@sanity/client 7.22.0 → 7.22.1

package/dist/index.browser.d.cts

@@ -1046,9 +1046,9 @@ export declare interface ContentSourceMapValueMapping {
 
 /** @public */
 export declare class CorsOriginError extends Error {
-  projectId: string
+  projectId?: string
   addOriginUrl?: URL
-  constructor({projectId}: {projectId: string})
+  constructor({projectId, credentials}?: {projectId?: string; credentials?: boolean})
 }
 
 /**

package/dist/index.browser.d.ts

@@ -1046,9 +1046,9 @@ export declare interface ContentSourceMapValueMapping {
 
 /** @public */
 export declare class CorsOriginError extends Error {
-  projectId: string
+  projectId?: string
   addOriginUrl?: URL
-  constructor({projectId}: {projectId: string})
+  constructor({projectId, credentials}?: {projectId?: string; credentials?: boolean})
 }
 
 /**

package/dist/index.browser.js

@@ -174,14 +174,11 @@ function sliceWithEllipsis(str, max) {
 class CorsOriginError extends Error {
   projectId;
   addOriginUrl;
-  constructor({ projectId: projectId2 }) {
-    super("CorsOriginError"), this.name = "CorsOriginError", this.projectId = projectId2;
-    const url = new URL(`https://sanity.io/manage/project/${projectId2}/api`);
-    if (typeof location < "u") {
-      const { origin } = location;
-      url.searchParams.set("cors", "add"), url.searchParams.set("origin", origin), this.addOriginUrl = url, this.message = `The current origin is not allowed to connect to the Live Content API. Add it here: ${url}`;
-    } else
-      this.message = `The current origin is not allowed to connect to the Live Content API. Change your configuration here: ${url}`;
+  constructor({ projectId: projectId2, credentials } = {}) {
+    if (super("CorsOriginError"), this.name = "CorsOriginError", this.projectId = projectId2, projectId2 && typeof location < "u") {
+      const url = new URL(`https://sanity.io/manage/project/${projectId2}/api`), { origin } = location;
+      url.searchParams.set("cors", "add"), url.searchParams.set("origin", origin), credentials && url.searchParams.set("credentials", ""), this.addOriginUrl = url, this.message = `The current origin is not allowed to connect to the Live Content API. Add it here: ${url}`;
+    } else projectId2 ? this.message = `The current origin is not allowed to connect to the Live Content API. Change your configuration here: https://sanity.io/manage/project/${projectId2}/api` : this.message = "The current origin is not allowed to connect to the Live Content API.";
   }
 }
 const httpError = {
@@ -1498,19 +1495,14 @@ class LiveClient {
       "welcome",
       "reconnect",
       "goaway"
-    ]), checkCors = fetchObservable(url, {
-      method: "OPTIONS",
-      mode: "cors",
-      credentials: esOptions.withCredentials ? "include" : "omit",
-      headers: esOptions.headers
-    }).pipe(
-      catchError(() => {
-        throw new CorsOriginError({ projectId: projectId2 });
-      })
+    ]), checkCors = checkCorsObservable(
+      new URL(this.#client.getUrl("/check/cors", !1)),
+      projectId2,
+      esOptions.withCredentials === !0
     ), observable2 = events.pipe(
       reconnectOnConnectionFailure(),
       mergeMap((event) => event.type === "reconnect" ? checkCors.pipe(mergeMap(() => of(event))) : of(event)),
-      catchError((err) => checkCors.pipe(
+      catchError((err) => err instanceof CorsOriginError ? throwError(() => err) : checkCors.pipe(
         mergeMap(() => {
           throw err;
         })
@@ -1531,17 +1523,27 @@ class LiveClient {
     return eventsCache.set(key, observable2), observable2;
   }
 }
-function fetchObservable(url, init) {
+function checkCorsObservable(url, projectId2, requireCredentials) {
   return new Observable((observer) => {
-    const controller = new AbortController(), signal = controller.signal;
-    return fetch(url, { ...init, signal: controller.signal }).then(
-      (response) => {
-        observer.next(response), observer.complete();
-      },
-      (err) => {
-        signal.aborted || observer.error(err);
+    const controller = new AbortController(), { signal } = controller;
+    return fetch(url, { method: "GET", mode: "cors", credentials: "omit", signal }).then((response) => {
+      if (!(signal.aborted || !response.ok))
+        return response.json();
+    }).then((body) => {
+      if (!signal.aborted) {
+        if (requireCredentials && body?.result?.withCredentials === !1) {
+          observer.error(new CorsOriginError({ projectId: projectId2, credentials: !0 }));
+          return;
+        }
+        if (body?.result?.allowed === !1) {
+          observer.error(new CorsOriginError({ projectId: projectId2, credentials: requireCredentials }));
+          return;
+        }
+        observer.next(), observer.complete();
       }
-    ), () => controller.abort();
+    }).catch(() => {
+      signal.aborted || observer.closed || (observer.next(), observer.complete());
+    }), () => controller.abort();
   });
 }
 const eventsCache = /* @__PURE__ */ new Map();