@clerk/nuxt 2.2.1 → 2.2.2-canary.v20260415142102

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. package/dist/module.js +1 -1
  2. package/dist/runtime/plugin.js +1 -1
  3. package/dist/runtime/server/clerkClient.js +2 -2
  4. package/dist/runtime/server/clerkClient.js.map +1 -1
  5. package/dist/runtime/server/clerkMiddleware.js +9 -1
  6. package/dist/runtime/server/clerkMiddleware.js.map +1 -1
  7. package/package.json +4 -4
package/dist/module.js CHANGED
@@ -12,7 +12,7 @@ import {
12
12
  var module_default = defineNuxtModule({
13
13
  meta: {
14
14
  name: "@clerk/nuxt",
15
- version: "2.2.1",
15
+ version: "2.2.2-canary.v20260415142102",
16
16
  configKey: "clerk",
17
17
  compatibility: {
18
18
  nuxt: ">=3.0.0"
package/dist/runtime/plugin.js CHANGED
@@ -22,7 +22,7 @@ var plugin_default = defineNuxtPlugin((nuxtApp) => {
22
22
  __internal_clerkUIVersion: clerkConfig.clerkUIVersion,
23
23
  sdkMetadata: {
24
24
  name: "@clerk/nuxt",
25
- version: "2.2.1",
25
+ version: "2.2.2-canary.v20260415142102",
26
26
  environment: process.env.NODE_ENV
27
27
  },
28
28
  routerPush: (to) => navigateTo(to),
package/dist/runtime/server/clerkClient.js CHANGED
@@ -39,10 +39,10 @@ function clerkClient(event) {
39
39
  disabled: isTruthy(runtimeConfig.public.clerk.telemetry?.disabled),
40
40
  debug: isTruthy(runtimeConfig.public.clerk.telemetry?.debug)
41
41
  },
42
- userAgent: `${"@clerk/nuxt"}@${"2.2.1"}`,
42
+ userAgent: `${"@clerk/nuxt"}@${"2.2.2-canary.v20260415142102"}`,
43
43
  sdkMetadata: {
44
44
  name: "@clerk/nuxt",
45
- version: "2.2.1",
45
+ version: "2.2.2-canary.v20260415142102",
46
46
  environment: process.env.NODE_ENV
47
47
  }
48
48
  });
package/dist/runtime/server/clerkClient.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../../../src/runtime/server/clerkClient.ts"],"sourcesContent":["import { createClerkClient } from '@clerk/backend';\nimport { apiUrlFromPublishableKey } from '@clerk/shared/apiUrlFromPublishableKey';\nimport { deprecated } from '@clerk/shared/deprecated';\nimport { isTruthy } from '@clerk/shared/underscore';\nimport type { H3Event } from 'h3';\n\n// @ts-expect-error: Nitro import. Handled by Nuxt.\nimport { useRuntimeConfig } from '#imports';\n\nfunction resolveApiUrl(runtimeConfig: ReturnType<typeof useRuntimeConfig>): string {\n if (runtimeConfig.clerk.apiUrl) {\n return runtimeConfig.clerk.apiUrl;\n }\n if (runtimeConfig.public.clerk.apiUrl) {\n deprecated('NUXT_PUBLIC_CLERK_API_URL', 'Use `NUXT_CLERK_API_URL` instead.');\n return runtimeConfig.public.clerk.apiUrl;\n }\n return apiUrlFromPublishableKey(runtimeConfig.public.clerk.publishableKey);\n}\n\nfunction resolveApiVersion(runtimeConfig: ReturnType<typeof useRuntimeConfig>): string {\n if (runtimeConfig.clerk.apiVersion) {\n return runtimeConfig.clerk.apiVersion;\n }\n if (runtimeConfig.public.clerk.apiVersion) {\n deprecated('NUXT_PUBLIC_CLERK_API_VERSION', 'Use `NUXT_CLERK_API_VERSION` instead.');\n return runtimeConfig.public.clerk.apiVersion;\n }\n return 'v1';\n}\n\nexport function clerkClient(event: H3Event) {\n const runtimeConfig = useRuntimeConfig(event);\n\n return createClerkClient({\n publishableKey: runtimeConfig.public.clerk.publishableKey,\n apiUrl: resolveApiUrl(runtimeConfig),\n apiVersion: resolveApiVersion(runtimeConfig),\n proxyUrl: runtimeConfig.public.clerk.proxyUrl,\n domain: runtimeConfig.public.clerk.domain,\n isSatellite: runtimeConfig.public.clerk.isSatellite,\n secretKey: runtimeConfig.clerk.secretKey,\n machineSecretKey: runtimeConfig.clerk.machineSecretKey,\n jwtKey: runtimeConfig.clerk.jwtKey,\n telemetry: {\n disabled: isTruthy(runtimeConfig.public.clerk.telemetry?.disabled),\n debug: isTruthy(runtimeConfig.public.clerk.telemetry?.debug),\n },\n userAgent: `${PACKAGE_NAME}@${PACKAGE_VERSION}`,\n sdkMetadata: {\n name: PACKAGE_NAME,\n version: PACKAGE_VERSION,\n environment: process.env.NODE_ENV,\n },\n });\n}\n"],"mappings":"AAAA,SAAS,yBAAyB;AAClC,SAAS,gCAAgC;AACzC,SAAS,kBAAkB;AAC3B,SAAS,gBAAgB;AAIzB,SAAS,wBAAwB;AAEjC,SAAS,cAAc,eAA4D;AACjF,MAAI,cAAc,MAAM,QAAQ;AAC9B,WAAO,cAAc,MAAM;AAAA,EAC7B;AACA,MAAI,cAAc,OAAO,MAAM,QAAQ;AACrC,eAAW,6BAA6B,mCAAmC;AAC3E,WAAO,cAAc,OAAO,MAAM;AAAA,EACpC;AACA,SAAO,yBAAyB,cAAc,OAAO,MAAM,cAAc;AAC3E;AAEA,SAAS,kBAAkB,eAA4D;AACrF,MAAI,cAAc,MAAM,YAAY;AAClC,WAAO,cAAc,MAAM;AAAA,EAC7B;AACA,MAAI,cAAc,OAAO,MAAM,YAAY;AACzC,eAAW,iCAAiC,uCAAuC;AACnF,WAAO,cAAc,OAAO,MAAM;AAAA,EACpC;AACA,SAAO;AACT;AAEO,SAAS,YAAY,OAAgB;AAC1C,QAAM,gBAAgB,iBAAiB,KAAK;AAE5C,SAAO,kBAAkB;AAAA,IACvB,gBAAgB,cAAc,OAAO,MAAM;AAAA,IAC3C,QAAQ,cAAc,aAAa;AAAA,IACnC,YAAY,kBAAkB,aAAa;AAAA,IAC3C,UAAU,cAAc,OAAO,MAAM;AAAA,IACrC,QAAQ,cAAc,OAAO,MAAM;AAAA,IACnC,aAAa,cAAc,OAAO,MAAM;AAAA,IACxC,WAAW,cAAc,MAAM;AAAA,IAC/B,kBAAkB,cAAc,MAAM;AAAA,IACtC,QAAQ,cAAc,MAAM;AAAA,IAC5B,WAAW;AAAA,MACT,UAAU,SAAS,cAAc,OAAO,MAAM,WAAW,QAAQ;AAAA,MACjE,OAAO,SAAS,cAAc,OAAO,MAAM,WAAW,KAAK;AAAA,IAC7D;AAAA,IACA,WAAW,GAAG,aAAY,IAAI,OAAe;AAAA,IAC7C,aAAa;AAAA,MACX,MAAM;AAAA,MACN,SAAS;AAAA,MACT,aAAa,QAAQ,IAAI;AAAA,IAC3B;AAAA,EACF,CAAC;AACH;","names":[]}
1
+ {"version":3,"sources":["../../../src/runtime/server/clerkClient.ts"],"sourcesContent":["import { createClerkClient } from '@clerk/backend';\nimport { apiUrlFromPublishableKey } from '@clerk/shared/apiUrlFromPublishableKey';\nimport { deprecated } from '@clerk/shared/deprecated';\nimport { isTruthy } from '@clerk/shared/underscore';\nimport type { H3Event } from 'h3';\n\n// @ts-expect-error: Nitro import. Handled by Nuxt.\nimport { useRuntimeConfig } from '#imports';\n\nfunction resolveApiUrl(runtimeConfig: ReturnType<typeof useRuntimeConfig>): string {\n if (runtimeConfig.clerk.apiUrl) {\n return runtimeConfig.clerk.apiUrl;\n }\n if (runtimeConfig.public.clerk.apiUrl) {\n deprecated('NUXT_PUBLIC_CLERK_API_URL', 'Use `NUXT_CLERK_API_URL` instead.');\n return runtimeConfig.public.clerk.apiUrl;\n }\n return apiUrlFromPublishableKey(runtimeConfig.public.clerk.publishableKey);\n}\n\nfunction resolveApiVersion(runtimeConfig: ReturnType<typeof useRuntimeConfig>): string {\n