@lowdefy/server 4.5.1 → 4.6.0

package/lib/server/sentry/setSentryUser.js

@@ -0,0 +1,46 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+function setSentryUser({ user, sentryConfig }) {
+  // No-op if Sentry not initialized (DSN not set)
+  if (!process.env.SENTRY_DSN) {
+    return;
+  }
+
+  // No-op if no user
+  if (!user) {
+    Sentry.setUser(null);
+    return;
+  }
+
+  const userFields = sentryConfig?.userFields || ['id', '_id'];
+  const sentryUser = {};
+
+  userFields.forEach((field) => {
+    if (user[field] !== undefined) {
+      sentryUser[field] = user[field];
+    }
+  });
+
+  // Only set user if we have at least one field
+  if (Object.keys(sentryUser).length > 0) {
+    Sentry.setUser(sentryUser);
+  }
+}
+
+export default setSentryUser;

package/lib/server/serverSidePropsWrapper.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -18,11 +18,11 @@ import path from 'path';
 import { createApiContext } from '@lowdefy/api';
 import { v4 as uuid } from 'uuid';
 
-import config from '../../build/config.json';
+import config from '../build/config.js';
 import createLogger from './log/createLogger.js';
 import fileCache from './fileCache.js';
 import getServerSession from './auth/getServerSession.js';
-import logError from './log/logError.js';
+import createHandleError from './log/createHandleError.js';
 import logRequest from './log/logRequest.js';
 import getAuthOptions from './auth/getAuthOptions.js';
 
@@ -35,6 +35,9 @@ function serverSidePropsWrapper(handler) {
       buildDirectory: path.join(process.cwd(), 'build'),
       config,
       fileCache,
+      handleError: async (err) => {
+        console.error(err);
+      },
       headers: nextContext?.req?.headers,
       logger: console,
       nextContext,
@@ -43,6 +46,7 @@ function serverSidePropsWrapper(handler) {
     };
     try {
       context.logger = createLogger({ rid: context.rid });
+      context.handleError = createHandleError({ context });
       context.authOptions = getAuthOptions(context);
       context.session = await getServerSession(context);
       createApiContext(context);
@@ -51,7 +55,7 @@ function serverSidePropsWrapper(handler) {
       const response = await handler({ context, nextContext });
       return response;
     } catch (error) {
-      logError({ error, context });
+      await context.handleError(error);
       throw error;
     }
   };

package/lowdefy/build.mjs

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -16,11 +16,12 @@
 */
 
 import path from 'path';
-import pino from 'pino';
 import yargs from 'yargs';
 import { hideBin } from 'yargs/helpers';
 
 import build from '@lowdefy/build';
+import { BuildError } from '@lowdefy/errors';
+import { createNodeLogger } from '@lowdefy/logger/node';
 import createCustomPluginTypesMap from './createCustomPluginTypesMap.mjs';
 
 const argv = yargs(hideBin(process.argv)).argv;
@@ -39,16 +40,15 @@ async function run() {
 
   const customTypesMap = await createCustomPluginTypesMap({ directories });
 
-  const logger = pino({
+  let logger;
+  logger = createNodeLogger({
     name: 'lowdefy_build',
     level: process.env.LOWDEFY_LOG_LEVEL ?? 'info',
     base: { pid: undefined, hostname: undefined },
-    mixin: (context, level) => {
-      return {
-        ...context,
-        print: context.print ?? logger.levels.labels[level],
-      };
-    },
+    mixin: (context, level) => ({
+      ...context,
+      print: context.print ?? logger.levels.labels[level],
+    }),
   });
 
   await build({
@@ -59,4 +59,11 @@ async function run() {
   });
 }
 
-run();
+run().catch((error) => {
+  if (error instanceof BuildError) {
+    console.error(error.message);
+    process.exit(1);
+  }
+  // Otherwise, show full error with stack trace
+  throw error;
+});

package/lowdefy/createCustomPluginTypesMap.mjs

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/next.config.js

@@ -1,7 +1,8 @@
+const { withSentryConfig } = require('@sentry/nextjs');
 const withLess = require('next-with-less');
 const lowdefyConfig = require('./build/config.json');
 
