@faststore/api 3.90.0 → 3.91.2

package/dist/esm/src/platforms/vtex/utils/cookies.js.map

@@ -1 +1 @@
-{"version":3,"file":"cookies.js","sourceRoot":"","sources":["../../../../../../src/platforms/vtex/utils/cookies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAA;AAQ9B,MAAM,gCAAgC,GAAG,kBAAkB,CAAA;AAE3D;;;;;;;;;GASG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAC1C,GAA6B,EAC7B,cAAsB,EACtB,EAAE;IACF,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAA;IAE1E,IAAI,WAAW,EAAE,CAAC;QAChB,MAAM,SAAS,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAChC,MAAM,WAAW,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAElC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE;YACjC,KAAK,EAAE,WAAW;YAClB,SAAS,EAAE,cAAc;SAC1B,CAAC,CAAA;IACJ,CAAC;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,GAA6B,EAAE,OAAgB,EAAE,EAAE;IAC3E,OAAO;SACJ,YAAY,EAAE;SACd,OAAO,CAAC,CAAC,cAAc,EAAE,EAAE,CAC1B,4BAA4B,CAAC,GAAG,EAAE,cAAc,CAAC,CAClD,CAAA;AACL,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,cAAc,GACzB,CAAC,GAA6B,EAAE,EAAE,CAAC,CAAC,OAAgB,EAAE,EAAE,CACtD,SAAS,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;AAE3B;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAsB,EAAE,EAAE;IACzD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC;QACzB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,qBAAqB,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAA;IAEvE,IAAI,qBAAqB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvC,OAAO,GAAG,CAAC,OAAO,CAAC,MAAM,CAAA;IAC3B,CAAC;IAED,OAAO,qBAAqB,CAAC,MAAM,CACjC,CAAC,eAAe,EAAE,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC,EAAE,EAAE,CACrE,uBAAuB,CACrB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,CACnB,EACH,GAAG,CAAC,OAAO,CAAC,MAAM,CACnB,CAAA;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,GAAsB,EAAE,EAAE,CACtD,SAAS,UAAU,CACjB,OAAU;IAEV,MAAM,aAAa,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAA;IAE3C,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,OAAO;QACL,GAAG,OAAO;QACV,MAAM,EAAE,aAAa;KACtB,CAAA;AACH,CAAC,CAAA;AAEH,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,OAAe,EAAE,OAAe,EAAE,EAAE;IAChE,MAAM,aAAa,GAAG,KAAK,CAAC,OAAO,CAAC,CAAA;IACpC,MAAM,UAAU,GAAG,aAAa,CAAC,yBAAyB,OAAO,EAAE,CAAC,CAAA;IACpE,OAAO,UAAU,IAAI,EAAE,CAAA;AACzB,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAsB,EAAE,EAAE;IACzD,MAAM,UAAU,GAAG,aAAa,CAAC,GAAG,CAAC,CAAA;IAErC,OAAO,SAAS,aAAa,CAAC,aAAqB,EAAE,OAAe;QAClE,MAAM,OAAO,GAAgB,UAAU,CAAC;YACtC,cAAc,EAAE,kBAAkB;YAClC,kBAAkB,EAAE,aAAa;SAClC,CAAC,CAAA;QAEF,MAAM,qBAAqB,GAAG,aAAa,CACzC,GAAG,EAAE,OAAO,EAAE,MAAM,IAAI,EAAE,EAC1B,OAAO,CACR,CAAA;QACD,OAAO,CAAC,uBAAuB,CAAC,GAAG,qBAAqB,CAAA;QAExD,OAAO,OAAO,CAAA;IAChB,CAAC,CAAA;AACH,CAAC,CAAA;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACrC,eAAuB,EACvB,gBAAwB,EACxB,kBAA0B,EAC1B,EAAE;IACF,MAAM,sBAAsB,GAAG,IAAI,MAAM,CAAC,IAAI,gBAAgB,WAAW,CAAC,CAAA;IAC1E,MAAM,WAAW,GAAG,eAAe,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAA;IAEjE,4DAA4D;IAC5D,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,eAAe,CAAC,OAAO,CAC5B,WAAW,CAAC,CAAC,CAAC,EACd,GAAG,WAAW,CAAC,CAAC,CAAC,IAAI,kBAAkB,EAAE,CAC1C,CAAA;IACH,CAAC;IAED,yDAAyD;IACzD,OAAO,GAAG,eAAe,IAAI,gBAAgB,IAAI,kBAAkB,EAAE,CAAA;AACvE,CAAC,CAAA;AAED,MAAM,UAAU,QAAQ,CAAC,KAAa;IACpC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,CAAA;IACb,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAA;AAC1E,CAAC"}
