@djangocfg/api 2.1.231 → 2.1.233

package/dist/hooks.d.cts

@@ -39,15 +39,13 @@ declare enum OAuthConnectionProvider {
 }
 
 /**
- * Request to start OAuth flow.
+ * Response with available OAuth providers.
  *
- * Request model (no read-only fields).
+ * Response model (includes read-only fields).
  */
-interface OAuthAuthorizeRequestRequest$1 {
-    /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
-    redirect_uri?: string;
-    /** Optional source URL for registration tracking */
-    source_url?: string;
+interface OAuthProvidersResponse {
+    /** List of available OAuth providers */
+    providers: Array<Record<string, any>>;
 }
 /**
  * Request to disconnect OAuth provider.
@@ -61,37 +59,15 @@ interface OAuthDisconnectRequestRequest$1 {
     provider: OAuthConnectionProvider;
 }
 /**
- * Response with available OAuth providers.
- *
- * Response model (includes read-only fields).
- */
-interface OAuthProvidersResponse {
-    /** List of available OAuth providers */
-    providers: Array<Record<string, any>>;
-}
-/**
- * Request to complete OAuth flow (callback handler).
+ * Request to start OAuth flow.
  *
  * Request model (no read-only fields).
  */
-interface OAuthCallbackRequestRequest$1 {
-    /** Authorization code from OAuth provider callback */
-    code: string;
-    /** State token for CSRF verification (from authorize response) */
-    state: string;
-    /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+interface OAuthAuthorizeRequestRequest$1 {
+    /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
     redirect_uri?: string;
-}
-/**
- * Response with OAuth authorization URL.
- *
- * Response model (includes read-only fields).
- */
-interface OAuthAuthorizeResponse$1 {
-    /** Full URL to redirect user to OAuth provider */
-    authorization_url: string;
-    /** State token for CSRF protection. Store this and verify on callback. */
-    state: string;
+    /** Optional source URL for registration tracking */
+    source_url?: string;
 }
 /**
  * Response with JWT tokens after OAuth authentication. When 2FA is required: -
@@ -119,6 +95,30 @@ interface OAuthTokenResponse$1 {
     /** True if user should be prompted to enable 2FA */
     should_prompt_2fa?: boolean;
 }
+/**
+ * Response with OAuth authorization URL.
+ *
+ * Response model (includes read-only fields).
+ */
+interface OAuthAuthorizeResponse$1 {
+    /** Full URL to redirect user to OAuth provider */
+    authorization_url: string;
+    /** State token for CSRF protection. Store this and verify on callback. */
+    state: string;
+}
+/**
+ * Request to complete OAuth flow (callback handler).
+ *
+ * Request model (no read-only fields).
+ */
+interface OAuthCallbackRequestRequest$1 {
+    /** Authorization code from OAuth provider callback */
+    code: string;
+    /** State token for CSRF verification (from authorize response) */
+    state: string;
+    /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+    redirect_uri?: string;
+}
 
 /**
  * API endpoints for Oauth.
@@ -165,7 +165,7 @@ declare class Oauth {
  *
  * Request model (no read-only fields).
  */
-interface UserProfileUpdateRequest$1 {
+interface PatchedUserProfileUpdateRequest$1 {
     first_name?: string;
     last_name?: string;
     company?: string;
@@ -173,14 +173,6 @@ interface UserProfileUpdateRequest$1 {
     position?: string;
     language?: string;
 }
-/**
- *
- * Request model (no read-only fields).
- */
-interface CfgAccountsProfileAvatarCreateRequest$1 {
-    /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
-    avatar: File | Blob;
-}
 /**
  * Serializer for user details.
  *
@@ -211,12 +203,23 @@ interface User$2 {
     unanswered_messages_count: number;
     centrifugo: CentrifugoToken$1 | null;
 }
+/**
+ * Response serializer for account deletion.
+ *
+ * Response model (includes read-only fields).
+ */
+interface AccountDeleteResponse$1 {
+    /** Whether the account was successfully deleted */
+    success: boolean;
+    /** Human-readable message about the deletion */
+    message: string;
+}
 /**
  * Serializer for updating user profile.
  *
  * Request model (no read-only fields).
  */
-interface PatchedUserProfileUpdateRequest$1 {
+interface UserProfileUpdateRequest$1 {
     first_name?: string;
     last_name?: string;
     company?: string;
@@ -225,15 +228,12 @@ interface PatchedUserProfileUpdateRequest$1 {
     language?: string;
 }
 /**
- * Response serializer for account deletion.
  *
- * Response model (includes read-only fields).
+ * Request model (no read-only fields).
  */
-interface AccountDeleteResponse$1 {
-    /** Whether the account was successfully deleted */
-    success: boolean;
-    /** Human-readable message about the deletion */
-    message: string;
+interface CfgAccountsProfileAvatarCreateRequest$1 {
+    /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
+    avatar: File | Blob;
 }
 /**
  * Nested serializer for Centrifugo WebSocket connection token.
@@ -308,27 +308,6 @@ declare class UserProfile {
     accountsProfileUpdatePartialUpdate(data?: PatchedUserProfileUpdateRequest$1): Promise<User$2>;
 }
 
