@doswiftly/storefront-sdk 16.1.0 → 18.0.0

package/dist/core/cart/cart-recovery.js

@@ -156,11 +156,20 @@ async function acquireCartId(coord, factory) {
  * consumers can wire this directly without the runner factory.
  */
 export async function executeWithCartRecovery(opts) {
-    const { cartClient, cookieStore, operation, ensureCart, cookieMaxAge, onExpired, onSessionExpired } = opts;
+    const { cartClient, cookieStore, operation, ensureCart, cookieMaxAge, onExpired, onSessionExpired, initialCartId, } = opts;
     const coord = opts.recoveryCoordinator ?? createCoordinator();
     const opName = operation.name ?? 'unknown';
     // Phase 0 — ensure cart exists (cookie may be empty on first interaction).
+    // Priority: cookie wins (cross-tab canonical state) → initialCartId seed
+    // (server-known via env / SSO / magic-link / iframe / customer service) →
+    // auto-create fallback through the coordinator. The seed is eagerly written
+    // to the cookie so subsequent reads see a canonical value and the recovery
+    // path (Phase 2a/2b) operates on a known cookie when the seed turns out stale.
     let cartId = cookieStore.get();
+    if (!cartId && initialCartId) {
+        cookieStore.set(initialCartId, cookieMaxAge !== undefined ? { maxAge: cookieMaxAge } : undefined);
+        cartId = initialCartId;
+    }
     if (!cartId) {
         cartId = await acquireCartId(coord, async () => {
             const created = ensureCart ? await ensureCart() : (await cartClient.create()).cart;
@@ -237,7 +246,7 @@ export async function executeWithCartRecovery(opts) {
  * concurrent operations and exposes an `onExpired` listener pattern.
  */
 export function createCartRecoveryRunner(options) {
-    const { cartClient, cookieStore, ensureCart, cookieMaxAge } = options;
+    const { cartClient, cookieStore, ensureCart, cookieMaxAge, initialCartId } = options;
     const coordinator = createCoordinator();
     const expiredListeners = new Set();
     const sessionListeners = new Set();
@@ -271,6 +280,7 @@ export function createCartRecoveryRunner(options) {
                 operation,
                 ensureCart,
                 cookieMaxAge,
+                initialCartId,
                 recoveryCoordinator: coordinator,
                 onExpired: emitExpired,
                 onSessionExpired: emitSessionExpired,
@@ -278,7 +288,14 @@ export function createCartRecoveryRunner(options) {
             return executeWithCartRecovery(internalOpts);
         },
         async getCart() {
-            const cartId = cookieStore.get();
+            // Symmetric with Phase 0 of `execute` — cookie wins, seed fills the gap
+            // and is eagerly promoted to the cookie so the next mutation picks it up
+            // from the canonical source without re-reading the seed.
+            let cartId = cookieStore.get();
+            if (!cartId && initialCartId) {
+                cookieStore.set(initialCartId, cookieMaxAge !== undefined ? { maxAge: cookieMaxAge } : undefined);
+                cartId = initialCartId;
+            }
             if (!cartId)
                 return null;
             try {

package/dist/core/cart/types.d.ts

@@ -93,7 +93,8 @@ export type PaymentSession = PaymentSessionFragment;
 export type DiscountValidationResult = CartValidateDiscountCodeQuery['cartValidateDiscountCode'];
 export type DiscountInfo = NonNullable<DiscountValidationResult['discount']>;
 export type DiscountValidationError = NonNullable<DiscountValidationResult['error']>;
-export type { CartCreateInput, CartLineInput, CartLineUpdateInput, CartBuyerIdentityInput, CartAddressInput, CartAttributeInput, CartCompleteInput, CartApplyGiftCardInput, CartRemoveGiftCardInput, CartSelectPaymentMethodInput, CartSelectShippingMethodInput, CartSetBillingAddressInput, CartSetShippingAddressInput, CartUpdateGiftCardRecipientInput, PaymentCreateInput, ShippingAddressInput, PickupPointInput, DeliveryType, DeliveryEstimate, ShippingCarrier, FreeShippingProgress, PickupPoint, AttributeSelectionInput as CartAttributeSelectionInput, PaymentMethodType, PaymentInitiationFlow, DiscountApplicationType, DiscountErrorCode, CurrencyCode, CountryCode, LanguageCode, ProductTypeEnum, WeightUnit, CartWarningCode, AttributeType, AttributeFillingMode, AttributeBillingMode, AttributeOptionSurchargeType, StorefrontOrderStatus, OrderPaymentStatus, OrderFulfillmentStatus, } from '../generated/operation-types';
+export type { CartCreateInput, CartLineInput, CartLineUpdateInput, CartBuyerIdentityInput, CartAddressInput, CartAttributeInput, CartCompleteInput, CartApplyGiftCardInput, CartRemoveGiftCardInput, CartSelectPaymentMethodInput, CartClearPaymentSelectionInput, CartSelectShippingMethodInput, CartSetBillingAddressInput, CartSetShippingAddressInput, CartUpdateGiftCardRecipientInput, PaymentCreateInput, ShippingAddressInput, PickupPointInput, DeliveryEstimate, ShippingCarrier, FreeShippingProgress, PickupPoint, AttributeSelectionInput as CartAttributeSelectionInput, } from '../generated/operation-types';
+export { DeliveryType, PaymentMethodType, PaymentInitiationFlow, DiscountApplicationType, DiscountErrorCode, CurrencyCode, CountryCode, LanguageCode, ProductTypeEnum, WeightUnit, CartWarningCode, AttributeType, AttributeFillingMode, AttributeBillingMode, AttributeOptionSurchargeType, StorefrontOrderStatus, OrderPaymentStatus, OrderFulfillmentStatus, PaymentProvider, PaymentInstrumentType, PaymentInstrumentDisplayHint, PaymentMethodUnavailableReason, } from '../generated/operation-types';
 /**
  * Machine-readable error code surfaced when `createPayment` fails. The call
  * throws a `StorefrontError` on `userErrors` — read `.userErrors[0].code` off

