| English | 中文 |
A powerful, privacy-friendly open source web analytics tool that runs entirely on Cloudflare.
Demo: http://insight-demo.ravelloh.com
Fully compliant with GDPR, with no cookies, so visits can be tracked legally without asking users for consent. Its original smart tracking intensity mechanism automatically adjusts visitor identifier persistence based on regional privacy regulations, balancing data integrity with privacy protection.
The frontend analytics SDK is only about 3 KB after gzip compression and is distributed through Cloudflare's global CDN for excellent performance. The SDK includes custom event tracking (data-insightflare-event) and performance metric tracking.
The multilingual dashboard uses unprecedented visualizations to give you a clear picture of traffic data. Its original multilingual place-name translation feature automatically translates more than 95% of place names worldwide, making it easy to understand where visitors come from.
Cloudflare's free quotas can support free tracking for 100,000 visits per day, with excellent performance from edge computing.
InsightFlare does not store raw IP information. It relies on Cloudflare for geolocation resolution, protecting user privacy while still providing highly accurate analytics.
Just click the button below:
Cloudflare will automatically clone this repository and create and bind the required resources. You need to fill in the following two secrets:
| Name | Purpose |
|---|---|
MAIN_SECRET |
Root secret used to derive visitor salts, session keys, and API key hash keys |
BOOTSTRAP_ADMIN_PASSWORD |
Initial administrator password |
MAIN_SECRET is used for security-related features and must be a random string longer than 16 characters. You can generate one at https://random.ravelloh.com/str/32. Refresh the page to get a new random string.
BOOTSTRAP_ADMIN_PASSWORD is the default administrator password. Sign in to the dashboard with the admin account and this password. You can change the username and password later on the personal settings page.
After filling in the variables, wait about 3 minutes for the deployment to finish. You can then sign in to the dashboard and start tracking traffic data. You can also customize the domain name on the project settings page. The default URL is https://insightflare.<your-cloudflare-username>.workers.dev.
InsightFlare exposes Skills for AI Agents. You can connect your InsightFlare deployment to agents such as OpenClaw, Codex, Claude Code, and others, so they can access InsightFlare data directly for analysis and report generation.
Send the following instruction to your Agent, replacing the domain with your deployed InsightFlare instance. Your Agent will guide you to the dashboard to create a dedicated API key for accessing InsightFlare data.
Read https://<your InsightFlare domain>/.well-known/skills.json, connect to this web analytics system, and guide me through authorization.Then you can ask your Agent questions in natural language, for example:
"How did my site perform last month? Where did most visitors come from among the highest-traffic sites? Which pages were the most popular?"In Cloudflare build environments, you can use project variables and secrets to override deployment-specific values from wrangler.toml. build:pre reads these values before deployment, writes them into the active Wrangler config, and the following wrangler deploy uses the resolved config.
Common variables:
| Name | Overrides |
|---|---|
INSIGHTFLARE_WORKER_NAME |
Worker name |
INSIGHTFLARE_D1_DATABASE |
D1 database name |
INSIGHTFLARE_D1_DATABASE_ID |
D1 database ID for the DB binding |
INSIGHTFLARE_SITE_SETTINGS_KV_ID |
KV namespace ID for SITE_SETTINGS_KV |
INSIGHTFLARE_ARCHIVE_BUCKET_NAME |
R2 bucket for ARCHIVE_BUCKET |
INSIGHTFLARE_ARCHIVE_PREVIEW_BUCKET_NAME |
R2 preview bucket |
SESSION_WINDOW_MINUTES |
Session window in minutes |
SCRIPT_CACHE_TTL_SECONDS |
/script.js CDN cache TTL |
PARQUET_WASM_URL |
Parquet wasm URL |
INSIGHTFLARE_EDGE_URL |
InsightFlare service base URL |
You can also write arbitrary [vars] entries with INSIGHTFLARE_VAR_<NAME>. For example, INSIGHTFLARE_VAR_FEATURE_FLAG=1 becomes FEATURE_FLAG = "1". When deploying with --env production, environment-specific names such as INSIGHTFLARE_PRODUCTION_D1_DATABASE_ID and INSIGHTFLARE_PRODUCTION_VAR_INSIGHTFLARE_EDGE_URL target [env.production].
You only need to manually create an R2 bucket if you want to enable cold archive to R2. By default, traffic data is retained for 1 year. Expired data is compressed and retained so trends and data can still be viewed, but it cannot be filtered. R2 is optional, and the Deploy Button does not require an R2 binding by default. After R2 is enabled, you can run detailed queries on data older than 1 year.
Create a bucket named insightflare-archive in Cloudflare. Then uncomment [[r2_buckets]] in wrangler.toml as shown below:
[[r2_buckets]]
binding = "ARCHIVE_BUCKET"
bucket_name = "insightflare-archive"
preview_bucket_name = "insightflare-archive-preview"InsightFlare includes a pioneering GitHub App based automatic update system to provide the simplest update experience.