+{"version":3,"file":"cookies.js","sourceRoot":"","sources":["../../../../../../src/platforms/vtex/utils/cookies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAA;AAQ9B;;;GAGG;AACH,MAAM,gBAAgB,GAAG,CAAC,YAAoB,EAAU,EAAE;IACxD,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,OAAO,YAAY,CAAA;IACrB,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,GAAG,EAAkB,CAAA;IAC3C,MAAM,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IACvC,MAAM,aAAa,GAAa,EAAE,CAAA;IAElC,gEAAgE;IAChE,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE;QACzB,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,EAAE,CAAA;QACnC,IAAI,aAAa,EAAE,CAAC;YAClB,MAAM,UAAU,GAAG,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;YAC7C,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;gBACnB,MAAM,GAAG,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC,EAAE,UAAU,CAAC,CAAA;gBAClD,MAAM,KAAK,GAAG,aAAa,CAAC,SAAS,CAAC,UAAU,GAAG,CAAC,CAAC,CAAA;gBAErD,iEAAiE;gBACjE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;oBACxB,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;gBACzB,CAAC;gBAED,SAAS,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;YAC3B,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,kEAAkE;IAClE,OAAO,aAAa,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AAC9E,CAAC,CAAA;AAED,MAAM,gCAAgC,GAAG,kBAAkB,CAAA;AAE3D;;;;;;;;;GASG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAC1C,GAA6B,EAC7B,cAAsB,EACtB,EAAE;IACF,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAA;IAE1E,IAAI,WAAW,EAAE,CAAC;QAChB,MAAM,SAAS,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAChC,MAAM,WAAW,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAElC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE;YACjC,KAAK,EAAE,WAAW;YAClB,SAAS,EAAE,cAAc;SAC1B,CAAC,CAAA;IACJ,CAAC;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,GAA6B,EAAE,OAAgB,EAAE,EAAE;IAC3E,OAAO;SACJ,YAAY,EAAE;SACd,OAAO,CAAC,CAAC,cAAc,EAAE,EAAE,CAC1B,4BAA4B,CAAC,GAAG,EAAE,cAAc,CAAC,CAClD,CAAA;AACL,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,cAAc,GACzB,CAAC,GAA6B,EAAE,EAAE,CAAC,CAAC,OAAgB,EAAE,EAAE,CACtD,SAAS,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;AAE3B;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAsB,EAAE,EAAE;IACzD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC;QACzB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,2DAA2D;IAC3D,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IAC7D,MAAM,qBAAqB,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAA;IAEvE,IAAI,qBAAqB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvC,OAAO,gBAAgB,CAAA;IACzB,CAAC;IAED,OAAO,qBAAqB,CAAC,MAAM,CACjC,CAAC,eAAe,EAAE,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC,EAAE,EAAE,CACrE,uBAAuB,CACrB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,CACnB,EACH,gBAAgB,CACjB,CAAA;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,GAAsB,EAAE,EAAE,CACtD,SAAS,UAAU,CACjB,OAAU;IAEV,MAAM,aAAa,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAA;IAE3C,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,OAAO;QACL,GAAG,OAAO;QACV,MAAM,EAAE,aAAa;KACtB,CAAA;AACH,CAAC,CAAA;AAEH,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,OAAe,EAAE,OAAe,EAAE,EAAE;IAChE,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAA;IACnD,MAAM,aAAa,GAAG,KAAK,CAAC,iBAAiB,CAAC,CAAA;IAC9C,MAAM,UAAU,GAAG,aAAa,CAAC,yBAAyB,OAAO,EAAE,CAAC,CAAA;IACpE,OAAO,UAAU,IAAI,EAAE,CAAA;AACzB,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAsB,EAAE,EAAE;IACzD,MAAM,UAAU,GAAG,aAAa,CAAC,GAAG,CAAC,CAAA;IAErC,OAAO,SAAS,aAAa,CAAC,aAAqB,EAAE,OAAe;QAClE,MAAM,OAAO,GAAgB,UAAU,CAAC;YACtC,cAAc,EAAE,kBAAkB;YAClC,kBAAkB,EAAE,aAAa;SAClC,CAAC,CAAA;QAEF,MAAM,qBAAqB,GAAG,aAAa,CACzC,GAAG,EAAE,OAAO,EAAE,MAAM,IAAI,EAAE,EAC1B,OAAO,CACR,CAAA;QACD,OAAO,CAAC,uBAAuB,CAAC,GAAG,qBAAqB,CAAA;QAExD,OAAO,OAAO,CAAA;IAChB,CAAC,CAAA;AACH,CAAC,CAAA;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACrC,eAAuB,EACvB,gBAAwB,EACxB,kBAA0B,EAC1B,EAAE;IACF,MAAM,sBAAsB,GAAG,IAAI,MAAM,CAAC,IAAI,gBAAgB,WAAW,CAAC,CAAA;IAC1E,MAAM,WAAW,GAAG,eAAe,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAA;IAEjE,4DAA4D;IAC5D,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,eAAe,CAAC,OAAO,CAC5B,WAAW,CAAC,CAAC,CAAC,EACd,GAAG,WAAW,CAAC,CAAC,CAAC,IAAI,kBAAkB,EAAE,CAC1C,CAAA;IACH,CAAC;IAED,yDAAyD;IACzD,OAAO,GAAG,eAAe,IAAI,gBAAgB,IAAI,kBAAkB,EAAE,CAAA;AACvE,CAAC,CAAA;AAED,MAAM,UAAU,QAAQ,CAAC,KAAa;IACpC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,CAAA;IACb,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAA;AAC1E,CAAC"}

