@remix-run/fetch-proxy 0.5.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 Michael Jackson
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,51 @@
+# fetch-proxy
+
+`fetch-proxy` is an HTTP proxy for the [JavaScript Fetch API](https://developer.mozilla.org/en-US/docs/Web/API/Fetch_API).
+
+In the context of servers, an HTTP proxy server is a server that forwards all requests it receives to another server and returns the responses it receives. When you think about it this way, a [`fetch` function](https://developer.mozilla.org/en-US/docs/Web/API/Window/fetch) is like a mini proxy server sitting right there in your code. You send it requests, it goes and talks to some other server, and it gives you back the response it received.
+
+`fetch-proxy` allows you to easily create `fetch` functions that act as proxies to "target" servers.
+
+## Features
+
+- Built on the standard [JavaScript Fetch API](https://developer.mozilla.org/en-US/docs/Web/API/Fetch_API)
+- Supports rewriting `Set-Cookie` headers received from target server
+- Supports `X-Forwarded-Proto` and `X-Forwarded-Host` headers
+- Supports custom `fetch` implementations
+
+## Installation
+
+Install from [npm](https://www.npmjs.com/):
+
+```sh
+npm i @remix-run/fetch-proxy
+```
+
+## Usage
+
+```ts
+import { createFetchProxy } from '@remix-run/fetch-proxy';
+
+// Create a proxy that sends all requests through to remix.run
+let proxy = createFetchProxy('https://remix.run');
+
+// This fetch handler is probably running as part of your server somewhere...
+function handleFetch(request: Request): Promise<Response> {
+  return proxy(request);
+}
+
+// Test it out by manually throwing a Request at it
+let response = await handleFetch(new Request('https://shopify.com'));
+
+let text = await response.text();
+let title = text.match(/<title>([^<]+)<\/title>/)[1];
+assert(title.includes('Remix'));
+```
+
+## Related Packages
+
+- [`node-fetch-server`](https://github.com/remix-run/remix/tree/v3/packages/node-fetch-server) - Build HTTP servers for Node.js using the web fetch API
+
+## License
+
+See [LICENSE](https://github.com/remix-run/remix/blob/v3/LICENSE)

package/dist/fetch-proxy.cjs

@@ -0,0 +1,223 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/fetch-proxy.ts
+var fetch_proxy_exports = {};
+__export(fetch_proxy_exports, {
+  createFetchProxy: () => createFetchProxy
+});
+module.exports = __toCommonJS(fetch_proxy_exports);
+
+// ../headers/src/lib/param-values.ts
+function parseParams(input, delimiter = ";") {
+  let parser = delimiter === ";" ? /(?:^|;)\s*([^=;\s]+)(\s*=\s*(?:"((?:[^"\\]|\\.)*)"|((?:[^;]|\\\;)+))?)?/g : /(?:^|,)\s*([^=,\s]+)(\s*=\s*(?:"((?:[^"\\]|\\.)*)"|((?:[^,]|\\\,)+))?)?/g;
+  let params = [];
+  let match;
+  while ((match = parser.exec(input)) !== null) {
+    let key = match[1].trim();
+    let value;
+    if (match[2]) {
+      value = (match[3] || match[4] || "").replace(/\\(.)/g, "$1").trim();
+    }
+    params.push([key, value]);
+  }
+  return params;
+}
+function quote(value) {
+  if (value.includes('"') || value.includes(";") || value.includes(" ")) {
+    return `"${value.replace(/"/g, '\\"')}"`;
+  }
+  return value;
+}
+
+// ../headers/src/lib/utils.ts
+function capitalize(str) {
+  return str.charAt(0).toUpperCase() + str.slice(1).toLowerCase();
+}
+function isValidDate(date) {
+  return date instanceof Date && !isNaN(date.getTime());
+}
+
+// ../headers/src/lib/set-cookie.ts
+var SetCookie = class {
+  domain;
+  expires;
+  httpOnly;
+  maxAge;
+  name;
+  path;
+  sameSite;
+  secure;
+  value;
+  constructor(init) {
+    if (init) {
+      if (typeof init === "string") {
+        let params = parseParams(init);
+        if (params.length > 0) {
+          this.name = params[0][0];
+          this.value = params[0][1];
+          for (let [key, value] of params.slice(1)) {
+            switch (key.toLowerCase()) {
+              case "domain":
+                this.domain = value;
+                break;
+              case "expires": {
+                if (typeof value === "string") {
+                  let date = new Date(value);
+                  if (isValidDate(date)) {
+                    this.expires = date;
+                  }
+                }
+                break;
+              }
+              case "httponly":
+                this.httpOnly = true;
+                break;
+              case "max-age": {
+                if (typeof value === "string") {
+                  let v = parseInt(value, 10);
+                  if (!isNaN(v)) this.maxAge = v;
+                }
+                break;
+              }
+              case "path":
+                this.path = value;
+                break;
+              case "samesite":
+                if (typeof value === "string" && /strict|lax|none/i.test(value)) {
+                  this.sameSite = capitalize(value);
+                }
+                break;
+              case "secure":
+                this.secure = true;
+                break;
+            }
+          }
+        }
+      } else {
+        this.domain = init.domain;
+        this.expires = init.expires;
+        this.httpOnly = init.httpOnly;
+        this.maxAge = init.maxAge;
+        this.name = init.name;
+        this.path = init.path;
+        this.sameSite = init.sameSite;
+        this.secure = init.secure;
+        this.value = init.value;
+      }
+    }
+  }
+  toString() {
+    if (!this.name) {
+      return "";
+    }
+    let parts = [`${this.name}=${quote(this.value || "")}`];
+    if (this.domain) {
+      parts.push(`Domain=${this.domain}`);
+    }
+    if (this.path) {
+      parts.push(`Path=${this.path}`);
+    }
+    if (this.expires) {
+      parts.push(`Expires=${this.expires.toUTCString()}`);
+    }
+    if (this.maxAge) {
+      parts.push(`Max-Age=${this.maxAge}`);
+    }
+    if (this.secure) {
+      parts.push("Secure");
+    }
+    if (this.httpOnly) {
+      parts.push("HttpOnly");
+    }
+    if (this.sameSite) {
+      parts.push(`SameSite=${this.sameSite}`);
+    }
+    return parts.join("; ");
+  }
+};
+
+// src/lib/fetch-proxy.ts
+function createFetchProxy(target, options) {
+  let localFetch = options?.fetch ?? globalThis.fetch;
+  let rewriteCookieDomain = options?.rewriteCookieDomain ?? true;
+  let rewriteCookiePath = options?.rewriteCookiePath ?? true;
+  let xForwardedHeaders = options?.xForwardedHeaders ?? false;
+  let targetUrl = new URL(target);
+  if (targetUrl.pathname.endsWith("/")) {
+    targetUrl.pathname = targetUrl.pathname.replace(/\/+$/, "");
+  }
+  return async (input, init) => {
+    let request = new Request(input, init);
+    let url = new URL(request.url);
+    let proxyUrl = new URL(url.search, targetUrl);
+    if (url.pathname !== "/") {
+      proxyUrl.pathname = proxyUrl.pathname === "/" ? url.pathname : proxyUrl.pathname + url.pathname;
+    }
+    let proxyHeaders = new Headers(request.headers);
+    if (xForwardedHeaders) {
+      proxyHeaders.append("X-Forwarded-Proto", url.protocol.replace(/:$/, ""));
+      proxyHeaders.append("X-Forwarded-Host", url.host);
+    }
+    let proxyInit = {
+      method: request.method,
+      headers: proxyHeaders,
+      cache: request.cache,
+      credentials: request.credentials,
+      integrity: request.integrity,
+      keepalive: request.keepalive,
+      mode: request.mode,
+      redirect: request.redirect,
+      referrer: request.referrer,
+      referrerPolicy: request.referrerPolicy,
+      signal: request.signal,
+      ...init
+    };
+    if (request.method !== "GET" && request.method !== "HEAD") {
+      proxyInit.body = request.body;
+      proxyInit.duplex = "half";
+    }
+    let response = await localFetch(proxyUrl, proxyInit);
+    let responseHeaders = new Headers(response.headers);
+    if (responseHeaders.has("Set-Cookie")) {
+      let setCookie = responseHeaders.getSetCookie();
+      responseHeaders.delete("Set-Cookie");
+      for (let cookie of setCookie) {
+        let header = new SetCookie(cookie);
+        if (rewriteCookieDomain && header.domain) {
+          header.domain = url.host;
+        }
+        if (rewriteCookiePath && header.path) {
+          if (header.path.startsWith(targetUrl.pathname + "/")) {
+            header.path = header.path.slice(targetUrl.pathname.length);
+          } else if (header.path === targetUrl.pathname) {
+            header.path = "/";
+          }
+        }
+        responseHeaders.append("Set-Cookie", header.toString());
+      }
+    }
+    return new Response(response.body, {
+      status: response.status,
+      statusText: response.statusText,
+      headers: responseHeaders
+    });
+  };
+}
+//# sourceMappingURL=fetch-proxy.cjs.map

package/dist/fetch-proxy.cjs.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../src/fetch-proxy.ts", "../../headers/src/lib/param-values.ts", "../../headers/src/lib/utils.ts", "../../headers/src/lib/set-cookie.ts", "../src/lib/fetch-proxy.ts"],
+  "sourcesContent": ["export { type FetchProxyOptions, type FetchProxy, createFetchProxy } from './lib/fetch-proxy.ts';\n", "export function parseParams(\n  input: string,\n  delimiter: ';' | ',' = ';',\n): [string, string | undefined][] {\n  // This parser splits on the delimiter and unquotes any quoted values\n  // like `filename=\"the\\\\ filename.txt\"`.\n  let parser =\n    delimiter === ';'\n      ? /(?:^|;)\\s*([^=;\\s]+)(\\s*=\\s*(?:\"((?:[^\"\\\\]|\\\\.)*)\"|((?:[^;]|\\\\\\;)+))?)?/g\n      : /(?:^|,)\\s*([^=,\\s]+)(\\s*=\\s*(?:\"((?:[^\"\\\\]|\\\\.)*)\"|((?:[^,]|\\\\\\,)+))?)?/g;\n\n  let params: [string, string | undefined][] = [];\n\n  let match;\n  while ((match = parser.exec(input)) !== null) {\n    let key = match[1].trim();\n\n    let value: string | undefined;\n    if (match[2]) {\n      value = (match[3] || match[4] || '').replace(/\\\\(.)/g, '$1').trim();\n    }\n\n    params.push([key, value]);\n  }\n\n  return params;\n}\n\nexport function quote(value: string): string {\n  if (value.includes('\"') || value.includes(';') || value.includes(' ')) {\n    return `\"${value.replace(/\"/g, '\\\\\"')}\"`;\n  }\n  return value;\n}\n", "export function capitalize(str: string): string {\n  return str.charAt(0).toUpperCase() + str.slice(1).toLowerCase();\n}\n\nexport function isIterable<T>(value: any): value is Iterable<T> {\n  return value != null && typeof value[Symbol.iterator] === 'function';\n}\n\nexport function isValidDate(date: unknown): boolean {\n  return date instanceof Date && !isNaN(date.getTime());\n}\n\nexport function quoteEtag(tag: string): string {\n  return tag === '*' ? tag : /^(W\\/)?\".*\"$/.test(tag) ? tag : `\"${tag}\"`;\n}\n", "import { type HeaderValue } from './header-value.ts';\nimport { parseParams, quote } from './param-values.ts';\nimport { capitalize, isValidDate } from './utils.ts';\n\ntype SameSiteValue = 'Strict' | 'Lax' | 'None';\n\nexport interface SetCookieInit {\n  /**\n   * The domain of the cookie. For example, `example.com`.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#domaindomain-value)\n   */\n  domain?: string;\n  /**\n   * The expiration date of the cookie. If not specified, the cookie is a session cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#expiresdate)\n   */\n  expires?: Date;\n  /**\n   * Indicates this cookie should not be accessible via JavaScript.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#httponly)\n   */\n  httpOnly?: true;\n  /**\n   * The maximum age of the cookie in seconds.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#max-age)\n   */\n  maxAge?: number;\n  /**\n   * The name of the cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#cookie-namecookie-value)\n   */\n  name?: string;\n  /**\n   * The path of the cookie. For example, `/` or `/admin`.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#pathpath-value)\n   */\n  path?: string;\n  /**\n   * The `SameSite` attribute of the cookie. This attribute lets servers require that a cookie shouldn't be sent with\n   * cross-site requests, which provides some protection against cross-site request forgery attacks.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#samesitesamesite-value)\n   */\n  sameSite?: SameSiteValue;\n  /**\n   * Indicates the cookie should only be sent over HTTPS.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#secure)\n   */\n  secure?: true;\n  /**\n   * The value of the cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#cookie-namecookie-value)\n   */\n  value?: string;\n}\n\n/**\n * The value of a `Set-Cookie` HTTP header.\n *\n * [MDN `Set-Cookie` Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie)\n *\n * [HTTP/1.1 Specification](https://datatracker.ietf.org/doc/html/rfc6265#section-4.1)\n */\nexport class SetCookie implements HeaderValue, SetCookieInit {\n  domain?: string;\n  expires?: Date;\n  httpOnly?: true;\n  maxAge?: number;\n  name?: string;\n  path?: string;\n  sameSite?: SameSiteValue;\n  secure?: true;\n  value?: string;\n\n  constructor(init?: string | SetCookieInit) {\n    if (init) {\n      if (typeof init === 'string') {\n        let params = parseParams(init);\n        if (params.length > 0) {\n          this.name = params[0][0];\n          this.value = params[0][1];\n\n          for (let [key, value] of params.slice(1)) {\n            switch (key.toLowerCase()) {\n              case 'domain':\n                this.domain = value;\n                break;\n              case 'expires': {\n                if (typeof value === 'string') {\n                  let date = new Date(value);\n                  if (isValidDate(date)) {\n                    this.expires = date;\n                  }\n                }\n                break;\n              }\n              case 'httponly':\n                this.httpOnly = true;\n                break;\n              case 'max-age': {\n                if (typeof value === 'string') {\n                  let v = parseInt(value, 10);\n                  if (!isNaN(v)) this.maxAge = v;\n                }\n                break;\n              }\n              case 'path':\n                this.path = value;\n                break;\n              case 'samesite':\n                if (typeof value === 'string' && /strict|lax|none/i.test(value)) {\n                  this.sameSite = capitalize(value) as SameSiteValue;\n                }\n                break;\n              case 'secure':\n                this.secure = true;\n                break;\n            }\n          }\n        }\n      } else {\n        this.domain = init.domain;\n        this.expires = init.expires;\n        this.httpOnly = init.httpOnly;\n        this.maxAge = init.maxAge;\n        this.name = init.name;\n        this.path = init.path;\n        this.sameSite = init.sameSite;\n        this.secure = init.secure;\n        this.value = init.value;\n      }\n    }\n  }\n\n  toString(): string {\n    if (!this.name) {\n      return '';\n    }\n\n    let parts = [`${this.name}=${quote(this.value || '')}`];\n\n    if (this.domain) {\n      parts.push(`Domain=${this.domain}`);\n    }\n    if (this.path) {\n      parts.push(`Path=${this.path}`);\n    }\n    if (this.expires) {\n      parts.push(`Expires=${this.expires.toUTCString()}`);\n    }\n    if (this.maxAge) {\n      parts.push(`Max-Age=${this.maxAge}`);\n    }\n    if (this.secure) {\n      parts.push('Secure');\n    }\n    if (this.httpOnly) {\n      parts.push('HttpOnly');\n    }\n    if (this.sameSite) {\n      parts.push(`SameSite=${this.sameSite}`);\n    }\n\n    return parts.join('; ');\n  }\n}\n", "import { SetCookie } from '@remix-run/headers';\n\nexport interface FetchProxyOptions {\n  /**\n   * The `fetch` function to use for the actual fetch. Defaults to the global `fetch` function.\n   */\n  fetch?: typeof globalThis.fetch;\n  /**\n   * Set `false` to prevent the `Domain` attribute of `Set-Cookie` headers from being rewritten. By\n   * default the domain will be rewritten to the domain of the incoming request.\n   */\n  rewriteCookieDomain?: boolean;\n  /**\n   * Set `false` to prevent the `Path` attribute of `Set-Cookie` headers from being rewritten. By\n   * default the portion of the pathname that matches the proxy target's pathname will be removed.\n   */\n  rewriteCookiePath?: boolean;\n  /**\n   * Set `true` to add `X-Forwarded-Proto` and `X-Forwarded-Host` headers to the proxied request.\n   * Defaults to `false`.\n   */\n  xForwardedHeaders?: boolean;\n}\n\n/**\n * A [`fetch` function](https://developer.mozilla.org/en-US/docs/Web/API/Window/fetch)\n * that forwards requests to another server.\n */\nexport interface FetchProxy {\n  (input: URL | RequestInfo, init?: RequestInit): Promise<Response>;\n}\n\n/**\n * Creates a `fetch` function that forwards requests to another server.\n * @param target The URL of the server to proxy requests to\n * @param options Options to customize the behavior of the proxy\n * @returns A fetch function that forwards requests to the target server\n */\nexport function createFetchProxy(target: string | URL, options?: FetchProxyOptions): FetchProxy {\n  let localFetch = options?.fetch ?? globalThis.fetch;\n  let rewriteCookieDomain = options?.rewriteCookieDomain ?? true;\n  let rewriteCookiePath = options?.rewriteCookiePath ?? true;\n  let xForwardedHeaders = options?.xForwardedHeaders ?? false;\n\n  let targetUrl = new URL(target);\n  if (targetUrl.pathname.endsWith('/')) {\n    targetUrl.pathname = targetUrl.pathname.replace(/\\/+$/, '');\n  }\n\n  return async (input: URL | RequestInfo, init?: RequestInit) => {\n    let request = new Request(input, init);\n    let url = new URL(request.url);\n\n    let proxyUrl = new URL(url.search, targetUrl);\n    if (url.pathname !== '/') {\n      proxyUrl.pathname =\n        proxyUrl.pathname === '/' ? url.pathname : proxyUrl.pathname + url.pathname;\n    }\n\n    let proxyHeaders = new Headers(request.headers);\n    if (xForwardedHeaders) {\n      proxyHeaders.append('X-Forwarded-Proto', url.protocol.replace(/:$/, ''));\n      proxyHeaders.append('X-Forwarded-Host', url.host);\n    }\n\n    let proxyInit: RequestInit = {\n      method: request.method,\n      headers: proxyHeaders,\n      cache: request.cache,\n      credentials: request.credentials,\n      integrity: request.integrity,\n      keepalive: request.keepalive,\n      mode: request.mode,\n      redirect: request.redirect,\n      referrer: request.referrer,\n      referrerPolicy: request.referrerPolicy,\n      signal: request.signal,\n      ...init,\n    };\n    if (request.method !== 'GET' && request.method !== 'HEAD') {\n      proxyInit.body = request.body;\n\n      // init.duplex = 'half' must be set when body is a ReadableStream, and Node follows the spec.\n      // However, this property is not defined in the TypeScript types for RequestInit, so we have\n      // to cast it here in order to set it without a type error.\n      // See https://fetch.spec.whatwg.org/#dom-requestinit-duplex\n      (proxyInit as { duplex: 'half' }).duplex = 'half';\n    }\n\n    let response = await localFetch(proxyUrl, proxyInit);\n    let responseHeaders = new Headers(response.headers);\n\n    if (responseHeaders.has('Set-Cookie')) {\n      let setCookie = responseHeaders.getSetCookie();\n\n      responseHeaders.delete('Set-Cookie');\n\n      for (let cookie of setCookie) {\n        let header = new SetCookie(cookie);\n\n        if (rewriteCookieDomain && header.domain) {\n          header.domain = url.host;\n        }\n\n        if (rewriteCookiePath && header.path) {\n          if (header.path.startsWith(targetUrl.pathname + '/')) {\n            header.path = header.path.slice(targetUrl.pathname.length);\n          } else if (header.path === targetUrl.pathname) {\n            header.path = '/';\n          }\n        }\n\n        responseHeaders.append('Set-Cookie', header.toString());\n      }\n    }\n\n    return new Response(response.body, {\n      status: response.status,\n      statusText: response.statusText,\n      headers: responseHeaders,\n    });\n  };\n}\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAO,SAAS,YACd,OACA,YAAuB,KACS;AAGhC,MAAI,SACF,cAAc,MACV,6EACA;AAEN,MAAI,SAAyC,CAAC;AAE9C,MAAI;AACJ,UAAQ,QAAQ,OAAO,KAAK,KAAK,OAAO,MAAM;AAC5C,QAAI,MAAM,MAAM,CAAC,EAAE,KAAK;AAExB,QAAI;AACJ,QAAI,MAAM,CAAC,GAAG;AACZ,eAAS,MAAM,CAAC,KAAK,MAAM,CAAC,KAAK,IAAI,QAAQ,UAAU,IAAI,EAAE,KAAK;AAAA,IACpE;AAEA,WAAO,KAAK,CAAC,KAAK,KAAK,CAAC;AAAA,EAC1B;AAEA,SAAO;AACT;AAEO,SAAS,MAAM,OAAuB;AAC3C,MAAI,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,GAAG;AACrE,WAAO,IAAI,MAAM,QAAQ,MAAM,KAAK,CAAC;AAAA,EACvC;AACA,SAAO;AACT;;;ACjCO,SAAS,WAAW,KAAqB;AAC9C,SAAO,IAAI,OAAO,CAAC,EAAE,YAAY,IAAI,IAAI,MAAM,CAAC,EAAE,YAAY;AAChE;AAMO,SAAS,YAAY,MAAwB;AAClD,SAAO,gBAAgB,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC;AACtD;;;AC6DO,IAAM,YAAN,MAAsD;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEA,YAAY,MAA+B;AACzC,QAAI,MAAM;AACR,UAAI,OAAO,SAAS,UAAU;AAC5B,YAAI,SAAS,YAAY,IAAI;AAC7B,YAAI,OAAO,SAAS,GAAG;AACrB,eAAK,OAAO,OAAO,CAAC,EAAE,CAAC;AACvB,eAAK,QAAQ,OAAO,CAAC,EAAE,CAAC;AAExB,mBAAS,CAAC,KAAK,KAAK,KAAK,OAAO,MAAM,CAAC,GAAG;AACxC,oBAAQ,IAAI,YAAY,GAAG;AAAA,cACzB,KAAK;AACH,qBAAK,SAAS;AACd;AAAA,cACF,KAAK,WAAW;AACd,oBAAI,OAAO,UAAU,UAAU;AAC7B,sBAAI,OAAO,IAAI,KAAK,KAAK;AACzB,sBAAI,YAAY,IAAI,GAAG;AACrB,yBAAK,UAAU;AAAA,kBACjB;AAAA,gBACF;AACA;AAAA,cACF;AAAA,cACA,KAAK;AACH,qBAAK,WAAW;AAChB;AAAA,cACF,KAAK,WAAW;AACd,oBAAI,OAAO,UAAU,UAAU;AAC7B,sBAAI,IAAI,SAAS,OAAO,EAAE;AAC1B,sBAAI,CAAC,MAAM,CAAC,EAAG,MAAK,SAAS;AAAA,gBAC/B;AACA;AAAA,cACF;AAAA,cACA,KAAK;AACH,qBAAK,OAAO;AACZ;AAAA,cACF,KAAK;AACH,oBAAI,OAAO,UAAU,YAAY,mBAAmB,KAAK,KAAK,GAAG;AAC/D,uBAAK,WAAW,WAAW,KAAK;AAAA,gBAClC;AACA;AAAA,cACF,KAAK;AACH,qBAAK,SAAS;AACd;AAAA,YACJ;AAAA,UACF;AAAA,QACF;AAAA,MACF,OAAO;AACL,aAAK,SAAS,KAAK;AACnB,aAAK,UAAU,KAAK;AACpB,aAAK,WAAW,KAAK;AACrB,aAAK,SAAS,KAAK;AACnB,aAAK,OAAO,KAAK;AACjB,aAAK,OAAO,KAAK;AACjB,aAAK,WAAW,KAAK;AACrB,aAAK,SAAS,KAAK;AACnB,aAAK,QAAQ,KAAK;AAAA,MACpB;AAAA,IACF;AAAA,EACF;AAAA,EAEA,WAAmB;AACjB,QAAI,CAAC,KAAK,MAAM;AACd,aAAO;AAAA,IACT;AAEA,QAAI,QAAQ,CAAC,GAAG,KAAK,IAAI,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC,EAAE;AAEtD,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,UAAU,KAAK,MAAM,EAAE;AAAA,IACpC;AACA,QAAI,KAAK,MAAM;AACb,YAAM,KAAK,QAAQ,KAAK,IAAI,EAAE;AAAA,IAChC;AACA,QAAI,KAAK,SAAS;AAChB,YAAM,KAAK,WAAW,KAAK,QAAQ,YAAY,CAAC,EAAE;AAAA,IACpD;AACA,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,WAAW,KAAK,MAAM,EAAE;AAAA,IACrC;AACA,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,QAAQ;AAAA,IACrB;AACA,QAAI,KAAK,UAAU;AACjB,YAAM,KAAK,UAAU;AAAA,IACvB;AACA,QAAI,KAAK,UAAU;AACjB,YAAM,KAAK,YAAY,KAAK,QAAQ,EAAE;AAAA,IACxC;AAEA,WAAO,MAAM,KAAK,IAAI;AAAA,EACxB;AACF;;;ACvIO,SAAS,iBAAiB,QAAsB,SAAyC;AAC9F,MAAI,aAAa,SAAS,SAAS,WAAW;AAC9C,MAAI,sBAAsB,SAAS,uBAAuB;AAC1D,MAAI,oBAAoB,SAAS,qBAAqB;AACtD,MAAI,oBAAoB,SAAS,qBAAqB;AAEtD,MAAI,YAAY,IAAI,IAAI,MAAM;AAC9B,MAAI,UAAU,SAAS,SAAS,GAAG,GAAG;AACpC,cAAU,WAAW,UAAU,SAAS,QAAQ,QAAQ,EAAE;AAAA,EAC5D;AAEA,SAAO,OAAO,OAA0B,SAAuB;AAC7D,QAAI,UAAU,IAAI,QAAQ,OAAO,IAAI;AACrC,QAAI,MAAM,IAAI,IAAI,QAAQ,GAAG;AAE7B,QAAI,WAAW,IAAI,IAAI,IAAI,QAAQ,SAAS;AAC5C,QAAI,IAAI,aAAa,KAAK;AACxB,eAAS,WACP,SAAS,aAAa,MAAM,IAAI,WAAW,SAAS,WAAW,IAAI;AAAA,IACvE;AAEA,QAAI,eAAe,IAAI,QAAQ,QAAQ,OAAO;AAC9C,QAAI,mBAAmB;AACrB,mBAAa,OAAO,qBAAqB,IAAI,SAAS,QAAQ,MAAM,EAAE,CAAC;AACvE,mBAAa,OAAO,oBAAoB,IAAI,IAAI;AAAA,IAClD;AAEA,QAAI,YAAyB;AAAA,MAC3B,QAAQ,QAAQ;AAAA,MAChB,SAAS;AAAA,MACT,OAAO,QAAQ;AAAA,MACf,aAAa,QAAQ;AAAA,MACrB,WAAW,QAAQ;AAAA,MACnB,WAAW,QAAQ;AAAA,MACnB,MAAM,QAAQ;AAAA,MACd,UAAU,QAAQ;AAAA,MAClB,UAAU,QAAQ;AAAA,MAClB,gBAAgB,QAAQ;AAAA,MACxB,QAAQ,QAAQ;AAAA,MAChB,GAAG;AAAA,IACL;AACA,QAAI,QAAQ,WAAW,SAAS,QAAQ,WAAW,QAAQ;AACzD,gBAAU,OAAO,QAAQ;AAMzB,MAAC,UAAiC,SAAS;AAAA,IAC7C;AAEA,QAAI,WAAW,MAAM,WAAW,UAAU,SAAS;AACnD,QAAI,kBAAkB,IAAI,QAAQ,SAAS,OAAO;AAElD,QAAI,gBAAgB,IAAI,YAAY,GAAG;AACrC,UAAI,YAAY,gBAAgB,aAAa;AAE7C,sBAAgB,OAAO,YAAY;AAEnC,eAAS,UAAU,WAAW;AAC5B,YAAI,SAAS,IAAI,UAAU,MAAM;AAEjC,YAAI,uBAAuB,OAAO,QAAQ;AACxC,iBAAO,SAAS,IAAI;AAAA,QACtB;AAEA,YAAI,qBAAqB,OAAO,MAAM;AACpC,cAAI,OAAO,KAAK,WAAW,UAAU,WAAW,GAAG,GAAG;AACpD,mBAAO,OAAO,OAAO,KAAK,MAAM,UAAU,SAAS,MAAM;AAAA,UAC3D,WAAW,OAAO,SAAS,UAAU,UAAU;AAC7C,mBAAO,OAAO;AAAA,UAChB;AAAA,QACF;AAEA,wBAAgB,OAAO,cAAc,OAAO,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAEA,WAAO,IAAI,SAAS,SAAS,MAAM;AAAA,MACjC,QAAQ,SAAS;AAAA,MACjB,YAAY,SAAS;AAAA,MACrB,SAAS;AAAA,IACX,CAAC;AAAA,EACH;AACF;",
+  "names": []
+}

