@kedaruma/revlm-client 1.0.44 → 1.0.46

package/dist/index.d.mts

@@ -181,7 +181,6 @@ type RevlmOptions = {
     provisionalAuthDomain?: string;
     autoSetToken?: boolean;
     autoRefreshOn401?: boolean;
-    strictRefreshCookie?: boolean;
 };
 type RevlmResponse<T = any> = {
     ok: boolean;
@@ -201,7 +200,7 @@ declare class Revlm {
     private provisionalAuthDomain;
     private autoSetToken;
     private autoRefreshOn401;
-    private strictRefreshCookie;
+    private cookieCheckPromise?;
     constructor(baseUrl: string, opts?: RevlmOptions);
     setToken(token: string): void;
     getToken(): string | undefined;
@@ -213,6 +212,7 @@ declare class Revlm {
     private parseResponse;
     private request;
     private shouldSkipAuthRetry;
+    private shouldSkipCookieCheck;
     private signIfNeeded;
     private requestWithRetry;
     login(authId: string, password: string): Promise<LoginResponse>;
@@ -224,6 +224,7 @@ declare class Revlm {
     }): Promise<RevlmResponse<any>>;
     revlmGate(payload: any): Promise<RevlmResponse<any>>;
     db(dbName: string): RevlmDBDatabase;
+    private ensureCookieSupport;
 }
 
 declare class MongoDBService {

package/dist/index.d.ts

@@ -181,7 +181,6 @@ type RevlmOptions = {
     provisionalAuthDomain?: string;
     autoSetToken?: boolean;
     autoRefreshOn401?: boolean;
-    strictRefreshCookie?: boolean;
 };
 type RevlmResponse<T = any> = {
     ok: boolean;
@@ -201,7 +200,7 @@ declare class Revlm {
     private provisionalAuthDomain;
     private autoSetToken;
     private autoRefreshOn401;
-    private strictRefreshCookie;
+    private cookieCheckPromise?;
     constructor(baseUrl: string, opts?: RevlmOptions);
     setToken(token: string): void;
     getToken(): string | undefined;
@@ -213,6 +212,7 @@ declare class Revlm {
     private parseResponse;
     private request;
     private shouldSkipAuthRetry;
+    private shouldSkipCookieCheck;
     private signIfNeeded;
     private requestWithRetry;
     login(authId: string, password: string): Promise<LoginResponse>;
@@ -224,6 +224,7 @@ declare class Revlm {
     }): Promise<RevlmResponse<any>>;
     revlmGate(payload: any): Promise<RevlmResponse<any>>;
     db(dbName: string): RevlmDBDatabase;
+    private ensureCookieSupport;
 }
 