-/**
- * OTP verification response. When 2FA is required: - requires_2fa: True -
- * session_id: UUID of 2FA verification session - refresh/access/user: null
- * When 2FA is not required: - requires_2fa: False - session_id: null -
- * refresh/access/user: populated
- *
- * Response model (includes read-only fields).
- */
-interface OTPVerifyResponse$1 {
-    /** Whether 2FA verification is required */
-    requires_2fa?: boolean;
-    /** 2FA session ID (if requires_2fa is True) */
-    session_id?: string | null;
-    /** JWT refresh token (if requires_2fa is False) */
-    refresh?: string | null;
-    /** JWT access token (if requires_2fa is False) */
-    access?: string | null;
-    user?: User$1 | null;
-    /** Whether user should be prompted to enable 2FA */
-    should_prompt_2fa?: boolean;
-}
 /**
  * Serializer for OTP verification.
  *
@@ -341,6 +320,15 @@ interface OTPVerifyRequest$1 {
     /** Source URL for tracking login (e.g., https://my.djangocfg.com) */
     source_url?: string;
 }
+/**
+ * OTP request response.
+ *
+ * Response model (includes read-only fields).
+ */
+interface OTPRequestResponse$1 {
+    /** Success message */
+    message: string;
+}
 /**
  * Serializer for OTP request.
  *
@@ -353,13 +341,25 @@ interface OTPRequestRequest$1 {
     source_url?: string;
 }
 /**
- * OTP request response.
+ * OTP verification response. When 2FA is required: - requires_2fa: True -
+ * session_id: UUID of 2FA verification session - refresh/access/user: null
+ * When 2FA is not required: - requires_2fa: False - session_id: null -
+ * refresh/access/user: populated
  *
  * Response model (includes read-only fields).
  */
-interface OTPRequestResponse$1 {
-    /** Success message */
-    message: string;
+interface OTPVerifyResponse$1 {
+    /** Whether 2FA verification is required */
+    requires_2fa?: boolean;
+    /** 2FA session ID (if requires_2fa is True) */
+    session_id?: string | null;
+    /** JWT refresh token (if requires_2fa is False) */
+    refresh?: string | null;
+    /** JWT access token (if requires_2fa is False) */
+    access?: string | null;
+    user?: User$1 | null;
+    /** Whether user should be prompted to enable 2FA */
+    should_prompt_2fa?: boolean;
 }
 /**
  * Serializer for user details.

