@every-app/sdk 0.1.13 → 0.1.14

package/src/cloudflare/server/gateway.ts

@@ -1,114 +0,0 @@
-const SERVICE_BINDING_ORIGIN = "http://localhost";
-const APP_TOKEN_HEADER = "x-every-app-token";
-
-interface GatewayFetcher {
-  fetch(input: RequestInfo | URL, init?: RequestInit): Promise<Response>;
-}
-
-interface GatewayEnv {
-  GATEWAY_URL?: string;
-  EVERY_APP_GATEWAY?: GatewayFetcher;
-  GATEWAY_APP_API_TOKEN?: string;
-  APP_TOKEN?: string;
-}
-
-interface FetchGatewayOptions {
-  env: GatewayEnv;
-  /** The URL, path, or Request to send to the gateway. Typically the full URL
-   *  passed by a provider SDK's custom `fetch` override. */
-  url: string | URL | Request;
-  /** Standard `RequestInit` (method, headers, body, etc.) from the provider SDK. */
-  init?: RequestInit;
-}
-
-export function getGatewayUrl(env: GatewayEnv): string {
-  const gatewayUrl = env.GATEWAY_URL?.trim();
-  if (!gatewayUrl) {
-    throw new Error("GATEWAY_URL is required");
-  }
-  return gatewayUrl;
-}
-
-/**
- * Fetch from the gateway proxy, authenticating with the app token.
- *
- * - Strips any existing `Authorization` header (the gateway only accepts
- *   app token auth via `x-every-app-token`).
- * - Requires `GATEWAY_APP_API_TOKEN` (or legacy `APP_TOKEN`) in the env.
- * - Routes via service binding in production, falls back to HTTP in dev.
- */
-export async function fetchGateway({
-  env,
-  url,
-  init,
-}: FetchGatewayOptions): Promise<Response> {
-  const gatewayBaseUrl = getGatewayUrl(env);
-  const resolvedRequest = toRequest(url, init, gatewayBaseUrl);
-  const authenticatedRequest = applyAppTokenAuth(resolvedRequest, env);
-
-  // Use service binding in production for zero-latency internal routing.
-  // In local dev wrangler still exposes the binding object, but the target
-  // service usually isn't running locally, so we skip it and use HTTP fetch.
-  if (import.meta.env.PROD && env.EVERY_APP_GATEWAY) {
-    const url = new URL(authenticatedRequest.url);
-    const bindingUrl = `${SERVICE_BINDING_ORIGIN}${url.pathname}${url.search}`;
-    const bindingRequest = new Request(bindingUrl, authenticatedRequest);
-    return env.EVERY_APP_GATEWAY.fetch(bindingRequest);
-  }
-
-  // HTTP fetch – used in local dev, or as a fallback when no binding exists
-  return fetch(authenticatedRequest);
-}
-
-function applyAppTokenAuth(request: Request, env: GatewayEnv): Request {
-  const gatewayOrigin = new URL(getGatewayUrl(env)).origin;
-  const requestOrigin = new URL(request.url).origin;
-  if (requestOrigin !== gatewayOrigin) {
-    throw new Error(
-      `Refusing to send gateway token to non-gateway origin: ${requestOrigin}`,
-    );
-  }
-
-  const appToken = getGatewayAppApiToken(env);
-  if (!appToken) {
-    throw new Error(
-      "GATEWAY_APP_API_TOKEN is required. Run `npx everyapp app deploy` to provision one.",
-    );
-  }
-
-  const headers = new Headers(request.headers);
-  headers.delete("authorization");
-  headers.set(APP_TOKEN_HEADER, appToken);
-  return new Request(request, { headers });
-}
-
-function getGatewayAppApiToken(env: GatewayEnv): string | null {
-  const configuredToken = env.GATEWAY_APP_API_TOKEN?.trim();
-  if (configuredToken) {
-    return configuredToken;
-  }
-
-  const legacyToken = env.APP_TOKEN?.trim();
-  return legacyToken || null;
-}
-
-function toRequest(
-  input: RequestInfo | URL,
-  init?: RequestInit,
-  baseUrl?: string,
-): Request {
-  if (input instanceof Request) {
-    return init ? new Request(input, init) : input;
-  }
-
-  if (input instanceof URL) {
-    return new Request(input.toString(), init);
-  }
-
-  if (typeof input === "string" && baseUrl && !/^https?:\/\//i.test(input)) {
-    const normalizedPath = input.startsWith("/") ? input : `/${input}`;
-    return new Request(new URL(normalizedPath, baseUrl).toString(), init);
-  }
-
-  return new Request(input, init);
-}

package/src/cloudflare/server/index.ts

@@ -1,2 +0,0 @@
-export { getLocalD1Url } from "../getLocalD1Url.js";
-export { fetchGateway, getGatewayUrl } from "./gateway.js";

package/src/core/authenticatedFetch.ts

@@ -1,54 +0,0 @@
-import {
-  BYPASS_GATEWAY_LOCAL_ONLY_TOKEN,
-  isBypassGatewayLocalOnlyClient,
-} from "../shared/bypassGatewayLocalOnly.js";
-
-interface SessionManager {
-  getToken(): Promise<string>;
-}
-
-interface WindowWithSessionManager extends Window {
-  __embeddedSessionManager?: SessionManager;
-}
-
-/**
- * Gets the current session token from the embedded session manager
- */
-export async function getSessionToken(): Promise<string> {
-  if (isBypassGatewayLocalOnlyClient()) {
-    return BYPASS_GATEWAY_LOCAL_ONLY_TOKEN;
-  }
-
-  const windowWithSession = window as WindowWithSessionManager;
-  const sessionManager = windowWithSession.__embeddedSessionManager;
-
-  if (!sessionManager) {
-    throw new Error("Session manager not available");
-  }
-
-  const token = await sessionManager.getToken();
-
-  if (!token) {
-    throw new Error("No token available");
-  }
-
-  return token;
-}
-
-/**
- * Performs a fetch request with the authorization header automatically added
- */
-export async function authenticatedFetch(
-  input: RequestInfo | URL,
-  init?: RequestInit,
-): Promise<Response> {
-  const token = await getSessionToken();
-
-  const headers = new Headers(init?.headers);
-  headers.set("Authorization", `Bearer ${token}`);
-
-  return fetch(input, {
-    ...init,
-    headers,
-  });
-}

package/src/core/index.ts

@@ -1,12 +0,0 @@
-export {
-  SessionManager,
-  isRunningInIframe,
-  isRunningInReactNativeWebView,
-  detectEnvironment,
-} from "./sessionManager.js";
-export type {
-  SessionManagerConfig,
-  EmbeddedEnvironment,
-} from "./sessionManager.js";
-
-export { authenticatedFetch, getSessionToken } from "./authenticatedFetch.js";