@akinon/next 1.120.0-rc.4 → 1.120.0

package/CHANGELOG.md

@@ -1,56 +1,15 @@
 # @akinon/next
 
-## 1.120.0-rc.4
+## 1.120.0
 
 ### Minor Changes
 
-- bfafa3f4: ZERO-4160: Refactor oauth-login middleware to use fetchCommerce for API calls and improve cookie handling
-
-## 1.120.0-rc.3
-
-### Minor Changes
-
-- 760258c1: ZERO-4160: Enhance oauth-login middleware to handle fetch errors and improve response handling
-
-## 1.120.0-rc.2
-
-### Minor Changes
-
-- 8218dafa: ZERO-4160: Refactor oauth-login middleware to use fetch for login and callback responses
-
-## 1.120.0-rc.1
-
-### Minor Changes
-
-- bcaad120: ZERO-4158: Add logging for OAuth login and callback redirects
-
-## 1.120.0-rc.0
-
-### Minor Changes
-
-- 31b4a266: ZERO-4102: Add support for post-checkout redirect in middleware
-- d2c0e759: ZERO-3684: Handle cross-origin iframe access in iframeURLChange function
+- b12527ec: ZERO-4102: Add support for post-checkout redirect in middleware
 - aef81c5d: ZERO-4034: Refactor checkout API to use dynamic store imports for improved performance
-- b55acb76: ZERO-2577: Fix pagination bug and update usePagination hook and ensure pagination controls rendering correctly
-- 8a7fd0f4: ZERO-4065: Add '[segment]' to skipSegments in route generation
-- 36143125: ZERO-3987: Add barcode scanner functionality with modal and button
 - 0754c835: ZERO-4063: Add support for optional Redis password in cache handlers
-- f7e0f646: ZERO-4032: Add bfcache-headers middleware, integrate it into the default chain, and introduce a new environment variable for control.
-- 94a86fcc: ZERO-4065: Expand skipSegments array to include additional segments for route generation
-- 143be2b9: ZERO-3457: Crop styles are customizable and logic improved for rendering similar products modal
-- cd68a97a: ZERO-4126: Enhance error handling in appFetch and related data handlers to throw notFound on 404 and 422 errors
-- 9f8cd3bc: ZERO-3449: AI Search Active Filters & Crop Style changes have been implemented
-- 49c82e1a: ZERO-4047: Remove Sentry configuration from default Next.js config
 - a9f5cdb1: ZERO-4102: Fix post-checkout condition to additionally check for empty search parameters.
-- d99a6a7d: ZERO-3457_1: Fixed the settings prop and made sure everything is customizable.
-- d7e5178b: ZERO-3985: Add query string handling for orders redirection in middleware
-- 591e345e: ZERO-3855: Enhance credit card payment handling in checkout middlewares
 - 01ee41f1: ZERO-4102: Implement a post-checkout flow by dynamically determining checkout paths and managing a pz-post-checkout-flow cookie.
-- 4de5303c: ZERO-2504: add cookie filter to api client request
-- b59fdd1c: ZERO-4009: Add password reset token validation
-- 95b139dc: ZERO-3795: Remove duplicate entry for SavedCard in PluginComponents map
 - c6c5c1cd: ZERO-4128: Use cookies API for pz-pos-error to ensure delivery on 303 redirects
-- 3909d322: Edit the duplicate Plugin.SimilarProducts in the plugin-module.
 
 ## 1.119.0
 

package/bin/pz-generate-routes.js

@@ -25,16 +25,7 @@ const generateRoutes = () => {
   const routes = [];
   const excludedDirs = ['api', 'pz-not-found'];
 
