Skip to main content

Public Cloudflare Pages Release

Flow Studio v1 publishes the docs portal and Flow Studio prototypes through Cloudflare Pages.

Public URLs

The public Flow Studio routes are:

  • https://mobilis-flow-studio.pages.dev/prototypes/whatsapp-submission/
  • https://mobilis-flow-studio.pages.dev/prototypes/gld-ingest-aggregator/

Deployment model

The docs-portal workflow builds the static Docusaurus site and deploys docs-portal/build to the mobilis-flow-studio Cloudflare Pages project on main pushes.

Before upload, the workflow validates Flow Studio scenario data, builds the Docusaurus site, and runs browser smoke checks for the WhatsApp and GLD Flow Studio routes on desktop and mobile viewports. The browser checks also verify that lower-permission demo viewers cannot unlock admin views through URL parameters and that non-technical viewers receive how-to documentation instead of API payload documentation.

The public release currently models viewers as logged-in demo users with browser-side permission gates. Real authentication, Cloudflare Access policy, and server-side role enforcement remain future restricted-view work.

GitHub Actions automatic deployment requires repository secrets:

  • CLOUDFLARE_API_TOKEN
  • CLOUDFLARE_ACCOUNT_ID

Public documentation repositories:

  • https://github.com/vitalychernobyl/mobilis-user-docs
  • https://github.com/vitalychernobyl/mobilis-api-docs

Deployment requirement:

  • changes to public behavior, user instructions, connector/API contracts, notifications, moderation workflow, or publishing behavior must update the docs portal and the relevant public docs repo before release, or link a blocking follow-up issue.

Local manual deployment can use Wrangler:

cd docs-portal
DEPLOY_TARGET=cloudflare-pages CF_PAGES_URL=https://mobilis-flow-studio.pages.dev npm run build
npx --yes wrangler@latest pages deploy build --project-name mobilis-flow-studio --branch main

Safe-to-share status

This release is safe to share only as a simulation and documentation preview.

It does not:

  • send WhatsApp messages
  • scrape sources
  • write production data
  • call OpenAI
  • publish to GoLatinDance or WordPress
  • post to social platforms
  • process payments

Public visibility warning

Cloudflare Pages is public for the mobilis-flow-studio.pages.dev deployment.

Until the restricted-view milestone is implemented, Flow Studio still runs on public hosting. Browser-side demo gates hide higher-permission views from lower-permission demo users, but this is not a replacement for real authentication. Do not include private source data, production IDs, real phone numbers, credentials, private customer messages, or confidential partner details in Flow Studio scenarios.

Later access-control work

Restricted admin and moderator views are tracked under Flow Studio v2.

Likely direction:

  • keep public submitter/sales demos on Cloudflare Pages
  • move admin/moderator training or internal technical views behind Cloudflare Access or another authenticated hosting layer
  • replace demo viewer switching with authenticated viewer/account mapping
  • enforce scenario allowedRoles and audienceLevel outside the browser so URL parameters cannot unlock restricted content