@freshjuice/zest 0.1.0 → 1.0.0

package/src/core/script-blocker.js

@@ -0,0 +1,308 @@
+/**
+ * Script Blocker - Blocks and manages consent-gated scripts
+ *
+ * Modes:
+ * - manual: Only blocks scripts with data-consent-category attribute
+ * - safe: Manual + known major trackers (Google, Facebook, etc.)
+ * - strict: Safe + extended tracker list (Hotjar, Mixpanel, etc.)
+ * - doomsday: Block ALL third-party scripts
+ */
+
+import { getCategoryForScript, isThirdParty } from './known-trackers.js';
+
+// Queue for blocked scripts
+const scriptQueue = [];
+
+// MutationObserver instance
+let observer = null;
+
+// Current blocking mode
+let blockingMode = 'safe';
+
+// Custom blocked domains (user-defined)
+let customBlockedDomains = [];
+
+// Reference to consent checker function
+let checkConsent = () => false;
+
+/**
+ * Set the consent checker function
+ */
+export function setConsentChecker(fn) {
+  checkConsent = fn;
+}
+
+/**
+ * Set blocking mode
+ */
+export function setBlockingMode(mode) {
+  blockingMode = mode;
+}
+
+/**
+ * Set custom blocked domains
+ */
+export function setCustomBlockedDomains(domains) {
+  customBlockedDomains = domains || [];
+}
+
+/**
+ * Get queued scripts
+ */
+export function getScriptQueue() {
+  return [...scriptQueue];
+}
+
+/**
+ * Clear the script queue
+ */
+export function clearScriptQueue() {
+  scriptQueue.length = 0;
+}
+
+/**
+ * Check if script URL matches custom blocked domains
+ */
+function matchesCustomDomains(url) {
+  if (!url || customBlockedDomains.length === 0) return null;
+
+  try {
+    const hostname = new URL(url).hostname.toLowerCase();
+
+    for (const entry of customBlockedDomains) {
+      const domain = typeof entry === 'string' ? entry : entry.domain;
+      const category = typeof entry === 'string' ? 'marketing' : (entry.category || 'marketing');
+
+      if (hostname === domain || hostname.endsWith('.' + domain)) {
+        return category;
+      }
+    }
+  } catch (e) {
+    // Invalid URL
+  }
+
+  return null;
+}
+
+/**
+ * Determine if a script should be blocked and get its category
+ */
+function getScriptBlockCategory(script) {
+  // 1. Check for explicit data-consent-category attribute (always respected)
+  const explicitCategory = script.getAttribute('data-consent-category');
+  if (explicitCategory) {
+    return explicitCategory;
+  }
+
+  // 2. Skip if script has data-zest-allow attribute
+  if (script.hasAttribute('data-zest-allow')) {
+    return null;
+  }
+
+  const src = script.src;
+
+  // No src = inline script, only block if explicitly tagged
+  if (!src) {
+    return null;
+  }
+
+  // 3. Check custom blocked domains
+  const customCategory = matchesCustomDomains(src);
+  if (customCategory) {
+    return customCategory;
+  }
+
+  // 4. Mode-based blocking
+  switch (blockingMode) {
+    case 'manual':
+      // Only explicit tags, already checked above
+      return null;
+
+    case 'safe':
+    case 'strict':
+      // Check against known tracker lists
+      return getCategoryForScript(src, blockingMode);
+
+    case 'doomsday':
+      // Block all third-party scripts
+      if (isThirdParty(src)) {
+        // Try to categorize, default to marketing
+        return getCategoryForScript(src, 'strict') || 'marketing';
+      }
+      return null;
+
+    default:
+      return null;
+  }
+}
+
+/**
+ * Block a script element
+ */
+function blockScript(script) {
+  // Skip already processed scripts
+  if (script.hasAttribute('data-zest-processed')) {
+    return false;
+  }
+
+  const category = getScriptBlockCategory(script);
+
+  if (!category) {
+    script.setAttribute('data-zest-processed', 'allowed');
+    return false;
+  }
+
+  if (checkConsent(category)) {
+    // Consent already given - allow script
+    script.setAttribute('data-zest-processed', 'allowed');
+    return false;
+  }
+
