A modern, feature-rich blog platform built with Nuxt 3, Tailwind CSS, and Cloudflare
Live Demo β’ Features β’ Getting Started β’ Documentation
Visit the live site: https://blog.404401.xyz
Experience all features in action including the admin dashboard, content management system, and responsive design.
- Live Preview
- Features
- Tech Stack
- Getting Started
- Database Setup (D1 SQL Studio)
- File Management (Cloudflare R2)
- Project Structure
- API Endpoints
- Features Deep Dive
- Deployment to Cloudflare Pages
- Performance Optimization
- Security
- Documentation & Resources
- Contributing
- License
- Server-side Rendering: Built with Nuxt 3 for optimal SEO and performance
- RESTful API: Clean API architecture with pagination support
- Responsive Design: Beautiful UI with Tailwind CSS
- Progressive Loading: Page transition indicators for smooth navigation
- Advanced Search: Real-time search across titles, excerpts, and tags
- Pagination: Smooth pagination with page number navigation
- Category & Tag Filtering: Easy content discovery with filters
- Back to Top: Floating button for better navigation on long pages
- Complete SEO Meta Tags: Open Graph and Twitter Card support
- Image Optimization: Automatic optimization with Nuxt Image
- Lazy Loading: Images load progressively for better performance
- Fast & Global: Deployed on Cloudflare Pages CDN
- Authentication System: Secure login and session management
- File Management: Upload and manage files with Cloudflare R2 (S3 API)
- Database Integration: Full CRUD operations with D1 SQL Studio
- User Management: Support for multiple users and roles
- Content Blocks: 10+ reusable content blocks for page building
- Nuxt 3 - Vue.js framework with server-side rendering (SSR)
- Vue 3 - Progressive JavaScript framework
- TypeScript - Type-safe development
- Tailwind CSS - Utility-first CSS framework
- Nuxt Image - Automatic image optimization
- TipTap - Rich text editor for content management
- Cloudflare Pages - Global CDN deployment
- Cloudflare R2 - S3-compatible object storage
- D1 SQL Studio - Database management with REST API
- H3 - Web framework for server routes
π‘ Tip: Check out the live demo to see all features in action before setting up your own instance!
- Node.js 20 or later
- npm or yarn
- Cloudflare account (for R2 storage and deployment)
# Install dependencies
npm install
# Start development server
npm run dev
# Build for production
npm run build
# Preview production build
npm run previewVisit http://localhost:3000 to see your blog in action!
Create a .env.local file in the project root with the following variables:
# Database Configuration (D1 SQL Studio)
DB_API_KEY=your_db_api_key
DB_API_URL=https://your-d1-sql-studio.example.com
# File Storage Configuration (Cloudflare R2)
R2_ACCOUNT_ID=your_cloudflare_account_id
R2_ACCESS_KEY_ID=your_r2_access_key_id
R2_SECRET_ACCESS_KEY=your_r2_secret_access_key
R2_BUCKET_NAME=your_r2_bucket_name
R2_PUBLIC_URL=https://your-public-r2-url.com
# Session Configuration
SESSION_SECRET=your-secret-key-min-32-chars-requiredFor detailed setup instructions, see the sections below.
This project requires D1 SQL Studio. The application relies on the REST API exposed by D1 SQL Studio for all data reads and writes (posts, pages, categories, tags, site config). You must run or deploy D1 SQL Studio and provide its API URL and API key to the site via environment variables.
Quick steps:
- Install or deploy D1 SQL Studio. See the project on GitHub: https://github.com/playwjj/d1-sql-studio
- Follow the D1 SQL Studio README to start it locally or deploy to your hosting environment. After startup you will have a REST API endpoint and an API key/secret.
- Set environment variables for this project:
DB_API_KEY=your_db_api_key
DB_API_URL=https://your-d1-sql-studio.example.com- Restart your application so Nuxt picks up the runtime config.
Deployment note β Cloudflare Pages / other platforms:
- If you deploy to Cloudflare Pages, add
DB_API_KEYandDB_API_URLin your Pages project settings (Settings β Environment variables) and scope them to the correct environment (Preview/Production). See: https://developers.cloudflare.com/pages/platform/environment-variables/
This project includes a complete file management system using Cloudflare R2, an S3-compatible object storage service. All file uploads, downloads, and deletions are handled through the R2 API.
