This Cloudflare Worker is designed to handle incoming SMS messages from Twilio webhooks and store them in Cloudflare KV (Key-Value) storage. It also provides functionality to retrieve stored messages for a given destination number.
- Receives and stores incoming SMS data from Twilio webhooks
- Retrieves stored SMS messages for a specific recipient
- Basic authentication for accessing stored messages
- Deploy this worker to your Cloudflare account.
- Set up a KV namespace called
TWILIO_KVin your Cloudflare account. - Configure your Twilio account to send webhook requests to your worker's URL for incoming SMS messages.
When Twilio receives an SMS, it will send a POST request to your worker's /twilio/incoming endpoint. The worker will store the message data in the KV store with a key in the format: INCOMING:{recipient_number}:{MessageSid}.
Simulate Twilio webhook request with cURL:
curl -i -X POST "${WORKER_URL}${TWILIO_URL}" \
-F "MessageSid=$MESSAGE_SID" \
-F "From=+14017122661" \
-F "To=+15558675310" \
-F "Body=Test message"To retrieve stored messages for a specific recipient:
- Send a GET request to
/twilio/read?to={recipient_number} - Include an
Authorizationheader with Basic Auth credentials
Example:
GET /twilio/read?to=+1234567890
Authorization: Basic base64(username:password)The worker will return a JSON array of stored messages for the specified recipient.
The worker uses basic authentication to protect access to stored messages. To set up authentication:
- Generate a bcrypt hash of the desired password
- Store the hash in the KV store with the key
USER:{username}
Sample code to generate a bcrypt hash with a 12 cost factor using htpasswd:
password="your_password"
bcrypted=$(htpasswd -nbB -C 12 user $password | awk -F: '{print $2}')
echo $bcrypted- 400 Bad Request: Returned if the MessageSid is missing from the Twilio webhook
- 401 Unauthorized: Returned if authentication fails when retrieving messages
- 405 Method Not Allowed: Returned for unsupported HTTP methods
@cloudflare/workers-types: TypeScript definitions for Cloudflare Workersbcrypt-ts: TypeScript implementation of bcrypt for password hashing
To modify or extend this worker:
- Clone the repository
- Install dependencies with
npm install - Make your changes to
index.ts - Test your changes locally using Wrangler
- Deploy the updated worker to Cloudflare
Our wrangler.toml is not included in the repository. Here is a sample configuration, just edit your kv namespace id and name to match your own configuration:
#:schema node_modules/wrangler/config-schema.json
name = "turgeand-messaging"
main = "src/index.ts"
compatibility_date = "2024-07-01"
compatibility_flags = ["nodejs_compat"]
kv_namespaces = [
{ binding = "TWILIO_KV", id = "085b7cbf251c15d1c2e1e5c063ac86b5" }
]- Ensure that your Cloudflare Worker URL is properly secured and only accessible by Twilio
- Regularly rotate your authentication credentials
- Monitor your worker's logs for any suspicious activity
This project is licensed under the Affero GPL v3 License - see the LICENSE file for details.