 declare class MongoDBService {

package/dist/index.js

@@ -156,7 +156,7 @@ var Revlm = class {
   provisionalAuthDomain;
   autoSetToken;
   autoRefreshOn401;
-  strictRefreshCookie;
+  cookieCheckPromise;
   constructor(baseUrl, opts = {}) {
     if (!baseUrl) throw new Error("baseUrl is required");
     this.baseUrl = baseUrl.replace(/\/$/, "");
@@ -167,7 +167,6 @@ var Revlm = class {
     this.provisionalAuthDomain = opts.provisionalAuthDomain || "";
     this.autoSetToken = opts.autoSetToken ?? true;
     this.autoRefreshOn401 = opts.autoRefreshOn401 || false;
-    this.strictRefreshCookie = opts.strictRefreshCookie || false;
     if (!this.fetchImpl) {
       throw new Error("No fetch implementation available. Provide fetchImpl in options or run in Node 18+ with global fetch.");
     }
@@ -237,11 +236,18 @@ var Revlm = class {
     const pathname = path.startsWith("http") ? new URL(path).pathname : path;
     return pathname.includes("/login") || pathname.includes("/provisional-login") || pathname.includes("/refresh-token") || pathname.includes("/verify-token");
   }
+  shouldSkipCookieCheck(path) {
+    const pathname = path.startsWith("http") ? new URL(path).pathname : path;
+    return pathname.includes("/cookie-check");
+  }
   async signIfNeeded(_url, _method, headers, _body) {
     return { signedUrl: _url, signedHeaders: headers };
   }
   async requestWithRetry(path, method = "POST", body, opts = { allowAuthRetry: false, retrying: false }) {
     const { allowAuthRetry, retrying } = opts;
+    if (!this.shouldSkipCookieCheck(path)) {
+      await this.ensureCookieSupport();
+    }
     const url = path.startsWith("http") ? path : `${this.baseUrl}${path.startsWith("/") ? "" : "/"}${path}`;
     const hasBody = body !== void 0;
     const headers = this.makeHeaders(hasBody);
@@ -264,8 +270,17 @@ var Revlm = class {
       }
       if (allowAuthRetry && !retrying && res.status === 401 && !this.shouldSkipAuthRetry(path)) {
         const refreshRes = await this.refreshToken();
-        if (this.strictRefreshCookie && !refreshRes.ok && refreshRes.reason === "no_refresh_secret") {
-          throw new Error("Refresh cookie missing. Provide a cookie-aware fetch implementation for Node/RN.");
+        if (!refreshRes.ok) {
+          console.warn("### refresh failed:", {
+            reason: refreshRes.reason,
+            status: refreshRes.status,
+            error: refreshRes.error
+          });
+          if (refreshRes.reason === "no_refresh_secret") {
+            const missingError = new Error("Refresh cookie missing. Provide a cookie-aware fetch implementation for Node/RN.");
+            missingError.revlmReason = "no_refresh_secret";
+            throw missingError;
+          }
         }
         if (refreshRes && refreshRes.ok && refreshRes.token) {
           return this.requestWithRetry(path, method, body, { allowAuthRetry: false, retrying: true });
@@ -273,6 +288,9 @@ var Revlm = class {
       }
       return out;
     } catch (err) {
+      if (err && err.revlmReason === "no_refresh_secret") {
+        throw err;
+      }
       return { ok: false, error: err?.message || String(err) };
     }
   }
@@ -288,6 +306,7 @@ var Revlm = class {
     if (!this.provisionalEnabled) {
       throw new Error("provisional login is disabled by client configuration");
     }
+    await this.ensureCookieSupport();
     if (!authId) throw new Error("authId is required");
     const provisionalClient = new import_revlm_shared.AuthClient({ secretMaster: this.provisionalAuthSecretMaster, authDomain: this.provisionalAuthDomain });
     const provisionalPassword = await provisionalClient.producePassword(String(Date.now() * 1e3));
@@ -314,6 +333,21 @@ var Revlm = class {
   db(dbName) {
     return new RevlmDBDatabase(dbName, this);
   }
+  async ensureCookieSupport() {
+    if (this.cookieCheckPromise) return this.cookieCheckPromise;
+    this.cookieCheckPromise = (async () => {
+      const first = await this.requestWithRetry("/cookie-check", "POST", void 0, { allowAuthRetry: false, retrying: false });
+      if (first.ok) return;
+      if (first.reason !== "cookie_missing") {
+        throw new Error(`Cookie check failed: ${first.reason || first.error || "unknown_error"}`);
+      }
+      const second = await this.requestWithRetry("/cookie-check", "POST", void 0, { allowAuthRetry: false, retrying: false });
+      if (!second.ok) {
+        throw new Error("Cookie support missing. Provide a cookie-aware fetch implementation for Node/RN.");
+      }
+    })();
+    return this.cookieCheckPromise;
+  }
 };
 var MongoDBService = class {
   _revlm;

