@djangocfg/api 2.1.231 → 2.1.233

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@djangocfg/api",
-  "version": "2.1.231",
+  "version": "2.1.233",
   "description": "Auto-generated TypeScript API client with React hooks, SWR integration, and Zod validation for Django REST Framework backends",
   "keywords": [
     "django",
@@ -84,7 +84,7 @@
   "devDependencies": {
     "@types/node": "^24.7.2",
     "@types/react": "^19.1.0",
-    "@djangocfg/typescript-config": "^2.1.231",
+    "@djangocfg/typescript-config": "^2.1.233",
     "next": "^16.0.10",
     "react": "^19.1.0",
     "tsup": "^8.5.0",

package/src/_api/generated/cfg_accounts/accounts/models.ts

@@ -1,27 +1,5 @@
 // @ts-nocheck
 // Auto-generated by DjangoCFG - see CLAUDE.md
-/**
- * OTP verification response. When 2FA is required: - requires_2fa: True -
- * session_id: UUID of 2FA verification session - refresh/access/user: null
- * When 2FA is not required: - requires_2fa: False - session_id: null -
- * refresh/access/user: populated
- * 
- * Response model (includes read-only fields).
- */
-export interface OTPVerifyResponse {
-  /** Whether 2FA verification is required */
-  requires_2fa?: boolean;
-  /** 2FA session ID (if requires_2fa is True) */
-  session_id?: string | null;
-  /** JWT refresh token (if requires_2fa is False) */
-  refresh?: string | null;
-  /** JWT access token (if requires_2fa is False) */
-  access?: string | null;
-  user?: User | null;
-  /** Whether user should be prompted to enable 2FA */
-  should_prompt_2fa?: boolean;
-}
-
 /**
  * Serializer for OTP verification.
  * 
@@ -35,18 +13,6 @@ export interface OTPVerifyRequest {
   source_url?: string;
 }
 
-/**
- * Serializer for OTP request.
- * 
- * Request model (no read-only fields).
- */
-export interface OTPRequestRequest {
-  /** Email address for OTP delivery */
-  identifier: string;
-  /** Source URL for tracking registration (e.g., https://my.djangocfg.com) */
-  source_url?: string;
-}
-
 /**
  * OTP request response.
  * 
@@ -78,6 +44,40 @@ export interface OTPErrorResponse {
   retry_after?: number | null;
 }
 
+/**
+ * Serializer for OTP request.
+ * 
+ * Request model (no read-only fields).
+ */
+export interface OTPRequestRequest {
+  /** Email address for OTP delivery */
+  identifier: string;
+  /** Source URL for tracking registration (e.g., https://my.djangocfg.com) */
+  source_url?: string;
+}
+
+/**
+ * OTP verification response. When 2FA is required: - requires_2fa: True -
+ * session_id: UUID of 2FA verification session - refresh/access/user: null
+ * When 2FA is not required: - requires_2fa: False - session_id: null -
+ * refresh/access/user: populated
+ * 
+ * Response model (includes read-only fields).
+ */
+export interface OTPVerifyResponse {
+  /** Whether 2FA verification is required */
+  requires_2fa?: boolean;
+  /** 2FA session ID (if requires_2fa is True) */
+  session_id?: string | null;
+  /** JWT refresh token (if requires_2fa is False) */
+  refresh?: string | null;
+  /** JWT access token (if requires_2fa is False) */
+  access?: string | null;
+  user?: User | null;
+  /** Whether user should be prompted to enable 2FA */
+  should_prompt_2fa?: boolean;
+}
+
 /**
  * Serializer for user details.
  * 

package/src/_api/generated/cfg_accounts/accounts__oauth/models.ts

@@ -3,27 +3,13 @@
 import * as Enums from "../enums";
 
 /**
- * Request to start OAuth flow.
- * 
- * Request model (no read-only fields).
- */
-export interface OAuthAuthorizeRequestRequest {
-  /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
-  redirect_uri?: string;
-  /** Optional source URL for registration tracking */
-  source_url?: string;
-}
-
-/**
- * Error response for OAuth endpoints.
+ * Response with available OAuth providers.
  * 
  * Response model (includes read-only fields).
  */
-export interface OAuthError {
-  /** Error code */
-  error: string;
-  /** Human-readable error description */
-  error_description?: string;
+export interface OAuthProvidersResponse {
+  /** List of available OAuth providers */
+  providers: Array<Record<string, any>>;
 }
 
