@cmssy/next 0.2.1 → 0.2.3

package/dist/index.cjs

@@ -221,8 +221,8 @@ async function splitCmssyLocale(config, path) {
   return react.splitLocaleFromPath(path, siteLocales);
 }
 async function getCmssyLocale(config) {
-  const { headers: headers2 } = await import('next/headers');
-  const headerList = await headers2();
+  const { headers: headers3 } = await import('next/headers');
+  const headerList = await headers3();
   const fromHeader = headerList.get(CMSSY_LOCALE_HEADER);
   if (fromHeader) return fromHeader;
   const { defaultLocale } = await react.resolveSiteLocales(config);
@@ -362,11 +362,11 @@ function decodeAccessClaims(accessToken) {
   try {
     const base64 = parts[1].replace(/-/g, "+").replace(/_/g, "/");
     const bytes = Uint8Array.from(atob(base64), (c) => c.charCodeAt(0));
-    const json3 = JSON.parse(new TextDecoder().decode(bytes));
-    if (typeof json3.recordId !== "string" || typeof json3.email !== "string" || json3.type !== "site_member") {
+    const json4 = JSON.parse(new TextDecoder().decode(bytes));
+    if (typeof json4.recordId !== "string" || typeof json4.email !== "string" || json4.type !== "site_member") {
       return null;
     }
-    return { recordId: json3.recordId, email: json3.email };
+    return { recordId: json4.recordId, email: json4.email };
   } catch {
     return null;
   }
@@ -1078,6 +1078,159 @@ function createCmssyAuthMiddleware(config) {
     return refreshed;
   };
 }
+var PRODUCTS_QUERY = `query Products($workspaceId: String!, $modelSlug: String!, $filter: JSON, $limit: Int) {
+  publicModelRecords(workspaceId: $workspaceId, modelSlug: $modelSlug, filter: $filter, limit: $limit) {
+    items { id data variants { id sku price inventory selectedOptions { name value } } }
+  }
+}`;
+async function fetchProducts(config, options) {
+  const workspaceId = await react.resolveWorkspaceId(config);
+  const data = await react.graphqlRequest(
+    config,
+    PRODUCTS_QUERY,
+    {
+      workspaceId,
+      modelSlug: options.modelSlug,
+      filter: options.filter ?? {},
+      limit: options.limit ?? 50
+    },
+    { headers: { "x-workspace-id": workspaceId } },
+    "products query"
+  );
+  return data.publicModelRecords.items;
+}
+async function fetchProduct(config, options) {
+  const products = await fetchProducts(config, {
+    modelSlug: options.modelSlug,
+    filter: { [options.slugField ?? "slug"]: options.slug },
+    limit: 1
+  });
+  return products[0] ?? null;
+}
+var ORDER_FIELDS = `
+  id
+  status
+  subtotal
+  tax
+  total
+  currency
+  customerEmail
+  refundedAmount
+  paymentProvider
+  paidAt
+  fulfilledAt
+  createdAt
+  items { name price currency quantity sku }
+`;
+var MY_ORDERS = `query MyOrders($workspaceId: ID!, $skip: Int, $limit: Int) {
+  myOrders(workspaceId: $workspaceId, skip: $skip, limit: $limit) {
+    total
+    hasMore
+    items { ${ORDER_FIELDS} }
+  }
+}`;
+var MY_ORDER = `query MyOrder($workspaceId: ID!, $id: ID!) {
+  myOrder(workspaceId: $workspaceId, id: $id) { ${ORDER_FIELDS} }
+}`;
+var workspaceIdCache3 = /* @__PURE__ */ new Map();
+function workspaceIdFor3(config) {
+  const key = `${config.apiUrl}::${config.workspaceSlug}`;
+  const existing = workspaceIdCache3.get(key);
+  if (existing) return existing;
+  const fresh = react.resolveWorkspaceId(config).catch((err) => {
+    workspaceIdCache3.delete(key);
+    throw err;
+  });
+  workspaceIdCache3.set(key, fresh);
+  return fresh;
+}
+function headers2(workspaceId, accessToken) {
+  return {
+    "x-workspace-id": workspaceId,
+    authorization: `Bearer ${accessToken}`
+  };
+}
+async function backendMyOrders(config, accessToken, options) {
+  const workspaceId = await workspaceIdFor3(config);
+  const data = await react.graphqlRequest(
+    config,
+    MY_ORDERS,
+    { workspaceId, skip: options.skip, limit: options.limit },
+    { headers: headers2(workspaceId, accessToken) },
+    "my orders"
+  );
+  return data.myOrders;
+}
+async function backendMyOrder(config, accessToken, id) {
+  const workspaceId = await workspaceIdFor3(config);
+  const data = await react.graphqlRequest(
+    config,
+    MY_ORDER,
+    { workspaceId, id },
+    { headers: headers2(workspaceId, accessToken) },
+    "my order"
+  );
+  return data.myOrder;
+}
+
+// src/create-orders-route.ts
+var DEFAULT_LIMIT = 20;
+var MAX_LIMIT = 100;
+function json3(body, status = 200) {
+  return new Response(JSON.stringify(body), {
+    status,
+    headers: {
+      "content-type": "application/json",
+      "cache-control": "no-store"
+    }
+  });
+}
+function createCmssyOrdersRoute(config) {
+  async function memberAccessToken() {
+    if (!config.auth) return void 0;
+    const jar = await headers.cookies();
+    const raw = jar.get(CMSSY_SESSION_COOKIE)?.value;
+    if (!raw) return void 0;
+    const session = await openSession(
+      raw,
+      config.auth.sessionSecret,
+      config.workspaceSlug
+    );
+    if (!session || isAccessExpired(session)) return void 0;
+    return session.accessToken;
+  }
+  return {
+    async GET(request2) {
+      const accessToken = await memberAccessToken();
+      if (!accessToken) {
+        return json3({ message: "Not signed in." }, 401);
+      }
+      const url = new URL(request2.url);
+      try {
+        const id = url.searchParams.get("id");
+        if (id) {
+          return json3({ order: await backendMyOrder(config, accessToken, id) });
+        }
+        const skip = Math.max(
+          0,
+          Math.floor(Number(url.searchParams.get("skip")) || 0)
+        );
+        const limitParam = Math.floor(Number(url.searchParams.get("limit")));
+        const limit = Number.isFinite(limitParam) && limitParam > 0 ? Math.min(limitParam, MAX_LIMIT) : DEFAULT_LIMIT;
+        const result = await backendMyOrders(config, accessToken, {
+          skip,
+          limit
+        });
+        return json3(result);
+      } catch (err) {
+        return json3(
+          { message: err instanceof Error ? err.message : "Orders error" },
+          502
+        );
+      }
+    }
+  };
+}
 