-  const skipSegments = [
-    '[commerce]',
-    '[locale]',
-    '[currency]',
-    '[session]',
-    '[segment]',
-    '[url]',
-    '[theme]',
-    '[member_type]'
-  ];
+  const skipSegments = ['[commerce]', '[locale]', '[currency]'];
   const skipCatchAllRoutes = ['[...prettyurl]', '[...not_found]'];
 
   const walkDirectory = (dir, basePath = '') => {

package/components/plugin-module.tsx

@@ -55,7 +55,6 @@ export enum Component {
   SavedCard = 'SavedCardOption',
   VirtualTryOnPlugin = 'VirtualTryOnPlugin',
   BasketVirtualTryOn = 'BasketVirtualTryOn',
-  BarcodeScannerPlugin = 'BarcodeScannerPlugin',
   IyzicoSavedCard = 'IyzicoSavedCardOption',
   Hepsipay = 'Hepsipay',
   FlowPayment = 'FlowPayment',
@@ -114,10 +113,11 @@ const PluginComponents = new Map([
     ]
   ],
   [Plugin.SavedCard, [Component.SavedCard, Component.IyzicoSavedCard]],
+  [Plugin.SavedCard, [Component.SavedCard]],
   [Plugin.FlowPayment, [Component.FlowPayment]],
   [
     Plugin.VirtualTryOn,
-    [Component.VirtualTryOnPlugin, Component.BasketVirtualTryOn, Component.BarcodeScannerPlugin]
+    [Component.VirtualTryOnPlugin, Component.BasketVirtualTryOn]
   ],
   [Plugin.Hepsipay, [Component.Hepsipay]],
   [Plugin.MasterpassRest, [Component.MasterpassRest]],

package/data/client/account.ts

@@ -77,10 +77,6 @@ interface LoyaltyTransactions {
   }[];
 }
 
-interface PasswordResetValidateResponse {
-  validlink: boolean;
-}
-
 const accountApi = api.injectEndpoints({
   endpoints: (builder) => ({
     updatePassword: builder.mutation<void, AccountChangePasswordFormType>({
@@ -225,12 +221,6 @@ const accountApi = api.injectEndpoints({
     }),
     getLoyaltyTransactions: builder.query<LoyaltyTransactions, void>({
       query: () => buildClientRequestUrl(account.loyaltyTransactions)
-    }),
-    getValidatePasswordResetToken: builder.query<
-      PasswordResetValidateResponse,
-      string
-    >({
-      query: (slug) => buildClientRequestUrl(account.passwordReset(slug))
     })
   }),
   overrideExisting: true
@@ -257,6 +247,5 @@ export const {
   usePasswordResetMutation,
   useAnonymizeMutation,
   useGetLoyaltyBalanceQuery,
-  useGetLoyaltyTransactionsQuery,
-  useGetValidatePasswordResetTokenQuery
+  useGetLoyaltyTransactionsQuery
 } = accountApi;

package/data/urls.ts

@@ -183,11 +183,7 @@ export const product = {
   breadcrumbUrl: (menuitemmodel: string) =>
     `/menus/generate_breadcrumb/?item=${menuitemmodel}&generator_name=menu_item`,
   bundleProduct: (productPk: string, queryString: string) =>
-    `/bundle-product/${productPk}/?${queryString}`,
-  similarProducts: (params?: string) =>
-    `/similar-products${params ? `?${params}` : ''}`,
-  similarProductsList: (params?: string) =>
-    `/similar-product-list${params ? `?${params}` : ''}`
+    `/bundle-product/${productPk}/?${queryString}`
 };
 
 export const wishlist = {

package/lib/cache-handler.mjs

@@ -302,9 +302,6 @@ async function getRedisClient() {
 
     const redisClient = createClient({
       url: redisUrl,
-      ...(process.env.CACHE_PASSWORD && {
-        password: process.env.CACHE_PASSWORD
-      }),
       socket: {
         reconnectStrategy: (retries) => {
           if (retries > CACHE_CONFIG.redis.reconnectStrategy.maxRetries) {

package/middlewares/default.ts

@@ -14,8 +14,7 @@ import {
   withUrlRedirection,
   withCompleteWallet,
   withWalletCompleteRedirection,
-  withMasterpassRestCallback,
-  withBfcacheHeaders
+  withMasterpassRestCallback
 } from '.';
 import { urlLocaleMatcherRegex } from '../utils';
 import withCurrency from './currency';
@@ -132,13 +131,8 @@ const withPzDefault =
     }
 
     if (req.nextUrl.pathname.startsWith('/orders/redirection/')) {
-      const queryString = searchParams.toString();
       return NextResponse.rewrite(
-        new URL(
-          `${encodeURI(Settings.commerceUrl)}/orders/redirection/${
-            queryString ? `?${queryString}` : ''
-          }`
-        )
+        new URL(`${encodeURI(Settings.commerceUrl)}/orders/redirection/`)
       );
     }
 
