@howells/stow-next 2.1.0 → 2.4.0

package/README.md

@@ -37,12 +37,7 @@ export const POST = createUploadHandler({
 import { UploadDropzone } from "@howells/stow-react";
 
 export default function Page() {
-  return (
-    <UploadDropzone
-      endpoint="/api/upload"
-      onUploadComplete={(files) => console.log(files)}
-    />
-  );
+  return <UploadDropzone endpoint="/api/upload" onUploadComplete={(files) => console.log(files)} />;
 }
 ```
 
@@ -60,9 +55,9 @@ export const POST = createUploadHandler({
   stow: new StowServer(process.env.STOW_API_KEY!),
 
   // Optional: File restrictions
-  maxSize: 10 * 1024 * 1024,           // Max file size in bytes
-  allowedTypes: ["image/*", ".pdf"],    // Allowed MIME types or extensions
-  route: "uploads",                     // Default route/folder
+  maxSize: 10 * 1024 * 1024, // Max file size in bytes
+  allowedTypes: ["image/*", ".pdf"], // Allowed MIME types or extensions
+  route: "uploads", // Default route/folder
 
   // Optional: Custom validation
   validate: async (file) => {
@@ -139,10 +134,7 @@ export default createStowLoader({
 ## TypeScript
 
 ```typescript
-import type {
-  UploadHandlerConfig,
-  StowLoaderConfig,
-} from "@howells/stow-next";
+import type { UploadHandlerConfig, StowLoaderConfig } from "@howells/stow-next";
 ```
 
 ## Complete Example

package/dist/chunk-NKFGLVPF.mjs

@@ -0,0 +1,99 @@
+// src/image-loader.ts
+var STOW_DOMAIN_PATTERN = /\.stow\.sh$/;
+function isStowUrl(src) {
+  try {
+    const url = new URL(src);
+    return STOW_DOMAIN_PATTERN.test(url.hostname);
+  } catch {
+    return false;
+  }
+}
+function buildTransformParams(width, quality, config) {
+  const params = new URLSearchParams();
+  params.set("w", width.toString());
+  if (config.aspectRatio) {
+    params.set("h", Math.round(width / config.aspectRatio).toString());
+  }
+  params.set("q", quality.toString());
+  if (config.fit) {
+    params.set("fit", config.fit);
+  }
+  if (config.gravity) {
+    params.set("gravity", config.gravity);
+  }
+  if (config.defaultFormat) {
+    params.set("f", config.defaultFormat);
+  }
+  return params;
+}
+function transformStowUrl(src, baseUrl, params) {
+  const url = new URL(src, baseUrl);
+  const { pathname } = url;
+  if (pathname.startsWith("/files/")) {
+    const transformPath = pathname.replace("/files/", "/transform/");
+    return `${baseUrl}${transformPath}?${params.toString()}`;
+  }
+  if (pathname.startsWith("/transform/")) {
+    return `${baseUrl}${pathname}?${params.toString()}`;
+  }
+  return `${src}${src.includes("?") ? "&" : "?"}${params.toString()}`;
+}
+function createStowLoader(config = {}) {
+  const {
+    baseUrl = "https://stow.sh",
+    customDomains,
+    defaultQuality = 75,
+    defaultFormat,
+    proxySlug,
+    fit,
+    gravity,
+    aspectRatio
+  } = config;
+  const customDomainSet = new Set(customDomains);
+  return function stowLoader2({ src, width, quality }) {
+    const resolvedQuality = quality || defaultQuality;
+    const paramConfig = { defaultFormat, fit, gravity, aspectRatio };
+    const isAbsoluteUrl = src.startsWith("http://") || src.startsWith("https://");
+    if (customDomainSet.size > 0 && isAbsoluteUrl) {
+      const url = new URL(src);
+      if (customDomainSet.has(url.hostname)) {
+        const params = buildTransformParams(width, resolvedQuality, paramConfig);
+        return `${src}${src.includes("?") ? "&" : "?"}${params.toString()}`;
+      }
+    }
+    if (isStowUrl(src)) {
+      const params = buildTransformParams(width, resolvedQuality, paramConfig);
+      return `${src}${src.includes("?") ? "&" : "?"}${params.toString()}`;
+    }
+    if (src.startsWith(baseUrl) || src.startsWith("/files/")) {
+      const params = buildTransformParams(width, resolvedQuality, paramConfig);
+      return transformStowUrl(src, baseUrl, params);
+    }
