@strapi/admin 5.46.0 → 5.47.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/admin/admin/src/StrapiApp.js +2 -1
- package/dist/admin/admin/src/StrapiApp.js.map +1 -1
- package/dist/admin/admin/src/StrapiApp.mjs +2 -1
- package/dist/admin/admin/src/StrapiApp.mjs.map +1 -1
- package/dist/admin/admin/src/components/FormInputs/Date.js +2 -0
- package/dist/admin/admin/src/components/FormInputs/Date.js.map +1 -1
- package/dist/admin/admin/src/components/FormInputs/Date.mjs +2 -0
- package/dist/admin/admin/src/components/FormInputs/Date.mjs.map +1 -1
- package/dist/admin/admin/src/components/FormInputs/DateTime.js +2 -0
- package/dist/admin/admin/src/components/FormInputs/DateTime.js.map +1 -1
- package/dist/admin/admin/src/components/FormInputs/DateTime.mjs +2 -0
- package/dist/admin/admin/src/components/FormInputs/DateTime.mjs.map +1 -1
- package/dist/admin/admin/src/components/Layouts/HeaderLayout.js +51 -8
- package/dist/admin/admin/src/components/Layouts/HeaderLayout.js.map +1 -1
- package/dist/admin/admin/src/components/Layouts/HeaderLayout.mjs +52 -9
- package/dist/admin/admin/src/components/Layouts/HeaderLayout.mjs.map +1 -1
- package/dist/admin/admin/src/components/Layouts/utils/getMatchingDocLink.js +167 -0
- package/dist/admin/admin/src/components/Layouts/utils/getMatchingDocLink.js.map +1 -0
- package/dist/admin/admin/src/components/Layouts/utils/getMatchingDocLink.mjs +165 -0
- package/dist/admin/admin/src/components/Layouts/utils/getMatchingDocLink.mjs.map +1 -0
- package/dist/admin/admin/src/constants.js +13 -11
- package/dist/admin/admin/src/constants.js.map +1 -1
- package/dist/admin/admin/src/constants.mjs +13 -11
- package/dist/admin/admin/src/constants.mjs.map +1 -1
- package/dist/admin/admin/src/features/Auth.js +25 -0
- package/dist/admin/admin/src/features/Auth.js.map +1 -1
- package/dist/admin/admin/src/features/Auth.mjs +26 -1
- package/dist/admin/admin/src/features/Auth.mjs.map +1 -1
- package/dist/admin/admin/src/features/Tracking.js.map +1 -1
- package/dist/admin/admin/src/features/Tracking.mjs.map +1 -1
- package/dist/admin/admin/src/hooks/useIdleSessionLogout.js +62 -0
- package/dist/admin/admin/src/hooks/useIdleSessionLogout.js.map +1 -0
- package/dist/admin/admin/src/hooks/useIdleSessionLogout.mjs +40 -0
- package/dist/admin/admin/src/hooks/useIdleSessionLogout.mjs.map +1 -0
- package/dist/admin/admin/src/pages/Settings/constants.js +1 -2
- package/dist/admin/admin/src/pages/Settings/constants.js.map +1 -1
- package/dist/admin/admin/src/pages/Settings/constants.mjs +1 -2
- package/dist/admin/admin/src/pages/Settings/constants.mjs.map +1 -1
- package/dist/admin/admin/src/render.js +2 -1
- package/dist/admin/admin/src/render.js.map +1 -1
- package/dist/admin/admin/src/render.mjs +2 -1
- package/dist/admin/admin/src/render.mjs.map +1 -1
- package/dist/admin/admin/src/translations/en.json.js +1 -0
- package/dist/admin/admin/src/translations/en.json.js.map +1 -1
- package/dist/admin/admin/src/translations/en.json.mjs +1 -0
- package/dist/admin/admin/src/translations/en.json.mjs.map +1 -1
- package/dist/admin/admin/src/translations/sk.json.js +446 -42
- package/dist/admin/admin/src/translations/sk.json.js.map +1 -1
- package/dist/admin/admin/src/translations/sk.json.mjs +445 -43
- package/dist/admin/admin/src/translations/sk.json.mjs.map +1 -1
- package/dist/admin/admin/src/utils/baseQuery.js +5 -0
- package/dist/admin/admin/src/utils/baseQuery.js.map +1 -1
- package/dist/admin/admin/src/utils/baseQuery.mjs +6 -1
- package/dist/admin/admin/src/utils/baseQuery.mjs.map +1 -1
- package/dist/admin/admin/src/utils/getFetchClient.js +24 -0
- package/dist/admin/admin/src/utils/getFetchClient.js.map +1 -1
- package/dist/admin/admin/src/utils/getFetchClient.mjs +23 -1
- package/dist/admin/admin/src/utils/getFetchClient.mjs.map +1 -1
- package/dist/admin/admin/src/utils/jwt.js +37 -0
- package/dist/admin/admin/src/utils/jwt.js.map +1 -0
- package/dist/admin/admin/src/utils/jwt.mjs +35 -0
- package/dist/admin/admin/src/utils/jwt.mjs.map +1 -0
- package/dist/admin/index.js +2 -0
- package/dist/admin/index.js.map +1 -1
- package/dist/admin/index.mjs +1 -1
- package/dist/admin/src/components/Layouts/HeaderLayout.d.ts +2 -0
- package/dist/admin/src/components/Layouts/utils/getMatchingDocLink.d.ts +6 -0
- package/dist/admin/src/components/SubNav.d.ts +12 -4
- package/dist/admin/src/constants.d.ts +6 -0
- package/dist/admin/src/features/Tracking.d.ts +8 -1
- package/dist/admin/src/hooks/useAdminRoles.d.ts +1 -1
- package/dist/admin/src/hooks/useIdleSessionLogout.d.ts +33 -0
- package/dist/admin/src/layouts/UnauthenticatedLayout.d.ts +4 -2
- package/dist/admin/src/pages/Settings/pages/Roles/components/CollapseLabel.d.ts +7 -3
- package/dist/admin/src/pages/Settings/pages/Roles/components/ConditionsButton.d.ts +4 -2
- package/dist/admin/src/pages/Settings/pages/Roles/components/HiddenAction.d.ts +1 -1
- package/dist/admin/src/services/admin.d.ts +6 -6
- package/dist/admin/src/services/contentApi.d.ts +1 -1
- package/dist/admin/src/services/users.d.ts +8 -8
- package/dist/admin/src/utils/getFetchClient.d.ts +15 -1
- package/dist/admin/src/utils/jwt.d.ts +15 -0
- package/dist/server/server/src/bootstrap.js +3 -2
- package/dist/server/server/src/bootstrap.js.map +1 -1
- package/dist/server/server/src/bootstrap.mjs +4 -3
- package/dist/server/server/src/bootstrap.mjs.map +1 -1
- package/dist/server/server/src/policies/index.js +0 -2
- package/dist/server/server/src/policies/index.js.map +1 -1
- package/dist/server/server/src/policies/index.mjs +0 -2
- package/dist/server/server/src/policies/index.mjs.map +1 -1
- package/dist/server/server/src/register.js +1 -1
- package/dist/server/server/src/register.js.map +1 -1
- package/dist/server/server/src/routes/admin-tokens.js +0 -7
- package/dist/server/server/src/routes/admin-tokens.js.map +1 -1
- package/dist/server/server/src/routes/admin-tokens.mjs +0 -7
- package/dist/server/server/src/routes/admin-tokens.mjs.map +1 -1
- package/dist/server/server/src/routes/serve-admin-panel.js +8 -1
- package/dist/server/server/src/routes/serve-admin-panel.js.map +1 -1
- package/dist/server/server/src/routes/serve-admin-panel.mjs +6 -2
- package/dist/server/server/src/routes/serve-admin-panel.mjs.map +1 -1
- package/dist/server/server/src/services/api-token.js +71 -1
- package/dist/server/server/src/services/api-token.js.map +1 -1
- package/dist/server/server/src/services/api-token.mjs +71 -2
- package/dist/server/server/src/services/api-token.mjs.map +1 -1
- package/dist/server/server/src/services/token.js +11 -0
- package/dist/server/server/src/services/token.js.map +1 -1
- package/dist/server/server/src/services/token.mjs +11 -1
- package/dist/server/server/src/services/token.mjs.map +1 -1
- package/dist/server/server/src/strategies/admin-token.js +5 -63
- package/dist/server/server/src/strategies/admin-token.js.map +1 -1
- package/dist/server/server/src/strategies/admin-token.mjs +6 -64
- package/dist/server/server/src/strategies/admin-token.mjs.map +1 -1
- package/dist/server/src/bootstrap.d.ts.map +1 -1
- package/dist/server/src/index.d.ts +0 -5
- package/dist/server/src/index.d.ts.map +1 -1
- package/dist/server/src/policies/index.d.ts +0 -5
- package/dist/server/src/policies/index.d.ts.map +1 -1
- package/dist/server/src/routes/admin-tokens.d.ts.map +1 -1
- package/dist/server/src/routes/serve-admin-panel.d.ts +2 -0
- package/dist/server/src/routes/serve-admin-panel.d.ts.map +1 -1
- package/dist/server/src/services/api-token.d.ts +15 -1
- package/dist/server/src/services/api-token.d.ts.map +1 -1
- package/dist/server/src/services/token.d.ts +7 -1
- package/dist/server/src/services/token.d.ts.map +1 -1
- package/dist/server/src/strategies/admin-token.d.ts +12 -22
- package/dist/server/src/strategies/admin-token.d.ts.map +1 -1
- package/package.json +10 -10
- package/dist/server/server/src/policies/isAdminTokensEnabled.js +0 -16
- package/dist/server/server/src/policies/isAdminTokensEnabled.js.map +0 -1
- package/dist/server/server/src/policies/isAdminTokensEnabled.mjs +0 -14
- package/dist/server/server/src/policies/isAdminTokensEnabled.mjs.map +0 -1
- package/dist/server/src/policies/isAdminTokensEnabled.d.ts +0 -7
- package/dist/server/src/policies/isAdminTokensEnabled.d.ts.map +0 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sk.json.mjs","sources":[],"sourcesContent":[],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"sk.json.mjs","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}
|
|
@@ -58,6 +58,11 @@ const simpleQuery = async (query, api)=>{
|
|
|
58
58
|
// no-op
|
|
59
59
|
}
|
|
60
60
|
dispatch(reducer.logout());
|
|
61
|
+
// Notify the React layer so the active tab redirects to /auth/login.
|
|
62
|
+
// Without this, only other tabs (via the storage event) would react;
|
|
63
|
+
// the tab that originated the failing request would stay put until
|
|
64
|
+
// the user clicked something or refreshed.
|
|
65
|
+
getFetchClient.triggerSessionExpired();
|
|
61
66
|
}
|
|
62
67
|
}
|
|
63
68
|
if (typeof err.response?.data === 'object' && err.response?.data !== null && 'error' in err.response?.data) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"baseQuery.js","sources":["../../../../../admin/src/utils/baseQuery.ts"],"sourcesContent":["import { SerializedError } from '@reduxjs/toolkit';\nimport { BaseQueryFn } from '@reduxjs/toolkit/query';\n\nimport { logout as logoutAction } from '../reducer';\nimport {
|
|
1
|
+
{"version":3,"file":"baseQuery.js","sources":["../../../../../admin/src/utils/baseQuery.ts"],"sourcesContent":["import { SerializedError } from '@reduxjs/toolkit';\nimport { BaseQueryFn } from '@reduxjs/toolkit/query';\n\nimport { logout as logoutAction } from '../reducer';\nimport {\n getFetchClient,\n triggerSessionExpired,\n type FetchOptions,\n ApiError,\n isFetchError,\n} from '../utils/getFetchClient';\n\ninterface QueryArguments {\n url: string;\n method?: 'GET' | 'POST' | 'DELETE' | 'PUT';\n data?: unknown;\n config?: FetchOptions;\n}\n\ninterface UnknownApiError {\n name: 'UnknownError';\n message: string;\n details?: unknown;\n status?: number;\n}\n\ntype BaseQueryError = ApiError | UnknownApiError;\n\nconst isAuthPath = (url: string) => /^\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\nconst simpleQuery: BaseQueryFn<string | QueryArguments, unknown, BaseQueryError> = async (\n query,\n api\n) => {\n const { signal, dispatch } = api as { signal?: AbortSignal; dispatch: (a: any) => void };\n\n const executeQuery = async (queryToExecute: string | QueryArguments) => {\n const { get, post, del, put } = getFetchClient();\n if (typeof queryToExecute === 'string') {\n const result = await get(queryToExecute, { signal });\n return result;\n }\n\n const { url, method = 'GET', data, config } = queryToExecute;\n if (method === 'POST') {\n return post(url, data, { ...config, signal });\n }\n if (method === 'DELETE') {\n return del(url, { ...config, signal });\n }\n if (method === 'PUT') {\n return put(url, data, { ...config, signal });\n }\n return get(url, { ...config, signal });\n };\n\n try {\n const result = await executeQuery(query);\n return { data: result.data };\n } catch (err) {\n // Handle error of type FetchError\n\n if (isFetchError(err)) {\n // If we receive a 401 here, getFetchClient already tried to refresh and failed.\n // Log the user out since their session is no longer valid.\n if (err.status === 401) {\n const url = typeof query === 'string' ? query : query.url;\n\n if (!isAuthPath(url)) {\n try {\n const { post } = getFetchClient();\n await post('/admin/logout');\n } catch {\n // no-op\n }\n\n dispatch(logoutAction());\n // Notify the React layer so the active tab redirects to /auth/login.\n // Without this, only other tabs (via the storage event) would react;\n // the tab that originated the failing request would stay put until\n // the user clicked something or refreshed.\n triggerSessionExpired();\n }\n }\n\n if (\n typeof err.response?.data === 'object' &&\n err.response?.data !== null &&\n 'error' in err.response?.data\n ) {\n /**\n * This will most likely be ApiError\n */\n return { data: undefined, error: err.response?.data.error as any };\n } else {\n return {\n data: undefined,\n error: {\n name: 'UnknownError',\n message: err.message,\n details: err.response,\n status: err.status,\n } as UnknownApiError,\n };\n }\n }\n\n const error = err as Error;\n return {\n data: undefined,\n error: {\n name: error.name,\n message: error.message,\n stack: error.stack,\n } satisfies SerializedError,\n };\n }\n};\n\nconst fetchBaseQuery = () => simpleQuery;\n\nconst isBaseQueryError = (error: BaseQueryError | SerializedError): error is BaseQueryError => {\n return error.name !== undefined;\n};\n\nexport { fetchBaseQuery, isBaseQueryError };\nexport type { BaseQueryError, UnknownApiError, QueryArguments };\n"],"names":["isAuthPath","url","test","simpleQuery","query","api","signal","dispatch","executeQuery","queryToExecute","get","post","del","put","getFetchClient","result","method","data","config","err","isFetchError","status","logoutAction","triggerSessionExpired","response","undefined","error","name","message","details","stack","fetchBaseQuery","isBaseQueryError"],"mappings":";;;;;AA4BA,MAAMA,UAAAA,GAAa,CAACC,GAAAA,GAAgB,yCAAA,CAA0CC,IAAI,CAACD,GAAAA,CAAAA;AAEnF,MAAME,WAAAA,GAA6E,OACjFC,KAAAA,EACAC,GAAAA,GAAAA;AAEA,IAAA,MAAM,EAAEC,MAAM,EAAEC,QAAQ,EAAE,GAAGF,GAAAA;AAE7B,IAAA,MAAMG,eAAe,OAAOC,cAAAA,GAAAA;QAC1B,MAAM,EAAEC,GAAG,EAAEC,IAAI,EAAEC,GAAG,EAAEC,GAAG,EAAE,GAAGC,6BAAAA,EAAAA;QAChC,IAAI,OAAOL,mBAAmB,QAAA,EAAU;YACtC,MAAMM,MAAAA,GAAS,MAAML,GAAAA,CAAID,cAAAA,EAAgB;AAAEH,gBAAAA;AAAO,aAAA,CAAA;YAClD,OAAOS,MAAAA;AACT,QAAA;QAEA,MAAM,EAAEd,GAAG,EAAEe,MAAAA,GAAS,KAAK,EAAEC,IAAI,EAAEC,MAAM,EAAE,GAAGT,cAAAA;AAC9C,QAAA,IAAIO,WAAW,MAAA,EAAQ;YACrB,OAAOL,IAAAA,CAAKV,KAAKgB,IAAAA,EAAM;AAAE,gBAAA,GAAGC,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AAC7C,QAAA;AACA,QAAA,IAAIU,WAAW,QAAA,EAAU;AACvB,YAAA,OAAOJ,IAAIX,GAAAA,EAAK;AAAE,gBAAA,GAAGiB,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AACtC,QAAA;AACA,QAAA,IAAIU,WAAW,KAAA,EAAO;YACpB,OAAOH,GAAAA,CAAIZ,KAAKgB,IAAAA,EAAM;AAAE,gBAAA,GAAGC,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AAC5C,QAAA;AACA,QAAA,OAAOI,IAAIT,GAAAA,EAAK;AAAE,YAAA,GAAGiB,MAAM;AAAEZ,YAAAA;AAAO,SAAA,CAAA;AACtC,IAAA,CAAA;IAEA,IAAI;QACF,MAAMS,MAAAA,GAAS,MAAMP,YAAAA,CAAaJ,KAAAA,CAAAA;QAClC,OAAO;AAAEa,YAAAA,IAAAA,EAAMF,OAAOE;AAAK,SAAA;AAC7B,IAAA,CAAA,CAAE,OAAOE,GAAAA,EAAK;;AAGZ,QAAA,IAAIC,4BAAaD,GAAAA,CAAAA,EAAM;;;YAGrB,IAAIA,GAAAA,CAAIE,MAAM,KAAK,GAAA,EAAK;AACtB,gBAAA,MAAMpB,MAAM,OAAOG,KAAAA,KAAU,QAAA,GAAWA,KAAAA,GAAQA,MAAMH,GAAG;gBAEzD,IAAI,CAACD,WAAWC,GAAAA,CAAAA,EAAM;oBACpB,IAAI;wBACF,MAAM,EAAEU,IAAI,EAAE,GAAGG,6BAAAA,EAAAA;AACjB,wBAAA,MAAMH,IAAAA,CAAK,eAAA,CAAA;AACb,oBAAA,CAAA,CAAE,OAAM;;AAER,oBAAA;oBAEAJ,QAAAA,CAASe,cAAAA,EAAAA,CAAAA;;;;;AAKTC,oBAAAA,oCAAAA,EAAAA;AACF,gBAAA;AACF,YAAA;AAEA,YAAA,IACE,OAAOJ,GAAAA,CAAIK,QAAQ,EAAEP,SAAS,QAAA,IAC9BE,GAAAA,CAAIK,QAAQ,EAAEP,SAAS,IAAA,IACvB,OAAA,IAAWE,GAAAA,CAAIK,QAAQ,EAAEP,IAAAA,EACzB;AACA;;AAEC,YACD,OAAO;oBAAEA,IAAAA,EAAMQ,SAAAA;oBAAWC,KAAAA,EAAOP,GAAAA,CAAIK,QAAQ,EAAEP,IAAAA,CAAKS;AAAa,iBAAA;YACnE,CAAA,MAAO;gBACL,OAAO;oBACLT,IAAAA,EAAMQ,SAAAA;oBACNC,KAAAA,EAAO;wBACLC,IAAAA,EAAM,cAAA;AACNC,wBAAAA,OAAAA,EAAST,IAAIS,OAAO;AACpBC,wBAAAA,OAAAA,EAASV,IAAIK,QAAQ;AACrBH,wBAAAA,MAAAA,EAAQF,IAAIE;AACd;AACF,iBAAA;AACF,YAAA;AACF,QAAA;AAEA,QAAA,MAAMK,KAAAA,GAAQP,GAAAA;QACd,OAAO;YACLF,IAAAA,EAAMQ,SAAAA;YACNC,KAAAA,EAAO;AACLC,gBAAAA,IAAAA,EAAMD,MAAMC,IAAI;AAChBC,gBAAAA,OAAAA,EAASF,MAAME,OAAO;AACtBE,gBAAAA,KAAAA,EAAOJ,MAAMI;AACf;AACF,SAAA;AACF,IAAA;AACF,CAAA;AAEA,MAAMC,iBAAiB,IAAM5B;AAE7B,MAAM6B,mBAAmB,CAACN,KAAAA,GAAAA;IACxB,OAAOA,KAAAA,CAAMC,IAAI,KAAKF,SAAAA;AACxB;;;;;"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import { logout } from '../reducer.mjs';
|
|
2
|
-
import { isFetchError, getFetchClient } from './getFetchClient.mjs';
|
|
2
|
+
import { isFetchError, getFetchClient, triggerSessionExpired } from './getFetchClient.mjs';
|
|
3
3
|
|
|
4
4
|
const isAuthPath = (url)=>/^\/admin\/(login|logout|access-token)\b/.test(url);
|
|
5
5
|
const simpleQuery = async (query, api)=>{
|
|
@@ -56,6 +56,11 @@ const simpleQuery = async (query, api)=>{
|
|
|
56
56
|
// no-op
|
|
57
57
|
}
|
|
58
58
|
dispatch(logout());
|
|
59
|
+
// Notify the React layer so the active tab redirects to /auth/login.
