@rayselfs/cf-rule-engine 1.5.0

package/dist/criteria/ip-cidr.d.cts

@@ -0,0 +1,31 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns true if the client IP address falls within any of the given CIDR ranges.
+ *
+ * Supports both IPv4 (e.g. `10.0.0.0/8`) and IPv6 (e.g. `2001:db8::/32`) CIDR notation.
+ * Uses the `CloudFront-Viewer-Address` header (stripped of port) as the source IP.
+ *
+ * Akamai equivalent: `clientIp` criterion with CIDR matching.
+ *
+ * @param cidrs - Array of CIDR range strings to match against (e.g. `['10.0.0.0/8', '172.16.0.0/12']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the client IP is within any listed CIDR.
+ *
+ * @example
+ * ```typescript
+ * import { rule, not } from '@viverse/cf-engine'
+ * import { ipCidr } from '@viverse/cf-engine/criteria'
+ * import { redirect, constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Block traffic not originating from internal networks
+ * rule(not(ipCidr(['10.0.0.0/8', '172.16.0.0/12', '192.168.0.0/16'])),
+ *   redirect(302, 'https://www.viverse.com'))
+ *
+ * // Allow only specific office IPs
+ * rule(not(ipCidr(['61.218.44.76/32', '122.147.213.24/32'])),
+ *   constructResponse({ statusCode: 403, body: 'Forbidden' }))
+ * ```
+ */
+declare function ipCidr(cidrs: string[]): CriteriaFn;
+
+export { ipCidr };

package/dist/criteria/ip-cidr.d.ts

@@ -0,0 +1,31 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns true if the client IP address falls within any of the given CIDR ranges.
+ *
+ * Supports both IPv4 (e.g. `10.0.0.0/8`) and IPv6 (e.g. `2001:db8::/32`) CIDR notation.
+ * Uses the `CloudFront-Viewer-Address` header (stripped of port) as the source IP.
+ *
+ * Akamai equivalent: `clientIp` criterion with CIDR matching.
+ *
+ * @param cidrs - Array of CIDR range strings to match against (e.g. `['10.0.0.0/8', '172.16.0.0/12']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the client IP is within any listed CIDR.
+ *
+ * @example
+ * ```typescript
+ * import { rule, not } from '@viverse/cf-engine'
+ * import { ipCidr } from '@viverse/cf-engine/criteria'
+ * import { redirect, constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Block traffic not originating from internal networks
+ * rule(not(ipCidr(['10.0.0.0/8', '172.16.0.0/12', '192.168.0.0/16'])),
+ *   redirect(302, 'https://www.viverse.com'))
+ *
+ * // Allow only specific office IPs
+ * rule(not(ipCidr(['61.218.44.76/32', '122.147.213.24/32'])),
+ *   constructResponse({ statusCode: 403, body: 'Forbidden' }))
+ * ```
+ */
+declare function ipCidr(cidrs: string[]): CriteriaFn;
+
+export { ipCidr };

package/dist/criteria/ip-cidr.js

@@ -0,0 +1,8 @@
+import {
+  ipCidr
+} from "../chunk-KW5YBTSD.js";
+import "../chunk-LNQPYKGG.js";
+import "../chunk-MLKGABMK.js";
+export {
+  ipCidr
+};

package/dist/criteria/method-is.cjs

@@ -0,0 +1,7 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkOTFDML3Kcjs = require('../chunk-OTFDML3K.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.methodIs = _chunkOTFDML3Kcjs.methodIs;

package/dist/criteria/method-is.d.cts

@@ -0,0 +1,29 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns true if the HTTP request method matches any of the given methods.
+ *
+ * Comparison is case-insensitive — `'get'`, `'GET'`, and `'Get'` all match.
+ *
+ * Akamai equivalent: `requestMethod` criterion.
+ *
+ * @param methods - Array of HTTP method strings to match against (e.g. `['GET', 'POST']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the request method matches any entry.
+ *
+ * @example
+ * ```typescript
+ * import { rule } from '@viverse/cf-engine'
+ * import { methodIs } from '@viverse/cf-engine/criteria'
+ * import { constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Respond immediately to OPTIONS preflight requests
+ * rule(methodIs(['OPTIONS']), constructResponse({ statusCode: 200, body: '' }))
+ *
+ * // Block non-GET/HEAD requests
+ * rule(methodIs(['POST', 'PUT', 'DELETE', 'PATCH']),
+ *   constructResponse({ statusCode: 405, body: 'Method Not Allowed' }))
+ * ```
+ */
+declare function methodIs(methods: string[]): CriteriaFn;
+
+export { methodIs };

