@base44-preview/sdk 0.8.32-pr.185.2dc1fa1 → 0.8.32-pr.198.9e03952

package/dist/utils/anon-visitor.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Returns a stable per-browser identifier for an unauthenticated ("anonymous")
+ * visitor, creating and persisting one on first use.
+ *
+ * Sent as the `X-Base44-Anonymous-Id` header on unauthenticated requests so the
+ * backend can group an anonymous user's agent conversations and enforce
+ * ownership (the header is treated as a bearer-style credential). Persisted in
+ * localStorage so it survives reloads; a new browser/device or cleared storage
+ * starts a fresh anonymous identity.
+ *
+ * Returns `null` outside the browser (no `localStorage` / SSR) so callers can
+ * skip the header on the server.
+ *
+ * @internal
+ */
+export declare function getOrCreateAnonymousVisitorId(): string | null;

package/dist/utils/anon-visitor.js

@@ -0,0 +1,39 @@
+import { v4 as uuidv4 } from "uuid";
+/**
+ * localStorage key holding the anonymous visitor id.
+ * @internal
+ */
+const ANONYMOUS_VISITOR_ID_STORAGE_KEY = "base44_anonymous_visitor_id";
+/**
+ * Returns a stable per-browser identifier for an unauthenticated ("anonymous")
+ * visitor, creating and persisting one on first use.
+ *
+ * Sent as the `X-Base44-Anonymous-Id` header on unauthenticated requests so the
+ * backend can group an anonymous user's agent conversations and enforce
+ * ownership (the header is treated as a bearer-style credential). Persisted in
+ * localStorage so it survives reloads; a new browser/device or cleared storage
+ * starts a fresh anonymous identity.
+ *
+ * Returns `null` outside the browser (no `localStorage` / SSR) so callers can
+ * skip the header on the server.
+ *
+ * @internal
+ */
+export function getOrCreateAnonymousVisitorId() {
+    if (typeof window === "undefined" || !window.localStorage) {
+        return null;
+    }
+    try {
+        const existing = window.localStorage.getItem(ANONYMOUS_VISITOR_ID_STORAGE_KEY);
+        if (existing) {
+            return existing;
+        }
+        const minted = uuidv4();
+        window.localStorage.setItem(ANONYMOUS_VISITOR_ID_STORAGE_KEY, minted);
+        return minted;
+    }
+    catch (_a) {
+        // localStorage unavailable (private mode / sandboxed iframe): no stable id.
+        return null;
+    }
+}

package/dist/utils/axios-client.js

@@ -1,6 +1,7 @@
 import axios from "axios";
 import { isInIFrame } from "./common.js";
 import { v4 as uuidv4 } from "uuid";
+import { getOrCreateAnonymousVisitorId } from "./anon-visitor.js";
 /**
  * Custom error class for Base44 SDK errors.
  *
@@ -131,6 +132,15 @@ export function createAxiosClient({ baseURL, headers = {}, token, interceptRespo
     client.interceptors.request.use((config) => {
         if (typeof window !== "undefined") {
             config.headers.set("X-Origin-URL", window.location.href);
+            // On unauthenticated clients, attach a stable anonymous visitor id so the
+            // backend can support anonymous agent access (conversation grouping +
+            // ownership). Authenticated clients are identified by their token instead.
+            if (!token) {
+                const anonymousVisitorId = getOrCreateAnonymousVisitorId();
+                if (anonymousVisitorId) {
+                    config.headers.set("X-Base44-Anonymous-Id", anonymousVisitorId);
+                }
+            }
         }
         const requestId = uuidv4();
         config.requestId = requestId;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@base44-preview/sdk",
-  "version": "0.8.32-pr.185.2dc1fa1",
+  "version": "0.8.32-pr.198.9e03952",
   "description": "JavaScript SDK for Base44 API",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",