package/dist/core/cart/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/core/cart/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,KAAK,EACV,YAAY,EACZ,gBAAgB,EAChB,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,EACtB,aAAa,EACb,sBAAsB,EACtB,sBAAsB,EACtB,0BAA0B,EAC1B,gBAAgB,EAChB,yBAAyB,EACzB,wBAAwB,EACxB,8BAA8B,EAC9B,mBAAmB,EACnB,0BAA0B,EAC1B,2BAA2B,EAC3B,iCAAiC,EACjC,aAAa,EACb,sBAAsB,EACtB,6BAA6B,EAC7B,+BAA+B,EAC/B,+BAA+B,EAC/B,qBAAqB,EACrB,iBAAiB,EACjB,+BAA+B,IAAI,qCAAqC,EACzE,MAAM,8BAA8B,CAAC;AAMtC,MAAM,MAAM,KAAK,GAAG,aAAa,CAAC;AAClC,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,MAAM,MAAM,YAAY,GAAG,oBAAoB,CAAC;AAChD,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,+EAA+E;AAC/E,MAAM,MAAM,oBAAoB,GAAG,WAAW,CAAC,sBAAsB,CAAC,QAAQ,CAAC,CAAC,CAAC;AACjF,MAAM,MAAM,kBAAkB,GAAG,0BAA0B,CAAC;AAC5D,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,0FAA0F;AAC1F,MAAM,MAAM,kBAAkB,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;AACvD,MAAM,MAAM,iBAAiB,GAAG,yBAAyB,CAAC;AAC1D,MAAM,MAAM,gBAAgB,GAAG,wBAAwB,CAAC;AACxD,MAAM,MAAM,sBAAsB,GAAG,8BAA8B,CAAC;AACpE,MAAM,MAAM,IAAI,GAAG,YAAY,CAAC;AAChC;;;GAGG;AACH,MAAM,MAAM,WAAW,GAAG,mBAAmB,CAAC;AAC9C,wFAAwF;AACxF,MAAM,MAAM,kBAAkB,GAAG,0BAA0B,CAAC;AAC5D,oFAAoF;AACpF,MAAM,MAAM,mBAAmB,GAAG,2BAA2B,CAAC;AAC9D,kEAAkE;AAClE,MAAM,MAAM,yBAAyB,GAAG,iCAAiC,CAAC;AAC1E;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,qBAAqB,CAAC;AAClD;;;;GAIG;AACH,MAAM,MAAM,uBAAuB,GAAG,+BAA+B,CAAC;AACtE;;;;;GAKG;AACH,MAAM,MAAM,uBAAuB,GAAG,+BAA+B,CAAC;AACtE;;;;;;;;GAQG;AACH,MAAM,MAAM,+BAA+B,GAAG,qCAAqC,CAAC;AACpF;;;;GAIG;AACH,MAAM,MAAM,SAAS,GAAG,iBAAiB,CAAC;AAC1C;;;;;GAKG;AACH,MAAM,MAAM,KAAK,GAAG,aAAa,CAAC;AAClC;;;;GAIG;AACH,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AAMpD,gFAAgF;AAChF,MAAM,MAAM,wBAAwB,GAAG,6BAA6B,CAAC,0BAA0B,CAAC,CAAC;AACjG,MAAM,MAAM,YAAY,GAAG,WAAW,CAAC,wBAAwB,CAAC,UAAU,CAAC,CAAC,CAAC;AAC7E,MAAM,MAAM,uBAAuB,GAAG,WAAW,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC,CAAC;AAMrF,YAAY,EACV,eAAe,EACf,aAAa,EACb,mBAAmB,EACnB,sBAAsB,EACtB,gBAAgB,EAChB,kBAAkB,EAClB,iBAAiB,EACjB,sBAAsB,EACtB,uBAAuB,EACvB,4BAA4B,EAC5B,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,EAC3B,gCAAgC,EAChC,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,YAAY,EAIZ,gBAAgB,EAChB,eAAe,EACf,oBAAoB,EAEpB,WAAW,EAEX,uBAAuB,IAAI,2BAA2B,EAEtD,iBAAiB,EACjB,qBAAqB,EACrB,uBAAuB,EACvB,iBAAiB,EACjB,YAAY,EACZ,WAAW,EACX,YAAY,EACZ,eAAe,EACf,UAAU,EACV,eAAe,EACf,aAAa,EACb,oBAAoB,EACpB,oBAAoB,EACpB,4BAA4B,EAC5B,qBAAqB,EACrB,kBAAkB,EAClB,sBAAsB,GACvB,MAAM,8BAA8B,CAAC;AAMtC;;;;;;GAMG;AACH,MAAM,MAAM,gBAAgB,GACxB,iBAAiB,GACjB,oBAAoB,GACpB,mBAAmB,GACnB,iCAAiC,GACjC,oBAAoB,GACpB,mBAAmB,GACnB,gBAAgB,