+  // Store script info for later execution
+  const scriptInfo = {
+    category,
+    src: script.src,
+    inline: script.textContent,
+    type: script.type,
+    async: script.async,
+    defer: script.defer,
+    timestamp: Date.now()
+  };
+
+  // Mark as processed
+  script.setAttribute('data-zest-processed', 'blocked');
+  script.setAttribute('data-consent-category', category);
+
+  // Disable the script
+  script.type = 'text/plain';
+
+  // If it has a src, also remove it to prevent loading
+  if (script.src) {
+    script.setAttribute('data-blocked-src', script.src);
+    script.removeAttribute('src');
+  }
+
+  scriptQueue.push(scriptInfo);
+  return true;
+}
+
+/**
+ * Execute a queued script
+ */
+function executeScript(scriptInfo) {
+  const script = document.createElement('script');
+
+  if (scriptInfo.src) {
+    script.src = scriptInfo.src;
+  } else if (scriptInfo.inline) {
+    script.textContent = scriptInfo.inline;
+  }
+
+  if (scriptInfo.async) script.async = true;
+  if (scriptInfo.defer) script.defer = true;
+
+  script.setAttribute('data-zest-processed', 'executed');
+  script.setAttribute('data-consent-executed', 'true');
+
+  document.head.appendChild(script);
+}
+
+/**
+ * Replay queued scripts for allowed categories
+ */
+export function replayScripts(allowedCategories) {
+  const remaining = [];
+
+  for (const scriptInfo of scriptQueue) {
+    if (allowedCategories.includes(scriptInfo.category)) {
+      executeScript(scriptInfo);
+    } else {
+      remaining.push(scriptInfo);
+    }
+  }
+
+  scriptQueue.length = 0;
+  scriptQueue.push(...remaining);
+
+  // Also re-enable any blocked scripts in the DOM
+  const blockedScripts = document.querySelectorAll('script[data-zest-processed="blocked"]');
+  blockedScripts.forEach(script => {
+    const category = script.getAttribute('data-consent-category');
+    if (allowedCategories.includes(category)) {
+      // Clone and replace to execute
+      const newScript = document.createElement('script');
+
+      const blockedSrc = script.getAttribute('data-blocked-src');
+      if (blockedSrc) {
+        newScript.src = blockedSrc;
+      } else {
+        newScript.textContent = script.textContent;
+      }
+
+      if (script.async) newScript.async = true;
+      if (script.defer) newScript.defer = true;
+
+      newScript.setAttribute('data-zest-processed', 'executed');
+      newScript.setAttribute('data-consent-executed', 'true');
+      script.parentNode?.replaceChild(newScript, script);
+    }
+  });
+}
+
+/**
+ * Process existing scripts in the DOM
+ */
+function processExistingScripts() {
+  const scripts = document.querySelectorAll('script:not([data-zest-processed])');
+  scripts.forEach(blockScript);
+}
+
+/**
+ * Handle mutations (new scripts added to DOM)
+ */
+function handleMutations(mutations) {
+  for (const mutation of mutations) {
+    for (const node of mutation.addedNodes) {
+      if (node.nodeName === 'SCRIPT' && !node.hasAttribute('data-zest-processed')) {
+        blockScript(node);
+      }
+
+      // Check child scripts
+      if (node.querySelectorAll) {
+        const scripts = node.querySelectorAll('script:not([data-zest-processed])');
+        scripts.forEach(blockScript);
+      }
+    }
+  }
+}
+
+/**
+ * Start observing for new scripts
+ */
+export function startScriptBlocking(mode = 'safe', customDomains = []) {
+  blockingMode = mode;
+  customBlockedDomains = customDomains;
+
+  // Process existing scripts
+  processExistingScripts();
+
+  // Watch for new scripts
+  observer = new MutationObserver(handleMutations);
+
+  observer.observe(document.documentElement, {
+    childList: true,
+    subtree: true
+  });
+
+  return true;
+}
+
+/**
+ * Stop observing for new scripts
+ */
+export function stopScriptBlocking() {
+  if (observer) {
+    observer.disconnect();
+    observer = null;
+  }
+}