@@ -256,11 +250,10 @@ const withPzDefault =
                           withCompleteWallet(
                             withWalletCompleteRedirection(
                               withMasterpassRestCallback(
-                                withBfcacheHeaders(
-                                  async (
-                                    req: PzNextRequest,
-                                    event: NextFetchEvent
-                                  ) => {
+                                async (
+                                  req: PzNextRequest,
+                                  event: NextFetchEvent
+                                ) => {
                                   let middlewareResult: NextResponse | void =
                                     NextResponse.next();
 
@@ -500,7 +493,7 @@ const withPzDefault =
                                   }
 
                                   return middlewareResult;
-                                })
+                                }
                               )
                             )
                           )

package/middlewares/index.ts

@@ -12,7 +12,6 @@ import withSavedCardRedirection from './saved-card-redirection';
 import withCompleteWallet from './complete-wallet';
 import withWalletCompleteRedirection from './wallet-complete-redirection';
 import withMasterpassRestCallback from './masterpass-rest-callback';
-import withBfcacheHeaders from './bfcache-headers';
 import { NextRequest } from 'next/server';
 
 export {
@@ -29,8 +28,7 @@ export {
   withSavedCardRedirection,
   withCompleteWallet,
   withWalletCompleteRedirection,
-  withMasterpassRestCallback,
-  withBfcacheHeaders
+  withMasterpassRestCallback
 };
 
 export interface PzNextRequest extends NextRequest {

package/middlewares/masterpass-rest-callback.ts

@@ -10,23 +10,49 @@ const withMasterpassRestCallback =
   async (req: PzNextRequest, event: NextFetchEvent) => {
     const url = req.nextUrl.clone();
     const ip = req.headers.get('x-forwarded-for') ?? '';
+    const sessionId = req.cookies.get('osessionid');
 
-    const isMasterpassCompletePage =
-      url.pathname.includes('/orders/checkout') &&
-      url.searchParams.get('page') === 'MasterpassRestCompletePage';
-
-    if (!isMasterpassCompletePage) {
+    if (!url.pathname.includes('/orders/masterpass-rest-callback')) {
       return middleware(req, event);
     }
 
-    try {
-      const isPostCheckout = req.cookies.get('pz-post-checkout-flow')?.value === 'true';
-      const requestUrl = new URL(getCheckoutPath(isPostCheckout), Settings.commerceUrl);
+    if (req.method !== 'POST') {
+      logger.warn('Invalid request method for masterpass REST callback', {
+        middleware: 'masterpass-rest-callback',
+        method: req.method,
+        ip
+      });
 
-      url.searchParams.forEach((value, key) => {
-        requestUrl.searchParams.set(key, value);
+      return NextResponse.redirect(
+        `${url.origin}${getUrlPathWithLocale(
+          '/orders/checkout/',
+          req.cookies.get('pz-locale')?.value
+        )}`,
+        303
+      );
+    }
+
+    const responseCode = url.searchParams.get('responseCode');
+    const token = url.searchParams.get('token');
+
+    if (!responseCode || !token) {
+      logger.warn('Missing required parameters for masterpass REST callback', {
+        middleware: 'masterpass-rest-callback',
+        responseCode,
+        token,
+        ip
       });
 
+      return NextResponse.redirect(
+        `${url.origin}${getUrlPathWithLocale(
+          '/orders/checkout/',
+          req.cookies.get('pz-locale')?.value
+        )}`,
+        303
+      );
+    }
+
+    try {
       const formData = await req.formData();
       const body: Record<string, string> = {};
 
@@ -34,6 +60,38 @@ const withMasterpassRestCallback =
         body[key] = value.toString();
       });
 