package/dist/fetch-proxy.d.ts

@@ -0,0 +1,2 @@
+export { type FetchProxyOptions, type FetchProxy, createFetchProxy } from './lib/fetch-proxy.ts';
+//# sourceMappingURL=fetch-proxy.d.ts.map

package/dist/fetch-proxy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-proxy.d.ts","sourceRoot":"","sources":["../src/fetch-proxy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,iBAAiB,EAAE,KAAK,UAAU,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC"}

package/dist/fetch-proxy.js

@@ -0,0 +1,200 @@
+// ../headers/src/lib/param-values.ts
+function parseParams(input, delimiter = ";") {
+  let parser = delimiter === ";" ? /(?:^|;)\s*([^=;\s]+)(\s*=\s*(?:"((?:[^"\\]|\\.)*)"|((?:[^;]|\\\;)+))?)?/g : /(?:^|,)\s*([^=,\s]+)(\s*=\s*(?:"((?:[^"\\]|\\.)*)"|((?:[^,]|\\\,)+))?)?/g;
+  let params = [];
+  let match;
+  while ((match = parser.exec(input)) !== null) {
+    let key = match[1].trim();
+    let value;
+    if (match[2]) {
+      value = (match[3] || match[4] || "").replace(/\\(.)/g, "$1").trim();
+    }
+    params.push([key, value]);
+  }
+  return params;
+}
+function quote(value) {
+  if (value.includes('"') || value.includes(";") || value.includes(" ")) {
+    return `"${value.replace(/"/g, '\\"')}"`;
+  }
+  return value;
+}
+
+// ../headers/src/lib/utils.ts
+function capitalize(str) {
+  return str.charAt(0).toUpperCase() + str.slice(1).toLowerCase();
+}
+function isValidDate(date) {
+  return date instanceof Date && !isNaN(date.getTime());
+}
+
+// ../headers/src/lib/set-cookie.ts
+var SetCookie = class {
+  domain;
+  expires;
+  httpOnly;
+  maxAge;
+  name;
+  path;
+  sameSite;
+  secure;
+  value;
+  constructor(init) {
+    if (init) {
+      if (typeof init === "string") {
+        let params = parseParams(init);
+        if (params.length > 0) {
+          this.name = params[0][0];
+          this.value = params[0][1];
+          for (let [key, value] of params.slice(1)) {
+            switch (key.toLowerCase()) {
+              case "domain":
+                this.domain = value;
+                break;
+              case "expires": {
+                if (typeof value === "string") {
+                  let date = new Date(value);
+                  if (isValidDate(date)) {
+                    this.expires = date;
+                  }
+                }
+                break;
+              }
+              case "httponly":
+                this.httpOnly = true;
+                break;
+              case "max-age": {
+                if (typeof value === "string") {
+                  let v = parseInt(value, 10);
+                  if (!isNaN(v)) this.maxAge = v;
+                }
+                break;
+              }
+              case "path":
+                this.path = value;
+                break;
+              case "samesite":
+                if (typeof value === "string" && /strict|lax|none/i.test(value)) {
+                  this.sameSite = capitalize(value);
+                }
+                break;
+              case "secure":
+                this.secure = true;
+                break;
+            }
+          }
+        }
+      } else {
+        this.domain = init.domain;
+        this.expires = init.expires;
+        this.httpOnly = init.httpOnly;
+        this.maxAge = init.maxAge;
+        this.name = init.name;
+        this.path = init.path;
+        this.sameSite = init.sameSite;
+        this.secure = init.secure;
+        this.value = init.value;
+      }
+    }
+  }
+  toString() {
+    if (!this.name) {
+      return "";
+    }
+    let parts = [`${this.name}=${quote(this.value || "")}`];
+    if (this.domain) {
+      parts.push(`Domain=${this.domain}`);
+    }
+    if (this.path) {
+      parts.push(`Path=${this.path}`);
+    }
+    if (this.expires) {
+      parts.push(`Expires=${this.expires.toUTCString()}`);
+    }
+    if (this.maxAge) {
+      parts.push(`Max-Age=${this.maxAge}`);
+    }
+    if (this.secure) {
+      parts.push("Secure");
+    }
+    if (this.httpOnly) {
+      parts.push("HttpOnly");
+    }
+    if (this.sameSite) {
+      parts.push(`SameSite=${this.sameSite}`);
+    }
+    return parts.join("; ");
+  }
+};
+
+// src/lib/fetch-proxy.ts
+function createFetchProxy(target, options) {
+  let localFetch = options?.fetch ?? globalThis.fetch;
+  let rewriteCookieDomain = options?.rewriteCookieDomain ?? true;
+  let rewriteCookiePath = options?.rewriteCookiePath ?? true;
+  let xForwardedHeaders = options?.xForwardedHeaders ?? false;
+  let targetUrl = new URL(target);
+  if (targetUrl.pathname.endsWith("/")) {
+    targetUrl.pathname = targetUrl.pathname.replace(/\/+$/, "");
+  }
+  return async (input, init) => {
+    let request = new Request(input, init);
+    let url = new URL(request.url);
+    let proxyUrl = new URL(url.search, targetUrl);
+    if (url.pathname !== "/") {
+      proxyUrl.pathname = proxyUrl.pathname === "/" ? url.pathname : proxyUrl.pathname + url.pathname;
+    }
+    let proxyHeaders = new Headers(request.headers);
+    if (xForwardedHeaders) {
+      proxyHeaders.append("X-Forwarded-Proto", url.protocol.replace(/:$/, ""));
+      proxyHeaders.append("X-Forwarded-Host", url.host);
+    }
+    let proxyInit = {
+      method: request.method,
+      headers: proxyHeaders,
+      cache: request.cache,
+      credentials: request.credentials,
+      integrity: request.integrity,
+      keepalive: request.keepalive,
+      mode: request.mode,
+      redirect: request.redirect,
+      referrer: request.referrer,
+      referrerPolicy: request.referrerPolicy,
+      signal: request.signal,
+      ...init
+    };
+    if (request.method !== "GET" && request.method !== "HEAD") {
+      proxyInit.body = request.body;
+      proxyInit.duplex = "half";
+    }
+    let response = await localFetch(proxyUrl, proxyInit);
+    let responseHeaders = new Headers(response.headers);
+    if (responseHeaders.has("Set-Cookie")) {
+      let setCookie = responseHeaders.getSetCookie();
+      responseHeaders.delete("Set-Cookie");
+      for (let cookie of setCookie) {
+        let header = new SetCookie(cookie);
+        if (rewriteCookieDomain && header.domain) {
+          header.domain = url.host;
+        }
+        if (rewriteCookiePath && header.path) {
+          if (header.path.startsWith(targetUrl.pathname + "/")) {
+            header.path = header.path.slice(targetUrl.pathname.length);
+          } else if (header.path === targetUrl.pathname) {
+            header.path = "/";
+          }
+        }
+        responseHeaders.append("Set-Cookie", header.toString());
+      }
+    }
+    return new Response(response.body, {
+      status: response.status,
+      statusText: response.statusText,
+      headers: responseHeaders
+    });
+  };
+}
+export {
+  createFetchProxy
+};
+//# sourceMappingURL=fetch-proxy.js.map