package/dist/esm/src/typeDefs/query.graphql

@@ -216,7 +216,7 @@ type Query {
     """
     locator: [IStoreSelectedFacet!]!
   ): StoreProduct!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the details of a collection based on the collection slug.
@@ -227,7 +227,7 @@ type Query {
     """
     slug: String!
   ): StoreCollection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the result of a product, facet, or suggestion search.
@@ -258,7 +258,7 @@ type Query {
     """
     sponsoredCount: Int
   ): StoreSearchResult!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about all products.
@@ -273,13 +273,13 @@ type Query {
     """
     after: String
   ): StoreProductConnection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about selected products.
   """
   products(productIds: [String!]!): [StoreProduct!]!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about all collections.
@@ -294,7 +294,7 @@ type Query {
     """
     after: String
   ): StoreCollectionConnection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about shipping simulation.
@@ -313,7 +313,7 @@ type Query {
     """
     country: String!
   ): ShippingData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns if there's a redirect for a search.
@@ -350,7 +350,7 @@ type Query {
     """
     salesChannel: String
   ): SellersData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the profile.
@@ -361,7 +361,7 @@ type Query {
     """
     id: String!
   ): Profile
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the total product count information based on a specific location accessible through the VTEX segment cookie.
@@ -372,7 +372,7 @@ type Query {
     """
     term: String
   ): ProductCountResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the Details of an User Order.
@@ -383,7 +383,8 @@ type Query {
     """
     orderId: String!
   ): UserOrderResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the list of Orders that the User can view.
@@ -418,25 +419,29 @@ type Query {
     """
     clientEmail: String
   ): UserOrderListMinimalResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the current user details.
   """
   userDetails: StoreUserDetails!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the account profile information for the current authenticated user (b2b or b2c user).
   """
   accountProfile: StoreAccountProfile!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the user validation.
   """
   validateUser: ValidateUserData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns a list of pickup points near to the given geo coordinates.
@@ -447,7 +452,7 @@ type Query {
     """
     geoCoordinates: IStoreGeoCoordinates
   ): PickupPoints
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 }
 
 type ValidateUserData {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@faststore/api",
-  "version": "3.90.0",
+  "version": "3.91.2",
   "license": "MIT",
   "main": "dist/cjs/src/index.js",
   "typings": "dist/esm/src/index.d.ts",
@@ -73,5 +73,5 @@
   "volta": {
     "extends": "../../package.json"
   },
-  "gitHead": "fab9413bf2e3420f1d15763cda2d9cf8569080b4"
+  "gitHead": "6fa73a4cd395be39afc7e376c45beb3201bc50a9"
 }

