@lwrjs/view-registry 0.13.0-alpha.10 → 0.13.0-alpha.12

package/build/cjs/index.cjs

@@ -161,7 +161,8 @@ var LwrViewRegistry = class {
       freezeAssets,
       locale: runtimeParams?.locale,
       basePath: runtimeParams?.basePath,
-      debug: runtimeEnvironment.debug
+      debug: runtimeEnvironment.debug,
+      nonceEnabled: (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE
     });
     import_diagnostics.logger.debug(`[view-registry][hasViewDefinition] viewDefId=${viewDefId}`);
     const viewParamKey = viewParamCacheKey ? (0, import_shared_utils.getCacheKeyFromJson)(viewParamCacheKey) : (0, import_shared_utils.getCacheKeyFromJson)(viewParams);
@@ -182,7 +183,8 @@ var LwrViewRegistry = class {
         freezeAssets,
         locale: runtimeParams?.locale,
         basePath: runtimeParams?.basePath,
-        debug: runtimeEnvironment.debug
+        debug: runtimeEnvironment.debug,
+        nonceEnabled: (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE
       });
       import_diagnostics.logger.debug(`[view-registry][getViewDefinition] viewDefCacheKey=${viewDefCacheKey}`);
       const viewParamKey = viewParamCacheKey ? (0, import_shared_utils.getCacheKeyFromJson)(viewParamCacheKey) : (0, import_shared_utils.getCacheKeyFromJson)(viewParams);

package/build/cjs/utils.cjs

@@ -52,7 +52,7 @@ function generateExternalScript(type = "application/javascript", src, async, def
   } else if (async) {
     scriptLoadOrder = " async";
   }
-  const nonceAttr = nonce ? ` nonce="${nonce}"` : "";
+  const nonceAttr = (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE && nonce ? ` nonce="${nonce}"` : "";
   return `<script type="${type}"${scriptLoadOrder}${nonceAttr} src="${src}"></script>`;
 }
 function generateLinkPreloadTag({href, type}) {
@@ -74,7 +74,7 @@ function generateExternalTag({type, src = "", async, defer, isPreload, nonce}) {
 async function generateInlineTag({specifier, type, content, stream, nonce}) {
   const typeStr = type === "text/css" ? "" : ` type="${type}"`;
   const tag = type === "text/css" ? "style" : "script";
-  const nonceStr = nonce ? ` nonce="${nonce}"` : "";
+  const nonceStr = (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE && nonce && nonce ? ` nonce="${nonce}"` : "";
   if (!content && !stream) {
     throw new Error(`Invalid inline Resource Definition: must have either "content" or "stream": "${specifier}"`);
   }
@@ -259,18 +259,20 @@ async function createJsonModule(specifier, moduleRegistry, environment, params)
   };
 }
 function getViewNonce(viewParams) {
-  return viewParams?.page?.nonce;
+  return (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE ? viewParams?.page?.nonce : void 0;
 }
 function generateViewNonce(viewParams) {
-  const nonce = import_crypto.default.randomBytes(16).toString("base64");
-  if (!viewParams.page) {
-    viewParams.page = {nonce};
-  } else {
-    viewParams.page.nonce = nonce;
+  if ((0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE) {
+    const nonce = import_crypto.default.randomBytes(16).toString("base64");
+    if (!viewParams.page) {
+      viewParams.page = {nonce};
+    } else {
+      viewParams.page.nonce = nonce;
+    }
   }
 }
 function addExternalScriptNonce(def, nonce) {
-  if (!def.inline) {
+  if (nonce && (0, import_shared_utils.getFeatureFlags)().ENABLE_NONCE && !def.inline) {
     def.nonce = nonce;
   }
 }

package/build/es/index.js

@@ -1,4 +1,4 @@
-import { InflightTasks, createStringBuilder, extractMetadataFromHtml, getCacheKeyFromJson, getSpecifier, isLocalDev, normalizeResourcePath, shortestTtl, } from '@lwrjs/shared-utils';
+import { InflightTasks, createStringBuilder, extractMetadataFromHtml, getCacheKeyFromJson, getFeatureFlags, getSpecifier, isLocalDev, normalizeResourcePath, shortestTtl, } from '@lwrjs/shared-utils';
 import { getTracer, ViewSpan } from '@lwrjs/instrumentation';
 import { generateViewNonce, getViewNonce, normalizeRenderOptions, normalizeRenderedResult, reduceSourceAssetReferences, } from './utils.js';
 import { linkLwrResources } from './linkers/link-lwr-resources.js';
@@ -150,6 +150,8 @@ export class LwrViewRegistry {
             locale: runtimeParams?.locale,
             basePath: runtimeParams?.basePath,
             debug: runtimeEnvironment.debug,
+            // Add a variable on if the nonce is enabled
+            nonceEnabled: getFeatureFlags().ENABLE_NONCE,
         });
         logger.debug(`[view-registry][hasViewDefinition] viewDefId=${viewDefId}`);
         // viewParams is an unbounded object and can be very large (17MB/view for developer.salesforce.com). Allowing consumers
@@ -177,6 +179,8 @@ export class LwrViewRegistry {
                 locale: runtimeParams?.locale,
                 basePath: runtimeParams?.basePath,
                 debug: runtimeEnvironment.debug,
+                // Add a variable on if the nonce is enabled
+                nonceEnabled: getFeatureFlags().ENABLE_NONCE,
             });
             logger.debug(`[view-registry][getViewDefinition] viewDefCacheKey=${viewDefCacheKey}`);
             // viewParams is an unbounded object and can be very large (17MB/view for developer.salesforce.com). Allowing consumers