-module.exports = withLess({
+const nextConfig = withLess({
   basePath: lowdefyConfig.basePath,
   reactStrictMode: true,
   webpack: (config, { isServer }) => {
@@ -27,3 +28,13 @@ module.exports = withLess({
     ignoreDuringBuilds: true,
   },
 });
+
+// Only wrap with Sentry if SENTRY_DSN is configured
+// This enables source map uploads when SENTRY_AUTH_TOKEN is present
+module.exports = process.env.SENTRY_DSN
+  ? withSentryConfig(nextConfig, {
+      // Sentry options
+      silent: true,
+      hideSourceMaps: true,
+    })
+  : nextConfig;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lowdefy/server",
-  "version": "4.5.1",
+  "version": "4.6.0",
   "license": "Apache-2.0",
   "description": "",
   "homepage": "https://lowdefy.com",
@@ -36,33 +36,37 @@
     ".npmrc"
   ],
   "dependencies": {
-    "@lowdefy/actions-core": "4.5.1",
-    "@lowdefy/api": "4.5.1",
-    "@lowdefy/block-utils": "4.5.1",
-    "@lowdefy/blocks-antd": "4.5.1",
-    "@lowdefy/blocks-basic": "4.5.1",
-    "@lowdefy/blocks-loaders": "4.5.1",
-    "@lowdefy/blocks-markdown": "4.5.1",
-    "@lowdefy/client": "4.5.1",
-    "@lowdefy/connection-axios-http": "4.5.1",
-    "@lowdefy/connection-mongodb": "4.5.1",
-    "@lowdefy/helpers": "4.5.1",
-    "@lowdefy/layout": "4.5.1",
-    "@lowdefy/node-utils": "4.5.1",
-    "@lowdefy/operators-js": "4.5.1",
-    "@lowdefy/operators-nunjucks": "4.5.1",
-    "@lowdefy/operators-uuid": "4.5.1",
-    "@lowdefy/plugin-next-auth": "4.5.1",
+    "@lowdefy/actions-core": "4.6.0",
+    "@lowdefy/api": "4.6.0",
+    "@lowdefy/block-utils": "4.6.0",
+    "@lowdefy/blocks-antd": "4.6.0",
+    "@lowdefy/blocks-basic": "4.6.0",
+    "@lowdefy/blocks-loaders": "4.6.0",
+    "@lowdefy/blocks-markdown": "4.6.0",
+    "@lowdefy/client": "4.6.0",
+    "@lowdefy/connection-axios-http": "4.6.0",
+    "@lowdefy/connection-mongodb": "4.6.0",
+    "@lowdefy/errors": "4.6.0",
+    "@lowdefy/helpers": "4.6.0",
+    "@lowdefy/layout": "4.6.0",
+    "@lowdefy/logger": "4.6.0",
+    "@lowdefy/node-utils": "4.6.0",
+    "@lowdefy/operators-js": "4.6.0",
+    "@lowdefy/operators-nunjucks": "4.6.0",
+    "@lowdefy/operators-uuid": "4.6.0",
+    "@lowdefy/plugin-next-auth": "4.6.0",
+    "@sentry/nextjs": "8.53.0",
     "next": "13.5.4",
     "next-auth": "4.24.5",
     "pino": "8.16.2",
     "process": "0.11.10",
     "react": "18.2.0",
     "react-dom": "18.2.0",
-    "react-icons": "4.12.0"
+    "react-icons": "4.12.0",
+    "uuid": "13.0.0"
   },
   "devDependencies": {
-    "@lowdefy/build": "4.5.1",
+    "@lowdefy/build": "4.6.0",
     "@next/eslint-plugin-next": "13.5.4",
     "less": "4.2.0",
     "less-loader": "11.1.3",

package/package.original.json

@@ -1,6 +1,6 @@
 {
   "name": "@lowdefy/server",
-  "version": "4.5.1",
+  "version": "4.6.0",
   "license": "Apache-2.0",
   "description": "",
   "homepage": "https://lowdefy.com",
@@ -46,33 +46,37 @@
     "prepublishOnly": "pnpm build"
   },
   "dependencies": {
-    "@lowdefy/actions-core": "4.5.1",
-    "@lowdefy/api": "4.5.1",
-    "@lowdefy/block-utils": "4.5.1",
-    "@lowdefy/blocks-antd": "4.5.1",
-    "@lowdefy/blocks-basic": "4.5.1",
-    "@lowdefy/blocks-loaders": "4.5.1",
-    "@lowdefy/blocks-markdown": "4.5.1",
-    "@lowdefy/client": "4.5.1",
-    "@lowdefy/connection-axios-http": "4.5.1",
-    "@lowdefy/connection-mongodb": "4.5.1",
-    "@lowdefy/helpers": "4.5.1",
-    "@lowdefy/layout": "4.5.1",
-    "@lowdefy/node-utils": "4.5.1",
-    "@lowdefy/operators-js": "4.5.1",
-    "@lowdefy/operators-nunjucks": "4.5.1",
-    "@lowdefy/operators-uuid": "4.5.1",
-    "@lowdefy/plugin-next-auth": "4.5.1",
+    "@lowdefy/actions-core": "4.6.0",
+    "@lowdefy/api": "4.6.0",
+    "@lowdefy/block-utils": "4.6.0",
+    "@lowdefy/blocks-antd": "4.6.0",
+    "@lowdefy/blocks-basic": "4.6.0",
+    "@lowdefy/blocks-loaders": "4.6.0",
+    "@lowdefy/blocks-markdown": "4.6.0",
+    "@lowdefy/client": "4.6.0",
+    "@lowdefy/connection-axios-http": "4.6.0",
+    "@lowdefy/connection-mongodb": "4.6.0",
+    "@lowdefy/errors": "4.6.0",
+    "@lowdefy/helpers": "4.6.0",
+    "@lowdefy/layout": "4.6.0",
+    "@lowdefy/logger": "4.6.0",
+    "@lowdefy/node-utils": "4.6.0",
+    "@lowdefy/operators-js": "4.6.0",
+    "@lowdefy/operators-nunjucks": "4.6.0",
+    "@lowdefy/operators-uuid": "4.6.0",
+    "@lowdefy/plugin-next-auth": "4.6.0",
+    "@sentry/nextjs": "8.53.0",
     "next": "13.5.4",
     "next-auth": "4.24.5",
     "pino": "8.16.2",
     "process": "0.11.10",
     "react": "18.2.0",
     "react-dom": "18.2.0",
-    "react-icons": "4.12.0"
+    "react-icons": "4.12.0",
+    "uuid": "13.0.0"
   },
   "devDependencies": {
-    "@lowdefy/build": "4.5.1",
+    "@lowdefy/build": "4.6.0",
     "@next/eslint-plugin-next": "13.5.4",
     "less": "4.2.0",
     "less-loader": "11.1.3",