+    if (proxySlug && (src.startsWith("http://") || src.startsWith("https://"))) {
+      const params = new URLSearchParams();
+      params.set("url", src);
+      params.set("w", width.toString());
+      if (aspectRatio) {
+        params.set("h", Math.round(width / aspectRatio).toString());
+      }
+      params.set("q", resolvedQuality.toString());
+      if (fit) {
+        params.set("fit", fit);
+      }
+      if (gravity) {
+        params.set("gravity", gravity);
+      }
+      if (defaultFormat) {
+        params.set("f", defaultFormat);
+      }
+      return `https://proxy.stow.sh/${proxySlug}/?${params.toString()}`;
+    }
+    return src;
+  };
+}
+var stowLoader = createStowLoader();
+
+export {
+  createStowLoader,
+  stowLoader
+};

package/dist/image-loader.d.mts

@@ -38,13 +38,22 @@
  * }
  * ```
  */
-/** Next.js image loader input contract. */
+/**
+ * Next.js image loader input contract.
+ *
+ * This matches the object shape Next passes to custom `loader` functions.
+ */
 interface ImageLoaderProps {
     quality?: number;
     src: string;
     width: number;
 }
-/** Configuration for `createStowLoader`. */
+/**
+ * Configuration for `createStowLoader()`.
+ *
+ * Use this to encode a project-wide transformation policy once and then reuse
+ * the returned loader across `next/image` components.
+ */
 interface StowLoaderConfig {
     /**
      * Fixed aspect ratio (width / height).
@@ -97,8 +106,14 @@ interface StowLoaderConfig {
  * Create a custom image loader with configuration.
  *
  * Returns a stable function reference safe for use as a Next.js `loader` prop.
+ *
+ * Behavior by source type:
+ * - Stow vanity URL: append transform params directly
+ * - legacy `/files/...` URL: rewrite to `/transform/...`
+ * - external URL with `proxySlug`: route through `proxy.stow.sh`
+ * - anything else: return the original source unchanged
  */
-declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, quality, }: ImageLoaderProps) => string;
+declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, quality }: ImageLoaderProps) => string;
 /**
  * Default Stow image loader.
  *
@@ -120,6 +135,6 @@ declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, qua
  * export default stowLoader;
  * ```
  */
-declare const stowLoader: ({ src, width, quality, }: ImageLoaderProps) => string;
+declare const stowLoader: ({ src, width, quality }: ImageLoaderProps) => string;
 
 export { type ImageLoaderProps, type StowLoaderConfig, createStowLoader, stowLoader };

package/dist/image-loader.d.ts

@@ -38,13 +38,22 @@
  * }
  * ```
  */
-/** Next.js image loader input contract. */
+/**
+ * Next.js image loader input contract.
+ *
+ * This matches the object shape Next passes to custom `loader` functions.
+ */
 interface ImageLoaderProps {
     quality?: number;
     src: string;
     width: number;
 }
-/** Configuration for `createStowLoader`. */
+/**
+ * Configuration for `createStowLoader()`.
+ *
+ * Use this to encode a project-wide transformation policy once and then reuse
+ * the returned loader across `next/image` components.
+ */
 interface StowLoaderConfig {
     /**
      * Fixed aspect ratio (width / height).
@@ -97,8 +106,14 @@ interface StowLoaderConfig {
  * Create a custom image loader with configuration.
  *
  * Returns a stable function reference safe for use as a Next.js `loader` prop.
+ *
+ * Behavior by source type:
+ * - Stow vanity URL: append transform params directly
+ * - legacy `/files/...` URL: rewrite to `/transform/...`
+ * - external URL with `proxySlug`: route through `proxy.stow.sh`
+ * - anything else: return the original source unchanged
  */
-declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, quality, }: ImageLoaderProps) => string;
+declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, quality }: ImageLoaderProps) => string;
 /**
  * Default Stow image loader.
