@sharadtech/infralytiqs-sdk 1.0.1 → 1.0.3

package/dist/infralytiqs.js

@@ -1,4 +1,4 @@
-/*! infralytiqs-sdk v1.0.1 | (c) 2026 sharadtech | License: See LICENSE | Built: 2026-05-27T12:40:33.717Z */
+/*! infralytiqs-sdk v1.0.3 | (c) 2026 sharadtech | License: See LICENSE | Built: 2026-06-09T23:55:14.571Z */
 var Infralytiqs = (function (exports) {
     'use strict';
 
@@ -22,7 +22,7 @@ var Infralytiqs = (function (exports) {
         /** LocalStorage key prefix for tracker state */
         STORAGE_PREFIX: '_il_',
         /** SDK version — injected into every event payload for debugging */
-        SDK_VERSION: '1.0.0',
+        SDK_VERSION: '1.0.3',
         /** Maximum retry attempts for failed flushes */
         MAX_RETRIES: 2,
         /** Enable debug logging to browser console (overridden by init config) */
@@ -572,6 +572,223 @@ var Infralytiqs = (function (exports) {
         return memoryCoords;
     };
 
+    /**
+     * Infralytiqs token sync.
+     *
+     * The host page (e.g. the AEM Infralytiqs.html HTL fragment) renders the
+     * tenant's current Infralytiqs token id into a global:
+     *
+     *     <script>window.IL_TOKEN = "....";</script>
+     *
+     * On SDK load we copy that value into sessionStorage so the rest of the page
+     * (and any embedded Infralytiqs widgets — e.g. the "Infralytiqs SDK" report
+     * snippet) can read a single, tab-scoped source of truth. The token is
+     * tab-scoped on purpose: it lives only for the current session/tab, mirroring
+     * how the host page re-emits a fresh `window.IL_TOKEN` on every render.
+     *
+     * Update semantics: if a token is already stored and the markup provides a
+     * different (non-empty) value, the stored token is replaced with the markup
+     * value so the freshest server-issued token always wins.
+     */
+    /** sessionStorage key holding the Infralytiqs token id. */
+    const TOKEN_STORAGE_KEY = `${ENV.STORAGE_PREFIX}token`;
+    /**
+     * Reads `window.IL_TOKEN` and stores it in sessionStorage, updating the
+     * stored value when the markup token differs from what is already cached.
+     *
+     * @returns the token value now held in sessionStorage, or `null` when no
+     *          valid token is available.
+     */
+    function syncToken() {
+        if (typeof window === 'undefined') {
+            return null;
+        }
+        const w = window;
+        const markupToken = typeof w.IL_TOKEN === 'string' ? w.IL_TOKEN.trim() : '';
+        let stored = null;
+        try {
+            stored = sessionStorage.getItem(TOKEN_STORAGE_KEY);
+        }
+        catch (_a) {
+            // sessionStorage unavailable (e.g. privacy mode) — nothing we can do.
+            return markupToken || null;
+        }
+        // No usable markup token: keep whatever is already stored (if anything).
+        if (!markupToken) {
+            return stored;
+        }
+        // Store on first sight or whenever the markup token has changed.
+        if (stored !== markupToken) {
+            try {
+                sessionStorage.setItem(TOKEN_STORAGE_KEY, markupToken);
+            }
+            catch (_b) {
+                /* storage write failed — return the markup value regardless */
+            }
+        }
+        return markupToken;
+    }
+    /**
+     * @returns the Infralytiqs token id currently held in sessionStorage, or
+     *          `null` if none is stored / storage is unavailable.
+     */
+    function getStoredToken() {
+        try {
+            return sessionStorage.getItem(TOKEN_STORAGE_KEY);
+        }
+        catch (_a) {
+            return null;
+        }
+    }
+
+    /**
+     * Remote tenant configuration fetch for the Infralytiqs SDK.
+     *
+     * After `init()`, the SDK calls the public st-ck-server endpoint
+     *
+     *     GET {serverUrl}/il/analytics/{tenantId}/{siteId}/client-config?db_name={dbName}
+     *     headers: { 'x-il-token': <window.IL_TOKEN> }
+     *
+     * which returns browser-safe behaviour flags configured on the tenant's
+     * ClickHouse server configuration in the Infralytiqs Settings UI
+     * ("Data Sources" → "Configured Servers"). Today that is:
+     *
+     *     precise_visitor_location — when true, the SDK should request precise
+     *     browser geolocation (visitor-consented) and attach lat/lng to events.
+     *
+     * Failure model — IMPORTANT: this endpoint may not exist yet on older
+     * server deployments, the token may be missing/expired, or the network may
+     * be down. None of that may ever break the host site or tracking, so:
+     *
+     *   • No token available           → skip the call entirely, resolve null.
+     *   • Non-2xx (401/403/404/5xx)    → resolve null silently.
+     *   • Network error / timeout      → resolve null silently.
+     *   • Malformed JSON               → resolve null silently.
+     *
+     * A successful response is cached in sessionStorage for the rest of the
+     * tab session so SPA navigations / repeat page loads within the tab don't
+     * re-hit the endpoint.
+     */
+    /** Endpoint pattern — :tenant_id and :site_id are replaced at runtime. */
+    const CLIENT_CONFIG_PATH = '/il/analytics/:tenant_id/:site_id/client-config';
+    /** Abort the config fetch if the server hasn't answered within this window. */
+    const FETCH_TIMEOUT_MS = 6000;
+    /** sessionStorage key for the per-tab remote-config cache. */
+    const CACHE_KEY = `${ENV.STORAGE_PREFIX}client_cfg_v1`;
+    const scopeKey = (tenantId, siteId) => `${tenantId}::${siteId}`;
+    const readCache = (tenantId, siteId) => {
+        try {
+            const raw = sessionStorage.getItem(CACHE_KEY);
+            if (!raw)
+                return null;
+            const parsed = JSON.parse(raw);
+            if (parsed && parsed.scope === scopeKey(tenantId, siteId) && parsed.cfg) {
+                return parsed.cfg;
+            }
+        }
+        catch (_a) {
+            /* unavailable / corrupted cache — fall through to a live fetch */
+        }
+        return null;
+    };
+    const writeCache = (tenantId, siteId, cfg) => {
+        try {
+            const envelope = { scope: scopeKey(tenantId, siteId), cfg };
+            sessionStorage.setItem(CACHE_KEY, JSON.stringify(envelope));
+        }
+        catch (_a) {
+            /* ignore — cache is best-effort */
+        }
+    };
+    /** Resolve the freshest available IL token (markup global wins over cache). */
+    const resolveToken = () => {
+        try {
+            return syncToken() || getStoredToken();
+        }
+        catch (_a) {
+            return null;
+        }
+    };
+    /**
+     * Fetches the tenant's remote client configuration.
+     *
+     * Resolves with the parsed flags, or `null` when the config could not be
+     * obtained for ANY reason (no token, endpoint missing, invalid token,
+     * network failure). Never rejects and never throws.
+     */
+    function fetchRemoteClientConfig(serverUrl, tenantId, siteId, dbName, debug) {
+        try {
+            if (typeof window === 'undefined' || typeof fetch !== 'function') {
+                return Promise.resolve(null);
+            }
+            const cached = readCache(tenantId, siteId);
+            if (cached) {
+                if (debug)
+                    console.log('[Infralytiqs] remote client-config (cached):', cached);
+                return Promise.resolve(cached);
+            }
+            const token = resolveToken();
+            if (!token) {
+                // Without a token the server would reject the call anyway — skip the
+                // round-trip entirely. Local init() config remains in effect.
+                if (debug)
+                    console.log('[Infralytiqs] no IL token — skipping remote client-config fetch');
+                return Promise.resolve(null);
+            }
+            const path = CLIENT_CONFIG_PATH
+                .replace(':tenant_id', encodeURIComponent(tenantId))
+                .replace(':site_id', encodeURIComponent(siteId));
+            const qs = dbName ? `?db_name=${encodeURIComponent(dbName)}` : '';
+            const url = `${serverUrl.replace(/\/$/, '')}${path}${qs}`;
+            const controller = typeof AbortController !== 'undefined' ? new AbortController() : null;
+            const timer = controller
+                ? window.setTimeout(() => { try {
+                    controller.abort();
+                }
+                catch ( /* noop */_a) { /* noop */ } }, FETCH_TIMEOUT_MS)
+                : null;
+            return fetch(url, {
+                method: 'GET',
+                headers: { 'x-il-token': token },
+                signal: controller ? controller.signal : undefined,
+            })
+                .then((res) => {
+                if (timer !== null)
+                    window.clearTimeout(timer);
+                if (!res.ok) {
+                    // 403 = invalid/expired token, 404 = endpoint not deployed yet.
+                    // Both are expected states — degrade silently to local config.
+                    if (debug)
+                        console.log(`[Infralytiqs] remote client-config unavailable (HTTP ${res.status})`);
+                    return null;
+                }
+                return res.json().then((body) => {
+                    var _a;
+                    const data = body && typeof body === 'object' ? ((_a = body.data) !== null && _a !== void 0 ? _a : body) : null;
+                    if (!data || typeof data !== 'object')
+                        return null;
+                    const cfg = {
+                        preciseVisitorLocation: data.precise_visitor_location === true,
+                    };
+                    writeCache(tenantId, siteId, cfg);
+                    if (debug)
+                        console.log('[Infralytiqs] remote client-config:', cfg);
+                    return cfg;
+                }).catch(() => null);
+            })
+                .catch(() => {
+                if (timer !== null)
+                    window.clearTimeout(timer);
+                if (debug)
+                    console.log('[Infralytiqs] remote client-config fetch failed (network) — using local config');
+                return null;
+            });
+        }
+        catch (_a) {
+            return Promise.resolve(null);
+        }
+    }
+
     /** Hard cap on the pre-init buffer to avoid unbounded memory growth. */
     const PRE_INIT_BUFFER_LIMIT = 100;
     /**
@@ -673,6 +890,30 @@ var Infralytiqs = (function (exports) {
             if (this.config.captureLocation) {
                 requestLocation(this.config.debug).catch(() => { });
             }
+            // Fire-and-forget remote tenant configuration. The server's ClickHouse
+            // module configuration (Infralytiqs Settings → Data Sources) carries
+            // browser-safe behaviour flags — today "Capture Precise Visitor
+            // Location". When the fetch succeeds the remote flag is authoritative:
+            //   • remote true  → enable captureLocation and kick off the (consented)
+            //                    geolocation prompt, even if init() left it off.
+            //   • remote false → disable captureLocation so subsequent events stop
+            //                    attaching cached coords.
+            // When the fetch fails for any reason (no token, endpoint not deployed
+            // yet, expired token, network down) it resolves null and the local
+            // init() config stays in effect — tracking is never disrupted.
+            fetchRemoteClientConfig(this.config.serverUrl, this.config.tenantId, this.config.siteId, this.config.dbName, this.config.debug).then((remote) => {
+                if (!remote)
+                    return;
+                if (remote.preciseVisitorLocation && !this.config.captureLocation) {
+                    this.config.captureLocation = true;
+                    this.log('Remote config enabled precise visitor location');
+                    requestLocation(this.config.debug).catch(() => { });
+                }
+                else if (!remote.preciseVisitorLocation && this.config.captureLocation) {
+                    this.config.captureLocation = false;
+                    this.log('Remote config disabled precise visitor location');
+                }
+            }).catch(() => { });
             // Drain anything that arrived during the async bootstrap window.
             if (this.preInitBuffer.length > 0) {
                 const buffered = this.preInitBuffer.splice(0);
@@ -985,7 +1226,34 @@ var Infralytiqs = (function (exports) {
         destroy() {
             tracker.destroy();
         },
+        /**
+         * Re-read `window.IL_TOKEN` and sync it into sessionStorage. Runs once
+         * automatically on SDK load; can be called again after the host page
+         * refreshes the token global.
+         *
+         * @returns the token now held in sessionStorage, or `null` if none.
+         */
+        syncToken() {
+            return syncToken();
+        },
+        /**
+         * @returns the Infralytiqs token id currently held in sessionStorage.
+         */
+        getToken() {
+            return getStoredToken();
+        },
     };
+    // ─── Sync the Infralytiqs token into sessionStorage ─────────────────────
+    // The host page renders the tenant's current token id as `window.IL_TOKEN`
+    // (see AEM Infralytiqs.html). Copy it into sessionStorage on load so any
+    // embedded report widget can pick it up, updating the stored value whenever
+    // the markup token changes.
+    try {
+        syncToken();
+    }
+    catch (_a) {
+        /* never throw out of SDK script-tag evaluation */
+    }
     // ─── Auto-load the client-specific bootstrap ────────────────────────────
     // When the SDK script tag executes, look for `window.IL_CLIENT_BOOTSTRAP_LIB`
     // declared by the host page (e.g. by the AEM Infralytiqs.html Sightly
@@ -997,11 +1265,12 @@ var Infralytiqs = (function (exports) {
     try {
         loadClientBootstrap();
     }
-    catch (_a) {
+    catch (_b) {
         /* never throw out of SDK script-tag evaluation */
     }
 