package/dist/fetch-proxy.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../headers/src/lib/param-values.ts", "../../headers/src/lib/utils.ts", "../../headers/src/lib/set-cookie.ts", "../src/lib/fetch-proxy.ts"],
+  "sourcesContent": ["export function parseParams(\n  input: string,\n  delimiter: ';' | ',' = ';',\n): [string, string | undefined][] {\n  // This parser splits on the delimiter and unquotes any quoted values\n  // like `filename=\"the\\\\ filename.txt\"`.\n  let parser =\n    delimiter === ';'\n      ? /(?:^|;)\\s*([^=;\\s]+)(\\s*=\\s*(?:\"((?:[^\"\\\\]|\\\\.)*)\"|((?:[^;]|\\\\\\;)+))?)?/g\n      : /(?:^|,)\\s*([^=,\\s]+)(\\s*=\\s*(?:\"((?:[^\"\\\\]|\\\\.)*)\"|((?:[^,]|\\\\\\,)+))?)?/g;\n\n  let params: [string, string | undefined][] = [];\n\n  let match;\n  while ((match = parser.exec(input)) !== null) {\n    let key = match[1].trim();\n\n    let value: string | undefined;\n    if (match[2]) {\n      value = (match[3] || match[4] || '').replace(/\\\\(.)/g, '$1').trim();\n    }\n\n    params.push([key, value]);\n  }\n\n  return params;\n}\n\nexport function quote(value: string): string {\n  if (value.includes('\"') || value.includes(';') || value.includes(' ')) {\n    return `\"${value.replace(/\"/g, '\\\\\"')}\"`;\n  }\n  return value;\n}\n", "export function capitalize(str: string): string {\n  return str.charAt(0).toUpperCase() + str.slice(1).toLowerCase();\n}\n\nexport function isIterable<T>(value: any): value is Iterable<T> {\n  return value != null && typeof value[Symbol.iterator] === 'function';\n}\n\nexport function isValidDate(date: unknown): boolean {\n  return date instanceof Date && !isNaN(date.getTime());\n}\n\nexport function quoteEtag(tag: string): string {\n  return tag === '*' ? tag : /^(W\\/)?\".*\"$/.test(tag) ? tag : `\"${tag}\"`;\n}\n", "import { type HeaderValue } from './header-value.ts';\nimport { parseParams, quote } from './param-values.ts';\nimport { capitalize, isValidDate } from './utils.ts';\n\ntype SameSiteValue = 'Strict' | 'Lax' | 'None';\n\nexport interface SetCookieInit {\n  /**\n   * The domain of the cookie. For example, `example.com`.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#domaindomain-value)\n   */\n  domain?: string;\n  /**\n   * The expiration date of the cookie. If not specified, the cookie is a session cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#expiresdate)\n   */\n  expires?: Date;\n  /**\n   * Indicates this cookie should not be accessible via JavaScript.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#httponly)\n   */\n  httpOnly?: true;\n  /**\n   * The maximum age of the cookie in seconds.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#max-age)\n   */\n  maxAge?: number;\n  /**\n   * The name of the cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#cookie-namecookie-value)\n   */\n  name?: string;\n  /**\n   * The path of the cookie. For example, `/` or `/admin`.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#pathpath-value)\n   */\n  path?: string;\n  /**\n   * The `SameSite` attribute of the cookie. This attribute lets servers require that a cookie shouldn't be sent with\n   * cross-site requests, which provides some protection against cross-site request forgery attacks.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#samesitesamesite-value)\n   */\n  sameSite?: SameSiteValue;\n  /**\n   * Indicates the cookie should only be sent over HTTPS.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#secure)\n   */\n  secure?: true;\n  /**\n   * The value of the cookie.\n   *\n   * [MDN Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#cookie-namecookie-value)\n   */\n  value?: string;\n}\n\n/**\n * The value of a `Set-Cookie` HTTP header.\n *\n * [MDN `Set-Cookie` Reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie)\n *\n * [HTTP/1.1 Specification](https://datatracker.ietf.org/doc/html/rfc6265#section-4.1)\n */\nexport class SetCookie implements HeaderValue, SetCookieInit {\n  domain?: string;\n  expires?: Date;\n  httpOnly?: true;\n  maxAge?: number;\n  name?: string;\n  path?: string;\n  sameSite?: SameSiteValue;\n  secure?: true;\n  value?: string;\n\n  constructor(init?: string | SetCookieInit) {\n    if (init) {\n      if (typeof init === 'string') {\n        let params = parseParams(init);\n        if (params.length > 0) {\n          this.name = params[0][0];\n          this.value = params[0][1];\n\n          for (let [key, value] of params.slice(1)) {\n            switch (key.toLowerCase()) {\n              case 'domain':\n                this.domain = value;\n                break;\n              case 'expires': {\n                if (typeof value === 'string') {\n                  let date = new Date(value);\n                  if (isValidDate(date)) {\n                    this.expires = date;\n                  }\n                }\n                break;\n              }\n              case 'httponly':\n                this.httpOnly = true;\n                break;\n              case 'max-age': {\n                if (typeof value === 'string') {\n                  let v = parseInt(value, 10);\n                  if (!isNaN(v)) this.maxAge = v;\n                }\n                break;\n              }\n              case 'path':\n                this.path = value;\n                break;\n              case 'samesite':\n                if (typeof value === 'string' && /strict|lax|none/i.test(value)) {\n                  this.sameSite = capitalize(value) as SameSiteValue;\n                }\n                break;\n              case 'secure':\n                this.secure = true;\n                break;\n            }\n          }\n        }\n      } else {\n        this.domain = init.domain;\n        this.expires = init.expires;\n        this.httpOnly = init.httpOnly;\n        this.maxAge = init.maxAge;\n        this.name = init.name;\n        this.path = init.path;\n        this.sameSite = init.sameSite;\n        this.secure = init.secure;\n        this.value = init.value;\n      }\n    }\n  }\n\n  toString(): string {\n    if (!this.name) {\n      return '';\n    }\n\n    let parts = [`${this.name}=${quote(this.value || '')}`];\n\n    if (this.domain) {\n      parts.push(`Domain=${this.domain}`);\n    }\n    if (this.path) {\n      parts.push(`Path=${this.path}`);\n    }\n    if (this.expires) {\n      parts.push(`Expires=${this.expires.toUTCString()}`);\n    }\n    if (this.maxAge) {\n      parts.push(`Max-Age=${this.maxAge}`);\n    }\n    if (this.secure) {\n      parts.push('Secure');\n    }\n    if (this.httpOnly) {\n      parts.push('HttpOnly');\n    }\n    if (this.sameSite) {\n      parts.push(`SameSite=${this.sameSite}`);\n    }\n\n    return parts.join('; ');\n  }\n}\n", "import { SetCookie } from '@remix-run/headers';\n\nexport interface FetchProxyOptions {\n  /**\n   * The `fetch` function to use for the actual fetch. Defaults to the global `fetch` function.\n   */\n  fetch?: typeof globalThis.fetch;\n  /**\n   * Set `false` to prevent the `Domain` attribute of `Set-Cookie` headers from being rewritten. By\n   * default the domain will be rewritten to the domain of the incoming request.\n   */\n  rewriteCookieDomain?: boolean;\n  /**\n   * Set `false` to prevent the `Path` attribute of `Set-Cookie` headers from being rewritten. By\n   * default the portion of the pathname that matches the proxy target's pathname will be removed.\n   */\n  rewriteCookiePath?: boolean;\n  /**\n   * Set `true` to add `X-Forwarded-Proto` and `X-Forwarded-Host` headers to the proxied request.\n   * Defaults to `false`.\n   */\n  xForwardedHeaders?: boolean;\n}\n\n/**\n * A [`fetch` function](https://developer.mozilla.org/en-US/docs/Web/API/Window/fetch)\n * that forwards requests to another server.\n */\nexport interface FetchProxy {\n  (input: URL | RequestInfo, init?: RequestInit): Promise<Response>;\n}\n\n/**\n * Creates a `fetch` function that forwards requests to another server.\n * @param target The URL of the server to proxy requests to\n * @param options Options to customize the behavior of the proxy\n * @returns A fetch function that forwards requests to the target server\n */\nexport function createFetchProxy(target: string | URL, options?: FetchProxyOptions): FetchProxy {\n  let localFetch = options?.fetch ?? globalThis.fetch;\n  let rewriteCookieDomain = options?.rewriteCookieDomain ?? true;\n  let rewriteCookiePath = options?.rewriteCookiePath ?? true;\n  let xForwardedHeaders = options?.xForwardedHeaders ?? false;\n\n  let targetUrl = new URL(target);\n  if (targetUrl.pathname.endsWith('/')) {\n    targetUrl.pathname = targetUrl.pathname.replace(/\\/+$/, '');\n  }\n\n  return async (input: URL | RequestInfo, init?: RequestInit) => {\n    let request = new Request(input, init);\n    let url = new URL(request.url);\n\n    let proxyUrl = new URL(url.search, targetUrl);\n    if (url.pathname !== '/') {\n      proxyUrl.pathname =\n        proxyUrl.pathname === '/' ? url.pathname : proxyUrl.pathname + url.pathname;\n    }\n\n    let proxyHeaders = new Headers(request.headers);\n    if (xForwardedHeaders) {\n      proxyHeaders.append('X-Forwarded-Proto', url.protocol.replace(/:$/, ''));\n      proxyHeaders.append('X-Forwarded-Host', url.host);\n    }\n\n    let proxyInit: RequestInit = {\n      method: request.method,\n      headers: proxyHeaders,\n      cache: request.cache,\n      credentials: request.credentials,\n      integrity: request.integrity,\n      keepalive: request.keepalive,\n      mode: request.mode,\n      redirect: request.redirect,\n      referrer: request.referrer,\n      referrerPolicy: request.referrerPolicy,\n      signal: request.signal,\n      ...init,\n    };\n    if (request.method !== 'GET' && request.method !== 'HEAD') {\n      proxyInit.body = request.body;\n\n      // init.duplex = 'half' must be set when body is a ReadableStream, and Node follows the spec.\n      // However, this property is not defined in the TypeScript types for RequestInit, so we have\n      // to cast it here in order to set it without a type error.\n      // See https://fetch.spec.whatwg.org/#dom-requestinit-duplex\n      (proxyInit as { duplex: 'half' }).duplex = 'half';\n    }\n\n    let response = await localFetch(proxyUrl, proxyInit);\n    let responseHeaders = new Headers(response.headers);\n\n    if (responseHeaders.has('Set-Cookie')) {\n      let setCookie = responseHeaders.getSetCookie();\n\n      responseHeaders.delete('Set-Cookie');\n\n      for (let cookie of setCookie) {\n        let header = new SetCookie(cookie);\n\n        if (rewriteCookieDomain && header.domain) {\n          header.domain = url.host;\n        }\n\n        if (rewriteCookiePath && header.path) {\n          if (header.path.startsWith(targetUrl.pathname + '/')) {\n            header.path = header.path.slice(targetUrl.pathname.length);\n          } else if (header.path === targetUrl.pathname) {\n            header.path = '/';\n          }\n        }\n\n        responseHeaders.append('Set-Cookie', header.toString());\n      }\n    }\n\n    return new Response(response.body, {\n      status: response.status,\n      statusText: response.statusText,\n      headers: responseHeaders,\n    });\n  };\n}\n"],
+  "mappings": ";AAAO,SAAS,YACd,OACA,YAAuB,KACS;AAGhC,MAAI,SACF,cAAc,MACV,6EACA;AAEN,MAAI,SAAyC,CAAC;AAE9C,MAAI;AACJ,UAAQ,QAAQ,OAAO,KAAK,KAAK,OAAO,MAAM;AAC5C,QAAI,MAAM,MAAM,CAAC,EAAE,KAAK;AAExB,QAAI;AACJ,QAAI,MAAM,CAAC,GAAG;AACZ,eAAS,MAAM,CAAC,KAAK,MAAM,CAAC,KAAK,IAAI,QAAQ,UAAU,IAAI,EAAE,KAAK;AAAA,IACpE;AAEA,WAAO,KAAK,CAAC,KAAK,KAAK,CAAC;AAAA,EAC1B;AAEA,SAAO;AACT;AAEO,SAAS,MAAM,OAAuB;AAC3C,MAAI,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,GAAG;AACrE,WAAO,IAAI,MAAM,QAAQ,MAAM,KAAK,CAAC;AAAA,EACvC;AACA,SAAO;AACT;;;ACjCO,SAAS,WAAW,KAAqB;AAC9C,SAAO,IAAI,OAAO,CAAC,EAAE,YAAY,IAAI,IAAI,MAAM,CAAC,EAAE,YAAY;AAChE;AAMO,SAAS,YAAY,MAAwB;AAClD,SAAO,gBAAgB,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC;AACtD;;;AC6DO,IAAM,YAAN,MAAsD;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEA,YAAY,MAA+B;AACzC,QAAI,MAAM;AACR,UAAI,OAAO,SAAS,UAAU;AAC5B,YAAI,SAAS,YAAY,IAAI;AAC7B,YAAI,OAAO,SAAS,GAAG;AACrB,eAAK,OAAO,OAAO,CAAC,EAAE,CAAC;AACvB,eAAK,QAAQ,OAAO,CAAC,EAAE,CAAC;AAExB,mBAAS,CAAC,KAAK,KAAK,KAAK,OAAO,MAAM,CAAC,GAAG;AACxC,oBAAQ,IAAI,YAAY,GAAG;AAAA,cACzB,KAAK;AACH,qBAAK,SAAS;AACd;AAAA,cACF,KAAK,WAAW;AACd,oBAAI,OAAO,UAAU,UAAU;AAC7B,sBAAI,OAAO,IAAI,KAAK,KAAK;AACzB,sBAAI,YAAY,IAAI,GAAG;AACrB,yBAAK,UAAU;AAAA,kBACjB;AAAA,gBACF;AACA;AAAA,cACF;AAAA,cACA,KAAK;AACH,qBAAK,WAAW;AAChB;AAAA,cACF,KAAK,WAAW;AACd,oBAAI,OAAO,UAAU,UAAU;AAC7B,sBAAI,IAAI,SAAS,OAAO,EAAE;AAC1B,sBAAI,CAAC,MAAM,CAAC,EAAG,MAAK,SAAS;AAAA,gBAC/B;AACA;AAAA,cACF;AAAA,cACA,KAAK;AACH,qBAAK,OAAO;AACZ;AAAA,cACF,KAAK;AACH,oBAAI,OAAO,UAAU,YAAY,mBAAmB,KAAK,KAAK,GAAG;AAC/D,uBAAK,WAAW,WAAW,KAAK;AAAA,gBAClC;AACA;AAAA,cACF,KAAK;AACH,qBAAK,SAAS;AACd;AAAA,YACJ;AAAA,UACF;AAAA,QACF;AAAA,MACF,OAAO;AACL,aAAK,SAAS,KAAK;AACnB,aAAK,UAAU,KAAK;AACpB,aAAK,WAAW,KAAK;AACrB,aAAK,SAAS,KAAK;AACnB,aAAK,OAAO,KAAK;AACjB,aAAK,OAAO,KAAK;AACjB,aAAK,WAAW,KAAK;AACrB,aAAK,SAAS,KAAK;AACnB,aAAK,QAAQ,KAAK;AAAA,MACpB;AAAA,IACF;AAAA,EACF;AAAA,EAEA,WAAmB;AACjB,QAAI,CAAC,KAAK,MAAM;AACd,aAAO;AAAA,IACT;AAEA,QAAI,QAAQ,CAAC,GAAG,KAAK,IAAI,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC,EAAE;AAEtD,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,UAAU,KAAK,MAAM,EAAE;AAAA,IACpC;AACA,QAAI,KAAK,MAAM;AACb,YAAM,KAAK,QAAQ,KAAK,IAAI,EAAE;AAAA,IAChC;AACA,QAAI,KAAK,SAAS;AAChB,YAAM,KAAK,WAAW,KAAK,QAAQ,YAAY,CAAC,EAAE;AAAA,IACpD;AACA,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,WAAW,KAAK,MAAM,EAAE;AAAA,IACrC;AACA,QAAI,KAAK,QAAQ;AACf,YAAM,KAAK,QAAQ;AAAA,IACrB;AACA,QAAI,KAAK,UAAU;AACjB,YAAM,KAAK,UAAU;AAAA,IACvB;AACA,QAAI,KAAK,UAAU;AACjB,YAAM,KAAK,YAAY,KAAK,QAAQ,EAAE;AAAA,IACxC;AAEA,WAAO,MAAM,KAAK,IAAI;AAAA,EACxB;AACF;;;ACvIO,SAAS,iBAAiB,QAAsB,SAAyC;AAC9F,MAAI,aAAa,SAAS,SAAS,WAAW;AAC9C,MAAI,sBAAsB,SAAS,uBAAuB;AAC1D,MAAI,oBAAoB,SAAS,qBAAqB;AACtD,MAAI,oBAAoB,SAAS,qBAAqB;AAEtD,MAAI,YAAY,IAAI,IAAI,MAAM;AAC9B,MAAI,UAAU,SAAS,SAAS,GAAG,GAAG;AACpC,cAAU,WAAW,UAAU,SAAS,QAAQ,QAAQ,EAAE;AAAA,EAC5D;AAEA,SAAO,OAAO,OAA0B,SAAuB;AAC7D,QAAI,UAAU,IAAI,QAAQ,OAAO,IAAI;AACrC,QAAI,MAAM,IAAI,IAAI,QAAQ,GAAG;AAE7B,QAAI,WAAW,IAAI,IAAI,IAAI,QAAQ,SAAS;AAC5C,QAAI,IAAI,aAAa,KAAK;AACxB,eAAS,WACP,SAAS,aAAa,MAAM,IAAI,WAAW,SAAS,WAAW,IAAI;AAAA,IACvE;AAEA,QAAI,eAAe,IAAI,QAAQ,QAAQ,OAAO;AAC9C,QAAI,mBAAmB;AACrB,mBAAa,OAAO,qBAAqB,IAAI,SAAS,QAAQ,MAAM,EAAE,CAAC;AACvE,mBAAa,OAAO,oBAAoB,IAAI,IAAI;AAAA,IAClD;AAEA,QAAI,YAAyB;AAAA,MAC3B,QAAQ,QAAQ;AAAA,MAChB,SAAS;AAAA,MACT,OAAO,QAAQ;AAAA,MACf,aAAa,QAAQ;AAAA,MACrB,WAAW,QAAQ;AAAA,MACnB,WAAW,QAAQ;AAAA,MACnB,MAAM,QAAQ;AAAA,MACd,UAAU,QAAQ;AAAA,MAClB,UAAU,QAAQ;AAAA,MAClB,gBAAgB,QAAQ;AAAA,MACxB,QAAQ,QAAQ;AAAA,MAChB,GAAG;AAAA,IACL;AACA,QAAI,QAAQ,WAAW,SAAS,QAAQ,WAAW,QAAQ;AACzD,gBAAU,OAAO,QAAQ;AAMzB,MAAC,UAAiC,SAAS;AAAA,IAC7C;AAEA,QAAI,WAAW,MAAM,WAAW,UAAU,SAAS;AACnD,QAAI,kBAAkB,IAAI,QAAQ,SAAS,OAAO;AAElD,QAAI,gBAAgB,IAAI,YAAY,GAAG;AACrC,UAAI,YAAY,gBAAgB,aAAa;AAE7C,sBAAgB,OAAO,YAAY;AAEnC,eAAS,UAAU,WAAW;AAC5B,YAAI,SAAS,IAAI,UAAU,MAAM;AAEjC,YAAI,uBAAuB,OAAO,QAAQ;AACxC,iBAAO,SAAS,IAAI;AAAA,QACtB;AAEA,YAAI,qBAAqB,OAAO,MAAM;AACpC,cAAI,OAAO,KAAK,WAAW,UAAU,WAAW,GAAG,GAAG;AACpD,mBAAO,OAAO,OAAO,KAAK,MAAM,UAAU,SAAS,MAAM;AAAA,UAC3D,WAAW,OAAO,SAAS,UAAU,UAAU;AAC7C,mBAAO,OAAO;AAAA,UAChB;AAAA,QACF;AAEA,wBAAgB,OAAO,cAAc,OAAO,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAEA,WAAO,IAAI,SAAS,SAAS,MAAM;AAAA,MACjC,QAAQ,SAAS;AAAA,MACjB,YAAY,SAAS;AAAA,MACrB,SAAS;AAAA,IACX,CAAC;AAAA,EACH;AACF;",
+  "names": []
+}