package/dist/hooks.d.ts

@@ -39,15 +39,13 @@ declare enum OAuthConnectionProvider {
 }
 
 /**
- * Request to start OAuth flow.
+ * Response with available OAuth providers.
  *
- * Request model (no read-only fields).
+ * Response model (includes read-only fields).
  */
-interface OAuthAuthorizeRequestRequest$1 {
-    /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
-    redirect_uri?: string;
-    /** Optional source URL for registration tracking */
-    source_url?: string;
+interface OAuthProvidersResponse {
+    /** List of available OAuth providers */
+    providers: Array<Record<string, any>>;
 }
 /**
  * Request to disconnect OAuth provider.
@@ -61,37 +59,15 @@ interface OAuthDisconnectRequestRequest$1 {
     provider: OAuthConnectionProvider;
 }
 /**
- * Response with available OAuth providers.
- *
- * Response model (includes read-only fields).
- */
-interface OAuthProvidersResponse {
-    /** List of available OAuth providers */
-    providers: Array<Record<string, any>>;
-}
-/**
- * Request to complete OAuth flow (callback handler).
+ * Request to start OAuth flow.
  *
  * Request model (no read-only fields).
  */
-interface OAuthCallbackRequestRequest$1 {
-    /** Authorization code from OAuth provider callback */
-    code: string;
-    /** State token for CSRF verification (from authorize response) */
-    state: string;
-    /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+interface OAuthAuthorizeRequestRequest$1 {
+    /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
     redirect_uri?: string;
-}
-/**
- * Response with OAuth authorization URL.
- *
- * Response model (includes read-only fields).
- */
-interface OAuthAuthorizeResponse$1 {
-    /** Full URL to redirect user to OAuth provider */
-    authorization_url: string;
-    /** State token for CSRF protection. Store this and verify on callback. */
-    state: string;
+    /** Optional source URL for registration tracking */
+    source_url?: string;
 }
 /**
  * Response with JWT tokens after OAuth authentication. When 2FA is required: -
@@ -119,6 +95,30 @@ interface OAuthTokenResponse$1 {
     /** True if user should be prompted to enable 2FA */
     should_prompt_2fa?: boolean;
 }
+/**
+ * Response with OAuth authorization URL.
+ *
+ * Response model (includes read-only fields).
+ */
+interface OAuthAuthorizeResponse$1 {
+    /** Full URL to redirect user to OAuth provider */
+    authorization_url: string;
+    /** State token for CSRF protection. Store this and verify on callback. */
+    state: string;
+}
+/**
+ * Request to complete OAuth flow (callback handler).
+ *
+ * Request model (no read-only fields).
+ */
+interface OAuthCallbackRequestRequest$1 {
+    /** Authorization code from OAuth provider callback */
+    code: string;
+    /** State token for CSRF verification (from authorize response) */
+    state: string;
+    /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+    redirect_uri?: string;
+}
 
 /**
  * API endpoints for Oauth.
@@ -165,7 +165,7 @@ declare class Oauth {
  *
  * Request model (no read-only fields).
  */
-interface UserProfileUpdateRequest$1 {
+interface PatchedUserProfileUpdateRequest$1 {
     first_name?: string;
     last_name?: string;
     company?: string;
@@ -173,14 +173,6 @@ interface UserProfileUpdateRequest$1 {
     position?: string;
     language?: string;
 }
-/**
- *
- * Request model (no read-only fields).
- */
-interface CfgAccountsProfileAvatarCreateRequest$1 {
-    /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
-    avatar: File | Blob;
-}
 /**
  * Serializer for user details.
  *
@@ -211,12 +203,23 @@ interface User$2 {
     unanswered_messages_count: number;
     centrifugo: CentrifugoToken$1 | null;
 }
+/**
+ * Response serializer for account deletion.
+ *
+ * Response model (includes read-only fields).
+ */
+interface AccountDeleteResponse$1 {
+    /** Whether the account was successfully deleted */
+    success: boolean;
+    /** Human-readable message about the deletion */
+    message: string;
+}
 /**
  * Serializer for updating user profile.
  *
  * Request model (no read-only fields).
  */
-interface PatchedUserProfileUpdateRequest$1 {
+interface UserProfileUpdateRequest$1 {
     first_name?: string;
     last_name?: string;
     company?: string;
@@ -225,15 +228,12 @@ interface PatchedUserProfileUpdateRequest$1 {
     language?: string;
 }
 /**
- * Response serializer for account deletion.
  *
- * Response model (includes read-only fields).
+ * Request model (no read-only fields).
  */
-interface AccountDeleteResponse$1 {
-    /** Whether the account was successfully deleted */
-    success: boolean;
-    /** Human-readable message about the deletion */
-    message: string;
+interface CfgAccountsProfileAvatarCreateRequest$1 {
+    /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
+    avatar: File | Blob;
 }
 /**
  * Nested serializer for Centrifugo WebSocket connection token.
@@ -308,27 +308,6 @@ declare class UserProfile {
     accountsProfileUpdatePartialUpdate(data?: PatchedUserProfileUpdateRequest$1): Promise<User$2>;
 }
 
