@betterstore/sdk 0.2.2 → 0.2.7

package/.prettierignore

@@ -1,3 +1,3 @@
-node_modules
-dist
+node_modules
+dist
 pnpm-lock.yaml

package/CHANGELOG.md

@@ -1,5 +1,35 @@
 # @betterstore/sdk
 
+## 0.2.7
+
+### Patch Changes
+
+- cicd test
+
+## 0.2.6
+
+### Patch Changes
+
+- adding a changeset
+
+## 0.2.5
+
+### Patch Changes
+
+- react helpers
+
+## 0.2.4
+
+### Patch Changes
+
+- test cicd
+
+## 0.2.3
+
+### Patch Changes
+
+- cors added to next.js handler
+
 ## 0.2.2
 
 ### Patch Changes

package/LICENSE

@@ -1,21 +1,21 @@
-MIT License
-
-Copyright (c) 2025 Better Store
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
+MIT License
+
+Copyright (c) 2025 Better Store
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/dist/index.d.mts

@@ -203,7 +203,14 @@ declare class Products {
     retrieve(productId: string): Promise<Product>;
 }
 
+declare function getCheckoutEmbedProps(betterStore: BetterStore): {
+    retrieveCheckout: (idOrSecret: string) => Promise<CheckoutSession>;
+    updateCheckout: (checkoutId: string, params: CheckoutUpdateParams) => Promise<CheckoutSession>;
+    getShippingRates: (checkoutId: string) => Promise<ShippingRate[]>;
+};
+
 type NextjsRouteConfig = {
+    apiKey?: string;
     productionAllowedOrigins?: string[];
 };
 type BSClient = InstanceType<typeof BetterStore>;
@@ -221,4 +228,4 @@ declare class BetterStore {
     constructor(apiKey: string);
 }
 
-export { createNextJSHandler, BetterStore as default };
+export { createNextJSHandler, BetterStore as default, getCheckoutEmbedProps };

package/dist/index.d.ts

@@ -203,7 +203,14 @@ declare class Products {
     retrieve(productId: string): Promise<Product>;
 }
 
+declare function getCheckoutEmbedProps(betterStore: BetterStore): {
+    retrieveCheckout: (idOrSecret: string) => Promise<CheckoutSession>;
+    updateCheckout: (checkoutId: string, params: CheckoutUpdateParams) => Promise<CheckoutSession>;
+    getShippingRates: (checkoutId: string) => Promise<ShippingRate[]>;
+};
+
 type NextjsRouteConfig = {
+    apiKey?: string;
     productionAllowedOrigins?: string[];
 };
 type BSClient = InstanceType<typeof BetterStore>;
@@ -221,4 +228,4 @@ declare class BetterStore {
     constructor(apiKey: string);
 }
 
-export { createNextJSHandler, BetterStore as default };
+export { createNextJSHandler, BetterStore as default, getCheckoutEmbedProps };

package/dist/index.js

@@ -51,7 +51,8 @@ var __async = (__this, __arguments, generator) => {
 var index_exports = {};
 __export(index_exports, {
   createNextJSHandler: () => createNextJSHandler,
-  default: () => index_default
+  default: () => index_default,
+  getCheckoutEmbedProps: () => getCheckoutEmbedProps
 });
 module.exports = __toCommonJS(index_exports);
 
@@ -231,6 +232,15 @@ var Products = class {
 };
 var products_default = Products;
 
+// src/helpers/react.ts
+function getCheckoutEmbedProps(betterStore) {
+  return {
+    retrieveCheckout: betterStore.checkout.retrieve,
+    updateCheckout: betterStore.checkout.update,
+    getShippingRates: betterStore.checkout.getShippingRates
+  };
+}
+
 // src/route-handelers/next-js.ts
 var defaultBetterStoreRoutes = {
   checkout: {
@@ -374,13 +384,37 @@ var defaultBetterStoreRoutes = {
     })
   }
 };
+function addCORSHeaders(response, origin, allowedOrigins) {
+  if (origin && allowedOrigins.includes(origin)) {
+    response.headers.set("Access-Control-Allow-Origin", origin);
+  }
+  response.headers.set(
+    "Access-Control-Allow-Methods",
+    "GET, POST, PUT, DELETE, OPTIONS"
+  );
+  response.headers.set(
+    "Access-Control-Allow-Headers",
+    "Content-Type, Authorization"
+  );
+  return response;
+}
 function createNextJSHandler(betterStore, config = {}) {
-  const { productionAllowedOrigins = [] } = config;
+  const { apiKey, productionAllowedOrigins = [] } = config;
   const isProduction = process.env.NODE_ENV === "production";
   function validateRequest(req) {
     return __async(this, null, function* () {
+      if (apiKey) {
+        const authHeader = req.headers.get("Authorization");
+        const providedKey = authHeader == null ? void 0 : authHeader.replace("Bearer ", "");
+        if (!providedKey || providedKey !== apiKey) {
+          return new Response("Unauthorized", {
+            status: 401,
+            headers: { "WWW-Authenticate": "Bearer" }
+          });
+        }
+      }
+      const origin = req.headers.get("origin");
       if (isProduction && productionAllowedOrigins.length > 0) {
-        const origin = req.headers.get("origin");
         if (!origin || !productionAllowedOrigins.includes(origin)) {
           return new Response("Unauthorized", { status: 403 });
         }
@@ -398,52 +432,108 @@ function createNextJSHandler(betterStore, config = {}) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.GET;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     POST(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.POST;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     PUT(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.PUT;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     DELETE(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.DELETE;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     }
   };
@@ -464,5 +554,6 @@ var BetterStore = class {
 var index_default = BetterStore;
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  createNextJSHandler
+  createNextJSHandler,
+  getCheckoutEmbedProps
 });