To use the file upload feature, you need to configure Cloudflare R2 credentials via environment variables:
# Cloudflare R2 Configuration
R2_ACCOUNT_ID=your_cloudflare_account_id
R2_ACCESS_KEY_ID=your_r2_access_key_id
R2_SECRET_ACCESS_KEY=your_r2_secret_access_key
R2_BUCKET_NAME=your_r2_bucket_name
R2_PUBLIC_URL=https://your-public-r2-url.com-
Account ID: Get this from your Cloudflare dashboard
- Go to Cloudflare Dashboard β R2 β Account details
- Copy your Account ID
-
Access Key & Secret:
- In Cloudflare Dashboard β R2 β API tokens
- Click "Create API token"
- Generate a token with permissions for reading and writing to R2
- Save the Access Key ID and Secret Access Key
-
Bucket Name:
- Create a bucket in R2 (e.g.,
studio-inkless-files) - Use this name in the configuration
- Create a bucket in R2 (e.g.,
-
Public URL:
- If you want public file access, create a custom domain or use R2's default URL
- Example:
https://files.example.comorhttps://your-bucket.your-domain.com - Configure in Cloudflare R2 settings
Endpoint: POST /api/admin/files/upload
Upload one or multiple files to R2 storage:
curl -X POST http://localhost:3000/api/admin/files/upload \
-H "Authorization: Bearer YOUR_TOKEN" \
-F "file=@/path/to/image.jpg" \
-F "file=@/path/to/document.pdf"Response:
{
"success": true,
"files": [
{
"id": "file-uuid",
"file_name": "image.jpg",
"file_key": "uploads/2024/12/uuid.jpg",
"file_size": 102400,
"mime_type": "image/jpeg",
"public_url": "https://files.example.com/uploads/2024/12/uuid.jpg",
"created_at": "2024-12-14T10:30:00Z",
"user_id": "user-uuid"
}
]
}Endpoint: GET /api/admin/files
List all uploaded files with pagination and filtering:
Query Parameters:
page- Page number (default: 1)limit- Results per page (default: 20)search- Search by file namemime_type- Filter by MIME type (e.g.,image/jpeg,application/pdf)
Example:
GET /api/admin/files?page=1&limit=20&search=avatar&mime_type=image%2Fjpeg
Response:
{
"success": true,
"files": [
{
"id": "file-uuid",
"file_name": "avatar.jpg",
"file_key": "uploads/2024/12/uuid.jpg",
"file_size": 51200,
"mime_type": "image/jpeg",
"public_url": "https://files.example.com/uploads/2024/12/uuid.jpg",
"created_at": "2024-12-14T10:00:00Z",
"user_id": "user-uuid"
}
],
"total": 1,
"totalSize": 51200,
"page": 1,
"limit": 20
}Endpoint: DELETE /api/admin/files/[id]
Delete a file from R2 storage:
curl -X DELETE http://localhost:3000/api/admin/files/file-uuid \
-H "Authorization: Bearer YOUR_TOKEN"Response:
{
"success": true,
"message": "File deleted successfully"
}Files are automatically organized in R2 by upload date:
uploads/
βββ 2024/
β βββ 12/
β β βββ uuid-1.jpg
β β βββ uuid-2.pdf
β β βββ uuid-3.png
β βββ 11/
β βββ uuid-4.jpg
β βββ uuid-5.doc
The system validates files based on:
- MIME types: Images (JPEG, PNG, WebP), Documents (PDF, DOC, DOCX), Videos (MP4, WebM)
- File size limits: Configurable per file type
- Extensions: Validated against allowed extensions
When deploying to Cloudflare Pages:
-
Add R2 credentials to your Pages project environment variables:
- Go to Pages β Your project β Settings β Environment variables
- Add each R2 environment variable for both Preview and Production environments
-
S3 API Compatibility:
- R2 uses S3 API, so the configuration is fully compatible
- No special Cloudflare Workers code needed
- File uploads work seamlessly on Pages runtime
-
Public Access:
- Configure a custom domain or R2's default public URL
- Files are served directly from R2 or your custom domain
- CDN caching can be enabled for optimal performance
studio-inkless-blog/
βββ components/ # Vue components
β βββ Header.vue # Header component
β βββ Footer.vue # Footer component
β βββ BlogCard.vue # Blog post card
β βββ Pagination.vue # Pagination component
β βββ BackToTop.vue # Back to top button
β βββ admin/ # Admin UI components
β β βββ ConfirmDialog.vue
β β βββ EditorFileDialog.vue
β β βββ EditorImageDialog.vue
β β βββ FilePicker.vue
β β βββ ImageUploader.vue
β β βββ PageBlocksEditor.vue
β β βββ StatCard.vue
β β βββ Toast.vue
β βββ blocks/ # Page content blocks
β βββ BlockHero.vue
β βββ BlockFeatures.vue
