cdn.hackclub.com

Deep under the waves and storms there lies a vault...

Banner illustration by @maxwofford.

A Rails 8 application for hosting and managing CDN uploads, with OAuth authentication via Hack Club.

Prerequisites

Ruby 3.4.4 (see .ruby-version)
PostgreSQL
Node.js + Yarn (for Vite frontend)
A Cloudflare R2 bucket (or S3-compatible storage)

Setup

Clone and install dependencies:

git clone https://github.com/hackclub/cdn.git

cd cdn
bundle install
yarn installll

Configure environment variables:
```
cp .env.example .env
```
Edit .env with your credentials (see below for details).
Setup the database:
```
bin/rails db:create db:migrate
```

Generate encryption keys (for API key encryption):

# Generate a 32-byte hex key for Lockbox
ruby -e  "require 'securerandom'; puts SecureRandom.hex(32)"


# Generate a 32-byte hex key for BlindIndex
ruby -e  "require 'securerandom'; puts SecureRandom.hex(32)"


# Generate Active Record encryption keys
bin/rails db:encryption:initt

Start the development servers:

# In one terminal, run the Vite dev server:
bin/vite dev



# In another terminal, run the Rails server:
bin/rails serverr

Environment Variables

See .env.example for the full list. Key variables:

Variable	Description
`R2_ACCESS_KEY_ID`	Cloudflare R2 access key
`R2_SECRET_ACCESS_KEY`	Cloudflare R2 secret key
`R2_BUCKET_NAME`	R2 bucket name
`R2_ENDPOINT`	R2 endpoint URL
`CDN_HOST`	Public hostname for CDN URLs
`CDN_ASSETS_HOST`	Public R2 bucket hostname
`HACKCLUB_CLIENT_ID`	OAuth client ID from Hack Club Auth
`HACKCLUB_CLIENT_SECRET`	OAuth client secret
`LOCKBOX_MASTER_KEY`	64-char hex key for encrypting API keys
`BLIND_INDEX_MASTER_KEY`	64-char hex key for searchable encryption

DNS Setup

Domain	Points to
`cdn.hackclub.com`	Rails app (Heroku/Fly/etc.)
`cdn.hackclub-assets.com`	R2 bucket (custom domain in R2 settings)

API

The API uses bearer token authentication. Create an API key from the web dashboard after logging in.

Upload a file:

curl -X POST https://cdn.hackclub.com/api/v4/upload \
  -H  "Authorization: Bearer YOUR_API_KEY" \
  -F  "[email protected]"

Upload from URL:

curl -X POST https://cdn.hackclub.com/api/v4/upload_from_url \
  -H  "Authorization: Bearer YOUR_API_KEY" \
  -H  "Content-Type: application/json" \
  -d  '{"url": "https://example.com/image.png"}'

See /docs in the running app for full API documentation.

Architecture

Rails 8 with Vite for frontend assets
Phlex + Primer ViewComponents for UI
Active Storage with Cloudflare R2 backend
Solid Queue/Cache/Cable for background jobs and caching (production)
Pundit for authorization
Lockbox + BlindIndex for API key encryption

Made with 💜 for Hack Club

Name	Name	Last commit message	Last commit date
Latest commit System-End and 24c02 feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 ) Feb 5, 2026 ae1ffad · · Feb 5, 2026 History 113 Commits
.github	.github	CDN V4 (hackclub#20 )	Jan 30, 2026
app	app	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
bin	bin	CDN V4 (hackclub#20 )	Jan 30, 2026
config	config	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
db	db	CDN V4 (hackclub#20 )	Jan 30, 2026
lib/tasks	lib/tasks	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
log	log	CDN V4 (hackclub#20 )	Jan 30, 2026
public	public	CDN V4 (hackclub#20 )	Jan 30, 2026
script	script	CDN V4 (hackclub#20 )	Jan 30, 2026
storage	storage	CDN V4 (hackclub#20 )	Jan 30, 2026
test	test	CDN V4 (hackclub#20 )	Jan 30, 2026
tmp	tmp	CDN V4 (hackclub#20 )	Jan 30, 2026
vendor	vendor	CDN V4 (hackclub#20 )	Jan 30, 2026
.dockerignore	.dockerignore	CDN V4 (hackclub#20 )	Jan 30, 2026
.env.example	.env.example	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
.gitattributes	.gitattributes	CDN V4 (hackclub#20 )	Jan 30, 2026
.gitignore	.gitignore	CDN V4 (hackclub#20 )	Jan 30, 2026
.rubocop.yml	.rubocop.yml	CDN V4 (hackclub#20 )	Jan 30, 2026
.ruby-version	.ruby-version	CDN V4 (hackclub#20 )	Jan 30, 2026
Dockerfile	Dockerfile	ffi	Jan 30, 2026
Gemfile	Gemfile	redirects	Feb 5, 2026
Gemfile.lock	Gemfile.lock	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
Procfile.dev	Procfile.dev	CDN V4 (hackclub#20 )	Jan 30, 2026
README.md	README.md	feat(storage): public R2 URLs with Cloudflare edge caching (hackclub#28 )	Feb 5, 2026
Rakefile	Rakefile	CDN V4 (hackclub#20 )	Jan 30, 2026
config.ru	config.ru	CDN V4 (hackclub#20 )	Jan 30, 2026
package.json	package.json	CDN V4 (hackclub#20 )	Jan 30, 2026
vite.config.ts	vite.config.ts	fucking javascript	Jan 30, 2026
yarn.lock	yarn.lock	CDN V4 (hackclub#20 )	Jan 30, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

cdn.hackclub.com

Prerequisites

Setup

Environment Variables

DNS Setup

API

Architecture

About

Releases

Packages

Languages

System-End/cdn

Folders and files

Latest commit

History

Repository files navigation

cdn.hackclub.com

Prerequisites

Setup

Environment Variables

DNS Setup

API

Architecture

About

Resources

Stars

Watchers

Forks

Releases

Packages

Languages