if (runtimeConfig.clerk.apiVersion) {\n return runtimeConfig.clerk.apiVersion;\n }\n if (runtimeConfig.public.clerk.apiVersion) {\n deprecated('NUXT_PUBLIC_CLERK_API_VERSION', 'Use `NUXT_CLERK_API_VERSION` instead.');\n return runtimeConfig.public.clerk.apiVersion;\n }\n return 'v1';\n}\n\nexport function clerkClient(event: H3Event) {\n const runtimeConfig = useRuntimeConfig(event);\n\n return createClerkClient({\n publishableKey: runtimeConfig.public.clerk.publishableKey,\n apiUrl: resolveApiUrl(runtimeConfig),\n apiVersion: resolveApiVersion(runtimeConfig),\n proxyUrl: runtimeConfig.public.clerk.proxyUrl,\n domain: runtimeConfig.public.clerk.domain,\n isSatellite: runtimeConfig.public.clerk.isSatellite,\n secretKey: runtimeConfig.clerk.secretKey,\n machineSecretKey: runtimeConfig.clerk.machineSecretKey,\n jwtKey: runtimeConfig.clerk.jwtKey,\n telemetry: {\n disabled: isTruthy(runtimeConfig.public.clerk.telemetry?.disabled),\n debug: isTruthy(runtimeConfig.public.clerk.telemetry?.debug),\n },\n userAgent: `${PACKAGE_NAME}@${PACKAGE_VERSION}`,\n sdkMetadata: {\n name: PACKAGE_NAME,\n version: PACKAGE_VERSION,\n environment: process.env.NODE_ENV,\n },\n });\n}\n"],"mappings":"AAAA,SAAS,yBAAyB;AAClC,SAAS,gCAAgC;AACzC,SAAS,kBAAkB;AAC3B,SAAS,gBAAgB;AAIzB,SAAS,wBAAwB;AAEjC,SAAS,cAAc,eAA4D;AACjF,MAAI,cAAc,MAAM,QAAQ;AAC9B,WAAO,cAAc,MAAM;AAAA,EAC7B;AACA,MAAI,cAAc,OAAO,MAAM,QAAQ;AACrC,eAAW,6BAA6B,mCAAmC;AAC3E,WAAO,cAAc,OAAO,MAAM;AAAA,EACpC;AACA,SAAO,yBAAyB,cAAc,OAAO,MAAM,cAAc;AAC3E;AAEA,SAAS,kBAAkB,eAA4D;AACrF,MAAI,cAAc,MAAM,YAAY;AAClC,WAAO,cAAc,MAAM;AAAA,EAC7B;AACA,MAAI,cAAc,OAAO,MAAM,YAAY;AACzC,eAAW,iCAAiC,uCAAuC;AACnF,WAAO,cAAc,OAAO,MAAM;AAAA,EACpC;AACA,SAAO;AACT;AAEO,SAAS,YAAY,OAAgB;AAC1C,QAAM,gBAAgB,iBAAiB,KAAK;AAE5C,SAAO,kBAAkB;AAAA,IACvB,gBAAgB,cAAc,OAAO,MAAM;AAAA,IAC3C,QAAQ,cAAc,aAAa;AAAA,IACnC,YAAY,kBAAkB,aAAa;AAAA,IAC3C,UAAU,cAAc,OAAO,MAAM;AAAA,IACrC,QAAQ,cAAc,OAAO,MAAM;AAAA,IACnC,aAAa,cAAc,OAAO,MAAM;AAAA,IACxC,WAAW,cAAc,MAAM;AAAA,IAC/B,kBAAkB,cAAc,MAAM;AAAA,IACtC,QAAQ,cAAc,MAAM;AAAA,IAC5B,WAAW;AAAA,MACT,UAAU,SAAS,cAAc,OAAO,MAAM,WAAW,QAAQ;AAAA,MACjE,OAAO,SAAS,cAAc,OAAO,MAAM,WAAW,KAAK;AAAA,IAC7D;AAAA,IACA,WAAW,GAAG,aAAY,IAAI,8BAAe;AAAA,IAC7C,aAAa;AAAA,MACX,MAAM;AAAA,MACN,SAAS;AAAA,MACT,aAAa,QAAQ,IAAI;AAAA,IAC3B;AAAA,EACF,CAAC;AACH;","names":[]}
package/dist/runtime/server/clerkMiddleware.js CHANGED
@@ -1,5 +1,6 @@
1
1
  import { AuthStatus, constants, getAuthObjectForAcceptedToken } from "@clerk/backend/internal";
2
2
  import { handleNetlifyCacheInDevInstance } from "@clerk/shared/netlifyCacheHandler";
3
+ import { isMalformedURLError } from "@clerk/shared/pathMatcher";
3
4
  import { createError, eventHandler, setResponseHeader } from "h3";
4
5
  import { useRuntimeConfig } from "#imports";
5
6
  import { canUseKeyless } from "../utils/feature-flags";
@@ -70,7 +71,14 @@ const clerkMiddleware = (...args) => {
70
71
  apiKeysUrl: keylessApiKeysUrl
71
72
  };
72
73
  }
73
- await handler?.(event);
74
+ try {
75
+ await handler?.(event);
76
+ } catch (e) {