|
|
60
|
+
// Without this, only other tabs (via the storage event) would react;
|
|
61
|
+
// the tab that originated the failing request would stay put until
|
|
62
|
+
// the user clicked something or refreshed.
|
|
63
|
+
triggerSessionExpired();
|
|
59
64
|
}
|
|
60
65
|
}
|
|
61
66
|
if (typeof err.response?.data === 'object' && err.response?.data !== null && 'error' in err.response?.data) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"baseQuery.mjs","sources":["../../../../../admin/src/utils/baseQuery.ts"],"sourcesContent":["import { SerializedError } from '@reduxjs/toolkit';\nimport { BaseQueryFn } from '@reduxjs/toolkit/query';\n\nimport { logout as logoutAction } from '../reducer';\nimport {
|
|
1
|
+
{"version":3,"file":"baseQuery.mjs","sources":["../../../../../admin/src/utils/baseQuery.ts"],"sourcesContent":["import { SerializedError } from '@reduxjs/toolkit';\nimport { BaseQueryFn } from '@reduxjs/toolkit/query';\n\nimport { logout as logoutAction } from '../reducer';\nimport {\n getFetchClient,\n triggerSessionExpired,\n type FetchOptions,\n ApiError,\n isFetchError,\n} from '../utils/getFetchClient';\n\ninterface QueryArguments {\n url: string;\n method?: 'GET' | 'POST' | 'DELETE' | 'PUT';\n data?: unknown;\n config?: FetchOptions;\n}\n\ninterface UnknownApiError {\n name: 'UnknownError';\n message: string;\n details?: unknown;\n status?: number;\n}\n\ntype BaseQueryError = ApiError | UnknownApiError;\n\nconst isAuthPath = (url: string) => /^\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\nconst simpleQuery: BaseQueryFn<string | QueryArguments, unknown, BaseQueryError> = async (\n query,\n api\n) => {\n const { signal, dispatch } = api as { signal?: AbortSignal; dispatch: (a: any) => void };\n\n const executeQuery = async (queryToExecute: string | QueryArguments) => {\n const { get, post, del, put } = getFetchClient();\n if (typeof queryToExecute === 'string') {\n const result = await get(queryToExecute, { signal });\n return result;\n }\n\n const { url, method = 'GET', data, config } = queryToExecute;\n if (method === 'POST') {\n return post(url, data, { ...config, signal });\n }\n if (method === 'DELETE') {\n return del(url, { ...config, signal });\n }\n if (method === 'PUT') {\n return put(url, data, { ...config, signal });\n }\n return get(url, { ...config, signal });\n };\n\n try {\n const result = await executeQuery(query);\n return { data: result.data };\n } catch (err) {\n // Handle error of type FetchError\n\n if (isFetchError(err)) {\n // If we receive a 401 here, getFetchClient already tried to refresh and failed.\n // Log the user out since their session is no longer valid.\n if (err.status === 401) {\n const url = typeof query === 'string' ? query : query.url;\n\n if (!isAuthPath(url)) {\n try {\n const { post } = getFetchClient();\n await post('/admin/logout');\n } catch {\n // no-op\n }\n\n dispatch(logoutAction());\n // Notify the React layer so the active tab redirects to /auth/login.\n // Without this, only other tabs (via the storage event) would react;\n // the tab that originated the failing request would stay put until\n // the user clicked something or refreshed.\n triggerSessionExpired();\n }\n }\n\n if (\n typeof err.response?.data === 'object' &&\n err.response?.data !== null &&\n 'error' in err.response?.data\n ) {\n /**\n * This will most likely be ApiError\n */\n return { data: undefined, error: err.response?.data.error as any };\n } else {\n return {\n data: undefined,\n error: {\n name: 'UnknownError',\n message: err.message,\n details: err.response,\n status: err.status,\n } as UnknownApiError,\n };\n }\n }\n\n const error = err as Error;\n return {\n data: undefined,\n error: {\n name: error.name,\n message: error.message,\n stack: error.stack,\n } satisfies SerializedError,\n };\n }\n};\n\nconst fetchBaseQuery = () => simpleQuery;\n\nconst isBaseQueryError = (error: BaseQueryError | SerializedError): error is BaseQueryError => {\n return error.name !== undefined;\n};\n\nexport { fetchBaseQuery, isBaseQueryError };\nexport type { BaseQueryError, UnknownApiError, QueryArguments };\n"],"names":["isAuthPath","url","test","simpleQuery","query","api","signal","dispatch","executeQuery","queryToExecute","get","post","del","put","getFetchClient","result","method","data","config","err","isFetchError","status","logoutAction","triggerSessionExpired","response","undefined","error","name","message","details","stack","fetchBaseQuery","isBaseQueryError"],"mappings":";;;AA4BA,MAAMA,UAAAA,GAAa,CAACC,GAAAA,GAAgB,yCAAA,CAA0CC,IAAI,CAACD,GAAAA,CAAAA;AAEnF,MAAME,WAAAA,GAA6E,OACjFC,KAAAA,EACAC,GAAAA,GAAAA;AAEA,IAAA,MAAM,EAAEC,MAAM,EAAEC,QAAQ,EAAE,GAAGF,GAAAA;AAE7B,IAAA,MAAMG,eAAe,OAAOC,cAAAA,GAAAA;QAC1B,MAAM,EAAEC,GAAG,EAAEC,IAAI,EAAEC,GAAG,EAAEC,GAAG,EAAE,GAAGC,cAAAA,EAAAA;QAChC,IAAI,OAAOL,mBAAmB,QAAA,EAAU;YACtC,MAAMM,MAAAA,GAAS,MAAML,GAAAA,CAAID,cAAAA,EAAgB;AAAEH,gBAAAA;AAAO,aAAA,CAAA;YAClD,OAAOS,MAAAA;AACT,QAAA;QAEA,MAAM,EAAEd,GAAG,EAAEe,MAAAA,GAAS,KAAK,EAAEC,IAAI,EAAEC,MAAM,EAAE,GAAGT,cAAAA;AAC9C,QAAA,IAAIO,WAAW,MAAA,EAAQ;YACrB,OAAOL,IAAAA,CAAKV,KAAKgB,IAAAA,EAAM;AAAE,gBAAA,GAAGC,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AAC7C,QAAA;AACA,QAAA,IAAIU,WAAW,QAAA,EAAU;AACvB,YAAA,OAAOJ,IAAIX,GAAAA,EAAK;AAAE,gBAAA,GAAGiB,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AACtC,QAAA;AACA,QAAA,IAAIU,WAAW,KAAA,EAAO;YACpB,OAAOH,GAAAA,CAAIZ,KAAKgB,IAAAA,EAAM;AAAE,gBAAA,GAAGC,MAAM;AAAEZ,gBAAAA;AAAO,aAAA,CAAA;AAC5C,QAAA;AACA,QAAA,OAAOI,IAAIT,GAAAA,EAAK;AAAE,YAAA,GAAGiB,MAAM;AAAEZ,YAAAA;AAAO,SAAA,CAAA;AACtC,IAAA,CAAA;IAEA,IAAI;QACF,MAAMS,MAAAA,GAAS,MAAMP,YAAAA,CAAaJ,KAAAA,CAAAA;QAClC,OAAO;AAAEa,YAAAA,IAAAA,EAAMF,OAAOE;AAAK,SAAA;AAC7B,IAAA,CAAA,CAAE,OAAOE,GAAAA,EAAK;;AAGZ,QAAA,IAAIC,aAAaD,GAAAA,CAAAA,EAAM;;;YAGrB,IAAIA,GAAAA,CAAIE,MAAM,KAAK,GAAA,EAAK;AACtB,gBAAA,MAAMpB,MAAM,OAAOG,KAAAA,KAAU,QAAA,GAAWA,KAAAA,GAAQA,MAAMH,GAAG;gBAEzD,IAAI,CAACD,WAAWC,GAAAA,CAAAA,EAAM;oBACpB,IAAI;wBACF,MAAM,EAAEU,IAAI,EAAE,GAAGG,cAAAA,EAAAA;AACjB,wBAAA,MAAMH,IAAAA,CAAK,eAAA,CAAA;AACb,oBAAA,CAAA,CAAE,OAAM;;AAER,oBAAA;oBAEAJ,QAAAA,CAASe,MAAAA,EAAAA,CAAAA;;;;;AAKTC,oBAAAA,qBAAAA,EAAAA;AACF,gBAAA;AACF,YAAA;AAEA,YAAA,IACE,OAAOJ,GAAAA,CAAIK,QAAQ,EAAEP,SAAS,QAAA,IAC9BE,GAAAA,CAAIK,QAAQ,EAAEP,SAAS,IAAA,IACvB,OAAA,IAAWE,GAAAA,CAAIK,QAAQ,EAAEP,IAAAA,EACzB;AACA;;AAEC,YACD,OAAO;oBAAEA,IAAAA,EAAMQ,SAAAA;oBAAWC,KAAAA,EAAOP,GAAAA,CAAIK,QAAQ,EAAEP,IAAAA,CAAKS;AAAa,iBAAA;YACnE,CAAA,MAAO;gBACL,OAAO;oBACLT,IAAAA,EAAMQ,SAAAA;oBACNC,KAAAA,EAAO;wBACLC,IAAAA,EAAM,cAAA;AACNC,wBAAAA,OAAAA,EAAST,IAAIS,OAAO;AACpBC,wBAAAA,OAAAA,EAASV,IAAIK,QAAQ;AACrBH,wBAAAA,MAAAA,EAAQF,IAAIE;AACd;AACF,iBAAA;AACF,YAAA;AACF,QAAA;AAEA,QAAA,MAAMK,KAAAA,GAAQP,GAAAA;QACd,OAAO;YACLF,IAAAA,EAAMQ,SAAAA;YACNC,KAAAA,EAAO;AACLC,gBAAAA,IAAAA,EAAMD,MAAMC,IAAI;AAChBC,gBAAAA,OAAAA,EAASF,MAAME,OAAO;AACtBE,gBAAAA,KAAAA,EAAOJ,MAAMI;AACf;AACF,SAAA;AACF,IAAA;AACF,CAAA;AAEA,MAAMC,iBAAiB,IAAM5B;AAE7B,MAAM6B,mBAAmB,CAACN,KAAAA,GAAAA;IACxB,OAAOA,KAAAA,CAAMC,IAAI,KAAKF,SAAAA;AACxB;;;;"}
|
|
@@ -12,6 +12,12 @@ const STORAGE_KEYS = {
|
|
|
12
12
|
/**
|
|
13
13
|
* Callback to notify the app when the token is updated (e.g., to update Redux state)
|
|
14
14
|
*/ let onTokenUpdate = null;
|
|
15
|
+
/**
|
|
16
|
+
* Callback to notify the app when the session has been terminated and the user
|
|
17
|
+
* should be redirected to the login page (e.g., refresh token rejected, idle
|
|
18
|
+
* session expired). The React layer registers a handler that clears local
|
|
19
|
+
* auth state and navigates to /auth/login.
|
|
20
|
+
*/ let onSessionExpired = null;
|
|
15
21
|
/**
|
|
16
22
|
* Set the callback that will be called when the token is refreshed.
|
|
17
23
|
* This allows the React layer to update Redux state when a token refresh occurs.
|
|
@@ -26,6 +32,22 @@ const STORAGE_KEYS = {
|
|
|
26
32
|
*/ const setOnTokenUpdate = (callback)=>{
|
|
27
33
|
onTokenUpdate = callback;
|
|
28
34
|
};
|
|
35
|
+
/**
|
|
36
|
+
* Set the callback that will be called when the active session is no longer
|
|
37
|
+
* valid (refresh token rejected by the server, or detected idle on the
|
|
38
|
+
* client). This lets the active tab redirect to /auth/login without waiting
|
|
39
|
+
* for the next user-initiated request to fail.
|
|
40
|
+
*
|
|
41
|
+
* @param callback - Function to call when the session ends, or null to clear
|
|
42
|
+
*/ const setOnSessionExpired = (callback)=>{
|
|
43
|
+
onSessionExpired = callback;
|
|
44
|
+
};
|
|
45
|
+
/**
|
|
46
|
+
* Trigger the registered session-expired callback, if any. Safe to call from
|
|
47
|
+
* non-React code (e.g., the RTK Query baseQuery 401 handler).
|
|
48
|
+
*/ const triggerSessionExpired = ()=>{
|
|
49
|
+
onSessionExpired?.();
|
|
50
|
+
};
|
|
29
51
|
/**
|
|
30
52
|
* Check if the URL is an auth path that should not trigger token refresh.
|
|
31
53
|
* Note: No ^ anchor since the URL may include the baseURL prefix (e.g., "http://localhost:1337/admin/login").