package/dist/criteria/method-is.d.ts

@@ -0,0 +1,29 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns true if the HTTP request method matches any of the given methods.
+ *
+ * Comparison is case-insensitive — `'get'`, `'GET'`, and `'Get'` all match.
+ *
+ * Akamai equivalent: `requestMethod` criterion.
+ *
+ * @param methods - Array of HTTP method strings to match against (e.g. `['GET', 'POST']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the request method matches any entry.
+ *
+ * @example
+ * ```typescript
+ * import { rule } from '@viverse/cf-engine'
+ * import { methodIs } from '@viverse/cf-engine/criteria'
+ * import { constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Respond immediately to OPTIONS preflight requests
+ * rule(methodIs(['OPTIONS']), constructResponse({ statusCode: 200, body: '' }))
+ *
+ * // Block non-GET/HEAD requests
+ * rule(methodIs(['POST', 'PUT', 'DELETE', 'PATCH']),
+ *   constructResponse({ statusCode: 405, body: 'Method Not Allowed' }))
+ * ```
+ */
+declare function methodIs(methods: string[]): CriteriaFn;
+
+export { methodIs };

package/dist/criteria/method-is.js

@@ -0,0 +1,7 @@
+import {
+  methodIs
+} from "../chunk-PY3JMRDG.js";
+import "../chunk-MLKGABMK.js";
+export {
+  methodIs
+};

package/dist/criteria/path-equals.cjs

@@ -0,0 +1,7 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkVEEOQ7TScjs = require('../chunk-VEEOQ7TS.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.pathEquals = _chunkVEEOQ7TScjs.pathEquals;

package/dist/criteria/path-equals.d.cts

@@ -0,0 +1,22 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns `true` if the request URI is an exact match for any of the given paths.
+ *
+ * Matching is case-sensitive and compares the full URI (including leading `/`).
+ * Query strings are **not** stripped before comparison — if your URI may include
+ * query params, use `pathPrefix` or `pathMatches` instead.
+ *
+ * Akamai equivalent: `path` criterion with `MATCHES_ONE_OF` match type (exact).
+ *
+ * @param paths - Array of exact URI paths to match (e.g. `['/about', '/contact']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathEquals(['/old-about', '/legacy-contact']), redirect(301, '/about'))
+ * ```
+ */
+declare function pathEquals(paths: string[]): CriteriaFn;
+
+export { pathEquals };

package/dist/criteria/path-equals.d.ts

@@ -0,0 +1,22 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns `true` if the request URI is an exact match for any of the given paths.
+ *
+ * Matching is case-sensitive and compares the full URI (including leading `/`).
+ * Query strings are **not** stripped before comparison — if your URI may include
+ * query params, use `pathPrefix` or `pathMatches` instead.
+ *
+ * Akamai equivalent: `path` criterion with `MATCHES_ONE_OF` match type (exact).
+ *
+ * @param paths - Array of exact URI paths to match (e.g. `['/about', '/contact']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathEquals(['/old-about', '/legacy-contact']), redirect(301, '/about'))
+ * ```
+ */
+declare function pathEquals(paths: string[]): CriteriaFn;
+
+export { pathEquals };

package/dist/criteria/path-equals.js

@@ -0,0 +1,7 @@
+import {
+  pathEquals
+} from "../chunk-UD456E4I.js";
+import "../chunk-MLKGABMK.js";
+export {
+  pathEquals
+};

package/dist/criteria/path-matches.cjs

@@ -0,0 +1,8 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkCF5PWWTFcjs = require('../chunk-CF5PWWTF.cjs');
+require('../chunk-IBXAK2A4.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.pathMatches = _chunkCF5PWWTFcjs.pathMatches;