     exports.LICENSE_MODULE_ID = LICENSE_MODULE_ID;
+    exports.TOKEN_STORAGE_KEY = TOKEN_STORAGE_KEY;
     exports.default = Infralytiqs;
 
     Object.defineProperty(exports, '__esModule', { value: true });

package/dist/infralytiqs.min.js

@@ -1,2 +1,2 @@
-/*! infralytiqs-sdk v1.0.1 | (c) 2026 sharadtech | License: See LICENSE | Built: 2026-05-27T12:40:33.717Z */
-var Infralytiqs=function(t){"use strict";const e={ANALYTICS_API_BASE_URL:"",INGEST_PATH:"/il/analytics/:tenant_id/:site_id/events",BATCH_SIZE:20,FLUSH_INTERVAL_MS:5e3,SESSION_TIMEOUT_MS:18e5,STORAGE_PREFIX:"_il_",SDK_VERSION:"1.0.0",MAX_RETRIES:2,DEBUG:!1},n=`${e.STORAGE_PREFIX}anon_id`,i=`${e.STORAGE_PREFIX}session_id`,o=`${e.STORAGE_PREFIX}session_ts`;function r(){return"undefined"!=typeof crypto&&crypto.randomUUID?crypto.randomUUID():"xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g,t=>{const e=16*Math.random()|0;return("x"===t?e:3&e|8).toString(16)})}function s(t){try{return localStorage.getItem(t)}catch(t){return null}}function a(t,e){try{localStorage.setItem(t,e)}catch(t){}}function u(){let t=s(n);return t||(t=r(),a(n,t)),t}function c(t){const e=Date.now(),n=parseInt(s(o)||"0",10);let u=s(i);return(!u||e-n>t)&&(u=r(),a(i,u)),a(o,String(e)),u}let l="";function d(t){l=t;try{sessionStorage.setItem(`${e.STORAGE_PREFIX}user_id`,t)}catch(t){}}function f(){if(l)return l;try{l=sessionStorage.getItem(`${e.STORAGE_PREFIX}user_id`)||""}catch(t){}return l}function g(){const t=navigator.userAgent||"";return/tablet|ipad|playbook|silk/i.test(t)?"tablet":/mobile|iphone|ipod|android.*mobile|windows phone|blackberry/i.test(t)?"mobile":"desktop"}function h(){const t=navigator.userAgent||"",e=navigator.platform||"",n=navigator.maxTouchPoints||0;return/iPhone|iPod/i.test(t)||/iPad/i.test(t)||/Mac/.test(e)&&n>1?"iOS":/Android/i.test(t)?"Android":/CrOS/i.test(t)?"ChromeOS":/Windows/i.test(t)?"Windows":/Mac OS X|Macintosh/i.test(t)?"macOS":/Linux/i.test(t)?"Linux":"Other"}function m(){const t=(navigator.language||"").split("-");return t.length>1?t[1].toUpperCase():""}const p=["utm_source","utm_medium","utm_campaign","utm_term","utm_content"];function _(t){return`${t.serverUrl.replace(/\/+$/,"")}${e.INGEST_PATH.replace(":tenant_id",encodeURIComponent(t.tenantId)).replace(":site_id",encodeURIComponent(t.siteId))}`}function v(t,...e){t&&"undefined"!=typeof console&&console.log("[Infralytiqs]",...e)}function y(t,e){const n=[];if(!t.disableAutoPageView){e("page_view",null,{referrer:document.referrer||""},{});const t=()=>{e("page_view","spa_navigation",{referrer:document.referrer||""},{})};window.addEventListener("popstate",t),n.push(()=>window.removeEventListener("popstate",t));const i=history.pushState.bind(history);history.pushState=function(...t){i(...t),e("page_view","spa_navigation",{referrer:document.referrer||""},{})},n.push(()=>{history.pushState=i})}if(!t.disableAutoClick){const i=t.clickSelector||'a, button, [data-il-track], input[type="submit"]',o=n=>{const o=n.target;if(!o)return;const r=o.closest(i);if(!r)return;const s=Object.assign(Object.assign({},function(t){var e,n,i;const o={},r=(null===(e=t.tagName)||void 0===e?void 0:e.toLowerCase())||"";o.element_tag=r,t.id&&(o.element_id=t.id);const s=t.className;if("string"==typeof s&&s&&(o.element_class=s.split(/\s+/).slice(0,3).join(" ")),"a"===r){const e=t.href;e&&(o.link_url=e);const i=null===(n=t.textContent)||void 0===n?void 0:n.trim();i&&(o.link_text=i.substring(0,120))}else if("button"===r||"button"===t.getAttribute("role")){const e=null===(i=t.textContent)||void 0===i?void 0:i.trim();e&&(o.button_text=e.substring(0,120))}const a=t.getAttribute("data-il-track");return a&&(o.track_label=a),o}(r)),function(t,e){var n;const i={};if(!e)return i;for(const[o,r]of Object.entries(e))if("function"==typeof r)i[o]=r(t);else if("string"==typeof r){const e=t.closest(r)||t.querySelector(r);e&&(i[o]=e.getAttribute(`data-${o}`)||(null===(n=e.textContent)||void 0===n?void 0:n.trim())||"")}return i}(r,t.evarMap)),a=function(t,e){const n={};if(!e)return n;for(const[i,o]of Object.entries(e))n[i]=o(t);return n}(r,t.propMap);e("click",null,s,a)};document.addEventListener("click",o,{capture:!0,passive:!0}),n.push(()=>document.removeEventListener("click",o,!0))}if(!t.disableAutoPageLeave){let t=Date.now();const i=()=>{if("hidden"===document.visibilityState){const n=Math.round((Date.now()-t)/1e3);e("page_leave",null,{},{time_on_page_sec:n})}else t=Date.now()};document.addEventListener("visibilitychange",i),n.push(()=>document.removeEventListener("visibilitychange",i));const o=()=>{const n=Math.round((Date.now()-t)/1e3);e("page_leave","unload",{},{time_on_page_sec:n})};window.addEventListener("beforeunload",o),n.push(()=>window.removeEventListener("beforeunload",o))}return()=>n.forEach(t=>t())}const I="il_geo_v1",b="il_geo_deny_v1",S=8e3,w=()=>{try{if("undefined"!=typeof window&&window.localStorage){const t="__il_geo_probe__";return window.localStorage.setItem(t,"1"),window.localStorage.removeItem(t),window.localStorage}}catch(t){}return null};let E=null,T=null;const A=()=>{if(E)return;const t=(()=>{const t=w();if(!t)return null;try{const e=t.getItem(I);if(!e)return null;const n=JSON.parse(e);if("number"==typeof n.latitude&&"number"==typeof n.longitude&&"number"==typeof n.capturedAt&&Date.now()-n.capturedAt<6048e5)return n;t.removeItem(I)}catch(e){try{t.removeItem(I)}catch(t){}}return null})();t&&(E=t)},x=t=>{var n;return"undefined"==typeof window||"undefined"==typeof navigator?Promise.resolve(null):(A(),E?Promise.resolve(E):(()=>{const t=w();if(!t)return!1;try{const e=t.getItem(b);if(!e)return!1;const n=Number(e);if(Number.isFinite(n)&&Date.now()-n<864e5)return!0;t.removeItem(b)}catch(t){}return!1})()?