β βββ BlockCta.vue
β βββ BlockText.vue
β βββ BlockGallery.vue
β βββ BlockTestimonials.vue
β βββ BlockFaq.vue
β βββ BlockStats.vue
β βββ BlockVideo.vue
β βββ BlockCustom.vue
βββ composables/ # Reusable composition functions
β βββ useAuth.ts # Authentication composable
β βββ useFormatDate.ts # Date formatting
β βββ useFormValidation.ts # Form validation
β βββ useNotification.ts # Toast notifications
β βββ useSiteConfig.ts # Site configuration
βββ layouts/ # Layout templates
β βββ default.vue # Default layout
β βββ admin.vue # Admin layout
βββ pages/ # Application pages
β βββ index.vue # Home page
β βββ about.vue # About page
β βββ setup.vue # Setup wizard
β βββ [slug].vue # Dynamic page route
β βββ blog/ # Blog routes
β β βββ index.vue # Blog list
β β βββ [slug].vue # Blog post detail
β β βββ categories/
β β β βββ index.vue
β β βββ category/
β β β βββ [name].vue
β β βββ tags/
β β β βββ index.vue
β β βββ tag/
β β βββ [name].vue
β βββ admin/ # Admin dashboard
β βββ index.vue # Admin dashboard
β βββ login.vue # Admin login
β βββ profile.vue # User profile
β βββ users.vue # User management
β βββ tokens.vue # API token management
β βββ authors.vue # Authors management
β βββ categories.vue # Categories management
β βββ tags.vue # Tags management
β βββ files.vue # Files management
β βββ site.vue # Site settings
β βββ pages/ # Page management
β β βββ index.vue
β β βββ new.vue
β β βββ [id]/
β β βββ edit.vue
β βββ posts/ # Post management
β βββ index.vue
β βββ new.vue
β βββ [id]/
β βββ edit.vue
βββ server/ # Backend server code
β βββ api/ # API routes
β β βββ posts/ # Post endpoints
β β β βββ index.get.ts
β β β βββ [id].get.ts
β β βββ pages/ # Page endpoints
β β β βββ index.get.ts
β β β βββ [slug].get.ts
β β βββ categories.get.ts # Category endpoints
β β βββ tags.get.ts # Tag endpoints
β β βββ site.get.ts # Site config endpoint
β β βββ auth/ # Authentication
β β β βββ login.post.ts
β β β βββ logout.post.ts
β β β βββ me.get.ts
β β β βββ user.get.ts
β β β βββ profile.put.ts
β β β βββ password.put.ts
β β β βββ account.delete.ts
β β βββ admin/ # Admin endpoints
β β βββ files/
β β β βββ upload.post.ts
β β β βββ index.get.ts
β β β βββ [id].delete.ts
β β βββ posts/
β β βββ pages/
β β βββ users/
β β βββ authors/
β β βββ categories/
β β βββ tags/
β β βββ dashboard/
β β βββ stats.get.ts
β βββ middleware/ # Server middleware
β β βββ apiAuth.ts # API authentication
β β βββ db-check.ts # Database connection check
β βββ utils/ # Utility functions
β β βββ r2.ts # Cloudflare R2 functions
β β βββ dbApi.ts # D1 SQL Studio API
β β βββ auth.ts # Authentication utilities
β β βββ apiToken.ts # API token utilities
β βββ types/
β βββ dbTypes.ts # Database TypeScript types
βββ types/ # Shared TypeScript types
β βββ blog.ts # Blog-related types
βββ public/ # Static assets
β βββ robots.txt
β βββ site.webmanifest
βββ .env.local # Local environment variables (git-ignored)
βββ .env.example # Environment variables template
βββ nuxt.config.ts # Nuxt configuration
βββ tailwind.config.ts # Tailwind CSS configuration
βββ tsconfig.json # TypeScript configuration
βββ package.json # Dependencies and scripts
βββ README.md # This file
GET /api/posts- Get all posts (supports pagination, category, and tag filters)GET /api/posts/:id- Get post by ID or slug
GET /api/pages- List all published pages with paginationGET /api/pages/:slug- Get single page by slug
GET /api/categories- Get all categories with post countsGET /api/tags- Get all tags with post countsGET /api/site- Get site configuration
POST /api/auth/login- Login with credentialsPOST /api/auth/logout- Logout current sessionGET /api/auth/me- Get current user infoPUT /api/auth/profile- Update user profilePUT /api/auth/password- Change passwordDELETE /api/auth/account- Delete account
POST /api/admin/files/upload- Upload files to R2GET /api/admin/files- List files with pagination and filteringDELETE /api/admin/files/:id- Delete file
-
GET /api/admin/posts- List all posts (with draft support) -
POST /api/admin/posts- Create new post -
PUT /api/admin/posts/:id- Update post -
DELETE /api/admin/posts/:id- Delete post -