package/src/core/storage-interceptor.js

@@ -0,0 +1,169 @@
+/**
+ * Storage Interceptor - Intercepts localStorage and sessionStorage operations
+ */
+
+import { getCategoryForName } from './pattern-matcher.js';
+
+// Store originals
+let originalLocalStorage = null;
+let originalSessionStorage = null;
+
+// Queues for blocked operations
+const localStorageQueue = [];
+const sessionStorageQueue = [];
+
+// Reference to consent checker function
+let checkConsent = () => false;
+
+/**
+ * Set the consent checker function
+ */
+export function setConsentChecker(fn) {
+  checkConsent = fn;
+}
+
+/**
+ * Get original localStorage
+ */
+export function getOriginalLocalStorage() {
+  return originalLocalStorage;
+}
+
+/**
+ * Get original sessionStorage
+ */
+export function getOriginalSessionStorage() {
+  return originalSessionStorage;
+}
+
+/**
+ * Get queued localStorage operations
+ */
+export function getLocalStorageQueue() {
+  return [...localStorageQueue];
+}
+
+/**
+ * Get queued sessionStorage operations
+ */
+export function getSessionStorageQueue() {
+  return [...sessionStorageQueue];
+}
+
+/**
+ * Clear storage queues
+ */
+export function clearStorageQueues() {
+  localStorageQueue.length = 0;
+  sessionStorageQueue.length = 0;
+}
+
+/**
+ * Create a proxy for storage API
+ */
+function createStorageProxy(storage, queue, storageName) {
+  return new Proxy(storage, {
+    get(target, prop) {
+      if (prop === 'setItem') {
+        return (key, value) => {
+          const category = getCategoryForName(key);
+
+          if (checkConsent(category)) {
+            target.setItem(key, value);
+          } else {
+            queue.push({
+              key,
+              value,
+              category,
+              timestamp: Date.now()
+            });
+          }
+        };
+      }
+
+      // Allow all other operations
+      const val = target[prop];
+      return typeof val === 'function' ? val.bind(target) : val;
+    }
+  });
+}
+
+/**
+ * Replay queued storage operations for allowed categories
+ */
+export function replayStorage(allowedCategories) {
+  // Replay localStorage
+  const remainingLocal = [];
+  for (const item of localStorageQueue) {
+    if (allowedCategories.includes(item.category)) {
+      originalLocalStorage?.setItem(item.key, item.value);
+    } else {
+      remainingLocal.push(item);
+    }
+  }
+  localStorageQueue.length = 0;
+  localStorageQueue.push(...remainingLocal);
+
+  // Replay sessionStorage
+  const remainingSession = [];
+  for (const item of sessionStorageQueue) {
+    if (allowedCategories.includes(item.category)) {
+      originalSessionStorage?.setItem(item.key, item.value);
+    } else {
+      remainingSession.push(item);
+    }
+  }
+  sessionStorageQueue.length = 0;
+  sessionStorageQueue.push(...remainingSession);
+}
+
+/**
+ * Start intercepting storage APIs
+ */
+export function interceptStorage() {
+  try {
+    originalLocalStorage = window.localStorage;
+    originalSessionStorage = window.sessionStorage;
+
+    Object.defineProperty(window, 'localStorage', {
+      value: createStorageProxy(originalLocalStorage, localStorageQueue, 'localStorage'),
+      configurable: true,
+      writable: false
+    });
+
+    Object.defineProperty(window, 'sessionStorage', {
+      value: createStorageProxy(originalSessionStorage, sessionStorageQueue, 'sessionStorage'),
+      configurable: true,
+      writable: false
+    });
+
+    return true;
+  } catch (e) {
+    console.warn('[Zest] Could not intercept storage APIs:', e);
+    return false;
+  }
+}
+
+/**
+ * Restore original storage APIs
+ */
+export function restoreStorage() {
+  try {
+    if (originalLocalStorage) {
+      Object.defineProperty(window, 'localStorage', {
+        value: originalLocalStorage,
+        configurable: true,
+        writable: false
+      });
+    }
+    if (originalSessionStorage) {
+      Object.defineProperty(window, 'sessionStorage', {
+        value: originalSessionStorage,
+        configurable: true,
+        writable: false
+      });
+    }
+  } catch (e) {
+    console.warn('[Zest] Could not restore storage APIs:', e);
+  }
+}