77
+ if (isMalformedURLError(e)) {
78
+ throw createError({ statusCode: 400, statusMessage: "Bad Request" });
79
+ }
80
+ throw e;
81
+ }
74
82
  });
75
83
  };
76
84
  export {
package/dist/runtime/server/clerkMiddleware.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../../../src/runtime/server/clerkMiddleware.ts"],"sourcesContent":["import type { AuthenticateRequestOptions } from '@clerk/backend/internal';\nimport { AuthStatus, constants, getAuthObjectForAcceptedToken } from '@clerk/backend/internal';\nimport { handleNetlifyCacheInDevInstance } from '@clerk/shared/netlifyCacheHandler';\nimport type { PendingSessionOptions } from '@clerk/shared/types';\nimport type { EventHandler } from 'h3';\nimport { createError, eventHandler, setResponseHeader } from 'h3';\n\n// @ts-expect-error: Nitro import. Handled by Nuxt.\nimport { useRuntimeConfig } from '#imports';\n\nimport { canUseKeyless } from '../utils/feature-flags';\nimport { clerkClient } from './clerkClient';\nimport { resolveKeysWithKeylessFallback } from './keyless/utils';\nimport type { AuthFn, AuthOptions } from './types';\nimport { createInitialState, toWebRequest } from './utils';\n\nfunction parseHandlerAndOptions(args: unknown[]) {\n return [\n typeof args[0] === 'function' ? args[0] : undefined,\n (args.length === 2 ? args[1] : typeof args[0] === 'function' ? {} : args[0]) || {},\n ] as [EventHandler | undefined, AuthenticateRequestOptions];\n}\n\ninterface ClerkMiddleware {\n /**\n * @example\n * export default clerkMiddleware((event) => { ... }, options);\n */\n (handler: EventHandler, options?: AuthenticateRequestOptions): ReturnType<typeof eventHandler>;\n\n /**\n * @example\n * export default clerkMiddleware(options);\n */\n (options?: AuthenticateRequestOptions): ReturnType<typeof eventHandler>;\n}\n\n/**\n * Middleware for Nuxt that handles authentication and authorization with Clerk.\n *\n * @example\n * Basic usage with options:\n * ```ts\n * export default clerkMiddleware({\n * authorizedParties: ['https://example.com']\n * })\n * ```\n *\n * @example\n * With custom handler:\n * ```ts\n * export default clerkMiddleware((event) => {\n * // Access auth data from the event context\n * const { auth } = event.context\n *\n * // Example: Require authentication for all API routes\n * if (!auth.userId && event.path.startsWith('/api')) {\n * throw createError({\n * statusCode: 401,\n * message: 'Unauthorized'\n * })\n * }\n * })\n * ```\n *\n * @example\n * With custom handler and options:\n * ```ts\n * export default clerkMiddleware((event) => {\n * // Access auth data from the event context\n * const { auth } = event.context\n *\n * // Example: Require authentication for all API routes\n * if (!auth.userId && event.path.startsWith('/api')) {\n * throw createError({\n * statusCode: 401,\n * message: 'Unauthorized'\n * })\n * }\n * }, {\n * authorizedParties: ['https://example.com']\n * })\n * ```\n */\nexport const clerkMiddleware: ClerkMiddleware = (...args: unknown[]) => {\n