+      if (!sessionId) {
+        logger.warn(
+          'Make sure that the SESSION_COOKIE_SAMESITE environment variable is set to None in Commerce.',
+          {
+            middleware: 'masterpass-rest-callback',
+            ip
+          }
+        );
+
+        return NextResponse.redirect(
+          `${url.origin}${getUrlPathWithLocale(
+            '/orders/checkout/',
+            req.cookies.get('pz-locale')?.value
+          )}`,
+          303
+        );
+      }
+
+      const isPostCheckout = req.cookies.get('pz-post-checkout-flow')?.value === 'true';
+      const requestUrl = new URL(getCheckoutPath(isPostCheckout), Settings.commerceUrl);
+      requestUrl.searchParams.set('page', 'MasterpassRestCompletePage');
+      requestUrl.searchParams.set('responseCode', responseCode);
+      requestUrl.searchParams.set('token', token);
+      requestUrl.searchParams.set(
+        'three_d_secure',
+        body.transactionType?.includes('3D') ? 'true' : 'false'
+      );
+      requestUrl.searchParams.set(
+        'transactionType',
+        body.transactionType || ''
+      );
+
       const requestHeaders = {
         'Content-Type': 'application/x-www-form-urlencoded',
         'X-Requested-With': 'XMLHttpRequest',
@@ -49,13 +107,33 @@ const withMasterpassRestCallback =
         body: new URLSearchParams(body)
       });
 
+      logger.info('Masterpass REST callback request', {
+        requestUrl: requestUrl.toString(),
+        status: request.status,
+        requestHeaders,
+        ip
+      });
+
       const response = await request.json();
-      const { errors } = response;
+
+      const { context_list: contextList, errors } = response;
+
+      let redirectUrl = response.redirect_url;
+
+      if (!redirectUrl && contextList && contextList.length > 0) {
+        for (const context of contextList) {
+          if (context.page_context && context.page_context.redirect_url) {
+            redirectUrl = context.page_context.redirect_url;
+            break;
+          }
+        }
+      }
 
       if (errors && Object.keys(errors).length) {
-        logger.error('Error while processing MasterpassRestCompletePage', {
-          middleware: 'masterpass-rest-complete',
+        logger.error('Error while processing masterpass REST callback', {
+          middleware: 'masterpass-rest-callback',
           errors,
+          requestHeaders,
           ip
         });
 
@@ -64,7 +142,12 @@ const withMasterpassRestCallback =
             '/orders/checkout/',
             req.cookies.get('pz-locale')?.value
           )}`,
-          303
+          {
+            status: 303,
+            headers: {
+              'Set-Cookie': `pz-pos-error=${encodeURIComponent(JSON.stringify(errors))}; path=/;`
+            }
+          }
         );
 
         // Add error cookie
@@ -75,30 +158,70 @@ const withMasterpassRestCallback =
         return errorResponse;
       }
 
-      const redirectUrl =
-        response.redirect_url ||
-        response.context_list?.[0]?.page_context?.redirect_url;
+      logger.info('Masterpass REST callback response', {
+        middleware: 'masterpass-rest-callback',
+        contextList,
+        redirectUrl,
+        ip
+      });
 
-      if (redirectUrl) {
-        return NextResponse.redirect(
-          `${url.origin}${getUrlPathWithLocale(redirectUrl, req.cookies.get('pz-locale')?.value)}`,
-          303
+      if (!redirectUrl) {
+        logger.warn(
+          'No redirection url found in response. Redirecting to checkout page.',
+          {
+            middleware: 'masterpass-rest-callback',
+            requestHeaders,
+            response: JSON.stringify(response),
+            ip
+          }
         );
+
+        const redirectUrlWithLocale = `${url.origin}${getUrlPathWithLocale(
+          '/orders/checkout/',
+          req.cookies.get('pz-locale')?.value
+        )}`;
+
+        return NextResponse.redirect(redirectUrlWithLocale, 303);
       }
 
