I think Zeblote's comments describes very well the thing that he wants to do, I'm looking myself for the same thing and really haven't found any real answer.
Basically the thing is:
1.- Store web application on droplet, using a cdn like cloudflare point to the application by the domain 'stuff.com' and enjoy benefits from using cdn.
2.- Store all static files (.jpeg, .png, .css, .js, .mp4, etc.) on spaces. However by doing this anyone could access directly the files, consuming bandwith and resources of the spaces bucket, or simply perform malicious actions directly on the bucket itself.
3.- By hiding the bucket behind a cloudflare cdn I think he means (at least from my understanding), is that he wants to create a cname for 'stuff.com' alias 'static.stuff.com' wich points to the spaces bucket therefore the files stored at the bucket. So instead of accessing the files by 'stuff.nyc3.digitaloceanspaces.com/img-example.jpeg' we can access them simply like 'static.stuff.com/img-example.jpeg', wich is easy to remember and better brand representing than the first one, and enjoy benefits from using a cdn.
Nevertheless using a cdn brings a lot of benefits to the table, like security, file caching, etc...
'stuff.com' in cloudflare points to web application ip in droplet.
'static.stuff.com' in cloudflare points to 'stuff.nyc3.digitaloceanspaces.com' in spaces.
Is there an actual way of doing this?
johngannon please give real answers.