const [handler, options] = parseHandlerAndOptions(args);\n return eventHandler(async event => {\n const clerkRequest = toWebRequest(event);\n\n // Resolve keyless in development if keys are missing\n let keylessClaimUrl: string | undefined;\n let keylessApiKeysUrl: string | undefined;\n\n if (canUseKeyless) {\n try {\n const runtimeConfig = useRuntimeConfig(event);\n\n const { publishableKey, secretKey, claimUrl, apiKeysUrl } = await resolveKeysWithKeylessFallback(\n runtimeConfig.public.clerk.publishableKey,\n runtimeConfig.clerk.secretKey,\n event,\n );\n\n keylessClaimUrl = claimUrl;\n keylessApiKeysUrl = apiKeysUrl;\n\n // Override runtime config with keyless values if returned\n if (publishableKey) {\n runtimeConfig.public.clerk.publishableKey = publishableKey;\n }\n if (secretKey) {\n runtimeConfig.clerk.secretKey = secretKey;\n }\n } catch {\n // Silently fail - continue without keyless\n }\n }\n\n const requestState = await clerkClient(event).authenticateRequest(clerkRequest, {\n ...options,\n acceptsToken: 'any',\n });\n\n const locationHeader = requestState.headers.get(constants.Headers.Location);\n if (locationHeader) {\n handleNetlifyCacheInDevInstance({\n locationHeader,\n requestStateHeaders: requestState.headers,\n publishableKey: requestState.publishableKey,\n });\n // Trigger a handshake redirect\n return new Response(null, { status: 307, headers: requestState.headers });\n }\n\n if (requestState.status === AuthStatus.Handshake) {\n throw createError('Clerk: handshake status without redirect');\n }\n\n if (requestState.headers) {\n requestState.headers.forEach((value, key) => {\n setResponseHeader(event, key, value);\n });\n }\n\n const authObjectFn = (opts?: PendingSessionOptions) => requestState.toAuth(opts);\n const authHandler: AuthFn = ((options?: AuthOptions) => {\n return getAuthObjectForAcceptedToken({ authObject: authObjectFn(options), acceptsToken: options?.acceptsToken });\n }) as AuthFn;\n\n event.context.auth = authHandler;\n // Internal serializable state that will be passed to the client\n event.context.__clerk_initial_state = createInitialState(authObjectFn());\n\n // Store keyless mode URLs in separate context property\n if (canUseKeyless && keylessClaimUrl) {\n event.context.__clerk_keyless = {\n claimUrl: keylessClaimUrl,\n apiKeysUrl: keylessApiKeysUrl,\n };\n }\n\n await handler?.(event);\n });\n};\n"],"mappings":"AACA,SAAS,YAAY,WAAW,qCAAqC;AACrE,SAAS,uCAAuC;AAGhD,SAAS,aAAa,cAAc,yBAAyB;AAG7D,SAAS,wBAAwB;AAEjC,SAAS,qBAAqB;AAC9B,SAAS,mBAAmB;AAC5B,SAAS,sCAAsC;AAE/C,SAAS,oBAAoB,oBAAoB;AAEjD,SAAS,uBAAuB,MAAiB;AAC/C,SAAO;AAAA,IACL,OAAO,KAAK,CAAC,MAAM,aAAa,KAAK,CAAC,IAAI;AAAA,KACzC,KAAK,WAAW,IAAI,KAAK,CAAC,IAAI,OAAO,KAAK,CAAC,MAAM,aAAa,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC;AAAA,EACnF;AACF;AA+DO,MAAM,kBAAmC,IAAI,SAAoB;AACtE,QAAM,CAAC,SAAS,OAAO,IAAI,uBAAuB,IAAI;AACtD,SAAO,aAAa,OAAM,UAAS;AACjC,UAAM,eAAe,aAAa,KAAK;AAGvC,QAAI;AACJ,QAAI;AAEJ,QAAI,eAAe;AACjB,UAAI;AACF,cAAM,gBAAgB,iBAAiB,KAAK;AAE5C,cAAM,EAAE,gBAAgB,WAAW,UAAU,WAAW,IAAI,MAAM;AAAA,UAChE,cAAc,OAAO,MAAM;AAAA,UAC3B,cAAc,MAAM;AAAA,UACpB;AAAA,QACF;AAEA,0BAAkB;AAClB,4BAAoB;AAGpB,YAAI,gBAAgB;AAClB,wBAAc,OAAO,MAAM,iBAAiB;AAAA,QAC9C;AACA,YAAI,WAAW;AACb,wBAAc,MAAM,YAAY;AAAA,QAClC;AAAA,MACF,QAAQ;AAAA,MAER;AAAA,IACF;AAEA,UAAM,eAAe,MAAM,YAAY,KAAK,EAAE,oBAAoB,cAAc;AAAA,MAC9E,GAAG;AAAA,MACH,cAAc;AAAA,IAChB,CAAC;AAED,UAAM,iBAAiB,aAAa,QAAQ,IAAI,UAAU,QAAQ,QAAQ;AAC1E,QAAI,gBAAgB;AAClB,sCAAgC;AAAA,QAC9B;AAAA,QACA,qBAAqB,aAAa;AAAA,QAClC,gBAAgB,aAAa;AAAA,MAC/B,CAAC;AAED,aAAO,IAAI,SAAS,MAAM,EAAE,QAAQ,KAAK,SAAS,aAAa,QAAQ,CAAC;AAAA,IAC1E;AAEA,QAAI,aAAa,WAAW,WAAW,WAAW;AAChD,YAAM,YAAY,0CAA0C;AAAA,IAC9D;AAEA,QAAI,aAAa,SAAS;AACxB,mBAAa,QAAQ,QAAQ,CAAC,OAAO,QAAQ;AAC3C,0BAAkB,OAAO,KAAK,KAAK;AAAA,MACrC,CAAC;AAAA,IACH;AAEA,UAAM,eAAe,CAAC,SAAiC,aAAa,OAAO,IAAI;AAC/E,UAAM,eAAuB,CAACA,aAA0B;AACtD,aAAO,8BAA8B,EAAE,YAAY,aAAaA,QAAO,GAAG,cAAcA,UAAS,aAAa,CAAC;AAAA,IACjH;AAEA,UAAM,QAAQ,OAAO;AAErB,UAAM,QAAQ,wBAAwB,mBAAmB,aAAa,CAAC;AAGvE,QAAI,iBAAiB,iBAAiB;AACpC,YAAM,QAAQ,kBAAkB;AAAA,QAC9B,UAAU;AAAA,QACV,YAAY;AAAA,MACd;AAAA,IACF;AAEA,UAAM,UAAU,KAAK;AAAA,EACvB,CAAC;AACH;","names":["options"]}
1
+ {"version":3,"sources":["../../../src/runtime/server/clerkMiddleware.ts"],"sourcesContent":["import type { AuthenticateRequestOptions } from '@clerk/backend/internal';\nimport { AuthStatus, constants, getAuthObjectForAcceptedToken } from '@clerk/backend/internal';\nimport { handleNetlifyCacheInDevInstance } from '@clerk/shared/netlifyCacheHandler';\nimport { isMalformedURLError } from '@clerk/shared/pathMatcher';\nimport type { PendingSessionOptions } from '@clerk/shared/types';\nimport type { EventHandler } from 'h3';\nimport { createError, eventHandler, setResponseHeader } from 'h3';\n\n// @ts-expect-error: Nitro import. Handled by Nuxt.\nimport { useRuntimeConfig } from '#imports';\n\nimport { canUseKeyless } from '../utils/feature-flags';\nimport { clerkClient } from './clerkClient';\nimport { resolveKeysWithKeylessFallback } from './keyless/utils';\nimport type { AuthFn, AuthOptions } from './types';\nimport { createInitialState, toWebRequest } from './utils';\n\nfunction parseHandlerAndOptions(args: unknown[]) {\n return [\n typeof args[0] === 'function' ? args[0] : undefined,\n (args.length === 2 ? args[1] : typeof args[0] === 'function' ? {} : args[0]) || {},\n ] as [EventHandler | undefined, AuthenticateRequestOptions];\n}\n\ninterface ClerkMiddleware {\n /**\n * @example\n * export default clerkMiddleware((event) => { ... }, options);\n */\n (handler: EventHandler, options?: AuthenticateRequestOptions): ReturnType<typeof eventHandler>;\n\n /**\n * @example\n * export default clerkMiddleware(options);\n */\n (options?: AuthenticateRequestOptions): ReturnType<typeof eventHandler>;\n}\n\n/**\n * Middleware for Nuxt that handles authentication and authorization with Clerk.