 /**
@@ -39,39 +25,27 @@ export interface OAuthDisconnectRequestRequest {
 }
 
 /**
- * Response with available OAuth providers.
+ * Error response for OAuth endpoints.
  * 
  * Response model (includes read-only fields).
  */
-export interface OAuthProvidersResponse {
-  /** List of available OAuth providers */
-  providers: Array<Record<string, any>>;
+export interface OAuthError {
+  /** Error code */
+  error: string;
+  /** Human-readable error description */
+  error_description?: string;
 }
 
 /**
- * Request to complete OAuth flow (callback handler).
+ * Request to start OAuth flow.
  * 
  * Request model (no read-only fields).
  */
-export interface OAuthCallbackRequestRequest {
-  /** Authorization code from OAuth provider callback */
-  code: string;
-  /** State token for CSRF verification (from authorize response) */
-  state: string;
-  /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+export interface OAuthAuthorizeRequestRequest {
+  /** URL to redirect after OAuth authorization. If not provided, uses config's site_url + callback_path */
   redirect_uri?: string;
-}
-
-/**
- * Response with OAuth authorization URL.
- * 
- * Response model (includes read-only fields).
- */
-export interface OAuthAuthorizeResponse {
-  /** Full URL to redirect user to OAuth provider */
-  authorization_url: string;
-  /** State token for CSRF protection. Store this and verify on callback. */
-  state: string;
+  /** Optional source URL for registration tracking */
+  source_url?: string;
 }
 
 /**
@@ -125,3 +99,29 @@ export interface OAuthConnection {
   last_login_at: string;
 }
 
+/**
+ * Response with OAuth authorization URL.
+ * 
+ * Response model (includes read-only fields).
+ */
+export interface OAuthAuthorizeResponse {
+  /** Full URL to redirect user to OAuth provider */
+  authorization_url: string;
+  /** State token for CSRF protection. Store this and verify on callback. */
+  state: string;
+}
+
+/**
+ * Request to complete OAuth flow (callback handler).
+ * 
+ * Request model (no read-only fields).
+ */
+export interface OAuthCallbackRequestRequest {
+  /** Authorization code from OAuth provider callback */
+  code: string;
+  /** State token for CSRF verification (from authorize response) */
+  state: string;
+  /** Same redirect_uri used in authorize request. If not provided, uses config's site_url + callback_path */
+  redirect_uri?: string;
+}
+

package/src/_api/generated/cfg_accounts/accounts__user_profile/models.ts

@@ -5,7 +5,7 @@
  * 
  * Request model (no read-only fields).
  */
-export interface UserProfileUpdateRequest {
+export interface PatchedUserProfileUpdateRequest {
   first_name?: string;
   last_name?: string;
   company?: string;
@@ -14,15 +14,6 @@ export interface UserProfileUpdateRequest {
   language?: string;
 }
 
-/**
- * 
- * Request model (no read-only fields).
- */
-export interface CfgAccountsProfileAvatarCreateRequest {
-  /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
-  avatar: File | Blob;
-}
-
 /**
  * Serializer for user details.
  * 
@@ -54,12 +45,24 @@ export interface User {
   centrifugo: CentrifugoToken | null;
 }
 
+/**
+ * Response serializer for account deletion.
+ * 
+ * Response model (includes read-only fields).
+ */
+export interface AccountDeleteResponse {
+  /** Whether the account was successfully deleted */
+  success: boolean;
+  /** Human-readable message about the deletion */
+  message: string;
+}
+
 /**
  * Serializer for updating user profile.
  * 
  * Request model (no read-only fields).
  */
-export interface PatchedUserProfileUpdateRequest {
+export interface UserProfileUpdateRequest {
   first_name?: string;
   last_name?: string;
   company?: string;
@@ -69,15 +72,12 @@ export interface PatchedUserProfileUpdateRequest {
 }
 
 /**
- * Response serializer for account deletion.
  * 
- * Response model (includes read-only fields).
+ * Request model (no read-only fields).
  */
-export interface AccountDeleteResponse {
-  /** Whether the account was successfully deleted */
-  success: boolean;
-  /** Human-readable message about the deletion */
-  message: string;
+export interface CfgAccountsProfileAvatarCreateRequest {
+  /** Avatar image file (JPEG, PNG, GIF, WebP, max 5MB) */
+  avatar: File | Blob;
 }
 