-      return NextResponse.redirect(
-        `${url.origin}${getUrlPathWithLocale('/orders/checkout/', req.cookies.get('pz-locale')?.value)}`,
-        303
-      );
+      const redirectUrlWithLocale = `${url.origin}${getUrlPathWithLocale(
+        redirectUrl,
+        req.cookies.get('pz-locale')?.value
+      )}`;
+
+      logger.info('Redirecting after masterpass REST callback', {
+        middleware: 'masterpass-rest-callback',
+        redirectUrl: redirectUrlWithLocale,
+        ip
+      });
+
+      const nextResponse = NextResponse.redirect(redirectUrlWithLocale, 303);
+
+      // Forward set-cookie headers from the upstream response
+      const setCookieHeader = request.headers.get('set-cookie');
+      if (setCookieHeader) {
+        setCookieHeader.split(',').forEach((cookie) => {
+          nextResponse.headers.append('Set-Cookie', cookie.trim());
+        });
+      }
+
+      return nextResponse;
     } catch (error) {
-      logger.error('Error while processing MasterpassRestCompletePage', {
-        middleware: 'masterpass-rest-complete',
+      logger.error('Error while processing masterpass REST callback', {
+        middleware: 'masterpass-rest-callback',
         error,
+        requestHeaders: {
+          Cookie: req.headers.get('cookie') ?? '',
+          'x-currency': req.cookies.get('pz-currency')?.value ?? ''
+        },
         ip
       });
 
       return NextResponse.redirect(
-        `${url.origin}${getUrlPathWithLocale('/orders/checkout/', req.cookies.get('pz-locale')?.value)}`,
+        `${url.origin}${getUrlPathWithLocale(
+          '/orders/checkout/',
+          req.cookies.get('pz-locale')?.value
+        )}`,
         303
       );
     }

package/middlewares/oauth-login.ts

@@ -6,114 +6,55 @@ import {
 } from 'next/server';
 import Settings from 'settings';
 import { getUrlPathWithLocale } from '../utils/localization';
-import logger from '../utils/log';
-
-const LOGIN_URL_REGEX = /^\/(\w+)\/login\/?$/;
-const CALLBACK_URL_REGEX = /^\/(\w+)\/login\/callback\/?$/;
-
-function fetchCommerce(url: string, req: NextRequest): Promise<Response> {
-  return fetch(url, {
-    headers: {
-      'x-forwarded-host':
-        req.headers.get('x-forwarded-host') || req.headers.get('host') || '',
-      'x-forwarded-for': req.headers.get('x-forwarded-for') ?? '',
-      'x-forwarded-proto': req.headers.get('x-forwarded-proto') || 'https',
-      'x-currency': req.cookies.get('pz-currency')?.value ?? '',
-      cookie: req.headers.get('cookie') ?? ''
-    },
-    redirect: 'manual'
-  });
-}
-
-function forwardCookies(from: Response, to: NextResponse): void {
-  from.headers.getSetCookie().forEach((cookie) => {
-    to.headers.append('set-cookie', cookie);
-  });
-}
-
-function commerceRedirect(
-  commerceResponse: Response,
-  location: string,
-  origin: string
-): NextResponse {
-  const redirectUrl = new URL(location, origin);
-  const response = NextResponse.redirect(redirectUrl);
-  forwardCookies(commerceResponse, response);
-  return response;
-}
-
-function commercePassthrough(commerceResponse: Response): NextResponse {
-  return new NextResponse(commerceResponse.body, {
-    status: commerceResponse.status,
-    headers: commerceResponse.headers
-  });
-}
 
 const withOauthLogin =
   (middleware: NextMiddleware) =>
   async (req: NextRequest, event: NextFetchEvent) => {
-    const { pathname, search } = req.nextUrl;
-
-    logger.info('OAuth login redirect', {
-      host: req.headers.get('host'),
-      'x-forwarded-host': req.headers.get('x-forwarded-host'),
-      'x-forwarded-for': req.headers.get('x-forwarded-for')
-    });
-
-    const loginMatch = LOGIN_URL_REGEX.exec(pathname);
-    if (loginMatch) {
-      try {
-        const provider = loginMatch[1];
-        const commerceResponse = await fetchCommerce(
-          `${Settings.commerceUrl}/${provider}/login/`,
-          req
-        );
-
-        const location = commerceResponse.headers.get('location');
-        if (!location) return commercePassthrough(commerceResponse);
-
-        const response = commerceRedirect(
-          commerceResponse,
-          location,
-          req.nextUrl.origin
-        );
-
-        response.headers.append(
-          'set-cookie',
-          `pz-oauth-callback-url=${encodeURIComponent(req.headers.get('referer') || '')}; Path=/`
+    const url = req.nextUrl.clone();
+    const loginUrlMatcherRegex = new RegExp(/^\/(\w+)\/login\/?$/);
+    const loginCallbackUrlMatcherRegex = new RegExp(
+      /^\/(\w+)\/login\/callback\/?$/
+    );
+    const ip = req.headers.get('x-forwarded-for') ?? '';
+
+    const headers = {
+      'x-forwarded-host':
+        req.headers.get('x-forwarded-host') || req.headers.get('host') || '',
+      'x-currency': req.cookies.get('pz-currency')?.value ?? '',
+      'x-forwarded-for': ip
+    };
+
+    if (loginUrlMatcherRegex.test(url.pathname)) {
+      const provider = url.pathname.match(loginUrlMatcherRegex)[1];
+      const response = NextResponse.rewrite(
+        `${Settings.commerceUrl}/${provider}/login/`,
+        {
+          headers
+        }
+      );
+
+      if (req.headers.get('referer')) {
+        response.cookies.set(
+          'pz-oauth-callback-url',
+          req.headers.get('referer')
         );
-
-        return response;
-      } catch (error) {
-        console.error('OAuth login fetch failed:', error);
-        return middleware(req, event);
       }
-    }
 
