@akinon/next 1.110.0-snapshot-ZERO-3792-20251106153436 → 1.111.0-rc.16

package/CHANGELOG.md

@@ -1,10 +1,23 @@
 # @akinon/next
 
-## 1.110.0-snapshot-ZERO-3792-20251106153436
+## 1.111.0-rc.16
 
 ### Minor Changes
 
-- 888fdec: ZERO-3792: Virtual Try On new features are implemented and also basket support implemented.
+- d2c0e75: ZERO-3684: Handle cross-origin iframe access in iframeURLChange function
+- b55acb76: ZERO-2577: Fix pagination bug and update usePagination hook and ensure pagination controls rendering correctly
+- 143be2b: ZERO-3457: Crop styles are customizable and logic improved for rendering similar products modal
+- 9f8cd3bc: ZERO-3449: AI Search Active Filters & Crop Style changes have been implemented
+- d99a6a7: ZERO-3457_1: Fixed the settings prop and made sure everything is customizable.
+- 4de5303c: ZERO-2504: add cookie filter to api client request
+- 95b139d: ZERO-3795: Remove duplicate entry for SavedCard in PluginComponents map
+
+## 1.110.0
+
+### Minor Changes
+
+- fc752c9: ZERO-3795: Remove unnecessary redirection logic from payment middleware
+- 757af4a: ZERO-3783: Update image remote patterns for security compliance
 
 ## 1.109.0
 

package/api/image-proxy.ts

@@ -0,0 +1,75 @@
+import { NextRequest, NextResponse } from 'next/server';
+
+async function proxyImage(imageUrl: string) {
+  if (!imageUrl) {
+    return NextResponse.json(
+      { success: false, error: 'Missing url parameter' },
+      { status: 400 }
+    );
+  }
+
+  const imageResponse = await fetch(imageUrl);
+
+  if (!imageResponse.ok) {
+    return NextResponse.json(
+      { success: false, error: 'Failed to fetch image from URL' },
+      { status: 400 }
+    );
+  }
+
+  const imageBuffer = await imageResponse.arrayBuffer();
+  const base64Image = Buffer.from(imageBuffer).toString('base64');
+  const contentType = imageResponse.headers.get('content-type') || 'image/jpeg';
+
+  return { base64Image, contentType, imageBuffer };
+}
+
+export async function GET(request: NextRequest) {
+  try {
+    const { searchParams } = new URL(request.url);
+    const imageUrl = searchParams.get('url');
+
+    const result = await proxyImage(imageUrl!);
+    if (result instanceof NextResponse) {
+      return result;
+    }
+
+    return new NextResponse(result.imageBuffer, {
+      status: 200,
+      headers: {
+        'Content-Type': result.contentType,
+        'Access-Control-Allow-Origin': '*',
+        'Cache-Control': 'public, max-age=3600'
+      }
+    });
+  } catch (error) {
+    console.error('Image proxy error:', error);
+    return NextResponse.json(
+      { success: false, error: 'Internal server error' },
+      { status: 500 }
+    );
+  }
+}
+
+export async function POST(request: NextRequest) {
+  try {
+    const body = await request.json();
+    const imageUrl = body.imageUrl;
+
+    const result = await proxyImage(imageUrl);
+    if (result instanceof NextResponse) {
+      return result;
+    }
+
+    return NextResponse.json({
+      success: true,
+      base64Image: `data:${result.contentType};base64,${result.base64Image}`
+    });
+  } catch (error) {
+    console.error('Image proxy POST error:', error);
+    return NextResponse.json(
+      { success: false, error: 'Internal server error' },
+      { status: 500 }
+    );
+  }
+}

