Skip to content

Webflow-Examples/cloud-asset-manager

BranchesTags

Repository files navigation

Webflow Cloud Asset Manager

A deployable asset manager starter for Webflow Cloud Object Storage.

Clone it, connect it to your own Webflow Cloud project and storage bindings, then shape it around your team's workflow. Out of the box, it gives you a polished /assets workspace for uploading files, organizing them, previewing them, replacing them, and copying stable delivery links without making your storage bucket public.

This repo is intentionally a starter, not a locked-down product. It ships with useful defaults, clear extension points, and bring-your-own-auth hooks so customer teams can adapt it for real production use. A demo site is available to view the interface here.

What You Get

  • Bulk uploads with per-file names, folders, tags, cache intent, progress, retry, and copy-link actions.
  • Searchable asset library with folder and tag filters.
  • Asset details drawer with preview, editable metadata, object information, replacement, and copy formats for URL, object key, Markdown, HTML, and CSS url().
  • Stable proxied file links at /assets/files/:slug; renaming, reorganizing, or replacing an asset does not change the link.
  • Browser-generated image thumbnails for list, grid, and drawer previews.
  • Usage dashboard with indexed storage totals, type breakdowns, largest files, recent uploads, upload issues, and storage-plan context.
  • Trash workflow with 30-day soft delete, restore, and permanent deletion.
  • Optional domain restrictions, cache-busted URL variants, and separate auth controls for asset management and asset delivery.
  • Light/dark theme support and a Webflow-branded UI foundation you can keep or replace.

Common Use Cases

Use this starter when your team wants to:

  • Manage Webflow Cloud Object Storage files without sending non-technical teammates into a cloud console.
  • Keep stable URLs for campaign assets, downloads, PDFs, media files, or implementation snippets.
  • Replace files while preserving links already used on a site or in code.
  • Build a custom digital asset workflow on top of Webflow Cloud instead of starting from a blank app.
  • Add your own auth, approval flow, metadata model, or downstream automation.

How It Works

The app is a Next.js App Router project deployed to Webflow Cloud through OpenNext.

  • App route: The UI runs at /assets.
  • Storage: File bytes are stored in CLOUD_ASSETS; generated thumbnails are stored in CLOUD_ASSET_THUMBNAILS.
  • Metadata: Search, organization, status, settings, and usage data live in the ASSET_INDEX SQLite binding.
  • Delivery: Files stream through /assets/files/:slug and thumbnails through /assets/thumbnails/:id.
  • Auth: The starter is public by default. You can wire your provider into src/lib/auth.ts and enable auth with environment variables.

Object Storage does not need to be public. The app serves files through its own delivery routes, which lets you preserve stable links, range requests, thumbnail delivery, cache-busted URL variants, and optional access controls in one place.

New file links use filename-based slugs by default, such as /assets/files/brand-guide.pdf. Asset IDs and object keys stay internal. Existing assets keep their current URLs until a user edits the URL slug in the asset details drawer.

Quick Start

Prerequisites:

  • Node.js 22 or later.
  • npm for installing and building dependencies. Webflow Cloud currently builds npm projects.
  • A Webflow Cloud project and environment when you are ready to deploy.

Install dependencies:

npm install

Generate runtime types after binding changes:

npm run cf-typegen

Apply local database migrations:

npx wrangler d1 migrations apply ASSET_INDEX --local

Run the app locally:

npm run dev

Open http://localhost:3000/assets.

npm run dev is the fast local iteration path. This starter also wires OpenNext into next dev through next.config.ts so local Worker bindings are available while you develop.

Before deploying, preview the production Worker build locally:

npm run preview

Configure Cloud Resources

wrangler.json defines the bindings this starter expects:

Binding Purpose Default name
CLOUD_ASSETS Object Storage bucket for original files cloud-assets
CLOUD_ASSET_THUMBNAILS Object Storage bucket for generated thumbnails cloud-asset-thumbnails
ASSET_INDEX SQLite database for asset metadata, tags, settings, and usage stats asset-index

New thumbnail uploads use CLOUD_ASSET_THUMBNAILS. Existing thumbnails that still live in CLOUD_ASSETS continue to render through the thumbnail delivery route until they are regenerated or manually copied to the thumbnail bucket.

Before deploying your own copy:

  1. Create a Webflow Cloud project and environment for your app.
  2. Set the environment mount path to /assets, or update next.config.ts, route references, and copied-link behavior together.
  3. Keep the binding names in wrangler.json aligned with the app code.
  4. Commit and push to the GitHub branch connected to the environment for the first deploy or any storage binding changes. Webflow Cloud creates or updates storage bindings from the linked repository deployment.
  5. After the environment and bindings exist, you can also deploy app-code-only changes manually with the Webflow CLI:
npm run deploy

Webflow Cloud connects storage through the bindings declared in wrangler.json. SQLite migrations in migrations/ are applied by Webflow Cloud deployments. The app is mounted at /assets by next.config.ts; if you change the mount path, update route references, copied link behavior, and the Webflow Cloud environment mount path together.