package/dist/index.mjs

@@ -113,7 +113,7 @@ var Revlm = class {
   provisionalAuthDomain;
   autoSetToken;
   autoRefreshOn401;
-  strictRefreshCookie;
+  cookieCheckPromise;
   constructor(baseUrl, opts = {}) {
     if (!baseUrl) throw new Error("baseUrl is required");
     this.baseUrl = baseUrl.replace(/\/$/, "");
@@ -124,7 +124,6 @@ var Revlm = class {
     this.provisionalAuthDomain = opts.provisionalAuthDomain || "";
     this.autoSetToken = opts.autoSetToken ?? true;
     this.autoRefreshOn401 = opts.autoRefreshOn401 || false;
-    this.strictRefreshCookie = opts.strictRefreshCookie || false;
     if (!this.fetchImpl) {
       throw new Error("No fetch implementation available. Provide fetchImpl in options or run in Node 18+ with global fetch.");
     }
@@ -194,11 +193,18 @@ var Revlm = class {
     const pathname = path.startsWith("http") ? new URL(path).pathname : path;
     return pathname.includes("/login") || pathname.includes("/provisional-login") || pathname.includes("/refresh-token") || pathname.includes("/verify-token");
   }
+  shouldSkipCookieCheck(path) {
+    const pathname = path.startsWith("http") ? new URL(path).pathname : path;
+    return pathname.includes("/cookie-check");
+  }
   async signIfNeeded(_url, _method, headers, _body) {
     return { signedUrl: _url, signedHeaders: headers };
   }
   async requestWithRetry(path, method = "POST", body, opts = { allowAuthRetry: false, retrying: false }) {
     const { allowAuthRetry, retrying } = opts;
+    if (!this.shouldSkipCookieCheck(path)) {
+      await this.ensureCookieSupport();
+    }
     const url = path.startsWith("http") ? path : `${this.baseUrl}${path.startsWith("/") ? "" : "/"}${path}`;
     const hasBody = body !== void 0;
     const headers = this.makeHeaders(hasBody);
@@ -221,8 +227,17 @@ var Revlm = class {
       }
       if (allowAuthRetry && !retrying && res.status === 401 && !this.shouldSkipAuthRetry(path)) {
         const refreshRes = await this.refreshToken();
-        if (this.strictRefreshCookie && !refreshRes.ok && refreshRes.reason === "no_refresh_secret") {
-          throw new Error("Refresh cookie missing. Provide a cookie-aware fetch implementation for Node/RN.");
+        if (!refreshRes.ok) {
+          console.warn("### refresh failed:", {
+            reason: refreshRes.reason,
+            status: refreshRes.status,
+            error: refreshRes.error
+          });
+          if (refreshRes.reason === "no_refresh_secret") {
+            const missingError = new Error("Refresh cookie missing. Provide a cookie-aware fetch implementation for Node/RN.");
+            missingError.revlmReason = "no_refresh_secret";
+            throw missingError;
+          }
         }
         if (refreshRes && refreshRes.ok && refreshRes.token) {
           return this.requestWithRetry(path, method, body, { allowAuthRetry: false, retrying: true });
@@ -230,6 +245,9 @@ var Revlm = class {
       }
       return out;
     } catch (err) {
+      if (err && err.revlmReason === "no_refresh_secret") {
+        throw err;
+      }
       return { ok: false, error: err?.message || String(err) };
     }
   }
@@ -245,6 +263,7 @@ var Revlm = class {
     if (!this.provisionalEnabled) {
       throw new Error("provisional login is disabled by client configuration");
     }
+    await this.ensureCookieSupport();
     if (!authId) throw new Error("authId is required");
     const provisionalClient = new AuthClient({ secretMaster: this.provisionalAuthSecretMaster, authDomain: this.provisionalAuthDomain });
     const provisionalPassword = await provisionalClient.producePassword(String(Date.now() * 1e3));
@@ -271,6 +290,21 @@ var Revlm = class {
   db(dbName) {
     return new RevlmDBDatabase(dbName, this);
   }
+  async ensureCookieSupport() {
+    if (this.cookieCheckPromise) return this.cookieCheckPromise;
+    this.cookieCheckPromise = (async () => {
+      const first = await this.requestWithRetry("/cookie-check", "POST", void 0, { allowAuthRetry: false, retrying: false });
+      if (first.ok) return;
+      if (first.reason !== "cookie_missing") {
+        throw new Error(`Cookie check failed: ${first.reason || first.error || "unknown_error"}`);
+      }
+      const second = await this.requestWithRetry("/cookie-check", "POST", void 0, { allowAuthRetry: false, retrying: false });
+      if (!second.ok) {
+        throw new Error("Cookie support missing. Provide a cookie-aware fetch implementation for Node/RN.");
+      }
+    })();
+    return this.cookieCheckPromise;
+  }
 };
 var MongoDBService = class {
   _revlm;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kedaruma/revlm-client",
-  "version": "1.0.44",
+  "version": "1.0.46",
   "private": false,
   "description": "TypeScript client SDK for talking to the Revlm server replacement for MongoDB Realm.",
   "keywords": [