package/api/similar-product-list.ts

@@ -0,0 +1,63 @@
+import { NextRequest, NextResponse } from 'next/server';
+import Settings from 'settings';
+
+export async function GET(request: NextRequest) {
+  try {
+    const { searchParams } = new URL(request.url);
+    const dynamicFilter = request.headers.get('x-search-dynamic-filter');
+    const dynamicExclude = request.headers.get('x-search-dynamic-exclude');
+
+    if (!dynamicFilter && !dynamicExclude) {
+      return NextResponse.json(
+        {
+          error:
+            'Missing x-search-dynamic-filter or x-search-dynamic-exclude header'
+        },
+        { status: 400 }
+      );
+    }
+
+    if (Settings.commerceUrl === 'default') {
+      return NextResponse.json(
+        { error: 'Commerce URL is not configured' },
+        { status: 500 }
+      );
+    }
+
+    const queryString = searchParams.toString();
+    const apiUrl = `${Settings.commerceUrl}/list${
+      queryString ? `?${queryString}` : ''
+    }`;
+
+    const headers: Record<string, string> = {
+      Accept: 'application/json',
+      'Content-Type': 'application/json'
+    };
+
+    if (dynamicFilter) {
+      headers['x-search-dynamic-filter'] = dynamicFilter;
+    } else if (dynamicExclude) {
+      headers['x-search-dynamic-exclude'] = dynamicExclude;
+    }
+
+    const response = await fetch(apiUrl, {
+      method: 'GET',
+      headers
+    });
+
+    if (!response.ok) {
+      return NextResponse.json(
+        { error: `API request failed with status: ${response.status}` },
+        { status: response.status }
+      );
+    }
+
+    const data = await response.json();
+    return NextResponse.json(data);
+  } catch (error) {
+    return NextResponse.json(
+      { error: (error as Error).message },
+      { status: 500 }
+    );
+  }
+}

package/api/similar-products.ts

@@ -0,0 +1,111 @@
+import { NextResponse } from 'next/server';
+import Settings from 'settings';
+
+const IMAGE_SEARCH_API_URL = Settings.commerceUrl + '/image-search/';
+
+const errorResponse = (message: string, status: number) => {
+  return NextResponse.json({ error: message }, { status });
+};
+
+export async function GET(request: Request) {
+  const { searchParams } = new URL(request.url);
+  const limit = searchParams.get('limit') || '20';
+  const url = searchParams.get('url');
+  const excludedProductIds = searchParams.get('excluded_product_ids');
+
+  if (!url) {
+    return errorResponse('URL parameter is required', 400);
+  }
+
+  if (Settings.commerceUrl === 'default') {
+    return errorResponse('Commerce URL is not configured', 500);
+  }
+
+  const apiParams = new URLSearchParams();
+  apiParams.append('limit', limit);
+  apiParams.append('url', url);
+
+  if (excludedProductIds) {
+    apiParams.append('excluded_product_ids', excludedProductIds);
+  }
+
+  const apiUrl = `${IMAGE_SEARCH_API_URL}?${apiParams.toString()}`;
+
+  try {
+    const response = await fetch(apiUrl, {
+      method: 'GET',
+      headers: {
+        Accept: 'application/json'
+      }
+    });
+
+    if (!response.ok) {
+      const errorText = await response.text();
+      return errorResponse(
+        errorText || `API request failed with status: ${response.status}`,
+        response.status
+      );
+    }
+
+    const responseText = await response.text();
+
+    return NextResponse.json(JSON.parse(responseText));
+  } catch (error) {
+    return errorResponse((error as Error).message, 500);
+  }
+}
+
+export async function POST(request: Request) {
+  const { searchParams } = new URL(request.url);
+  const limit = searchParams.get('limit') || '20';
+
+  if (Settings.commerceUrl === 'default') {
+    return errorResponse('Commerce URL is not configured', 500);
+  }
+
+  let requestBody;
+  try {
+    requestBody = await request.json();
+  } catch (error) {
+    return errorResponse('Invalid JSON in request body', 400);
+  }
+
+  if (!requestBody.image) {
+    return errorResponse('Image data is required in request body', 400);
+  }
+
+  const apiParams = new URLSearchParams();
+  apiParams.append('limit', limit);
+
+  const apiUrl = `${IMAGE_SEARCH_API_URL}?${apiParams.toString()}`;
+
+  const bodyData: any = { image: requestBody.image };
+
+  if (requestBody.excluded_product_ids) {
+    bodyData.excluded_product_ids = requestBody.excluded_product_ids;
+  }
+
+  try {
+    const response = await fetch(apiUrl, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        Accept: 'application/json'
+      },
+      body: JSON.stringify(bodyData)
+    });
+
+    if (!response.ok) {
+      const errorText = await response.text();
+      return errorResponse(
+        errorText || `API request failed with status: ${response.status}`,
+        response.status
+      );
+    }
+
+    const responseData = await response.json();
+    return NextResponse.json(responseData);
+  } catch (error) {
+    return errorResponse((error as Error).message, 500);
+  }
+}