\n *\n * @example\n * Basic usage with options:\n * ```ts\n * export default clerkMiddleware({\n * authorizedParties: ['https://example.com']\n * })\n * ```\n *\n * @example\n * With custom handler:\n * ```ts\n * export default clerkMiddleware((event) => {\n * // Access auth data from the event context\n * const { auth } = event.context\n *\n * // Example: Require authentication for all API routes\n * if (!auth.userId && event.path.startsWith('/api')) {\n * throw createError({\n * statusCode: 401,\n * message: 'Unauthorized'\n * })\n * }\n * })\n * ```\n *\n * @example\n * With custom handler and options:\n * ```ts\n * export default clerkMiddleware((event) => {\n * // Access auth data from the event context\n * const { auth } = event.context\n *\n * // Example: Require authentication for all API routes\n * if (!auth.userId && event.path.startsWith('/api')) {\n * throw createError({\n * statusCode: 401,\n * message: 'Unauthorized'\n * })\n * }\n * }, {\n * authorizedParties: ['https://example.com']\n * })\n * ```\n */\nexport const clerkMiddleware: ClerkMiddleware = (...args: unknown[]) => {\n const [handler, options] = parseHandlerAndOptions(args);\n return eventHandler(async event => {\n const clerkRequest = toWebRequest(event);\n\n // Resolve keyless in development if keys are missing\n let keylessClaimUrl: string | undefined;\n let keylessApiKeysUrl: string | undefined;\n\n if (canUseKeyless) {\n try {\n const runtimeConfig = useRuntimeConfig(event);\n\n const { publishableKey, secretKey, claimUrl, apiKeysUrl } = await resolveKeysWithKeylessFallback(\n runtimeConfig.public.clerk.publishableKey,\n runtimeConfig.clerk.secretKey,\n event,\n );\n\n keylessClaimUrl = claimUrl;\n keylessApiKeysUrl = apiKeysUrl;\n\n // Override runtime config with keyless values if returned\n if (publishableKey) {\n runtimeConfig.public.clerk.publishableKey = publishableKey;\n }\n if (secretKey) {\n runtimeConfig.clerk.secretKey = secretKey;\n }\n } catch {\n // Silently fail - continue without keyless\n }\n }\n\n const requestState = await clerkClient(event).authenticateRequest(clerkRequest, {\n ...options,\n acceptsToken: 'any',\n });\n\n const locationHeader = requestState.headers.get(constants.Headers.Location);\n if (locationHeader) {\n handleNetlifyCacheInDevInstance({\n locationHeader,\n requestStateHeaders: requestState.headers,\n publishableKey: requestState.publishableKey,\n });\n // Trigger a handshake redirect\n return new Response(null, { status: 307, headers: requestState.headers });\n }\n\n if (requestState.status === AuthStatus.Handshake) {\n throw createError('Clerk: handshake status without redirect');\n }\n\n if (requestState.headers) {\n requestState.headers.forEach((value, key) => {\n setResponseHeader(event, key, value);\n });\n }\n\n const authObjectFn = (opts?: PendingSessionOptions) => requestState.toAuth(opts);\n const authHandler: AuthFn = ((options?: AuthOptions) => {\n return getAuthObjectForAcceptedToken({ authObject: authObjectFn(options), acceptsToken: options?.acceptsToken });\n }) as AuthFn;\n\n event.context.auth = authHandler;\n // Internal serializable state that will be passed to the client\n event.context.