|
|
@@ -370,6 +392,8 @@ exports.FetchError = FetchError;
|
|
|
370
392
|
exports.attemptTokenRefresh = attemptTokenRefresh;
|
|
371
393
|
exports.getFetchClient = getFetchClient;
|
|
372
394
|
exports.isFetchError = isFetchError;
|
|
395
|
+
exports.setOnSessionExpired = setOnSessionExpired;
|
|
373
396
|
exports.setOnTokenUpdate = setOnTokenUpdate;
|
|
374
397
|
exports.storeToken = storeToken;
|
|
398
|
+
exports.triggerSessionExpired = triggerSessionExpired;
|
|
375
399
|
//# sourceMappingURL=getFetchClient.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getFetchClient.js","sources":["../../../../../admin/src/utils/getFetchClient.ts"],"sourcesContent":["import pipe from 'lodash/fp/pipe';\n// eslint-disable-next-line import/default\nimport qs from 'qs';\n\nimport { getCookieValue, setCookie } from './cookies';\n\nimport type { errors } from '@strapi/utils';\n\nexport type ApiError =\n | errors.ApplicationError\n | errors.ForbiddenError\n | errors.NotFoundError\n | errors.NotImplementedError\n | errors.PaginationError\n | errors.PayloadTooLargeError\n | errors.PolicyError\n | errors.RateLimitError\n | errors.UnauthorizedError\n | errors.ValidationError\n | errors.YupValidationError;\n\nconst STORAGE_KEYS = {\n TOKEN: 'jwtToken',\n USER: 'userInfo',\n};\n\n/**\n * Module-level promise to ensure only one token refresh happens at a time\n */\nlet refreshPromise: Promise<string | null> | null = null;\n\n/**\n * Callback to notify the app when the token is updated (e.g., to update Redux state)\n */\nlet onTokenUpdate: ((token: string) => void) | null = null;\n\n/**\n * Set the callback that will be called when the token is refreshed.\n * This allows the React layer to update Redux state when a token refresh occurs.\n *\n * @param callback - Function to call with the new token, or null to clear\n * @example\n * // In a React component\n * useEffect(() => {\n * setOnTokenUpdate((token) => dispatch(setToken(token)));\n * return () => setOnTokenUpdate(null);\n * }, [dispatch]);\n */\nconst setOnTokenUpdate = (callback: ((token: string) => void) | null): void => {\n onTokenUpdate = callback;\n};\n\n/**\n * Check if the URL is an auth path that should not trigger token refresh.\n * Note: No ^ anchor since the URL may include the baseURL prefix (e.g., \"http://localhost:1337/admin/login\").\n * This differs from baseQuery.ts which uses ^/admin since it receives normalized paths.\n */\nconst isAuthPath = (url: string) => /\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\n/**\n * Store the new token in the appropriate storage (localStorage or cookie)\n * and notify the app to update its state.\n *\n * Uses localStorage if the user selected \"remember me\" during login,\n * otherwise uses cookies for session-based storage.\n *\n * @param token - The JWT token to store\n * @internal Exported for testing purposes\n */\nconst storeToken = (token: string): void => {\n // Check if the original token was stored in localStorage (persist mode)\n const wasPersistedToLocalStorage = Boolean(localStorage.getItem(STORAGE_KEYS.TOKEN));\n\n if (wasPersistedToLocalStorage) {\n localStorage.setItem(STORAGE_KEYS.TOKEN, JSON.stringify(token));\n } else {\n setCookie(STORAGE_KEYS.TOKEN, token);\n }\n\n // Notify the app to update its state (e.g., Redux)\n if (onTokenUpdate) {\n onTokenUpdate(token);\n }\n};\n\n/**\n * Refresh the access token by calling the /admin/access-token endpoint.\n * This uses a low-level fetch to avoid recursion through the interceptor.\n * Returns the new token on success, or null on failure.\n */\nconst refreshAccessToken = async (): Promise<string | null> => {\n const backendURL = window.strapi.backendURL;\n\n try {\n const response = await fetch(`${backendURL}/admin/access-token`, {\n method: 'POST',\n credentials: 'include', // Include cookies for the refresh token\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n console.warn('[Auth] Token refresh failed with status:', response.status);\n return null;\n }\n\n const result = await response.json();\n const token = result?.data?.token as string | undefined;\n\n if (!token) {\n console.warn('[Auth] Token refresh response missing token');\n return null;\n }\n\n storeToken(token);\n return token;\n } catch (error) {\n console.error('[Auth] Token refresh error:', error);\n return null;\n }\n};\n\n/**\n * Attempt to refresh the token if not already refreshing.\n * Uses a module-level promise to prevent concurrent refresh requests.\n *\n * @returns The new authentication token\n * @throws {Error} If the token refresh fails (e.g., refresh token expired)\n * @internal Exported for testing purposes\n */\nconst attemptTokenRefresh = async (): Promise<string> => {\n if (!refreshPromise) {\n refreshPromise = refreshAccessToken().finally(() => {\n refreshPromise = null;\n });\n }\n\n const newToken = await refreshPromise;\n if (!newToken) {\n const error = new Error('Session expired. Please log in again.');\n error.name = 'TokenRefreshError';\n throw error;\n }\n\n return newToken;\n};\n\ntype FetchResponse<TData = any> = {\n data: TData;\n status?: number;\n headers?: Headers;\n};\n\ntype FetchOptions = {\n params?: any;\n signal?: AbortSignal;\n headers?: Record<string, string>;\n validateStatus?: ((status: number) => boolean) | null;\n responseType?: 'json' | 'blob' | 'text' | 'arrayBuffer';\n};\n\ntype FetchConfig = {\n signal?: AbortSignal;\n};\n\ninterface ErrorResponse {\n data: {\n data?: any;\n error: ApiError & { status?: number };\n };\n}\n\nclass FetchError extends Error {\n public name: string;\n public message: string;\n public response?: ErrorResponse;\n public code?: number;\n public status?: number;\n\n constructor(message: string, response?: ErrorResponse) {\n super(message);\n this.name = 'FetchError';\n this.message = message;\n this.response = response;\n this.code = response?.data?.error?.status;\n this.status = response?.data?.error?.status;\n\n // Ensure correct stack trace in error object\n if (Error.captureStackTrace) {\n Error.captureStackTrace(this, FetchError);\n }\n }\n}\n\nconst isFetchError = (error: unknown): error is FetchError => {\n return error instanceof FetchError;\n};\n\nconst getToken = (): string | null => {\n const fromLocalStorage = localStorage.getItem(STORAGE_KEYS.TOKEN);\n if (fromLocalStorage) {\n return JSON.parse(fromLocalStorage);\n }\n\n const fromCookie = getCookieValue(STORAGE_KEYS.TOKEN);\n return fromCookie ?? null;\n};\n\ntype FetchClient = {\n get: {\n (url: string, config: FetchOptions & { responseType: 'blob' }): Promise<FetchResponse<Blob>>;\n (url: string, config: FetchOptions & { responseType: 'text' }): Promise<FetchResponse<string>>;\n (\n url: string,\n config: FetchOptions & { responseType: 'arrayBuffer' }\n ): Promise<FetchResponse<ArrayBuffer>>;\n <TData = any>(url: string, config?: FetchOptions): Promise<FetchResponse<TData>>;\n };\n put: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n post: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n del: <TData = any>(url: string, config?: FetchOptions) => Promise<FetchResponse<TData>>;\n};\n\n/**\n * @public\n * @param {FetchConfig} [defaultOptions={}] - Fetch Configs.\n * @returns {FetchClient} A fetch client object with methods for making HTTP requests.\n * @description This is an abstraction around the native fetch exposed by a function. It provides a simple interface to handle API calls\n * to the Strapi backend.\n * @example\n * ```tsx\n * import { getFetchClient } from '@strapi/admin/admin';\n *\n * const myFunct = () => {\n * const { get } = getFetchClient();\n * const requestURL = \"/some-endpoint\";\n *\n * const { data } = await get(requestURL);\n *\n * return data;\n * };\n * ```\n */\nconst getFetchClient = (defaultOptions: FetchConfig = {}): FetchClient => {\n const backendURL = window.strapi.backendURL;\n\n /**\n * Create default headers with the current token.\n * This is a function so we can get a fresh token after refresh.\n */\n const getDefaultHeaders = () => ({\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n Authorization: `Bearer ${getToken()}`,\n });\n\n const isFormDataRequest = (body: unknown) => body instanceof FormData;\n const addPrependingSlash = (url: string) => (url.charAt(0) !== '/' ? `/${url}` : url);\n\n // This regular expression matches a string that starts with either \"http://\" or \"https://\" or any other protocol name in lower case letters, followed by \"://\" and ends with anything else\n const hasProtocol = (url: string) => new RegExp('^(?:[a-z+]+:)?//', 'i').test(url);\n\n // Check if the url has a prepending slash, if not add a slash\n const normalizeUrl = (url: string) => (hasProtocol(url) ? url : addPrependingSlash(url));\n\n // Add a response interceptor to return the response\n const responseInterceptor = async <TData = any>(\n response: Response,\n validateStatus?: FetchOptions['validateStatus'],\n responseType: NonNullable<FetchOptions['responseType']> = 'json'\n ): Promise<FetchResponse<TData>> => {\n if (responseType !== 'json') {\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n let result: Blob | string | ArrayBuffer;\n if (responseType === 'blob') {\n result = await response.blob();\n } else if (responseType === 'text') {\n result = await response.text();\n } else {\n result = await response.arrayBuffer();\n }\n\n return { data: result as TData, status: response.status, headers: response.headers };\n }\n\n if (response.status === 204) {\n return { data: {} as TData, status: response.status };\n }\n\n try {\n const result = await response.json();\n\n if (!response.ok && result.error && !validateStatus?.(response.status)) {\n const fetchError = new FetchError(result.error.message, { data: result });\n fetchError.status = response.status;\n throw fetchError;\n }\n\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Unknown Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n return { data: result };\n } catch (error) {\n // An empty 200 body causes `response.json()` to throw a `SyntaxError`. We treat\n // it as success and return an empty payload. We match on `error.name` rather\n // than `instanceof SyntaxError` because constructor identity differs across JS\n // realms — a Response from a different realm (e.g. undici under jsdom in tests,\n // a service worker or iframe in browsers) throws a `SyntaxError` whose\n // constructor is not the same identity as the one this module closes over. Name\n // comparison is realm-agnostic.\n if ((error as Error | null)?.name === 'SyntaxError' && response.ok) {\n return { data: [], status: response.status } as FetchResponse<any>;\n } else {\n throw error;\n }\n }\n };\n\n /**\n * Execute a fetch request with automatic token refresh on 401 errors.\n * @param url - The request URL (used to check if it's an auth path)\n * @param executeRequest - Function that performs the fetch (called again on retry with fresh headers)\n */\n const withTokenRefresh = async <TData>(\n url: string,\n executeRequest: () => Promise<FetchResponse<TData>>\n ): Promise<FetchResponse<TData>> => {\n try {\n return await executeRequest();\n } catch (error) {\n // Only attempt refresh for 401 errors on non-auth paths\n if (isFetchError(error) && error.status === 401 && !isAuthPath(url)) {\n try {\n await attemptTokenRefresh();\n // Retry - executeRequest will call getDefaultHeaders() again, picking up the new token\n return await executeRequest();\n } catch {\n // If refresh fails, throw the original error\n throw error;\n }\n }\n throw error;\n }\n };\n\n const paramsSerializer =\n <Param = unknown>(params?: Param) =>\n (url: string) => {\n if (params) {\n if (typeof params === 'string') {\n return `${url}?${params}`;\n }\n\n /**\n * TODO V6: Encoding should be enabled in this step\n * So the rest of the app doesn't have to worry about it,\n * It's considered a breaking change because it impacts any API request, including the user's custom code\n */\n const serializedParams = qs.stringify(params, { encode: false });\n if (serializedParams) {\n return `${url}?${serializedParams}`;\n }\n return url;\n }\n return url;\n };\n\n const addBaseUrl = (url: Parameters<typeof fetch>[0]) => {\n return `${backendURL}${url}`;\n };\n\n /**\n * We use the factory method because the options\n * are unique to the individual request\n */\n const makeCreateRequestUrl = (options?: FetchOptions) =>\n pipe(normalizeUrl, addBaseUrl, paramsSerializer(options?.params));\n\n const fetchClient: FetchClient = {\n get: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n const responseType = options?.responseType ?? 'json';\n\n const executeRequest = async () => {\n const { Authorization } = getDefaultHeaders();\n\n // For non-JSON response types, omit content negotiation headers that imply JSON\n const defaultHeaders = responseType === 'json' ? getDefaultHeaders() : { Authorization };\n\n const headers = new Headers({\n ...defaultHeaders,\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'GET',\n headers,\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus, responseType);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n post: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'POST',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n put: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'PUT',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n del: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'DELETE',\n headers,\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n };\n\n return fetchClient;\n};\n\nexport {\n getFetchClient,\n isFetchError,\n FetchError,\n attemptTokenRefresh,\n storeToken,\n setOnTokenUpdate,\n};\nexport type { FetchOptions, FetchResponse, FetchConfig, FetchClient, ErrorResponse };\n"],"names":["STORAGE_KEYS","TOKEN","refreshPromise","onTokenUpdate","setOnTokenUpdate","callback","isAuthPath","url","test","storeToken","token","wasPersistedToLocalStorage","Boolean","localStorage","getItem","setItem","JSON","stringify","setCookie","refreshAccessToken","backendURL","window","strapi","response","fetch","method","credentials","headers","Accept","ok","console","warn","status","result","json","data","error","attemptTokenRefresh","finally","newToken","Error","name","FetchError","message","code","captureStackTrace","isFetchError","getToken","fromLocalStorage","parse","fromCookie","getCookieValue","getFetchClient","defaultOptions","getDefaultHeaders","Authorization","isFormDataRequest","body","FormData","addPrependingSlash","charAt","hasProtocol","RegExp","normalizeUrl","responseInterceptor","validateStatus","responseType","fetchError","blob","text","arrayBuffer","withTokenRefresh","executeRequest","paramsSerializer","params","serializedParams","qs","encode","addBaseUrl","makeCreateRequestUrl","options","pipe","fetchClient","get","createRequestUrl","defaultHeaders","Headers","signal","post","delete","put","del"],"mappings":";;;;;;AAqBA,MAAMA,YAAAA,GAAe;IACnBC,KAAAA,EAAO,UAET,CAAA;AAEA;;AAEC,IACD,IAAIC,cAAAA,GAAgD,IAAA;AAEpD;;AAEC,IACD,IAAIC,aAAAA,GAAkD,IAAA;AAEtD;;;;;;;;;;;IAYA,MAAMC,mBAAmB,CAACC,QAAAA,GAAAA;IACxBF,aAAAA,GAAgBE,QAAAA;AAClB;AAEA;;;;AAIC,IACD,MAAMC,UAAAA,GAAa,CAACC,GAAAA,GAAgB,wCAAA,CAAyCC,IAAI,CAACD,GAAAA,CAAAA;AAElF;;;;;;;;;IAUA,MAAME,aAAa,CAACC,KAAAA,GAAAA;;AAElB,IAAA,MAAMC,6BAA6BC,OAAAA,CAAQC,YAAAA,CAAaC,OAAO,CAACd,aAAaC,KAAK,CAAA,CAAA;AAElF,IAAA,IAAIU,0BAAAA,EAA4B;AAC9BE,QAAAA,YAAAA,CAAaE,OAAO,CAACf,YAAAA,CAAaC,KAAK,EAAEe,IAAAA,CAAKC,SAAS,CAACP,KAAAA,CAAAA,CAAAA;IAC1D,CAAA,MAAO;QACLQ,iBAAAA,CAAUlB,YAAAA,CAAaC,KAAK,EAAES,KAAAA,CAAAA;AAChC,IAAA;;AAGA,IAAA,IAAIP,aAAAA,EAAe;QACjBA,aAAAA,CAAcO,KAAAA,CAAAA;AAChB,IAAA;AACF;AAEA;;;;AAIC,IACD,MAAMS,kBAAAA,GAAqB,UAAA;AACzB,IAAA,MAAMC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;IAE3C,IAAI;AACF,QAAA,MAAMG,WAAW,MAAMC,KAAAA,CAAM,GAAGJ,UAAAA,CAAW,mBAAmB,CAAC,EAAE;YAC/DK,MAAAA,EAAQ,MAAA;YACRC,WAAAA,EAAa,SAAA;YACbC,OAAAA,EAAS;gBACPC,MAAAA,EAAQ,kBAAA;gBACR,cAAA,EAAgB;AAClB;AACF,SAAA,CAAA;QAEA,IAAI,CAACL,QAAAA,CAASM,EAAE,EAAE;AAChBC,YAAAA,OAAAA,CAAQC,IAAI,CAAC,0CAAA,EAA4CR,QAAAA,CAASS,MAAM,CAAA;YACxE,OAAO,IAAA;AACT,QAAA;QAEA,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;QAClC,MAAMxB,KAAAA,GAAQuB,QAAQE,IAAAA,EAAMzB,KAAAA;AAE5B,QAAA,IAAI,CAACA,KAAAA,EAAO;AACVoB,YAAAA,OAAAA,CAAQC,IAAI,CAAC,6CAAA,CAAA;YACb,OAAO,IAAA;AACT,QAAA;QAEAtB,UAAAA,CAAWC,KAAAA,CAAAA;QACX,OAAOA,KAAAA;AACT,IAAA,CAAA,CAAE,OAAO0B,KAAAA,EAAO;QACdN,OAAAA,CAAQM,KAAK,CAAC,6BAAA,EAA+BA,KAAAA,CAAAA;QAC7C,OAAO,IAAA;AACT,IAAA;AACF,CAAA;AAEA;;;;;;;AAOC,UACKC,mBAAAA,GAAsB,UAAA;AAC1B,IAAA,IAAI,CAACnC,cAAAA,EAAgB;QACnBA,cAAAA,GAAiBiB,kBAAAA,EAAAA,CAAqBmB,OAAO,CAAC,IAAA;YAC5CpC,cAAAA,GAAiB,IAAA;AACnB,QAAA,CAAA,CAAA;AACF,IAAA;AAEA,IAAA,MAAMqC,WAAW,MAAMrC,cAAAA;AACvB,IAAA,IAAI,CAACqC,QAAAA,EAAU;QACb,MAAMH,KAAAA,GAAQ,IAAII,KAAAA,CAAM,uCAAA,CAAA;AACxBJ,QAAAA,KAAAA,CAAMK,IAAI,GAAG,mBAAA;QACb,MAAML,KAAAA;AACR,IAAA;IAEA,OAAOG,QAAAA;AACT;AA2BA,MAAMG,UAAAA,SAAmBF,KAAAA,CAAAA;IAOvB,WAAA,CAAYG,OAAe,EAAEpB,QAAwB,CAAE;AACrD,QAAA,KAAK,CAACoB,OAAAA,CAAAA;QACN,IAAI,CAACF,IAAI,GAAG,YAAA;QACZ,IAAI,CAACE,OAAO,GAAGA,OAAAA;QACf,IAAI,CAACpB,QAAQ,GAAGA,QAAAA;AAChB,QAAA,IAAI,CAACqB,IAAI,GAAGrB,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;AACnC,QAAA,IAAI,CAACA,MAAM,GAAGT,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;;QAGrC,IAAIQ,KAAAA,CAAMK,iBAAiB,EAAE;YAC3BL,KAAAA,CAAMK,iBAAiB,CAAC,IAAI,EAAEH,UAAAA,CAAAA;AAChC,QAAA;AACF,IAAA;AACF;AAEA,MAAMI,eAAe,CAACV,KAAAA,GAAAA;AACpB,IAAA,OAAOA,KAAAA,YAAiBM,UAAAA;AAC1B;AAEA,MAAMK,QAAAA,GAAW,IAAA;AACf,IAAA,MAAMC,gBAAAA,GAAmBnC,YAAAA,CAAaC,OAAO,CAACd,aAAaC,KAAK,CAAA;AAChE,IAAA,IAAI+C,gBAAAA,EAAkB;QACpB,OAAOhC,IAAAA,CAAKiC,KAAK,CAACD,gBAAAA,CAAAA;AACpB,IAAA;IAEA,MAAME,UAAAA,GAAaC,sBAAAA,CAAenD,YAAAA,CAAaC,KAAK,CAAA;AACpD,IAAA,OAAOiD,UAAAA,IAAc,IAAA;AACvB,CAAA;AAyBA;;;;;;;;;;;;;;;;;;;AAmBC,IACD,MAAME,cAAAA,GAAiB,CAACC,cAAAA,GAA8B,EAAE,GAAA;AACtD,IAAA,MAAMjC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;AAE3C;;;MAIA,MAAMkC,iBAAAA,GAAoB,KAAO;YAC/B1B,MAAAA,EAAQ,kBAAA;YACR,cAAA,EAAgB,kBAAA;YAChB2B,aAAAA,EAAe,CAAC,OAAO,EAAER,QAAAA,EAAAA,CAAAA;SAC3B,CAAA;IAEA,MAAMS,iBAAAA,GAAoB,CAACC,IAAAA,GAAkBA,IAAAA,YAAgBC,QAAAA;AAC7D,IAAA,MAAMC,kBAAAA,GAAqB,CAACpD,GAAAA,GAAiBA,GAAAA,CAAIqD,MAAM,CAAC,CAAA,CAAA,KAAO,GAAA,GAAM,CAAC,CAAC,EAAErD,GAAAA,CAAAA,CAAK,GAAGA,GAAAA;;IAGjF,MAAMsD,WAAAA,GAAc,CAACtD,GAAAA,GAAgB,IAAIuD,OAAO,kBAAA,EAAoB,GAAA,CAAA,CAAKtD,IAAI,CAACD,GAAAA,CAAAA;;AAG9E,IAAA,MAAMwD,eAAe,CAACxD,GAAAA,GAAiBsD,WAAAA,CAAYtD,GAAAA,CAAAA,GAAOA,MAAMoD,kBAAAA,CAAmBpD,GAAAA,CAAAA;;AAGnF,IAAA,MAAMyD,mBAAAA,GAAsB,OAC1BzC,QAAAA,EACA0C,cAAAA,EACAC,eAA0D,MAAM,GAAA;AAEhE,QAAA,IAAIA,iBAAiB,MAAA,EAAQ;YAC3B,IAAI,CAAC3C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,cAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAIlC,MAAAA;AACJ,YAAA,IAAIiC,iBAAiB,MAAA,EAAQ;gBAC3BjC,MAAAA,GAAS,MAAMV,SAAS6C,IAAI,EAAA;YAC9B,CAAA,MAAO,IAAIF,iBAAiB,MAAA,EAAQ;gBAClCjC,MAAAA,GAAS,MAAMV,SAAS8C,IAAI,EAAA;YAC9B,CAAA,MAAO;gBACLpC,MAAAA,GAAS,MAAMV,SAAS+C,WAAW,EAAA;AACrC,YAAA;YAEA,OAAO;gBAAEnC,IAAAA,EAAMF,MAAAA;AAAiBD,gBAAAA,MAAAA,EAAQT,SAASS,MAAM;AAAEL,gBAAAA,OAAAA,EAASJ,SAASI;AAAQ,aAAA;AACrF,QAAA;QAEA,IAAIJ,QAAAA,CAASS,MAAM,KAAK,GAAA,EAAK;YAC3B,OAAO;AAAEG,gBAAAA,IAAAA,EAAM,EAAC;AAAYH,gBAAAA,MAAAA,EAAQT,SAASS;AAAO,aAAA;AACtD,QAAA;QAEA,IAAI;YACF,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;YAElC,IAAI,CAACX,QAAAA,CAASM,EAAE,IAAII,MAAAA,CAAOG,KAAK,IAAI,CAAC6B,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;AACtE,gBAAA,MAAMmC,aAAa,IAAIzB,UAAAA,CAAWT,OAAOG,KAAK,CAACO,OAAO,EAAE;oBAAER,IAAAA,EAAMF;AAAO,iBAAA,CAAA;gBACvEkC,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAI,CAAC5C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,sBAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,OAAO;gBAAEhC,IAAAA,EAAMF;AAAO,aAAA;AACxB,QAAA,CAAA,CAAE,OAAOG,KAAAA,EAAO;;;;;;;;AAQd,YAAA,IAAI,KAACA,EAAwBK,IAAAA,KAAS,aAAA,IAAiBlB,QAAAA,CAASM,EAAE,EAAE;gBAClE,OAAO;AAAEM,oBAAAA,IAAAA,EAAM,EAAE;AAAEH,oBAAAA,MAAAA,EAAQT,SAASS;AAAO,iBAAA;YAC7C,CAAA,MAAO;gBACL,MAAMI,KAAAA;AACR,YAAA;AACF,QAAA;AACF,IAAA,CAAA;AAEA;;;;MAKA,MAAMmC,gBAAAA,GAAmB,OACvBhE,GAAAA,EACAiE,cAAAA,GAAAA;QAEA,IAAI;AACF,YAAA,OAAO,MAAMA,cAAAA,EAAAA;AACf,QAAA,CAAA,CAAE,OAAOpC,KAAAA,EAAO;;YAEd,IAAIU,YAAAA,CAAaV,UAAUA,KAAAA,CAAMJ,MAAM,KAAK,GAAA,IAAO,CAAC1B,WAAWC,GAAAA,CAAAA,EAAM;gBACnE,IAAI;oBACF,MAAM8B,mBAAAA,EAAAA;;AAEN,oBAAA,OAAO,MAAMmC,cAAAA,EAAAA;AACf,gBAAA,CAAA,CAAE,OAAM;;oBAEN,MAAMpC,KAAAA;AACR,gBAAA;AACF,YAAA;YACA,MAAMA,KAAAA;AACR,QAAA;AACF,IAAA,CAAA;IAEA,MAAMqC,gBAAAA,GACJ,CAAkBC,MAAAA,GAClB,CAACnE,GAAAA,GAAAA;AACC,YAAA,IAAImE,MAAAA,EAAQ;gBACV,IAAI,OAAOA,WAAW,QAAA,EAAU;AAC9B,oBAAA,OAAO,CAAA,EAAGnE,GAAAA,CAAI,CAAC,EAAEmE,MAAAA,CAAAA,CAAQ;AAC3B,gBAAA;AAEA;;;;AAIC,YACD,MAAMC,gBAAAA,GAAmBC,EAAAA,CAAG3D,SAAS,CAACyD,MAAAA,EAAQ;oBAAEG,MAAAA,EAAQ;AAAM,iBAAA,CAAA;AAC9D,gBAAA,IAAIF,gBAAAA,EAAkB;AACpB,oBAAA,OAAO,CAAA,EAAGpE,GAAAA,CAAI,CAAC,EAAEoE,gBAAAA,CAAAA,CAAkB;AACrC,gBAAA;gBACA,OAAOpE,GAAAA;AACT,YAAA;YACA,OAAOA,GAAAA;AACT,QAAA,CAAA;AAEF,IAAA,MAAMuE,aAAa,CAACvE,GAAAA,GAAAA;QAClB,OAAO,CAAA,EAAGa,aAAab,GAAAA,CAAAA,CAAK;AAC9B,IAAA,CAAA;AAEA;;;MAIA,MAAMwE,uBAAuB,CAACC,OAAAA,GAC5BC,KAAKlB,YAAAA,EAAce,UAAAA,EAAYL,iBAAiBO,OAAAA,EAASN,MAAAA,CAAAA,CAAAA;AAE3D,IAAA,MAAMQ,WAAAA,GAA2B;AAC/BC,QAAAA,GAAAA,EAAK,OAAc5E,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;YAC9C,MAAMd,YAAAA,GAAec,SAASd,YAAAA,IAAgB,MAAA;AAE9C,YAAA,MAAMM,cAAAA,GAAiB,UAAA;gBACrB,MAAM,EAAEjB,aAAa,EAAE,GAAGD,iBAAAA,EAAAA;;gBAG1B,MAAM+B,cAAAA,GAAiBnB,YAAAA,KAAiB,MAAA,GAASZ,iBAAAA,EAAAA,GAAsB;AAAEC,oBAAAA;AAAc,iBAAA;gBAEvF,MAAM5B,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGD,cAAc;AACjB,oBAAA,GAAGL,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBAEA,OAAOqC,mBAAAA,CAA2BzC,QAAAA,EAAUyD,OAAAA,EAASf,cAAAA,EAAgBC,YAAAA,CAAAA;AACvE,YAAA,CAAA;AAEA,YAAA,OAAOK,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAgB,IAAAA,EAAM,OACJjF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,MAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBACA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAkB,GAAAA,EAAK,OACHnF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBAEA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;AACAmB,QAAAA,GAAAA,EAAK,OAAcpF,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,QAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBACA,OAAOqC,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA;AACF,KAAA;IAEA,OAAOU,WAAAA;AACT;;;;;;;;;"}
|
|
1
|
+
{"version":3,"file":"getFetchClient.js","sources":["../../../../../admin/src/utils/getFetchClient.ts"],"sourcesContent":["import pipe from 'lodash/fp/pipe';\n// eslint-disable-next-line import/default\nimport qs from 'qs';\n\nimport { getCookieValue, setCookie } from './cookies';\n\nimport type { errors } from '@strapi/utils';\n\nexport type ApiError =\n | errors.ApplicationError\n | errors.ForbiddenError\n | errors.NotFoundError\n | errors.NotImplementedError\n | errors.PaginationError\n | errors.PayloadTooLargeError\n | errors.PolicyError\n | errors.RateLimitError\n | errors.UnauthorizedError\n | errors.ValidationError\n | errors.YupValidationError;\n\nconst STORAGE_KEYS = {\n TOKEN: 'jwtToken',\n USER: 'userInfo',\n};\n\n/**\n * Module-level promise to ensure only one token refresh happens at a time\n */\nlet refreshPromise: Promise<string | null> | null = null;\n\n/**\n * Callback to notify the app when the token is updated (e.g., to update Redux state)\n */\nlet onTokenUpdate: ((token: string) => void) | null = null;\n\n/**\n * Callback to notify the app when the session has been terminated and the user\n * should be redirected to the login page (e.g., refresh token rejected, idle\n * session expired). The React layer registers a handler that clears local\n * auth state and navigates to /auth/login.\n */\nlet onSessionExpired: (() => void) | null = null;\n\n/**\n * Set the callback that will be called when the token is refreshed.\n * This allows the React layer to update Redux state when a token refresh occurs.\n *\n * @param callback - Function to call with the new token, or null to clear\n * @example\n * // In a React component\n * useEffect(() => {\n * setOnTokenUpdate((token) => dispatch(setToken(token)));\n * return () => setOnTokenUpdate(null);\n * }, [dispatch]);\n */\nconst setOnTokenUpdate = (callback: ((token: string) => void) | null): void => {\n onTokenUpdate = callback;\n};\n\n/**\n * Set the callback that will be called when the active session is no longer\n * valid (refresh token rejected by the server, or detected idle on the\n * client). This lets the active tab redirect to /auth/login without waiting\n * for the next user-initiated request to fail.\n *\n * @param callback - Function to call when the session ends, or null to clear\n */\nconst setOnSessionExpired = (callback: (() => void) | null): void => {\n onSessionExpired = callback;\n};\n\n/**\n * Trigger the registered session-expired callback, if any. Safe to call from\n * non-React code (e.g., the RTK Query baseQuery 401 handler).\n */\nconst triggerSessionExpired = (): void => {\n onSessionExpired?.();\n};\n\n/**\n * Check if the URL is an auth path that should not trigger token refresh.\n * Note: No ^ anchor since the URL may include the baseURL prefix (e.g., \"http://localhost:1337/admin/login\").\n * This differs from baseQuery.ts which uses ^/admin since it receives normalized paths.\n */\nconst isAuthPath = (url: string) => /\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\n/**\n * Store the new token in the appropriate storage (localStorage or cookie)\n * and notify the app to update its state.\n *\n * Uses localStorage if the user selected \"remember me\" during login,\n * otherwise uses cookies for session-based storage.\n *\n * @param token - The JWT token to store\n * @internal Exported for testing purposes\n */\nconst storeToken = (token: string): void => {\n // Check if the original token was stored in localStorage (persist mode)\n const wasPersistedToLocalStorage = Boolean(localStorage.getItem(STORAGE_KEYS.TOKEN));\n\n if (wasPersistedToLocalStorage) {\n localStorage.setItem(STORAGE_KEYS.TOKEN, JSON.stringify(token));\n } else {\n setCookie(STORAGE_KEYS.TOKEN, token);\n }\n\n // Notify the app to update its state (e.g., Redux)\n if (onTokenUpdate) {\n onTokenUpdate(token);\n }\n};\n\n/**\n * Refresh the access token by calling the /admin/access-token endpoint.\n * This uses a low-level fetch to avoid recursion through the interceptor.\n * Returns the new token on success, or null on failure.\n */\nconst refreshAccessToken = async (): Promise<string | null> => {\n const backendURL = window.strapi.backendURL;\n\n try {\n const response = await fetch(`${backendURL}/admin/access-token`, {\n method: 'POST',\n credentials: 'include', // Include cookies for the refresh token\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n console.warn('[Auth] Token refresh failed with status:', response.status);\n return null;\n }\n\n const result = await response.json();\n const token = result?.data?.token as string | undefined;\n\n if (!token) {\n console.warn('[Auth] Token refresh response missing token');\n return null;\n }\n\n storeToken(token);\n return token;\n } catch (error) {\n console.error('[Auth] Token refresh error:', error);\n return null;\n }\n};\n\n/**\n * Attempt to refresh the token if not already refreshing.\n * Uses a module-level promise to prevent concurrent refresh requests.