Cloudflare

Configuration

Cloudflare Protection for Oracle-Integrated Accounts

For accounts servicing Oracle, we utilize protected services to ensure security and compliance. Cloudflare is our recommended solution as it meets the required security standards.

Considerations

Your service must be protected by Cloudflare or an equivalent provider.
It is highly recommended to set up your domain in Cloudflare due to its cost-effectiveness and convenience for directing traffic to your service.
Alternatively, you can use another verified hosting provider that offers equivalent security and meets Oracle/PointlessPOS requirements.

Configuration Requirements

CORS URL Domain Mapping

Ensure that your corsURL in your Web API configuration is correctly mapped to your domain.
Example:
🔗 https://myrestaurant.pointlesspos.com

Security Level

SSL Mode: Set to Strict Security.
Cloudflare provides standard protection against DDoS attacks, bots, and other threats.

Filters

You may need to apply a custom filter for handling HTTP OPTIONS requests.
Example Cloudflare filter:

pgsqlCopyEdit(http.request.method eq "OPTIONS")

Cloudflare Protection for Oracle-Integrated Accounts​

Considerations​

Configuration Requirements​

CORS URL Domain Mapping​

Security Level​

Filters​