-    const callbackMatch = CALLBACK_URL_REGEX.exec(pathname);
-    if (callbackMatch) {
-      try {
-        const provider = callbackMatch[1];
-        const commerceResponse = await fetchCommerce(
-          `${Settings.commerceUrl}/${provider}/login/callback/${search}`,
-          req
-        );
+      return response;
+    }
 
-        const location = commerceResponse.headers.get('location');
-        if (!location) return commercePassthrough(commerceResponse);
+    if (loginCallbackUrlMatcherRegex.test(url.pathname)) {
+      const provider = url.pathname.match(loginCallbackUrlMatcherRegex)[1];
 
-        return commerceRedirect(
-          commerceResponse,
-          location,
-          req.nextUrl.origin
-        );
-      } catch (error) {
-        console.error('OAuth callback fetch failed:', error);
-        return middleware(req, event);
-      }
+      return NextResponse.rewrite(
+        `${Settings.commerceUrl}/${provider}/login/callback/${url.search}`,
+        {
+          headers
+        }
+      );
     }
 
-    if (!pathname.startsWith('/baskets/basket')) {
+    if (!url.pathname.startsWith('/baskets/basket')) {
       return middleware(req, event);
     }
 
@@ -123,12 +64,11 @@ const withOauthLogin =
       req.cookies.get('messages')?.value.includes('Successfully signed in') ||
       (currentSessionId && req.cookies.get('messages'))
     ) {
-      let redirectUrlWithLocale = `${req.nextUrl.origin}${getUrlPathWithLocale(
+      let redirectUrlWithLocale = `${url.origin}${getUrlPathWithLocale(
         '/auth/oauth-login',
         req.cookies.get('pz-locale')?.value
       )}`;
-      const callbackUrl =
-        req.cookies.get('pz-oauth-callback-url')?.value ?? '';
+      let callbackUrl = req.cookies.get('pz-oauth-callback-url')?.value ?? '';
 
       if (callbackUrl.length) {
         redirectUrlWithLocale += `?next=${encodeURIComponent(callbackUrl)}`;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@akinon/next",
   "description": "Core package for Project Zero Next",
-  "version": "1.120.0-rc.4",
+  "version": "1.120.0",
   "private": false,
   "license": "MIT",
   "bin": {
@@ -35,7 +35,7 @@
     "set-cookie-parser": "2.6.0"
   },
   "devDependencies": {
-    "@akinon/eslint-plugin-projectzero": "1.120.0-rc.4",
+    "@akinon/eslint-plugin-projectzero": "1.120.0",
     "@babel/core": "7.26.10",
     "@babel/preset-env": "7.26.9",
     "@babel/preset-typescript": "7.27.0",

package/plugins.d.ts

@@ -37,16 +37,6 @@ declare module '@akinon/pz-cybersource-uc/src/redux/middleware' {
   export default middleware as any;
 }
 
