Documents connect being shut off when outbound worker is used

Author: mikenomitch

src/content/docs/cloudflare-for-platforms/workers-for-platforms/configuration/outbound-workers.mdx

@@ -1,7 +1,6 @@
 ---
 pcx_content_type: concept
 title: Outbound Workers
-
 ---
 
 import { WranglerConfig } from "~/components";
@@ -14,9 +13,16 @@ Outbound Workers sit between your customer's Workers and the public Internet. Th
 
 Outbound Workers can be used to:
 
-* Log all subrequests to identify malicious domains or usage patterns.
-* Create, allow, or block lists for hostnames requested by user Workers.
-* Configure authentication to your APIs behind the scenes (without end developers needing to set credentials).
+- Log all subrequests to identify malicious domains or usage patterns.
+- Create, allow, or block lists for hostnames requested by user Workers.
+- Configure authentication to your APIs behind the scenes (without end developers needing to set credentials).
+
+:::note
+
+When an Outbound Worker is enabled, your customer's Worker will no longer be able to use the [`connect() API`](/workers/runtime-apis/tcp-sockets/#connect)
+to create outbound TCP Sockets. This is to ensure all outbound communication goes through the Outbound Worker's `fetch` method.
+
+:::
 
 ## Use Outbound Workers
 
@@ -43,35 +49,35 @@ outbound = {service = "<SERVICE_NAME>", parameters = ["params_object"]}
 ```js
 export default {
 	async fetch(request, env) {
-	  try {
-
-    // parse the URL, read the subdomain
-		let workerName = new URL(request.url).host.split('.')[0];
-
-		let context_from_dispatcher = {
-			'customer_name': workerName,
-			'url': request.url,
-		  }
-
-		let userWorker = env.dispatcher.get(
-		  workerName,
-		  {},
-		  {// outbound arguments. object name must match parameters in the binding
-			outbound: {
-			 params_object: context_from_dispatcher,
-			   }
-			 }
-		);
-		return await userWorker.fetch(request);
-	  } catch (e) {
-		if (e.message.startsWith('Worker not found')) {
-		  // we tried to get a worker that doesn't exist in our dispatch namespace
-		  return new Response('', { status: 404 });
+		try {
+			// parse the URL, read the subdomain
+			let workerName = new URL(request.url).host.split(".")[0];
+
+			let context_from_dispatcher = {
+				customer_name: workerName,
+				url: request.url,
+			};
+
+			let userWorker = env.dispatcher.get(
+				workerName,
+				{},
+				{
+					// outbound arguments. object name must match parameters in the binding
+					outbound: {
+						params_object: context_from_dispatcher,
+					},
+				},
+			);
+			return await userWorker.fetch(request);
+		} catch (e) {
+			if (e.message.startsWith("Worker not found")) {
+				// we tried to get a worker that doesn't exist in our dispatch namespace
+				return new Response("", { status: 404 });
+			}
+			return new Response(e.message, { status: 500 });
 		}
-		 return new Response(e.message, { status: 500 });
-	  }
-	}
-}
+	},
+};
 ```
 
 4. The Outbound Worker will now be invoked on any `fetch()` requests from a user Worker. The user Worker will trigger a [FetchEvent](/workers/runtime-apis/handlers/fetch/) on the Outbound Worker. The variables declared in the binding can be accessed in the Outbound Worker through `env.<VAR_NAME>`.
@@ -80,47 +86,44 @@ The following is an example of an Outbound Worker that logs the fetch request fr
 
 ```js
 export default {
-  // this event is fired when the dispatched Workers make a subrequest
-  async fetch(request, env, ctx) {
-    // env contains the values we set in `dispatcher.get()`
-    const customer_name = env.customer_name;
-    const original_url = env.url;
-
-    // log the request
-    ctx.waitUntil(fetch(
-      'https://logs.example.com',
-      {
-        method: 'POST',
-        body: JSON.stringify({
-          customer_name,
-          original_url,
-        }),
-      },
-    ));
-
-    const url = new URL(original_url);
-    if (url.host === 'api.example.com') {
-      // pre-auth requests to our API
-      const jwt = make_jwt_for_customer(customer_name);
-
-      let headers = new Headers(request.headers);
-      headers.set('Authorization', `Bearer ${jwt}`);
-
-      // clone the request to set new headers using existing body
-      let new_request = new Request(request, {headers});
-
-      return fetch(new_request)
-    }
-
-    return fetch(request)
-  }
+	// this event is fired when the dispatched Workers make a subrequest
+	async fetch(request, env, ctx) {
+		// env contains the values we set in `dispatcher.get()`
+		const customer_name = env.customer_name;
+		const original_url = env.url;
+
+		// log the request
+		ctx.waitUntil(
+			fetch("https://logs.example.com", {
+				method: "POST",
+				body: JSON.stringify({
+					customer_name,
+					original_url,
+				}),
+			}),
+		);
+
+		const url = new URL(original_url);
+		if (url.host === "api.example.com") {
+			// pre-auth requests to our API
+			const jwt = make_jwt_for_customer(customer_name);
+
+			let headers = new Headers(request.headers);
+			headers.set("Authorization", `Bearer ${jwt}`);
+
+			// clone the request to set new headers using existing body
+			let new_request = new Request(request, { headers });
+
+			return fetch(new_request);
+		}
+
+		return fetch(request);
+	},
 };
 ```
 
 :::note
 
-
 Outbound Workers do not intercept fetch requests made from [Durable Objects](/durable-objects/) or [mTLS certificate bindings](/workers/runtime-apis/bindings/mtls/).
 
-
 :::