package/dist/criteria/path-matches.d.cts

@@ -0,0 +1,22 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns `true` if the request path (query string stripped) matches any of the given
+ * wildcard patterns.
+ *
+ * Wildcard syntax: `*` matches any sequence of characters; `?` matches exactly one character.
+ * Matching is case-insensitive.
+ *
+ * Akamai equivalent: `path` criterion with `MATCHES_ONE_OF` wildcard match type.
+ *
+ * @param patterns - Array of wildcard path patterns (e.g. `['/blog/*', '/posts/????-??-??-*']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathMatches(['/blog/*', '/news/*']), setRequestHeader('x-section', 'editorial'))
+ * ```
+ */
+declare function pathMatches(patterns: string[]): CriteriaFn;
+
+export { pathMatches };

package/dist/criteria/path-matches.d.ts

@@ -0,0 +1,22 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns `true` if the request path (query string stripped) matches any of the given
+ * wildcard patterns.
+ *
+ * Wildcard syntax: `*` matches any sequence of characters; `?` matches exactly one character.
+ * Matching is case-insensitive.
+ *
+ * Akamai equivalent: `path` criterion with `MATCHES_ONE_OF` wildcard match type.
+ *
+ * @param patterns - Array of wildcard path patterns (e.g. `['/blog/*', '/posts/????-??-??-*']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathMatches(['/blog/*', '/news/*']), setRequestHeader('x-section', 'editorial'))
+ * ```
+ */
+declare function pathMatches(patterns: string[]): CriteriaFn;
+
+export { pathMatches };

package/dist/criteria/path-matches.js

@@ -0,0 +1,8 @@
+import {
+  pathMatches
+} from "../chunk-LO2BO3RU.js";
+import "../chunk-2DE6WPPL.js";
+import "../chunk-MLKGABMK.js";
+export {
+  pathMatches
+};

package/dist/criteria/path-prefix.cjs

@@ -0,0 +1,7 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkG7JGTBTTcjs = require('../chunk-G7JGTBTT.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.pathPrefix = _chunkG7JGTBTTcjs.pathPrefix;

package/dist/criteria/path-prefix.d.cts

@@ -0,0 +1,21 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns `true` if the request URI starts with any of the given prefixes.
+ *
+ * Matching is case-sensitive and applied to the full URI including the leading `/`.
+ * Commonly used to scope rules to a URL subtree (e.g. `/api/`, `/static/`).
+ *
+ * Akamai equivalent: `path` criterion with `STARTS_WITH` match type.
+ *
+ * @param prefixes - Array of URI prefixes to match (e.g. `['/api/', '/v2/']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathPrefix(['/api/', '/v2/']), setRequestHeader('x-api', 'true'))
+ * ```
+ */
+declare function pathPrefix(prefixes: string[]): CriteriaFn;
+
+export { pathPrefix };

package/dist/criteria/path-prefix.d.ts

@@ -0,0 +1,21 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns `true` if the request URI starts with any of the given prefixes.
+ *
+ * Matching is case-sensitive and applied to the full URI including the leading `/`.
+ * Commonly used to scope rules to a URL subtree (e.g. `/api/`, `/static/`).
+ *
+ * Akamai equivalent: `path` criterion with `STARTS_WITH` match type.
+ *
+ * @param prefixes - Array of URI prefixes to match (e.g. `['/api/', '/v2/']`).
+ * @returns A `CriteriaFn` to use as the first argument to `rule()`.
+ *
+ * @example
+ * ```ts
+ * rule(pathPrefix(['/api/', '/v2/']), setRequestHeader('x-api', 'true'))
+ * ```
+ */
+declare function pathPrefix(prefixes: string[]): CriteriaFn;
+
+export { pathPrefix };

package/dist/criteria/path-prefix.js

@@ -0,0 +1,7 @@
+import {
+  pathPrefix
+} from "../chunk-XLSZ5RB7.js";
+import "../chunk-MLKGABMK.js";
+export {
+  pathPrefix
+};

package/dist/criteria/user-agent-matches.cjs

@@ -0,0 +1,8 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkMVGYPBYBcjs = require('../chunk-MVGYPBYB.cjs');
+require('../chunk-IBXAK2A4.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.userAgentMatches = _chunkMVGYPBYBcjs.userAgentMatches;