package/api/virtual-try-on.ts

@@ -122,55 +122,6 @@ export async function GET(request: NextRequest) {
           'X-Virtual-Try-On-Cache-Status': 'MISS'
         }
       });
-    } else if (endpoint === 'job-status') {
-      const referenceUrl = searchParams.get('reference_url');
-      if (!referenceUrl) {
-        return NextResponse.json(
-          { error: 'reference_url is required' },
-          { status: 400 }
-        );
-      }
-
-      const externalUrl = `${VIRTUAL_TRY_ON_API_URL}/api/async/v1/job-status?reference_url=${encodeURIComponent(referenceUrl)}`;
-      const clientIP = getClientIP(request);
-      const locale = getLocaleFromRequest(request);
-
-      const headersToSend = {
-        Accept: 'application/json',
-        ...(locale && { 'Accept-Language': locale }),
-        ...(request.headers.get('authorization') && {
-          Authorization: request.headers.get('authorization')!
-        }),
-        ...(clientIP && {
-          'X-Forwarded-For': clientIP
-        })
-      };
-
-      const response = await fetch(externalUrl, {
-        method: 'GET',
-        headers: headersToSend
-      });
-
-      let responseData: any;
-      const responseText = await response.text();
-
-      try {
-        responseData = responseText ? JSON.parse(responseText) : {};
-      } catch (parseError) {
-        return NextResponse.json(
-          { error: 'Invalid JSON response from job status API' },
-          { status: 500 }
-        );
-      }
-
-      return NextResponse.json(responseData, {
-        status: response.status,
-        headers: {
-          'Access-Control-Allow-Origin': '*',
-          'Access-Control-Allow-Methods': 'GET, POST, PUT, OPTIONS',
-          'Access-Control-Allow-Headers': 'Content-Type, Accept, Authorization'
-        }
-      });
     }
 
     return NextResponse.json(
@@ -190,32 +141,13 @@ export async function POST(request: NextRequest) {
     const body = await request.json();
 
     let externalUrl: string;
-    let httpMethod = 'POST';
-
     if (endpoint === 'feedback') {
-      if (!body.url || typeof body.url !== 'string' || !body.url.trim()) {
-        return NextResponse.json(
-          { status: 'error', message: 'URL is required for feedback' },
-          { status: 400 }
-        );
-      }
-      if (typeof body.feedback !== 'boolean') {
-        return NextResponse.json(
-          { status: 'error', message: 'Feedback must be a boolean value' },
-          { status: 400 }
-        );
-      }
       externalUrl = `${VIRTUAL_TRY_ON_API_URL}/api/v1/feedback`;
-      httpMethod = 'PUT';
-    } else if (endpoint === 'async-multiple-try-on') {
-      externalUrl = `${VIRTUAL_TRY_ON_API_URL}/api/async/v1/multiple-virtual-try-on`;
     } else {
-      return NextResponse.json(
-        { error: 'Invalid endpoint specified' },
-        { status: 400 }
-      );
+      externalUrl = `${VIRTUAL_TRY_ON_API_URL}/api/v1/virtual-try-on`;
     }
 
+    const httpMethod = endpoint === 'feedback' ? 'PUT' : 'POST';
     const clientIP = getClientIP(request);
     const locale = getLocaleFromRequest(request);
 
@@ -231,18 +163,13 @@ export async function POST(request: NextRequest) {
       })
     };
 
-    const fetchOptions: RequestInit = {
+    const response = await fetch(externalUrl, {
       method: httpMethod,
-      headers: headersToSend
-    };
-
-    if (httpMethod !== 'GET') {
-      fetchOptions.body = JSON.stringify(body);
-    }
-
-    const response = await fetch(externalUrl, fetchOptions);
+      headers: headersToSend,
+      body: JSON.stringify(body)
+    });
 
-    let responseData: Record<string, any>;
+    let responseData: any;
     const responseText = await response.text();
 
     if (endpoint === 'feedback') {
@@ -346,7 +273,7 @@ export async function PUT(request: NextRequest) {
       body: JSON.stringify(body)
     });
 