package/src/directives/auth.ts

@@ -0,0 +1,34 @@
+import { getDirective, MapperKind, mapSchema } from '@graphql-tools/utils'
+import type { GraphQLSchema } from 'graphql'
+
+import { validateUserAuthentication } from '../platforms/vtex/utils/auth'
+import type { Directive } from './index'
+
+const NAME = 'auth'
+
+const directive: Directive = {
+  typeDefs: `directive @auth on FIELD_DEFINITION`,
+  transformer: (schema: GraphQLSchema) => {
+    return mapSchema(schema, {
+      [MapperKind.OBJECT_FIELD]: (fieldConfig) => {
+        const authDirective = getDirective(schema, fieldConfig, NAME)?.[0]
+
+        if (authDirective) {
+          const originalResolver = fieldConfig.resolve
+
+          fieldConfig.resolve = async (root, args, context, info) => {
+            // Validate user authentication before proceeding with the resolver
+            await validateUserAuthentication(context)
+
+            // Continue with the original resolver
+            return originalResolver?.(root, args, context, info)
+          }
+        }
+
+        return fieldConfig
+      },
+    })
+  },
+}
+
+export default directive

package/src/index.ts

@@ -5,13 +5,18 @@ import {
   getResolvers as getResolversVTEX,
 } from './platforms/vtex'
 import { typeDefs } from './typeDefs'
+import authDirective from './directives/auth'
 import cacheControlDirective from './directives/cacheControl'
 import type { Directive } from './directives'
 import type { Options as OptionsVTEX } from './platforms/vtex'
 
 export * from './__generated__/schema'
 export * from './platforms/errors'
-export { stringify as stringifyCacheControl } from './directives/cacheControl'
+export { default as authDirective } from './directives/auth'
+export {
+  default as cacheControlDirective,
+  stringify as stringifyCacheControl,
+} from './directives/cacheControl'
 export type { CacheControl } from './directives/cacheControl'
 
 export type Options = OptionsVTEX
@@ -23,7 +28,7 @@ const platforms = {
   },
 }
 
-const directives: Directive[] = [cacheControlDirective]
+const directives: Directive[] = [cacheControlDirective, authDirective]
 
 export const getTypeDefs = () => [
   typeDefs,

package/src/platforms/vtex/resolvers/query.ts

@@ -424,14 +424,15 @@ export const Query = {
     { orderId }: QueryUserOrderArgs,
     ctx: Context
   ) => {
-    const {
-      clients: { commerce },
-    } = ctx
-    if (!orderId) {
-      throw new BadRequestError('Missing orderId')
-    }
-
     try {
+      if (!orderId) {
+        throw new BadRequestError('Missing orderId')
+      }
+
+      const {
+        clients: { commerce },
+      } = ctx
+
       const order = await commerce.oms.userOrder({ orderId })
 
       if (!order) {
@@ -530,6 +531,7 @@ export const Query = {
     } = ctx
 
     const orders = await commerce.oms.listUserOrders(filters)
+
     return {
       list: orders.list?.map((order: UserOrderFromList) => ({
         orderId: order.orderId,
@@ -546,23 +548,11 @@ export const Query = {
       paging: orders.paging,
     }
   },
-  validateUser: async (_: unknown, __: unknown, ctx: Context) => {
-    const {
-      clients: { commerce },
-    } = ctx
-
-    // This resolver is used to validate if the user is logged in
-    // and has access to the account area.
-    // If the user is not logged in, it will throw an error.
-    // If the user is logged in, it will return true.
-    try {
-      const response = await commerce.vtexid.validate()
-
-      return {
-        isValid: response.authStatus === 'Success',
-      }
-    } catch (error) {
-      throw new ForbiddenError('You are not allowed to access this resource')
+  validateUser: async (_: unknown, __: unknown, _ctx: Context) => {
+    // Authentication is now handled by @auth directive
+    // If we reach here, validation was successful, otherwise an error would have been thrown
+    return {
+      isValid: true,
     }
   },
   // only b2b users
@@ -571,7 +561,6 @@ export const Query = {
       clients: { commerce },
     } = ctx
 
-    // const params = new URLSearchParams()
     const sessionData = await commerce.session('').catch(() => null)
 
     const shopper = sessionData?.namespaces.shopper ?? null

package/src/platforms/vtex/resolvers/validateSession.ts

@@ -97,9 +97,22 @@ export const validateSession = async (
 
   const jwt = parseJwt(getAuthCookie(headers?.cookie ?? '', account))
 
