@cimplify/cli 0.7.11 → 0.7.12

package/dist/{chunk-XB4MMPXC.mjs → chunk-ZSO64OIW.mjs}

@@ -2,7 +2,7 @@
 // package.json
 var package_default = {
   name: "@cimplify/cli",
-  version: "0.7.11",
+  version: "0.7.12",
   description: "Cimplify CLI \u2014 deploy, manage env vars, link projects, and scaffold storefronts",
   keywords: [
     "cimplify",
@@ -47,7 +47,7 @@ var package_default = {
     vitest: "^4.1.5"
   },
   dependencies: {
-    "@cimplify/sdk": "^0.65.0"
+    "@cimplify/sdk": "^0.67.0"
   }
 };
 

package/dist/dispatcher.mjs

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
-import { TEMPLATES } from './chunk-DAE3YSKU.mjs';
-import { package_default } from './chunk-XB4MMPXC.mjs';
+import { TEMPLATES } from './chunk-R6TUXVFC.mjs';
+import { package_default } from './chunk-ZSO64OIW.mjs';
 
 // src/dispatcher.ts
 var VERSION = package_default.version ?? "unknown";
@@ -138,16 +138,16 @@ var COMMANDS = {
   logs: () => import('./logs-YNN2PQ24.mjs'),
   status: () => import('./status-JSYXM5RT.mjs'),
   dev: () => import('./dev-ONW2S77K.mjs'),
-  introspect: () => import('./introspect-2GJIQ6CP.mjs'),
+  introspect: () => import('./introspect-2I2MHUMW.mjs'),
   inspect: () => import('./inspect-CGYX4DDF.mjs'),
-  doctor: () => import('./doctor-A3YU5YOX.mjs'),
-  explain: () => import('./explain-WZQTCB3C.mjs'),
+  doctor: () => import('./doctor-4FTJFRJK.mjs'),
+  explain: () => import('./explain-6FFAG3OD.mjs'),
   assets: () => import('./assets-74SK63TR.mjs'),
   repo: () => import('./repo-KNQMSPVV.mjs'),
-  list: () => import('./list-F3LBI7HF.mjs'),
-  add: () => import('./add-3CEDUXNO.mjs'),
-  update: () => import('./update-PINBW3NG.mjs'),
-  upgrade: () => import('./update-PINBW3NG.mjs'),
+  list: () => import('./list-Y7AZYDWJ.mjs'),
+  add: () => import('./add-BCQCRULA.mjs'),
+  update: () => import('./update-SBYEU77K.mjs'),
+  upgrade: () => import('./update-SBYEU77K.mjs'),
   "auth-step-up": () => import('./auth-step-up-BIUYQJP6.mjs')
 };
 var COMMAND_PREFIXES = {

package/dist/{doctor-A3YU5YOX.mjs → doctor-4FTJFRJK.mjs}

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-import { gatherIntrospection } from './chunk-ZFCWAYK2.mjs';
+import { gatherIntrospection } from './chunk-NYRKS2ZC.mjs';
 import './chunk-K5464A3L.mjs';
 import './chunk-DBZ3UOQ2.mjs';
-import './chunk-XB4MMPXC.mjs';
+import './chunk-ZSO64OIW.mjs';
 import { parseArgs, flagBool } from './chunk-C4M3DXKC.mjs';
 import { ApiClient } from './chunk-MAOO6ZZ5.mjs';
 import { readAuthOrNull } from './chunk-UBAI443T.mjs';

package/dist/{explain-WZQTCB3C.mjs → explain-6FFAG3OD.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { package_default } from './chunk-XB4MMPXC.mjs';
+import { package_default } from './chunk-ZSO64OIW.mjs';
 import { parseArgs } from './chunk-C4M3DXKC.mjs';
 import { bold, dim, info, result, CliError, CLI_ERROR_CODE } from './chunk-E2T2SBP5.mjs';
 