package/dist/criteria/user-agent-matches.d.cts

@@ -0,0 +1,32 @@
+import { CriteriaFn } from '../core/types.cjs';
+
+/**
+ * Returns true if the request `User-Agent` header matches any of the given wildcard patterns.
+ *
+ * Patterns support `*` (match any number of characters) and `?` (match a single character).
+ * The match is case-sensitive. If the `User-Agent` header is absent, the criterion returns `false`.
+ *
+ * Akamai equivalent: `userAgent` criterion with `IS_ONE_OF` and wildcard matching.
+ *
+ * @param patterns - Array of wildcard patterns to match the User-Agent string against
+ *   (e.g. `['*Googlebot*', '*bingbot*']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the User-Agent matches any listed pattern.
+ *
+ * @example
+ * ```typescript
+ * import { rule, not } from '@viverse/cf-engine'
+ * import { userAgentMatches } from '@viverse/cf-engine/criteria'
+ * import { redirect, constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Block known scraper bots
+ * rule(userAgentMatches(['*SemrushBot*', '*AhrefsBot*', '*MJ12bot*']),
+ *   constructResponse({ statusCode: 403, body: 'Forbidden' }))
+ *
+ * // Allow only HTC internal automation tools (stage environment)
+ * rule(not(userAgentMatches(['*HTCVRSDET*', '*Prerender*', '*HTC3PARTY*'])),
+ *   redirect(302, 'https://www.viverse.com'))
+ * ```
+ */
+declare function userAgentMatches(patterns: string[]): CriteriaFn;
+
+export { userAgentMatches };

package/dist/criteria/user-agent-matches.d.ts

@@ -0,0 +1,32 @@
+import { CriteriaFn } from '../core/types.js';
+
+/**
+ * Returns true if the request `User-Agent` header matches any of the given wildcard patterns.
+ *
+ * Patterns support `*` (match any number of characters) and `?` (match a single character).
+ * The match is case-sensitive. If the `User-Agent` header is absent, the criterion returns `false`.
+ *
+ * Akamai equivalent: `userAgent` criterion with `IS_ONE_OF` and wildcard matching.
+ *
+ * @param patterns - Array of wildcard patterns to match the User-Agent string against
+ *   (e.g. `['*Googlebot*', '*bingbot*']`).
+ * @returns A `CriteriaFn` that evaluates to `true` when the User-Agent matches any listed pattern.
+ *
+ * @example
+ * ```typescript
+ * import { rule, not } from '@viverse/cf-engine'
+ * import { userAgentMatches } from '@viverse/cf-engine/criteria'
+ * import { redirect, constructResponse } from '@viverse/cf-engine/behaviors'
+ *
+ * // Block known scraper bots
+ * rule(userAgentMatches(['*SemrushBot*', '*AhrefsBot*', '*MJ12bot*']),
+ *   constructResponse({ statusCode: 403, body: 'Forbidden' }))
+ *
+ * // Allow only HTC internal automation tools (stage environment)
+ * rule(not(userAgentMatches(['*HTCVRSDET*', '*Prerender*', '*HTC3PARTY*'])),
+ *   redirect(302, 'https://www.viverse.com'))
+ * ```
+ */
+declare function userAgentMatches(patterns: string[]): CriteriaFn;
+
+export { userAgentMatches };

package/dist/criteria/user-agent-matches.js

@@ -0,0 +1,8 @@
+import {
+  userAgentMatches
+} from "../chunk-S2AAATFN.js";
+import "../chunk-2DE6WPPL.js";
+import "../chunk-MLKGABMK.js";
+export {
+  userAgentMatches
+};