-  const isRepresentative = jwt?.isRepresentative
-  const customerId = jwt?.customerId
-  const unitId = jwt?.unitId
+  // Validate JWT token if it exists
+  let isValidJwt = false
+  if (jwt) {
+    try {
+      const vtexIdResponse = await clients.commerce.vtexid.validate()
+      isValidJwt = vtexIdResponse?.authStatus?.toLowerCase() === 'success'
+    } catch (error) {
+      console.warn('JWT validation failed:', error)
+      isValidJwt = false
+    }
+  }
+
+  // Only use JWT data if the token is valid
+  const isRepresentative = isValidJwt ? jwt?.isRepresentative : false
+  const customerId = isValidJwt ? jwt?.customerId : undefined
+  const unitId = isValidJwt ? jwt?.unitId : undefined
 
   const sessionData = await clients.commerce
     .session(params.toString())
@@ -164,10 +177,16 @@ export const validateSession = async (
           customerId: authentication?.customerId?.value ?? customerId ?? '',
           unitName: authentication?.unitName?.value ?? '',
           unitId: authentication?.unitId?.value ?? unitId ?? '',
-          firstName: shopper?.firstName?.value ?? '',
-          lastName: shopper?.lastName?.value ?? '',
+          firstName:
+            typeof shopper?.firstName?.value === 'string'
+              ? shopper.firstName.value
+              : '',
+          lastName:
+            typeof shopper?.lastName?.value === 'string'
+              ? shopper.lastName.value
+              : '',
           userName:
-            `${shopper?.firstName?.value ?? ''} ${shopper?.lastName?.value ?? ''}`.trim(),
+            `${typeof shopper?.firstName?.value === 'string' ? shopper.firstName.value : ''} ${typeof shopper?.lastName?.value === 'string' ? shopper.lastName.value : ''}`.trim(),
           userEmail: authentication?.storeUserEmail.value ?? '',
           savedPostalCode: publicData?.postalCode?.value ?? '',
           contractName: contract?.corporateName ?? '',

package/src/platforms/vtex/utils/auth.ts

@@ -1,4 +1,5 @@
-import { ForbiddenError } from '../../..'
+import { ForbiddenError, UnauthorizedError } from '../../..'
+import type { Context } from '../index'
 
 /**
  * Creates a function that adds VTEX API AppKey and AppToken headers to requests.
@@ -25,3 +26,36 @@ export const getWithAppKeyAndToken = () => {
     }
   }
 }
+
+/**
+ * Utility function to validate user authentication
+ * Centralized validation logic for all account-related resolvers
+ */
+export const validateUserAuthentication = async (
+  ctx: Context
+): Promise<void> => {
+  const {
+    clients: { commerce },
+  } = ctx
+
+  try {
+    const validation = await commerce.vtexid.validate()
+
+    if (validation?.authStatus?.toLowerCase() !== 'success') {
+      throw new UnauthorizedError('Authentication required')
+    }
+  } catch (error) {
+    const status = (error as any).extensions?.status ?? (error as any).status
+
+    if (status === 401) {
+      throw new UnauthorizedError('Authentication required')
+    }
+
+    if (status === 403) {
+      throw new ForbiddenError('You are not allowed to access this resource')
+    }
+
+    // For any other error, throw UnauthorizedError as it likely needs token refresh
+    throw new UnauthorizedError('Authentication required')
+  }
+}

package/src/platforms/vtex/utils/cookies.ts

@@ -6,6 +6,42 @@ export interface ContextForCookies {
   storage: Pick<Context['storage'], 'cookies'>
 }
 
+/**
+ * Normalizes cookie string by removing duplicates and keeping the last value for each key
+ * Example: "key1=value1; key2=value2; key1=value3" -> "key2=value2; key1=value3"
+ */
+const normalizeCookies = (cookieString: string): string => {
+  if (!cookieString) {
+    return cookieString
+  }
+
+  const cookieMap = new Map<string, string>()
+  const cookies = cookieString.split(';')
+  const processedKeys: string[] = []
+
+  // Process cookies to build map with last values and track order
+  cookies.forEach((cookie) => {
+    const trimmedCookie = cookie.trim()
+    if (trimmedCookie) {
+      const equalIndex = trimmedCookie.indexOf('=')
+      if (equalIndex > 0) {
+        const key = trimmedCookie.substring(0, equalIndex)
+        const value = trimmedCookie.substring(equalIndex + 1)
+
+        // If this is the first time we see this key, record its position
+        if (!cookieMap.has(key)) {
+          processedKeys.push(key)
+        }
+
+        cookieMap.set(key, value)
+      }
+    }
+  })
+
+  // Rebuild cookie string maintaining the order of first appearance
+  return processedKeys.map((key) => `${key}=${cookieMap.get(key)}`).join('; ')
+}
+
 const MATCH_FIRST_SET_COOKIE_KEY_VALUE = /^([^=]+)=([^;]*)/
 
