@magicdima/vite-plugin-csp 0.1.1 → 0.1.3

package/dist/index.d.ts

@@ -0,0 +1,33 @@
+import type { Plugin, ResolvedConfig } from "vite";
+export type CSPDirectiveValue = string | string[];
+export interface CSPDirectives {
+    "default-src"?: CSPDirectiveValue;
+    "script-src"?: CSPDirectiveValue;
+    "style-src"?: CSPDirectiveValue;
+    "img-src"?: CSPDirectiveValue;
+    "font-src"?: CSPDirectiveValue;
+    "connect-src"?: CSPDirectiveValue;
+    "media-src"?: CSPDirectiveValue;
+    "object-src"?: CSPDirectiveValue;
+    "frame-src"?: CSPDirectiveValue;
+    "worker-src"?: CSPDirectiveValue;
+    "manifest-src"?: CSPDirectiveValue;
+    "form-action"?: CSPDirectiveValue;
+}
+export interface CSPPluginOptions {
+    /**
+     * CSP directives to apply. Can be an object or a function that receives the Vite config.
+     */
+    directives?: CSPDirectives | ((config: ResolvedConfig) => CSPDirectives);
+    /**
+     * Whether to include CSP
+     * @default true
+     */
+    enabled?: boolean;
+    /**
+     * Additional CSP policy string to append
+     */
+    policy?: string;
+}
+declare function cspPlugin(options?: CSPPluginOptions): Plugin;
+export default cspPlugin;

package/dist/index.js

@@ -0,0 +1,70 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const defaultDirectives = {
+    "default-src": "'self'",
+    "script-src": ["'self'"],
+    "style-src": ["'self'"],
+    "img-src": ["'self'", "data:"],
+    "font-src": "'self'",
+    "connect-src": "'self'",
+    "media-src": "'self'",
+    "object-src": "'none'",
+    "frame-src": "'none'",
+    "worker-src": "'self'",
+    "manifest-src": "'self'",
+    "form-action": "'self'",
+};
+function buildCSPHeader(directives) {
+    const policies = [];
+    for (const [directive, value] of Object.entries(directives)) {
+        if (value === true) {
+            policies.push(directive);
+        }
+        else if (value === false) {
+            // Skip false values
+        }
+        else if (typeof value === "string") {
+            policies.push(`${directive} ${value}`);
+        }
+        else if (Array.isArray(value)) {
+            policies.push(`${directive} ${value.join(" ")}`);
+        }
+    }
+    return policies.join("; ");
+}
+function cspPlugin(options = {}) {
+    const { directives = {}, enabled: includeCsp = true, policy: additionalPolicy, } = options;
+    let resolvedDirectives;
+    return {
+        name: "vite-csp-plugin",
+        configResolved(resolvedConfig) {
+            // Resolve directives (either function or object)
+            const userDirectives = typeof directives === "function"
+                ? directives(resolvedConfig)
+                : directives;
+            // Merge default directives with user directives
+            resolvedDirectives = { ...defaultDirectives, ...userDirectives };
+        },
+        // configureServer(server) {
+        //   if (includeDev) {
+        //     const cspPolicy = buildCSPHeader(resolvedDirectives) +
+        //       (additionalPolicy ? `; ${additionalPolicy}` : '')
+        //     server.middlewares.use((_req, res, next) => {
+        //       res.setHeader('Content-Security-Policy', cspPolicy)
+        //       next()
+        //     })
+        //   }
+        // },
+        transformIndexHtml(html) {
+            if (!includeCsp) {
+                return html;
+            }
+            const cspPolicy = buildCSPHeader(resolvedDirectives) +
+                (additionalPolicy ? `; ${additionalPolicy}` : "");
+            const cspMetaTag = `<meta http-equiv="Content-Security-Policy" content="${cspPolicy}" />`;
+            // Insert the CSP meta tag at the beginning of the head
+            return html.replace(/<head>/, `<head>\n    ${cspMetaTag}`);
+        },
+    };
+}
+exports.default = cspPlugin;

package/package.json

@@ -1,14 +1,16 @@
 {
   "name": "@magicdima/vite-plugin-csp",
-  "version": "0.1.1",
+  "version": "0.1.3",
   "description": "",
-  "main": "src/index.ts",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist",
+    "README.md"
+  ],
   "scripts": {
     "build": "tsc"
   },
-  "exports": {
-    ".": "./dist/index.js"
-  },
   "peerDependencies": {
     "vite": "^4.2.0 || ^5.0.0 || ^6.0.0 || ^7.0.0"
   },