-    const responseData = response?.json() || {};
+    const responseData = await response.json();
 
     return NextResponse.json(responseData, {
       status: response.status,
@@ -360,8 +287,7 @@ export async function PUT(request: NextRequest) {
     return NextResponse.json(
       {
         status: 'error',
-        message: 'Internal server error occurred during feedback submission',
-        error: (error as Error).message
+        message: 'Internal server error occurred during feedback submission'
       },
       { status: 500 }
     );

package/components/plugin-module.tsx

@@ -23,7 +23,8 @@ enum Plugin {
   SavedCard = 'pz-saved-card',
   FlowPayment = 'pz-flow-payment',
   VirtualTryOn = 'pz-virtual-try-on',
-  Hepsipay = 'pz-hepsipay'
+  Hepsipay = 'pz-hepsipay',
+  SimilarProducts = 'pz-similar-products'
 }
 
 export enum Component {
@@ -50,7 +51,13 @@ export enum Component {
   MultiBasket = 'MultiBasket',
   SavedCard = 'SavedCardOption',
   VirtualTryOnPlugin = 'VirtualTryOnPlugin',
-  BasketVirtualTryOn = 'BasketVirtualTryOn',
+  SimilarProductsModal = 'SimilarProductsModal',
+  SimilarProductsFilterSidebar = 'SimilarProductsFilterSidebar',
+  SimilarProductsResultsGrid = 'SimilarProductsResultsGrid',
+  SimilarProductsPlugin = 'SimilarProductsPlugin',
+  ProductImageSearchFeature = 'ProductImageSearchFeature',
+  ImageSearchButton = 'ImageSearchButton',
+  HeaderImageSearchFeature = 'HeaderImageSearchFeature',
   IyzicoSavedCard = 'IyzicoSavedCardOption',
   Hepsipay = 'Hepsipay',
   FlowPayment = 'FlowPayment'
@@ -86,13 +93,21 @@ const PluginComponents = new Map([
     [Component.AkifastQuickLoginButton, Component.AkifastCheckoutButton]
   ],
   [Plugin.MultiBasket, [Component.MultiBasket]],
-  [Plugin.SavedCard, [Component.SavedCard, Component.IyzicoSavedCard]],
-  [Plugin.SavedCard, [Component.SavedCard]],
-  [Plugin.FlowPayment, [Component.FlowPayment]],
   [
-    Plugin.VirtualTryOn,
-    [Component.VirtualTryOnPlugin, Component.BasketVirtualTryOn]
+    Plugin.SimilarProducts,
+    [
+      Component.SimilarProductsModal,
+      Component.SimilarProductsFilterSidebar,
+      Component.SimilarProductsResultsGrid,
+      Component.SimilarProductsPlugin,
+      Component.ProductImageSearchFeature,
+      Component.ImageSearchButton,
+      Component.HeaderImageSearchFeature
+    ]
   ],
+  [Plugin.SavedCard, [Component.SavedCard, Component.IyzicoSavedCard]],
+  [Plugin.FlowPayment, [Component.FlowPayment]],
+  [Plugin.VirtualTryOn, [Component.VirtualTryOnPlugin]],
   [Plugin.Hepsipay, [Component.Hepsipay]]
 ]);
 
@@ -158,6 +173,8 @@ export default function PluginModule({
               promise = import(`${'@akinon/pz-multi-basket'}`);
             } else if (plugin === Plugin.SavedCard) {
               promise = import(`${'@akinon/pz-saved-card'}`);
+            } else if (plugin === Plugin.SimilarProducts) {
+              promise = import(`${'@akinon/pz-similar-products'}`);
             } else if (plugin === Plugin.Hepsipay) {
               promise = import(`${'@akinon/pz-hepsipay'}`);
             } else if (plugin === Plugin.FlowPayment) {

package/data/urls.ts

@@ -183,7 +183,11 @@ export const product = {
   breadcrumbUrl: (menuitemmodel: string) =>
     `/menus/generate_breadcrumb/?item=${menuitemmodel}&generator_name=menu_item`,
   bundleProduct: (productPk: string, queryString: string) =>
-    `/bundle-product/${productPk}/?${queryString}`
+    `/bundle-product/${productPk}/?${queryString}`,
+  similarProducts: (params?: string) =>
+    `/similar-products${params ? `?${params}` : ''}`,
+  similarProductsList: (params?: string) =>
+    `/similar-product-list${params ? `?${params}` : ''}`
 };
 
 export const wishlist = {

package/middlewares/complete-gpay.ts

@@ -62,14 +62,6 @@ const withCompleteGpay =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/complete-masterpass.ts

@@ -63,14 +63,6 @@ const withCompleteMasterpass =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/complete-wallet.ts

@@ -59,14 +59,6 @@ const withCompleteWallet =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/redirection-payment.ts