\n *\n * @returns The new authentication token\n * @throws {Error} If the token refresh fails (e.g., refresh token expired)\n * @internal Exported for testing purposes\n */\nconst attemptTokenRefresh = async (): Promise<string> => {\n if (!refreshPromise) {\n refreshPromise = refreshAccessToken().finally(() => {\n refreshPromise = null;\n });\n }\n\n const newToken = await refreshPromise;\n if (!newToken) {\n const error = new Error('Session expired. Please log in again.');\n error.name = 'TokenRefreshError';\n throw error;\n }\n\n return newToken;\n};\n\ntype FetchResponse<TData = any> = {\n data: TData;\n status?: number;\n headers?: Headers;\n};\n\ntype FetchOptions = {\n params?: any;\n signal?: AbortSignal;\n headers?: Record<string, string>;\n validateStatus?: ((status: number) => boolean) | null;\n responseType?: 'json' | 'blob' | 'text' | 'arrayBuffer';\n};\n\ntype FetchConfig = {\n signal?: AbortSignal;\n};\n\ninterface ErrorResponse {\n data: {\n data?: any;\n error: ApiError & { status?: number };\n };\n}\n\nclass FetchError extends Error {\n public name: string;\n public message: string;\n public response?: ErrorResponse;\n public code?: number;\n public status?: number;\n\n constructor(message: string, response?: ErrorResponse) {\n super(message);\n this.name = 'FetchError';\n this.message = message;\n this.response = response;\n this.code = response?.data?.error?.status;\n this.status = response?.data?.error?.status;\n\n // Ensure correct stack trace in error object\n if (Error.captureStackTrace) {\n Error.captureStackTrace(this, FetchError);\n }\n }\n}\n\nconst isFetchError = (error: unknown): error is FetchError => {\n return error instanceof FetchError;\n};\n\nconst getToken = (): string | null => {\n const fromLocalStorage = localStorage.getItem(STORAGE_KEYS.TOKEN);\n if (fromLocalStorage) {\n return JSON.parse(fromLocalStorage);\n }\n\n const fromCookie = getCookieValue(STORAGE_KEYS.TOKEN);\n return fromCookie ?? null;\n};\n\ntype FetchClient = {\n get: {\n (url: string, config: FetchOptions & { responseType: 'blob' }): Promise<FetchResponse<Blob>>;\n (url: string, config: FetchOptions & { responseType: 'text' }): Promise<FetchResponse<string>>;\n (\n url: string,\n config: FetchOptions & { responseType: 'arrayBuffer' }\n ): Promise<FetchResponse<ArrayBuffer>>;\n <TData = any>(url: string, config?: FetchOptions): Promise<FetchResponse<TData>>;\n };\n put: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n post: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n del: <TData = any>(url: string, config?: FetchOptions) => Promise<FetchResponse<TData>>;\n};\n\n/**\n * @public\n * @param {FetchConfig} [defaultOptions={}] - Fetch Configs.\n * @returns {FetchClient} A fetch client object with methods for making HTTP requests.\n * @description This is an abstraction around the native fetch exposed by a function. It provides a simple interface to handle API calls\n * to the Strapi backend.\n * @example\n * ```tsx\n * import { getFetchClient } from '@strapi/admin/admin';\n *\n * const myFunct = () => {\n * const { get } = getFetchClient();\n * const requestURL = \"/some-endpoint\";\n *\n * const { data } = await get(requestURL);\n *\n * return data;\n * };\n * ```\n */\nconst getFetchClient = (defaultOptions: FetchConfig = {}): FetchClient => {\n const backendURL = window.strapi.backendURL;\n\n /**\n * Create default headers with the current token.\n * This is a function so we can get a fresh token after refresh.\n */\n const getDefaultHeaders = () => ({\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n Authorization: `Bearer ${getToken()}`,\n });\n\n const isFormDataRequest = (body: unknown) => body instanceof FormData;\n const addPrependingSlash = (url: string) => (url.charAt(0) !== '/' ? `/${url}` : url);\n\n // This regular expression matches a string that starts with either \"http://\" or \"https://\" or any other protocol name in lower case letters, followed by \"://\" and ends with anything else\n const hasProtocol = (url: string) => new RegExp('^(?:[a-z+]+:)?//', 'i').test(url);\n\n // Check if the url has a prepending slash, if not add a slash\n const normalizeUrl = (url: string) => (hasProtocol(url) ? url : addPrependingSlash(url));\n\n // Add a response interceptor to return the response\n const responseInterceptor = async <TData = any>(\n response: Response,\n validateStatus?: FetchOptions['validateStatus'],\n responseType: NonNullable<FetchOptions['responseType']> = 'json'\n ): Promise<FetchResponse<TData>> => {\n if (responseType !== 'json') {\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n let result: Blob | string | ArrayBuffer;\n if (responseType === 'blob') {\n result = await response.blob();\n } else if (responseType === 'text') {\n result = await response.text();\n } else {\n result = await response.arrayBuffer();\n }\n\n return { data: result as TData, status: response.status, headers: response.headers };\n }\n\n if (response.status === 204) {\n return { data: {} as TData, status: response.status };\n }\n\n try {\n const result = await response.json();\n\n if (!response.ok && result.error && !validateStatus?.(response.status)) {\n const fetchError = new FetchError(result.error.message, { data: result });\n fetchError.status = response.status;\n throw fetchError;\n }\n\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Unknown Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n return { data: result };\n } catch (error) {\n // An empty 200 body causes `response.json()` to throw a `SyntaxError`. We treat\n // it as success and return an empty payload. We match on `error.name` rather\n // than `instanceof SyntaxError` because constructor identity differs across JS\n // realms — a Response from a different realm (e.g. undici under jsdom in tests,\n // a service worker or iframe in browsers) throws a `SyntaxError` whose\n // constructor is not the same identity as the one this module closes over. Name\n // comparison is realm-agnostic.\n if ((error as Error | null)?.name === 'SyntaxError' && response.ok) {\n return { data: [], status: response.status } as FetchResponse<any>;\n } else {\n throw error;\n }\n }\n };\n\n /**\n * Execute a fetch request with automatic token refresh on 401 errors.\n * @param url - The request URL (used to check if it's an auth path)\n * @param executeRequest - Function that performs the fetch (called again on retry with fresh headers)\n */\n const withTokenRefresh = async <TData>(\n url: string,\n executeRequest: () => Promise<FetchResponse<TData>>\n ): Promise<FetchResponse<TData>> => {\n try {\n return await executeRequest();\n } catch (error) {\n // Only attempt refresh for 401 errors on non-auth paths\n if (isFetchError(error) && error.status === 401 && !isAuthPath(url)) {\n try {\n await attemptTokenRefresh();\n // Retry - executeRequest will call getDefaultHeaders() again, picking up the new token\n return await executeRequest();\n } catch {\n // If refresh fails, throw the original error\n throw error;\n }\n }\n throw error;\n }\n };\n\n const paramsSerializer =\n <Param = unknown>(params?: Param) =>\n (url: string) => {\n if (params) {\n if (typeof params === 'string') {\n return `${url}?${params}`;\n }\n\n /**\n * TODO V6: Encoding should be enabled in this step\n * So the rest of the app doesn't have to worry about it,\n * It's considered a breaking change because it impacts any API request, including the user's custom code\n */\n const serializedParams = qs.stringify(params, { encode: false });\n if (serializedParams) {\n return `${url}?${serializedParams}`;\n }\n return url;\n }\n return url;\n };\n\n const addBaseUrl = (url: Parameters<typeof fetch>[0]) => {\n return `${backendURL}${url}`;\n };\n\n /**\n * We use the factory method because the options\n * are unique to the individual request\n */\n const makeCreateRequestUrl = (options?: FetchOptions) =>\n pipe(normalizeUrl, addBaseUrl, paramsSerializer(options?.params));\n\n const fetchClient: FetchClient = {\n get: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n const responseType = options?.responseType ?? 'json';\n\n const executeRequest = async () => {\n const { Authorization } = getDefaultHeaders();\n\n // For non-JSON response types, omit content negotiation headers that imply JSON\n const defaultHeaders = responseType === 'json' ? getDefaultHeaders() : { Authorization };\n\n const headers = new Headers({\n ...defaultHeaders,\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'GET',\n headers,\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus, responseType);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n post: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'POST',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n put: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'PUT',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n del: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'DELETE',\n headers,\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n };\n\n return fetchClient;\n};\n\nexport {\n getFetchClient,\n isFetchError,\n FetchError,\n attemptTokenRefresh,\n storeToken,\n setOnTokenUpdate,\n setOnSessionExpired,\n triggerSessionExpired,\n};\nexport type { FetchOptions, FetchResponse, FetchConfig, FetchClient, ErrorResponse };\n"],"names":["STORAGE_KEYS","TOKEN","refreshPromise","onTokenUpdate","onSessionExpired","setOnTokenUpdate","callback","setOnSessionExpired","triggerSessionExpired","isAuthPath","url","test","storeToken","token","wasPersistedToLocalStorage","Boolean","localStorage","getItem","setItem","JSON","stringify","setCookie","refreshAccessToken","backendURL","window","strapi","response","fetch","method","credentials","headers","Accept","ok","console","warn","status","result","json","data","error","attemptTokenRefresh","finally","newToken","Error","name","FetchError","message","code","captureStackTrace","isFetchError","getToken","fromLocalStorage","parse","fromCookie","getCookieValue","getFetchClient","defaultOptions","getDefaultHeaders","Authorization","isFormDataRequest","body","FormData","addPrependingSlash","charAt","hasProtocol","RegExp","normalizeUrl","responseInterceptor","validateStatus","responseType","fetchError","blob","text","arrayBuffer","withTokenRefresh","executeRequest","paramsSerializer","params","serializedParams","qs","encode","addBaseUrl","makeCreateRequestUrl","options","pipe","fetchClient","get","createRequestUrl","defaultHeaders","Headers","signal","post","delete","put","del"],"mappings":";;;;;;AAqBA,MAAMA,YAAAA,GAAe;IACnBC,KAAAA,EAAO,UAET,CAAA;AAEA;;AAEC,IACD,IAAIC,cAAAA,GAAgD,IAAA;AAEpD;;AAEC,IACD,IAAIC,aAAAA,GAAkD,IAAA;AAEtD;;;;;AAKC,IACD,IAAIC,gBAAAA,GAAwC,IAAA;AAE5C;;;;;;;;;;;IAYA,MAAMC,mBAAmB,CAACC,QAAAA,GAAAA;IACxBH,aAAAA,GAAgBG,QAAAA;AAClB;AAEA;;;;;;;IAQA,MAAMC,sBAAsB,CAACD,QAAAA,GAAAA;IAC3BF,gBAAAA,GAAmBE,QAAAA;AACrB;AAEA;;;AAGC,UACKE,qBAAAA,GAAwB,IAAA;AAC5BJ,IAAAA,gBAAAA,IAAAA;AACF;AAEA;;;;AAIC,IACD,MAAMK,UAAAA,GAAa,CAACC,GAAAA,GAAgB,wCAAA,CAAyCC,IAAI,CAACD,GAAAA,CAAAA;AAElF;;;;;;;;;IAUA,MAAME,aAAa,CAACC,KAAAA,GAAAA;;AAElB,IAAA,MAAMC,6BAA6BC,OAAAA,CAAQC,YAAAA,CAAaC,OAAO,CAACjB,aAAaC,KAAK,CAAA,CAAA;AAElF,IAAA,IAAIa,0BAAAA,EAA4B;AAC9BE,QAAAA,YAAAA,CAAaE,OAAO,CAAClB,YAAAA,CAAaC,KAAK,EAAEkB,IAAAA,CAAKC,SAAS,CAACP,KAAAA,CAAAA,CAAAA;IAC1D,CAAA,MAAO;QACLQ,iBAAAA,CAAUrB,YAAAA,CAAaC,KAAK,EAAEY,KAAAA,CAAAA;AAChC,IAAA;;AAGA,IAAA,IAAIV,aAAAA,EAAe;QACjBA,aAAAA,CAAcU,KAAAA,CAAAA;AAChB,IAAA;AACF;AAEA;;;;AAIC,IACD,MAAMS,kBAAAA,GAAqB,UAAA;AACzB,IAAA,MAAMC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;IAE3C,IAAI;AACF,QAAA,MAAMG,WAAW,MAAMC,KAAAA,CAAM,GAAGJ,UAAAA,CAAW,mBAAmB,CAAC,EAAE;YAC/DK,MAAAA,EAAQ,MAAA;YACRC,WAAAA,EAAa,SAAA;YACbC,OAAAA,EAAS;gBACPC,MAAAA,EAAQ,kBAAA;gBACR,cAAA,EAAgB;AAClB;AACF,SAAA,CAAA;QAEA,IAAI,CAACL,QAAAA,CAASM,EAAE,EAAE;AAChBC,YAAAA,OAAAA,CAAQC,IAAI,CAAC,0CAAA,EAA4CR,QAAAA,CAASS,MAAM,CAAA;YACxE,OAAO,IAAA;AACT,QAAA;QAEA,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;QAClC,MAAMxB,KAAAA,GAAQuB,QAAQE,IAAAA,EAAMzB,KAAAA;AAE5B,QAAA,IAAI,CAACA,KAAAA,EAAO;AACVoB,YAAAA,OAAAA,CAAQC,IAAI,CAAC,6CAAA,CAAA;YACb,OAAO,IAAA;AACT,QAAA;QAEAtB,UAAAA,CAAWC,KAAAA,CAAAA;QACX,OAAOA,KAAAA;AACT,IAAA,CAAA,CAAE,OAAO0B,KAAAA,EAAO;QACdN,OAAAA,CAAQM,KAAK,CAAC,6BAAA,EAA+BA,KAAAA,CAAAA;QAC7C,OAAO,IAAA;AACT,IAAA;AACF,CAAA;AAEA;;;;;;;AAOC,UACKC,mBAAAA,GAAsB,UAAA;AAC1B,IAAA,IAAI,CAACtC,cAAAA,EAAgB;QACnBA,cAAAA,GAAiBoB,kBAAAA,EAAAA,CAAqBmB,OAAO,CAAC,IAAA;YAC5CvC,cAAAA,GAAiB,IAAA;AACnB,QAAA,CAAA,CAAA;AACF,IAAA;AAEA,IAAA,MAAMwC,WAAW,MAAMxC,cAAAA;AACvB,IAAA,IAAI,CAACwC,QAAAA,EAAU;QACb,MAAMH,KAAAA,GAAQ,IAAII,KAAAA,CAAM,uCAAA,CAAA;AACxBJ,QAAAA,KAAAA,CAAMK,IAAI,GAAG,mBAAA;QACb,MAAML,KAAAA;AACR,IAAA;IAEA,OAAOG,QAAAA;AACT;AA2BA,MAAMG,UAAAA,SAAmBF,KAAAA,CAAAA;IAOvB,WAAA,CAAYG,OAAe,EAAEpB,QAAwB,CAAE;AACrD,QAAA,KAAK,CAACoB,OAAAA,CAAAA;QACN,IAAI,CAACF,IAAI,GAAG,YAAA;QACZ,IAAI,CAACE,OAAO,GAAGA,OAAAA;QACf,IAAI,CAACpB,QAAQ,GAAGA,QAAAA;AAChB,QAAA,IAAI,CAACqB,IAAI,GAAGrB,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;AACnC,QAAA,IAAI,CAACA,MAAM,GAAGT,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;;QAGrC,IAAIQ,KAAAA,CAAMK,iBAAiB,EAAE;YAC3BL,KAAAA,CAAMK,iBAAiB,CAAC,IAAI,EAAEH,UAAAA,CAAAA;AAChC,QAAA;AACF,IAAA;AACF;AAEA,MAAMI,eAAe,CAACV,KAAAA,GAAAA;AACpB,IAAA,OAAOA,KAAAA,YAAiBM,UAAAA;AAC1B;AAEA,MAAMK,QAAAA,GAAW,IAAA;AACf,IAAA,MAAMC,gBAAAA,GAAmBnC,YAAAA,CAAaC,OAAO,CAACjB,aAAaC,KAAK,CAAA;AAChE,IAAA,IAAIkD,gBAAAA,EAAkB;QACpB,OAAOhC,IAAAA,CAAKiC,KAAK,CAACD,gBAAAA,CAAAA;AACpB,IAAA;IAEA,MAAME,UAAAA,GAAaC,sBAAAA,CAAetD,YAAAA,CAAaC,KAAK,CAAA;AACpD,IAAA,OAAOoD,UAAAA,IAAc,IAAA;AACvB,CAAA;AAyBA;;;;;;;;;;;;;;;;;;;AAmBC,IACD,MAAME,cAAAA,GAAiB,CAACC,cAAAA,GAA8B,EAAE,GAAA;AACtD,IAAA,MAAMjC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;AAE3C;;;MAIA,MAAMkC,iBAAAA,GAAoB,KAAO;YAC/B1B,MAAAA,EAAQ,kBAAA;YACR,cAAA,EAAgB,kBAAA;YAChB2B,aAAAA,EAAe,CAAC,OAAO,EAAER,QAAAA,EAAAA,CAAAA;SAC3B,CAAA;IAEA,MAAMS,iBAAAA,GAAoB,CAACC,IAAAA,GAAkBA,IAAAA,YAAgBC,QAAAA;AAC7D,IAAA,MAAMC,kBAAAA,GAAqB,CAACpD,GAAAA,GAAiBA,GAAAA,CAAIqD,MAAM,CAAC,CAAA,CAAA,KAAO,GAAA,GAAM,CAAC,CAAC,EAAErD,GAAAA,CAAAA,CAAK,GAAGA,GAAAA;;IAGjF,MAAMsD,WAAAA,GAAc,CAACtD,GAAAA,GAAgB,IAAIuD,OAAO,kBAAA,EAAoB,GAAA,CAAA,CAAKtD,IAAI,CAACD,GAAAA,CAAAA;;AAG9E,IAAA,MAAMwD,eAAe,CAACxD,GAAAA,GAAiBsD,WAAAA,CAAYtD,GAAAA,CAAAA,GAAOA,MAAMoD,kBAAAA,CAAmBpD,GAAAA,CAAAA;;AAGnF,IAAA,MAAMyD,mBAAAA,GAAsB,OAC1BzC,QAAAA,EACA0C,cAAAA,EACAC,eAA0D,MAAM,GAAA;AAEhE,QAAA,IAAIA,iBAAiB,MAAA,EAAQ;YAC3B,IAAI,CAAC3C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,cAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAIlC,MAAAA;AACJ,YAAA,IAAIiC,iBAAiB,MAAA,EAAQ;gBAC3BjC,MAAAA,GAAS,MAAMV,SAAS6C,IAAI,EAAA;YAC9B,CAAA,MAAO,IAAIF,iBAAiB,MAAA,EAAQ;gBAClCjC,MAAAA,GAAS,MAAMV,SAAS8C,IAAI,EAAA;YAC9B,CAAA,MAAO;gBACLpC,MAAAA,GAAS,MAAMV,SAAS+C,WAAW,EAAA;AACrC,YAAA;YAEA,OAAO;gBAAEnC,IAAAA,EAAMF,MAAAA;AAAiBD,gBAAAA,MAAAA,EAAQT,SAASS,MAAM;AAAEL,gBAAAA,OAAAA,EAASJ,SAASI;AAAQ,aAAA;AACrF,QAAA;QAEA,IAAIJ,QAAAA,CAASS,MAAM,KAAK,GAAA,EAAK;YAC3B,OAAO;AAAEG,gBAAAA,IAAAA,EAAM,EAAC;AAAYH,gBAAAA,MAAAA,EAAQT,SAASS;AAAO,aAAA;AACtD,QAAA;QAEA,IAAI;YACF,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;YAElC,IAAI,CAACX,QAAAA,CAASM,EAAE,IAAII,MAAAA,CAAOG,KAAK,IAAI,CAAC6B,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;AACtE,gBAAA,MAAMmC,aAAa,IAAIzB,UAAAA,CAAWT,OAAOG,KAAK,CAACO,OAAO,EAAE;oBAAER,IAAAA,EAAMF;AAAO,iBAAA,CAAA;gBACvEkC,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAI,CAAC5C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,sBAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,OAAO;gBAAEhC,IAAAA,EAAMF;AAAO,aAAA;AACxB,QAAA,CAAA,CAAE,OAAOG,KAAAA,EAAO;;;;;;;;AAQd,YAAA,IAAI,KAACA,EAAwBK,IAAAA,KAAS,aAAA,IAAiBlB,QAAAA,CAASM,EAAE,EAAE;gBAClE,OAAO;AAAEM,oBAAAA,IAAAA,EAAM,EAAE;AAAEH,oBAAAA,MAAAA,EAAQT,SAASS;AAAO,iBAAA;YAC7C,CAAA,MAAO;gBACL,MAAMI,KAAAA;AACR,YAAA;AACF,QAAA;AACF,IAAA,CAAA;AAEA;;;;MAKA,MAAMmC,gBAAAA,GAAmB,OACvBhE,GAAAA,EACAiE,cAAAA,GAAAA;QAEA,IAAI;AACF,YAAA,OAAO,MAAMA,cAAAA,EAAAA;AACf,QAAA,CAAA,CAAE,OAAOpC,KAAAA,EAAO;;YAEd,IAAIU,YAAAA,CAAaV,UAAUA,KAAAA,CAAMJ,MAAM,KAAK,GAAA,IAAO,CAAC1B,WAAWC,GAAAA,CAAAA,EAAM;gBACnE,IAAI;oBACF,MAAM8B,mBAAAA,EAAAA;;AAEN,oBAAA,OAAO,MAAMmC,cAAAA,EAAAA;AACf,gBAAA,CAAA,CAAE,OAAM;;oBAEN,MAAMpC,KAAAA;AACR,gBAAA;AACF,YAAA;YACA,MAAMA,KAAAA;AACR,QAAA;AACF,IAAA,CAAA;IAEA,MAAMqC,gBAAAA,GACJ,CAAkBC,MAAAA,GAClB,CAACnE,GAAAA,GAAAA;AACC,YAAA,IAAImE,MAAAA,EAAQ;gBACV,IAAI,OAAOA,WAAW,QAAA,EAAU;AAC9B,oBAAA,OAAO,CAAA,EAAGnE,GAAAA,CAAI,CAAC,EAAEmE,MAAAA,CAAAA,CAAQ;AAC3B,gBAAA;AAEA;;;;AAIC,YACD,MAAMC,gBAAAA,GAAmBC,EAAAA,CAAG3D,SAAS,CAACyD,MAAAA,EAAQ;oBAAEG,MAAAA,EAAQ;AAAM,iBAAA,CAAA;AAC9D,gBAAA,IAAIF,gBAAAA,EAAkB;AACpB,oBAAA,OAAO,CAAA,EAAGpE,GAAAA,CAAI,CAAC,EAAEoE,gBAAAA,CAAAA,CAAkB;AACrC,gBAAA;gBACA,OAAOpE,GAAAA;AACT,YAAA;YACA,OAAOA,GAAAA;AACT,QAAA,CAAA;AAEF,IAAA,MAAMuE,aAAa,CAACvE,GAAAA,GAAAA;QAClB,OAAO,CAAA,EAAGa,aAAab,GAAAA,CAAAA,CAAK;AAC9B,IAAA,CAAA;AAEA;;;MAIA,MAAMwE,uBAAuB,CAACC,OAAAA,GAC5BC,KAAKlB,YAAAA,EAAce,UAAAA,EAAYL,iBAAiBO,OAAAA,EAASN,MAAAA,CAAAA,CAAAA;AAE3D,IAAA,MAAMQ,WAAAA,GAA2B;AAC/BC,QAAAA,GAAAA,EAAK,OAAc5E,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;YAC9C,MAAMd,YAAAA,GAAec,SAASd,YAAAA,IAAgB,MAAA;AAE9C,YAAA,MAAMM,cAAAA,GAAiB,UAAA;gBACrB,MAAM,EAAEjB,aAAa,EAAE,GAAGD,iBAAAA,EAAAA;;gBAG1B,MAAM+B,cAAAA,GAAiBnB,YAAAA,KAAiB,MAAA,GAASZ,iBAAAA,EAAAA,GAAsB;AAAEC,oBAAAA;AAAc,iBAAA;gBAEvF,MAAM5B,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGD,cAAc;AACjB,oBAAA,GAAGL,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBAEA,OAAOqC,mBAAAA,CAA2BzC,QAAAA,EAAUyD,OAAAA,EAASf,cAAAA,EAAgBC,YAAAA,CAAAA;AACvE,YAAA,CAAA;AAEA,YAAA,OAAOK,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAgB,IAAAA,EAAM,OACJjF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,MAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBACA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAkB,GAAAA,EAAK,OACHnF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBAEA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;AACAmB,QAAAA,GAAAA,EAAK,OAAcpF,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,QAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBACA,OAAOqC,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA;AACF,KAAA;IAEA,OAAOU,WAAAA;AACT;;;;;;;;;;;"}
|
|
@@ -10,6 +10,12 @@ const STORAGE_KEYS = {
|
|
|
10
10
|
/**
|
|
11
11
|
* Callback to notify the app when the token is updated (e.g., to update Redux state)
|
|
12
12
|
*/ let onTokenUpdate = null;
|
|
13
|
+
/**
|
|
14
|
+
* Callback to notify the app when the session has been terminated and the user
|
|
15
|
+
* should be redirected to the login page (e.g., refresh token rejected, idle
|
|
16
|
+
* session expired). The React layer registers a handler that clears local
|
|
17
|
+
* auth state and navigates to /auth/login.
|
|
18
|
+
*/ let onSessionExpired = null;
|
|
13
19
|
/**
|
|
14
20
|
* Set the callback that will be called when the token is refreshed.
|
|
15
21
|
* This allows the React layer to update Redux state when a token refresh occurs.
|
|
@@ -24,6 +30,22 @@ const STORAGE_KEYS = {
|
|
|
24
30
|
*/ const setOnTokenUpdate = (callback)=>{
|
|
25
31
|
onTokenUpdate = callback;
|
|
26
32
|
};
|
|
33
|
+
/**
|
|
34
|
+
* Set the callback that will be called when the active session is no longer
|
|
35
|
+
* valid (refresh token rejected by the server, or detected idle on the
|
|
36
|
+
* client). This lets the active tab redirect to /auth/login without waiting
|
|
37
|
+
* for the next user-initiated request to fail.
|
|
38
|
+
*
|
|
39
|
+
* @param callback - Function to call when the session ends, or null to clear
|
|
40
|
+
*/ const setOnSessionExpired = (callback)=>{
|
|
41
|
+
onSessionExpired = callback;
|
|
42
|
+
};
|
|
43
|
+
/**
|
|
44
|
+
* Trigger the registered session-expired callback, if any. Safe to call from
|
|
45
|
+
* non-React code (e.g., the RTK Query baseQuery 401 handler).
|
|
46
|
+
*/ const triggerSessionExpired = ()=>{
|
|
47
|
+
onSessionExpired?.();
|
|
48
|
+
};
|
|
27
49
|
/**
|
|
28
50
|
* Check if the URL is an auth path that should not trigger token refresh.
|
|
29
51
|
* Note: No ^ anchor since the URL may include the baseURL prefix (e.g., "http://localhost:1337/admin/login").
|
|
@@ -364,5 +386,5 @@ const getToken = ()=>{
|
|
|
364
386
|
return fetchClient;
|
|
365
387
|
};
|
|
366
388
|
|
|
367
|
-
export { FetchError, attemptTokenRefresh, getFetchClient, isFetchError, setOnTokenUpdate, storeToken };
|
|
389
|
+
export { FetchError, attemptTokenRefresh, getFetchClient, isFetchError, setOnSessionExpired, setOnTokenUpdate, storeToken, triggerSessionExpired };
|
|
368
390
|
//# sourceMappingURL=getFetchClient.mjs.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"getFetchClient.mjs","sources":["../../../../../admin/src/utils/getFetchClient.ts"],"sourcesContent":["import pipe from 'lodash/fp/pipe';\n// eslint-disable-next-line import/default\nimport qs from 'qs';\n\nimport { getCookieValue, setCookie } from './cookies';\n\nimport type { errors } from '@strapi/utils';\n\nexport type ApiError =\n | errors.ApplicationError\n | errors.ForbiddenError\n | errors.NotFoundError\n | errors.NotImplementedError\n | errors.PaginationError\n | errors.PayloadTooLargeError\n | errors.PolicyError\n | errors.RateLimitError\n | errors.UnauthorizedError\n | errors.ValidationError\n | errors.YupValidationError;\n\nconst STORAGE_KEYS = {\n TOKEN: 'jwtToken',\n USER: 'userInfo',\n};\n\n/**\n * Module-level promise to ensure only one token refresh happens at a time\n */\nlet refreshPromise: Promise<string | null> | null = null;\n\n/**\n * Callback to notify the app when the token is updated (e.g., to update Redux state)\n */\nlet onTokenUpdate: ((token: string) => void) | null = null;\n\n/**\n * Set the callback that will be called when the token is refreshed.\n * This allows the React layer to update Redux state when a token refresh occurs.\n *\n * @param callback - Function to call with the new token, or null to clear\n * @example\n * // In a React component\n * useEffect(() => {\n * setOnTokenUpdate((token) => dispatch(setToken(token)));\n * return () => setOnTokenUpdate(null);\n * }, [dispatch]);\n */\nconst setOnTokenUpdate = (callback: ((token: string) => void) | null): void => {\n onTokenUpdate = callback;\n};\n\n/**\n * Check if the URL is an auth path that should not trigger token refresh.\n * Note: No ^ anchor since the URL may include the baseURL prefix (e.g., \"http://localhost:1337/admin/login\").\n * This differs from baseQuery.ts which uses ^/admin since it receives normalized paths.\n */\nconst isAuthPath = (url: string) => /\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\n/**\n * Store the new token in the appropriate storage (localStorage or cookie)\n * and notify the app to update its state.\n *\n * Uses localStorage if the user selected \"remember me\" during login,\n * otherwise uses cookies for session-based storage.\n *\n * @param token - The JWT token to store\n * @internal Exported for testing purposes\n */\nconst storeToken = (token: string): void => {\n // Check if the original token was stored in localStorage (persist mode)\n const wasPersistedToLocalStorage = Boolean(localStorage.getItem(STORAGE_KEYS.TOKEN));\n\n if (wasPersistedToLocalStorage) {\n localStorage.setItem(STORAGE_KEYS.TOKEN, JSON.stringify(token));\n } else {\n setCookie(STORAGE_KEYS.TOKEN, token);\n }\n\n // Notify the app to update its state (e.g., Redux)\n if (onTokenUpdate) {\n onTokenUpdate(token);\n }\n};\n\n/**\n * Refresh the access token by calling the /admin/access-token endpoint.\n * This uses a low-level fetch to avoid recursion through the interceptor.\n * Returns the new token on success, or null on failure.\n */\nconst refreshAccessToken = async (): Promise<string | null> => {\n const backendURL = window.strapi.backendURL;\n\n try {\n const response = await fetch(`${backendURL}/admin/access-token`, {\n method: 'POST',\n credentials: 'include', // Include cookies for the refresh token\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n console.warn('[Auth] Token refresh failed with status:', response.status);\n return null;\n }\n\n const result = await response.json();\n const token = result?.data?.token as string | undefined;\n\n if (!token) {\n console.warn('[Auth] Token refresh response missing token');\n return null;\n }\n\n storeToken(token);\n return token;\n } catch (error) {\n console.error('[Auth] Token refresh error:', error);\n return null;\n }\n};\n\n/**\n * Attempt to refresh the token if not already refreshing.\n * Uses a module-level promise to prevent concurrent refresh requests.\n *\n * @returns The new authentication token\n * @throws {Error} If the token refresh fails (e.g., refresh token expired)\n * @internal Exported for testing purposes\n */\nconst attemptTokenRefresh = async (): Promise<string> => {\n if (!refreshPromise) {\n refreshPromise = refreshAccessToken().finally(() => {\n refreshPromise = null;\n });\n }\n\n const newToken = await refreshPromise;\n if (!newToken) {\n const error = new Error('Session expired. Please log in again.');\n error.name = 'TokenRefreshError';\n throw error;\n }\n\n return newToken;\n};\n\ntype FetchResponse<TData = any> = {\n data: TData;\n status?: number;\n headers?: Headers;\n};\n\ntype FetchOptions = {\n params?: any;\n signal?: AbortSignal;\n headers?: Record<string, string>;\n validateStatus?: ((status: number) => boolean) | null;\n responseType?: 'json' | 'blob' | 'text' | 'arrayBuffer';\n};\n\ntype FetchConfig = {\n signal?: AbortSignal;\n};\n\ninterface ErrorResponse {\n data: {\n data?: any;\n error: ApiError & { status?: number };\n };\n}\n\nclass FetchError extends Error {\n public name: string;\n public message: string;\n public response?: ErrorResponse;\n public code?: number;\n public status?: number;\n\n constructor(message: string, response?: ErrorResponse) {\n super(message);\n this.name = 'FetchError';\n this.message = message;\n this.response = response;\n this.code = response?.data?.error?.status;\n this.status = response?.data?.error?.status;\n\n // Ensure correct stack trace in error object\n if (Error.captureStackTrace) {\n Error.captureStackTrace(this, FetchError);\n }\n }\n}\n\nconst isFetchError = (error: unknown): error is FetchError => {\n return error instanceof FetchError;\n};\n\nconst getToken = (): string | null => {\n const fromLocalStorage = localStorage.getItem(STORAGE_KEYS.TOKEN);\n if (fromLocalStorage) {\n return JSON.parse(fromLocalStorage);\n }\n\n const fromCookie = getCookieValue(STORAGE_KEYS.TOKEN);\n return fromCookie ?? null;\n};\n\ntype FetchClient = {\n get: {\n (url: string, config: FetchOptions & { responseType: 'blob' }): Promise<FetchResponse<Blob>>;\n (url: string, config: FetchOptions & { responseType: 'text' }): Promise<FetchResponse<string>>;\n (\n url: string,\n config: FetchOptions & { responseType: 'arrayBuffer' }\n ): Promise<FetchResponse<ArrayBuffer>>;\n <TData = any>(url: string, config?: FetchOptions): Promise<FetchResponse<TData>>;\n };\n put: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n post: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n del: <TData = any>(url: string, config?: FetchOptions) => Promise<FetchResponse<TData>>;\n};\n\n/**\n * @public\n * @param {FetchConfig} [defaultOptions={}] - Fetch Configs.\n * @returns {FetchClient} A fetch client object with methods for making HTTP requests.\n * @description This is an abstraction around the native fetch exposed by a function. It provides a simple interface to handle API calls\n * to the Strapi backend.\n * @example\n * ```tsx\n * import { getFetchClient } from '@strapi/admin/admin';\n *\n * const myFunct = () => {\n * const { get } = getFetchClient();\n * const requestURL = \"/some-endpoint\";\n *\n * const { data } = await get(requestURL);\n *\n * return data;\n * };\n * ```\n */\nconst getFetchClient = (defaultOptions: FetchConfig = {}): FetchClient => {\n const backendURL = window.strapi.backendURL;\n\n /**\n * Create default headers with the current token.\n * This is a function so we can get a fresh token after refresh.\n */\n const getDefaultHeaders = () => ({\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n Authorization: `Bearer ${getToken()}`,\n });\n\n const isFormDataRequest = (body: unknown) => body instanceof FormData;\n const addPrependingSlash = (url: string) => (url.charAt(0) !== '/' ? `/${url}` : url);\n\n // This regular expression matches a string that starts with either \"http://\" or \"https://\" or any other protocol name in lower case letters, followed by \"://\" and ends with anything else\n const hasProtocol = (url: string) => new RegExp('^(?:[a-z+]+:)?//', 'i').test(url);\n\n // Check if the url has a prepending slash, if not add a slash\n const normalizeUrl = (url: string) => (hasProtocol(url) ? url : addPrependingSlash(url));\n\n // Add a response interceptor to return the response\n const responseInterceptor = async <TData = any>(\n response: Response,\n validateStatus?: FetchOptions['validateStatus'],\n responseType: NonNullable<FetchOptions['responseType']> = 'json'\n ): Promise<FetchResponse<TData>> => {\n if (responseType !== 'json') {\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n let result: Blob | string | ArrayBuffer;\n if (responseType === 'blob') {\n result = await response.blob();\n } else if (responseType === 'text') {\n result = await response.text();\n } else {\n result = await response.arrayBuffer();\n }\n\n return { data: result as TData, status: response.status, headers: response.headers };\n }\n\n if (response.status === 204) {\n return { data: {} as TData, status: response.status };\n }\n\n try {\n const result = await response.json();\n\n if (!response.ok && result.error && !validateStatus?.