From 537d050080d21c531da2874b6a5b84de3ada81a0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Luk=C3=A1=C5=A1=20Trkan?= <lukas@trkan.cz>
Date: Tue, 11 Nov 2025 14:16:08 +0100
Subject: [PATCH] feat(deployment): add 404 for public access

---
 7project/backend/app/app.py | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/7project/backend/app/app.py b/7project/backend/app/app.py
index b80aeb4..682e7a0 100644
--- a/7project/backend/app/app.py
+++ b/7project/backend/app/app.py
@@ -5,7 +5,7 @@ import sys
 from datetime import datetime
 from pythonjsonlogger import jsonlogger
 
-from fastapi import Depends, FastAPI
+from fastapi import Depends, FastAPI, HTTPException
 from fastapi.middleware.cors import CORSMiddleware
 from prometheus_fastapi_instrumentator import Instrumentator, metrics
 from starlette.requests import Request
@@ -162,7 +162,10 @@ async def authenticated_route(user: User = Depends(current_active_verified_user)
 
 @fastApi.get("/_cron", include_in_schema=False)
 async def handle_cron(request: Request):
+    # endpoint accessed by Clodflare => return 404
+    if request.headers.get("cf-connecting-ip"):
+        raise HTTPException(status_code=404)
+
     logging.info("[Cron] Triggering scheduled tasks via HTTP endpoint")
-    logging.info(json.dumps(request.headers.__str__()))
     task = load_all_transactions.delay()
     return {"status": "queued", "action": "csas_scrape_all", "task_id": getattr(task, 'id', None)}