  *
@@ -120,6 +135,6 @@ declare function createStowLoader(config?: StowLoaderConfig): ({ src, width, qua
  * export default stowLoader;
  * ```
  */
-declare const stowLoader: ({ src, width, quality, }: ImageLoaderProps) => string;
+declare const stowLoader: ({ src, width, quality }: ImageLoaderProps) => string;
 
 export { type ImageLoaderProps, type StowLoaderConfig, createStowLoader, stowLoader };

package/dist/image-loader.js

@@ -53,7 +53,7 @@ function buildTransformParams(width, quality, config) {
 }
 function transformStowUrl(src, baseUrl, params) {
   const url = new URL(src, baseUrl);
-  const pathname = url.pathname;
+  const { pathname } = url;
   if (pathname.startsWith("/files/")) {
     const transformPath = pathname.replace("/files/", "/transform/");
     return `${baseUrl}${transformPath}?${params.toString()}`;
@@ -74,23 +74,15 @@ function createStowLoader(config = {}) {
     gravity,
     aspectRatio
   } = config;
-  const customDomainSet = new Set(customDomains ?? []);
-  return function stowLoader2({
-    src,
-    width,
-    quality
-  }) {
+  const customDomainSet = new Set(customDomains);
+  return function stowLoader2({ src, width, quality }) {
     const resolvedQuality = quality || defaultQuality;
     const paramConfig = { defaultFormat, fit, gravity, aspectRatio };
     const isAbsoluteUrl = src.startsWith("http://") || src.startsWith("https://");
     if (customDomainSet.size > 0 && isAbsoluteUrl) {
       const url = new URL(src);
       if (customDomainSet.has(url.hostname)) {
-        const params = buildTransformParams(
-          width,
-          resolvedQuality,
-          paramConfig
-        );
+        const params = buildTransformParams(width, resolvedQuality, paramConfig);
         return `${src}${src.includes("?") ? "&" : "?"}${params.toString()}`;
       }
     }

package/dist/image-loader.mjs

@@ -1,7 +1,7 @@
 import {
   createStowLoader,
   stowLoader
-} from "./chunk-XJA64ZFQ.mjs";
+} from "./chunk-NKFGLVPF.mjs";
 export {
   createStowLoader,
   stowLoader

package/dist/index.d.mts

@@ -23,7 +23,13 @@ export { StowLoaderConfig, createStowLoader, stowLoader } from './image-loader.m
  * ```
  */
 
-/** CORS options applied to generated route handlers. */
+/**
+ * CORS options applied to generated route handlers.
+ *
+ * Generated handlers default to browser-friendly CORS because uploads commonly
+ * originate from client-side code. Pass `cors: false` to disable header
+ * injection entirely or provide a stricter `origin` allowlist for production.
+ */
 interface CorsConfig {
     /** Allowed headers (default: ["Content-Type"]) */
     allowedHeaders?: string[];
@@ -35,10 +41,22 @@ interface CorsConfig {
     origin?: string | string[];
 }
 /**
- * Create an OPTIONS handler for CORS preflight requests
+ * Create an `OPTIONS` handler for CORS preflight requests.
+ *
+ * @example
+ * ```typescript
+ * export const OPTIONS = createCorsPreflightHandler({
+ *   origin: ["https://app.example.com"],
+ * });
+ * ```
  */
 declare function createCorsPreflightHandler(config?: CorsConfig): () => NextResponse;
-/** Minimal server SDK shape required by handler factories. */
+/**
+ * Minimal `@howells/stow-server` surface required by the route factories.
+ *
+ * Accepting this structural type keeps the package test-friendly and allows you
+ * to provide a mock implementation without importing the full SDK in every test.
+ */
 interface StowServerLike {
     confirmUpload: (request: {
         fileKey: string;
@@ -68,7 +86,12 @@ interface StowServerLike {
         dedupe?: false;
     }>;
 }
-/** Options for `createPresignHandler`. */
+/**
+ * Options for `createPresignHandler()`.
+ *
+ * This config defines the validation and routing rules for the first step of
+ * the direct-upload flow.
