Skip to content
Visit Kinde’s marketing website Kinde Docs
  • Auth and access
  • Custom configurations

Proxy your Kinde auth pages through CloudFlare

You can take advantage of CloudFlare’s advanced security features such as their WAF and bot mitigation tools by proxying your Kinde hosted auth pages through CloudFlare.

What you need

Link to this section
  • A CloudFlare account
  • A domain managed in CloudFlare

Set up the custom domain

Link to this section
  1. Set up a custom domain in your Kinde business, see Use your own custom domain.
  2. Set up DNS records for the domain in CloudFlare. We will change this from DNS once the records have been validated. DNS validation confirms the record before we set the proxy.

Set up the proxy

Link to this section

Once you receive the email that the custom domain has been set up in Kinde, go to CloudFlare and change the custom domain record from DNS only to Proxied.

⚠️ Important: Leave the ACME challenge record as DNS. This is used to verify domain ownership each time the certificate needs to be renewed and cannot be proxied.

Create a CloudFlare Managed Challenge

Link to this section

To test the proxied domain, create a WAF rule to show a CloudFlare Managed Challenge on all incoming requests.

For example, create a rule to match the hostname of the custom domain used in Kinde and the request originating from Australia. The action is to show a Managed Challenge.

Related articles

Useful links

  • Join the community

    Get support from the Kinde team and expert users in the Kinde community

    Join via Slack or Discord

  • Contact support

    Chat to support through the Kinde help widget, or send a question via email

    Send an email