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/core/cart/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,KAAK,EACV,YAAY,EACZ,gBAAgB,EAChB,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,EACtB,aAAa,EACb,sBAAsB,EACtB,sBAAsB,EACtB,0BAA0B,EAC1B,gBAAgB,EAChB,yBAAyB,EACzB,wBAAwB,EACxB,8BAA8B,EAC9B,mBAAmB,EACnB,0BAA0B,EAC1B,2BAA2B,EAC3B,iCAAiC,EACjC,aAAa,EACb,sBAAsB,EACtB,6BAA6B,EAC7B,+BAA+B,EAC/B,+BAA+B,EAC/B,qBAAqB,EACrB,iBAAiB,EACjB,+BAA+B,IAAI,qCAAqC,EACzE,MAAM,8BAA8B,CAAC;AAMtC,MAAM,MAAM,KAAK,GAAG,aAAa,CAAC;AAClC,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,MAAM,MAAM,YAAY,GAAG,oBAAoB,CAAC;AAChD,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AACpD,+EAA+E;AAC/E,MAAM,MAAM,oBAAoB,GAAG,WAAW,CAAC,sBAAsB,CAAC,QAAQ,CAAC,CAAC,CAAC;AACjF,MAAM,MAAM,kBAAkB,GAAG,0BAA0B,CAAC;AAC5D,MAAM,MAAM,QAAQ,GAAG,gBAAgB,CAAC;AACxC,0FAA0F;AAC1F,MAAM,MAAM,kBAAkB,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;AACvD,MAAM,MAAM,iBAAiB,GAAG,yBAAyB,CAAC;AAC1D,MAAM,MAAM,gBAAgB,GAAG,wBAAwB,CAAC;AACxD,MAAM,MAAM,sBAAsB,GAAG,8BAA8B,CAAC;AACpE,MAAM,MAAM,IAAI,GAAG,YAAY,CAAC;AAChC;;;GAGG;AACH,MAAM,MAAM,WAAW,GAAG,mBAAmB,CAAC;AAC9C,wFAAwF;AACxF,MAAM,MAAM,kBAAkB,GAAG,0BAA0B,CAAC;AAC5D,oFAAoF;AACpF,MAAM,MAAM,mBAAmB,GAAG,2BAA2B,CAAC;AAC9D,kEAAkE;AAClE,MAAM,MAAM,yBAAyB,GAAG,iCAAiC,CAAC;AAC1E;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,qBAAqB,CAAC;AAClD;;;;GAIG;AACH,MAAM,MAAM,uBAAuB,GAAG,+BAA+B,CAAC;AACtE;;;;;GAKG;AACH,MAAM,MAAM,uBAAuB,GAAG,+BAA+B,CAAC;AACtE;;;;;;;;GAQG;AACH,MAAM,MAAM,+BAA+B,GAAG,qCAAqC,CAAC;AACpF;;;;GAIG;AACH,MAAM,MAAM,SAAS,GAAG,iBAAiB,CAAC;AAC1C;;;;;GAKG;AACH,MAAM,MAAM,KAAK,GAAG,aAAa,CAAC;AAClC;;;;GAIG;AACH,MAAM,MAAM,cAAc,GAAG,sBAAsB,CAAC;AAMpD,gFAAgF;AAChF,MAAM,MAAM,wBAAwB,GAAG,6BAA6B,CAAC,0BAA0B,CAAC,CAAC;AACjG,MAAM,MAAM,YAAY,GAAG,WAAW,CAAC,wBAAwB,CAAC,UAAU,CAAC,CAAC,CAAC;AAC7E,MAAM,MAAM,uBAAuB,GAAG,WAAW,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC,CAAC;AAMrF,YAAY,EACV,eAAe,EACf,aAAa,EACb,mBAAmB,EACnB,sBAAsB,EACtB,gBAAgB,EAChB,kBAAkB,EAClB,iBAAiB,EACjB,sBAAsB,EACtB,uBAAuB,EACvB,4BAA4B,EAC5B,8BAA8B,EAC9B,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,EAC3B,gCAAgC,EAChC,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAIhB,gBAAgB,EAChB,eAAe,EACf,oBAAoB,EAEpB,WAAW,EAEX,uBAAuB,IAAI,2BAA2B,GACvD,MAAM,8BAA8B,CAAC;AAQtC,OAAO,EACL,YAAY,EACZ,iBAAiB,EACjB,qBAAqB,EACrB,uBAAuB,EACvB,iBAAiB,EACjB,YAAY,EACZ,WAAW,EACX,YAAY,EACZ,eAAe,EACf,UAAU,EACV,eAAe,EACf,aAAa,EACb,oBAAoB,EACpB,oBAAoB,EACpB,4BAA4B,EAC5B,qBAAqB,EACrB,kBAAkB,EAClB,sBAAsB,EACtB,eAAe,EACf,qBAAqB,EACrB,4BAA4B,EAC5B,8BAA8B,GAC/B,MAAM,8BAA8B,CAAC;AAMtC;;;;;;GAMG;AACH,MAAM,MAAM,gBAAgB,GACxB,iBAAiB,GACjB,oBAAoB,GACpB,mBAAmB,GACnB,iCAAiC,GACjC,oBAAoB,GACpB,mBAAmB,GACnB,gBAAgB,CAAC"}