-/**
- * OTP verification response. When 2FA is required: - requires_2fa: True -
- * session_id: UUID of 2FA verification session - refresh/access/user: null
- * When 2FA is not required: - requires_2fa: False - session_id: null -
- * refresh/access/user: populated
- *
- * Response model (includes read-only fields).
- */
-interface OTPVerifyResponse$1 {
-    /** Whether 2FA verification is required */
-    requires_2fa?: boolean;
-    /** 2FA session ID (if requires_2fa is True) */
-    session_id?: string | null;
-    /** JWT refresh token (if requires_2fa is False) */
-    refresh?: string | null;
-    /** JWT access token (if requires_2fa is False) */
-    access?: string | null;
-    user?: User$1 | null;
-    /** Whether user should be prompted to enable 2FA */
-    should_prompt_2fa?: boolean;
-}
 /**
  * Serializer for OTP verification.
  *
@@ -341,6 +320,15 @@ interface OTPVerifyRequest$1 {
     /** Source URL for tracking login (e.g., https://my.djangocfg.com) */
     source_url?: string;
 }
+/**
+ * OTP request response.
+ *
+ * Response model (includes read-only fields).
+ */
+interface OTPRequestResponse$1 {
+    /** Success message */
+    message: string;
+}
 /**
  * Serializer for OTP request.
  *
@@ -353,13 +341,25 @@ interface OTPRequestRequest$1 {
     source_url?: string;
 }
 /**
- * OTP request response.
+ * OTP verification response. When 2FA is required: - requires_2fa: True -
+ * session_id: UUID of 2FA verification session - refresh/access/user: null
+ * When 2FA is not required: - requires_2fa: False - session_id: null -
+ * refresh/access/user: populated
  *
  * Response model (includes read-only fields).
  */
-interface OTPRequestResponse$1 {
-    /** Success message */
-    message: string;
+interface OTPVerifyResponse$1 {
+    /** Whether 2FA verification is required */
+    requires_2fa?: boolean;
+    /** 2FA session ID (if requires_2fa is True) */
+    session_id?: string | null;
+    /** JWT refresh token (if requires_2fa is False) */
+    refresh?: string | null;
+    /** JWT access token (if requires_2fa is False) */
+    access?: string | null;
+    user?: User$1 | null;
+    /** Whether user should be prompted to enable 2FA */
+    should_prompt_2fa?: boolean;
 }
 /**
  * Serializer for user details.

package/dist/hooks.mjs

@@ -713,43 +713,47 @@ var APIClient = class {
       if (error instanceof APIError) {
         throw error;
       }
-      const isCORSError = error instanceof TypeError && (error.message.toLowerCase().includes("cors") || error.message.toLowerCase().includes("failed to fetch") || error.message.toLowerCase().includes("network request failed"));
+      let possiblyCors = false;
+      if (error instanceof TypeError && typeof window !== "undefined") {
+        try {
+          const isCrossOrigin = (() => {
+            try {
+              return new URL(url).origin !== window.location.origin;
+            } catch {
+              return false;
+            }
+          })();
+          if (isCrossOrigin) {
+            const entries = performance.getEntriesByName(url, "resource");
+            if (entries.length > 0) {
+              const last = entries[entries.length - 1];
+              possiblyCors = "responseStatus" in last && last.responseStatus === 0;
+            }
+          }
+        } catch {
+        }
+      }
       if (this.logger) {
-        if (isCORSError) {
-          this.logger.error(`\u{1F6AB} CORS Error: ${method} ${url}`);
-          this.logger.error(`  \u2192 ${error instanceof Error ? error.message : String(error)}`);
-          this.logger.error(`  \u2192 Configure security_domains parameter on the server`);
-        } else {
-          this.logger.error(`\u26A0\uFE0F  Network Error: ${method} ${url}`);
-          this.logger.error(`  \u2192 ${error instanceof Error ? error.message : String(error)}`);
+        this.logger.error(`\u26A0\uFE0F  Network Error: ${method} ${url}`);
+        this.logger.error(`  \u2192 ${error instanceof Error ? error.message : String(error)}`);
+        if (possiblyCors) {
+          this.logger.error(`  \u2192 Possibly blocked by CORS policy (configure CORS on the server)`);
         }
       }
       if (typeof window !== "undefined") {
         try {
-          if (isCORSError) {
-            window.dispatchEvent(new CustomEvent("cors-error", {
-              detail: {
-                url,
-                method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: /* @__PURE__ */ new Date()
-              },
-              bubbles: true,
-              cancelable: false
-            }));
-          } else {
-            window.dispatchEvent(new CustomEvent("network-error", {
-              detail: {
-                url,
-                method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: /* @__PURE__ */ new Date()
-              },
-              bubbles: true,
-              cancelable: false
-            }));
-          }
-        } catch (eventError) {
+          window.dispatchEvent(new CustomEvent("network-error", {
+            detail: {
+              url,
+              method,
+              error: error instanceof Error ? error.message : String(error),
+              possibly_cors: possiblyCors,
+              timestamp: /* @__PURE__ */ new Date()
+            },
+            bubbles: true,
+            cancelable: false
+          }));
+        } catch {
         }
       }
       const networkError = error instanceof Error ? new NetworkError(error.message, url, error) : new NetworkError("Unknown error", url);