GET /api/admin/pages- List all pages -
POST /api/admin/pages- Create new page -
PUT /api/admin/pages/:id- Update page -
DELETE /api/admin/pages/:id- Delete page -
GET /api/admin/categories- List all categories -
POST /api/admin/categories- Create category -
PUT /api/admin/categories/:id- Update category -
DELETE /api/admin/categories/:id- Delete category -
GET /api/admin/tags- List all tags -
POST /api/admin/tags- Create tag -
PUT /api/admin/tags/:id- Update tag -
DELETE /api/admin/tags/:id- Delete tag
GET /api/admin/users- List all usersPOST /api/admin/users- Create userPUT /api/admin/users/:id- Update userDELETE /api/admin/users/:id- Delete user
GET /api/admin/dashboard/stats- Get dashboard statistics
GET /api/posts
| Parameter | Type | Default | Description |
|---|---|---|---|
page |
number | 1 | Page number for pagination |
limit |
number | 10 | Posts per page |
category |
string | - | Filter by category name |
tag |
string | - | Filter by tag name |
search |
string | - | Search in title and excerpt |
GET /api/admin/files
| Parameter | Type | Default | Description |
|---|---|---|---|
page |
number | 1 | Page number |
limit |
number | 20 | Files per page |
search |
string | - | Search by file name |
mime_type |
string | - | Filter by MIME type |
Example Requests:
# Get posts with pagination and category filter
GET /api/posts?page=1&limit=10&category=Tutorial
# Search files by name and type
GET /api/admin/files?page=1&limit=20&search=avatar&mime_type=image/jpegThe blog includes a complete authentication system with:
- Secure Login: Username/password authentication with session management
- JWT Tokens: API tokens for programmatic access
- User Roles: Support for different user roles and permissions
- Protected Routes: Admin pages require authentication
- Session Timeout: Automatic session expiration for security
- Full CRUD operations for posts
- Draft and published status support
- Rich text editor with Markdown support
- Featured posts functionality
- Author and category assignment
- Auto-generated read time estimation
- HTML Content Mode: Use the
contentfield for simple pages with raw HTML - Block-Based Mode: Build pages using reusable content blocks for complex layouts
The system includes 10 pre-built block types:
- BlockHero - Hero section with title, subtitle, and CTA buttons
- BlockFeatures - Feature showcase grid
- BlockCta - Call-to-action section
- BlockText - Simple text/content block
- BlockGallery - Image gallery
- BlockTestimonials - Customer testimonials
- BlockFaq - FAQ accordion
- BlockStats - Statistics/metrics display
- BlockVideo - Video embed
- BlockCustom - Custom HTML block
Layout & Theme:
layout:'wide','narrow', or'default'- Controls content widththeme:'light'or'dark'- Page color schemetemplate: Page template name (e.g., 'minimal', 'standard')
Display Settings:
show_header- Show/hide headershow_footer- Show/hide footershow_breadcrumb- Show/hide breadcrumb navigationcover_image_url- Hero cover image URL
Advanced Features:
custom_css- Inject custom CSS stylescustom_js- Add custom JavaScriptenable_comments- Enable comment sectionenable_sharing- Show social sharing buttonsis_password_protected- Protect page with password
SEO Optimization:
meta_title,meta_description,meta_keywords- Standard SEO tagsog_title,og_description,og_image- Open Graph tagscanonical_url- Canonical URL
GET /api/pages
- List all pages with pagination
- Query parameters:
page- Page number (default: 1)limit- Results per page (default: 100)status- Filter by status:'draft','published', or'archived'
GET /api/pages/[slug]
- Get single page by slug or ID
- Add
?preview=trueto view draft pages
GET /api/pages/[id]/blocks
- Fetch all blocks for a specific page
- Returns blocks sorted by display order
Pages are stored in the database and managed through the D1 SQL Studio REST API. Each page requires:
{
title: 'Page Title',
slug: 'page-url-slug',
status: 'published', // 'draft', 'published', or 'archived'
template: 'standard',
theme: 'light',
layout: 'default',
// ... additional fields
}Pages are automatically accessible at /{slug} (e.g., /about, /contact).