package/build/es/utils.d.ts

@@ -13,7 +13,7 @@ export declare function createJsonModule(specifier: string, moduleRegistry: Publ
 /**
  * Get the nonce set on the page context of the view params
  */
-export declare function getViewNonce(viewParams: ViewParams): string;
+export declare function getViewNonce(viewParams: ViewParams): string | undefined;
 /**
  * Generate a nonce in the page context of the view params
  */
@@ -21,5 +21,5 @@ export declare function generateViewNonce(viewParams: ViewParams): void;
 /**
  * Add a nonce to a script definition in view if it is external (not inline)
  */
-export declare function addExternalScriptNonce(def: ResourceDefinition, nonce: string): void;
+export declare function addExternalScriptNonce(def: ResourceDefinition, nonce?: string): void;
 //# sourceMappingURL=utils.d.ts.map

package/build/es/utils.js

@@ -1,5 +1,5 @@
 import { basename, extname } from 'path';
-import { explodeSpecifier, getMappingUriPrefix, getSpecifier, getClientBootstrapConfigurationUri, mimeLookup, DEFAULT_TITLE, streamToString, } from '@lwrjs/shared-utils';
+import { explodeSpecifier, getMappingUriPrefix, getSpecifier, getClientBootstrapConfigurationUri, mimeLookup, DEFAULT_TITLE, streamToString, getFeatureFlags, } from '@lwrjs/shared-utils';
 import { AppResourceEnum, getAppSpecifier, ResourceIdentityTypes, } from '@lwrjs/app-service/identity';
 import crypto from 'crypto';
 function generateExternalStyle(src) {
@@ -13,7 +13,7 @@ function generateExternalScript(type = 'application/javascript', src, async, def
     else if (async) {
         scriptLoadOrder = ' async';
     }
-    const nonceAttr = nonce ? ` nonce="${nonce}"` : '';
+    const nonceAttr = getFeatureFlags().ENABLE_NONCE && nonce ? ` nonce="${nonce}"` : '';
     return `<script type="${type}"${scriptLoadOrder}${nonceAttr} src="${src}"></script>`;
 }
 function generateLinkPreloadTag({ href, type }) {
@@ -38,7 +38,7 @@ function generateExternalTag({ type, src = '', async, defer, isPreload, nonce })
 async function generateInlineTag({ specifier, type, content, stream, nonce }) {
     const typeStr = type === 'text/css' ? '' : ` type="${type}"`;
     const tag = type === 'text/css' ? 'style' : 'script';
-    const nonceStr = nonce ? ` nonce="${nonce}"` : '';
+    const nonceStr = getFeatureFlags().ENABLE_NONCE && nonce && nonce ? ` nonce="${nonce}"` : '';
     if (!content && !stream) {
         throw new Error(`Invalid inline Resource Definition: must have either "content" or "stream": "${specifier}"`);
     }
@@ -243,25 +243,29 @@ export async function createJsonModule(specifier, moduleRegistry, environment, p
  * Get the nonce set on the page context of the view params
  */
 export function getViewNonce(viewParams) {
-    return viewParams?.page?.nonce;
+    return getFeatureFlags().ENABLE_NONCE
+        ? viewParams?.page?.nonce
+        : undefined;
 }
 /**
  * Generate a nonce in the page context of the view params
  */
 export function generateViewNonce(viewParams) {
-    const nonce = crypto.randomBytes(16).toString('base64');
-    if (!viewParams.page) {
-        viewParams.page = { nonce };
-    }
-    else {
-        viewParams.page.nonce = nonce;
+    if (getFeatureFlags().ENABLE_NONCE) {
+        const nonce = crypto.randomBytes(16).toString('base64');
+        if (!viewParams.page) {
+            viewParams.page = { nonce };
+        }
+        else {
+            viewParams.page.nonce = nonce;
+        }
     }
 }
 /**
  * Add a nonce to a script definition in view if it is external (not inline)
  */
 export function addExternalScriptNonce(def, nonce) {
-    if (!def.inline) {
+    if (nonce && getFeatureFlags().ENABLE_NONCE && !def.inline) {
         def.nonce = nonce;
     }
 }

package/package.json

@@ -4,7 +4,7 @@
     "publishConfig": {
         "access": "public"
     },
-    "version": "0.13.0-alpha.10",
+    "version": "0.13.0-alpha.12",
     "homepage": "https://developer.salesforce.com/docs/platform/lwr/overview",
     "repository": {
         "type": "git",
@@ -30,17 +30,17 @@
         "build/**/*.d.ts"
     ],
     "dependencies": {
-        "@lwrjs/app-service": "0.13.0-alpha.10",
-        "@lwrjs/diagnostics": "0.13.0-alpha.10",
-        "@lwrjs/instrumentation": "0.13.0-alpha.10",
-        "@lwrjs/shared-utils": "0.13.0-alpha.10",
+        "@lwrjs/app-service": "0.13.0-alpha.12",
+        "@lwrjs/diagnostics": "0.13.0-alpha.12",
+        "@lwrjs/instrumentation": "0.13.0-alpha.12",
+        "@lwrjs/shared-utils": "0.13.0-alpha.12",
         "lru-cache": "^10.2.2"
     },
     "devDependencies": {
-        "@lwrjs/types": "0.13.0-alpha.10"
+        "@lwrjs/types": "0.13.0-alpha.12"
     },
     "engines": {
         "node": ">=18.0.0"
     },
-    "gitHead": "53e2a825868b4c9b1662419b531c80be13afd779"
+    "gitHead": "60e763c7829cfbcdf5ccd88bd5c2c1a31db4554d"
 }