 exports.CMSSY_CART_COOKIE = CMSSY_CART_COOKIE;
 exports.CMSSY_EDIT_HEADER = CMSSY_EDIT_HEADER;
@@ -1090,8 +1243,11 @@ exports.cmssyCspHeaders = cmssyCspHeaders;
 exports.createCmssyAuthMiddleware = createCmssyAuthMiddleware;
 exports.createCmssyAuthRoute = createCmssyAuthRoute;
 exports.createCmssyCartRoute = createCmssyCartRoute;
+exports.createCmssyOrdersRoute = createCmssyOrdersRoute;
 exports.createCmssyPage = createCmssyPage;
 exports.createDraftRoute = createDraftRoute;
+exports.fetchProduct = fetchProduct;
+exports.fetchProducts = fetchProducts;
 exports.getCmssyAccessToken = getCmssyAccessToken;
 exports.getCmssyLocale = getCmssyLocale;
 exports.getCmssyUser = getCmssyUser;

package/dist/index.d.cts

@@ -1,6 +1,6 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ComponentType } from 'react';
-import { CmssyPageData, CmssyFormDefinition, BlockDefinition, CmssyClientConfig } from '@cmssy/react';
+import { CmssyPageData, CmssyFormDefinition, BlockDefinition, CmssyClientConfig, CmssyProduct, CmssyOrder } from '@cmssy/react';
 import { EditBridgeConfig } from '@cmssy/react/client';
 import { NextRequest, NextResponse } from 'next/server';
 
@@ -136,4 +136,28 @@ declare function getCmssyAccessToken(config: CmssyNextConfig): Promise<string |
 type CmssyAuthMiddleware = (request: NextRequest) => Promise<NextResponse>;
 declare function createCmssyAuthMiddleware(config: CmssyNextConfig): CmssyAuthMiddleware;
 