package/dist/helpers/index.cjs

@@ -0,0 +1,42 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunk63WIEBQBcjs = require('../chunk-63WIEBQB.cjs');
+
+
+var _chunkLSCC62CZcjs = require('../chunk-LSCC62CZ.cjs');
+
+
+var _chunkWW7YVRAIcjs = require('../chunk-WW7YVRAI.cjs');
+require('../chunk-D47P7HVZ.cjs');
+require('../chunk-YVUR35RN.cjs');
+require('../chunk-OTFDML3K.cjs');
+require('../chunk-CF5PWWTF.cjs');
+require('../chunk-MVGYPBYB.cjs');
+require('../chunk-IBXAK2A4.cjs');
+
+
+var _chunkL7NBJ4JAcjs = require('../chunk-L7NBJ4JA.cjs');
+require('../chunk-WKYMSRCD.cjs');
+require('../chunk-WWSRNCUP.cjs');
+
+
+var _chunkB4WEJSEZcjs = require('../chunk-B4WEJSEZ.cjs');
+require('../chunk-JU5WX5RU.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+// src/helpers/staging-indicator.ts
+var STAGING_REQUEST_HEADER = "aws-cf-cd-staging";
+var STAGING_RESPONSE_HEADER = "x-cf-distribution";
+var STAGING_RESPONSE_VALUE = "staging";
+function stagingIndicator() {
+  return {
+    criteria: _chunkL7NBJ4JAcjs.headerEquals.call(void 0, STAGING_REQUEST_HEADER, ["true"]),
+    behavior: _chunkB4WEJSEZcjs.setResponseHeader.call(void 0, STAGING_RESPONSE_HEADER, STAGING_RESPONSE_VALUE)
+  };
+}
+
+
+
+
+
+exports.preflightRequest = _chunk63WIEBQBcjs.preflightRequest; exports.sendCountryCode = _chunkLSCC62CZcjs.sendCountryCode; exports.stagingIndicator = stagingIndicator; exports.stagingWhitelist = _chunkWW7YVRAIcjs.stagingWhitelist;

package/dist/helpers/index.d.cts

@@ -0,0 +1,34 @@
+export { sendCountryCode } from './send-country-code.cjs';
+export { StagingWhitelistOptions, stagingWhitelist } from './staging-whitelist.cjs';
+import { ResponseRule } from '../core/types.cjs';
+export { preflightRequest } from './preflight-request.cjs';
+import '../behaviors/set-cors-headers.cjs';
+
+/**
+ * Returns a `ResponseRule` that adds `x-cf-distribution: staging` to the response
+ * when the request carries the `aws-cf-cd-staging: true` header.
+ *
+ * This allows clients (DevTools, curl) to confirm they are hitting a staging
+ * CloudFront distribution without modifying origin behaviour.
+ *
+ * **Usage**: Add to `defineViewerResponse` in any `viewer-response` config that is
+ * shared between the primary and staging distributions. Requests to the primary
+ * distribution do not carry `aws-cf-cd-staging`, so the rule is a no-op there.
+ *
+ * @returns A `ResponseRule` ready to pass into `defineViewerResponse`.
+ *
+ * @example
+ * ```ts
+ * import { setCorsHeaders } from '@viverse/cf-engine/behaviors'
+ * import { stagingIndicator } from '@viverse/cf-engine/helpers'
+ * import { defineViewerResponse } from '@viverse/cf-engine/adapters/cf-function'
+ *
+ * export default defineViewerResponse([
+ *   setCorsHeaders({ allowedOrigins: ['https://www.viverse.com'] }),
+ *   stagingIndicator(),
+ * ])
+ * ```
+ */
+declare function stagingIndicator(): ResponseRule;
+
+export { stagingIndicator };

package/dist/helpers/index.d.ts

@@ -0,0 +1,34 @@
+export { sendCountryCode } from './send-country-code.js';
+export { StagingWhitelistOptions, stagingWhitelist } from './staging-whitelist.js';
+import { ResponseRule } from '../core/types.js';
+export { preflightRequest } from './preflight-request.js';
+import '../behaviors/set-cors-headers.js';
+
+/**
+ * Returns a `ResponseRule` that adds `x-cf-distribution: staging` to the response
+ * when the request carries the `aws-cf-cd-staging: true` header.
+ *
+ * This allows clients (DevTools, curl) to confirm they are hitting a staging
+ * CloudFront distribution without modifying origin behaviour.
+ *
+ * **Usage**: Add to `defineViewerResponse` in any `viewer-response` config that is
+ * shared between the primary and staging distributions. Requests to the primary
+ * distribution do not carry `aws-cf-cd-staging`, so the rule is a no-op there.
+ *
+ * @returns A `ResponseRule` ready to pass into `defineViewerResponse`.
+ *
+ * @example
+ * ```ts
+ * import { setCorsHeaders } from '@viverse/cf-engine/behaviors'
+ * import { stagingIndicator } from '@viverse/cf-engine/helpers'
+ * import { defineViewerResponse } from '@viverse/cf-engine/adapters/cf-function'
+ *
+ * export default defineViewerResponse([
+ *   setCorsHeaders({ allowedOrigins: ['https://www.viverse.com'] }),
+ *   stagingIndicator(),
+ * ])
+ * ```
+ */
+declare function stagingIndicator(): ResponseRule;
+
+export { stagingIndicator };

