danbooru/app/logical/cloudflare_service.rb

class CloudflareService
  attr_reader :api_token, :zone

  def initialize(api_token: Danbooru.config.cloudflare_api_token, zone: Danbooru.config.cloudflare_zone)
    @api_token, @zone = api_token, zone
  end

  def enabled?
    api_token.present? && zone.present?
  end

  def ips(expiry: 24.hours)
    response = Danbooru::Http.cache(expiry).get("https://api.cloudflare.com/client/v4/ips")
    return [] if response.code != 200

    result = response.parse["result"]
    ips = result["ipv4_cidrs"] + result["ipv6_cidrs"]
    ips.map { |ip| IPAddr.new(ip) }
  end

  def purge_cache(urls)
    return unless enabled?

    cloudflare = Danbooru::Http.headers(
      "Authorization" => "Bearer #{api_token}",
      "Content-Type" => "application/json"
    )

    url = "https://api.cloudflare.com/client/v4/zones/#{zone}/purge_cache"
    cloudflare.delete(url, json: { files: urls })
  end
end