(t&&console.log("[Infralytiqs] geolocation previously denied — skipping prompt"),Promise.resolve(null)):"geolocation"in navigator&&"function"==typeof(null===(n=navigator.geolocation)||void 0===n?void 0:n.getCurrentPosition)?T||(T=new Promise(n=>{let i=!1;const o=t=>{i||(i=!0,T=null,n(t))},r=window.setTimeout(()=>{t&&console.log("[Infralytiqs] geolocation prompt timed out after 8000ms"),o(null)},9e3);try{navigator.geolocation.getCurrentPosition(n=>{window.clearTimeout(r);const i={latitude:n.coords.latitude,longitude:n.coords.longitude,accuracy:n.coords.accuracy,capturedAt:Date.now()};E=i,(t=>{const e=w();if(e)try{e.setItem(I,JSON.stringify(t))}catch(t){}})(i),t&&console.log(`[Infralytiqs] geolocation granted (sdk=${e.SDK_VERSION}, acc=${Math.round(i.accuracy)}m)`),o(i)},e=>{window.clearTimeout(r),e&&1===e.code?((()=>{const t=w();if(t)try{t.setItem(b,String(Date.now()))}catch(t){}})(),t&&console.log("[Infralytiqs] geolocation permission denied")):t&&console.log(`[Infralytiqs] geolocation error (code=${null==e?void 0:e.code}): ${null==e?void 0:e.message}`),o(null)},{enableHighAccuracy:!1,timeout:S,maximumAge:36e5})}catch(t){window.clearTimeout(r),o(null)}}),T):Promise.resolve(null))};function O(){try{const t=window.location,e=t.hash||"";if(!e.startsWith("#/"))return t.href;const n=e.slice(1),i=n.indexOf("?"),o=i>=0?n.slice(0,i):n,r=i>=0?n.slice(i+1):"",s=[(t.search||"").replace(/^\?/,""),r].filter(Boolean).join("&");return t.origin+o+(s?"?"+s:"")}catch(t){return"undefined"!=typeof window&&window.location?window.location.href:""}}const L=(()=>{try{if("undefined"==typeof document)return"";const t=document.currentScript;if(t&&t.src)return t.src;const e=document.getElementsByTagName("script");for(let t=e.length-1;t>=0;t--){const n=e[t].src;if(n&&/infralytiqs(\.min)?\.js(\?.*)?$/.test(n))return n}}catch(t){}return""})(),R="__il_bootstrap_loaded__";const U=new class{constructor(){this.queue=[],this.flushTimer=null,this.teardownAutoCapture=null,this.initialized=!1,this.preInitBuffer=[],this.preInitUserId=null}init(t){var n,i;if(this.initialized)return void this.log("Already initialized — ignoring duplicate init()");if(!t.serverUrl||!t.tenantId||!t.siteId)return void console.error("[Infralytiqs] init() requires serverUrl, tenantId, and siteId");const o=Object.assign(Object.assign({},t.dbName?{ch_db_name:t.dbName}:{}),null!==(n=t.globalDimensions)&&void 0!==n?n:{});if(this.config=Object.assign(Object.assign({batchSize:e.BATCH_SIZE,flushIntervalMs:e.FLUSH_INTERVAL_MS,sessionTimeoutMs:e.SESSION_TIMEOUT_MS,debug:e.DEBUG,clickSelector:'a, button, [data-il-track], input[type="submit"]'},t),{globalDimensions:o}),this.transportCfg={serverUrl:this.config.serverUrl,tenantId:this.config.tenantId,siteId:this.config.siteId,debug:null!==(i=this.config.debug)&&void 0!==i&&i},this.preInitUserId&&(d(this.preInitUserId),this.preInitUserId=null),this.config.userId&&d(this.config.userId),this.startFlushTimer(),this.teardownAutoCapture=y(this.config,(t,e,n,i)=>{this.trackRaw(t,e,n,i)}),this.initialized=!0,this.config.captureLocation&&x(this.config.debug).catch(()=>{}),this.preInitBuffer.length>0){const t=this.preInitBuffer.splice(0);this.log(`Draining pre-init buffer (${t.length} event(s))`);for(const e of t)this.trackRaw(e.eventType,e.eventSubtype,e.dims,e.metrics)}this.log("Initialized",{tenantId:t.tenantId,siteId:t.siteId,dbName:t.dbName,captureLocation:!!t.captureLocation})}track(t,e,n,i){if(!this.initialized)return this.preInitBuffer.length>=100&&this.preInitBuffer.shift(),void this.preInitBuffer.push({eventType:t,eventSubtype:null!=i?i:null,dims:null!=e?e:{},metrics:null!=n?n:{}});this.trackRaw(t,null!=i?i:null,null!=e?e:{},null!=n?n:{})}identify(t){this.initialized?(d(t),this.log("User identified",t)):this.preInitUserId=t}async flush(){await this.flushQueue(!1)}destroy(){this.flushQueue(!0),this.flushTimer&&(clearInterval(this.flushTimer),this.flushTimer=null),this.teardownAutoCapture&&(this.teardownAutoCapture(),this.teardownAutoCapture=null),this.initialized=!1,this.log("Destroyed")}trackRaw(t,n,i,o){var r,s,a,l;const d=function(){const t={},e="_il_utm_";try{const n=new URLSearchParams(window.location.search);let i=!1;for(const o of p){const r=n.get(o);r&&(t[o]=r,sessionStorage.setItem(`${e}${o}`,r),i=!0)}if(!i)for(const n of p){const i=sessionStorage.getItem(`${e}${n}`);i&&(t[n]=i)}}catch(t){}return t}(),_={language_iso_code:navigator.language||navigator.userLanguage||"",user_id:f(),anonymous_id:u(),session_id:c(null!==(r=this.config.sessionTimeoutMs)&&void 0!==r?r:e.SESSION_TIMEOUT_MS),event_type:t,event_subtype:n,custom_dimensions:Object.assign(Object.assign(Object.assign({},null!==(s=this.config.globalDimensions)&&void 0!==s?s:{}),i),{sdk_version:e.SDK_VERSION}),custom_metrics:o,page_url:O(),country_code:m(),device_type:g(),device_os:h(),utm_source:null!==(a=d.utm_source)&&void 0!==a?a:null};if(d.utm_medium&&(_.custom_dimensions.utm_medium=d.utm_medium),d.utm_campaign&&(_.custom_dimensions.utm_campaign=d.utm_campaign),d.utm_term&&(_.custom_dimensions.utm_term=d.utm_term),d.utm_content&&(_.custom_dimensions.utm_content=d.utm_content),this.config.captureLocation){const t=E||(A(),E);t&&(_.latitude=t.latitude,_.longitude=t.longitude,_.location_accuracy=t.accuracy)}this.queue.push(_),this.log("Queued",t,n,`(${this.queue.length}/${this.config.batchSize})`),this.queue.length>=(null!==(l=this.config.batchSize)&&void 0!==l?l:e.BATCH_SIZE)&&this.flushQueue(!1)}startFlushTimer(){var t;const n=null!==(t=this.config.flushIntervalMs)&&void 0!