package/dist/index.mjs

@@ -195,6 +195,15 @@ var Products = class {
 };
 var products_default = Products;
 
+// src/helpers/react.ts
+function getCheckoutEmbedProps(betterStore) {
+  return {
+    retrieveCheckout: betterStore.checkout.retrieve,
+    updateCheckout: betterStore.checkout.update,
+    getShippingRates: betterStore.checkout.getShippingRates
+  };
+}
+
 // src/route-handelers/next-js.ts
 var defaultBetterStoreRoutes = {
   checkout: {
@@ -338,13 +347,37 @@ var defaultBetterStoreRoutes = {
     })
   }
 };
+function addCORSHeaders(response, origin, allowedOrigins) {
+  if (origin && allowedOrigins.includes(origin)) {
+    response.headers.set("Access-Control-Allow-Origin", origin);
+  }
+  response.headers.set(
+    "Access-Control-Allow-Methods",
+    "GET, POST, PUT, DELETE, OPTIONS"
+  );
+  response.headers.set(
+    "Access-Control-Allow-Headers",
+    "Content-Type, Authorization"
+  );
+  return response;
+}
 function createNextJSHandler(betterStore, config = {}) {
-  const { productionAllowedOrigins = [] } = config;
+  const { apiKey, productionAllowedOrigins = [] } = config;
   const isProduction = process.env.NODE_ENV === "production";
   function validateRequest(req) {
     return __async(this, null, function* () {
+      if (apiKey) {
+        const authHeader = req.headers.get("Authorization");
+        const providedKey = authHeader == null ? void 0 : authHeader.replace("Bearer ", "");
+        if (!providedKey || providedKey !== apiKey) {
+          return new Response("Unauthorized", {
+            status: 401,
+            headers: { "WWW-Authenticate": "Bearer" }
+          });
+        }
+      }
+      const origin = req.headers.get("origin");
       if (isProduction && productionAllowedOrigins.length > 0) {
-        const origin = req.headers.get("origin");
         if (!origin || !productionAllowedOrigins.includes(origin)) {
           return new Response("Unauthorized", { status: 403 });
         }
@@ -362,52 +395,108 @@ function createNextJSHandler(betterStore, config = {}) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.GET;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     POST(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.POST;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     PUT(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.PUT;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     },
     DELETE(req) {
       return __async(this, null, function* () {
         var _a2;
         const validationError = yield validateRequest(req);
-        if (validationError) return validationError;
+        if (validationError)
+          return addCORSHeaders(
+            validationError,
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         const route = getRouteFromPath(new URL(req.url).pathname);
         const handler = (_a2 = defaultBetterStoreRoutes[route]) == null ? void 0 : _a2.DELETE;
         if (!handler) {
-          return new Response(`Route not found: ${route}`, { status: 404 });
+          return addCORSHeaders(
+            new Response(`Route not found: ${route}`, { status: 404 }),
+            req.headers.get("origin"),
+            productionAllowedOrigins
+          );
         }
-        return handler(req, betterStore);
+        const response = yield handler(req, betterStore);
+        return addCORSHeaders(
+          response,
+          req.headers.get("origin"),
+          productionAllowedOrigins
+        );
       });
     }
   };
@@ -428,5 +517,6 @@ var BetterStore = class {
 var index_default = BetterStore;
 export {
   createNextJSHandler,
-  index_default as default
+  index_default as default,
+  getCheckoutEmbedProps
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@betterstore/sdk",
-  "version": "0.2.2",
+  "version": "0.2.7",
   "description": "E-commerce for Developers",
   "private": false,
   "publishConfig": {
@@ -26,9 +26,10 @@
     "typescript": "^5.8.2"
   },
   "dependencies": {
-    "axios": "^1.8.1"
+    "axios": "^1.8.2"
   },
   "scripts": {
+    "prepublish": "changeset && changeset version && git add .",
     "build": "tsup src/index.ts --format cjs,esm --dts",
     "lint": "tsc",
     "format:check": "prettier --check --ignore-path .prettierignore .",