-export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, type CmssyAuthConfig, type CmssyAuthMiddleware, type CmssyAuthRouteHandlers, type CmssyCartRouteHandlers, type CmssyCspOptions, type CmssyDraftRouteConfig, type CmssyEditorProps, type CmssyNextConfig, type CmssySessionPayload, type CmssySessionUser, type CreateCmssyPageOptions, SESSION_MAX_AGE_SECONDS, type SessionCookieOptions, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyPage, createDraftRoute, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };
+interface FetchProductsOptions {
+    modelSlug: string;
+    filter?: Record<string, unknown>;
+    limit?: number;
+}
+declare function fetchProducts(config: CmssyNextConfig, options: FetchProductsOptions): Promise<CmssyProduct[]>;
+interface FetchProductOptions {
+    modelSlug: string;
+    slug: string;
+    slugField?: string;
+}
+declare function fetchProduct(config: CmssyNextConfig, options: FetchProductOptions): Promise<CmssyProduct | null>;
+
+interface CmssyOrdersRouteHandlers {
+    GET(request: Request): Promise<Response>;
+}
+declare function createCmssyOrdersRoute(config: CmssyNextConfig): CmssyOrdersRouteHandlers;
+
+interface MyOrdersResult {
+    items: CmssyOrder[];
+    total: number;
+    hasMore: boolean;
+}
+
+export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, type CmssyAuthConfig, type CmssyAuthMiddleware, type CmssyAuthRouteHandlers, type CmssyCartRouteHandlers, type CmssyCspOptions, type CmssyDraftRouteConfig, type CmssyEditorProps, type CmssyNextConfig, type CmssyOrdersRouteHandlers, type CmssySessionPayload, type CmssySessionUser, type CreateCmssyPageOptions, type FetchProductOptions, type FetchProductsOptions, type MyOrdersResult, SESSION_MAX_AGE_SECONDS, type SessionCookieOptions, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyOrdersRoute, createCmssyPage, createDraftRoute, fetchProduct, fetchProducts, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };

package/dist/index.d.ts

@@ -1,6 +1,6 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ComponentType } from 'react';
-import { CmssyPageData, CmssyFormDefinition, BlockDefinition, CmssyClientConfig } from '@cmssy/react';
+import { CmssyPageData, CmssyFormDefinition, BlockDefinition, CmssyClientConfig, CmssyProduct, CmssyOrder } from '@cmssy/react';
 import { EditBridgeConfig } from '@cmssy/react/client';
 import { NextRequest, NextResponse } from 'next/server';
 
@@ -136,4 +136,28 @@ declare function getCmssyAccessToken(config: CmssyNextConfig): Promise<string |
 type CmssyAuthMiddleware = (request: NextRequest) => Promise<NextResponse>;
 declare function createCmssyAuthMiddleware(config: CmssyNextConfig): CmssyAuthMiddleware;
 
-export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, type CmssyAuthConfig, type CmssyAuthMiddleware, type CmssyAuthRouteHandlers, type CmssyCartRouteHandlers, type CmssyCspOptions, type CmssyDraftRouteConfig, type CmssyEditorProps, type CmssyNextConfig, type CmssySessionPayload, type CmssySessionUser, type CreateCmssyPageOptions, SESSION_MAX_AGE_SECONDS, type SessionCookieOptions, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyPage, createDraftRoute, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };
+interface FetchProductsOptions {
+    modelSlug: string;
+    filter?: Record<string, unknown>;
+    limit?: number;
+}
+declare function fetchProducts(config: CmssyNextConfig, options: FetchProductsOptions): Promise<CmssyProduct[]>;
+interface FetchProductOptions {
+    modelSlug: string;
+    slug: string;
+    slugField?: string;
+}
+declare function fetchProduct(config: CmssyNextConfig, options: FetchProductOptions): Promise<CmssyProduct | null>;
+
+interface CmssyOrdersRouteHandlers {
+    GET(request: Request): Promise<Response>;
+}
+declare function createCmssyOrdersRoute(config: CmssyNextConfig): CmssyOrdersRouteHandlers;
+
+interface MyOrdersResult {
+    items: CmssyOrder[];
+    total: number;
+    hasMore: boolean;
+}
+
+export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, type CmssyAuthConfig, type CmssyAuthMiddleware, type CmssyAuthRouteHandlers, type CmssyCartRouteHandlers, type CmssyCspOptions, type CmssyDraftRouteConfig, type CmssyEditorProps, type CmssyNextConfig, type CmssyOrdersRouteHandlers, type CmssySessionPayload, type CmssySessionUser, type CreateCmssyPageOptions, type FetchProductOptions, type FetchProductsOptions, type MyOrdersResult, SESSION_MAX_AGE_SECONDS, type SessionCookieOptions, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyOrdersRoute, createCmssyPage, createDraftRoute, fetchProduct, fetchProducts, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };

package/dist/index.js

@@ -219,8 +219,8 @@ async function splitCmssyLocale(config, path) {
   return splitLocaleFromPath(path, siteLocales);
 }
 async function getCmssyLocale(config) {
-  const { headers: headers2 } = await import('next/headers');
-  const headerList = await headers2();
+  const { headers: headers3 } = await import('next/headers');
+  const headerList = await headers3();
   const fromHeader = headerList.get(CMSSY_LOCALE_HEADER);
   if (fromHeader) return fromHeader;
   const { defaultLocale } = await resolveSiteLocales(config);
@@ -360,11 +360,11 @@ function decodeAccessClaims(accessToken) {
   try {
     const base64 = parts[1].replace(/-/g, "+").replace(/_/g, "/");
     const bytes = Uint8Array.from(atob(base64), (c) => c.charCodeAt(0));
-    const json3 = JSON.parse(new TextDecoder().decode(bytes));
-    if (typeof json3.recordId !== "string" || typeof json3.email !== "string" || json3.type !== "site_member") {
+    const json4 = JSON.parse(new TextDecoder().decode(bytes));
+    if (typeof json4.recordId !== "string" || typeof json4.email !== "string" || json4.type !== "site_member") {
       return null;
     }
-    return { recordId: json3.recordId, email: json3.email };
+    return { recordId: json4.recordId, email: json4.email };
   } catch {
     return null;
   }
@@ -1076,5 +1076,158 @@ function createCmssyAuthMiddleware(config) {
     return refreshed;
   };
 }
+var PRODUCTS_QUERY = `query Products($workspaceId: String!, $modelSlug: String!, $filter: JSON, $limit: Int) {
+  publicModelRecords(workspaceId: $workspaceId, modelSlug: $modelSlug, filter: $filter, limit: $limit) {
+    items { id data variants { id sku price inventory selectedOptions { name value } } }
+  }
+}`;
+async function fetchProducts(config, options) {
+  const workspaceId = await resolveWorkspaceId(config);
+  const data = await graphqlRequest(
+    config,
+    PRODUCTS_QUERY,
+    {
+      workspaceId,
+      modelSlug: options.modelSlug,
+      filter: options.filter ?? {},
+      limit: options.limit ?? 50
+    },
+    { headers: { "x-workspace-id": workspaceId } },
+    "products query"
+  );
+  return data.publicModelRecords.items;
+}
+async function fetchProduct(config, options) {
+  const products = await fetchProducts(config, {
+    modelSlug: options.modelSlug,
+    filter: { [options.slugField ?? "slug"]: options.slug },
+    limit: 1
+  });
+  return products[0] ?? null;
+}
+var ORDER_FIELDS = `
+  id
+  status
+  subtotal
+  tax
+  total
+  currency
+  customerEmail
+  refundedAmount
+  paymentProvider
+  paidAt
+  fulfilledAt
+  createdAt
+  items { name price currency quantity sku }
+`;
+var MY_ORDERS = `query MyOrders($workspaceId: ID!, $skip: Int, $limit: Int) {
+  myOrders(workspaceId: $workspaceId, skip: $skip, limit: $limit) {
+    total
+    hasMore
+    items { ${ORDER_FIELDS} }
+  }
+}`;
+var MY_ORDER = `query MyOrder($workspaceId: ID!, $id: ID!) {
+  myOrder(workspaceId: $workspaceId, id: $id) { ${ORDER_FIELDS} }
+}`;
+var workspaceIdCache3 = /* @__PURE__ */ new Map();
+function workspaceIdFor3(config) {
+  const key = `${config.apiUrl}::${config.workspaceSlug}`;
+  const existing = workspaceIdCache3.get(key);
+  if (existing) return existing;
+  const fresh = resolveWorkspaceId(config).catch((err) => {
+    workspaceIdCache3.delete(key);
+    throw err;
+  });
+  workspaceIdCache3.set(key, fresh);
+  return fresh;
+}
+function headers2(workspaceId, accessToken) {
+  return {
+    "x-workspace-id": workspaceId,
+    authorization: `Bearer ${accessToken}`
+  };
+}
+async function backendMyOrders(config, accessToken, options) {
+  const workspaceId = await workspaceIdFor3(config);
+  const data = await graphqlRequest(
+    config,
+    MY_ORDERS,
+    { workspaceId, skip: options.skip, limit: options.limit },
+    { headers: headers2(workspaceId, accessToken) },
+    "my orders"
+  );
+  return data.myOrders;
+}
+async function backendMyOrder(config, accessToken, id) {
+  const workspaceId = await workspaceIdFor3(config);
+  const data = await graphqlRequest(
+    config,
+    MY_ORDER,
+    { workspaceId, id },
+    { headers: headers2(workspaceId, accessToken) },
+    "my order"
+  );
+  return data.myOrder;
+}
+
+// src/create-orders-route.ts
+var DEFAULT_LIMIT = 20;
+var MAX_LIMIT = 100;
+function json3(body, status = 200) {
+  return new Response(JSON.stringify(body), {
+    status,
+    headers: {
+      "content-type": "application/json",
+      "cache-control": "no-store"
+    }
+  });
+}
+function createCmssyOrdersRoute(config) {
+  async function memberAccessToken() {
+    if (!config.auth) return void 0;
+    const jar = await cookies();
+    const raw = jar.get(CMSSY_SESSION_COOKIE)?.value;
+    if (!raw) return void 0;
+    const session = await openSession(
+      raw,
+      config.auth.sessionSecret,
+      config.workspaceSlug
+    );
+    if (!session || isAccessExpired(session)) return void 0;
+    return session.accessToken;
+  }
+  return {
+    async GET(request2) {
+      const accessToken = await memberAccessToken();
+      if (!accessToken) {
+        return json3({ message: "Not signed in." }, 401);
+      }
+      const url = new URL(request2.url);
+      try {
+        const id = url.searchParams.get("id");
+        if (id) {
+          return json3({ order: await backendMyOrder(config, accessToken, id) });
+        }
+        const skip = Math.max(
+          0,
+          Math.floor(Number(url.searchParams.get("skip")) || 0)
+        );
+        const limitParam = Math.floor(Number(url.searchParams.get("limit")));
+        const limit = Number.isFinite(limitParam) && limitParam > 0 ? Math.min(limitParam, MAX_LIMIT) : DEFAULT_LIMIT;
+        const result = await backendMyOrders(config, accessToken, {
+          skip,
+          limit
+        });
+        return json3(result);
+      } catch (err) {
+        return json3(
+          { message: err instanceof Error ? err.message : "Orders error" },
+          502
+        );
+      }
+    }
+  };
+}
 
