@lowdefy/server 4.5.2 → 4.7.0

package/lib/build/app.js

@@ -0,0 +1,19 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+import { serializer } from '@lowdefy/helpers';
+import raw from '../../build/app.json';
+
+export default serializer.deserialize(raw);

package/lib/build/auth.js

@@ -0,0 +1,19 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+import { serializer } from '@lowdefy/helpers';
+import raw from '../../build/auth.json';
+
+export default serializer.deserialize(raw);

package/lib/build/config.js

@@ -0,0 +1,19 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+import { serializer } from '@lowdefy/helpers';
+import raw from '../../build/config.json';
+
+export default serializer.deserialize(raw);

package/lib/build/logger.js

@@ -0,0 +1,19 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+import { serializer } from '@lowdefy/helpers';
+import raw from '../../build/logger.json';
+
+export default serializer.deserialize(raw);

package/lib/client/Page.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/client/auth/Auth.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -20,7 +20,7 @@ import React from 'react';
 import AuthConfigured from './AuthConfigured.js';
 import AuthNotConfigured from './AuthNotConfigured.js';
 
-import authConfig from '../../../build/auth.json';
+import authConfig from '../../build/auth.js';
 
 function Auth({ children, session }) {
   if (authConfig.configured === true) {

package/lib/client/auth/AuthConfigured.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -19,7 +19,7 @@
 import React, { useEffect, useRef } from 'react';
 import { getSession, SessionProvider, signIn, signOut, useSession } from 'next-auth/react';
 
-import lowdefyConfig from '../../../build/config.json';
+import lowdefyConfig from '../../build/config.js';
 
 function Session({ children }) {
   const wasAuthenticated = useRef(false);

package/lib/client/auth/AuthNotConfigured.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/client/createLogUsage.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/client/sentry/captureSentryError.js

@@ -0,0 +1,43 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+function captureSentryError({ error, pageId, blockId, configLocation }) {
+  const tags = {};
+  const extra = {};
+
+  // Add Lowdefy-specific context
+  if (pageId) {
+    tags.pageId = pageId;
+  }
+
+  if (blockId) {
+    tags.blockId = blockId;
+  }
+
+  // Add config location context
+  if (configLocation) {
+    extra.configLocation = configLocation;
+  }
+
+  Sentry.captureException(error, {
+    tags,
+    extra,
+  });
+}
+
+export default captureSentryError;

package/lib/client/sentry/initSentryClient.js

@@ -0,0 +1,55 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+let initialized = false;
+
+function initSentryClient({ sentryDsn, sentryConfig }) {
+  // No-op if already initialized
+  if (initialized) {
+    return;
+  }
+
+  // No-op if SENTRY_DSN not set
+  if (!sentryDsn) {
+    return;
+  }
+
+  // No-op if client logging is explicitly disabled
+  if (sentryConfig?.client === false) {
+    return;
+  }
+
+  const config = sentryConfig || {};
+
+  Sentry.init({
+    dsn: sentryDsn,
+    environment: config.environment || process.env.NODE_ENV || 'production',
+    tracesSampleRate: config.tracesSampleRate ?? 0.1,
+    replaysSessionSampleRate: config.replaysSessionSampleRate ?? 0,
+    replaysOnErrorSampleRate: config.replaysOnErrorSampleRate ?? 0.1,
+    integrations: [
+      Sentry.replayIntegration(),
+      ...(config.feedback ? [Sentry.feedbackIntegration({ colorScheme: 'system' })] : []),
+    ],
+  });
+
+  initialized = true;
+  console.log('Sentry enabled: client');
+}
+
+export default initSentryClient;

package/lib/client/sentry/setSentryUser.js

@@ -0,0 +1,41 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+function setSentryUser({ user, sentryConfig }) {
+  // No-op if no user
+  if (!user) {
+    Sentry.setUser(null);
+    return;
+  }
+
+  const userFields = sentryConfig?.userFields || ['id', '_id'];
+  const sentryUser = {};
+
+  userFields.forEach((field) => {
+    if (user[field] !== undefined) {
+      sentryUser[field] = user[field];
+    }
+  });
+
+  // Only set user if we have at least one field
+  if (Object.keys(sentryUser).length > 0) {
+    Sentry.setUser(sentryUser);
+  }
+}
+
+export default setSentryUser;

package/lib/server/apiWrapper.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -17,18 +17,21 @@
 import path from 'path';
 import { createApiContext } from '@lowdefy/api';
 import { getSecretsFromEnv } from '@lowdefy/node-utils';
+import { serializer } from '@lowdefy/helpers';
 import { v4 as uuid } from 'uuid';
 
