank	pending_validation	Phishtank maintains a list of URLs that contain malware or phishing. If the domain submitted for validation matches any domain in a Phishtank URL, it will fail the risk check.
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	Domain validation failed for %s	pending_validation	Could be multiple reasons, with most common reason being that the DCV tokens have expired.
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	Issuance blocked by a CAA error for %s	pending_issuance	The Certification Authority Authorization (CAA) DNS Resource Record allows a DNS domain name holder to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain. CAA Resource Records allow a public Certification Authority to implement additional controls to reduce the risk of unintended certificate mis-issue.
201 Created on POST; 202 Accepted on PATCH; 200 OK on GET	Issuance blocked due to the Common Name being too long (over %d characters).	pending_issuance	Common names are limited to 64 characters and subject alternative names (SANs) are limited to 255 characters.