__clerk_initial_state = createInitialState(authObjectFn());\n\n // Store keyless mode URLs in separate context property\n if (canUseKeyless && keylessClaimUrl) {\n event.context.__clerk_keyless = {\n claimUrl: keylessClaimUrl,\n apiKeysUrl: keylessApiKeysUrl,\n };\n }\n\n try {\n await handler?.(event);\n } catch (e) {\n if (isMalformedURLError(e)) {\n throw createError({ statusCode: 400, statusMessage: 'Bad Request' });\n }\n throw e;\n }\n });\n};\n"],"mappings":"AACA,SAAS,YAAY,WAAW,qCAAqC;AACrE,SAAS,uCAAuC;AAChD,SAAS,2BAA2B;AAGpC,SAAS,aAAa,cAAc,yBAAyB;AAG7D,SAAS,wBAAwB;AAEjC,SAAS,qBAAqB;AAC9B,SAAS,mBAAmB;AAC5B,SAAS,sCAAsC;AAE/C,SAAS,oBAAoB,oBAAoB;AAEjD,SAAS,uBAAuB,MAAiB;AAC/C,SAAO;AAAA,IACL,OAAO,KAAK,CAAC,MAAM,aAAa,KAAK,CAAC,IAAI;AAAA,KACzC,KAAK,WAAW,IAAI,KAAK,CAAC,IAAI,OAAO,KAAK,CAAC,MAAM,aAAa,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC;AAAA,EACnF;AACF;AA+DO,MAAM,kBAAmC,IAAI,SAAoB;AACtE,QAAM,CAAC,SAAS,OAAO,IAAI,uBAAuB,IAAI;AACtD,SAAO,aAAa,OAAM,UAAS;AACjC,UAAM,eAAe,aAAa,KAAK;AAGvC,QAAI;AACJ,QAAI;AAEJ,QAAI,eAAe;AACjB,UAAI;AACF,cAAM,gBAAgB,iBAAiB,KAAK;AAE5C,cAAM,EAAE,gBAAgB,WAAW,UAAU,WAAW,IAAI,MAAM;AAAA,UAChE,cAAc,OAAO,MAAM;AAAA,UAC3B,cAAc,MAAM;AAAA,UACpB;AAAA,QACF;AAEA,0BAAkB;AAClB,4BAAoB;AAGpB,YAAI,gBAAgB;AAClB,wBAAc,OAAO,MAAM,iBAAiB;AAAA,QAC9C;AACA,YAAI,WAAW;AACb,wBAAc,MAAM,YAAY;AAAA,QAClC;AAAA,MACF,QAAQ;AAAA,MAER;AAAA,IACF;AAEA,UAAM,eAAe,MAAM,YAAY,KAAK,EAAE,oBAAoB,cAAc;AAAA,MAC9E,GAAG;AAAA,MACH,cAAc;AAAA,IAChB,CAAC;AAED,UAAM,iBAAiB,aAAa,QAAQ,IAAI,UAAU,QAAQ,QAAQ;AAC1E,QAAI,gBAAgB;AAClB,sCAAgC;AAAA,QAC9B;AAAA,QACA,qBAAqB,aAAa;AAAA,QAClC,gBAAgB,aAAa;AAAA,MAC/B,CAAC;AAED,aAAO,IAAI,SAAS,MAAM,EAAE,QAAQ,KAAK,SAAS,aAAa,QAAQ,CAAC;AAAA,IAC1E;AAEA,QAAI,aAAa,WAAW,WAAW,WAAW;AAChD,YAAM,YAAY,0CAA0C;AAAA,IAC9D;AAEA,QAAI,aAAa,SAAS;AACxB,mBAAa,QAAQ,QAAQ,CAAC,OAAO,QAAQ;AAC3C,0BAAkB,OAAO,KAAK,KAAK;AAAA,MACrC,CAAC;AAAA,IACH;AAEA,UAAM,eAAe,CAAC,SAAiC,aAAa,OAAO,IAAI;AAC/E,UAAM,eAAuB,CAACA,aAA0B;AACtD,aAAO,8BAA8B,EAAE,YAAY,aAAaA,QAAO,GAAG,cAAcA,UAAS,aAAa,CAAC;AAAA,IACjH;AAEA,UAAM,QAAQ,OAAO;AAErB,UAAM,QAAQ,wBAAwB,mBAAmB,aAAa,CAAC;AAGvE,QAAI,iBAAiB,iBAAiB;AACpC,YAAM,QAAQ,kBAAkB;AAAA,QAC9B,UAAU;AAAA,QACV,YAAY;AAAA,MACd;AAAA,IACF;AAEA,QAAI;AACF,YAAM,UAAU,KAAK;AAAA,IACvB,SAAS,GAAG;AACV,UAAI,oBAAoB,CAAC,GAAG;AAC1B,cAAM,YAAY,EAAE,YAAY,KAAK,eAAe,cAAc,CAAC;AAAA,MACrE;AACA,YAAM;AAAA,IACR;AAAA,EACF,CAAC;AACH;","names":["options"]}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@clerk/nuxt",
3
- "version": "2.2.1",
3
+ "version": "2.2.2-canary.v20260415142102",
4
4
  "description": "Clerk SDK for Nuxt",
5
5
  "keywords": [
6
6
  "clerk",
@@ -61,9 +61,9 @@
61
61
  "@nuxt/kit": "^4.1.3",
62
62
  "@nuxt/schema": "^4.1.3",
63
63
  "h3": "^1.15.4",
64
- "@clerk/backend": "^3.2.10",
65
- "@clerk/shared": "^4.8.0",
66
- "@clerk/vue": "^2.0.13"
64
+ "@clerk/backend": "3.2.11-canary.v20260415142102",
65
+ "@clerk/shared": "4.8.1-canary.v20260415142102",
66
+ "@clerk/vue": "2.0.14-canary.v20260415142102"
67
67
  },
68
68
  "devDependencies": {
69
69
  "nuxt": "^4.1.2",