(response.status)) {\n const fetchError = new FetchError(result.error.message, { data: result });\n fetchError.status = response.status;\n throw fetchError;\n }\n\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Unknown Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n return { data: result };\n } catch (error) {\n // An empty 200 body causes `response.json()` to throw a `SyntaxError`. We treat\n // it as success and return an empty payload. We match on `error.name` rather\n // than `instanceof SyntaxError` because constructor identity differs across JS\n // realms — a Response from a different realm (e.g. undici under jsdom in tests,\n // a service worker or iframe in browsers) throws a `SyntaxError` whose\n // constructor is not the same identity as the one this module closes over. Name\n // comparison is realm-agnostic.\n if ((error as Error | null)?.name === 'SyntaxError' && response.ok) {\n return { data: [], status: response.status } as FetchResponse<any>;\n } else {\n throw error;\n }\n }\n };\n\n /**\n * Execute a fetch request with automatic token refresh on 401 errors.\n * @param url - The request URL (used to check if it's an auth path)\n * @param executeRequest - Function that performs the fetch (called again on retry with fresh headers)\n */\n const withTokenRefresh = async <TData>(\n url: string,\n executeRequest: () => Promise<FetchResponse<TData>>\n ): Promise<FetchResponse<TData>> => {\n try {\n return await executeRequest();\n } catch (error) {\n // Only attempt refresh for 401 errors on non-auth paths\n if (isFetchError(error) && error.status === 401 && !isAuthPath(url)) {\n try {\n await attemptTokenRefresh();\n // Retry - executeRequest will call getDefaultHeaders() again, picking up the new token\n return await executeRequest();\n } catch {\n // If refresh fails, throw the original error\n throw error;\n }\n }\n throw error;\n }\n };\n\n const paramsSerializer =\n <Param = unknown>(params?: Param) =>\n (url: string) => {\n if (params) {\n if (typeof params === 'string') {\n return `${url}?${params}`;\n }\n\n /**\n * TODO V6: Encoding should be enabled in this step\n * So the rest of the app doesn't have to worry about it,\n * It's considered a breaking change because it impacts any API request, including the user's custom code\n */\n const serializedParams = qs.stringify(params, { encode: false });\n if (serializedParams) {\n return `${url}?${serializedParams}`;\n }\n return url;\n }\n return url;\n };\n\n const addBaseUrl = (url: Parameters<typeof fetch>[0]) => {\n return `${backendURL}${url}`;\n };\n\n /**\n * We use the factory method because the options\n * are unique to the individual request\n */\n const makeCreateRequestUrl = (options?: FetchOptions) =>\n pipe(normalizeUrl, addBaseUrl, paramsSerializer(options?.params));\n\n const fetchClient: FetchClient = {\n get: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n const responseType = options?.responseType ?? 'json';\n\n const executeRequest = async () => {\n const { Authorization } = getDefaultHeaders();\n\n // For non-JSON response types, omit content negotiation headers that imply JSON\n const defaultHeaders = responseType === 'json' ? getDefaultHeaders() : { Authorization };\n\n const headers = new Headers({\n ...defaultHeaders,\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'GET',\n headers,\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus, responseType);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n post: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'POST',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n put: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'PUT',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n del: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'DELETE',\n headers,\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n };\n\n return fetchClient;\n};\n\nexport {\n getFetchClient,\n isFetchError,\n FetchError,\n attemptTokenRefresh,\n storeToken,\n setOnTokenUpdate,\n};\nexport type { FetchOptions, FetchResponse, FetchConfig, FetchClient, ErrorResponse };\n"],"names":["STORAGE_KEYS","TOKEN","refreshPromise","onTokenUpdate","setOnTokenUpdate","callback","isAuthPath","url","test","storeToken","token","wasPersistedToLocalStorage","Boolean","localStorage","getItem","setItem","JSON","stringify","setCookie","refreshAccessToken","backendURL","window","strapi","response","fetch","method","credentials","headers","Accept","ok","console","warn","status","result","json","data","error","attemptTokenRefresh","finally","newToken","Error","name","FetchError","message","code","captureStackTrace","isFetchError","getToken","fromLocalStorage","parse","fromCookie","getCookieValue","getFetchClient","defaultOptions","getDefaultHeaders","Authorization","isFormDataRequest","body","FormData","addPrependingSlash","charAt","hasProtocol","RegExp","normalizeUrl","responseInterceptor","validateStatus","responseType","fetchError","blob","text","arrayBuffer","withTokenRefresh","executeRequest","paramsSerializer","params","serializedParams","qs","encode","addBaseUrl","makeCreateRequestUrl","options","pipe","fetchClient","get","createRequestUrl","defaultHeaders","Headers","signal","post","delete","put","del"],"mappings":";;;;AAqBA,MAAMA,YAAAA,GAAe;IACnBC,KAAAA,EAAO,UAET,CAAA;AAEA;;AAEC,IACD,IAAIC,cAAAA,GAAgD,IAAA;AAEpD;;AAEC,IACD,IAAIC,aAAAA,GAAkD,IAAA;AAEtD;;;;;;;;;;;IAYA,MAAMC,mBAAmB,CAACC,QAAAA,GAAAA;IACxBF,aAAAA,GAAgBE,QAAAA;AAClB;AAEA;;;;AAIC,IACD,MAAMC,UAAAA,GAAa,CAACC,GAAAA,GAAgB,wCAAA,CAAyCC,IAAI,CAACD,GAAAA,CAAAA;AAElF;;;;;;;;;IAUA,MAAME,aAAa,CAACC,KAAAA,GAAAA;;AAElB,IAAA,MAAMC,6BAA6BC,OAAAA,CAAQC,YAAAA,CAAaC,OAAO,CAACd,aAAaC,KAAK,CAAA,CAAA;AAElF,IAAA,IAAIU,0BAAAA,EAA4B;AAC9BE,QAAAA,YAAAA,CAAaE,OAAO,CAACf,YAAAA,CAAaC,KAAK,EAAEe,IAAAA,CAAKC,SAAS,CAACP,KAAAA,CAAAA,CAAAA;IAC1D,CAAA,MAAO;QACLQ,SAAAA,CAAUlB,YAAAA,CAAaC,KAAK,EAAES,KAAAA,CAAAA;AAChC,IAAA;;AAGA,IAAA,IAAIP,aAAAA,EAAe;QACjBA,aAAAA,CAAcO,KAAAA,CAAAA;AAChB,IAAA;AACF;AAEA;;;;AAIC,IACD,MAAMS,kBAAAA,GAAqB,UAAA;AACzB,IAAA,MAAMC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;IAE3C,IAAI;AACF,QAAA,MAAMG,WAAW,MAAMC,KAAAA,CAAM,GAAGJ,UAAAA,CAAW,mBAAmB,CAAC,EAAE;YAC/DK,MAAAA,EAAQ,MAAA;YACRC,WAAAA,EAAa,SAAA;YACbC,OAAAA,EAAS;gBACPC,MAAAA,EAAQ,kBAAA;gBACR,cAAA,EAAgB;AAClB;AACF,SAAA,CAAA;QAEA,IAAI,CAACL,QAAAA,CAASM,EAAE,EAAE;AAChBC,YAAAA,OAAAA,CAAQC,IAAI,CAAC,0CAAA,EAA4CR,QAAAA,CAASS,MAAM,CAAA;YACxE,OAAO,IAAA;AACT,QAAA;QAEA,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;QAClC,MAAMxB,KAAAA,GAAQuB,QAAQE,IAAAA,EAAMzB,KAAAA;AAE5B,QAAA,IAAI,CAACA,KAAAA,EAAO;AACVoB,YAAAA,OAAAA,CAAQC,IAAI,CAAC,6CAAA,CAAA;YACb,OAAO,IAAA;AACT,QAAA;QAEAtB,UAAAA,CAAWC,KAAAA,CAAAA;QACX,OAAOA,KAAAA;AACT,IAAA,CAAA,CAAE,OAAO0B,KAAAA,EAAO;QACdN,OAAAA,CAAQM,KAAK,CAAC,6BAAA,EAA+BA,KAAAA,CAAAA;QAC7C,OAAO,IAAA;AACT,IAAA;AACF,CAAA;AAEA;;;;;;;AAOC,UACKC,mBAAAA,GAAsB,UAAA;AAC1B,IAAA,IAAI,CAACnC,cAAAA,EAAgB;QACnBA,cAAAA,GAAiBiB,kBAAAA,EAAAA,CAAqBmB,OAAO,CAAC,IAAA;YAC5CpC,cAAAA,GAAiB,IAAA;AACnB,QAAA,CAAA,CAAA;AACF,IAAA;AAEA,IAAA,MAAMqC,WAAW,MAAMrC,cAAAA;AACvB,IAAA,IAAI,CAACqC,QAAAA,EAAU;QACb,MAAMH,KAAAA,GAAQ,IAAII,KAAAA,CAAM,uCAAA,CAAA;AACxBJ,QAAAA,KAAAA,CAAMK,IAAI,GAAG,mBAAA;QACb,MAAML,KAAAA;AACR,IAAA;IAEA,OAAOG,QAAAA;AACT;AA2BA,MAAMG,UAAAA,SAAmBF,KAAAA,CAAAA;IAOvB,WAAA,CAAYG,OAAe,EAAEpB,QAAwB,CAAE;AACrD,QAAA,KAAK,CAACoB,OAAAA,CAAAA;QACN,IAAI,CAACF,IAAI,GAAG,YAAA;QACZ,IAAI,CAACE,OAAO,GAAGA,OAAAA;QACf,IAAI,CAACpB,QAAQ,GAAGA,QAAAA;AAChB,QAAA,IAAI,CAACqB,IAAI,GAAGrB,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;AACnC,QAAA,IAAI,CAACA,MAAM,GAAGT,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;;QAGrC,IAAIQ,KAAAA,CAAMK,iBAAiB,EAAE;YAC3BL,KAAAA,CAAMK,iBAAiB,CAAC,IAAI,EAAEH,UAAAA,CAAAA;AAChC,QAAA;AACF,IAAA;AACF;AAEA,MAAMI,eAAe,CAACV,KAAAA,GAAAA;AACpB,IAAA,OAAOA,KAAAA,YAAiBM,UAAAA;AAC1B;AAEA,MAAMK,QAAAA,GAAW,IAAA;AACf,IAAA,MAAMC,gBAAAA,GAAmBnC,YAAAA,CAAaC,OAAO,CAACd,aAAaC,KAAK,CAAA;AAChE,IAAA,IAAI+C,gBAAAA,EAAkB;QACpB,OAAOhC,IAAAA,CAAKiC,KAAK,CAACD,gBAAAA,CAAAA;AACpB,IAAA;IAEA,MAAME,UAAAA,GAAaC,cAAAA,CAAenD,YAAAA,CAAaC,KAAK,CAAA;AACpD,IAAA,OAAOiD,UAAAA,IAAc,IAAA;AACvB,CAAA;AAyBA;;;;;;;;;;;;;;;;;;;AAmBC,IACD,MAAME,cAAAA,GAAiB,CAACC,cAAAA,GAA8B,EAAE,GAAA;AACtD,IAAA,MAAMjC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;AAE3C;;;MAIA,MAAMkC,iBAAAA,GAAoB,KAAO;YAC/B1B,MAAAA,EAAQ,kBAAA;YACR,cAAA,EAAgB,kBAAA;YAChB2B,aAAAA,EAAe,CAAC,OAAO,EAAER,QAAAA,EAAAA,CAAAA;SAC3B,CAAA;IAEA,MAAMS,iBAAAA,GAAoB,CAACC,IAAAA,GAAkBA,IAAAA,YAAgBC,QAAAA;AAC7D,IAAA,MAAMC,kBAAAA,GAAqB,CAACpD,GAAAA,GAAiBA,GAAAA,CAAIqD,MAAM,CAAC,CAAA,CAAA,KAAO,GAAA,GAAM,CAAC,CAAC,EAAErD,GAAAA,CAAAA,CAAK,GAAGA,GAAAA;;IAGjF,MAAMsD,WAAAA,GAAc,CAACtD,GAAAA,GAAgB,IAAIuD,OAAO,kBAAA,EAAoB,GAAA,CAAA,CAAKtD,IAAI,CAACD,GAAAA,CAAAA;;AAG9E,IAAA,MAAMwD,eAAe,CAACxD,GAAAA,GAAiBsD,WAAAA,CAAYtD,GAAAA,CAAAA,GAAOA,MAAMoD,kBAAAA,CAAmBpD,GAAAA,CAAAA;;AAGnF,IAAA,MAAMyD,mBAAAA,GAAsB,OAC1BzC,QAAAA,EACA0C,cAAAA,EACAC,eAA0D,MAAM,GAAA;AAEhE,QAAA,IAAIA,iBAAiB,MAAA,EAAQ;YAC3B,IAAI,CAAC3C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,cAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAIlC,MAAAA;AACJ,YAAA,IAAIiC,iBAAiB,MAAA,EAAQ;gBAC3BjC,MAAAA,GAAS,MAAMV,SAAS6C,IAAI,EAAA;YAC9B,CAAA,MAAO,IAAIF,iBAAiB,MAAA,EAAQ;gBAClCjC,MAAAA,GAAS,MAAMV,SAAS8C,IAAI,EAAA;YAC9B,CAAA,MAAO;gBACLpC,MAAAA,GAAS,MAAMV,SAAS+C,WAAW,EAAA;AACrC,YAAA;YAEA,OAAO;gBAAEnC,IAAAA,EAAMF,MAAAA;AAAiBD,gBAAAA,MAAAA,EAAQT,SAASS,MAAM;AAAEL,gBAAAA,OAAAA,EAASJ,SAASI;AAAQ,aAAA;AACrF,QAAA;QAEA,IAAIJ,QAAAA,CAASS,MAAM,KAAK,GAAA,EAAK;YAC3B,OAAO;AAAEG,gBAAAA,IAAAA,EAAM,EAAC;AAAYH,gBAAAA,MAAAA,EAAQT,SAASS;AAAO,aAAA;AACtD,QAAA;QAEA,IAAI;YACF,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;YAElC,IAAI,CAACX,QAAAA,CAASM,EAAE,IAAII,MAAAA,CAAOG,KAAK,IAAI,CAAC6B,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;AACtE,gBAAA,MAAMmC,aAAa,IAAIzB,UAAAA,CAAWT,OAAOG,KAAK,CAACO,OAAO,EAAE;oBAAER,IAAAA,EAAMF;AAAO,iBAAA,CAAA;gBACvEkC,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAI,CAAC5C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,sBAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,OAAO;gBAAEhC,IAAAA,EAAMF;AAAO,aAAA;AACxB,QAAA,CAAA,CAAE,OAAOG,KAAAA,EAAO;;;;;;;;AAQd,YAAA,IAAI,KAACA,EAAwBK,IAAAA,KAAS,aAAA,IAAiBlB,QAAAA,CAASM,EAAE,EAAE;gBAClE,OAAO;AAAEM,oBAAAA,IAAAA,EAAM,EAAE;AAAEH,oBAAAA,MAAAA,EAAQT,SAASS;AAAO,iBAAA;YAC7C,CAAA,MAAO;gBACL,MAAMI,KAAAA;AACR,YAAA;AACF,QAAA;AACF,IAAA,CAAA;AAEA;;;;MAKA,MAAMmC,gBAAAA,GAAmB,OACvBhE,GAAAA,EACAiE,cAAAA,GAAAA;QAEA,IAAI;AACF,YAAA,OAAO,MAAMA,cAAAA,EAAAA;AACf,QAAA,CAAA,CAAE,OAAOpC,KAAAA,EAAO;;YAEd,IAAIU,YAAAA,CAAaV,UAAUA,KAAAA,CAAMJ,MAAM,KAAK,GAAA,IAAO,CAAC1B,WAAWC,GAAAA,CAAAA,EAAM;gBACnE,IAAI;oBACF,MAAM8B,mBAAAA,EAAAA;;AAEN,oBAAA,OAAO,MAAMmC,cAAAA,EAAAA;AACf,gBAAA,CAAA,CAAE,OAAM;;oBAEN,MAAMpC,KAAAA;AACR,gBAAA;AACF,YAAA;YACA,MAAMA,KAAAA;AACR,QAAA;AACF,IAAA,CAAA;IAEA,MAAMqC,gBAAAA,GACJ,CAAkBC,MAAAA,GAClB,CAACnE,GAAAA,GAAAA;AACC,YAAA,IAAImE,MAAAA,EAAQ;gBACV,IAAI,OAAOA,WAAW,QAAA,EAAU;AAC9B,oBAAA,OAAO,CAAA,EAAGnE,GAAAA,CAAI,CAAC,EAAEmE,MAAAA,CAAAA,CAAQ;AAC3B,gBAAA;AAEA;;;;AAIC,YACD,MAAMC,gBAAAA,GAAmBC,WAAAA,CAAG3D,SAAS,CAACyD,MAAAA,EAAQ;oBAAEG,MAAAA,EAAQ;AAAM,iBAAA,CAAA;AAC9D,gBAAA,IAAIF,gBAAAA,EAAkB;AACpB,oBAAA,OAAO,CAAA,EAAGpE,GAAAA,CAAI,CAAC,EAAEoE,gBAAAA,CAAAA,CAAkB;AACrC,gBAAA;gBACA,OAAOpE,GAAAA;AACT,YAAA;YACA,OAAOA,GAAAA;AACT,QAAA,CAAA;AAEF,IAAA,MAAMuE,aAAa,CAACvE,GAAAA,GAAAA;QAClB,OAAO,CAAA,EAAGa,aAAab,GAAAA,CAAAA,CAAK;AAC9B,IAAA,CAAA;AAEA;;;MAIA,MAAMwE,uBAAuB,CAACC,OAAAA,GAC5BC,KAAKlB,YAAAA,EAAce,UAAAA,EAAYL,iBAAiBO,OAAAA,EAASN,MAAAA,CAAAA,CAAAA;AAE3D,IAAA,MAAMQ,WAAAA,GAA2B;AAC/BC,QAAAA,GAAAA,EAAK,OAAc5E,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;YAC9C,MAAMd,YAAAA,GAAec,SAASd,YAAAA,IAAgB,MAAA;AAE9C,YAAA,MAAMM,cAAAA,GAAiB,UAAA;gBACrB,MAAM,EAAEjB,aAAa,EAAE,GAAGD,iBAAAA,EAAAA;;gBAG1B,MAAM+B,cAAAA,GAAiBnB,YAAAA,KAAiB,MAAA,GAASZ,iBAAAA,EAAAA,GAAsB;AAAEC,oBAAAA;AAAc,iBAAA;gBAEvF,MAAM5B,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGD,cAAc;AACjB,oBAAA,GAAGL,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBAEA,OAAOqC,mBAAAA,CAA2BzC,QAAAA,EAAUyD,OAAAA,EAASf,cAAAA,EAAgBC,YAAAA,CAAAA;AACvE,YAAA,CAAA;AAEA,YAAA,OAAOK,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAgB,IAAAA,EAAM,OACJjF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,MAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBACA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAkB,GAAAA,EAAK,OACHnF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBAEA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;AACAmB,QAAAA,GAAAA,EAAK,OAAcpF,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,QAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBACA,OAAOqC,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA;AACF,KAAA;IAEA,OAAOU,WAAAA;AACT;;;;"}
|
|
1
|
+