 /**

package/src/_api/generated/cfg_accounts/client.ts

@@ -251,55 +251,52 @@ export class APIClient {
         throw error;
       }
 
-      // Detect CORS errors and dispatch event
-      const isCORSError = error instanceof TypeError &&
-        (error.message.toLowerCase().includes('cors') ||
-         error.message.toLowerCase().includes('failed to fetch') ||
-         error.message.toLowerCase().includes('network request failed'));
+      // Classify network error using PerformanceResourceTiming.
+      // Browser intentionally makes CORS errors indistinguishable from network failures
+      // (same TypeError: "Failed to fetch") for security reasons. We use PerformanceResourceTiming
+      // as the best available heuristic:
+      //   - Entry exists with responseStatus === 0 → request reached server, JS blocked → likely CORS
+      //   - No entry / entry missing → connection never established → server unavailable / DNS / offline
+      // All cases are dispatched as 'network-error' with a `possibly_cors` flag.
+      let possiblyCors = false;
+      if (error instanceof TypeError && typeof window !== 'undefined') {
+        try {
+          const isCrossOrigin = (() => {
+            try { return new URL(url).origin !== window.location.origin; } catch { return false; }
+          })();
+          if (isCrossOrigin) {
+            const entries = performance.getEntriesByName(url, 'resource');
+            if (entries.length > 0) {
+              const last = entries[entries.length - 1] as PerformanceResourceTiming;
+              possiblyCors = 'responseStatus' in last && (last as any).responseStatus === 0;
+            }
+          }
+        } catch { /* ignore — PerformanceResourceTiming not available */ }
+      }
 
-      // Log specific error type first
       if (this.logger) {
-        if (isCORSError) {
-          this.logger.error(`🚫 CORS Error: ${method} ${url}`);
-          this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
-          this.logger.error(`  → Configure security_domains parameter on the server`);
-        } else {
-          this.logger.error(`⚠️  Network Error: ${method} ${url}`);
-          this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
+        this.logger.error(`⚠️  Network Error: ${method} ${url}`);
+        this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
+        if (possiblyCors) {
+          this.logger.error(`  → Possibly blocked by CORS policy (configure CORS on the server)`);
         }
       }
 
-      // Dispatch browser events
+      // Dispatch network-error event with possibly_cors hint
       if (typeof window !== 'undefined') {
         try {
-          if (isCORSError) {
-            // Dispatch CORS-specific error event
-            window.dispatchEvent(new CustomEvent('cors-error', {
-              detail: {
-                url: url,
-                method: method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: new Date(),
-              },
-              bubbles: true,
-              cancelable: false,
-            }));
-          } else {
-            // Dispatch generic network error event
-            window.dispatchEvent(new CustomEvent('network-error', {
-              detail: {
-                url: url,
-                method: method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: new Date(),
-              },
-              bubbles: true,
-              cancelable: false,
-            }));
-          }
-        } catch (eventError) {
-          // Silently fail - event dispatch should never crash the app
-        }
+          window.dispatchEvent(new CustomEvent('network-error', {
+            detail: {
+              url: url,
+              method: method,
+              error: error instanceof Error ? error.message : String(error),
+              possibly_cors: possiblyCors,
+              timestamp: new Date(),
+            },
+            bubbles: true,
+            cancelable: false,
+          }));
+        } catch { /* silently ignore — event dispatch must never crash the app */ }
       }
 
       // Wrap other errors as NetworkError

package/src/_api/generated/cfg_centrifugo/CLAUDE.md

@@ -11,41 +11,18 @@ python manage.py generate_client --groups cfg_centrifugo --typescript
 | | |
 |---|---|
 | Version | 3.1.0 |
-| Operations | 15 |
-| Schemas | 35 |
+| Operations | 1 |
+| Schemas | 1 |
 
 ## Resources
 
-- **Centrifugo Admin API** (6 ops)
 - **Centrifugo Auth** (1 ops)
-- **Centrifugo Monitoring** (5 ops)
-- **Centrifugo Testing** (3 ops)
 
 ## Operations
 
-**Centrifugo Admin API:**
-- `POST` /cfg/centrifugo/server/auth/token/ → `cfg_centrifugo_server_auth_token_create`
-- `POST` /cfg/centrifugo/server/channels/ → `cfg_centrifugo_server_channels_create`
-- `POST` /cfg/centrifugo/server/history/ → `cfg_centrifugo_server_history_create`
-- `POST` /cfg/centrifugo/server/info/ → `cfg_centrifugo_server_info_create`
-- `POST` /cfg/centrifugo/server/presence/ → `cfg_centrifugo_server_presence_create`
-- `POST` /cfg/centrifugo/server/presence-stats/ → `cfg_centrifugo_server_presence_stats_create`
-
 **Centrifugo Auth:**
 - `GET` /cfg/centrifugo/auth/token/ → `cfg_centrifugo_auth_token_retrieve`
 
-**Centrifugo Monitoring:**
-- `GET` /cfg/centrifugo/monitor/channels/ → `cfg_centrifugo_monitor_channels_retrieve`
-- `GET` /cfg/centrifugo/monitor/health/ → `cfg_centrifugo_monitor_health_retrieve`
-- `GET` /cfg/centrifugo/monitor/overview/ → `cfg_centrifugo_monitor_overview_retrieve`
-- `GET` /cfg/centrifugo/monitor/publishes/ → `cfg_centrifugo_monitor_publishes_list`
-- `GET` /cfg/centrifugo/monitor/timeline/ → `cfg_centrifugo_monitor_timeline_retrieve`
-
-**Centrifugo Testing:**
-- `POST` /cfg/centrifugo/testing/publish-test/ → `cfg_centrifugo_testing_publish_test_create`
-- `POST` /cfg/centrifugo/testing/publish-with-logging/ → `cfg_centrifugo_testing_publish_with_logging_create`
-- `POST` /cfg/centrifugo/testing/send-ack/ → `cfg_centrifugo_testing_send_ack_create`
-
 ## Usage
 
 ```typescript
@@ -54,8 +31,6 @@ import { APIClient } from './';
 const client = new APIClient({ baseUrl, token });
 
 await client.centrifugo auth.retrieve({ id: 1 });
-await client.centrifugo monitoring.list();
-await client.centrifugo monitoring.retrieve({ id: 1 });
 ```
 
 **SWR Hooks:**

package/src/_api/generated/cfg_centrifugo/_utils/fetchers/index.ts

@@ -27,7 +27,4 @@
  * ```
  */
 
-export * from './centrifugo__centrifugo_admin_api'
 export * from './centrifugo__centrifugo_auth'
-export * from './centrifugo__centrifugo_monitoring'
-export * from './centrifugo__centrifugo_testing'

package/src/_api/generated/cfg_centrifugo/_utils/hooks/index.ts

@@ -27,7 +27,4 @@
  * ```
  */
 
-export * from './centrifugo__centrifugo_admin_api'
 export * from './centrifugo__centrifugo_auth'
-export * from './centrifugo__centrifugo_monitoring'
-export * from './centrifugo__centrifugo_testing'

package/src/_api/generated/cfg_centrifugo/_utils/schemas/index.ts

@@ -18,38 +18,4 @@
  * ```
  */
 
-export * from './CentrifugoChannelInfo.schema'
-export * from './CentrifugoChannelsRequestRequest.schema'
-export * from './CentrifugoChannelsResponse.schema'
-export * from './CentrifugoChannelsResult.schema'
-export * from './CentrifugoClientInfo.schema'
-export * from './CentrifugoError.schema'
-export * from './CentrifugoHealthCheck.schema'
-export * from './CentrifugoHistoryRequestRequest.schema'
-export * from './CentrifugoHistoryResponse.schema'
-export * from './CentrifugoHistoryResult.schema'
-export * from './CentrifugoInfoResponse.schema'
-export * from './CentrifugoInfoResult.schema'
-export * from './CentrifugoMetrics.schema'
-export * from './CentrifugoNodeInfo.schema'
-export * from './CentrifugoOverviewStats.schema'
-export * from './CentrifugoPresenceRequestRequest.schema'
-export * from './CentrifugoPresenceResponse.schema'
-export * from './CentrifugoPresenceResult.schema'
-export * from './CentrifugoPresenceStatsRequestRequest.schema'
-export * from './CentrifugoPresenceStatsResponse.schema'
-export * from './CentrifugoPresenceStatsResult.schema'
-export * from './CentrifugoProcess.schema'
-export * from './CentrifugoPublication.schema'
-export * from './CentrifugoStreamPosition.schema'
-export * from './ChannelList.schema'
-export * from './ChannelStats.schema'
 export * from './ConnectionTokenResponse.schema'
-export * from './ManualAckRequestRequest.schema'
-export * from './ManualAckResponse.schema'
-export * from './PaginatedPublishList.schema'
-export * from './Publish.schema'
-export * from './PublishTestRequestRequest.schema'
-export * from './PublishTestResponse.schema'
-export * from './TimelineItem.schema'
-export * from './TimelineResponse.schema'

package/src/_api/generated/cfg_centrifugo/client.ts

@@ -1,7 +1,4 @@
-import { CentrifugoAdminApi } from "./centrifugo__centrifugo_admin_api";
 import { CentrifugoAuth } from "./centrifugo__centrifugo_auth";
-import { CentrifugoMonitoring } from "./centrifugo__centrifugo_monitoring";
-import { CentrifugoTesting } from "./centrifugo__centrifugo_testing";
 import { HttpClientAdapter, FetchAdapter } from "./http";
 import { APIError, NetworkError } from "./errors";
 import { APILogger, type LoggerConfig } from "./logger";
@@ -31,10 +28,7 @@ export class APIClient {
   private tokenGetter: (() => string | null) | null = null;
 
   // Sub-clients
-  public centrifugo_admin_api: CentrifugoAdminApi;
   public centrifugo_auth: CentrifugoAuth;
-  public centrifugo_monitoring: CentrifugoMonitoring;
-  public centrifugo_testing: CentrifugoTesting;
 
   constructor(
     baseUrl: string,
@@ -60,10 +54,7 @@ export class APIClient {
     }
 
     // Initialize sub-clients
-    this.centrifugo_admin_api = new CentrifugoAdminApi(this);
     this.centrifugo_auth = new CentrifugoAuth(this);
-    this.centrifugo_monitoring = new CentrifugoMonitoring(this);
-    this.centrifugo_testing = new CentrifugoTesting(this);
   }
 
   /**
@@ -251,55 +242,52 @@ export class APIClient {
         throw error;
       }
 
-      // Detect CORS errors and dispatch event
-      const isCORSError = error instanceof TypeError &&
-        (error.message.toLowerCase().includes('cors') ||
-         error.message.toLowerCase().includes('failed to fetch') ||
-         error.message.toLowerCase().includes('network request failed'));
+      // Classify network error using PerformanceResourceTiming.
+      // Browser intentionally makes CORS errors indistinguishable from network failures
+      // (same TypeError: "Failed to fetch") for security reasons. We use PerformanceResourceTiming
+      // as the best available heuristic:
+      //   - Entry exists with responseStatus === 0 → request reached server, JS blocked → likely CORS
+      //   - No entry / entry missing → connection never established → server unavailable / DNS / offline
+      // All cases are dispatched as 'network-error' with a `possibly_cors` flag.
+      let possiblyCors = false;
+      if (error instanceof TypeError && typeof window !== 'undefined') {
+        try {
+          const isCrossOrigin = (() => {
+            try { return new URL(url).origin !== window.location.origin; } catch { return false; }
+          })();
+          if (isCrossOrigin) {
+            const entries = performance.getEntriesByName(url, 'resource');
+            if (entries.length > 0) {
+              const last = entries[entries.length - 1] as PerformanceResourceTiming;
+              possiblyCors = 'responseStatus' in last && (last as any).responseStatus === 0;
+            }
+          }
+        } catch { /* ignore — PerformanceResourceTiming not available */ }
+      }
 
-      // Log specific error type first
       if (this.logger) {
-        if (isCORSError) {
-          this.logger.error(`🚫 CORS Error: ${method} ${url}`);
-          this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
-          this.logger.error(`  → Configure security_domains parameter on the server`);
-        } else {
-          this.logger.error(`⚠️  Network Error: ${method} ${url}`);
-          this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
+        this.logger.error(`⚠️  Network Error: ${method} ${url}`);
+        this.logger.error(`  → ${error instanceof Error ? error.message : String(error)}`);
+        if (possiblyCors) {
+          this.logger.error(`  → Possibly blocked by CORS policy (configure CORS on the server)`);
         }
       }
 
-      // Dispatch browser events
+      // Dispatch network-error event with possibly_cors hint
       if (typeof window !== 'undefined') {
         try {
-          if (isCORSError) {
-            // Dispatch CORS-specific error event
-            window.dispatchEvent(new CustomEvent('cors-error', {
-              detail: {
-                url: url,
-                method: method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: new Date(),
-              },
-              bubbles: true,
-              cancelable: false,
-            }));
-          } else {
-            // Dispatch generic network error event
-            window.dispatchEvent(new CustomEvent('network-error', {
-              detail: {
-                url: url,
-                method: method,
-                error: error instanceof Error ? error.message : String(error),
-                timestamp: new Date(),
-              },
-              bubbles: true,
-              cancelable: false,
-            }));
-          }
-        } catch (eventError) {
-          // Silently fail - event dispatch should never crash the app
-        }
+          window.dispatchEvent(new CustomEvent('network-error', {
+            detail: {
+              url: url,
+              method: method,
+              error: error instanceof Error ? error.message : String(error),
+              possibly_cors: possiblyCors,
+              timestamp: new Date(),
+            },
+            bubbles: true,
+            cancelable: false,
+          }));
+        } catch { /* silently ignore — event dispatch must never crash the app */ }
       }
 
       // Wrap other errors as NetworkError