Keeping your deployment updated only takes two steps:
- Install the GitHub App for your repository. This is only required once. Only select the repository where you deployed InsightFlare: Install InsightFlare Sync
- When upstream updates are available, a PR will be submitted to your repository automatically. You only need to merge that request.
Want to make your own project easy to sync downstream? Implementation details: RavelloH/upstream-sync-bot (open source template) + RavelloH/InsightFlare-Bot (this project's bot instance).
The InsightFlare frontend SDK supports reporting custom events either through manual calls or automatically through DOM attributes.
<script defer src="/script.js?siteId=YOUR_SITE_ID"></script>
<script>
window.addEventListener("DOMContentLoaded", () => {
window.insightflare.track("signup_click", {
plan: "pro",
source: "pricing",
});
});
</script>Available methods:
track(eventName, eventData?): Report a custom event.trackOnce(eventName, eventData?): Report the same event name only once during the current page lifecycle.setGlobalProperties(props): Add shared properties to subsequent events.clearGlobalProperties(): Clear shared properties.
<!-- 1. Default click trigger -->
<button data-insightflare-event="signup_click">Sign up now</button>
<!-- This reports: { eventName: "signup_click" } -->
<!-- 2. Click trigger with extra fields through data-insightflare-event-* -->
<button
data-insightflare-event="signup_click"
data-insightflare-event-plan="pro"
data-insightflare-event-source="pricing"
>
Sign up now
</button>
<!-- This reports: { eventName: "signup_click", eventData: { plan: "pro", source: "pricing" } } -->
<!-- 3. Click trigger with JSON extra fields -->
<button
data-insightflare-event="signup_click"
data-insightflare-event-data='{"plan":"pro","source":"pricing"}'
>
Sign up now
</button>
<!-- This reports: { eventName: "signup_click", eventData: { plan: "pro", source: "pricing" } } -->
<!-- 4. Form submit trigger -->
<form
data-insightflare-event="contact_submit"
data-insightflare-event-trigger="submit"
data-insightflare-event-data='{"plan":"pro","source":"landing"}'
>
...
</form>
<!-- 5. Trigger once when an element enters the viewport -->
<section
data-insightflare-event="pricing_viewed"
data-insightflare-event-trigger="enterviewport"
data-insightflare-event-plan="pro"
>
...
</section>| Layer | Technologies |
|---|---|
| Frontend | Next.js 16, React 19, Tailwind CSS 4, Radix UI, shadcn, Recharts, deck.gl, maplibre-gl, Motion |
| Backend | Cloudflare Workers, Durable Objects, D1, R2, KV |
| Build | OpenNext for Cloudflare, Wrangler 4, TypeScript 5 |
If you do not use the deploy button, deploy with the steps below:
- Fork or clone this repository to your GitHub account
- Create the following resources in Cloudflare:
- D1 database
- KV namespace
- R2 bucket (optional, only required for cold archive to R2)
- Edit
wrangler.tomland bind the D1 and KV resources to the Worker - Fill in environment variables by referring to
.dev.vars.example - Import this repository from the Worker page
- Clone this repository locally:
git clone https://github.com/RavelloH/InsightFlare - Install dependencies:
npm install - Create the local database:
npm run d1:migrate:local - Set environment variables by referring to
.dev.vars.example - Start the development server:
npm run dev
Set NEXT_PUBLIC_DEMO_MODE=1 to make the development server automatically enable Demo Mode and use frontend mock data for UI testing.
| Command | Purpose |
|---|---|
npm run dev |
Local dashboard development |
npm run check |
Run typecheck + lint + format + i18n + tests + spec checks |
npm run typecheck |
TypeScript type checking |
npm run lint / lint:fix |
ESLint |
npm run format / format:check |
Prettier |
npm run check:i18n |
Validate translation key completeness |
npm run d1:migrate:local |
Local D1 migration |
npm run d1:migrate:remote |
Remote D1 migration |
npm run d1:migration:create |
Create a new migration file |
npm run cf:tail |
View online Worker logs |
| Name | Meaning |
|---|---|
SESSION_WINDOW_MINUTES |
Session window in minutes (default 30) |
SCRIPT_CACHE_TTL_SECONDS |
CDN cache TTL for /script.js |
PARQUET_WASM_URL |
Parquet wasm download URL |
INSIGHTFLARE_EDGE_URL |
InsightFlare service base URL |
MAIN_SECRET (Secret) |
Root secret for derived security keys |
BOOTSTRAP_ADMIN_PASSWORD (Secret) |
Initial administrator password |
DAILY_SALT_SECRET (Secret) |
Legacy fallback for MAIN_SECRET |
DASHBOARD_SESSION_SECRET (Secret) |
Optional session signing override |
MIT Copyright 2026 RavelloH