package/src/index.ts

@@ -1,121 +0,0 @@
-import type { Plugin, ResolvedConfig } from "vite";
-
-export type CSPDirectiveValue = string | string[];
-
-export interface CSPDirectives {
-  "default-src"?: CSPDirectiveValue;
-  "script-src"?: CSPDirectiveValue;
-  "style-src"?: CSPDirectiveValue;
-  "img-src"?: CSPDirectiveValue;
-  "font-src"?: CSPDirectiveValue;
-  "connect-src"?: CSPDirectiveValue;
-  "media-src"?: CSPDirectiveValue;
-  "object-src"?: CSPDirectiveValue;
-  "frame-src"?: CSPDirectiveValue;
-  "worker-src"?: CSPDirectiveValue;
-  "manifest-src"?: CSPDirectiveValue;
-  "form-action"?: CSPDirectiveValue;
-}
-
-export interface CSPPluginOptions {
-  /**
-   * CSP directives to apply. Can be an object or a function that receives the Vite config.
-   */
-  directives?: CSPDirectives | ((config: ResolvedConfig) => CSPDirectives);
-
-  /**
-   * Whether to include CSP
-   * @default true
-   */
-  enabled?: boolean;
-
-  /**
-   * Additional CSP policy string to append
-   */
-  policy?: string;
-}
-
-const defaultDirectives: CSPDirectives = {
-  "default-src": "'self'",
-  "script-src": ["'self'"],
-  "style-src": ["'self'"],
-  "img-src": ["'self'", "data:"],
-  "font-src": "'self'",
-  "connect-src": "'self'",
-  "media-src": "'self'",
-  "object-src": "'none'",
-  "frame-src": "'none'",
-  "worker-src": "'self'",
-  "manifest-src": "'self'",
-  "form-action": "'self'",
-};
-
-function buildCSPHeader(directives: CSPDirectives): string {
-  const policies: string[] = [];
-
-  for (const [directive, value] of Object.entries(directives)) {
-    if (value === true) {
-      policies.push(directive);
-    } else if (value === false) {
-      // Skip false values
-    } else if (typeof value === "string") {
-      policies.push(`${directive} ${value}`);
-    } else if (Array.isArray(value)) {
-      policies.push(`${directive} ${value.join(" ")}`);
-    }
-  }
-
-  return policies.join("; ");
-}
-
-export function cspPlugin(options: CSPPluginOptions = {}): Plugin {
-  const {
-    directives = {},
-    enabled: includeCsp = true,
-    policy: additionalPolicy,
-  } = options;
-
-  let resolvedDirectives: CSPDirectives;
-
-  return {
-    name: "vite-csp-plugin",
-    configResolved(resolvedConfig) {
-      // Resolve directives (either function or object)
-      const userDirectives =
-        typeof directives === "function"
-          ? directives(resolvedConfig)
-          : directives;
-
-      // Merge default directives with user directives
-      resolvedDirectives = { ...defaultDirectives, ...userDirectives };
-    },
-
-    // configureServer(server) {
-    //   if (includeDev) {
-    //     const cspPolicy = buildCSPHeader(resolvedDirectives) +
-    //       (additionalPolicy ? `; ${additionalPolicy}` : '')
-    //     server.middlewares.use((_req, res, next) => {
-    //       res.setHeader('Content-Security-Policy', cspPolicy)
-    //       next()
-    //     })
-    //   }
-    // },
-
-    transformIndexHtml(html) {
-      if (!includeCsp) {
-        return html;
-      }
-
-      const cspPolicy =
-        buildCSPHeader(resolvedDirectives) +
-        (additionalPolicy ? `; ${additionalPolicy}` : "");
-
-      const cspMetaTag = `<meta http-equiv="Content-Security-Policy" content="${cspPolicy}" />`;
-
-      // Insert the CSP meta tag at the beginning of the head
-      return html.replace(/<head>/, `<head>\n    ${cspMetaTag}`);
-    },
-  };
-}
-
-export default cspPlugin;

package/tsconfig.json

@@ -1,15 +0,0 @@
-{
-  "compilerOptions": {
-    "outDir": "dist",
-    "incremental": false,
-    "target": "ESNext",
-    "module": "NodeNext",
-    "moduleResolution": "nodenext",
-    "skipLibCheck": true,
-    "skipDefaultLibCheck": true,
-    "strictNullChecks": true, /* viem */
-    "types": []
-  },
-  "include": ["src"],
-  "exclude": ["node_modules", "dist"]
-}