package/dist/core/cart/types.js

@@ -1 +1,7 @@
-export {};
+// Schema enums — re-exported as VALUES (runtime const + type alias). Storefront
+// devs can `z.enum(Object.values(PaymentMethodType))`, `Object.values(...)`,
+// `Object.keys(...)` for runtime validation, while `import type { X }` still
+// works because the codegen emits a sibling type alias under the same name
+// (`enumsAsConst`). Promoting these from `export type` to plain `export` is
+// strictly additive — no breaking change for existing `import type` consumers.
+export { DeliveryType, PaymentMethodType, PaymentInitiationFlow, DiscountApplicationType, DiscountErrorCode, CurrencyCode, CountryCode, LanguageCode, ProductTypeEnum, WeightUnit, CartWarningCode, AttributeType, AttributeFillingMode, AttributeBillingMode, AttributeOptionSurchargeType, StorefrontOrderStatus, OrderPaymentStatus, OrderFulfillmentStatus, PaymentProvider, PaymentInstrumentType, PaymentInstrumentDisplayHint, PaymentMethodUnavailableReason, } from '../generated/operation-types';

package/dist/core/client/create-client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"create-client.d.ts","sourceRoot":"","sources":["../../../src/core/client/create-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EACV,sBAAsB,EACtB,gBAAgB,EAKjB,MAAM,SAAS,CAAC;AAOjB,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,sBAAsB,GAAG,gBAAgB,CAqGvF"}
+{"version":3,"file":"create-client.d.ts","sourceRoot":"","sources":["../../../src/core/client/create-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EACV,sBAAsB,EACtB,gBAAgB,EAKjB,MAAM,SAAS,CAAC;AAOjB,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,sBAAsB,GAAG,gBAAgB,CA0GvF"}

package/dist/core/client/create-client.js

@@ -10,19 +10,23 @@
  *
  * 0 runtime dependencies.
  */
-import { createExecute } from './execute';
+import { createExecute, resolveDebugOptions } from './execute';
 import { compose } from './compose';
 import { dedupe } from './dedupe';
 import { hashQuery } from './hash';
 import { getOperationName } from './operation-name';
 export function createStorefrontClient(config) {
-    const { apiUrl, shopSlug, defaultHeaders = {}, middleware: initialMiddleware = [], fetch: customFetch = globalThis.fetch, debug = false, } = config;
+    const { apiUrl, shopSlug, defaultHeaders = {}, middleware: initialMiddleware = [], fetch: customFetch = globalThis.fetch, debug, } = config;
     const endpoint = `${apiUrl.replace(/\/$/, '')}/storefront/graphql`;
     // Mutable middleware list — use() adds to it, invalidates compiled pipeline
     const middlewares = [...initialMiddleware];
     let compiledPipeline = null;
+    // Normalise the public `boolean | 'verbose' | DebugOptions` union into the
+    // canonical ResolvedDebugOptions shape (or null = no logging). Env var
+    // fallback (`DOSWIFTLY_SDK_DEBUG`) applies only when `debug` is undefined.
+    const resolvedDebug = resolveDebugOptions(debug);
     // Create the innermost execute function (native fetch)
-    const innerExecute = createExecute({ endpoint, fetch: customFetch, debug });
+    const innerExecute = createExecute({ endpoint, fetch: customFetch, debug: resolvedDebug });
     /**
      * Get or build the compiled middleware pipeline (lazy).
      * Rebuilt on first call and after use() is called.

package/dist/core/client/execute.d.ts

@@ -4,15 +4,41 @@
  * Sends GraphQL POST request, parses response, returns typed GraphQLResponse.
  * Error normalization is handled by error middleware, NOT here.
  */
-import type { GraphQLRequest, GraphQLResponse } from './types';
+import type { DebugEvent, DebugOptions, GraphQLRequest, GraphQLResponse } from './types';
 export interface ExecuteConfig {
     /** GraphQL endpoint URL */
     endpoint: string;
     /** Custom fetch implementation */
     fetch: typeof globalThis.fetch;
-    /** Enable debug logging */
-    debug: boolean;
+    /**
+     * Resolved debug options (null = no logging). Caller is responsible for
+     * normalising the public `boolean | 'verbose' | DebugOptions` config into
+     * this canonical shape via `resolveDebugOptions`.
+     */
+    debug: ResolvedDebugOptions | null;
 }
+/**
+ * Internal canonical form of `DebugOptions` — every flag explicit, `log` always set.
+ * Produced by `resolveDebugOptions` from the public union type.
+ */
+export interface ResolvedDebugOptions {
+    request: boolean;
+    response: boolean;
+    headers: boolean;
+    timing: boolean;
+    userErrors: boolean;
+    log: (event: DebugEvent) => void;
+}
+/**
+ * Normalise the public `debug` config (`boolean | 'verbose' | DebugOptions`)
+ * into a canonical `ResolvedDebugOptions`. `null` means "no logging".
+ *
+ * Env var fallback (`DOSWIFTLY_SDK_DEBUG`) is applied **only** when `input`
+ * is `undefined` — explicit `false` from the consumer wins. Production
+ * fallback is no-op to prevent accidental PII logging through environment
+ * leakage; explicit programmatic `debug` is honoured regardless of env.
+ */
+export declare function resolveDebugOptions(input: boolean | 'verbose' | DebugOptions | undefined): ResolvedDebugOptions | null;
 /**
  * Create the innermost execute function for the middleware pipeline.
  */

package/dist/core/client/execute.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"execute.d.ts","sourceRoot":"","sources":["../../../src/core/client/execute.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,eAAe,EAAoB,MAAM,SAAS,CAAC;AAEjF,MAAM,WAAW,aAAa;IAC5B,2BAA2B;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,kCAAkC;IAClC,KAAK,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAC/B,2BAA2B;IAC3B,KAAK,EAAE,OAAO,CAAC;CAChB;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,MAAM,EAAE,aAAa,IAGnB,SAAS,cAAc,KAAG,OAAO,CAAC,eAAe,CAAC,CAmDjF"}
+{"version":3,"file":"execute.d.ts","sourceRoot":"","sources":["../../../src/core/client/execute.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EACV,UAAU,EACV,YAAY,EAEZ,cAAc,EACd,eAAe,EAChB,MAAM,SAAS,CAAC;AAEjB,MAAM,WAAW,aAAa;IAC5B,2BAA2B;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,kCAAkC;IAClC,KAAK,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAC/B;;;;OAIG;IACH,KAAK,EAAE,oBAAoB,GAAG,IAAI,CAAC;CACpC;AAED;;;GAGG;AACH,MAAM,WAAW,oBAAoB;IACnC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,OAAO,CAAC;IAClB,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,OAAO,CAAC;IAChB,UAAU,EAAE,OAAO,CAAC;IACpB,GAAG,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;CAClC;AAsCD;;;;;;;;GAQG;AACH,wBAAgB,mBAAmB,CACjC,KAAK,EAAE,OAAO,GAAG,SAAS,GAAG,YAAY,GAAG,SAAS,GACpD,oBAAoB,GAAG,IAAI,CAiB7B;AAwFD;;GAEG;AACH,wBAAgB,aAAa,CAAC,MAAM,EAAE,aAAa,IAGnB,SAAS,cAAc,KAAG,OAAO,CAAC,eAAe,CAAC,CAyEjF"}

