API Reference

Workers

Scripts

Secrets

Copy Markdown

Open in Claude

Open in ChatGPT

Open in Cursor

---

Copy Markdown

View as Markdown

List script secrets

client.Workers.Scripts.Secrets.List(ctx, scriptName, query) (*SinglePage[ScriptSecretListResponse], error)

GET/accounts/{account_id}/workers/scripts/{script_name}/secrets

List secrets bound to a script.

Security

API Token

The preferred authorization scheme for interacting with the Cloudflare API. Create a token.

Example:Authorization: Bearer Sn3lZJTBX6kkg7OdcBUAxOO963GEIyGQqnFTOFYY

API Email + API Key

The previous authorization scheme for interacting with the Cloudflare API, used in conjunction with a Global API key.

Example:X-Auth-Email: user@example.com

The previous authorization scheme for interacting with the Cloudflare API. When possible, use API tokens instead of Global API keys.

Example:X-Auth-Key: 144c9defac04969c7bfad8efaa8ea194

Accepted Permissions (at least one required)

Workers Tail ReadWorkers Scripts WriteWorkers Scripts Read

ParametersExpand Collapse

scriptName string

Name of the script, used in URLs and route configuration.

query ScriptSecretListParams

AccountID param.Field[string]

Identifier.

maxLength32

ReturnsExpand Collapse

type ScriptSecretListResponse interface{…}

A secret value accessible through a binding.

One of the following:

type ScriptSecretListResponseWorkersBindingKindSecretText struct{…}

Name string

A JavaScript variable name for the binding.

Text string

The secret value to use.

Type ScriptSecretListResponseWorkersBindingKindSecretTextType

The kind of resource that the binding provides.

type ScriptSecretListResponseWorkersBindingKindSecretKey struct{…}

Algorithm unknown

Algorithm-specific key parameters. Learn more.

Format ScriptSecretListResponseWorkersBindingKindSecretKeyFormat

Data format of the key. Learn more.

One of the following:

const ScriptSecretListResponseWorkersBindingKindSecretKeyFormatRaw ScriptSecretListResponseWorkersBindingKindSecretKeyFormat = "raw"

const ScriptSecretListResponseWorkersBindingKindSecretKeyFormatPkcs8 ScriptSecretListResponseWorkersBindingKindSecretKeyFormat = "pkcs8"

const ScriptSecretListResponseWorkersBindingKindSecretKeyFormatSpki ScriptSecretListResponseWorkersBindingKindSecretKeyFormat = "spki"

const ScriptSecretListResponseWorkersBindingKindSecretKeyFormatJwk ScriptSecretListResponseWorkersBindingKindSecretKeyFormat = "jwk"

Name string

A JavaScript variable name for the binding.

Type ScriptSecretListResponseWorkersBindingKindSecretKeyType

The kind of resource that the binding provides.

Usages []ScriptSecretListResponseWorkersBindingKindSecretKeyUsage

Allowed operations with the key. Learn more.

One of the following:

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageEncrypt ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "encrypt"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageDecrypt ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "decrypt"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageSign ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "sign"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageVerify ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "verify"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageDeriveKey ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "deriveKey"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageDeriveBits ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "deriveBits"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageWrapKey ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "wrapKey"

const ScriptSecretListResponseWorkersBindingKindSecretKeyUsageUnwrapKey ScriptSecretListResponseWorkersBindingKindSecretKeyUsage = "unwrapKey"

KeyBase64 stringOptional

Base64-encoded key data. Required if format is “raw”, “pkcs8”, or “spki”.

KeyJwk unknownOptional

Key data in JSON Web Key format. Required if format is “jwk”.

List script secrets

Go

HTTP

TypeScript

Python

Go

Terraform

package main

import (
  "context"
  "fmt"

  "github.com/stainless-sdks/cloudflare-go"
  "github.com/stainless-sdks/cloudflare-go/option"
  "github.com/stainless-sdks/cloudflare-go/workers"
)

func main() {
  client := cloudflare.NewClient(
    option.WithAPIToken("Sn3lZJTBX6kkg7OdcBUAxOO963GEIyGQqnFTOFYY"),
  )
  page, err := client.Workers.Scripts.Secrets.List(
    context.TODO(),
    "this-is_my_script-01",
    workers.ScriptSecretListParams{
      AccountID: cloudflare.F("023e105f4ecef8ad9ca31a8372d0c353"),
    },
  )
  if err != nil {
    panic(err.Error())
  }
  fmt.Printf("%+v\n", page)
}

200 example

{
  "errors": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "messages": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "success": true,
  "result": [
    {
      "name": "myBinding",
      "type": "secret_text"
    }
  ]
}

Returns Examples

200 example

{
  "errors": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "messages": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "success": true,
  "result": [
    {
      "name": "myBinding",
      "type": "secret_text"
    }
  ]
}