+ */
 interface PresignHandlerConfig {
     /** Allowed content types (supports wildcards like "image/*") */
     allowedTypes?: string[];
@@ -76,7 +99,7 @@ interface PresignHandlerConfig {
     cors?: CorsConfig | false;
     /** Maximum file size in bytes */
     maxSize?: number;
-    /** Default route for organizing files */
+    /** Default route/folder hint used when the client does not provide one. */
     route?: string;
     /** Stow server instance */
     stow: StowServerLike;
@@ -87,7 +110,11 @@ interface PresignHandlerConfig {
         size: number;
     }) => Promise<boolean | string> | boolean | string;
 }
-/** Options for `createConfirmHandler`. */
+/**
+ * Options for `createConfirmHandler()`.
+ *
+ * This config controls the second step of the direct-upload flow.
+ */
 interface ConfirmHandlerConfig {
     /** CORS configuration (enabled by default for browser uploads) */
     cors?: CorsConfig | false;
@@ -105,17 +132,44 @@ interface ConfirmHandlerConfig {
  * Create a Next.js route handler for presigning uploads.
  * This is called by @howells/stow-client to get a presigned URL for direct R2 upload.
  *
- * Returns both POST handler and OPTIONS handler for CORS preflight.
+ * Export the returned function as your route's `POST` handler. Pair it with
+ * `createCorsPreflightHandler()` if you want an explicit `OPTIONS` export.
+ *
+ * @example
+ * ```typescript
+ * import { createCorsPreflightHandler, createPresignHandler } from "@howells/stow-next";
+ * import { StowServer } from "@howells/stow-server";
+ *
+ * const stow = new StowServer({
+ *   apiKey: process.env.STOW_API_KEY!,
+ *   bucket: "products",
+ * });
+ *
+ * export const POST = createPresignHandler({
+ *   stow,
+ *   allowedTypes: ["image/*"],
+ *   maxSize: 10 * 1024 * 1024,
+ * });
+ *
+ * export const OPTIONS = createCorsPreflightHandler();
+ * ```
  */
 declare function createPresignHandler(config: PresignHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
 /**
  * Create a Next.js route handler for confirming uploads.
  * This is called by @howells/stow-client after uploading to R2.
  *
- * Returns both POST handler and OPTIONS handler for CORS preflight.
+ * Export the returned function as your route's `POST` handler. Use
+ * `onUploadComplete` for app-specific follow-up work like cache invalidation or
+ * analytics.
  */
 declare function createConfirmHandler(config: ConfirmHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
-/** Minimal combined shape for single-route upload handlers. */
+/**
+ * Minimal combined shape for single-route upload handlers.
+ *
+ * This legacy path proxies file bytes through your Next.js route instead of
+ * using browser-to-storage uploads.
+ */
 interface StowLike {
     uploadFile: (file: Blob, options?: {
         filename?: string;
@@ -128,7 +182,11 @@ interface StowLike {
         contentType: string;
     }>;
 }
-/** Options for `createUploadHandler`. */
+/**
+ * Options for the deprecated `createUploadHandler()`.
+ *
+ * Prefer `createPresignHandler()` plus `createConfirmHandler()` for new work.
+ */
 interface UploadHandlerConfig {
     /** Allowed content types (supports wildcards like "image/*") */
     allowedTypes?: string[];
@@ -155,6 +213,9 @@ interface UploadHandlerConfig {
  *
  * @deprecated Use createPresignHandler + createConfirmHandler for direct uploads.
  * Proxied uploads are limited by serverless payload limits (~4.5MB).
+ *
+ * This remains useful for quick internal tools or environments where a single
+ * multipart endpoint is acceptable and file sizes are small.
  */
 declare function createUploadHandler(config: UploadHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
 

package/dist/index.d.ts

@@ -23,7 +23,13 @@ export { StowLoaderConfig, createStowLoader, stowLoader } from './image-loader.j
  * ```
  */
 
-/** CORS options applied to generated route handlers. */
+/**
+ * CORS options applied to generated route handlers.
+ *
+ * Generated handlers default to browser-friendly CORS because uploads commonly
+ * originate from client-side code. Pass `cors: false` to disable header
+ * injection entirely or provide a stricter `origin` allowlist for production.
