@blinkdotnew/dev-sdk 2.1.3 → 2.1.5

package/dist/index.d.mts

@@ -1161,6 +1161,10 @@ declare class BlinkAuth {
      * Redirect to Blink auth page
      */
     login(nextUrl?: string): void;
+    /**
+     * Set up listener for tokens from parent window (for iframe OAuth delegation)
+     */
+    private setupParentTokenListener;
     /**
      * Logout and clear stored tokens
      */

package/dist/index.d.ts

@@ -1161,6 +1161,10 @@ declare class BlinkAuth {
      * Redirect to Blink auth page
      */
     login(nextUrl?: string): void;
+    /**
+     * Set up listener for tokens from parent window (for iframe OAuth delegation)
+     */
+    private setupParentTokenListener;
     /**
      * Logout and clear stored tokens
      */

package/dist/index.js

@@ -1285,45 +1285,16 @@ var BlinkAuth = class {
     if (!config.projectId) {
       throw new Error("projectId is required for authentication");
     }
-    const detectAuthUrl = () => {
-      if (typeof window !== "undefined") {
-        const referrer = document.referrer;
-        if (referrer?.includes("dev.blink.new")) {
-          console.log("\u{1F527} Dev environment detected via referrer, using dev.blink.new for auth");
-          return "https://dev.blink.new";
-        }
-        try {
-          if (window.parent !== window) {
-            const parentOrigin = window.parent.location.origin;
-            if (parentOrigin?.includes("dev.blink.new")) {
-              console.log("\u{1F527} Dev environment detected via parent origin, using dev.blink.new for auth");
-              return "https://dev.blink.new";
-            }
-          }
-        } catch {
-        }
-        try {
-          const opener = window.opener?.location?.origin;
-          if (opener?.includes("dev.blink.new")) {
-            console.log("\u{1F527} Dev environment detected via opener, using dev.blink.new for auth");
-            return "https://dev.blink.new";
-          }
-        } catch {
-        }
-      }
-      return "https://blink.new";
-    };
-    const defaultAuthUrl = detectAuthUrl();
     this.authConfig = {
       mode: "managed",
       // Default mode
-      authUrl: defaultAuthUrl,
+      authUrl: "https://blink.new",
       coreUrl: "https://core.blink.new",
       detectSessionInUrl: true,
       // Default to true for web compatibility
       ...config.auth
     };
-    this.authUrl = this.authConfig.authUrl || defaultAuthUrl;
+    this.authUrl = this.authConfig.authUrl || "https://blink.new";
     this.coreUrl = this.authConfig.coreUrl || "https://core.blink.new";
     const hostname = getLocationHostname();
     if (hostname && this.authUrl === "https://blink.new" && (hostname === "localhost" || hostname === "127.0.0.1")) {
@@ -1378,7 +1349,7 @@ var BlinkAuth = class {
   setupParentWindowListener() {
     if (!isWeb || !this.isIframe || !hasWindow()) return;
     window.addEventListener("message", (event) => {
-      if (event.origin !== "https://blink.new" && event.origin !== "https://dev.blink.new" && event.origin !== "http://localhost:3000" && event.origin !== "http://localhost:3001") {
+      if (event.origin !== "https://blink.new" && event.origin !== "http://localhost:3000" && event.origin !== "http://localhost:3001") {
         return;
       }
       if (event.data?.type === "BLINK_AUTH_TOKENS") {
@@ -1493,6 +1464,17 @@ var BlinkAuth = class {
         console.warn("Failed to parse redirect URL:", e);
       }
     }
+    if (isWeb && this.isIframe && hasWindow() && window.parent !== window) {
+      console.log("\u{1F5BC}\uFE0F In iframe, delegating login to parent window");
+      this.setupParentTokenListener();
+      window.parent.postMessage({
+        type: "BLINK_AUTH_LOGIN_REQUEST",
+        projectId: this.config.projectId,
+        redirectUrl: redirectUrl || "",
+        authUrl: this.authUrl
+      }, "*");
+      return;
+    }
     const authUrl = new URL("/auth", this.authUrl);
     authUrl.searchParams.set("redirect_url", redirectUrl || "");
     if (this.config.projectId) {
@@ -1500,6 +1482,34 @@ var BlinkAuth = class {
     }
     window.location.href = authUrl.toString();
   }
+  /**
+   * Set up listener for tokens from parent window (for iframe OAuth delegation)
+   */
+  setupParentTokenListener() {
+    if (typeof window === "undefined") return;
+    const messageListener = (event) => {
+      const { type, access_token, refresh_token, expires_in, refresh_expires_in, issued_at, projectId, error } = event.data || {};
+      if (type === "BLINK_AUTH_TOKENS") {
+        if (projectId && projectId !== this.config.projectId) {
+          return;
+        }
+        console.log("\u{1F4E5} Received auth tokens from parent window");
+        window.removeEventListener("message", messageListener);
+        this.setTokens({
+          access_token,
+          refresh_token,
+          token_type: "Bearer",
+          expires_in: expires_in || 3600,
+          refresh_expires_in,
+          issued_at: issued_at || Math.floor(Date.now() / 1e3)
+        }, true);
+      } else if (type === "BLINK_AUTH_ERROR") {
+        window.removeEventListener("message", messageListener);
+        console.error("Auth error from parent:", error);
+      }
+    };
+    window.addEventListener("message", messageListener);
+  }
   /**
    * Logout and clear stored tokens
    */