@@ -63,14 +63,6 @@ const withRedirectionPayment =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/saved-card-redirection.ts

@@ -63,14 +63,6 @@ const withSavedCardRedirection =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/three-d-redirection.ts

@@ -62,14 +62,6 @@ const withThreeDRedirection =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/middlewares/wallet-complete-redirection.ts

@@ -83,14 +83,6 @@ const withWalletCompleteRedirection =
             ip
           }
         );
-
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(
-            '/orders/checkout/',
-            req.cookies.get('pz-locale')?.value
-          )}`,
-          303
-        );
       }
 
       const request = await fetch(requestUrl, {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@akinon/next",
   "description": "Core package for Project Zero Next",
-  "version": "1.110.0-snapshot-ZERO-3792-20251106153436",
+  "version": "1.111.0-rc.16",
   "private": false,
   "license": "MIT",
   "bin": {
@@ -35,7 +35,7 @@
     "set-cookie-parser": "2.6.0"
   },
   "devDependencies": {
-    "@akinon/eslint-plugin-projectzero": "1.110.0-snapshot-ZERO-3792-20251106153436",
+    "@akinon/eslint-plugin-projectzero": "1.111.0-rc.16",
     "@babel/core": "7.26.10",
     "@babel/preset-env": "7.26.9",
     "@babel/preset-typescript": "7.27.0",

package/plugins.d.ts

@@ -37,6 +37,16 @@ declare module '@akinon/pz-cybersource-uc/src/redux/middleware' {
   export default middleware as any;
 }
 
+declare module '@akinon/pz-apple-pay' {}
+
+declare module '@akinon/pz-similar-products' {
+  export const SimilarProductsModal: any;
+  export const SimilarProductsFilterSidebar: any;
+  export const SimilarProductsResultsGrid: any;
+  export const SimilarProductsPlugin: any;
+  export const SimilarProductsButtonPlugin: any;
+}
+
 declare module '@akinon/pz-cybersource-uc/src/redux/reducer' {
   export default reducer as any;
 }

package/plugins.js

@@ -16,6 +16,7 @@ module.exports = [
   'pz-tabby-extension',
   'pz-apple-pay',
   'pz-tamara-extension',
+  'pz-similar-products',
   'pz-cybersource-uc',
   'pz-hepsipay',
   'pz-flow-payment',

package/types/index.ts

@@ -83,6 +83,12 @@ export interface Settings {
   };
   usePrettyUrlRoute?: boolean;
   commerceUrl: string;
+  /**
+   * This option allows you to track Sentry events on the client side, in addition to server and edge environments.
+   *
+   * It overrides process.env.NEXT_PUBLIC_SENTRY_DSN and process.env.SENTRY_DSN.
+   */
+  sentryDsn?: string;
   redis: {
     defaultExpirationTime: number;
   };

package/utils/mobile-3d-iframe.ts

@@ -1,8 +1,14 @@
 const iframeURLChange = (iframe, callback) => {
   iframe.addEventListener('load', () => {
     setTimeout(() => {
-      if (iframe?.contentWindow?.location) {
-        callback(iframe.contentWindow.location);
+      try {
+        if (iframe?.contentWindow?.location) {
+          const iframeLocation = iframe.contentWindow.location;
+
+          callback(iframeLocation);
+        }
+      } catch (error) {
+        // Expected: browser blocks cross-origin iframe access for security
       }
     }, 0);
   });

package/utils/redirection-iframe.ts

@@ -1,8 +1,14 @@
 const iframeURLChange = (iframe, callback) => {
   iframe.addEventListener('load', () => {
     setTimeout(() => {
-      if (iframe?.contentWindow?.location) {
-        callback(iframe.contentWindow.location);
+      try {
+        if (iframe?.contentWindow?.location) {
+          const iframeLocation = iframe.contentWindow.location;
+
+          callback(iframeLocation);
+        }
+      } catch (error) {
+        // Expected: browser blocks cross-origin iframe access for security
       }
     }, 0);
   });

package/with-pz-config.js

@@ -14,10 +14,15 @@ const defaultConfig = {
   },
   images: {
     remotePatterns: [
+      //It has to be like this for security reasons
       {
         protocol: 'https',
-        hostname: '**'
+        hostname: '**.akinoncloud.com'
       },
+      {
+        protocol: 'https',
+        hostname: '**.akinoncdn.com'
+      }
     ]
   },
   modularizeImports: {