package/dist/core/client/execute.js

@@ -4,6 +4,153 @@
  * Sends GraphQL POST request, parses response, returns typed GraphQLResponse.
  * Error normalization is handled by error middleware, NOT here.
  */
+const DEFAULT_LOG = (event) => {
+    // Header on a separate line so the data dump below renders untruncated in
+    // both terminals and DevTools.
+    // eslint-disable-next-line no-console
+    console.log('[StorefrontSDK]', event.phase, event.operationName ?? 'anonymous');
+    // `console.dir(obj, { depth: null })` is the cross-runtime escape hatch for
+    // Node's default `util.inspect` depth of 2 — without it, `shippingAddress:
+    // [Object]` and `data: { cart: [Object] }` swallow exactly the payload the
+    // developer turned `verbose` on to see. Browser DevTools ignores the 2nd
+    // argument and renders an interactive drill-down (no `[Object]` problem
+    // there); the options apply where they matter (Node terminal, CI logs).
+    // `colors: false` suppresses ANSI escape codes so log files and CI output
+    // stay grep-friendly. Consumers wiring `pino`/`winston` through
+    // `DebugOptions.log` skip this path entirely and use their own serialiser.
+    // eslint-disable-next-line no-console
+    console.dir(event.data, { depth: null, colors: false });
+};
+const MINIMAL_DEBUG = {
+    request: false,
+    response: false,
+    headers: false,
+    timing: false,
+    userErrors: true,
+    log: DEFAULT_LOG,
+};
+const VERBOSE_DEBUG = {
+    request: true,
+    response: true,
+    headers: true,
+    timing: true,
+    userErrors: true,
+    log: DEFAULT_LOG,
+};
+/**
+ * Normalise the public `debug` config (`boolean | 'verbose' | DebugOptions`)
+ * into a canonical `ResolvedDebugOptions`. `null` means "no logging".
+ *
+ * Env var fallback (`DOSWIFTLY_SDK_DEBUG`) is applied **only** when `input`
+ * is `undefined` — explicit `false` from the consumer wins. Production
+ * fallback is no-op to prevent accidental PII logging through environment
+ * leakage; explicit programmatic `debug` is honoured regardless of env.
+ */
+export function resolveDebugOptions(input) {
+    if (input === undefined) {
+        const env = readEnvDebug();
+        if (env === null)
+            return null;
+        return env === 'verbose' ? VERBOSE_DEBUG : MINIMAL_DEBUG;
+    }
+    if (input === false)
+        return null;
+    if (input === true)
+        return MINIMAL_DEBUG;
+    if (input === 'verbose')
+        return VERBOSE_DEBUG;
+    return {
+        request: input.request ?? false,
+        response: input.response ?? false,
+        headers: input.headers ?? false,
+        timing: input.timing ?? false,
+        userErrors: input.userErrors ?? true,
+        log: input.log ?? DEFAULT_LOG,
+    };
+}
+/**
+ * Read `process.env.DOSWIFTLY_SDK_DEBUG` once per resolve call. Returns
+ * `'verbose'`, `'minimal'`, or `null`. Production environments are no-op —
+ * env-driven debug mode is dev/test only; programmatic `debug` is the
+ * escape hatch when an operator genuinely needs production traces.
+ */
+function readEnvDebug() {
+    // `process` may be undefined in non-Node runtimes (Cloudflare Workers,
+    // some Edge environments) — guard before access.
+    if (typeof process === 'undefined' || !process.env)
+        return null;
+    if (process.env.NODE_ENV === 'production')
+        return null;
+    const raw = process.env.DOSWIFTLY_SDK_DEBUG;
+    if (!raw)
+        return null;
+    const normalized = raw.trim().toLowerCase();
+    if (normalized === 'verbose')
+        return 'verbose';
+    if (normalized === 'true' || normalized === '1' || normalized === 'minimal')
+        return 'minimal';
+    return null;
+}
+/**
+ * Mask `Bearer <token>` payloads inline so logged headers never carry a usable
+ * credential. Preserves the prefix + last-4 to make the diagnostic useful
+ * (token rotation, scope mismatch) without leaking the full value.
+ */
+function redactBearer(value) {
+    return value.replace(/Bearer\s+(\S+)/gi, (_match, token) => `Bearer ***${token.slice(-4)}`);
+}
+/**
+ * Mask known auth cookies (`customerAccessToken`) inside a cookie string —
+ * applies to both `Cookie` request headers and `Set-Cookie` response headers.
+ */
+function redactCookies(value) {
+    return value.replace(/(customerAccessToken)=([^;]+)/gi, (_match, name, token) => `${name}=***${token.slice(-4)}`);
+}
+/**
+ * Apply both bearer + cookie redaction to a single header value. Other
+ * sensitive headers can be added here when new platform contracts emerge.
+ */
+function redactHeaderValue(name, value) {
+    const lower = name.toLowerCase();
+    if (lower === 'authorization')
+        return redactBearer(value);
+    if (lower === 'cookie' || lower === 'set-cookie')
+        return redactCookies(value);
+    return value;
+}
+function redactRequestHeaders(headers) {
+    const out = {};
+    for (const [name, value] of Object.entries(headers)) {
+        out[name] = redactHeaderValue(name, value);
+    }
+    return out;
+}
+function redactResponseHeaders(headers) {
+    const out = {};
+    headers.forEach((value, name) => {
+        out[name] = redactHeaderValue(name, value);
+    });
+    return out;
+}
+/**
+ * Flatten every `userErrors[]` array from top-level mutation payloads into a
+ * single array — the single most useful diagnostic when a mutation throws.
+ * Returns `[]` when the response has no userErrors anywhere.
+ */
+function extractUserErrors(data) {
+    if (!data || typeof data !== 'object')
+        return [];
+    const flat = [];
+    for (const value of Object.values(data)) {
+        if (value && typeof value === 'object') {
+            const candidate = value.userErrors;
+            if (Array.isArray(candidate) && candidate.length > 0) {
+                flat.push(...candidate);
+            }
+        }
+    }
+    return flat;
+}
 /**
  * Create the innermost execute function for the middleware pipeline.
  */
@@ -11,8 +158,14 @@ export function createExecute(config) {
     const { endpoint, fetch: fetchFn, debug } = config;
     return async function execute(request) {
         const { query, variables, headers, signal, operationName } = request;
+        const startedAt = debug?.timing ? Date.now() : 0;
         if (debug) {
-            console.log('[StorefrontSDK]', operationName ?? 'request', { variables });
+            const requestData = { variables };
+            if (debug.request)
+                requestData.query = query;
+            if (debug.headers)
+                requestData.headers = redactRequestHeaders(headers);
+            debug.log({ phase: 'request', operationName, data: requestData });
         }
         const body = { query };
         if (variables && Object.keys(variables).length > 0) {
@@ -39,10 +192,28 @@ export function createExecute(config) {
         });
         const json = await response.json();
         if (debug) {
-            console.log('[StorefrontSDK]', operationName ?? 'response', {
+            const responseData = {
                 status: response.status,
                 hasErrors: !!json.errors?.length,
-            });
+            };
+            if (debug.response) {
+                responseData.data = json.data;
+                responseData.errors = json.errors;
+                if (json.extensions)
+                    responseData.extensions = json.extensions;
+            }
+            if (debug.userErrors) {
+                const flat = extractUserErrors(json.data);
+                if (flat.length > 0)
+                    responseData.userErrors = flat;
+            }
+            if (debug.headers) {
+                responseData.headers = redactResponseHeaders(response.headers);
+            }
+            if (debug.timing) {
+                responseData.durationMs = Date.now() - startedAt;
+            }
+            debug.log({ phase: 'response', operationName, data: responseData });
         }
         return {
             data: json.data,

