@qzsy/vinext 0.1.10 → 0.1.12

package/dist/deploy.js

@@ -378,7 +378,7 @@ import { fetchWorkerFilesystemRoute, runPagesRequest, wrapMiddlewareWithBasePath
 import type { PagesPipelineDeps } from "vinext/server/pages-request-pipeline";
 import { handleImageOptimization, DEFAULT_DEVICE_SIZES, DEFAULT_IMAGE_SIZES, isImageOptimizationPath } from "vinext/server/image-optimization";
 import type { ImageConfig } from "vinext/server/image-optimization";
-import { cloneRequestWithHeaders, cloneRequestWithUrl, filterInternalHeaders, isOpenRedirectShaped } from "vinext/server/request-pipeline";
+import { bufferRequestBodyForHeaderClone, cloneRequestWithHeaders, cloneRequestWithUrl, filterInternalHeaders, isOpenRedirectShaped } from "vinext/server/request-pipeline";
 import { notFoundStaticAssetResponse } from "vinext/server/http-error-responses";
 import { assetPrefixPathname, isNextStaticPath } from "vinext/utils/asset-prefix";
 import { hasBasePath, stripBasePath } from "vinext/utils/base-path";
@@ -452,6 +452,7 @@ export default {
       // forged to influence routing or impersonate internal state.
       // Request.headers is immutable in Workers, so build a clean copy.
       {
+        request = await bufferRequestBodyForHeaderClone(request);
         const filteredHeaders = filterInternalHeaders(request.headers);
         request = cloneRequestWithHeaders(request, filteredHeaders);
       }

package/dist/server/app-router-entry.js

@@ -3,7 +3,7 @@ import { runWithExecutionContext } from "../shims/request-context.js";
 import { VINEXT_PRERENDER_ROUTE_PARAMS_HEADER } from "./headers.js";
 import { badRequestResponse, notFoundResponse, notFoundStaticAssetResponse } from "./http-error-responses.js";
 import { isOpenRedirectShaped } from "./open-redirect.js";
-import { cloneRequestWithHeaders, filterInternalHeaders } from "./request-pipeline.js";
+import { bufferRequestBodyForHeaderClone, cloneRequestWithHeaders, filterInternalHeaders } from "./request-pipeline.js";
 import { assetPrefixPathname, isNextStaticPath } from "../utils/asset-prefix.js";
 import { resolveStaticAssetSignal } from "./worker-utils.js";
 import { readTrustedPrerenderRouteParams, serializePrerenderRouteParamsHeader } from "./prerender-route-params.js";
@@ -26,6 +26,7 @@ async function handleRequest(request, env, ctx) {
 	}
 	if (isNextStaticPath(url.pathname, __workerBasePath, __workerAssetPathPrefix)) return notFoundStaticAssetResponse();
 	{
+		request = await bufferRequestBodyForHeaderClone(request);
 		const prerenderRouteParamsPayload = readTrustedPrerenderRouteParams(request);
 		const filteredHeaders = filterInternalHeaders(request.headers);
 		const prerenderRouteParamsHeader = serializePrerenderRouteParamsHeader(prerenderRouteParamsPayload);

package/dist/server/app-rsc-handler.js

@@ -4,7 +4,7 @@ import { getRequestExecutionContext } from "../shims/request-context.js";
 import { ACTION_REVALIDATED_HEADER, VINEXT_MW_CTX_HEADER, VINEXT_PRERENDER_ROUTE_PARAMS_HEADER } from "./headers.js";
 import { isExternalUrl, matchRedirect, matchRewrite, preserveRedirectDestinationQuery, proxyExternalRequest, requestContextFromRequest, sanitizeDestination } from "../config/config-matchers.js";
 import { notFoundResponse } from "./http-error-responses.js";
-import { applyConfigHeadersToResponse, cloneRequestWithHeaders, cloneRequestWithUrl, filterInternalHeaders, normalizeTrailingSlash, resolvePublicFileRoute } from "./request-pipeline.js";
+import { applyConfigHeadersToResponse, bufferRequestBodyForHeaderClone, cloneRequestWithHeaders, cloneRequestWithUrl, filterInternalHeaders, normalizeTrailingSlash, resolvePublicFileRoute } from "./request-pipeline.js";
 import { headersContextFromRequest } from "../shims/headers.js";
 import { ensureFetchPatch, setCurrentFetchSoftTags } from "../shims/fetch-cache.js";
 import { mergeRewriteQuery } from "../utils/query.js";
@@ -17,8 +17,8 @@ import "./app-page-response.js";
 import { buildNextDataNotFoundResponse, normalizePagesDataRequest } from "./pages-data-route.js";
 import { matchPrerenderRouteParamsPayload, readTrustedPrerenderRouteParams, serializePrerenderRouteParamsHeader } from "./prerender-route-params.js";
 import { getRenderedConcreteUrlPathsForRoute } from "./pregenerated-concrete-paths.js";
-import { flattenErrorCauses } from "../utils/error-cause.js";
 import { pickRootParams, setRootParams } from "../shims/root-params.js";
+import { flattenErrorCauses } from "../utils/error-cause.js";
 import { createServerActionNotFoundResponse, getServerActionNotFoundMessage } from "./server-action-not-found.js";
 import { buildPageCacheTags } from "./implicit-tags.js";
 import { buildPostMwRequestContext } from "./app-post-middleware-context.js";
@@ -488,6 +488,7 @@ function createAppRscHandler(options) {
 	return async function appRscHandler(rawRequest, ctx) {
 		options.registerCacheAdapters();
 		await options.ensureInstrumentation?.();
+		rawRequest = await bufferRequestBodyForHeaderClone(rawRequest);
 		const mwCtx = rawRequest.headers.get(VINEXT_MW_CTX_HEADER);
 		const hasDataRequestHeader = rawRequest.headers.get("x-nextjs-data") === "1";
 		const pagesDataUrl = new URL(rawRequest.url);

package/dist/server/request-pipeline.d.ts

@@ -161,6 +161,18 @@ declare function processMiddlewareHeaders(headers: Headers): void;
  * @returns A new Headers with internal framework headers removed
  */
 declare function filterInternalHeaders(headers: Headers): Headers;
+/**
+ * Materialize the request body before header/url cloning.
+ *
+ * `cloneRequestWithHeaders` / `cloneRequestWithUrl` can lose a streaming body
+ * on Node/undici when the input is a foreign Request or when the underlying
+ * stream was partially consumed. Server actions and route handlers both rely on
+ * the body surviving internal header filtering, so we read it once up front
+ * and rebuild a fresh Request for the rest of the pipeline.
+ *
+ * Multipart bodies are left streaming so FormData parsing still works.
+ */
+declare function bufferRequestBodyForHeaderClone(request: Request): Promise<Request>;
 /**
  * Clone a Request while overriding headers, preserving metadata when possible.
  *
@@ -184,4 +196,4 @@ declare function cloneRequestWithHeaders(request: Request, headers: Headers): Re
  */
 declare function cloneRequestWithUrl(request: Request, url: string): Request;
 //#endregion
-export { HeaderRecord, INTERNAL_HEADERS, VINEXT_INTERNAL_HEADERS, applyConfigHeadersToHeaderRecord, applyConfigHeadersToResponse, cloneRequestWithHeaders, cloneRequestWithUrl, createStaticFileSignal, filterInternalHeaders, guardProtocolRelativeUrl, hasBasePath, isOpenRedirectShaped, isOriginAllowed, normalizeTrailingSlash, normalizeTrailingSlashPathname, processMiddlewareHeaders, resolvePublicFileRoute, stripBasePath, validateCsrfOrigin, validateServerActionPayload };
+export { HeaderRecord, INTERNAL_HEADERS, VINEXT_INTERNAL_HEADERS, applyConfigHeadersToHeaderRecord, applyConfigHeadersToResponse, bufferRequestBodyForHeaderClone, cloneRequestWithHeaders, cloneRequestWithUrl, createStaticFileSignal, filterInternalHeaders, guardProtocolRelativeUrl, hasBasePath, isOpenRedirectShaped, isOriginAllowed, normalizeTrailingSlash, normalizeTrailingSlashPathname, processMiddlewareHeaders, resolvePublicFileRoute, stripBasePath, validateCsrfOrigin, validateServerActionPayload };

package/dist/server/request-pipeline.js

@@ -365,6 +365,56 @@ function getRequestCf(request) {
 	const cf = Reflect.get(request, "cf");
 	return cf === void 0 ? void 0 : cf;
 }
+const METHODS_THAT_MAY_HAVE_BODY = new Set([
+	"POST",
+	"PUT",
+	"PATCH",
+	"DELETE"
+]);
+/**
+* Materialize the request body before header/url cloning.
+*
+* `cloneRequestWithHeaders` / `cloneRequestWithUrl` can lose a streaming body
+* on Node/undici when the input is a foreign Request or when the underlying
+* stream was partially consumed. Server actions and route handlers both rely on
+* the body surviving internal header filtering, so we read it once up front
+* and rebuild a fresh Request for the rest of the pipeline.
+*
+* Multipart bodies are left streaming so FormData parsing still works.
+*/
+async function bufferRequestBodyForHeaderClone(request) {
+	if (!METHODS_THAT_MAY_HAVE_BODY.has(request.method.toUpperCase())) return request;
+	if (request.body === null) return request;
+	if ((request.headers.get("content-type") ?? "").startsWith("multipart/form-data")) return request;
+	try {
+		const bytes = await request.arrayBuffer();
+		const init = {
+			method: request.method,
+			headers: request.headers,
+			body: bytes,
+			redirect: request.redirect,
+			referrer: request.referrer,
+			referrerPolicy: request.referrerPolicy,
+			signal: request.signal,
+			credentials: request.credentials,
+			integrity: request.integrity,
+			keepalive: request.keepalive,
+			mode: request.mode,
+			cache: request.cache
+		};
+		if (bytes.byteLength > 0) init.duplex = "half";
+		const buffered = new Request(request.url, init);
+		const cf = getRequestCf(request);
+		if (cf !== void 0) Object.defineProperty(buffered, "cf", {
+			value: cf,
+			enumerable: true,
+			configurable: true
+		});
+		return buffered;
+	} catch {
+		return request;
+	}
+}
 /**
 * Clone a Request while overriding headers, preserving metadata when possible.
 *
@@ -444,4 +494,4 @@ function cloneRequestWithUrl(request, url) {
 	return cloned;
 }
 //#endregion
-export { INTERNAL_HEADERS, VINEXT_INTERNAL_HEADERS, applyConfigHeadersToHeaderRecord, applyConfigHeadersToResponse, cloneRequestWithHeaders, cloneRequestWithUrl, createStaticFileSignal, filterInternalHeaders, guardProtocolRelativeUrl, hasBasePath, isOpenRedirectShaped, isOriginAllowed, normalizeTrailingSlash, normalizeTrailingSlashPathname, processMiddlewareHeaders, resolvePublicFileRoute, stripBasePath, validateCsrfOrigin, validateServerActionPayload };
+export { INTERNAL_HEADERS, VINEXT_INTERNAL_HEADERS, applyConfigHeadersToHeaderRecord, applyConfigHeadersToResponse, bufferRequestBodyForHeaderClone, cloneRequestWithHeaders, cloneRequestWithUrl, createStaticFileSignal, filterInternalHeaders, guardProtocolRelativeUrl, hasBasePath, isOpenRedirectShaped, isOriginAllowed, normalizeTrailingSlash, normalizeTrailingSlashPathname, processMiddlewareHeaders, resolvePublicFileRoute, stripBasePath, validateCsrfOrigin, validateServerActionPayload };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@qzsy/vinext",
-  "version": "0.1.10",
+  "version": "0.1.12",
   "description": "Run Next.js apps on Vite. Drop-in replacement for the next CLI.",
   "license": "MIT",
   "repository": {
@@ -89,31 +89,26 @@
   "publishConfig": {
     "access": "public"
   },
-  "scripts": {
-    "build": "vp pack",
-    "prepack": "cp ../../README.md README.md && vp run build",
-    "dev": "vp pack --watch"
-  },
   "dependencies": {
-    "@unpic/react": "catalog:",
-    "@vercel/og": "catalog:",
-    "image-size": "catalog:",
-    "ipaddr.js": "catalog:",
-    "magic-string": "catalog:",
-    "vite-plugin-commonjs": "catalog:",
-    "web-vitals": "catalog:"
+    "@unpic/react": "^1.0.2",
+    "@vercel/og": "^0.8.6",
+    "image-size": "2.0.2",
+    "ipaddr.js": "^2.1.0",
+    "magic-string": "^0.30.21",
+    "vite-plugin-commonjs": "^0.10.4",
+    "web-vitals": "^4.2.4"
   },
   "devDependencies": {
-    "@types/node": "catalog:",
-    "@types/react": "catalog:",
-    "@types/react-dom": "catalog:",
-    "@vinext/cloudflare": "workspace:*",
-    "@vitejs/plugin-react": "catalog:",
-    "@vitejs/plugin-rsc": "catalog:",
-    "react-server-dom-webpack": "catalog:",
-    "vite": "catalog:",
-    "vite-plus": "catalog:",
-    "vite-tsconfig-paths": "catalog:"
+    "@types/node": "^25.9.2",
+    "@types/react": "^19.2.16",
+    "@types/react-dom": "^19.2.3",
+    "@vitejs/plugin-react": "^6.0.1",
+    "@vitejs/plugin-rsc": "^0.5.27",
+    "react-server-dom-webpack": "^19.2.7",
+    "vite": "npm:@voidzero-dev/vite-plus-core@0.2.1",
+    "vite-plus": "0.2.1",
+    "vite-tsconfig-paths": "^6.1.1",
+    "@vinext/cloudflare": "0.1.2"
   },
   "peerDependencies": {
     "@mdx-js/rollup": "^3.0.0",
@@ -141,5 +136,9 @@
   },
   "engines": {
     "node": ">=22"
+  },
+  "scripts": {
+    "build": "vp pack",
+    "dev": "vp pack --watch"
   }
-}
+}