-import config from '../../build/config.json';
+import config from '../build/config.js';
 import connections from '../../build/plugins/connections.js';
 import createLogger from './log/createLogger.js';
 import fileCache from './fileCache.js';
 import getServerSession from './auth/getServerSession.js';
-import logError from './log/logError.js';
+import createHandleError from './log/createHandleError.js';
 import logRequest from './log/logRequest.js';
 import operators from '../../build/plugins/operators/server.js';
 import jsMap from '../../build/plugins/operators/serverJsMap.js';
 import getAuthOptions from './auth/getAuthOptions.js';
+import loggerConfig from '../build/logger.js';
+import setSentryUser from './sentry/setSentryUser.js';
 
 const secrets = getSecretsFromEnv();
 
@@ -43,6 +46,9 @@ function apiWrapper(handler) {
       fileCache,
       headers: req?.headers,
       jsMap,
+      handleError: async (err) => {
+        console.error(err);
+      },
       logger: console,
       operators,
       req,
@@ -51,9 +57,15 @@ function apiWrapper(handler) {
     };
     try {
       context.logger = createLogger({ rid: context.rid });
+      context.handleError = createHandleError({ context });
       context.authOptions = getAuthOptions(context);
       if (!req.url.startsWith('/api/auth')) {
         context.session = await getServerSession(context);
+        // Set Sentry user context for authenticated requests
+        setSentryUser({
+          user: context.session?.user,
+          sentryConfig: loggerConfig.sentry,
+        });
       }
       createApiContext(context);
       logRequest({ context });
@@ -61,8 +73,14 @@ function apiWrapper(handler) {
       const response = await handler({ context, req, res });
       return response;
     } catch (error) {
-      logError({ error, context });
-      res.status(500).json({ name: error.name, message: error.message });
+      await context.handleError(error);
+      const serialized = serializer.serialize(error);
+      if (serialized?.['~e']) {
+        delete serialized['~e'].received;
+        delete serialized['~e'].stack;
+        delete serialized['~e'].configKey;
+      }
+      res.status(500).json(serialized);
     }
   };
 }

package/lib/server/auth/getAuthOptions.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -18,7 +18,7 @@ import { getNextAuthConfig } from '@lowdefy/api';
 import { getSecretsFromEnv } from '@lowdefy/node-utils';
 
 import adapters from '../../../build/plugins/auth/adapters.js';
-import authJson from '../../../build/auth.json';
+import authJson from '../../build/auth.js';
 import callbacks from '../../../build/plugins/auth/callbacks.js';
 import events from '../../../build/plugins/auth/events.js';
 import providers from '../../../build/plugins/auth/providers.js';

package/lib/server/auth/getServerSession.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -16,7 +16,7 @@
 
 import { getServerSession as getNextAuthServerSession } from 'next-auth/next';
 
-import authJson from '../../../build/auth.json';
+import authJson from '../../build/auth.js';
 
 function getServerSession({ authOptions, req, res }) {
   if (authJson.configured === true) {

package/lib/server/fileCache.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/server/log/createHandleError.js