package/dist/lib/fetch-proxy.d.ts

@@ -0,0 +1,36 @@
+export interface FetchProxyOptions {
+    /**
+     * The `fetch` function to use for the actual fetch. Defaults to the global `fetch` function.
+     */
+    fetch?: typeof globalThis.fetch;
+    /**
+     * Set `false` to prevent the `Domain` attribute of `Set-Cookie` headers from being rewritten. By
+     * default the domain will be rewritten to the domain of the incoming request.
+     */
+    rewriteCookieDomain?: boolean;
+    /**
+     * Set `false` to prevent the `Path` attribute of `Set-Cookie` headers from being rewritten. By
+     * default the portion of the pathname that matches the proxy target's pathname will be removed.
+     */
+    rewriteCookiePath?: boolean;
+    /**
+     * Set `true` to add `X-Forwarded-Proto` and `X-Forwarded-Host` headers to the proxied request.
+     * Defaults to `false`.
+     */
+    xForwardedHeaders?: boolean;
+}
+/**
+ * A [`fetch` function](https://developer.mozilla.org/en-US/docs/Web/API/Window/fetch)
+ * that forwards requests to another server.
+ */
+export interface FetchProxy {
+    (input: URL | RequestInfo, init?: RequestInit): Promise<Response>;
+}
+/**
+ * Creates a `fetch` function that forwards requests to another server.
+ * @param target The URL of the server to proxy requests to
+ * @param options Options to customize the behavior of the proxy
+ * @returns A fetch function that forwards requests to the target server
+ */
+export declare function createFetchProxy(target: string | URL, options?: FetchProxyOptions): FetchProxy;
+//# sourceMappingURL=fetch-proxy.d.ts.map