package/pages/404.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -17,7 +17,7 @@
 import path from 'path';
 import { createApiContext, getPageConfig, getRootConfig } from '@lowdefy/api';
 
-import config from '../build/config.json';
+import config from '../lib/build/config.js';
 import fileCache from '../lib/server/fileCache.js';
 import Page from '../lib/client/Page.js';
 

package/pages/[pageId].js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/pages/_app.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -14,25 +14,48 @@
   limitations under the License.
 */
 
-import React, { useRef } from 'react';
+import React, { useCallback, useRef } from 'react';
 import dynamic from 'next/dynamic';
 
 import { ErrorBoundary } from '@lowdefy/block-utils';
 
 import Auth from '../lib/client/auth/Auth.js';
 import createLogUsage from '../lib/client/createLogUsage.js';
+import initSentryClient from '../lib/client/sentry/initSentryClient.js';
+import loggerConfig from '../lib/build/logger.js';
+import setSentryUser from '../lib/client/sentry/setSentryUser.js';
 
 // Must be in _app due to next specifications.
 import '../build/plugins/styles.less';
 
+// Initialize Sentry client once on module load
+initSentryClient({
+  sentryDsn: process.env.NEXT_PUBLIC_SENTRY_DSN,
+  sentryConfig: loggerConfig.sentry,
+});
+
 function App({ Component, pageProps: { session, rootConfig, pageConfig } }) {
   const usageDataRef = useRef({});
   const lowdefyRef = useRef({ eventCallback: createLogUsage({ usageDataRef }) });
+
+  const handleError = useCallback((error) => {
+    if (lowdefyRef.current?._internal?.handleError) {
+      lowdefyRef.current._internal.handleError(error);
+    } else {
+      console.error(error);
+    }
+  }, []);
+
   return (
-    <ErrorBoundary fullPage>
+    <ErrorBoundary fullPage onError={handleError}>
       <Auth session={session}>
         {(auth) => {
           usageDataRef.current.user = auth.session?.hashed_id;
+          // Set Sentry user context when auth changes
+          setSentryUser({
+            user: auth.session,
+            sentryConfig: loggerConfig.sentry,
+          });
           return (
             <Component
               auth={auth}

package/pages/_document.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -17,8 +17,8 @@
 import React from 'react';
 import Document, { Html, Head, Main, NextScript } from 'next/document';
 
-import appJson from '../build/app.json';
-import lowdefyConfig from '../build/config.json';
+import appJson from '../lib/build/app.js';
+import lowdefyConfig from '../lib/build/config.js';
 
 const basePath = lowdefyConfig.basePath ?? '';
 

package/pages/api/auth/[...nextauth].js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -17,7 +17,7 @@
 import NextAuth from 'next-auth';
 
 import apiWrapper from '../../../lib/server/apiWrapper.js';
-import authJson from '../../../build/auth.json';
+import authJson from '../../../lib/build/auth.js';
 
 async function handler({ context, req, res }) {
   if (authJson.configured !== true) {