==t?t:e.FLUSH_INTERVAL_MS;this.flushTimer=setInterval(()=>this.flushQueue(!1),n)}async flushQueue(t){if(0===this.queue.length)return;const n=this.queue.splice(0,this.queue.length);if(t)return void function(t,e){if("undefined"==typeof navigator||!navigator.sendBeacon)return!1;const n=_(t),i=JSON.stringify(1===e.length?e[0]:e),o=new Blob([i],{type:"application/json"}),r=navigator.sendBeacon(n,o);v(t.debug,`Beacon ${r?"accepted":"rejected"} ${e.length} event(s)`)}(this.transportCfg,n);await async function(t,n,i=e.MAX_RETRIES){const o=_(t),r=JSON.stringify(1===n.length?n[0]:n);for(let e=0;e<=i;e++)try{const i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:r,keepalive:!0});if(i.ok)return v(t.debug,`Flushed ${n.length} event(s) — HTTP ${i.status}`),!0;v(t.debug,`Flush attempt ${e+1} failed — HTTP ${i.status}`)}catch(n){v(t.debug,`Flush attempt ${e+1} error`,n)}return!1}(this.transportCfg,n)||this.log("Flush failed — events dropped",n.length)}log(...t){var e;(null===(e=this.config)||void 0===e?void 0:e.debug)&&"undefined"!=typeof console&&console.log("[Infralytiqs]",...t)}},k={init(t){U.init(t)},track(t,e,n,i){U.track(t,e,n,i)},identify(t){U.identify(t)},flush:()=>U.flush(),destroy(){U.destroy()}};try{!function(){if("undefined"==typeof window||"undefined"==typeof document)return;const t=window;if(t[R])return;const e=t.IL_CLIENT_BOOTSTRAP_LIB;if(!e||"string"!=typeof e)return;const n=function(t){if(/^https?:\/\//i.test(t))return t;if(!L)return t;try{return new URL(t,L).href}catch(e){return t}}(e);t[R]=!0;const i=document.createElement("script");i.src=n,i.async=!0,i.setAttribute("data-il-bootstrap","client"),i.onerror=()=>{"undefined"!=typeof console&&console.error("[Infralytiqs] failed to load client bootstrap from",n)};const o=document.head||document.documentElement;o&&o.appendChild(i)}()}catch(t){}return t.LICENSE_MODULE_ID="infralytiqs.com",t.default=k,Object.defineProperty(t,"__esModule",{value:!0}),t}({});
+/*! infralytiqs-sdk v1.0.3 | (c) 2026 sharadtech | License: See LICENSE | Built: 2026-06-09T23:55:14.571Z */
+var Infralytiqs=function(t){"use strict";const e={ANALYTICS_API_BASE_URL:"",INGEST_PATH:"/il/analytics/:tenant_id/:site_id/events",BATCH_SIZE:20,FLUSH_INTERVAL_MS:5e3,SESSION_TIMEOUT_MS:18e5,STORAGE_PREFIX:"_il_",SDK_VERSION:"1.0.3",MAX_RETRIES:2,DEBUG:!1},n=`${e.STORAGE_PREFIX}anon_id`,i=`${e.STORAGE_PREFIX}session_id`,o=`${e.STORAGE_PREFIX}session_ts`;function r(){return"undefined"!=typeof crypto&&crypto.randomUUID?crypto.randomUUID():"xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g,t=>{const e=16*Math.random()|0;return("x"===t?e:3&e|8).toString(16)})}function s(t){try{return localStorage.getItem(t)}catch(t){return null}}function c(t,e){try{localStorage.setItem(t,e)}catch(t){}}function a(){let t=s(n);return t||(t=r(),c(n,t)),t}function l(t){const e=Date.now(),n=parseInt(s(o)||"0",10);let a=s(i);return(!a||e-n>t)&&(a=r(),c(i,a)),c(o,String(e)),a}let u="";function d(t){u=t;try{sessionStorage.setItem(`${e.STORAGE_PREFIX}user_id`,t)}catch(t){}}function f(){if(u)return u;try{u=sessionStorage.getItem(`${e.STORAGE_PREFIX}user_id`)||""}catch(t){}return u}function g(){const t=navigator.userAgent||"";return/tablet|ipad|playbook|silk/i.test(t)?"tablet":/mobile|iphone|ipod|android.*mobile|windows phone|blackberry/i.test(t)?"mobile":"desktop"}function h(){const t=navigator.userAgent||"",e=navigator.platform||"",n=navigator.maxTouchPoints||0;return/iPhone|iPod/i.test(t)||/iPad/i.test(t)||/Mac/.test(e)&&n>1?"iOS":/Android/i.test(t)?"Android":/CrOS/i.test(t)?"ChromeOS":/Windows/i.test(t)?"Windows":/Mac OS X|Macintosh/i.test(t)?"macOS":/Linux/i.test(t)?"Linux":"Other"}function m(){const t=(navigator.language||"").split("-");return t.length>1?t[1].toUpperCase():""}const p=["utm_source","utm_medium","utm_campaign","utm_term","utm_content"];function _(t){return`${t.serverUrl.replace(/\/+$/,"")}${e.INGEST_PATH.replace(":tenant_id",encodeURIComponent(t.tenantId)).replace(":site_id",encodeURIComponent(t.siteId))}`}function y(t,...e){t&&"undefined"!=typeof console&&console.log("[Infralytiqs]",...e)}function v(t,e){const n=[];if(!t.disableAutoPageView){e("page_view",null,{referrer:document.referrer||""},{});const t=()=>{e("page_view","spa_navigation",{referrer:document.referrer||""},{})};window.addEventListener("popstate",t),n.push(()=>window.removeEventListener("popstate",t));const i=history.pushState.bind(history);history.pushState=function(...t){i(...t),e("page_view","spa_navigation",{referrer:document.referrer||""},{})},n.push(()=>{history.pushState=i})}if(!t.disableAutoClick){const i=t.clickSelector||'a, button, [data-il-track], input[type="submit"]',o=n=>{const o=n.target;if(!o)return;const r=o.closest(i);if(!r)return;const s=Object.assign(Object.assign({},function(t){var e,n,i;const o={},r=(null===(e=t.tagName)||void 0===e?void 0:e.toLowerCase())||"";o.element_tag=r,t.id&&(o.element_id=t.id);const s=t.className;if("string"==typeof s&&s&&(o.element_class=s.split(/\s+/).slice(0,3).join(" ")),"a"===r){const e=t.href;e&&(o.link_url=e);const i=null===(n=t.textContent)||void 0===n?void 0:n.trim();i&&(o.link_text=i.substring(0,120))}else if("button"===r||"button"===t.getAttribute("role")){const e=null===(i=t.textContent)||void 0===i?void 0:i.trim();e&&(o.button_text=e.substring(0,120))}const c=t.getAttribute("data-il-track");return c&&(o.track_label=c),o}(r)),function(t,e){var n;const i={};if(!e)return i;for(const[o,r]of Object.entries(e))if("function"==typeof r)i[o]=r(t);else if("string"==typeof r){const e=t.closest(r)||t.querySelector(r);e&&(i[o]=e.getAttribute(`data-${o}`)||(null===(n=e.textContent)||void 0===n?void 0:n.trim())||"")}return i}(r,t.evarMap)),c=function(t,e){const n={};if(!e)return n;for(const[i,o]of Object.entries(e))n[i]=o(t);return n}(r,t.propMap);e("click",null,s,c)};document.addEventListener("click",o,{capture:!0,passive:!0}),n.push(()=>document.removeEventListener("click",o,!0))}if(!t.disableAutoPageLeave){let t=Date.now();const i=()=>{if("hidden"===document.visibilityState){const n=Math.round((Date.now()-t)/1e3);e("page_leave",null,{},{time_on_page_sec:n})}else t=Date.now()};document.addEventListener("visibilitychange",i),n.push(()=>document.removeEventListener("visibilitychange",i));const o=()=>{const n=Math.round((Date.now()-t)/1e3);e("page_leave","unload",{},{time_on_page_sec:n})};window.addEventListener("beforeunload",o),n.push(()=>window.removeEventListener("beforeunload",o))}return()=>n.forEach(t=>t())}const I="il_geo_v1",b="il_geo_deny_v1",w=8e3,S=()=>{try{if("undefined"!=typeof window&&window.localStorage){const t="__il_geo_probe__";return window.localStorage.setItem(t,"1"),window.localStorage.removeItem(t),window.localStorage}}catch(t){}return null};let T=null,E=null;const O=()=>{if(T)return;const t=(()=>{const t=S();if(!t)return null;try{const e=t.getItem(I);if(!e)return null;const n=JSON.parse(e);if("number"==typeof n.latitude&&"number"==typeof n.longitude&&"number"==typeof n.capturedAt&&Date.now()-n.capturedAt<6048e5)return n;t.removeItem(I)}catch(e){try{t.removeItem(I)}catch(t){}}return null})();t&&(T=t)},A=t=>{var n;return"undefined"==typeof window||"undefined"==typeof navigator?Promise.resolve(null):(O(),T?Promise.resolve(T):(()=>{const t=S();if(!t)return!1;try{const e=t.getItem(b);if(!e)return!1;const n=Number(e);if(Number.isFinite(n)&&Date.now()-n<864e5)return!0;t.removeItem(b)}catch(t){}return!1})()?(t&&console.log("[Infralytiqs] geolocation previously denied — skipping prompt"),Promise.resolve(null)):"geolocation"in navigator&&"function"==typeof(null===(n=navigator.geolocation)||void 0===n?void 0:n.getCurrentPosition)?E||(E=new Promise(n=>{let i=!1;const o=t=>{i||(i=!0,E=null,n(t))},r=window.setTimeout(()=>{t&&console.log("[Infralytiqs] geolocation prompt timed out after 8000ms"),o(null)},9e3);try{navigator.geolocation.getCurrentPosition(n=>{window.clearTimeout(r);const i={latitude:n.coords.latitude,longitude:n.coords.longitude,accuracy:n.coords.accuracy,capturedAt:Date.now()};T=i,(t=>{const e=S();if(e)try{e.setItem(I,JSON.stringify(t))}catch(t){}})(i),t&&console.log(`[Infralytiqs] geolocation granted (sdk=${e.SDK_VERSION}, acc=${Math.round(i.accuracy)}m)`),o(i)},e=>{window.clearTimeout(r),e&&1===e.code?((()=>{const t=S();if(t)try{t.setItem(b,String(Date.now()))}catch(t){}})(),t&&console.log("[Infralytiqs] geolocation permission denied")):t&&console.log(`[Infralytiqs] geolocation error (code=${null==e?void 0:e.code}): ${null==e?void 0:e.message}`),o(null)},{enableHighAccuracy:!1,timeout:w,maximumAge:36e5})}catch(t){window.clearTimeout(r),o(null)}}),E):Promise.resolve(null))},x=`${e.STORAGE_PREFIX}token`;function L(){if("undefined"==typeof window)return null;const t=window,e="string"==typeof t.IL_TOKEN?t.IL_TOKEN.trim():"";let n=null;try{n=sessionStorage.getItem(x)}catch(t){return e||null}if(!e)return n;if(n!==e)try{sessionStorage.setItem(x,e)}catch(t){}return e}function R(){try{return sessionStorage.getItem(x)}catch(t){return null}}const $=`${e.STORAGE_PREFIX}client_cfg_v1`,k=(t,e)=>`${t}::${e}`;function P(t,e,n,i,o){try{if("undefined"==typeof window||"function"!=typeof fetch)return Promise.resolve(null);const r=((t,e)=>{try{const n=sessionStorage.getItem($);if(!n)return null;const i=JSON.parse(n);if(i&&i.scope===k(t,e)&&i.cfg)return i.cfg}catch(t){}return null})(e,n);if(r)return o&&console.log("[Infralytiqs] remote client-config (cached):",r),Promise.resolve(r);const s=(()=>{try{return L()||R()}catch(t){return null}})();if(!s)return o&&console.log("[Infralytiqs] no IL token — skipping remote client-config fetch"),Promise.resolve(null);const c="/il/analytics/:tenant_id/:site_id/client-config".replace(":tenant_id",encodeURIComponent(e)).replace(":site_id",encodeURIComponent(n)),a=i?`?db_name=${encodeURIComponent(i)}`:"",l=`${t.replace(/\/$/,"")}${c}${a}`,u="undefined"!=typeof AbortController?new AbortController:null,d=u?window.setTimeout(()=>{try{u.abort()}catch(t){}},6e3):null;return fetch(l,{method:"GET",headers:{"x-il-token":s},signal:u?u.signal:void 0}).then(t=>(null!==d&&window.clearTimeout(d),t.ok?t.json().then(t=>{var i;const r=t&&"object"==typeof t?null!==(i=t.data)&&void 0!==i?i:t:null;if(!r||"object"!=typeof r)return null;const s={preciseVisitorLocation:!0===r.precise_visitor_location};return((t,e,n)=>{try{const i={scope:k(t,e),cfg:n};sessionStorage.setItem($,JSON.stringify(i))}catch(t){}})(e,n,s),o&&console.log("[Infralytiqs] remote client-config:",s),s}).catch(()=>null):(o&&console.log(`[Infralytiqs] remote client-config unavailable (HTTP ${t.status})`),null))).catch(()=>(null!==d&&window.clearTimeout(d),o&&console.log("[Infralytiqs] remote client-config fetch failed (network) — using local config"),null))}catch(t){return Promise.resolve(null)}}function U(){try{const t=window.location,e=t.hash||"";if(!e.startsWith("#/"))return t.href;const n=e.slice(1),i=n.indexOf("?"),o=i>=0?n.slice(0,i):n,r=i>=0?n.slice(i+1):"",s=[(t.search||"").replace(/^\?/,""),r].filter(Boolean).join("&");return t.origin+o+(s?"?"+s:"")}catch(t){return"undefined"!=typeof window&&window.location?window.location.href:""}}const C=(()=>{try{if("undefined"==typeof document)return"";const t=document.currentScript;if(t&&t.src)return t.src;const e=document.getElementsByTagName("script");for(let t=e.length-1;t>=0;t--){const n=e[t].src;if(n&&/infralytiqs(\.min)?\.js(\?.*)?$/.test(n))return n}}catch(t){}return""})(),N="__il_bootstrap_loaded__";const q=new class{constructor(){this.queue=[],this.flushTimer=null,this.teardownAutoCapture=null,this.initialized=!1,this.preInitBuffer=[],this.preInitUserId=null}init(t){var n,i;if(this.initialized)return void this.log("Already initialized — ignoring duplicate init()");if(!t.serverUrl||!t.tenantId||!t.siteId)return void console.error("[Infralytiqs] init() requires serverUrl, tenantId, and siteId");const o=Object.assign(Object.assign({},t.dbName?{ch_db_name:t.dbName}:{}),null!==(n=t.globalDimensions)&&void 0!==n?n:{});if(this.config=Object.assign(Object.assign({batchSize:e.BATCH_SIZE,flushIntervalMs:e.FLUSH_INTERVAL_MS,sessionTimeoutMs:e.SESSION_TIMEOUT_MS,debug:e.DEBUG,clickSelector:'a, button, [data-il-track], input[type="submit"]'},t),{globalDimensions:o}),this.transportCfg={serverUrl:this.config.serverUrl,tenantId:this.config.tenantId,siteId:this.config.siteId,debug:null!==(i=this.config.debug)&&void 0!==i&&i},this.preInitUserId&&(d(this.preInitUserId),this.preInitUserId=null),this.config.userId&&d(this.config.userId),this.startFlushTimer(),this.teardownAutoCapture=v(this.config,(t,e,n,i)=>{this.trackRaw(t,e,n,i)}),this.initialized=!0,this.config.captureLocation&&A(this.config.debug).catch(()=>{}),P(this.config.serverUrl,this.config.tenantId,this.config.siteId,this.config.dbName,this.config.debug).then(t=>{t&&(t.preciseVisitorLocation&&!this.config.captureLocation?(this.config.captureLocation=!0,this.log("Remote config enabled precise visitor location"),A(this.config.debug).catch(()=>{})):!t.preciseVisitorLocation&&this.config.captureLocation&&(this.config.captureLocation=!1,this.log("Remote config disabled precise visitor location")))}).catch(()=>{}),this.preInitBuffer.length>0){const t=this.preInitBuffer.splice(0);this.log(`Draining pre-init buffer (${t.length} event(s))`);for(const e of t)this.trackRaw(e.eventType,e.eventSubtype,e.dims,e.metrics)}this.log("Initialized",{tenantId:t.tenantId,siteId:t.siteId,dbName:t.dbName,captureLocation:!!t.captureLocation})}track(t,e,n,i){if(!this.initialized)return this.preInitBuffer.length>=100&&this.preInitBuffer.shift(),void this.preInitBuffer.push({eventType:t,eventSubtype:null!=i?i:null,dims:null!=e?e:{},metrics:null!=n?n:{}});this.trackRaw(t,null!=i?i:null,null!=e?e:{},null!=n?n:{})}identify(t){this.initialized?(d(t),this.log("User identified",t)):this.preInitUserId=t}async flush(){await this.flushQueue(!1)}destroy(){this.flushQueue(!0),this.flushTimer&&(clearInterval(this.flushTimer),this.flushTimer=null),this.teardownAutoCapture&&(this.teardownAutoCapture(),this.teardownAutoCapture=null),this.initialized=!1,this.log("Destroyed")}trackRaw(t,n,i,o){var r,s,c,u;const d=function(){const t={},e="_il_utm_";try{const n=new URLSearchParams(window.location.search);let i=!1;for(const o of p){const r=n.get(o);r&&(t[o]=r,sessionStorage.setItem(`${e}${o}`,r),i=!0)}if(!i)for(const n of p){const i=sessionStorage.getItem(`${e}${n}`);i&&(t[n]=i)}}catch(t){}return t}(),_={language_iso_code:navigator.language||navigator.userLanguage||"",user_id:f(),anonymous_id:a(),session_id:l(null!==(r=this.config.sessionTimeoutMs)&&void 0!==r?r:e.SESSION_TIMEOUT_MS),event_type:t,event_subtype:n,custom_dimensions:Object.assign(Object.assign(Object.assign({},null!==(s=this.config.globalDimensions)&&void 0!==s?s:{}),i),{sdk_version:e.SDK_VERSION}),custom_metrics:o,page_url:U(),country_code:m(),device_type:g(),device_os:h(),utm_source:null!==(c=d.utm_source)&&void 0!==c?c:null};if(d.utm_medium&&(_.custom_dimensions.utm_medium=d.utm_medium),d.utm_campaign&&(_.custom_dimensions.utm_campaign=d.utm_campaign),d.utm_term&&(_.custom_dimensions.utm_term=d.utm_term),d.utm_content&&(_.custom_dimensions.utm_content=d.utm_content),this.config.captureLocation){const t=T||(O(),T);t&&(_.latitude=t.latitude,_.longitude=t.longitude,_.location_accuracy=t.accuracy)}this.queue.push(_),this.log("Queued",t,n,`(${this.queue.length}/${this.config.batchSize})`),this.queue.length>=(null!==(u=this.config.batchSize)&&void 0!==u?u:e.BATCH_SIZE)&&this.flushQueue(!1)}startFlushTimer(){var t;const n=null!==(t=this.config.flushIntervalMs)&&void 0!==t?t:e.FLUSH_INTERVAL_MS;this.flushTimer=setInterval(()=>this.flushQueue(!1),n)}async flushQueue(t){if(0===this.queue.length)return;const n=this.queue.splice(0,this.queue.length);if(t)return void function(t,e){if("undefined"==typeof navigator||!navigator.sendBeacon)return!1;const n=_(t),i=JSON.stringify(1===e.length?e[0]:e),o=new Blob([i],{type:"application/json"}),r=navigator.sendBeacon(n,o);y(t.debug,`Beacon ${r?"accepted":"rejected"} ${e.length} event(s)`)}(this.transportCfg,n);await async function(t,n,i=e.MAX_RETRIES){const o=_(t),r=JSON.stringify(1===n.length?n[0]:n);for(let e=0;e<=i;e++)try{const i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:r,keepalive:!0});if(i.ok)return y(t.debug,`Flushed ${n.length} event(s) — HTTP ${i.status}`),!0;y(t.debug,`Flush attempt ${e+1} failed — HTTP ${i.status}`)}catch(n){y(t.debug,`Flush attempt ${e+1} error`,n)}return!1}(this.transportCfg,n)||this.log("Flush failed — events dropped",n.length)}log(...t){var e;(null===(e=this.config)||void 0===e?void 0:e.debug)&&"undefined"!=typeof console&&console.log("[Infralytiqs]",...t)}},M={init(t){q.init(t)},track(t,e,n,i){q.track(t,e,n,i)},identify(t){q.identify(t)},flush:()=>q.flush(),destroy(){q.destroy()},syncToken:()=>L(),getToken:()=>R()};try{L()}catch(t){}try{!function(){if("undefined"==typeof window||"undefined"==typeof document)return;const t=window;if(t[N])return;const e=t.IL_CLIENT_BOOTSTRAP_LIB;if(!e||"string"!=typeof e)return;const n=function(t){if(/^https?:\/\//i.test(t))return t;if(!C)return t;try{return new URL(t,C).href}catch(e){return t}}(e);t[N]=!0;const i=document.createElement("script");i.src=n,i.async=!0,i.setAttribute("data-il-bootstrap","client"),i.onerror=()=>{"undefined"!=typeof console&&console.error("[Infralytiqs] failed to load client bootstrap from",n)};const o=document.head||document.documentElement;o&&o.appendChild(i)}()}catch(t){}return t.LICENSE_MODULE_ID="infralytiqs.com",t.TOKEN_STORAGE_KEY=x,t.default=M,Object.defineProperty(t,"__esModule",{value:!0}),t}({});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sharadtech/infralytiqs-sdk",
-  "version": "1.0.1",
+  "version": "1.0.3",
   "type": "module",
   "description": "Lightweight website analytics tracker SDK for Infralytiqs (ClickHouse backend)",
   "main": "dist/infralytiqs.min.js",