+ */
 interface CorsConfig {
     /** Allowed headers (default: ["Content-Type"]) */
     allowedHeaders?: string[];
@@ -35,10 +41,22 @@ interface CorsConfig {
     origin?: string | string[];
 }
 /**
- * Create an OPTIONS handler for CORS preflight requests
+ * Create an `OPTIONS` handler for CORS preflight requests.
+ *
+ * @example
+ * ```typescript
+ * export const OPTIONS = createCorsPreflightHandler({
+ *   origin: ["https://app.example.com"],
+ * });
+ * ```
  */
 declare function createCorsPreflightHandler(config?: CorsConfig): () => NextResponse;
-/** Minimal server SDK shape required by handler factories. */
+/**
+ * Minimal `@howells/stow-server` surface required by the route factories.
+ *
+ * Accepting this structural type keeps the package test-friendly and allows you
+ * to provide a mock implementation without importing the full SDK in every test.
+ */
 interface StowServerLike {
     confirmUpload: (request: {
         fileKey: string;
@@ -68,7 +86,12 @@ interface StowServerLike {
         dedupe?: false;
     }>;
 }
-/** Options for `createPresignHandler`. */
+/**
+ * Options for `createPresignHandler()`.
+ *
+ * This config defines the validation and routing rules for the first step of
+ * the direct-upload flow.
+ */
 interface PresignHandlerConfig {
     /** Allowed content types (supports wildcards like "image/*") */
     allowedTypes?: string[];
@@ -76,7 +99,7 @@ interface PresignHandlerConfig {
     cors?: CorsConfig | false;
     /** Maximum file size in bytes */
     maxSize?: number;
-    /** Default route for organizing files */
+    /** Default route/folder hint used when the client does not provide one. */
     route?: string;
     /** Stow server instance */
     stow: StowServerLike;
@@ -87,7 +110,11 @@ interface PresignHandlerConfig {
         size: number;
     }) => Promise<boolean | string> | boolean | string;
 }
-/** Options for `createConfirmHandler`. */
+/**
+ * Options for `createConfirmHandler()`.
+ *
+ * This config controls the second step of the direct-upload flow.
+ */
 interface ConfirmHandlerConfig {
     /** CORS configuration (enabled by default for browser uploads) */
     cors?: CorsConfig | false;
@@ -105,17 +132,44 @@ interface ConfirmHandlerConfig {
  * Create a Next.js route handler for presigning uploads.
  * This is called by @howells/stow-client to get a presigned URL for direct R2 upload.
  *
- * Returns both POST handler and OPTIONS handler for CORS preflight.
+ * Export the returned function as your route's `POST` handler. Pair it with
+ * `createCorsPreflightHandler()` if you want an explicit `OPTIONS` export.
+ *
+ * @example
+ * ```typescript
+ * import { createCorsPreflightHandler, createPresignHandler } from "@howells/stow-next";
+ * import { StowServer } from "@howells/stow-server";
+ *
+ * const stow = new StowServer({
+ *   apiKey: process.env.STOW_API_KEY!,
+ *   bucket: "products",
+ * });
+ *
+ * export const POST = createPresignHandler({
+ *   stow,
+ *   allowedTypes: ["image/*"],
+ *   maxSize: 10 * 1024 * 1024,
+ * });
+ *
+ * export const OPTIONS = createCorsPreflightHandler();
+ * ```
  */
 declare function createPresignHandler(config: PresignHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
 /**
  * Create a Next.js route handler for confirming uploads.
  * This is called by @howells/stow-client after uploading to R2.
  *
- * Returns both POST handler and OPTIONS handler for CORS preflight.
+ * Export the returned function as your route's `POST` handler. Use
+ * `onUploadComplete` for app-specific follow-up work like cache invalidation or
+ * analytics.
  */
 declare function createConfirmHandler(config: ConfirmHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
-/** Minimal combined shape for single-route upload handlers. */
+/**
+ * Minimal combined shape for single-route upload handlers.
+ *
+ * This legacy path proxies file bytes through your Next.js route instead of
+ * using browser-to-storage uploads.