package/dist/core/client/types.d.ts

@@ -89,6 +89,38 @@ export interface CacheOptions {
     tags?: string[];
 }
 export type CacheStrategy = CacheOptions;
+/**
+ * Granular debug controls. Defaults are minimal so opting into a single
+ * dimension does not flood the console — pass `'verbose'` (or set
+ * `process.env.DOSWIFTLY_SDK_DEBUG=verbose`) to switch every dimension on.
+ *
+ * The shape is intentionally a plain object — no enum / class — so future
+ * additions stay additive (`bodyMaxBytes`, `redact`, `pretty`, …).
+ */
+export interface DebugOptions {
+    /** Log the full GraphQL query document on every request. Default `false` — variables are always logged. */
+    request?: boolean;
+    /** Log the full response body (`data` + `errors` + `extensions`) on every response. Default `false`. */
+    response?: boolean;
+    /** Log request headers (sent) and response headers (received). `Authorization` and `customerAccessToken` are auto-redacted to `***<last4>`. Default `false`. */
+    headers?: boolean;
+    /** Log request duration (`durationMs`) on every response. Default `false`. */
+    timing?: boolean;
+    /** Surface `userErrors[]` from mutation payloads as a flat array on the response log. Default `true` — the most common diagnostic. */
+    userErrors?: boolean;
+    /** Custom logger sink. Default `console.log('[StorefrontSDK]', event.phase, event.operationName, event.data)`. Use for routing into `pino` / `winston`. */
+    log?: (event: DebugEvent) => void;
+}
+/**
+ * Structured event handed to a custom `DebugOptions.log` sink. Stable contract:
+ * `phase` and `operationName` are always present; `data` carries the merged
+ * payload selected by `DebugOptions` flags.
+ */
+export interface DebugEvent {
+    phase: 'request' | 'response';
+    operationName: string | undefined;
+    data: Record<string, unknown>;
+}
 export interface StorefrontClientConfig {
     /** GraphQL API URL (e.g. 'https://api.doswiftly.pl') */
     apiUrl: string;
@@ -100,8 +132,24 @@ export interface StorefrontClientConfig {
     middleware?: Middleware[];
     /** Custom fetch implementation (polyfill, test mocks, edge) */
     fetch?: typeof globalThis.fetch;
-    /** Enable debug logging (request/response in dev) */
-    debug?: boolean;
+    /**
+     * Enable debug logging (request/response in dev).
+     *
+     * Tagged union (backward-compatible):
+     * - `false` / omitted — no logging.
+     * - `true` — minimal logs: operationName + variables on request, status + hasErrors + userErrors on response.
+     *   The exact output is preserved from the v17.1.0 minimal mode.
+     * - `'verbose'` — every dimension on: full query + variables + headers + response body + userErrors + timing.
+     * - `DebugOptions` — granular opt-in per dimension.
+     *
+     * Falls back to `process.env.DOSWIFTLY_SDK_DEBUG` (`'verbose'` / `'true'` / `'1'`) when this prop is
+     * omitted. `NODE_ENV=production` requires an explicit `debug` setting — env-driven verbose mode is
+     * no-op in production to prevent accidental logging of customer PII.
+     *
+     * `Authorization: Bearer …` and `customerAccessToken=…` cookie values are unconditionally redacted
+     * to `***<last4>` whenever headers are logged, regardless of mode.
+     */
+    debug?: boolean | 'verbose' | DebugOptions;
 }
 export interface StorefrontClient {
     /**