package/src/envConfig.ts

@@ -25,7 +25,7 @@ export const ENV = {
   STORAGE_PREFIX: '_il_',
 
   /** SDK version — injected into every event payload for debugging */
-  SDK_VERSION: '1.0.0',
+  SDK_VERSION: '1.0.3',
 
   /** Maximum retry attempts for failed flushes */
   MAX_RETRIES: 2,

package/src/index.ts

@@ -34,8 +34,10 @@
 import { InfralytiqsTracker } from './tracker';
 import type { InfralytiqsConfig } from './types';
 import { loadClientBootstrap } from './bootstrapLoader';
+import { syncToken, getStoredToken } from './token';
 
 export { LICENSE_MODULE_ID } from './licenseModuleId';
+export { TOKEN_STORAGE_KEY } from './token';
 export type { InfralytiqsConfig };
 
 const tracker = new InfralytiqsTracker();
@@ -86,10 +88,39 @@ const Infralytiqs = {
   destroy(): void {
     tracker.destroy();
   },
+
+  /**
+   * Re-read `window.IL_TOKEN` and sync it into sessionStorage. Runs once
+   * automatically on SDK load; can be called again after the host page
+   * refreshes the token global.
+   *
+   * @returns the token now held in sessionStorage, or `null` if none.
+   */
+  syncToken(): string | null {
+    return syncToken();
+  },
+
+  /**
+   * @returns the Infralytiqs token id currently held in sessionStorage.
+   */
+  getToken(): string | null {
+    return getStoredToken();
+  },
 };
 
 export default Infralytiqs;
 
