cf openai

A service based on Cloudflare Worker proxy access to OpenAI/AzureOpenAI API, currently supporting access to enterprise WeChat applications and WeChat public accounts

• cf-openai
  • Basic requirements
  • Cloudflare Worker deployment
    • Cloudflare interface deployment
    • Github Action Deployment
    • Local command line deployment
  • Enterprise WeChat application access configuration
  • WeChat public account access configuration
    • Input and output support
  • Available commands
  • OpenAI configuration
  • Global configuration
  • Known issues

• Register an OpenAI account, create a copy API key, or register an Azure account, create resources and deploy the model
• Register a Cloudflare account, about free usage
• Domestic service access also requires a domain name that can be directly accessed domestically.

There are three ways

1. When creating a new service in the Cloudflare Workers interface, the default settings are sufficient. Enter the newly created Worker,快速编辑in the upper right corner, download the packaged js file in the release of this project, copy the content to the editor, and save
2. Workers submenu KV creates a new namespace with any name. Return to the Worker in the first step, click on the last设置in the middle row of options on the page, select变量on the left, scroll down the page to KV 命名空间绑定,编辑变量and click to add the binding created in the second part Namespace, the variable name on the left must be filled in KV
3. Scroll up to环境变量at the top, and read the following chapters to configure them on the interface according to the service you want to access.
4. Optional, required for domestic service access. Domain name DNS resolution must be in Cloudflare. For operation documentation, see Add site to Cloudflare. You can also buy domain names directly from Cloudflare without having to perform DNS resolution yourself. Then add a custom domain in the second触发器in the middle row of options on the Worker page to add the domain name to the Worker. You can refer to using Cloudflare Workers to solve the problem of API inaccessibility of OpenAI and ChatGPT.

Note: When wrangler executes deployment, it will print relevant information, such as the environment variables and KV ID configured in wrangler.toml . These can be seen from the Github Actions execution log

1. Follow the documentation to create a Cloudflare API token
2. KV is created as above, and kv_namespaces id in the file wrangler.toml is filled in with the id of the created namespace for binding.
3. Fork this project on Github and add the following Secrets in Settings - Secrets and variables - Actions in your own project repository
   • CF_API_TOKEN: Fill in the Cloudflare API token created in the first step
   • WRANGLER_TOML: Read the items under [vars] in the supplementary file wrangler.toml in the following chapters according to the service to be accessed, and fill in the entire file content
4. Manually run the Deploy Action on the Github Actions page to complete the deployment.
5. Domain name processing is the same as above

Need to understand the basic use of Git and Node.Js

1. git clone this project and install dependencies. wranger is the official command line client of Cloudflare. After logging in npx wrangler login , you can deploy Workers through the command line.
2. KV can be created through the command line, and then kv_namespaces id in the file wrangler.toml is filled in with the id of the created namespace for binding.
3. Read the following chapters to supplement the items under [vars] in the configuration file wrangler.toml according to the services you want to access.
4. Rename wrangler.toml to wrangler.prod.toml and use the command npm run deploy to deploy to Worker
5. Domain name processing is the same as above

Compared with WeChat, it is more recommended to use Enterprise WeChat. The advantages are: 1. The visible range of the enterprise WeChat application is controlled and is not completely open like the public account; 2. After joining the enterprise, the personal WeChat can enter the application through the company in the personal WeChat, which only requires 2 clicks, while entering the subscription account requires More clicks; 3. Support enterprise WeChat group robot alarms

1. Register for Enterprise WeChat, fill in the information as you like, no authentication required

2. Enterprise WeChat Management Backend-My Enterprise-Enterprise Information Page Confirm your enterprise ID (corpid)

3. Application management - create an application, you can view the AgentId and Secret, receive messages - set up the API reception to randomly generate Token, EncodingAESKey, and do not need to save it at this time.