-declare module '@akinon/pz-apple-pay' {}
-
-declare module '@akinon/pz-similar-products' {
-  export const SimilarProductsModal: any;
-  export const SimilarProductsFilterSidebar: any;
-  export const SimilarProductsResultsGrid: any;
-  export const SimilarProductsPlugin: any;
-  export const SimilarProductsButtonPlugin: any;
-}
-
 declare module '@akinon/pz-cybersource-uc/src/redux/reducer' {
   export default reducer as any;
 }

package/plugins.js

@@ -16,7 +16,6 @@ module.exports = [
   'pz-tabby-extension',
   'pz-apple-pay',
   'pz-tamara-extension',
-  'pz-similar-products',
   'pz-cybersource-uc',
   'pz-hepsipay',
   'pz-flow-payment',

package/redux/middlewares/checkout.ts

@@ -204,25 +204,15 @@ export const contextListMiddleware: Middleware = ({
             (ctx) => ctx.page_name === 'DeliveryOptionSelectionPage'
           )
         ) {
-          const isCreditCardPayment =
-            preOrder?.payment_option?.payment_type === 'credit_card' ||
-            preOrder?.payment_option?.payment_type === 'masterpass';
-
           if (context.page_context.card_type) {
             dispatch(setCardType(context.page_context.card_type));
-          } else if (isCreditCardPayment) {
-            dispatch(setCardType(null));
           }
 
           if (
             context.page_context.installments &&
             preOrder?.payment_option?.payment_type !== 'masterpass_rest'
           ) {
-            if (!isCreditCardPayment || context.page_context.card_type) {
-              dispatch(
-                setInstallmentOptions(context.page_context.installments)
-              );
-            }
+            dispatch(setInstallmentOptions(context.page_context.installments));
           }
         }
 

package/redux/middlewares/pre-order/installment-option.ts

@@ -14,17 +14,9 @@ export const installmentOptionMiddleware: Middleware = ({
       return result;
     }
 
-    const { installmentOptions, cardType } = getState().checkout;
+    const { installmentOptions } = getState().checkout;
     const { endpoints: apiEndpoints } = checkoutApi;
 
-    const isCreditCardPayment =
-      preOrder?.payment_option?.payment_type === 'credit_card' ||
-      preOrder?.payment_option?.payment_type === 'masterpass';
-
-    if (isCreditCardPayment && !cardType) {
-      return result;
-    }
-
     if (
       !preOrder?.installment &&
       preOrder?.payment_option?.payment_type !== 'saved_card' &&

package/types/index.ts

@@ -83,12 +83,6 @@ export interface Settings {
   };
   usePrettyUrlRoute?: boolean;
   commerceUrl: string;
-  /**
-   * This option allows you to track Sentry events on the client side, in addition to server and edge environments.
-   *
-   * It overrides process.env.NEXT_PUBLIC_SENTRY_DSN and process.env.SENTRY_DSN.
-   */
-  sentryDsn?: string;
   redis: {
     defaultExpirationTime: number;
   };

package/utils/app-fetch.ts

@@ -2,7 +2,6 @@ import Settings from 'settings';
 import logger from '../utils/log';
 import { headers, cookies } from 'next/headers';
 import { ServerVariables } from './server-variables';
-import { notFound } from 'next/navigation';
 
 export enum FetchResponseType {
   JSON = 'json',
@@ -61,15 +60,13 @@ const appFetch = async <T>({
     status = req.status;
     logger.debug(`FETCH END ${url}`, { status: req.status, ip });
 
-    if (req.ok) {
-      if (responseType === FetchResponseType.JSON) {
-        response = (await req.json()) as T;
-      } else {
-        response = (await req.text()) as unknown as T;
-      }
-
-      logger.trace(`FETCH RESPONSE`, { url, response, ip });
+    if (responseType === FetchResponseType.JSON) {
+      response = (await req.json()) as T;
+    } else {
+      response = (await req.text()) as unknown as T;
     }
+
+    logger.trace(`FETCH RESPONSE`, { url, response, ip });
   } catch (error) {
     const logType = status === 500 ? 'fatal' : 'error';
 