package/dist/core/client/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/core/client/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH;;;;;GAKG;AACH,qBAAa,mBAAmB,CAAC,OAAO,GAAG,OAAO,EAAE,UAAU,GAAG,OAAO,CAAE,SAAQ,MAAM;IAIpD,QAAQ,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE;IAH7D,+CAA+C;IAC/C,SAAS,CAAC,EAAE,CAAC,SAAS,EAAE,UAAU,KAAK,OAAO,CAAC;gBAEnC,KAAK,EAAE,MAAM,EAAS,QAAQ,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,YAAA;IAIpD,QAAQ,IAAI,MAAM;CAG5B;AAMD,MAAM,WAAW,cAAc;IAC7B,uCAAuC;IACvC,KAAK,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,iDAAiD;IACjD,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,+DAA+D;IAC/D,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,mCAAmC;IACnC,MAAM,CAAC,EAAE,WAAW,CAAC;IACrB,wDAAwD;IACxD,UAAU,EAAE,OAAO,CAAC;IACpB,8BAA8B;IAC9B,KAAK,CAAC,EAAE,aAAa,CAAC;CACvB;AAED,MAAM,WAAW,eAAe,CAAC,CAAC,GAAG,OAAO;IAC1C,2BAA2B;IAC3B,IAAI,EAAE,CAAC,CAAC;IACR,8BAA8B;IAC9B,MAAM,CAAC,EAAE,gBAAgB,EAAE,CAAC;IAC5B,uBAAuB;IACvB,MAAM,EAAE,MAAM,CAAC;IACf,2BAA2B;IAC3B,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACpD,IAAI,CAAC,EAAE,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAMD,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAMD;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,CAAC,OAAO,EAAE,cAAc,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;AAE9E;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,UAAU,GAAG,CAAC,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,SAAS,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;AAMhG,MAAM,WAAW,YAAY;IAC3B,yBAAyB;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,wCAAwC;IACxC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,iBAAiB;IACjB,IAAI,EAAE,QAAQ,GAAG,SAAS,GAAG,UAAU,CAAC;IACxC,6CAA6C;IAC7C,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;CACjB;AAED,MAAM,MAAM,aAAa,GAAG,YAAY,CAAC;AAMzC,MAAM,WAAW,sBAAsB;IACrC,wDAAwD;IACxD,MAAM,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxC,0BAA0B;IAC1B,UAAU,CAAC,EAAE,UAAU,EAAE,CAAC;IAC1B,+DAA+D;IAC/D,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAChC,qDAAqD;IACrD,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAMD,MAAM,WAAW,gBAAgB;IAC/B;;;;OAIG;IACH,KAAK,CAAC,CAAC,GAAG,OAAO,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5C,QAAQ,EAAE,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,EAC5C,SAAS,CAAC,EAAE,CAAC,EACb,KAAK,CAAC,EAAE,aAAa,GACpB,OAAO,CAAC,CAAC,CAAC,CAAC;IAEd;;;;OAIG;IACH,MAAM,CAAC,CAAC,GAAG,OAAO,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7C,QAAQ,EAAE,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,EAC5C,SAAS,CAAC,EAAE,CAAC,GACZ,OAAO,CAAC,CAAC,CAAC,CAAC;IAEd;;;;OAIG;IACH,GAAG,CAAC,UAAU,EAAE,UAAU,GAAG,IAAI,CAAC;CACnC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/core/client/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH;;;;;GAKG;AACH,qBAAa,mBAAmB,CAAC,OAAO,GAAG,OAAO,EAAE,UAAU,GAAG,OAAO,CAAE,SAAQ,MAAM;IAIpD,QAAQ,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE;IAH7D,+CAA+C;IAC/C,SAAS,CAAC,EAAE,CAAC,SAAS,EAAE,UAAU,KAAK,OAAO,CAAC;gBAEnC,KAAK,EAAE,MAAM,EAAS,QAAQ,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,YAAA;IAIpD,QAAQ,IAAI,MAAM;CAG5B;AAMD,MAAM,WAAW,cAAc;IAC7B,uCAAuC;IACvC,KAAK,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,iDAAiD;IACjD,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,+DAA+D;IAC/D,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,mCAAmC;IACnC,MAAM,CAAC,EAAE,WAAW,CAAC;IACrB,wDAAwD;IACxD,UAAU,EAAE,OAAO,CAAC;IACpB,8BAA8B;IAC9B,KAAK,CAAC,EAAE,aAAa,CAAC;CACvB;AAED,MAAM,WAAW,eAAe,CAAC,CAAC,GAAG,OAAO;IAC1C,2BAA2B;IAC3B,IAAI,EAAE,CAAC,CAAC;IACR,8BAA8B;IAC9B,MAAM,CAAC,EAAE,gBAAgB,EAAE,CAAC;IAC5B,uBAAuB;IACvB,MAAM,EAAE,MAAM,CAAC;IACf,2BAA2B;IAC3B,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACpD,IAAI,CAAC,EAAE,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAMD,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAMD;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,CAAC,OAAO,EAAE,cAAc,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;AAE9E;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,UAAU,GAAG,CAAC,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,SAAS,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;AAMhG,MAAM,WAAW,YAAY;IAC3B,yBAAyB;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,wCAAwC;IACxC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,iBAAiB;IACjB,IAAI,EAAE,QAAQ,GAAG,SAAS,GAAG,UAAU,CAAC;IACxC,6CAA6C;IAC7C,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;CACjB;AAED,MAAM,MAAM,aAAa,GAAG,YAAY,CAAC;AAMzC;;;;;;;GAOG;AACH,MAAM,WAAW,YAAY;IAC3B,2GAA2G;IAC3G,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,wGAAwG;IACxG,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,gKAAgK;IAChK,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,8EAA8E;IAC9E,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,sIAAsI;IACtI,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,2JAA2J;IAC3J,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;CACnC;AAED;;;;GAIG;AACH,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,SAAS,GAAG,UAAU,CAAC;IAC9B,aAAa,EAAE,MAAM,GAAG,SAAS,CAAC;IAClC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAC/B;AAED,MAAM,WAAW,sBAAsB;IACrC,wDAAwD;IACxD,MAAM,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IACjB,uCAAuC;IACvC,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxC,0BAA0B;IAC1B,UAAU,CAAC,EAAE,UAAU,EAAE,CAAC;IAC1B,+DAA+D;IAC/D,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAChC;;;;;;;;;;;;;;;;OAgBG;IACH,KAAK,CAAC,EAAE,OAAO,GAAG,SAAS,GAAG,YAAY,CAAC;CAC5C;AAMD,MAAM,WAAW,gBAAgB;IAC/B;;;;OAIG;IACH,KAAK,CAAC,CAAC,GAAG,OAAO,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5C,QAAQ,EAAE,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,EAC5C,SAAS,CAAC,EAAE,CAAC,EACb,KAAK,CAAC,EAAE,aAAa,GACpB,OAAO,CAAC,CAAC,CAAC,CAAC;IAEd;;;;OAIG;IACH,MAAM,CAAC,CAAC,GAAG,OAAO,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7C,QAAQ,EAAE,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,EAC5C,SAAS,CAAC,EAAE,CAAC,GACZ,OAAO,CAAC,CAAC,CAAC,CAAC;IAEd;;;;OAIG;IACH,GAAG,CAAC,UAAU,EAAE,UAAU,GAAG,IAAI,CAAC;CACnC"}