4. Worker configures the environment variables required by the application. It can be configured through interface operations, see the third step of Cloudflare interface deployment above. It can be configured through the configuration file. See the third step of Github Action deployment and the third step of local command line deployment.

   variable name	Content description	Remark
   WEWORK_ID_LIST	A list of application IDs that are allowed to be accessed, multiples separated by commas.	The ID is customized by you. It is recommended to consist of letters and numbers within 10 digits.
   WEWORK_${ID}_APPID	corporate WeChat corporate	Replace ${ID} with your custom ID
   WEWORK_${ID}_TOKEN	Application Token	Replace ${ID} with your custom ID
   WEWORK_${ID}_AES_KEY	EncodingAESKey applied	Replace ${ID} with your custom ID
   WEWORK_${ID}_ADMIN_USER_ID_LIST	admin user list, multiples separated by commas	You can leave it unconfigured for now and configure it later when you know your user ID.

5. According to the domain name and customized ID, obtain the server address (URL) in step 3 and configure it. The format is https://${域名}/openai/wework/${ID} . For example, if the domain name is xxx.com and the customized ID is id123 , the server address (URL) is https://xxx.com/openai/wework/id123 . Although it is suggested为保障企业数据安全，需配置备案主体与当前企业主体相同或有关联关系的域名. However, actual testing found that Cloudflare binding its own domain name can also pass the verification. I am not sure what the specific rules are.

6. Users can join the company through My Business-WeChat Plug-in-Invite Follower and scan the QR code, and enter the company to use applications on personal WeChat. Note that you can turn off application messages in Business WeChat Settings - New Message Notification - Only Receive Messages in Business WeChat, otherwise you will not receive reply messages in your personal WeChat.

1. Register a WeChat public account, usually a personal subscription account, with low qualification verification threshold

2. Public Account Management Platform - Settings and Development - Basic Configuration Page Confirm your developer ID (AppID), generate token (Token), message encryption and decryption key (EncodingAESKey) (only required if security mode or compatibility mode is turned on), this There is no need to enable server configuration when

3. Worker configures the environment variables required by the WeChat public account. It can be configured through interface operations, see the third step of Cloudflare interface deployment above. It can be configured through the configuration file. See the third step of Github Action deployment and the third step of local command line deployment.

   variable name	Content description	Remark
   WECHAT_ID_LIST	A list of official account IDs that are allowed to be accessed, multiple ones separated by commas.	The ID is customized by you. It is recommended to consist of letters and numbers within 10 digits.
   WECHAT_${ID}_APPID	Developer ID (AppID) of the official account	Replace ${ID} with your custom ID
   WECHAT_${ID}_TOKEN	Token of public account	Replace ${ID} with your custom ID
   WECHAT_${ID}_AES_KEY	Official account’s message encryption and decryption key (EncodingAESKey)	Replace ${ID} with your custom ID. This is only required when safe mode or compatibility mode is enabled.
   WECHAT_ADMIN_USER_ID_LIST	admin user list, multiples separated by commas	You can leave it unconfigured for now and configure it later when you know your user ID.
   WECHAT_ADMIN_OPENAI_KEY	admin user’s OpenAI Key	Optional, WECHAT_GUEST_OPENAI_KEY will be used by default, with higher priority than OpenAI configuration
   WECHAT_GUEST_OPENAI_KEY	Visitor’s OpenAI Key	Optional, can be used at will, has a higher priority than OpenAI's configuration, configure with caution!

4. Based on the domain name and customized ID, obtain the server address (URL) configured in the second step and configure it. The format is https://${域名}/openai/wechat/${ID} . For example, if the domain name is xxx.com and the customized ID is id123 , the server address (URL) is https://xxx.com/openai/wechat/id123

5. The message encryption and decryption method generally selects plain text, enables server configuration, and can be used after successful access verification.

• Input: text, voice (voice recognition needs to be enabled in the official account management background)
• Output: text

Case can be ignored when inputting