@holo-js/security 0.1.8 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/dist/{chunk-Q3A7RJ67.mjs → chunk-QGBGZ2GI.mjs} +1 -1
  2. package/dist/index.mjs +1 -1
  3. package/dist/next/server.mjs +1 -1
  4. package/dist/nuxt/server.mjs +1 -1
  5. package/dist/sveltekit/server.mjs +1 -1
  6. package/package.json +2 -2
package/dist/{chunk-Q3A7RJ67.mjs → chunk-QGBGZ2GI.mjs} RENAMED
@@ -217,7 +217,7 @@ function matchesPathPattern(pathname, pattern) {
217
217
  function isExcludedPath(request) {
218
218
  const { except } = getSecurityRuntime().config.csrf;
219
219
  const pathname = new URL(request.url).pathname;
220
- return except.some((pattern) => matchesPathPattern(pathname, pattern));
220
+ return pathname === "/broadcasting/auth" || except.some((pattern) => matchesPathPattern(pathname, pattern));
221
221
  }
222
222
  function normalizeForwardedValue(value) {
223
223
  return value.trim().replace(/^"|"$/g, "").toLowerCase();
package/dist/index.mjs CHANGED
@@ -33,7 +33,7 @@ import {
33
33
  src_default,
34
34
  token,
35
35
  verify
36
- } from "./chunk-Q3A7RJ67.mjs";
36
+ } from "./chunk-QGBGZ2GI.mjs";
37
37
  import {
38
38
  SecurityCsrfError,
39
39
  SecurityRateLimitError,
package/dist/next/server.mjs CHANGED
@@ -4,7 +4,7 @@ import {
4
4
  getSecurityRuntime,
5
5
  isSecureRequest,
6
6
  protect
7
- } from "../chunk-Q3A7RJ67.mjs";
7
+ } from "../chunk-QGBGZ2GI.mjs";
8
8
  import {
9
9
  SECURITY_CLIENT_CONFIG_COOKIE,
10
10
  createSecurityClientConfig,
package/dist/nuxt/server.mjs CHANGED
@@ -4,7 +4,7 @@ import {
4
4
  getSecurityRuntime,
5
5
  isSecureRequest,
6
6
  protect
7
- } from "../chunk-Q3A7RJ67.mjs";
7
+ } from "../chunk-QGBGZ2GI.mjs";
8
8
  import {
9
9
  SECURITY_CLIENT_CONFIG_COOKIE,
10
10
  createSecurityClientConfig,
package/dist/sveltekit/server.mjs CHANGED
@@ -3,7 +3,7 @@ import {
3
3
  getSecurityRuntime,
4
4
  isSecureRequest,
5
5
  protect
6
- } from "../chunk-Q3A7RJ67.mjs";
6
+ } from "../chunk-QGBGZ2GI.mjs";
7
7
  import {
8
8
  SECURITY_CLIENT_CONFIG_COOKIE,
9
9
  createSecurityClientConfig,
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@holo-js/security",
3
- "version": "0.1.8",
3
+ "version": "0.2.0",
4
4
  "description": "Holo-JS Framework - CSRF and rate-limit contracts, config, and runtime seams",
5
5
  "type": "module",
6
6
  "license": "MIT",
@@ -53,7 +53,7 @@
53
53
  "test": "vitest --run --coverage"
54
54
  },
55
55
  "dependencies": {
56
- "@holo-js/config": "^0.1.8"
56
+ "@holo-js/config": "^0.2.0"
57
57
  },
58
58
  "peerDependencies": {
59
59
  "h3": "^1.15.11",