-export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, SESSION_MAX_AGE_SECONDS, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyPage, createDraftRoute, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };
+export { CMSSY_CART_COOKIE, CMSSY_EDIT_HEADER, CMSSY_LOCALE_HEADER, CMSSY_SESSION_COOKIE, SESSION_MAX_AGE_SECONDS, applyCmssyCsp, assertAuthConfig, cmssyCspHeaders, createCmssyAuthMiddleware, createCmssyAuthRoute, createCmssyCartRoute, createCmssyOrdersRoute, createCmssyPage, createDraftRoute, fetchProduct, fetchProducts, getCmssyAccessToken, getCmssyLocale, getCmssyUser, isAccessExpired, isCmssyEditMode, isCmssyEditRequest, localeForPathname, openSession, sealSession, sessionCookieOptions, splitCmssyLocale };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cmssy/next",
-  "version": "0.2.1",
+  "version": "0.2.3",
   "description": "Next.js App Router bindings for cmssy headless sites (createCmssyPage + draft preview)",
   "keywords": [
     "cmssy",
@@ -36,7 +36,7 @@
     "dist"
   ],
   "peerDependencies": {
-    "@cmssy/react": "^0.2.1",
+    "@cmssy/react": "^0.2.3",
     "next": ">=15",
     "react": "^18.2.0 || ^19.0.0",
     "react-dom": "^18.2.0 || ^19.0.0"
@@ -49,7 +49,7 @@
     "tsup": "^8.3.0",
     "typescript": "^5.6.0",
     "vitest": "^2.1.0",
-    "@cmssy/react": "0.2.1"
+    "@cmssy/react": "0.2.3"
   },
   "dependencies": {
     "jose": "^6.2.3"