Environment Variables

The starter works without custom environment variables, but production deployments should review these settings.

Variable Use
ORIGIN Recommended in production. Restricts API CORS to your asset manager origin.
ASSETS_PREFIX Worker origin for generated upload/file URLs. Webflow Cloud sets this automatically in production. For local overrides, use an absolute origin without /assets; the app appends the mount path.
STORAGE_PLAN_LIMIT_BYTES Enables the usage progress bar against your storage plan limit.
STORAGE_PLAN_LABEL Labels the configured storage plan in the usage dashboard.
ASSET_MANAGER_DEMO_MODE Defaults to true for the hosted public repo demo. Set to false for your own deployment.
ASSET_MANAGER_DOMAIN_RESTRICTIONS_ENABLED Enables origin/referer checks for asset delivery.
ASSET_MANAGER_ALLOWED_ASSET_ORIGINS Comma-separated origins allowed to embed or request protected assets.
ASSET_MANAGER_ALLOW_DIRECT_ASSET_ACCESS Allows direct asset requests with no origin/referer when domain restrictions are enabled.
ASSET_MANAGER_DOMAIN_SETTINGS_LOCKED Locks domain restriction settings to environment configuration.
ASSET_MANAGER_DEFAULT_COPIED_LINK_TYPE Sets default copied links to stable or fresh.
ASSET_MANAGER_DEFAULT_SNIPPET_URL_TYPE Sets default snippet URLs to stable or fresh.
ASSET_MANAGER_CACHE_BEHAVIOR_SETTINGS_LOCKED Locks cache/link behavior settings to environment configuration.

More Guides

  • Deployment guide: local setup, cloud resources, migrations, deployment, validation, and common setup issues.
  • Architecture guide: app flow, storage split, delivery behavior, and extension points.
  • Auth and access guide: bring-your-own-auth, delivery auth, CORS, and domain restrictions.

Auth And Access Control

Demo mode is enabled by default for the hosted public repo demo. Disable it before using your own deployment:

Recommended production posture:

ASSET_MANAGER_DEMO_MODE=false
ASSET_MANAGER_AUTH_ENABLED=true
ASSET_MANAGER_PROTECT_ASSET_DELIVERY=false

That keeps uploads, edits, deletes, settings, and usage data behind auth while allowing copied asset URLs to work on public sites.

To connect auth:

  1. Replace getAssetManagerSession in src/lib/auth.ts with your provider's server-side session lookup.
  2. Return a truthy session object when the request is allowed, or null when it should be denied.
  3. Set ASSET_MANAGER_AUTH_ENABLED=true.
  4. Optionally configure the provider-neutral UI actions:
Variable Use
ASSET_MANAGER_AUTH_PROVIDER_LABEL Label shown in auth-related UI. Defaults to Custom auth provider.
ASSET_MANAGER_SIGN_IN_URL Sign-in action for /assets/sign-in.
ASSET_MANAGER_SIGN_OUT_URL Sign-out action in the app header.
ASSET_MANAGER_ACCOUNT_URL Account action in the app header.

If your files themselves should require a session, also set:

ASSET_MANAGER_PROTECT_ASSET_DELIVERY=true

Keep this separate from UI/API auth. Many sites need private asset management but public file delivery.

Customize The Starter

Useful places to start:

  • Product UI: src/components/asset-manager.tsx
  • Theme and visual system: src/app/globals.css, src/components/ui/**, public/brand/**
  • Auth adapter: src/lib/auth.ts
  • Runtime auth gates: src/lib/auth-gate.ts
  • Storage, validation, search, and settings: src/lib/asset-storage.ts
  • File and thumbnail delivery: src/app/files/[id]/route.ts, src/app/thumbnails/[id]/route.ts
  • Database schema: migrations/**
  • Cloud bindings: wrangler.json

The app currently uses flat folder labels and normalized tags. If your workflow needs nested folders, approval states, asset ownership, audit logs, or custom metadata fields, extend the database migrations and the storage helpers together.

Validation

Run these checks before opening a PR or deploying:

npm run lint
npm run build

Preview the production build locally:

npm run preview

Current Boundaries

  • This starter does not ship provider-specific auth packages, callback routes, sign-up flows, credential handling, or a built-in account page.
  • Folders are flat labels, not nested paths.
  • Tags are metadata only; they do not change object keys.
  • Webflow Cloud may override Cache-Control response headers. Cache policy settings are still stored as delivery intent, but cache-busted fresh URLs are the reliable way to force a new request.
  • Large uploads use multipart routes, but each request still has to fit Webflow Cloud request-body limits and Object Storage multipart constraints. Test large-file behavior in the target environment before promising multi-GB workflows.
  • Replacement is same-kind only and does not keep old file versions.
  • Standard delete moves assets to trash; permanent delete is available from the trash view.
  • The app is a starter for your Webflow Cloud instance and storage resources. It is not a hosted SaaS service.

License

This project is available under the MIT License.

About

A deployable asset manager starter for Webflow Cloud Object Storage.

cloud-asset-manager.webflow.io/assets

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages