npm - @sitecore-jss/sitecore-jss-nextjs - Versions diffs - 22.3.0-canary.10 → 22.3.0-canary.12 - Mend

@sitecore-jss/sitecore-jss-nextjs 22.3.0-canary.10 → 22.3.0-canary.12

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/cjs/editing/editing-config-middleware.js CHANGED Viewed

@@ -35,6 +35,12 @@ class EditingConfigMiddleware {
                 sitecore_jss_1.debug.editing('invalid editing secret - sent "%s" expected "%s"', secret, (0, utils_1.getJssEditingSecret)());
                 return res.status(401).json({ message: 'Missing or invalid editing secret' });
             }
+            // Handle preflight request
+            if (_req.method === 'OPTIONS') {
+                sitecore_jss_1.debug.editing('preflight request');
+                // CORS headers are set by enforceCors
+                return res.status(204).send(null);
+            }
             const components = Array.isArray(this.config.components)
                 ? this.config.components
                 : Array.from(this.config.components.keys());

package/dist/cjs/editing/editing-render-middleware.js CHANGED Viewed

@@ -314,6 +314,11 @@ class EditingRenderMiddleware extends render_middleware_1.RenderMiddlewareBase {
                     yield handler.render(req, res);
                     break;
                 }
+                case 'OPTIONS': {
+                    sitecore_jss_1.debug.editing('preflight request');
+                    // CORS headers are set by enforceCors
+                    return res.status(204).send(null);
+                }
                 default:
                     sitecore_jss_1.debug.editing('invalid method - sent %s expected GET/POST', req.method);
                     res.setHeader('Allow', 'GET, POST');

package/dist/cjs/editing/feaas-render-middleware.js CHANGED Viewed

@@ -43,9 +43,9 @@ class FEAASRenderMiddleware extends render_middleware_1.RenderMiddlewareBase {
                     .status(401)
                     .send(`<html><body>Requests from origin ${(_b = req.headers) === null || _b === void 0 ? void 0 : _b.origin} are not allowed</body></html>`);
             }
-            if (method !== 'GET') {
-                sitecore_jss_1.debug.editing('invalid method - sent %s expected GET', method);
-                res.setHeader('Allow', 'GET');
+            if (!method || !['GET', 'OPTIONS'].includes(method)) {
+                sitecore_jss_1.debug.editing('invalid method - sent %s expected GET,OPTIONS', method);
+                res.setHeader('Allow', 'GET, OPTIONS');
                 return res.status(405).send(`<html><body>Invalid request method '${method}'</body></html>`);
             }
             // Validate secret
@@ -54,6 +54,12 @@ class FEAASRenderMiddleware extends render_middleware_1.RenderMiddlewareBase {
                 sitecore_jss_1.debug.editing('invalid editing secret - sent "%s" expected "%s"', secret, (0, utils_1.getJssEditingSecret)());
                 return res.status(401).send('<html><body>Missing or invalid secret</body></html>');
             }
+            // Handle preflight request
+            if (method === 'OPTIONS') {
+                sitecore_jss_1.debug.editing('preflight request');
+                // CORS headers are set by enforceCors
+                return res.status(204).send(null);
+            }
             try {
                 // Get query string parameters to propagate on subsequent requests (e.g. for deployment protection bypass)
                 const params = this.getQueryParamsForPropagation(query);

package/dist/esm/editing/editing-config-middleware.js CHANGED Viewed

@@ -32,6 +32,12 @@ export class EditingConfigMiddleware {
                 debug.editing('invalid editing secret - sent "%s" expected "%s"', secret, getJssEditingSecret());
                 return res.status(401).json({ message: 'Missing or invalid editing secret' });
             }
+            // Handle preflight request
+            if (_req.method === 'OPTIONS') {
+                debug.editing('preflight request');
+                // CORS headers are set by enforceCors
+                return res.status(204).send(null);
+            }
             const components = Array.isArray(this.config.components)
                 ? this.config.components
                 : Array.from(this.config.components.keys());

package/dist/esm/editing/editing-render-middleware.js CHANGED Viewed

@@ -308,6 +308,11 @@ export class EditingRenderMiddleware extends RenderMiddlewareBase {
                     yield handler.render(req, res);
                     break;
                 }
+                case 'OPTIONS': {
+                    debug.editing('preflight request');
+                    // CORS headers are set by enforceCors
+                    return res.status(204).send(null);
+                }
                 default:
                     debug.editing('invalid method - sent %s expected GET/POST', req.method);
                     res.setHeader('Allow', 'GET, POST');

package/dist/esm/editing/feaas-render-middleware.js CHANGED Viewed

@@ -40,9 +40,9 @@ export class FEAASRenderMiddleware extends RenderMiddlewareBase {
                     .status(401)
                     .send(`<html><body>Requests from origin ${(_b = req.headers) === null || _b === void 0 ? void 0 : _b.origin} are not allowed</body></html>`);
             }
-            if (method !== 'GET') {
-                debug.editing('invalid method - sent %s expected GET', method);
-                res.setHeader('Allow', 'GET');
+            if (!method || !['GET', 'OPTIONS'].includes(method)) {
+                debug.editing('invalid method - sent %s expected GET,OPTIONS', method);
+                res.setHeader('Allow', 'GET, OPTIONS');
                 return res.status(405).send(`<html><body>Invalid request method '${method}'</body></html>`);
             }
             // Validate secret
@@ -51,6 +51,12 @@ export class FEAASRenderMiddleware extends RenderMiddlewareBase {
                 debug.editing('invalid editing secret - sent "%s" expected "%s"', secret, getJssEditingSecret());
                 return res.status(401).send('<html><body>Missing or invalid secret</body></html>');
             }
+            // Handle preflight request
+            if (method === 'OPTIONS') {
+                debug.editing('preflight request');
+                // CORS headers are set by enforceCors
+                return res.status(204).send(null);
+            }
             try {
                 // Get query string parameters to propagate on subsequent requests (e.g. for deployment protection bypass)
                 const params = this.getQueryParamsForPropagation(query);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sitecore-jss/sitecore-jss-nextjs",
-  "version": "22.3.0-canary.10",
+  "version": "22.3.0-canary.12",
   "main": "dist/cjs/index.js",
   "module": "dist/esm/index.js",
   "sideEffects": false,
@@ -73,9 +73,9 @@
     "react-dom": "^18.2.0"
   },
   "dependencies": {
-    "@sitecore-jss/sitecore-jss": "^22.3.0-canary.10",
-    "@sitecore-jss/sitecore-jss-dev-tools": "^22.3.0-canary.10",
-    "@sitecore-jss/sitecore-jss-react": "^22.3.0-canary.10",
+    "@sitecore-jss/sitecore-jss": "^22.3.0-canary.12",
+    "@sitecore-jss/sitecore-jss-dev-tools": "^22.3.0-canary.12",
+    "@sitecore-jss/sitecore-jss-react": "^22.3.0-canary.12",
     "@vercel/kv": "^0.2.1",
     "prop-types": "^15.8.1",
     "regex-parser": "^2.2.11",
@@ -83,7 +83,7 @@
   },
   "description": "",
   "types": "types/index.d.ts",
-  "gitHead": "e3e32216ad560d0ac60175047ca9739961ab0d92",
+  "gitHead": "5a151c7d8a44adf6c7fc3c389d57712558a450aa",
   "files": [
     "dist",
     "types",