+ */
 interface StowLike {
     uploadFile: (file: Blob, options?: {
         filename?: string;
@@ -128,7 +182,11 @@ interface StowLike {
         contentType: string;
     }>;
 }
-/** Options for `createUploadHandler`. */
+/**
+ * Options for the deprecated `createUploadHandler()`.
+ *
+ * Prefer `createPresignHandler()` plus `createConfirmHandler()` for new work.
+ */
 interface UploadHandlerConfig {
     /** Allowed content types (supports wildcards like "image/*") */
     allowedTypes?: string[];
@@ -155,6 +213,9 @@ interface UploadHandlerConfig {
  *
  * @deprecated Use createPresignHandler + createConfirmHandler for direct uploads.
  * Proxied uploads are limited by serverless payload limits (~4.5MB).
+ *
+ * This remains useful for quick internal tools or environments where a single
+ * multipart endpoint is acceptable and file sizes are small.
  */
 declare function createUploadHandler(config: UploadHandlerConfig): (request: NextRequest) => Promise<NextResponse>;
 

package/dist/index.js

@@ -60,7 +60,7 @@ function buildTransformParams(width, quality, config) {
 }
 function transformStowUrl(src, baseUrl, params) {
   const url = new URL(src, baseUrl);
-  const pathname = url.pathname;
+  const { pathname } = url;
   if (pathname.startsWith("/files/")) {
     const transformPath = pathname.replace("/files/", "/transform/");
     return `${baseUrl}${transformPath}?${params.toString()}`;
@@ -81,23 +81,15 @@ function createStowLoader(config = {}) {
     gravity,
     aspectRatio
   } = config;
-  const customDomainSet = new Set(customDomains ?? []);
-  return function stowLoader2({
-    src,
-    width,
-    quality
-  }) {
+  const customDomainSet = new Set(customDomains);
+  return function stowLoader2({ src, width, quality }) {
     const resolvedQuality = quality || defaultQuality;
     const paramConfig = { defaultFormat, fit, gravity, aspectRatio };
     const isAbsoluteUrl = src.startsWith("http://") || src.startsWith("https://");
     if (customDomainSet.size > 0 && isAbsoluteUrl) {
       const url = new URL(src);
       if (customDomainSet.has(url.hostname)) {
-        const params = buildTransformParams(
-          width,
-          resolvedQuality,
-          paramConfig
-        );
+        const params = buildTransformParams(width, resolvedQuality, paramConfig);
         return `${src}${src.includes("?") ? "&" : "?"}${params.toString()}`;
       }
     }
@@ -147,15 +139,25 @@ function getLocalConfirmPath(pathname) {
   }
   return pathname.endsWith("/") ? `${pathname}confirm` : `${pathname}/confirm`;
 }
+function formatBytes(bytes) {
+  if (bytes === 0) {
+    return "0 Bytes";
+  }
+  const k = 1024;
+  const sizes = ["Bytes", "KB", "MB", "GB"];
+  const i = Math.floor(Math.log(bytes) / Math.log(k));
+  return `${Number.parseFloat((bytes / k ** i).toFixed(2))} ${sizes[i]}`;
+}
+var MIME_TYPE_PATTERN = /^[a-z]+\/[a-z0-9.+-]+$/i;
+function isValidMimeType(mimeType) {
+  return MIME_TYPE_PATTERN.test(mimeType);
+}
 function withCors(response, config) {
   const cors = { ...DEFAULT_CORS, ...config };
   const origin = Array.isArray(cors.origin) ? cors.origin.join(", ") : cors.origin;
   response.headers.set("Access-Control-Allow-Origin", origin);
   response.headers.set("Access-Control-Allow-Methods", cors.methods.join(", "));
-  response.headers.set(
-    "Access-Control-Allow-Headers",
-    cors.allowedHeaders.join(", ")
-  );
+  response.headers.set("Access-Control-Allow-Headers", cors.allowedHeaders.join(", "));
   response.headers.set("Access-Control-Max-Age", cors.maxAge.toString());
   return response;
 }
@@ -205,10 +207,7 @@ function createPresignHandler(config) {
           return contentType === type;
         });
         if (!isAllowed) {
-          return respond(
-            { error: `File type "${contentType}" is not allowed` },
-            400