package/dist/core/errors.d.ts

@@ -39,5 +39,11 @@ export declare const ErrorCodes: {
     readonly GRAPHQL_ERROR: "GRAPHQL_ERROR";
     readonly USER_ERROR: "USER_ERROR";
     readonly NO_DATA: "NO_DATA";
+    /**
+     * The customer session expired and could not be renewed (proactive refresh
+     * failed on tab wake, or a reactive refresh after a 401 also failed). Surfaced
+     * to the consumer so the storefront can prompt re-authentication.
+     */
+    readonly SESSION_EXPIRED: "SESSION_EXPIRED";
 };
 //# sourceMappingURL=errors.d.ts.map

package/dist/core/errors.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/core/errors.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAElE,MAAM,WAAW,sBAAsB;IACrC,2CAA2C;IAC3C,IAAI,EAAE,MAAM,CAAC;IACb,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,8CAA8C;IAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6CAA6C;IAC7C,aAAa,CAAC,EAAE,gBAAgB,EAAE,CAAC;IACnC,0DAA0D;IAC1D,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;IACzB,mCAAmC;IACnC,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,qBAAa,eAAgB,SAAQ,KAAK;IACxC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,aAAa,EAAE,gBAAgB,EAAE,CAAC;IAC3C,QAAQ,CAAC,UAAU,EAAE,SAAS,EAAE,CAAC;gBAErB,OAAO,EAAE,sBAAsB;IAS3C,uEAAuE;IACvE,IAAI,aAAa,IAAI,OAAO,CAE3B;IAED,yDAAyD;IACzD,IAAI,cAAc,IAAI,OAAO,CAE5B;IAED,oCAAoC;IACpC,IAAI,SAAS,IAAI,OAAO,CAEvB;CACF;AAMD,eAAO,MAAM,UAAU;;;;;;;CAOb,CAAC"}
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/core/errors.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAElE,MAAM,WAAW,sBAAsB;IACrC,2CAA2C;IAC3C,IAAI,EAAE,MAAM,CAAC;IACb,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,8CAA8C;IAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6CAA6C;IAC7C,aAAa,CAAC,EAAE,gBAAgB,EAAE,CAAC;IACnC,0DAA0D;IAC1D,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;IACzB,mCAAmC;IACnC,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,qBAAa,eAAgB,SAAQ,KAAK;IACxC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,aAAa,EAAE,gBAAgB,EAAE,CAAC;IAC3C,QAAQ,CAAC,UAAU,EAAE,SAAS,EAAE,CAAC;gBAErB,OAAO,EAAE,sBAAsB;IAS3C,uEAAuE;IACvE,IAAI,aAAa,IAAI,OAAO,CAE3B;IAED,yDAAyD;IACzD,IAAI,cAAc,IAAI,OAAO,CAE5B;IAED,oCAAoC;IACpC,IAAI,SAAS,IAAI,OAAO,CAEvB;CACF;AAMD,eAAO,MAAM,UAAU;;;;;;;IAOrB;;;;OAIG;;CAEK,CAAC"}

package/dist/core/errors.js

@@ -40,4 +40,10 @@ export const ErrorCodes = {
     GRAPHQL_ERROR: 'GRAPHQL_ERROR',
     USER_ERROR: 'USER_ERROR',
     NO_DATA: 'NO_DATA',
+    /**
+     * The customer session expired and could not be renewed (proactive refresh
+     * failed on tab wake, or a reactive refresh after a 401 also failed). Surfaced
+     * to the consumer so the storefront can prompt re-authentication.
+     */
+    SESSION_EXPIRED: 'SESSION_EXPIRED',
 };