Modify tailwind.config.ts to customize:
- Colors (primary palette)
- Fonts
- Spacing
- Other design tokens
Update nuxt.config.ts for:
- SEO defaults
- Image optimization settings
- Build configurations
- Build command:
npm run build - Build output directory:
dist - Node version: 20
-
Push to Git: Push your code to GitHub, GitLab, or Bitbucket
-
Connect to Cloudflare:
- Log in to Cloudflare Dashboard
- Go to Pages β Create a project
- Connect your Git repository
-
Configure Build:
- Framework preset: Nuxt.js
- Build command:
npm run build - Build output directory:
dist
-
Set Environment Variables:
- Go to Pages β Your project β Settings β Environment variables
- Add all required variables for Preview and Production:
DB_API_KEY,DB_API_URLR2_ACCOUNT_ID,R2_ACCESS_KEY_ID,R2_SECRET_ACCESS_KEY,R2_BUCKET_NAME,R2_PUBLIC_URLSESSION_SECRET
-
Deploy: Click Save and Deploy
Your site will be live on Cloudflare's global CDN!
Before deploying, ensure you have configured all required variables:
Database:
- [ ] DB_API_KEY
- [ ] DB_API_URL
File Storage (R2):
- [ ] R2_ACCOUNT_ID
- [ ] R2_ACCESS_KEY_ID
- [ ] R2_SECRET_ACCESS_KEY
- [ ] R2_BUCKET_NAME
- [ ] R2_PUBLIC_URL
Session:
- [ ] SESSION_SECRET (minimum 32 characters)
- All pages are server-side rendered for optimal SEO and initial load performance
- Automatic code splitting for faster page transitions
- Automatic image optimization through Nuxt Image
- Lazy loading for images below the fold
- Responsive image serving
- WebP format support for modern browsers
- Global CDN distribution via Cloudflare Pages
- Edge caching for static assets
- Real-time invalidation on updates
- Efficient pagination to avoid loading large datasets
- Indexed queries for fast filtering and search
- Connection pooling through D1 SQL Studio REST API
- Input Validation: All form inputs are validated on both client and server
- SQL Injection Prevention: Parameterized queries through D1 SQL Studio API
- CSRF Protection: Built-in CSRF token handling
- XSS Prevention: Automatic HTML escaping in templates
- Secure Headers: Content-Security-Policy and other security headers configured
- Rate Limiting: API endpoints protected with rate limiting
- File Upload Security:
- File type validation (MIME type checking)
- File size limits
- Unique filename generation
- Isolated storage in R2
- Nuxt 3 Documentation
- Vue 3 Guide
- Tailwind CSS Documentation
- Cloudflare Pages Documentation
- Cloudflare R2 Documentation
Contributions are welcome! To contribute:
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
Please ensure:
- Code follows the existing style and conventions
- TypeScript types are properly defined
- New features include appropriate documentation
- Tests are added for new functionality where applicable
Found a bug? Please open an issue on GitHub with:
- Clear description of the problem
- Steps to reproduce the issue
- Expected vs actual behavior
- Your environment (OS, Node version, etc.)
If you find this project helpful, please consider:
- β Starring the repository - Show your appreciation
- π Sharing it with others - Help spread the word
- π€ Contributing improvements - Make it better together
- π Reporting bugs - Help us fix issues
- π‘ Suggesting features - Share your ideas
Live site: https://blog.404401.xyz
MIT
This means you can use this project for personal and commercial purposes, modify it, distribute it, and use it privately, as long as you include a copy of the license.