-          );
+          return respond({ error: `File type "${contentType}" is not allowed` }, 400);
         }
       }
       if (config.validate) {
@@ -246,7 +245,7 @@ function createPresignHandler(config) {
     } catch (error) {
       console.error("Presign error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return respond({ error: error.message }, status >= 400 ? status : 500);
       }
       return respond({ error: "Presign failed" }, 500);
@@ -291,7 +290,7 @@ function createConfirmHandler(config) {
     } catch (error) {
       console.error("Confirm error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return respond({ error: error.message }, status >= 400 ? status : 500);
       }
       return respond({ error: "Confirm failed" }, 500);
@@ -313,10 +312,7 @@ function createUploadHandler(config) {
       const file = formData.get("file");
       const route = formData.get("route") || config.route;
       if (!file) {
-        return import_server.NextResponse.json(
-          { error: "No file provided" },
-          { status: 400 }
-        );
+        return import_server.NextResponse.json({ error: "No file provided" }, { status: 400 });
       }
       if (config.maxSize && file.size > config.maxSize) {
         return import_server.NextResponse.json(
@@ -363,7 +359,7 @@ function createUploadHandler(config) {
     } catch (error) {
       console.error("Upload error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return import_server.NextResponse.json(
           { error: error.message },
           { status: status >= 400 ? status : 500 }
@@ -373,19 +369,6 @@ function createUploadHandler(config) {
     }
   };
 }
-function formatBytes(bytes) {
-  if (bytes === 0) {
-    return "0 Bytes";
-  }
-  const k = 1024;
-  const sizes = ["Bytes", "KB", "MB", "GB"];
-  const i = Math.floor(Math.log(bytes) / Math.log(k));
-  return `${Number.parseFloat((bytes / k ** i).toFixed(2))} ${sizes[i]}`;
-}
-var MIME_TYPE_PATTERN = /^[a-z]+\/[a-z0-9.+-]+$/i;
-function isValidMimeType(mimeType) {
-  return MIME_TYPE_PATTERN.test(mimeType);
-}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   createConfirmHandler,

package/dist/index.mjs

@@ -1,7 +1,7 @@
 import {
   createStowLoader,
   stowLoader
-} from "./chunk-XJA64ZFQ.mjs";
+} from "./chunk-NKFGLVPF.mjs";
 
 // src/index.ts
 import { NextResponse } from "next/server";
@@ -18,15 +18,25 @@ function getLocalConfirmPath(pathname) {
   }
   return pathname.endsWith("/") ? `${pathname}confirm` : `${pathname}/confirm`;
 }
+function formatBytes(bytes) {
+  if (bytes === 0) {
+    return "0 Bytes";
+  }
+  const k = 1024;
+  const sizes = ["Bytes", "KB", "MB", "GB"];
+  const i = Math.floor(Math.log(bytes) / Math.log(k));
+  return `${Number.parseFloat((bytes / k ** i).toFixed(2))} ${sizes[i]}`;
+}
+var MIME_TYPE_PATTERN = /^[a-z]+\/[a-z0-9.+-]+$/i;
+function isValidMimeType(mimeType) {
+  return MIME_TYPE_PATTERN.test(mimeType);
+}
 function withCors(response, config) {
   const cors = { ...DEFAULT_CORS, ...config };
   const origin = Array.isArray(cors.origin) ? cors.origin.join(", ") : cors.origin;
   response.headers.set("Access-Control-Allow-Origin", origin);
   response.headers.set("Access-Control-Allow-Methods", cors.methods.join(", "));
-  response.headers.set(
-    "Access-Control-Allow-Headers",
-    cors.allowedHeaders.join(", ")
-  );
+  response.headers.set("Access-Control-Allow-Headers", cors.allowedHeaders.join(", "));
   response.headers.set("Access-Control-Max-Age", cors.maxAge.toString());
   return response;
 }
@@ -76,10 +86,7 @@ function createPresignHandler(config) {
           return contentType === type;
         });
         if (!isAllowed) {
-          return respond(
-            { error: `File type "${contentType}" is not allowed` },
-            400
-          );