+// ─── Sync the Infralytiqs token into sessionStorage ─────────────────────
+// The host page renders the tenant's current token id as `window.IL_TOKEN`
+// (see AEM Infralytiqs.html). Copy it into sessionStorage on load so any
+// embedded report widget can pick it up, updating the stored value whenever
+// the markup token changes.
+try {
+  syncToken();
+} catch {
+  /* never throw out of SDK script-tag evaluation */
+}
+
 // ─── Auto-load the client-specific bootstrap ────────────────────────────
 // When the SDK script tag executes, look for `window.IL_CLIENT_BOOTSTRAP_LIB`
 // declared by the host page (e.g. by the AEM Infralytiqs.html Sightly

package/src/remoteConfig.ts

@@ -0,0 +1,164 @@
+/**
+ * Remote tenant configuration fetch for the Infralytiqs SDK.
+ *
+ * After `init()`, the SDK calls the public st-ck-server endpoint
+ *
+ *     GET {serverUrl}/il/analytics/{tenantId}/{siteId}/client-config?db_name={dbName}
+ *     headers: { 'x-il-token': <window.IL_TOKEN> }
+ *
+ * which returns browser-safe behaviour flags configured on the tenant's
+ * ClickHouse server configuration in the Infralytiqs Settings UI
+ * ("Data Sources" → "Configured Servers"). Today that is:
+ *
+ *     precise_visitor_location — when true, the SDK should request precise
+ *     browser geolocation (visitor-consented) and attach lat/lng to events.
+ *
+ * Failure model — IMPORTANT: this endpoint may not exist yet on older
+ * server deployments, the token may be missing/expired, or the network may
+ * be down. None of that may ever break the host site or tracking, so:
+ *
+ *   • No token available           → skip the call entirely, resolve null.
+ *   • Non-2xx (401/403/404/5xx)    → resolve null silently.
+ *   • Network error / timeout      → resolve null silently.
+ *   • Malformed JSON               → resolve null silently.
+ *
+ * A successful response is cached in sessionStorage for the rest of the
+ * tab session so SPA navigations / repeat page loads within the tab don't
+ * re-hit the endpoint.
+ */
+
+import { ENV } from './envConfig';
+import { getStoredToken, syncToken } from './token';
+
+/** Endpoint pattern — :tenant_id and :site_id are replaced at runtime. */
+const CLIENT_CONFIG_PATH = '/il/analytics/:tenant_id/:site_id/client-config';
+
+/** Abort the config fetch if the server hasn't answered within this window. */
+const FETCH_TIMEOUT_MS = 6000;
+
+/** sessionStorage key for the per-tab remote-config cache. */
+const CACHE_KEY = `${ENV.STORAGE_PREFIX}client_cfg_v1`;
+
+/** Browser-safe behaviour flags delivered by the server. */
+export interface RemoteClientConfig {
+  /** Tenant may capture precise (consented) visitor geolocation. */
+  preciseVisitorLocation: boolean;
+}
+
+interface CacheEnvelope {
+  /** Cache is scoped to tenant/site so a SPA can't reuse a stale scope. */
+  scope: string;
+  cfg: RemoteClientConfig;
+}
+
+const scopeKey = (tenantId: string, siteId: string): string => `${tenantId}::${siteId}`;
+
+const readCache = (tenantId: string, siteId: string): RemoteClientConfig | null => {
+  try {
+    const raw = sessionStorage.getItem(CACHE_KEY);
+    if (!raw) return null;
+    const parsed = JSON.parse(raw) as CacheEnvelope;
+    if (parsed && parsed.scope === scopeKey(tenantId, siteId) && parsed.cfg) {
+      return parsed.cfg;
+    }
+  } catch {
+    /* unavailable / corrupted cache — fall through to a live fetch */
+  }
+  return null;
+};
+
+const writeCache = (tenantId: string, siteId: string, cfg: RemoteClientConfig): void => {
+  try {
+    const envelope: CacheEnvelope = { scope: scopeKey(tenantId, siteId), cfg };
+    sessionStorage.setItem(CACHE_KEY, JSON.stringify(envelope));
+  } catch {
+    /* ignore — cache is best-effort */
+  }
+};
+
+/** Resolve the freshest available IL token (markup global wins over cache). */
+const resolveToken = (): string | null => {
+  try {
+    return syncToken() || getStoredToken();
+  } catch {
+    return null;
+  }
+};
+
+/**
+ * Fetches the tenant's remote client configuration.
+ *
+ * Resolves with the parsed flags, or `null` when the config could not be
+ * obtained for ANY reason (no token, endpoint missing, invalid token,
+ * network failure). Never rejects and never throws.
+ */
+export function fetchRemoteClientConfig(
+  serverUrl: string,
+  tenantId: string,
+  siteId: string,
+  dbName?: string,
+  debug?: boolean,
+): Promise<RemoteClientConfig | null> {
+  try {
+    if (typeof window === 'undefined' || typeof fetch !== 'function') {
+      return Promise.resolve(null);
+    }
+
+    const cached = readCache(tenantId, siteId);
+    if (cached) {
+      if (debug) console.log('[Infralytiqs] remote client-config (cached):', cached);
+      return Promise.resolve(cached);
+    }
+
+    const token = resolveToken();
+    if (!token) {
+      // Without a token the server would reject the call anyway — skip the
+      // round-trip entirely. Local init() config remains in effect.
+      if (debug) console.log('[Infralytiqs] no IL token — skipping remote client-config fetch');
+      return Promise.resolve(null);
+    }
+
+    const path = CLIENT_CONFIG_PATH
+      .replace(':tenant_id', encodeURIComponent(tenantId))
+      .replace(':site_id', encodeURIComponent(siteId));
+    const qs = dbName ? `?db_name=${encodeURIComponent(dbName)}` : '';
+    const url = `${serverUrl.replace(/\/$/, '')}${path}${qs}`;
+
+    const controller = typeof AbortController !== 'undefined' ? new AbortController() : null;
+    const timer = controller
+      ? window.setTimeout(() => { try { controller.abort(); } catch { /* noop */ } }, FETCH_TIMEOUT_MS)
+      : null;
+
+    return fetch(url, {
+      method: 'GET',
+      headers: { 'x-il-token': token },
+      signal: controller ? controller.signal : undefined,
+    })
+      .then((res) => {
+        if (timer !== null) window.clearTimeout(timer);
+        if (!res.ok) {
+          // 403 = invalid/expired token, 404 = endpoint not deployed yet.
+          // Both are expected states — degrade silently to local config.
+          if (debug) console.log(`[Infralytiqs] remote client-config unavailable (HTTP ${res.status})`);
+          return null;
+        }
+        return res.json().then((body: any) => {
+          const data = body && typeof body === 'object' ? (body.data ?? body) : null;
+          if (!data || typeof data !== 'object') return null;
+          const cfg: RemoteClientConfig = {
+            preciseVisitorLocation: data.precise_visitor_location === true,
+          };
+          writeCache(tenantId, siteId, cfg);
+          if (debug) console.log('[Infralytiqs] remote client-config:', cfg);
+          return cfg;
+        }).catch(() => null);
+      })
+      .catch(() => {
+        if (timer !== null) window.clearTimeout(timer);
+        if (debug) console.log('[Infralytiqs] remote client-config fetch failed (network) — using local config');
+        return null;
+      });
+  } catch {
+    return Promise.resolve(null);
+  }
+}