package/src/i18n/lang-en.js

@@ -0,0 +1,54 @@
+/**
+ * English only translation
+ */
+export const translations = {
+  en: {
+    labels: {
+      banner: {
+        title: 'We value your privacy',
+        description: 'We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.',
+        acceptAll: 'Accept All',
+        rejectAll: 'Reject All',
+        settings: 'Settings'
+      },
+      modal: {
+        title: 'Privacy Settings',
+        description: 'Manage your cookie preferences. You can enable or disable different types of cookies below.',
+        save: 'Save Preferences',
+        acceptAll: 'Accept All',
+        rejectAll: 'Reject All'
+      },
+      widget: {
+        label: 'Cookie Settings'
+      }
+    },
+    categories: {
+      essential: {
+        label: 'Essential',
+        description: 'Required for the website to function properly. Cannot be disabled.'
+      },
+      functional: {
+        label: 'Functional',
+        description: 'Enable personalized features like language preferences and themes.'
+      },
+      analytics: {
+        label: 'Analytics',
+        description: 'Help us understand how visitors interact with our website.'
+      },
+      marketing: {
+        label: 'Marketing',
+        description: 'Used to deliver relevant advertisements and track campaign performance.'
+      }
+    }
+  }
+};
+
+export const supportedLanguages = ['en'];
+
+export function detectLanguage() {
+  return 'en';
+}
+
+export function getTranslation() {
+  return translations.en;
+}

package/src/i18n/single/lang-de.js

@@ -0,0 +1,55 @@
+/**
+ * DE only translation - auto-generated
+ * Do not edit manually, run: npm run build
+ */
+export const translations = {
+  de: {
+      "labels": {
+          "banner": {
+              "title": "Wir respektieren Ihre Privatsphäre",
+              "description": "Wir verwenden Cookies, um Ihr Surferlebnis zu verbessern, personalisierte Inhalte bereitzustellen und unseren Datenverkehr zu analysieren. Mit einem Klick auf „Alle akzeptieren\" stimmen Sie der Verwendung von Cookies zu.",
+              "acceptAll": "Alle akzeptieren",
+              "rejectAll": "Alle ablehnen",
+              "settings": "Einstellungen"
+          },
+          "modal": {
+              "title": "Datenschutzeinstellungen",
+              "description": "Verwalten Sie Ihre Cookie-Einstellungen. Sie können verschiedene Arten von Cookies unten aktivieren oder deaktivieren.",
+              "save": "Einstellungen speichern",
+              "acceptAll": "Alle akzeptieren",
+              "rejectAll": "Alle ablehnen"
+          },
+          "widget": {
+              "label": "Cookie-Einstellungen"
+          }
+      },
+      "categories": {
+          "essential": {
+              "label": "Notwendig",
+              "description": "Erforderlich für die ordnungsgemäße Funktion der Website. Können nicht deaktiviert werden."
+          },
+          "functional": {
+              "label": "Funktional",
+              "description": "Ermöglichen personalisierte Funktionen wie Spracheinstellungen und Designs."
+          },
+          "analytics": {
+              "label": "Analytisch",
+              "description": "Helfen uns zu verstehen, wie Besucher mit unserer Website interagieren."
+          },
+          "marketing": {
+              "label": "Marketing",
+              "description": "Werden verwendet, um relevante Werbung anzuzeigen und die Kampagnenleistung zu messen."
+          }
+      }
+  }
+};
+
+export const supportedLanguages = ['de'];
+
+export function detectLanguage() {
+  return 'de';
+}
+
+export function getTranslation() {
+  return translations.de;
+}