package/dist/helpers/index.js

@@ -0,0 +1,42 @@
+import {
+  preflightRequest
+} from "../chunk-H2LO6MQG.js";
+import {
+  sendCountryCode
+} from "../chunk-C32DL3EP.js";
+import {
+  stagingWhitelist
+} from "../chunk-UKB5JAX4.js";
+import "../chunk-KW5YBTSD.js";
+import "../chunk-LNQPYKGG.js";
+import "../chunk-PY3JMRDG.js";
+import "../chunk-LO2BO3RU.js";
+import "../chunk-S2AAATFN.js";
+import "../chunk-2DE6WPPL.js";
+import {
+  headerEquals
+} from "../chunk-BZQJYOU2.js";
+import "../chunk-Q4NP4C3B.js";
+import "../chunk-DSSFFJWL.js";
+import {
+  setResponseHeader
+} from "../chunk-RBBKFG5J.js";
+import "../chunk-BDNPQ7AU.js";
+import "../chunk-MLKGABMK.js";
+
+// src/helpers/staging-indicator.ts
+var STAGING_REQUEST_HEADER = "aws-cf-cd-staging";
+var STAGING_RESPONSE_HEADER = "x-cf-distribution";
+var STAGING_RESPONSE_VALUE = "staging";
+function stagingIndicator() {
+  return {
+    criteria: headerEquals(STAGING_REQUEST_HEADER, ["true"]),
+    behavior: setResponseHeader(STAGING_RESPONSE_HEADER, STAGING_RESPONSE_VALUE)
+  };
+}
+export {
+  preflightRequest,
+  sendCountryCode,
+  stagingIndicator,
+  stagingWhitelist
+};

package/dist/helpers/preflight-request.cjs

@@ -0,0 +1,8 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunk63WIEBQBcjs = require('../chunk-63WIEBQB.cjs');
+require('../chunk-OTFDML3K.cjs');
+require('../chunk-75ZPJI57.cjs');
+
+
+exports.preflightRequest = _chunk63WIEBQBcjs.preflightRequest;

package/dist/helpers/preflight-request.d.cts

@@ -0,0 +1,38 @@
+import { Rule } from '../core/types.cjs';
+import { CorsOptions } from '../behaviors/set-cors-headers.cjs';
+
+/**
+ * Returns a `Rule` that responds 204 to OPTIONS preflight requests with CORS headers.
+ *
+ * Accepts the same `CorsOptions` as `setCorsHeaders` — pass the same object to both
+ * to define CORS config in one place.
+ *
+ * @example
+ * ```ts
+ * import { preflightRequest } from '@viverse/cf-engine/helpers'
+ * import { setCorsHeaders } from '@viverse/cf-engine/behaviors'
+ * import { defineViewerRequest, defineViewerResponse } from '@viverse/cf-engine/adapters/cf-function'
+ * import type { CorsOptions } from '@viverse/cf-engine/behaviors'
+ *
+ * const CORS: CorsOptions = {
+ *   allowedOrigins: ['*'],
+ *   allowedMethods: 'GET, POST, OPTIONS',
+ *   allowedHeaders: 'Content-Type, Cache-Control, Pragma, Range',
+ * }
+ *
+ * // viewer-request.ts
+ * export default defineViewerRequest([
+ *   preflightRequest(CORS),
+ * ])
+ *
+ * // viewer-response.ts
+ * export default defineViewerResponse([
+ *   setCorsHeaders(CORS),
+ * ])
+ * ```
+ *
+ * @returns A `Rule` ready to pass into `defineViewerRequest`.
+ */
+declare function preflightRequest(options?: CorsOptions): Rule;
+
+export { preflightRequest };