package/dist/index.mjs

@@ -1283,45 +1283,16 @@ var BlinkAuth = class {
     if (!config.projectId) {
       throw new Error("projectId is required for authentication");
     }
-    const detectAuthUrl = () => {
-      if (typeof window !== "undefined") {
-        const referrer = document.referrer;
-        if (referrer?.includes("dev.blink.new")) {
-          console.log("\u{1F527} Dev environment detected via referrer, using dev.blink.new for auth");
-          return "https://dev.blink.new";
-        }
-        try {
-          if (window.parent !== window) {
-            const parentOrigin = window.parent.location.origin;
-            if (parentOrigin?.includes("dev.blink.new")) {
-              console.log("\u{1F527} Dev environment detected via parent origin, using dev.blink.new for auth");
-              return "https://dev.blink.new";
-            }
-          }
-        } catch {
-        }
-        try {
-          const opener = window.opener?.location?.origin;
-          if (opener?.includes("dev.blink.new")) {
-            console.log("\u{1F527} Dev environment detected via opener, using dev.blink.new for auth");
-            return "https://dev.blink.new";
-          }
-        } catch {
-        }
-      }
-      return "https://blink.new";
-    };
-    const defaultAuthUrl = detectAuthUrl();
     this.authConfig = {
       mode: "managed",
       // Default mode
-      authUrl: defaultAuthUrl,
+      authUrl: "https://blink.new",
       coreUrl: "https://core.blink.new",
       detectSessionInUrl: true,
       // Default to true for web compatibility
       ...config.auth
     };
-    this.authUrl = this.authConfig.authUrl || defaultAuthUrl;
+    this.authUrl = this.authConfig.authUrl || "https://blink.new";
     this.coreUrl = this.authConfig.coreUrl || "https://core.blink.new";
     const hostname = getLocationHostname();
     if (hostname && this.authUrl === "https://blink.new" && (hostname === "localhost" || hostname === "127.0.0.1")) {
@@ -1376,7 +1347,7 @@ var BlinkAuth = class {
   setupParentWindowListener() {
     if (!isWeb || !this.isIframe || !hasWindow()) return;
     window.addEventListener("message", (event) => {
-      if (event.origin !== "https://blink.new" && event.origin !== "https://dev.blink.new" && event.origin !== "http://localhost:3000" && event.origin !== "http://localhost:3001") {
+      if (event.origin !== "https://blink.new" && event.origin !== "http://localhost:3000" && event.origin !== "http://localhost:3001") {
         return;
       }
       if (event.data?.type === "BLINK_AUTH_TOKENS") {
@@ -1491,6 +1462,17 @@ var BlinkAuth = class {
         console.warn("Failed to parse redirect URL:", e);
       }
     }
+    if (isWeb && this.isIframe && hasWindow() && window.parent !== window) {
+      console.log("\u{1F5BC}\uFE0F In iframe, delegating login to parent window");
+      this.setupParentTokenListener();
+      window.parent.postMessage({
+        type: "BLINK_AUTH_LOGIN_REQUEST",
+        projectId: this.config.projectId,
+        redirectUrl: redirectUrl || "",
+        authUrl: this.authUrl
+      }, "*");
+      return;
+    }
     const authUrl = new URL("/auth", this.authUrl);
     authUrl.searchParams.set("redirect_url", redirectUrl || "");
     if (this.config.projectId) {
@@ -1498,6 +1480,34 @@ var BlinkAuth = class {
     }
     window.location.href = authUrl.toString();
   }
+  /**
+   * Set up listener for tokens from parent window (for iframe OAuth delegation)
+   */
+  setupParentTokenListener() {
+    if (typeof window === "undefined") return;
+    const messageListener = (event) => {
+      const { type, access_token, refresh_token, expires_in, refresh_expires_in, issued_at, projectId, error } = event.data || {};
+      if (type === "BLINK_AUTH_TOKENS") {
+        if (projectId && projectId !== this.config.projectId) {
+          return;
+        }
+        console.log("\u{1F4E5} Received auth tokens from parent window");
+        window.removeEventListener("message", messageListener);
+        this.setTokens({
+          access_token,
+          refresh_token,
+          token_type: "Bearer",
+          expires_in: expires_in || 3600,
+          refresh_expires_in,
+          issued_at: issued_at || Math.floor(Date.now() / 1e3)
+        }, true);
+      } else if (type === "BLINK_AUTH_ERROR") {
+        window.removeEventListener("message", messageListener);
+        console.error("Auth error from parent:", error);
+      }
+    };
+    window.addEventListener("message", messageListener);
+  }
   /**
    * Logout and clear stored tokens
    */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blinkdotnew/dev-sdk",
-  "version": "2.1.3",
+  "version": "2.1.5",
   "description": "Blink TypeScript SDK for client-side applications - Zero-boilerplate CRUD + auth + AI + analytics + notifications for modern SaaS/AI apps",
   "keywords": [
     "blink",