package/src/i18n/single/lang-en.js

@@ -0,0 +1,55 @@
+/**
+ * EN only translation - auto-generated
+ * Do not edit manually, run: npm run build
+ */
+export const translations = {
+  en: {
+      "labels": {
+          "banner": {
+              "title": "We value your privacy",
+              "description": "We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. By clicking \"Accept All\", you consent to our use of cookies.",
+              "acceptAll": "Accept All",
+              "rejectAll": "Reject All",
+              "settings": "Settings"
+          },
+          "modal": {
+              "title": "Privacy Settings",
+              "description": "Manage your cookie preferences. You can enable or disable different types of cookies below.",
+              "save": "Save Preferences",
+              "acceptAll": "Accept All",
+              "rejectAll": "Reject All"
+          },
+          "widget": {
+              "label": "Cookie Settings"
+          }
+      },
+      "categories": {
+          "essential": {
+              "label": "Essential",
+              "description": "Required for the website to function properly. Cannot be disabled."
+          },
+          "functional": {
+              "label": "Functional",
+              "description": "Enable personalized features like language preferences and themes."
+          },
+          "analytics": {
+              "label": "Analytics",
+              "description": "Help us understand how visitors interact with our website."
+          },
+          "marketing": {
+              "label": "Marketing",
+              "description": "Used to deliver relevant advertisements and track campaign performance."
+          }
+      }
+  }
+};
+
+export const supportedLanguages = ['en'];
+
+export function detectLanguage() {
+  return 'en';
+}
+
+export function getTranslation() {
+  return translations.en;
+}

package/src/i18n/single/lang-es.js

@@ -0,0 +1,55 @@
+/**
+ * ES only translation - auto-generated
+ * Do not edit manually, run: npm run build
+ */
+export const translations = {
+  es: {
+      "labels": {
+          "banner": {
+              "title": "Valoramos tu privacidad",
+              "description": "Utilizamos cookies para mejorar tu experiencia de navegación, ofrecer contenido personalizado y analizar nuestro tráfico. Al hacer clic en \"Aceptar todo\", consientes el uso de cookies.",
+              "acceptAll": "Aceptar todo",
+              "rejectAll": "Rechazar todo",
+              "settings": "Configuración"
+          },
+          "modal": {
+              "title": "Configuración de privacidad",
+              "description": "Gestiona tus preferencias de cookies. Puedes activar o desactivar diferentes tipos de cookies a continuación.",
+              "save": "Guardar preferencias",
+              "acceptAll": "Aceptar todo",
+              "rejectAll": "Rechazar todo"
+          },
+          "widget": {
+              "label": "Configuración de cookies"
+          }
+      },
+      "categories": {
+          "essential": {
+              "label": "Esenciales",
+              "description": "Necesarias para el funcionamiento del sitio web. No se pueden desactivar."
+          },
+          "functional": {
+              "label": "Funcionales",
+              "description": "Permiten funciones personalizadas como preferencias de idioma y temas."
+          },
+          "analytics": {
+              "label": "Analíticas",
+              "description": "Nos ayudan a entender cómo los visitantes interactúan con nuestro sitio web."
+          },
+          "marketing": {
+              "label": "Marketing",
+              "description": "Se utilizan para mostrar anuncios relevantes y medir el rendimiento de las campañas."
+          }
+      }
+  }
+};
+
+export const supportedLanguages = ['es'];
+
+export function detectLanguage() {
+  return 'es';
+}
+
+export function getTranslation() {
+  return translations.es;
+}