 /**
@@ -64,10 +100,12 @@ export const getUpdatedCookie = (ctx: ContextForCookies) => {
     return null
   }
 
+  // Normalize cookies to handle duplicates (keep last value)
+  const normalizedCookie = normalizeCookies(ctx.headers.cookie)
   const contextStorageCookies = Array.from(ctx.storage.cookies.entries())
 
   if (contextStorageCookies.length === 0) {
-    return ctx.headers.cookie
+    return normalizedCookie
   }
 
   return contextStorageCookies.reduce(
@@ -77,7 +115,7 @@ export const getUpdatedCookie = (ctx: ContextForCookies) => {
         storageCookieKey,
         storageCookieValue
       ),
-    ctx.headers.cookie
+    normalizedCookie
   )
 }
 
@@ -98,7 +136,8 @@ export const getWithCookie = (ctx: ContextForCookies) =>
   }
 
 export const getAuthCookie = (cookies: string, account: string) => {
-  const parsedCookies = parse(cookies)
+  const normalizedCookies = normalizeCookies(cookies)
+  const parsedCookies = parse(normalizedCookies)
   const authCookie = parsedCookies[`VtexIdclientAutCookie_${account}`]
   return authCookie || ''
 }

package/src/typeDefs/query.graphql

@@ -216,7 +216,7 @@ type Query {
     """
     locator: [IStoreSelectedFacet!]!
   ): StoreProduct!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the details of a collection based on the collection slug.
@@ -227,7 +227,7 @@ type Query {
     """
     slug: String!
   ): StoreCollection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the result of a product, facet, or suggestion search.
@@ -258,7 +258,7 @@ type Query {
     """
     sponsoredCount: Int
   ): StoreSearchResult!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about all products.
@@ -273,13 +273,13 @@ type Query {
     """
     after: String
   ): StoreProductConnection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about selected products.
   """
   products(productIds: [String!]!): [StoreProduct!]!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about all collections.
@@ -294,7 +294,7 @@ type Query {
     """
     after: String
   ): StoreCollectionConnection!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about shipping simulation.
@@ -313,7 +313,7 @@ type Query {
     """
     country: String!
   ): ShippingData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns if there's a redirect for a search.
@@ -350,7 +350,7 @@ type Query {
     """
     salesChannel: String
   ): SellersData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the profile.
@@ -361,7 +361,7 @@ type Query {
     """
     id: String!
   ): Profile
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the total product count information based on a specific location accessible through the VTEX segment cookie.
@@ -372,7 +372,7 @@ type Query {
     """
     term: String
   ): ProductCountResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the Details of an User Order.
@@ -383,7 +383,8 @@ type Query {
     """
     orderId: String!
   ): UserOrderResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the list of Orders that the User can view.
@@ -418,25 +419,29 @@ type Query {
     """
     clientEmail: String
   ): UserOrderListMinimalResult
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the current user details.
   """
   userDetails: StoreUserDetails!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns the account profile information for the current authenticated user (b2b or b2c user).
   """
   accountProfile: StoreAccountProfile!
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns information about the user validation.
   """
   validateUser: ValidateUserData
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @auth
+    @cacheControl(scope: "private", sMaxAge: 300, staleWhileRevalidate: 3600)
 
   """
   Returns a list of pickup points near to the given geo coordinates.
@@ -447,7 +452,7 @@ type Query {
     """
     geoCoordinates: IStoreGeoCoordinates
   ): PickupPoints
-    @cacheControl(scope: "public", sMaxAge: 120, staleWhileRevalidate: 3600)
+    @cacheControl(scope: "public", sMaxAge: 300, staleWhileRevalidate: 3600)
 }
 
 type ValidateUserData {