@@ -78,10 +75,6 @@ const appFetch = async <T>({
     }
   }
 
-  if (status === 422) {
-    notFound();
-  }
-
   return response;
 };
 

package/utils/index.ts

@@ -195,9 +195,13 @@ export const urlLocaleMatcherRegex = new RegExp(
 
 export const getPosError = () => {
   const cookieValue = getCookie('pz-pos-error');
-  const error = JSON.parse(
-    cookieValue ? decodeURIComponent(cookieValue) : '{}'
-  );
+  let decoded: string;
+  try {
+    decoded = cookieValue ? decodeURIComponent(cookieValue) : '{}';
+  } catch {
+    decoded = cookieValue ?? '{}';
+  }
+  const error = JSON.parse(decoded);
 
   // delete 'pz-pos-error' cookie when refreshing or closing page
   window.addEventListener('beforeunload', () => {

package/utils/mobile-3d-iframe.ts

@@ -1,14 +1,8 @@
 const iframeURLChange = (iframe, callback) => {
   iframe.addEventListener('load', () => {
     setTimeout(() => {
-      try {
-        if (iframe?.contentWindow?.location) {
-          const iframeLocation = iframe.contentWindow.location;
-
-          callback(iframeLocation);
-        }
-      } catch (error) {
-        // Expected: browser blocks cross-origin iframe access for security
+      if (iframe?.contentWindow?.location) {
+        callback(iframe.contentWindow.location);
       }
     }, 0);
   });

package/utils/redirection-iframe.ts

@@ -1,14 +1,8 @@
 const iframeURLChange = (iframe, callback) => {
   iframe.addEventListener('load', () => {
     setTimeout(() => {
-      try {
-        if (iframe?.contentWindow?.location) {
-          const iframeLocation = iframe.contentWindow.location;
-
-          callback(iframeLocation);
-        }
-      } catch (error) {
-        // Expected: browser blocks cross-origin iframe access for security
+      if (iframe?.contentWindow?.location) {
+        callback(iframe.contentWindow.location);
       }
     }, 0);
   });

package/with-pz-config.js

@@ -65,7 +65,10 @@ const defaultConfig = {
       translations: false
     };
     return config;
-  }
+  },
+  sentry: {
+    hideSourceMaps: true
+  } // TODO: This section will be reviewed again in the Sentry 8 update.
 };
 
 const withPzConfig = (

package/api/barcode-search.ts

@@ -1,59 +0,0 @@
-import { NextRequest, NextResponse } from 'next/server';
-import Settings from 'settings';
-
-export async function GET(request: NextRequest) {
-  try {
-    const { searchParams } = new URL(request.url);
-    const barcode = searchParams.get('search_text');
-
-    if (!barcode) {
-      return NextResponse.json(
-        { error: 'Missing search_text parameter (barcode)' },
-        { status: 400 }
-      );
-    }
-
-    if (Settings.commerceUrl === 'default') {
-      return NextResponse.json(
-        { error: 'Commerce URL is not configured' },
-        { status: 500 }
-      );
-    }
-
-    const queryParams = new URLSearchParams();
-    queryParams.append('search_text', barcode);
-
-    searchParams.forEach((value, key) => {
-      if (key !== 'search_text') {
-        queryParams.append(key, value);
-      }
-    });
-
-    const apiUrl = `${Settings.commerceUrl}/list/?${queryParams.toString()}`;
-
-    const headers: Record<string, string> = {
-      Accept: 'application/json',
-      'Content-Type': 'application/json'
-    };
-
-    const response = await fetch(apiUrl, {
-      method: 'GET',
-      headers
-    });
-
-    if (!response.ok) {
-      return NextResponse.json(
-        { error: `API request failed with status: ${response.status}` },
-        { status: response.status }
-      );
-    }
-
-    const data = await response.json();
-    return NextResponse.json(data);
-  } catch (error) {
-    return NextResponse.json(
-      { error: (error as Error).message },
-      { status: 500 }
-    );
-  }
-}

package/middlewares/bfcache-headers.ts

@@ -1,18 +0,0 @@
-import { NextMiddleware } from 'next/server';
-
-const withBfcacheHeaders = (middleware: NextMiddleware): NextMiddleware => {
-  return async (req, event) => {
-    const response = await middleware(req, event);
-
-    if (process.env.BF_CACHE === 'true' && response) {
-      response.headers.set(
-        'Cache-Control',
-        'private, no-cache, max-age=0, must-revalidate'
-      );
-    }
-
-    return response;
-  };
-};
-
-export default withBfcacheHeaders;