package/pages/api/client-error.js

@@ -0,0 +1,58 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import { logClientError } from '@lowdefy/api';
+
+import apiWrapper from '../../lib/server/apiWrapper.js';
+import captureSentryError from '../../lib/server/sentry/captureSentryError.js';
+
+async function handler({ context, req, res }) {
+  if (req.method !== 'POST') {
+    throw new Error('Only POST requests are supported.');
+  }
+
+  const origin = req.headers.origin;
+  if (!origin) {
+    res.status(403).json({ error: 'Forbidden' });
+    return;
+  }
+  try {
+    if (new URL(origin).host !== req.headers.host) {
+      res.status(403).json({ error: 'Forbidden' });
+      return;
+    }
+  } catch {
+    res.status(403).json({ error: 'Forbidden' });
+    return;
+  }
+
+  // Strip received from payload — prod doesn't need it for schema validation
+  if (req.body?.['~e']) {
+    delete req.body['~e'].received;
+  }
+  const { error, ...response } = await logClientError(context, req.body);
+
+  // Capture client error to Sentry (no-op if Sentry not configured)
+  captureSentryError({
+    error,
+    context,
+    configLocation: response.source ? { source: response.source, config: response.config } : null,
+  });
+
+  res.status(200).json({ success: true });
+}
+
+export default apiWrapper(handler);

package/pages/api/endpoints/[endpointId].js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/pages/api/request/[pageId]/[requestId].js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -23,8 +23,8 @@ async function handler({ context, req, res }) {
     throw new Error('Only POST requests are supported.');
   }
   const { pageId, requestId } = req.query;
-  const { blockId, payload } = req.body;
-  context.logger.info({ event: 'call_request', pageId, requestId, blockId });
+  const { actionId, blockId, payload } = req.body;
+  context.logger.info({ event: 'call_request', pageId, requestId, blockId, actionId });
   const response = await callRequest(context, { blockId, pageId, payload, requestId });
   res.status(200).json(response);
 }

package/pages/api/usage.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -17,7 +17,7 @@
 // TODO
 // import crypto from 'crypto';
 
-import appJson from '../../build/app.json';
+import appJson from '../../lib/build/app.js';
 import packageJson from '../../package.json';
 import apiWrapper from '../../lib/server/apiWrapper.js';
 // import validateLicense from '../../lib/server/validateLicense.js';

package/pages/index.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/server/log/logError.js

@@ -1,72 +0,0 @@
-/*
-  Copyright 2020-2024 Lowdefy, Inc
-
-  Licensed under the Apache License, Version 2.0 (the "License");
-  you may not use this file except in compliance with the License.
-  You may obtain a copy of the License at
-
-      http://www.apache.org/licenses/LICENSE-2.0
-
-  Unless required by applicable law or agreed to in writing, software
-  distributed under the License is distributed on an "AS IS" BASIS,
-  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  See the License for the specific language governing permissions and
-  limitations under the License.
-*/
-
-function logError({ context, error }) {
-  try {
-    const { headers = {}, user = {} } = context;
-
-    context.logger.error({
-      // TODO:
-      // app_name
-      // app_version
-      // lowdefy_version
-      // build_hash
-      // config_hash
-      err: error,
-      user: {
-        id: user.id,
-        roles: user.roles,
-        sub: user.sub,
-        session_id: user.session_id,
-      },
-      url: context.req.url,
-      method: context.req.method,
-      resolvedUrl: context.nextContext?.resolvedUrl,
-      hostname: context.req.hostname,
-      headers: {
-        'accept-language': headers['accept-language'],
-        'sec-ch-ua-mobile': headers['sec-ch-ua-mobile'],
-        'sec-ch-ua-platform': headers['sec-ch-ua-platform'],
-        'sec-ch-ua': headers['sec-ch-ua'],
-        'user-agent': headers['user-agent'],
-        host: headers.host,
-        referer: headers.referer,
-        // Non localhost headers
-        'x-forward-for': headers['x-forward-for'],
-        // Vercel headers
-        'x-vercel-id': headers['x-vercel-id'],
-        'x-real-ip': headers['x-real-ip'],
-        'x-vercel-ip-country': headers['x-vercel-ip-country'],
-        'x-vercel-ip-country-region': headers['x-vercel-ip-country-region'],
-        'x-vercel-ip-city': headers['x-vercel-ip-city'],
-        'x-vercel-ip-latitude': headers['x-vercel-ip-latitude'],
-        'x-vercel-ip-longitude': headers['x-vercel-ip-longitude'],
-        'x-vercel-ip-timezone': headers['x-vercel-ip-timezone'],
-        // Cloudflare headers
-        'cf-connecting-ip': headers['cf-connecting-ip'],
-        'cf-ray': headers['cf-ray'],
-        'cf-ipcountry': headers['cf-ipcountry'],
-        'cf-visitor': headers['cf-visitor'],
-      },
-    });
-  } catch (e) {
-    console.error(error);
-    console.error('An error occurred while logging the error.');
-    console.error(e);
-  }
-}
-
-export default logError;