package/dist/lib/fetch-proxy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-proxy.d.ts","sourceRoot":"","sources":["../../src/lib/fetch-proxy.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,iBAAiB;IAChC;;OAEG;IACH,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAChC;;;OAGG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B;;;OAGG;IACH,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B;;;OAGG;IACH,iBAAiB,CAAC,EAAE,OAAO,CAAC;CAC7B;AAED;;;GAGG;AACH,MAAM,WAAW,UAAU;IACzB,CAAC,KAAK,EAAE,GAAG,GAAG,WAAW,EAAE,IAAI,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;CACnE;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,GAAG,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,UAAU,CAoF9F"}

package/package.json

@@ -0,0 +1,53 @@
+{
+  "name": "@remix-run/fetch-proxy",
+  "version": "0.5.0",
+  "description": "An HTTP proxy for the web Fetch API",
+  "author": "Michael Jackson <mjijackson@gmail.com>",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/remix-run/remix.git",
+    "directory": "packages/fetch-proxy"
+  },
+  "homepage": "https://github.com/remix-run/remix/tree/v3/packages/fetch-proxy#readme",
+  "files": [
+    "LICENSE",
+    "README.md",
+    "dist",
+    "src",
+    "!src/**/*.test.ts"
+  ],
+  "type": "module",
+  "types": "dist/fetch-proxy.d.ts",
+  "module": "dist/fetch-proxy.js",
+  "main": "dist/fetch-proxy.cjs",
+  "exports": {
+    ".": {
+      "types": "./dist/fetch-proxy.d.ts",
+      "import": "./dist/fetch-proxy.js",
+      "require": "./dist/fetch-proxy.cjs",
+      "default": "./dist/fetch-proxy.js"
+    },
+    "./package.json": "./package.json"
+  },
+  "dependencies": {
+    "@remix-run/headers": "^0.12.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.14.10",
+    "esbuild": "^0.25.5"
+  },
+  "keywords": [
+    "fetch",
+    "http",
+    "proxy"
+  ],
+  "scripts": {
+    "build:types": "tsc --project tsconfig.build.json",
+    "build:esm": "esbuild src/fetch-proxy.ts --bundle --outfile=dist/fetch-proxy.js --format=esm --platform=neutral --sourcemap",
+    "build:cjs": "esbuild src/fetch-proxy.ts --bundle --outfile=dist/fetch-proxy.cjs --format=cjs --platform=neutral --sourcemap",
+    "build": "pnpm run clean && pnpm run build:types && pnpm run build:esm && pnpm run build:cjs",
+    "clean": "rm -rf dist",
+    "test": "node --disable-warning=ExperimentalWarning --test ./src/**/*.test.ts"
+  }
+}

package/src/fetch-proxy.ts

@@ -0,0 +1 @@
+export { type FetchProxyOptions, type FetchProxy, createFetchProxy } from './lib/fetch-proxy.ts';

package/src/lib/fetch-proxy.ts

@@ -0,0 +1,123 @@
+import { SetCookie } from '@remix-run/headers';
+
+export interface FetchProxyOptions {
+  /**
+   * The `fetch` function to use for the actual fetch. Defaults to the global `fetch` function.
+   */
+  fetch?: typeof globalThis.fetch;
+  /**
+   * Set `false` to prevent the `Domain` attribute of `Set-Cookie` headers from being rewritten. By
+   * default the domain will be rewritten to the domain of the incoming request.
+   */
+  rewriteCookieDomain?: boolean;
+  /**
+   * Set `false` to prevent the `Path` attribute of `Set-Cookie` headers from being rewritten. By
+   * default the portion of the pathname that matches the proxy target's pathname will be removed.
+   */
+  rewriteCookiePath?: boolean;
+  /**
+   * Set `true` to add `X-Forwarded-Proto` and `X-Forwarded-Host` headers to the proxied request.
+   * Defaults to `false`.
+   */
+  xForwardedHeaders?: boolean;
+}
+
+/**
+ * A [`fetch` function](https://developer.mozilla.org/en-US/docs/Web/API/Window/fetch)
+ * that forwards requests to another server.
+ */
+export interface FetchProxy {
+  (input: URL | RequestInfo, init?: RequestInit): Promise<Response>;
+}
+
+/**
+ * Creates a `fetch` function that forwards requests to another server.
+ * @param target The URL of the server to proxy requests to
+ * @param options Options to customize the behavior of the proxy
+ * @returns A fetch function that forwards requests to the target server
+ */
+export function createFetchProxy(target: string | URL, options?: FetchProxyOptions): FetchProxy {
+  let localFetch = options?.fetch ?? globalThis.fetch;
+  let rewriteCookieDomain = options?.rewriteCookieDomain ?? true;
+  let rewriteCookiePath = options?.rewriteCookiePath ?? true;
+  let xForwardedHeaders = options?.xForwardedHeaders ?? false;
+
+  let targetUrl = new URL(target);
+  if (targetUrl.pathname.endsWith('/')) {
+    targetUrl.pathname = targetUrl.pathname.replace(/\/+$/, '');
+  }
+
+  return async (input: URL | RequestInfo, init?: RequestInit) => {
+    let request = new Request(input, init);
+    let url = new URL(request.url);
+
+    let proxyUrl = new URL(url.search, targetUrl);
+    if (url.pathname !== '/') {
+      proxyUrl.pathname =
+        proxyUrl.pathname === '/' ? url.pathname : proxyUrl.pathname + url.pathname;
+    }
+
+    let proxyHeaders = new Headers(request.headers);
+    if (xForwardedHeaders) {
+      proxyHeaders.append('X-Forwarded-Proto', url.protocol.replace(/:$/, ''));
+      proxyHeaders.append('X-Forwarded-Host', url.host);
+    }
+
+    let proxyInit: RequestInit = {
+      method: request.method,
+      headers: proxyHeaders,
+      cache: request.cache,
+      credentials: request.credentials,
+      integrity: request.integrity,
+      keepalive: request.keepalive,
+      mode: request.mode,
+      redirect: request.redirect,
+      referrer: request.referrer,
+      referrerPolicy: request.referrerPolicy,
+      signal: request.signal,
+      ...init,
+    };
+    if (request.method !== 'GET' && request.method !== 'HEAD') {
+      proxyInit.body = request.body;
+
+      // init.duplex = 'half' must be set when body is a ReadableStream, and Node follows the spec.
+      // However, this property is not defined in the TypeScript types for RequestInit, so we have
+      // to cast it here in order to set it without a type error.
+      // See https://fetch.spec.whatwg.org/#dom-requestinit-duplex
+      (proxyInit as { duplex: 'half' }).duplex = 'half';
+    }
+
+    let response = await localFetch(proxyUrl, proxyInit);
+    let responseHeaders = new Headers(response.headers);
+
+    if (responseHeaders.has('Set-Cookie')) {
+      let setCookie = responseHeaders.getSetCookie();
+
+      responseHeaders.delete('Set-Cookie');
+
+      for (let cookie of setCookie) {
+        let header = new SetCookie(cookie);
+
+        if (rewriteCookieDomain && header.domain) {
+          header.domain = url.host;
+        }
+
+        if (rewriteCookiePath && header.path) {
+          if (header.path.startsWith(targetUrl.pathname + '/')) {
+            header.path = header.path.slice(targetUrl.pathname.length);
+          } else if (header.path === targetUrl.pathname) {
+            header.path = '/';
+          }
+        }
+
+        responseHeaders.append('Set-Cookie', header.toString());
+      }
+    }
+
+    return new Response(response.body, {
+      status: response.status,
+      statusText: response.statusText,
+      headers: responseHeaders,
+    });
+  };
+}