@djangocfg/api 2.1.331 → 2.1.332

package/dist/auth-server.mjs

@@ -348,14 +348,14 @@ var defaultPathSerializer = /* @__PURE__ */ __name(({ path, url: _url }) => {
   return url;
 }, "defaultPathSerializer");
 var getUrl = /* @__PURE__ */ __name(({
-  baseUrl: baseUrl2,
+  baseUrl,
   path,
   query,
   querySerializer,
   url: _url
 }) => {
   const pathUrl = _url.startsWith("/") ? _url : `/${_url}`;
-  let url = (baseUrl2 ?? "") + pathUrl;
+  let url = (baseUrl ?? "") + pathUrl;
   if (path) {
     url = defaultPathSerializer({ path, url });
   }
@@ -386,15 +386,15 @@ function getValidRequestBody(options) {
 __name(getValidRequestBody, "getValidRequestBody");
 
 // src/_api/generated/core/auth.gen.ts
-var getAuthToken = /* @__PURE__ */ __name(async (auth, callback) => {
-  const token = typeof callback === "function" ? await callback(auth) : callback;
+var getAuthToken = /* @__PURE__ */ __name(async (auth2, callback) => {
+  const token = typeof callback === "function" ? await callback(auth2) : callback;
   if (!token) {
     return;
   }
-  if (auth.scheme === "bearer") {
+  if (auth2.scheme === "bearer") {
     return `Bearer ${token}`;
   }
-  if (auth.scheme === "basic") {
+  if (auth2.scheme === "basic") {
     return `Basic ${btoa(token)}`;
   }
   return token;
@@ -483,16 +483,16 @@ var setAuthParams = /* @__PURE__ */ __name(async ({
   security,
   ...options
 }) => {
-  for (const auth of security) {
-    if (checkForExistence(options, auth.name)) {
+  for (const auth2 of security) {
+    if (checkForExistence(options, auth2.name)) {
       continue;
     }
-    const token = await getAuthToken(auth, options.auth);
+    const token = await getAuthToken(auth2, options.auth);
     if (!token) {
       continue;
     }
-    const name = auth.name ?? "Authorization";
-    switch (auth.in) {
+    const name = auth2.name ?? "Authorization";
+    switch (auth2.in) {
       case "query":
         if (!options.query) {
           options.query = {};
@@ -820,41 +820,206 @@ var createClient = /* @__PURE__ */ __name((config = {}) => {
 // src/_api/generated/client.gen.ts
 var client = createClient(createConfig({ baseUrl: "http://localhost:8000" }));
 
-// src/_api/generated/helpers/storage.ts
-var LocalStorageAdapter = class {
-  static {
-    __name(this, "LocalStorageAdapter");
-  }
-  getItem(key) {
-    if (typeof window === "undefined") return null;
+// src/_api/generated/helpers/auth.ts
+var ACCESS_KEY = "cfg.access_token";
+var REFRESH_KEY = "cfg.refresh_token";
+var API_KEY_KEY = "cfg.api_key";
+var isBrowser = typeof window !== "undefined";
+var localStorageBackend = {
+  get(key) {
+    if (!isBrowser) return null;
     try {
       return window.localStorage.getItem(key);
     } catch {
       return null;
     }
-  }
-  setItem(key, value) {
-    if (typeof window === "undefined") return;
+  },
+  set(key, value) {
+    if (!isBrowser) return;
     try {
-      window.localStorage.setItem(key, value);
+      if (value === null) window.localStorage.removeItem(key);
+      else window.localStorage.setItem(key, value);
     } catch {
     }
   }
-  removeItem(key) {
-    if (typeof window === "undefined") return;
+};
+var COOKIE_MAX_AGE = 60 * 60 * 24 * 30;
+var cookieBackend = {
+  get(key) {
+    if (!isBrowser) return null;
     try {
-      window.localStorage.removeItem(key);
+      const re = new RegExp(`(?:^|;\\s*)${encodeURIComponent(key)}=([^;]*)`);
+      const m = document.cookie.match(re);
+      return m ? decodeURIComponent(m[1]) : null;
     } catch {
+      return null;
     }
-  }
-  clear() {
-    if (typeof window === "undefined") return;
+  },
+  set(key, value) {
+    if (!isBrowser) return;
     try {
-      window.localStorage.clear();
+      const k = encodeURIComponent(key);
+      const secure = window.location.protocol === "https:" ? "; Secure" : "";
+      if (value === null) {
+        document.cookie = `${k}=; Path=/; Max-Age=0; SameSite=Lax${secure}`;
+      } else {
+        const v = encodeURIComponent(value);
+        document.cookie = `${k}=${v}; Path=/; Max-Age=${COOKIE_MAX_AGE}; SameSite=Lax${secure}`;
+      }
     } catch {
     }
   }
 };
+var _storage = localStorageBackend;
+var _storageMode = "localStorage";
+function detectLocale() {
+  try {
+    if (typeof document !== "undefined") {
+      const m = document.cookie.match(/(?:^|;\s*)NEXT_LOCALE=([^;]*)/);
+      if (m) return decodeURIComponent(m[1]);
+    }
+    if (typeof navigator !== "undefined" && navigator.language) {
+      return navigator.language;
+    }
+  } catch {
+  }
+  return null;
+}
+__name(detectLocale, "detectLocale");
+function defaultBaseUrl() {
+  try {
+    if (typeof process !== "undefined" && process.env) {
+      if (process.env.NEXT_PUBLIC_STATIC_BUILD === "true") return "";
+      return process.env.NEXT_PUBLIC_API_URL || "";
+    }
+  } catch {
+  }
+  return "";
+}
+__name(defaultBaseUrl, "defaultBaseUrl");
+function defaultApiKey() {
+  try {
+    if (typeof process !== "undefined" && process.env?.NEXT_PUBLIC_API_KEY) {
+      return process.env.NEXT_PUBLIC_API_KEY;
+    }
+  } catch {
+  }
+  return null;
+}
+__name(defaultApiKey, "defaultApiKey");
+var _localeOverride = null;
+var _apiKeyOverride = null;
+var _baseUrlOverride = null;
+var _withCredentials = true;
+var _onUnauthorized = null;
+var auth = {
+  // ── Storage mode ──────────────────────────────────────────────────
+  getStorageMode() {
+    return _storageMode;
+  },
+  /**
+   * Switch the storage backend. Existing values in the *previous*
+   * backend are NOT migrated — set fresh values after switching.
+   */
+  setStorageMode(mode) {
+    _storageMode = mode;
+    _storage = mode === "cookie" ? cookieBackend : localStorageBackend;
+  },
+  // ── Bearer token ──────────────────────────────────────────────────
+  getToken() {
+    return _storage.get(ACCESS_KEY);
+  },
+  setToken(token) {
+    _storage.set(ACCESS_KEY, token);
+  },
+  getRefreshToken() {
+    return _storage.get(REFRESH_KEY);
+  },
+  setRefreshToken(token) {
+    _storage.set(REFRESH_KEY, token);
+  },
+  clearTokens() {
+    _storage.set(ACCESS_KEY, null);
+    _storage.set(REFRESH_KEY, null);
+  },
+  isAuthenticated() {
+    return _storage.get(ACCESS_KEY) !== null;
+  },
+  // ── API key ───────────────────────────────────────────────────────
+  /** In-memory API key. Falls back to storage, then NEXT_PUBLIC_API_KEY. */
+  getApiKey() {
+    return _apiKeyOverride ?? _storage.get(API_KEY_KEY) ?? defaultApiKey();
+  },
+  /** In-memory only (cleared on reload). */
+  setApiKey(key) {
+    _apiKeyOverride = key;
+  },
+  /** Persist to active storage backend (localStorage or cookie). */
+  setApiKeyPersist(key) {
+    _apiKeyOverride = key;
+    _storage.set(API_KEY_KEY, key);
+  },
+  clearApiKey() {
+    _apiKeyOverride = null;
+    _storage.set(API_KEY_KEY, null);
+  },
+  // ── Locale ────────────────────────────────────────────────────────
+  /** Override locale → falls back to NEXT_LOCALE cookie / navigator.language. */
+  getLocale() {
+    return _localeOverride ?? detectLocale();
+  },
+  setLocale(locale) {
+    _localeOverride = locale;
+  },
+  // ── Base URL ──────────────────────────────────────────────────────
+  getBaseUrl() {
+    const url = _baseUrlOverride ?? defaultBaseUrl();
+    return url.replace(/\/$/, "");
+  },
+  setBaseUrl(url) {
+    _baseUrlOverride = url ? url.replace(/\/$/, "") : null;
+    client.setConfig({ baseUrl: this.getBaseUrl() });
+  },
+  // ── Credentials toggle (Django session/CSRF cross-origin) ─────────
+  getWithCredentials() {
+    return _withCredentials;
+  },
+  setWithCredentials(value) {
+    _withCredentials = value;
+    client.setConfig({ credentials: value ? "include" : "same-origin" });
+  },
+  // ── 401 handler ───────────────────────────────────────────────────
+  /**
+   * Register a callback fired on every 401 response. Use this to wire
+   * a token-refresh flow or a forced logout. Setting `null` removes
+   * the handler.
+   */
+  onUnauthorized(cb) {
+    _onUnauthorized = cb;
+  }
+};
+client.setConfig({
+  baseUrl: auth.getBaseUrl(),
+  credentials: _withCredentials ? "include" : "same-origin"
+});
+client.interceptors.request.use((request) => {
+  const token = auth.getToken();
+  if (token) request.headers.set("Authorization", `Bearer ${token}`);
+  const locale = auth.getLocale();
+  if (locale) request.headers.set("Accept-Language", locale);
+  const apiKey = auth.getApiKey();
+  if (apiKey) request.headers.set("X-API-Key", apiKey);
+  return request;
+});
+client.interceptors.response.use((response) => {
+  if (response.status === 401 && _onUnauthorized) {
+    try {
+      _onUnauthorized(response);
+    } catch {
+    }
+  }
+  return response;
+});
 
 // src/_api/generated/helpers/logger.ts
 import { createConsola } from "consola";
@@ -951,275 +1116,171 @@ var APILogger = class {
 var defaultLogger = new APILogger();
 
 // src/_api/generated/_cfg_accounts/api.ts
-var ACCESS_KEY = "cfg.access_token";
-var REFRESH_KEY = "cfg.refresh_token";
-function detectLocale() {
-  try {
-    if (typeof document !== "undefined") {
-      const m = document.cookie.match(/(?:^|;\s*)NEXT_LOCALE=([^;]*)/);
-      if (m) return decodeURIComponent(m[1]);
-    }
-    if (typeof navigator !== "undefined" && navigator.language) {
-      return navigator.language;
-    }
-  } catch {
-  }
-  return null;
-}
-__name(detectLocale, "detectLocale");
 var API = class {
   static {
     __name(this, "API");
   }
-  baseUrl;
-  storage;
-  locale;
-  apiKey;
   logger;
-  constructor(baseUrl2, opts = {}) {
-    this.baseUrl = baseUrl2.replace(/\/$/, "");
-    this.storage = opts.storage ?? new LocalStorageAdapter();
+  constructor(_baseUrl, opts = {}) {
     this.logger = new APILogger(opts.logger);
-    this.locale = opts.locale ?? null;
-    this.apiKey = opts.apiKey ?? (typeof process !== "undefined" ? process.env?.NEXT_PUBLIC_API_KEY ?? null : null);
-    const credentials = opts.withCredentials ?? true ? "include" : "same-origin";
-    client.setConfig({ baseUrl: this.baseUrl, credentials });
-    client.interceptors.request.use((request) => {
-      const access = this.getToken();
-      if (access) request.headers.set("Authorization", `Bearer ${access}`);
-      const locale = this.locale ?? detectLocale();
-      if (locale) request.headers.set("Accept-Language", locale);
-      if (this.apiKey) request.headers.set("X-API-Key", this.apiKey);
-      return request;
-    });
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
   }
   // ── Base URL ────────────────────────────────────────────────────────────
   getBaseUrl() {
-    return this.baseUrl;
+    return auth.getBaseUrl();
   }
   setBaseUrl(url) {
-    this.baseUrl = url.replace(/\/$/, "");
-    client.setConfig({ baseUrl: this.baseUrl });
+    auth.setBaseUrl(url);
   }
   // ── Tokens ──────────────────────────────────────────────────────────────
   getToken() {
-    return this.storage.getItem(ACCESS_KEY);
+    return auth.getToken();
   }
   setToken(token) {
-    if (token) this.storage.setItem(ACCESS_KEY, token);
-    else this.storage.removeItem(ACCESS_KEY);
+    auth.setToken(token);
   }
   getRefreshToken() {
-    return this.storage.getItem(REFRESH_KEY);
+    return auth.getRefreshToken();
   }
   setRefreshToken(token) {
-    if (token) this.storage.setItem(REFRESH_KEY, token);
-    else this.storage.removeItem(REFRESH_KEY);
+    auth.setRefreshToken(token);
   }
   clearToken() {
-    this.storage.removeItem(ACCESS_KEY);
-    this.storage.removeItem(REFRESH_KEY);
+    auth.clearTokens();
   }
   isAuthenticated() {
-    return this.getToken() !== null;
+    return auth.isAuthenticated();
   }
   // ── Locale / API key ────────────────────────────────────────────────────
   getLocale() {
-    return this.locale ?? detectLocale();
+    return auth.getLocale();
   }
   setLocale(locale) {
-    this.locale = locale;
+    auth.setLocale(locale);
   }
   getApiKey() {
-    return this.apiKey;
+    return auth.getApiKey();
   }
   setApiKey(key) {
-    this.apiKey = key;
+    auth.setApiKey(key);
   }
 };
 
 // src/_api/generated/_cfg_centrifugo/api.ts
-var ACCESS_KEY2 = "cfg.access_token";
-var REFRESH_KEY2 = "cfg.refresh_token";
-function detectLocale2() {
-  try {
-    if (typeof document !== "undefined") {
-      const m = document.cookie.match(/(?:^|;\s*)NEXT_LOCALE=([^;]*)/);
-      if (m) return decodeURIComponent(m[1]);
-    }
-    if (typeof navigator !== "undefined" && navigator.language) {
-      return navigator.language;
-    }
-  } catch {
-  }
-  return null;
-}
-__name(detectLocale2, "detectLocale");
 var API2 = class {
   static {
     __name(this, "API");
   }
-  baseUrl;
-  storage;
-  locale;
-  apiKey;
   logger;
-  constructor(baseUrl2, opts = {}) {
-    this.baseUrl = baseUrl2.replace(/\/$/, "");
-    this.storage = opts.storage ?? new LocalStorageAdapter();
+  constructor(_baseUrl, opts = {}) {
     this.logger = new APILogger(opts.logger);
-    this.locale = opts.locale ?? null;
-    this.apiKey = opts.apiKey ?? (typeof process !== "undefined" ? process.env?.NEXT_PUBLIC_API_KEY ?? null : null);
-    const credentials = opts.withCredentials ?? true ? "include" : "same-origin";
-    client.setConfig({ baseUrl: this.baseUrl, credentials });
-    client.interceptors.request.use((request) => {
-      const access = this.getToken();
-      if (access) request.headers.set("Authorization", `Bearer ${access}`);
-      const locale = this.locale ?? detectLocale2();
-      if (locale) request.headers.set("Accept-Language", locale);
-      if (this.apiKey) request.headers.set("X-API-Key", this.apiKey);
-      return request;
-    });
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
   }
   // ── Base URL ────────────────────────────────────────────────────────────
   getBaseUrl() {
-    return this.baseUrl;
+    return auth.getBaseUrl();
   }
   setBaseUrl(url) {
-    this.baseUrl = url.replace(/\/$/, "");
-    client.setConfig({ baseUrl: this.baseUrl });
+    auth.setBaseUrl(url);
   }
   // ── Tokens ──────────────────────────────────────────────────────────────
   getToken() {
-    return this.storage.getItem(ACCESS_KEY2);
+    return auth.getToken();
   }
   setToken(token) {
-    if (token) this.storage.setItem(ACCESS_KEY2, token);
-    else this.storage.removeItem(ACCESS_KEY2);
+    auth.setToken(token);
   }
   getRefreshToken() {
-    return this.storage.getItem(REFRESH_KEY2);
+    return auth.getRefreshToken();
   }
   setRefreshToken(token) {
-    if (token) this.storage.setItem(REFRESH_KEY2, token);
-    else this.storage.removeItem(REFRESH_KEY2);
+    auth.setRefreshToken(token);
   }
   clearToken() {
-    this.storage.removeItem(ACCESS_KEY2);
-    this.storage.removeItem(REFRESH_KEY2);
+    auth.clearTokens();
   }
   isAuthenticated() {
-    return this.getToken() !== null;
+    return auth.isAuthenticated();
   }
   // ── Locale / API key ────────────────────────────────────────────────────
   getLocale() {
-    return this.locale ?? detectLocale2();
+    return auth.getLocale();
   }
   setLocale(locale) {
-    this.locale = locale;
+    auth.setLocale(locale);
   }
   getApiKey() {
-    return this.apiKey;
+    return auth.getApiKey();
   }
   setApiKey(key) {
-    this.apiKey = key;
+    auth.setApiKey(key);
   }
 };
 
