@salesforce/core-bundle 8.7.0 → 8.8.1

package/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2024, Salesforce.com, Inc.
+Copyright (c) 2025, Salesforce.com, Inc.
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

package/lib/index.d.ts

@@ -2995,8 +2995,12 @@ declare module '@salesforce/core-bundle/org/connection' {
        */
       singleRecordQuery<T extends Record>(soql: string, options?: SingleRecordQueryOptions): Promise<T>;
       /**
-       * Executes a get request on the baseUrl to force an auth refresh
-       * Useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes
+       * Executes a HEAD request on the baseUrl to force an auth refresh.
+       * This is useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes.
+       *
+       * This method issues a request using the current access token to check if it is still valid.
+       * If the request returns 200, no refresh happens, and we keep the token.
+       * If it returns 401, jsforce will request a new token and set it in the connection instance.
        */
       refreshAuth(): Promise<void>;
       private getCachedApiVersion;
@@ -3353,7 +3357,12 @@ declare module '@salesforce/core-bundle/org/org' {
        */
       updateLocalInformation(): Promise<Pick<AuthFields, Org.Fields.NAME | Org.Fields.INSTANCE_NAME | Org.Fields.NAMESPACE_PREFIX | Org.Fields.IS_SANDBOX | Org.Fields.IS_SCRATCH | Org.Fields.TRIAL_EXPIRATION_DATE> | undefined>;
       /**
-       * Refreshes the auth for this org's instance by calling HTTP GET on the baseUrl of the connection object.
+       * Executes a HEAD request on the baseUrl to force an auth refresh.
+       * This is useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes.
+       *
+       * This method issues a request using the current access token to check if it is still valid.
+       * If the request returns 200, no refresh happens, and we keep the token.
+       * If it returns 401, jsforce will request a new token and set it in the connection instance.
        */
       refreshAuth(): Promise<void>;
       /**

package/lib/index.js

@@ -12328,7 +12328,7 @@ var require_package2 = __commonJS({
   "package.json"(exports2, module2) {
     module2.exports = {
       name: "@salesforce/core-bundle",
-      version: "8.7.0",
+      version: "8.8.1",
       description: "Core libraries to interact with SFDX projects, orgs, and APIs.",
       main: "lib/index",
       types: "lib/index.d.ts",
@@ -85462,14 +85462,18 @@ var require_connection3 = __commonJS({
         return result.records[0];
       }
       /**
-       * Executes a get request on the baseUrl to force an auth refresh
-       * Useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes
+       * Executes a HEAD request on the baseUrl to force an auth refresh.
+       * This is useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes.
+       *
+       * This method issues a request using the current access token to check if it is still valid.
+       * If the request returns 200, no refresh happens, and we keep the token.
+       * If it returns 401, jsforce will request a new token and set it in the connection instance.
        */
       async refreshAuth() {
         this.logger.debug("Refreshing auth for org.");
         const requestInfo = {
           url: this.baseUrl(),
-          method: "GET"
+          method: "HEAD"
         };
         await this.request(requestInfo);
       }
@@ -108094,13 +108098,18 @@ var require_org = __commonJS({
         }
       }
       /**
-       * Refreshes the auth for this org's instance by calling HTTP GET on the baseUrl of the connection object.
+       * Executes a HEAD request on the baseUrl to force an auth refresh.
+       * This is useful for the raw methods (request, requestRaw) that use the accessToken directly and don't handle refreshes.
+       *
+       * This method issues a request using the current access token to check if it is still valid.
+       * If the request returns 200, no refresh happens, and we keep the token.
+       * If it returns 401, jsforce will request a new token and set it in the connection instance.
        */
       async refreshAuth() {
         this.logger.debug("Refreshing auth for org.");
         const requestInfo = {
           url: this.getConnection().baseUrl(),
-          method: "GET"
+          method: "HEAD"
         };
         await this.getConnection().request(requestInfo);
       }
@@ -108952,7 +108961,7 @@ var require_authInfo = __commonJS({
        * @param sfdxAuthUrl
        */
       static parseSfdxAuthUrl(sfdxAuthUrl) {
-        const match = sfdxAuthUrl.match(/^force:\/\/([a-zA-Z0-9._-]+={0,2}):([a-zA-Z0-9._-]*={0,2}):([a-zA-Z0-9._-]+={0,2})@([a-zA-Z0-9._-]+)/);
+        const match = sfdxAuthUrl.match(/^force:\/\/([a-zA-Z0-9._-]+={0,2}):([a-zA-Z0-9._-]*={0,2}):([a-zA-Z0-9._-]+={0,2})@([a-zA-Z0-9:._-]+)/);
         if (!match) {
           throw new sfError_12.SfError(messages.getMessage("invalidSfdxAuthUrlError"), "INVALID_SFDX_AUTH_URL");
         }
@@ -109205,14 +109214,11 @@ var require_authInfo = __commonJS({
        * **See** [SFDX Authorization](https://developer.salesforce.com/docs/atlas.en-us.sfdx_cli_reference.meta/sfdx_cli_reference/cli_reference_force_auth.htm#cli_reference_force_auth)
        */
       getSfdxAuthUrl() {
-        const decryptedFields = this.getFields(true);
-        const instanceUrl = (0, ts_types_1.ensure)(decryptedFields.instanceUrl, "undefined instanceUrl").replace(/^https?:\/\//, "");
-        let sfdxAuthUrl = "force://";
-        if (decryptedFields.clientId) {
-          sfdxAuthUrl += `${decryptedFields.clientId}:${decryptedFields.clientSecret ?? ""}:`;
-        }
-        sfdxAuthUrl += `${(0, ts_types_1.ensure)(decryptedFields.refreshToken, "undefined refreshToken")}@${instanceUrl}`;
-        return sfdxAuthUrl;
+        const { clientId, clientSecret, refreshToken, instanceUrl } = this.getFields(true);
+        const url = new URL((0, ts_types_1.ensure)(instanceUrl, "undefined instanceUrl")).host;
+        const clientIdAndSecret = clientId ? `${clientId}:${clientSecret ?? ""}` : "";
+        const token = (0, ts_types_1.ensure)(refreshToken, "undefined refreshToken");
+        return `force://${clientIdAndSecret}:${token}@${url}`;
       }
       /**
        * Convenience function to handle typical side effects encountered when dealing with an AuthInfo.
@@ -109386,13 +109392,14 @@ var require_authInfo = __commonJS({
       }
       // A callback function for a connection to refresh an access token.  This is used
       // both for a JWT connection and an OAuth connection.
-      async refreshFn(conn, callback) {
+      async refreshFn(_conn, callback) {
         this.logger.info("Access token has expired. Updating...");
         try {
           const fields = this.getFields(true);
           await this.initAuthOptions(fields);
           await this.save();
-          return await callback(null, fields.accessToken);
+          const { accessToken } = this.getFields(true);
+          return await callback(null, accessToken);
         } catch (err) {
           const error = err;
           if (error?.message?.includes("Data Not Available")) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@salesforce/core-bundle",
-  "version": "8.7.0",
+  "version": "8.8.1",
   "description": "Core libraries to interact with SFDX projects, orgs, and APIs.",
   "main": "lib/index",
   "types": "lib/index.d.ts",