npm - @ozura/elements - Versions diffs - 1.3.0-next.60 → 1.3.0 - Mend

@ozura/elements 1.3.0-next.60 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (25) hide show

package/LICENSE +21 -21
package/README.md +1453 -1453
package/dist/frame/element-frame.html +22 -22
package/dist/frame/element-frame.js +0 -1
package/dist/frame/tokenizer-frame.html +11 -11
package/dist/frame/tokenizer-frame.js +2 -3
package/dist/oz-elements.esm.js +1 -2
package/dist/oz-elements.umd.js +1 -2
package/dist/react/index.cjs.js +1 -1
package/dist/react/index.cjs.js.map +1 -1
package/dist/react/index.esm.js +1 -1
package/dist/react/index.esm.js.map +1 -1
package/dist/server/index.cjs.js +2 -2
package/dist/server/index.cjs.js.map +1 -1
package/dist/server/index.esm.js +2 -2
package/dist/server/index.esm.js.map +1 -1
package/dist/vue/index.cjs.js +1 -1
package/dist/vue/index.cjs.js.map +1 -1
package/dist/vue/index.esm.js +1 -1
package/dist/vue/index.esm.js.map +1 -1
package/package.json +1 -1
package/dist/frame/element-frame.js.map +0 -1
package/dist/frame/tokenizer-frame.js.map +0 -1
package/dist/oz-elements.esm.js.map +0 -1
package/dist/oz-elements.umd.js.map +0 -1

package/dist/frame/element-frame.html CHANGED Viewed

@@ -1,22 +1,22 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="UTF-8" />
-  <meta http-equiv="Content-Security-Policy" content="default-src 'none'; script-src 'self'; connect-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://fonts.gstatic.com https://use.typekit.net https://pro.fontawesome.com https://cdn.jsdelivr.net https://use.fontawesome.com; font-src https://fonts.gstatic.com https://fonts.googleapis.com https://use.typekit.net https://pro.fontawesome.com https://cdn.jsdelivr.net https://use.fontawesome.com; base-uri 'none'; form-action 'none';" />
-  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-  <title>Secure Input</title>
-  <style>
-    *, *::before, *::after { box-sizing: border-box; }
-    html, body {
-      margin: 0;
-      padding: 0;
-      background: transparent;
-      overflow: hidden;
-      height: 100%;
-    }
-  </style>
-</head>
-<body>
-  <script src="./element-frame.js"></script>
-</body>
-</html>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8" />
+  <meta http-equiv="Content-Security-Policy" content="default-src 'none'; script-src 'self'; connect-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://fonts.gstatic.com https://use.typekit.net https://pro.fontawesome.com https://cdn.jsdelivr.net https://use.fontawesome.com; font-src https://fonts.gstatic.com https://fonts.googleapis.com https://use.typekit.net https://pro.fontawesome.com https://cdn.jsdelivr.net https://use.fontawesome.com; base-uri 'none'; form-action 'none';" />
+  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+  <title>Secure Input</title>
+  <style>
+    *, *::before, *::after { box-sizing: border-box; }
+    html, body {
+      margin: 0;
+      padding: 0;
+      background: transparent;
+      overflow: hidden;
+      height: 100%;
+    }
+  </style>
+</head>
+<body>
+  <script src="./element-frame.js" integrity="sha384-xpV1wS1ZIxuDGHUg8WQAbQr94m8oGwI4CutCvD37d7sacy9sRmi4CA/EU62Mrd2I" crossorigin="anonymous"></script>
+</body>
+</html>

package/dist/frame/element-frame.js CHANGED Viewed

@@ -920,4 +920,3 @@ var _OzElementFrame = (function (exports) {
     return exports;
 })({});
-//# sourceMappingURL=element-frame.js.map