 // src/_api/generated/_cfg_totp/api.ts
-var ACCESS_KEY3 = "cfg.access_token";
-var REFRESH_KEY3 = "cfg.refresh_token";
-function detectLocale3() {
-  try {
-    if (typeof document !== "undefined") {
-      const m = document.cookie.match(/(?:^|;\s*)NEXT_LOCALE=([^;]*)/);
-      if (m) return decodeURIComponent(m[1]);
-    }
-    if (typeof navigator !== "undefined" && navigator.language) {
-      return navigator.language;
-    }
-  } catch {
-  }
-  return null;
-}
-__name(detectLocale3, "detectLocale");
 var API3 = class {
   static {
     __name(this, "API");
   }
-  baseUrl;
-  storage;
-  locale;
-  apiKey;
   logger;
-  constructor(baseUrl2, opts = {}) {
-    this.baseUrl = baseUrl2.replace(/\/$/, "");
-    this.storage = opts.storage ?? new LocalStorageAdapter();
+  constructor(_baseUrl, opts = {}) {
     this.logger = new APILogger(opts.logger);
-    this.locale = opts.locale ?? null;
-    this.apiKey = opts.apiKey ?? (typeof process !== "undefined" ? process.env?.NEXT_PUBLIC_API_KEY ?? null : null);
-    const credentials = opts.withCredentials ?? true ? "include" : "same-origin";
-    client.setConfig({ baseUrl: this.baseUrl, credentials });
-    client.interceptors.request.use((request) => {
-      const access = this.getToken();
-      if (access) request.headers.set("Authorization", `Bearer ${access}`);
-      const locale = this.locale ?? detectLocale3();
-      if (locale) request.headers.set("Accept-Language", locale);
-      if (this.apiKey) request.headers.set("X-API-Key", this.apiKey);
-      return request;
-    });
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
   }
   // ── Base URL ────────────────────────────────────────────────────────────
   getBaseUrl() {
-    return this.baseUrl;
+    return auth.getBaseUrl();
   }
   setBaseUrl(url) {
-    this.baseUrl = url.replace(/\/$/, "");
-    client.setConfig({ baseUrl: this.baseUrl });
+    auth.setBaseUrl(url);
   }
   // ── Tokens ──────────────────────────────────────────────────────────────
   getToken() {
-    return this.storage.getItem(ACCESS_KEY3);
+    return auth.getToken();
   }
   setToken(token) {
-    if (token) this.storage.setItem(ACCESS_KEY3, token);
-    else this.storage.removeItem(ACCESS_KEY3);
+    auth.setToken(token);
   }
   getRefreshToken() {
-    return this.storage.getItem(REFRESH_KEY3);
+    return auth.getRefreshToken();
   }
   setRefreshToken(token) {
-    if (token) this.storage.setItem(REFRESH_KEY3, token);
-    else this.storage.removeItem(REFRESH_KEY3);
+    auth.setRefreshToken(token);
   }
   clearToken() {
-    this.storage.removeItem(ACCESS_KEY3);
-    this.storage.removeItem(REFRESH_KEY3);
+    auth.clearTokens();
   }
   isAuthenticated() {
-    return this.getToken() !== null;
+    return auth.isAuthenticated();
   }
   // ── Locale / API key ────────────────────────────────────────────────────
   getLocale() {
-    return this.locale ?? detectLocale3();
+    return auth.getLocale();
   }
   setLocale(locale) {
-    this.locale = locale;
+    auth.setLocale(locale);
   }
   getApiKey() {
-    return this.apiKey;
+    return auth.getApiKey();
   }
   setApiKey(key) {
-    this.apiKey = key;
+    auth.setApiKey(key);
   }
 };
 
 // src/_api/generated/index.ts
-var isStaticBuild = process.env.NEXT_PUBLIC_STATIC_BUILD === "true";
-var baseUrl = isStaticBuild ? "" : process.env.NEXT_PUBLIC_API_URL || "";
-var CfgAccountsApi = new API(baseUrl, { storage: new LocalStorageAdapter() });
-var CfgCentrifugoApi = new API2(baseUrl, { storage: new LocalStorageAdapter() });
-var CfgTotpApi = new API3(baseUrl, { storage: new LocalStorageAdapter() });
+var CfgAccountsApi = new API();
+var CfgCentrifugoApi = new API2();
+var CfgTotpApi = new API3();
 
 // src/_api/generated/sdk.gen.ts
 var Auth = class {
@@ -1248,8 +1309,8 @@ import { createConsola as createConsola2 } from "consola";
 var isDev = process.env.NODE_ENV === "development";
 
 // src/auth/utils/logger.ts
-var isStaticBuild2 = process.env.NEXT_PUBLIC_STATIC_BUILD === "true";
-var showLogs = isDev || isStaticBuild2;
+var isStaticBuild = process.env.NEXT_PUBLIC_STATIC_BUILD === "true";
+var showLogs = isDev || isStaticBuild;
 var logger = createConsola2({
   level: showLogs ? 4 : 1
   // dev: debug, production: errors only