@@ -0,0 +1,151 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import {
+  ActionError,
+  BlockError,
+  ConfigError,
+  LowdefyInternalError,
+  OperatorError,
+  PluginError,
+  RequestError,
+  loadAndResolveErrorLocation,
+  ServiceError,
+} from '@lowdefy/errors';
+
+import captureSentryError from '../sentry/captureSentryError.js';
+
+function getEventType(error) {
+  if (error instanceof ServiceError) {
+    return 'service_error';
+  }
+  if (error instanceof OperatorError) {
+    return 'operator_error';
+  }
+  if (error instanceof ActionError) {
+    return 'action_error';
+  }
+  if (error instanceof RequestError) {
+    return 'request_error';
+  }
+  if (error instanceof BlockError) {
+    return 'block_error';
+  }
+  if (error instanceof PluginError) {
+    return 'plugin_error';
+  }
+  if (error instanceof ConfigError) {
+    return 'config_error';
+  }
+  if (error instanceof LowdefyInternalError) {
+    return 'lowdefy_error';
+  }
+  return 'error';
+}
+
+function createHandleError({ context }) {
+  return async function handleError(error) {
+    try {
+      const { headers = {}, user = {} } = context;
+      const eventType = getEventType(error);
+      const isServiceError = error instanceof ServiceError;
+      const isLowdefyInternalError = error instanceof LowdefyInternalError;
+
+      // For internal lowdefy errors, don't resolve config location
+      const location = isLowdefyInternalError
+        ? null
+        : await loadAndResolveErrorLocation({
+            error,
+            readConfigFile: context.readConfigFile,
+            configDirectory: context.configDirectory,
+          });
+
+      // Attach resolved location to error for consistency
+      if (location) {
+        error.source = location.source;
+        error.config = location.config;
+      }
+
+      // Single structured log call — pino serializes error via extractErrorProps,
+      // message string gives human-readable display via CLI logger
+      const errorName = error?.name || 'Error';
+      context.logger.error(
+        {
+          err: error,
+          // Top-level fields for log drain consumers (duplicated from err for queryability)
+          event: eventType,
+          errorName,
+          errorMessage: error.message,
+          isServiceError,
+          pageId: context.pageId || null,
+          timestamp: new Date().toISOString(),
+          source: error.source || null,
+          config: error.config || null,
+          // Production fields
+          user: {
+            id: user.id,
+            roles: user.roles,
+            sub: user.sub,
+            session_id: user.session_id,
+          },
+          url: context.req.url,
+          method: context.req.method,
+          resolvedUrl: context.nextContext?.resolvedUrl,
+          hostname: context.req.hostname,
+          headers: {
+            'accept-language': headers['accept-language'],
+            'sec-ch-ua-mobile': headers['sec-ch-ua-mobile'],
+            'sec-ch-ua-platform': headers['sec-ch-ua-platform'],
+            'sec-ch-ua': headers['sec-ch-ua'],
+            'user-agent': headers['user-agent'],
+            host: headers.host,
+            referer: headers.referer,
+            // Non localhost headers
+            'x-forward-for': headers['x-forward-for'],
+            // Vercel headers
+            'x-vercel-id': headers['x-vercel-id'],
+            'x-real-ip': headers['x-real-ip'],
+            'x-vercel-ip-country': headers['x-vercel-ip-country'],
+            'x-vercel-ip-country-region': headers['x-vercel-ip-country-region'],
+            'x-vercel-ip-city': headers['x-vercel-ip-city'],
+            'x-vercel-ip-latitude': headers['x-vercel-ip-latitude'],
+            'x-vercel-ip-longitude': headers['x-vercel-ip-longitude'],
+            'x-vercel-ip-timezone': headers['x-vercel-ip-timezone'],
+            // Cloudflare headers
+            'cf-connecting-ip': headers['cf-connecting-ip'],
+            'cf-ray': headers['cf-ray'],
+            'cf-ipcountry': headers['cf-ipcountry'],
+            'cf-visitor': headers['cf-visitor'],
+          },
+        },
+        error.message
+      );
+
+      // Capture error to Sentry (no-op if Sentry not configured)
+      captureSentryError({
+        error,
+        context,
+        configLocation: location,
+      });
+    } catch (e) {
+      console.error(error);
+      console.error('An error occurred while logging the error.');
+      console.error(e);
+    }
+  };
+}
+
+export default createHandleError;

package/lib/server/log/createLogger.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -14,10 +14,8 @@
   limitations under the License.
 */
 
-import pino from 'pino';
-
-// TODO: Pino does not serialize error.cause properties if the cause object is not an Error (or Error-like)
-const logger = pino({
+import { createNodeLogger } from '@lowdefy/logger/node';
+const logger = createNodeLogger({
   name: 'lowdefy_server',
   level: process.env.LOWDEFY_LOG_LEVEL ?? 'info',
   base: { pid: undefined, hostname: undefined },

package/lib/server/log/logRequest.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2024 Lowdefy, Inc
+  Copyright 2020-2026 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/lib/server/sentry/captureSentryError.js

@@ -0,0 +1,57 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+function captureSentryError({ error, context, configLocation }) {
+  // No-op if Sentry not initialized (DSN not set)
+  if (!process.env.SENTRY_DSN) {
+    return;
+  }
+
+  const tags = {};
+  const extra = {};
+
+  // Add Lowdefy-specific context
+  if (context?.pageId) {
+    tags.pageId = context.pageId;
+  }
+
+  if (error?.blockId) {
+    tags.blockId = error.blockId;
+  }
+
+  if (error?.isServiceError !== undefined) {
+    tags.isServiceError = error.isServiceError;
+  }
+
+  // Add config location context
+  if (configLocation) {
+    extra.configLocation = configLocation;
+  }
+
+  // Add config key for reference
+  if (error?.configKey) {
+    extra.configKey = error.configKey;
+  }
+
+  Sentry.captureException(error, {
+    tags,
+    extra,
+  });
+}
+
+export default captureSentryError;

package/lib/server/sentry/initSentry.js

@@ -0,0 +1,44 @@
+/*
+  Copyright 2020-2026 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/
+
+import * as Sentry from '@sentry/nextjs';
+
+import loggerConfig from '../../build/logger.js';
+
+function initSentryServer() {
+  // No-op if SENTRY_DSN not set
+  if (!process.env.SENTRY_DSN) {
+    return;
+  }
+
+  const sentryConfig = loggerConfig.sentry || {};
+
+  // No-op if server logging is explicitly disabled
+  if (sentryConfig.server === false) {
+    return;
+  }
+
+  Sentry.init({
+    dsn: process.env.SENTRY_DSN,
+    environment: sentryConfig.environment || process.env.NODE_ENV || 'production',
+    tracesSampleRate: sentryConfig.tracesSampleRate ?? 0.1,
+  });
+
+  console.log('Sentry enabled: server');
+}
+
+export default initSentryServer;
+export { initSentryServer };