+          return respond({ error: `File type "${contentType}" is not allowed` }, 400);
         }
       }
       if (config.validate) {
@@ -117,7 +124,7 @@ function createPresignHandler(config) {
     } catch (error) {
       console.error("Presign error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return respond({ error: error.message }, status >= 400 ? status : 500);
       }
       return respond({ error: "Presign failed" }, 500);
@@ -162,7 +169,7 @@ function createConfirmHandler(config) {
     } catch (error) {
       console.error("Confirm error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return respond({ error: error.message }, status >= 400 ? status : 500);
       }
       return respond({ error: "Confirm failed" }, 500);
@@ -184,10 +191,7 @@ function createUploadHandler(config) {
       const file = formData.get("file");
       const route = formData.get("route") || config.route;
       if (!file) {
-        return NextResponse.json(
-          { error: "No file provided" },
-          { status: 400 }
-        );
+        return NextResponse.json({ error: "No file provided" }, { status: 400 });
       }
       if (config.maxSize && file.size > config.maxSize) {
         return NextResponse.json(
@@ -234,7 +238,7 @@ function createUploadHandler(config) {
     } catch (error) {
       console.error("Upload error:", error);
       if (error instanceof Error && "status" in error && typeof error.status === "number") {
-        const status = error.status;
+        const { status } = error;
         return NextResponse.json(
           { error: error.message },
           { status: status >= 400 ? status : 500 }
@@ -244,19 +248,6 @@ function createUploadHandler(config) {
     }
   };
 }
-function formatBytes(bytes) {
-  if (bytes === 0) {
-    return "0 Bytes";
-  }
-  const k = 1024;
-  const sizes = ["Bytes", "KB", "MB", "GB"];
-  const i = Math.floor(Math.log(bytes) / Math.log(k));
-  return `${Number.parseFloat((bytes / k ** i).toFixed(2))} ${sizes[i]}`;
-}
-var MIME_TYPE_PATTERN = /^[a-z]+\/[a-z0-9.+-]+$/i;
-function isValidMimeType(mimeType) {
-  return MIME_TYPE_PATTERN.test(mimeType);
-}
 export {
   createConfirmHandler,
   createCorsPreflightHandler,

package/package.json

@@ -1,20 +1,23 @@
 {
   "name": "@howells/stow-next",
-  "version": "2.1.0",
+  "version": "2.4.0",
   "description": "Next.js integration for Stow file storage",
+  "keywords": [
+    "file-storage",
+    "image-loader",
+    "nextjs",
+    "sdk",
+    "stow"
+  ],
+  "homepage": "https://stow.sh",
   "license": "MIT",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/howells/stow.git",
     "directory": "packages/stow-next"
   },
-  "homepage": "https://stow.sh",
-  "keywords": [
-    "stow",
-    "file-storage",
-    "nextjs",
-    "image-loader",
-    "sdk"
+  "files": [
+    "dist"
   ],
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
@@ -31,26 +34,23 @@
       "require": "./dist/image-loader.js"
     }
   },
-  "files": [
-    "dist"
-  ],
-  "peerDependencies": {
-    "next": "^13.0.0 || ^14.0.0 || ^15.0.0 || ^16.0.0",
-    "react": "^18.0.0 || ^19.0.0"
-  },
   "devDependencies": {
     "@types/react": "19.2.14",
-    "next": "16.1.7",
+    "next": "16.2.0",
     "react": "^19.2.4",
     "tsup": "^8.5.1",
     "typescript": "^5.9.3",
-    "vitest": "^4.1.0",
+    "vite-plus": "latest",
     "@stow/typescript-config": "0.0.0"
   },
+  "peerDependencies": {
+    "next": "^13.0.0 || ^14.0.0 || ^15.0.0 || ^16.0.0",
+    "react": "^18.0.0 || ^19.0.0"
+  },
   "scripts": {
     "build": "tsup src/index.ts src/image-loader.ts --format cjs,esm --dts --external next --external react",
     "dev": "tsup src/index.ts src/image-loader.ts --format cjs,esm --dts --external next --external react --watch",
-    "test": "vitest run",
-    "test:watch": "vitest"
+    "test": "vp test run",
+    "test:watch": "vp test"
   }
 }