package/dist/frame/tokenizer-frame.html CHANGED Viewed

@@ -1,11 +1,11 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="UTF-8" />
-  <meta http-equiv="Content-Security-Policy" content="default-src 'none'; script-src 'self'; connect-src https://pci-vault-staging-drc0duhcakf4g4fr.eastus-01.azurewebsites.net; base-uri 'none'; form-action 'none';" />
-  <title>Ozura Tokenizer</title>
-</head>
-<body>
-  <script src="./tokenizer-frame.js"></script>
-</body>
-</html>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8" />
+  <meta http-equiv="Content-Security-Policy" content="default-src 'none'; script-src 'self'; connect-src https://api.ozuravault.com; base-uri 'none'; form-action 'none';" />
+  <title>Ozura Tokenizer</title>
+</head>
+<body>
+  <script src="./tokenizer-frame.js" integrity="sha384-jKzyFta4CjrMb8YW6wX9/MzSUp55uqUytZeya/g55SgF9IvsJ39Jveh4AhwszApc" crossorigin="anonymous"></script>
+</body>
+</html>

package/dist/frame/tokenizer-frame.js CHANGED Viewed

@@ -38,13 +38,13 @@ var _OzTokenizerFrame = (function (exports) {
      * assembles the vault tokenization payload, and POSTs it directly to the
      * vault API. The merchant page never sees raw card data.
      *
-     * The vault URL is determined by "https://pci-vault-staging-drc0duhcakf4g4fr.eastus-01.azurewebsites.net", injected at build time.
+     * The vault URL is determined by "https://api.ozuravault.com", injected at build time.
      * The tokenizer ignores any apiUrl sent by the SDK in OZ_TOKENIZE messages —
      * an attacker who XSSes the merchant page cannot redirect where card data is
      * sent because the destination is hardcoded in this Ozura-controlled bundle.
      */
     var _a;
-    const VAULT_API_URL = "https://pci-vault-staging-drc0duhcakf4g4fr.eastus-01.azurewebsites.net";
+    const VAULT_API_URL = "https://api.ozuravault.com";
     /**
      * Validates and normalises a `parentOrigin` value supplied via URL hash params.
      *
@@ -610,4 +610,3 @@ var _OzTokenizerFrame = (function (exports) {
     return exports;
 })({});
-//# sourceMappingURL=tokenizer-frame.js.map

package/dist/oz-elements.esm.js CHANGED Viewed

@@ -1077,7 +1077,7 @@ function isBankAccountMetadata(v) {
     const r = v;
     return typeof r.last4 === 'string' && typeof r.routingNumberLast4 === 'string';
 }
-const DEFAULT_FRAME_BASE_URL = "https://lively-hill-097170c0f.4.azurestaticapps.net";
+const DEFAULT_FRAME_BASE_URL = "https://elements.ozura.com";
 /**
  * The main entry point for OzElements. Creates and manages iframe-based
  * card input elements that keep raw card data isolated from the merchant page.
@@ -2273,4 +2273,3 @@ class OzVault {
 _OzVault_waxKey = new WeakMap();
 export { OzElement, OzError, OzVault, createSessionFetcher as createFetchWaxKey, createSessionFetcher, normalizeBankVaultError, normalizeCardSaleError, normalizeVaultError };
-//# sourceMappingURL=oz-elements.esm.js.map

package/dist/oz-elements.umd.js CHANGED Viewed

@@ -1083,7 +1083,7 @@
         const r = v;
         return typeof r.last4 === 'string' && typeof r.routingNumberLast4 === 'string';
     }
-    const DEFAULT_FRAME_BASE_URL = "https://lively-hill-097170c0f.4.azurestaticapps.net";
+    const DEFAULT_FRAME_BASE_URL = "https://elements.ozura.com";
     /**
      * The main entry point for OzElements. Creates and manages iframe-based
      * card input elements that keep raw card data isolated from the merchant page.
@@ -2288,4 +2288,3 @@
     exports.normalizeVaultError = normalizeVaultError;
 }));
-//# sourceMappingURL=oz-elements.umd.js.map

package/dist/react/index.cjs.js CHANGED Viewed

@@ -1027,7 +1027,7 @@ function isBankAccountMetadata(v) {
     const r = v;
     return typeof r.last4 === 'string' && typeof r.routingNumberLast4 === 'string';
 }
-const DEFAULT_FRAME_BASE_URL = "https://lively-hill-097170c0f.4.azurestaticapps.net";
+const DEFAULT_FRAME_BASE_URL = "https://elements.ozura.com";
 /**
  * The main entry point for OzElements. Creates and manages iframe-based
  * card input elements that keep raw card data isolated from the merchant page.