package/dist/{introspect-2GJIQ6CP.mjs → introspect-2I2MHUMW.mjs}

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-export { run as default, extractMockSeed, gatherIntrospection, renderIntrospection } from './chunk-ZFCWAYK2.mjs';
+export { run as default, extractMockSeed, gatherIntrospection, renderIntrospection } from './chunk-NYRKS2ZC.mjs';
 import './chunk-K5464A3L.mjs';
 import './chunk-DBZ3UOQ2.mjs';
-import './chunk-XB4MMPXC.mjs';
+import './chunk-ZSO64OIW.mjs';
 import './chunk-C4M3DXKC.mjs';
 import './chunk-UBAI443T.mjs';
 import './chunk-E2T2SBP5.mjs';

package/dist/{list-F3LBI7HF.mjs → list-Y7AZYDWJ.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { REGISTRY_INDEX } from './chunk-DAE3YSKU.mjs';
+import { REGISTRY_INDEX } from './chunk-R6TUXVFC.mjs';
 import { parseArgs, flagBool } from './chunk-C4M3DXKC.mjs';
 import { CliError, CLI_ERROR_CODE, info, bold, dim, green, result } from './chunk-E2T2SBP5.mjs';
 

package/dist/{update-PINBW3NG.mjs → update-SBYEU77K.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { package_default } from './chunk-XB4MMPXC.mjs';
+import { package_default } from './chunk-ZSO64OIW.mjs';
 import { promptYesNo } from './chunk-ITAFAORS.mjs';
 import { parseArgs, flagBool, flagString } from './chunk-C4M3DXKC.mjs';
 import { success, bold, info, dim, result, failure, CliError, CLI_ERROR_CODE, step, isJsonMode } from './chunk-E2T2SBP5.mjs';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cimplify/cli",
-  "version": "0.7.11",
+  "version": "0.7.12",
   "description": "Cimplify CLI — deploy, manage env vars, link projects, and scaffold storefronts",
   "keywords": [
     "cimplify",
@@ -45,6 +45,6 @@
     "vitest": "^4.1.5"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0"
+    "@cimplify/sdk": "^0.67.0"
   }
 }

package/templates/storefront-auto/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-auto/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-bakery/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-bakery/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-fashion/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-fashion/package.json

@@ -19,7 +19,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-grocery/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-grocery/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-pharmacy/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-pharmacy/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-restaurant/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-restaurant/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-retail/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-retail/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"

package/templates/storefront-services/middleware.ts

@@ -0,0 +1,39 @@
+import { NextResponse, type NextRequest } from "next/server";
+import { handleTokenRefresh, type OidcConfig } from "@cimplify/sdk/server";
+
+function oidcConfig(): OidcConfig | null {
+  const clientId =
+    process.env.CIMPLIFY_CLIENT_ID?.trim() ||
+    process.env.NEXT_PUBLIC_CIMPLIFY_CLIENT_ID?.trim() ||
+    "";
+  if (!clientId) return null;
+  return {
+    clientId,
+    issuer: process.env.CIMPLIFY_ISSUER?.trim() || undefined,
+    authUrl: process.env.CIMPLIFY_AUTH_URL?.trim() || undefined,
+  };
+}
+
+// Keeps the access token fresh before account pages render. Server Components
+// can't write cookies, so this is the one place the rotated token can be both
+// persisted (browser) and forwarded onto the current request (this render).
+export async function middleware(request: NextRequest) {
+  const cfg = oidcConfig();
+  if (!cfg) return NextResponse.next();
+
+  const { outcome, setCookies, cookies } = await handleTokenRefresh(request, cfg);
+  if (outcome === "noop") return NextResponse.next();
+
+  for (const { name, value } of cookies) {
+    request.cookies.set(name, value);
+  }
+  const response = NextResponse.next({ request });
+  for (const cookie of setCookies) {
+    response.headers.append("set-cookie", cookie);
+  }
+  return response;
+}
+
+export const config = {
+  matcher: ["/account/:path*"],
+};

package/templates/storefront-services/package.json

@@ -17,7 +17,7 @@
     "check": "bun run typecheck && bun run test:run"
   },
   "dependencies": {
-    "@cimplify/sdk": "^0.65.0",
+    "@cimplify/sdk": "^0.67.0",
     "next": "^16.2.6",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"