{"version":3,"file":"getFetchClient.mjs","sources":["../../../../../admin/src/utils/getFetchClient.ts"],"sourcesContent":["import pipe from 'lodash/fp/pipe';\n// eslint-disable-next-line import/default\nimport qs from 'qs';\n\nimport { getCookieValue, setCookie } from './cookies';\n\nimport type { errors } from '@strapi/utils';\n\nexport type ApiError =\n | errors.ApplicationError\n | errors.ForbiddenError\n | errors.NotFoundError\n | errors.NotImplementedError\n | errors.PaginationError\n | errors.PayloadTooLargeError\n | errors.PolicyError\n | errors.RateLimitError\n | errors.UnauthorizedError\n | errors.ValidationError\n | errors.YupValidationError;\n\nconst STORAGE_KEYS = {\n TOKEN: 'jwtToken',\n USER: 'userInfo',\n};\n\n/**\n * Module-level promise to ensure only one token refresh happens at a time\n */\nlet refreshPromise: Promise<string | null> | null = null;\n\n/**\n * Callback to notify the app when the token is updated (e.g., to update Redux state)\n */\nlet onTokenUpdate: ((token: string) => void) | null = null;\n\n/**\n * Callback to notify the app when the session has been terminated and the user\n * should be redirected to the login page (e.g., refresh token rejected, idle\n * session expired). The React layer registers a handler that clears local\n * auth state and navigates to /auth/login.\n */\nlet onSessionExpired: (() => void) | null = null;\n\n/**\n * Set the callback that will be called when the token is refreshed.\n * This allows the React layer to update Redux state when a token refresh occurs.\n *\n * @param callback - Function to call with the new token, or null to clear\n * @example\n * // In a React component\n * useEffect(() => {\n * setOnTokenUpdate((token) => dispatch(setToken(token)));\n * return () => setOnTokenUpdate(null);\n * }, [dispatch]);\n */\nconst setOnTokenUpdate = (callback: ((token: string) => void) | null): void => {\n onTokenUpdate = callback;\n};\n\n/**\n * Set the callback that will be called when the active session is no longer\n * valid (refresh token rejected by the server, or detected idle on the\n * client). This lets the active tab redirect to /auth/login without waiting\n * for the next user-initiated request to fail.\n *\n * @param callback - Function to call when the session ends, or null to clear\n */\nconst setOnSessionExpired = (callback: (() => void) | null): void => {\n onSessionExpired = callback;\n};\n\n/**\n * Trigger the registered session-expired callback, if any. Safe to call from\n * non-React code (e.g., the RTK Query baseQuery 401 handler).\n */\nconst triggerSessionExpired = (): void => {\n onSessionExpired?.();\n};\n\n/**\n * Check if the URL is an auth path that should not trigger token refresh.\n * Note: No ^ anchor since the URL may include the baseURL prefix (e.g., \"http://localhost:1337/admin/login\").\n * This differs from baseQuery.ts which uses ^/admin since it receives normalized paths.\n */\nconst isAuthPath = (url: string) => /\\/admin\\/(login|logout|access-token)\\b/.test(url);\n\n/**\n * Store the new token in the appropriate storage (localStorage or cookie)\n * and notify the app to update its state.\n *\n * Uses localStorage if the user selected \"remember me\" during login,\n * otherwise uses cookies for session-based storage.\n *\n * @param token - The JWT token to store\n * @internal Exported for testing purposes\n */\nconst storeToken = (token: string): void => {\n // Check if the original token was stored in localStorage (persist mode)\n const wasPersistedToLocalStorage = Boolean(localStorage.getItem(STORAGE_KEYS.TOKEN));\n\n if (wasPersistedToLocalStorage) {\n localStorage.setItem(STORAGE_KEYS.TOKEN, JSON.stringify(token));\n } else {\n setCookie(STORAGE_KEYS.TOKEN, token);\n }\n\n // Notify the app to update its state (e.g., Redux)\n if (onTokenUpdate) {\n onTokenUpdate(token);\n }\n};\n\n/**\n * Refresh the access token by calling the /admin/access-token endpoint.\n * This uses a low-level fetch to avoid recursion through the interceptor.\n * Returns the new token on success, or null on failure.\n */\nconst refreshAccessToken = async (): Promise<string | null> => {\n const backendURL = window.strapi.backendURL;\n\n try {\n const response = await fetch(`${backendURL}/admin/access-token`, {\n method: 'POST',\n credentials: 'include', // Include cookies for the refresh token\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n console.warn('[Auth] Token refresh failed with status:', response.status);\n return null;\n }\n\n const result = await response.json();\n const token = result?.data?.token as string | undefined;\n\n if (!token) {\n console.warn('[Auth] Token refresh response missing token');\n return null;\n }\n\n storeToken(token);\n return token;\n } catch (error) {\n console.error('[Auth] Token refresh error:', error);\n return null;\n }\n};\n\n/**\n * Attempt to refresh the token if not already refreshing.\n * Uses a module-level promise to prevent concurrent refresh requests.\n *\n * @returns The new authentication token\n * @throws {Error} If the token refresh fails (e.g., refresh token expired)\n * @internal Exported for testing purposes\n */\nconst attemptTokenRefresh = async (): Promise<string> => {\n if (!refreshPromise) {\n refreshPromise = refreshAccessToken().finally(() => {\n refreshPromise = null;\n });\n }\n\n const newToken = await refreshPromise;\n if (!newToken) {\n const error = new Error('Session expired. Please log in again.');\n error.name = 'TokenRefreshError';\n throw error;\n }\n\n return newToken;\n};\n\ntype FetchResponse<TData = any> = {\n data: TData;\n status?: number;\n headers?: Headers;\n};\n\ntype FetchOptions = {\n params?: any;\n signal?: AbortSignal;\n headers?: Record<string, string>;\n validateStatus?: ((status: number) => boolean) | null;\n responseType?: 'json' | 'blob' | 'text' | 'arrayBuffer';\n};\n\ntype FetchConfig = {\n signal?: AbortSignal;\n};\n\ninterface ErrorResponse {\n data: {\n data?: any;\n error: ApiError & { status?: number };\n };\n}\n\nclass FetchError extends Error {\n public name: string;\n public message: string;\n public response?: ErrorResponse;\n public code?: number;\n public status?: number;\n\n constructor(message: string, response?: ErrorResponse) {\n super(message);\n this.name = 'FetchError';\n this.message = message;\n this.response = response;\n this.code = response?.data?.error?.status;\n this.status = response?.data?.error?.status;\n\n // Ensure correct stack trace in error object\n if (Error.captureStackTrace) {\n Error.captureStackTrace(this, FetchError);\n }\n }\n}\n\nconst isFetchError = (error: unknown): error is FetchError => {\n return error instanceof FetchError;\n};\n\nconst getToken = (): string | null => {\n const fromLocalStorage = localStorage.getItem(STORAGE_KEYS.TOKEN);\n if (fromLocalStorage) {\n return JSON.parse(fromLocalStorage);\n }\n\n const fromCookie = getCookieValue(STORAGE_KEYS.TOKEN);\n return fromCookie ?? null;\n};\n\ntype FetchClient = {\n get: {\n (url: string, config: FetchOptions & { responseType: 'blob' }): Promise<FetchResponse<Blob>>;\n (url: string, config: FetchOptions & { responseType: 'text' }): Promise<FetchResponse<string>>;\n (\n url: string,\n config: FetchOptions & { responseType: 'arrayBuffer' }\n ): Promise<FetchResponse<ArrayBuffer>>;\n <TData = any>(url: string, config?: FetchOptions): Promise<FetchResponse<TData>>;\n };\n put: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n post: <TData = any, TSend = any>(\n url: string,\n data?: TSend,\n config?: FetchOptions\n ) => Promise<FetchResponse<TData>>;\n del: <TData = any>(url: string, config?: FetchOptions) => Promise<FetchResponse<TData>>;\n};\n\n/**\n * @public\n * @param {FetchConfig} [defaultOptions={}] - Fetch Configs.\n * @returns {FetchClient} A fetch client object with methods for making HTTP requests.\n * @description This is an abstraction around the native fetch exposed by a function. It provides a simple interface to handle API calls\n * to the Strapi backend.\n * @example\n * ```tsx\n * import { getFetchClient } from '@strapi/admin/admin';\n *\n * const myFunct = () => {\n * const { get } = getFetchClient();\n * const requestURL = \"/some-endpoint\";\n *\n * const { data } = await get(requestURL);\n *\n * return data;\n * };\n * ```\n */\nconst getFetchClient = (defaultOptions: FetchConfig = {}): FetchClient => {\n const backendURL = window.strapi.backendURL;\n\n /**\n * Create default headers with the current token.\n * This is a function so we can get a fresh token after refresh.\n */\n const getDefaultHeaders = () => ({\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n Authorization: `Bearer ${getToken()}`,\n });\n\n const isFormDataRequest = (body: unknown) => body instanceof FormData;\n const addPrependingSlash = (url: string) => (url.charAt(0) !== '/' ? `/${url}` : url);\n\n // This regular expression matches a string that starts with either \"http://\" or \"https://\" or any other protocol name in lower case letters, followed by \"://\" and ends with anything else\n const hasProtocol = (url: string) => new RegExp('^(?:[a-z+]+:)?//', 'i').test(url);\n\n // Check if the url has a prepending slash, if not add a slash\n const normalizeUrl = (url: string) => (hasProtocol(url) ? url : addPrependingSlash(url));\n\n // Add a response interceptor to return the response\n const responseInterceptor = async <TData = any>(\n response: Response,\n validateStatus?: FetchOptions['validateStatus'],\n responseType: NonNullable<FetchOptions['responseType']> = 'json'\n ): Promise<FetchResponse<TData>> => {\n if (responseType !== 'json') {\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n let result: Blob | string | ArrayBuffer;\n if (responseType === 'blob') {\n result = await response.blob();\n } else if (responseType === 'text') {\n result = await response.text();\n } else {\n result = await response.arrayBuffer();\n }\n\n return { data: result as TData, status: response.status, headers: response.headers };\n }\n\n if (response.status === 204) {\n return { data: {} as TData, status: response.status };\n }\n\n try {\n const result = await response.json();\n\n if (!response.ok && result.error && !validateStatus?.(response.status)) {\n const fetchError = new FetchError(result.error.message, { data: result });\n fetchError.status = response.status;\n throw fetchError;\n }\n\n if (!response.ok && !validateStatus?.(response.status)) {\n const fetchError = new FetchError('Unknown Server Error');\n fetchError.status = response.status;\n throw fetchError;\n }\n\n return { data: result };\n } catch (error) {\n // An empty 200 body causes `response.json()` to throw a `SyntaxError`. We treat\n // it as success and return an empty payload. We match on `error.name` rather\n // than `instanceof SyntaxError` because constructor identity differs across JS\n // realms — a Response from a different realm (e.g. undici under jsdom in tests,\n // a service worker or iframe in browsers) throws a `SyntaxError` whose\n // constructor is not the same identity as the one this module closes over. Name\n // comparison is realm-agnostic.\n if ((error as Error | null)?.name === 'SyntaxError' && response.ok) {\n return { data: [], status: response.status } as FetchResponse<any>;\n } else {\n throw error;\n }\n }\n };\n\n /**\n * Execute a fetch request with automatic token refresh on 401 errors.\n * @param url - The request URL (used to check if it's an auth path)\n * @param executeRequest - Function that performs the fetch (called again on retry with fresh headers)\n */\n const withTokenRefresh = async <TData>(\n url: string,\n executeRequest: () => Promise<FetchResponse<TData>>\n ): Promise<FetchResponse<TData>> => {\n try {\n return await executeRequest();\n } catch (error) {\n // Only attempt refresh for 401 errors on non-auth paths\n if (isFetchError(error) && error.status === 401 && !isAuthPath(url)) {\n try {\n await attemptTokenRefresh();\n // Retry - executeRequest will call getDefaultHeaders() again, picking up the new token\n return await executeRequest();\n } catch {\n // If refresh fails, throw the original error\n throw error;\n }\n }\n throw error;\n }\n };\n\n const paramsSerializer =\n <Param = unknown>(params?: Param) =>\n (url: string) => {\n if (params) {\n if (typeof params === 'string') {\n return `${url}?${params}`;\n }\n\n /**\n * TODO V6: Encoding should be enabled in this step\n * So the rest of the app doesn't have to worry about it,\n * It's considered a breaking change because it impacts any API request, including the user's custom code\n */\n const serializedParams = qs.stringify(params, { encode: false });\n if (serializedParams) {\n return `${url}?${serializedParams}`;\n }\n return url;\n }\n return url;\n };\n\n const addBaseUrl = (url: Parameters<typeof fetch>[0]) => {\n return `${backendURL}${url}`;\n };\n\n /**\n * We use the factory method because the options\n * are unique to the individual request\n */\n const makeCreateRequestUrl = (options?: FetchOptions) =>\n pipe(normalizeUrl, addBaseUrl, paramsSerializer(options?.params));\n\n const fetchClient: FetchClient = {\n get: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n const responseType = options?.responseType ?? 'json';\n\n const executeRequest = async () => {\n const { Authorization } = getDefaultHeaders();\n\n // For non-JSON response types, omit content negotiation headers that imply JSON\n const defaultHeaders = responseType === 'json' ? getDefaultHeaders() : { Authorization };\n\n const headers = new Headers({\n ...defaultHeaders,\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'GET',\n headers,\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus, responseType);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n post: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'POST',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n put: async <TData, TSend = any>(\n url: string,\n data?: TSend,\n options?: FetchOptions\n ): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n /**\n * we have to remove the Content-Type value if it was a formData request\n * the browser will automatically set the header value\n */\n if (isFormDataRequest(data)) {\n headers.delete('Content-Type');\n }\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'PUT',\n headers,\n body: isFormDataRequest(data) ? (data as FormData) : JSON.stringify(data),\n });\n\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n del: async <TData>(url: string, options?: FetchOptions): Promise<FetchResponse<TData>> => {\n const createRequestUrl = makeCreateRequestUrl(options);\n\n const executeRequest = async () => {\n const headers = new Headers({\n ...getDefaultHeaders(),\n ...options?.headers,\n });\n\n const response = await fetch(createRequestUrl(url), {\n signal: options?.signal ?? defaultOptions.signal,\n method: 'DELETE',\n headers,\n });\n return responseInterceptor<TData>(response, options?.validateStatus);\n };\n\n return withTokenRefresh(url, executeRequest);\n },\n };\n\n return fetchClient;\n};\n\nexport {\n getFetchClient,\n isFetchError,\n FetchError,\n attemptTokenRefresh,\n storeToken,\n setOnTokenUpdate,\n setOnSessionExpired,\n triggerSessionExpired,\n};\nexport type { FetchOptions, FetchResponse, FetchConfig, FetchClient, ErrorResponse };\n"],"names":["STORAGE_KEYS","TOKEN","refreshPromise","onTokenUpdate","onSessionExpired","setOnTokenUpdate","callback","setOnSessionExpired","triggerSessionExpired","isAuthPath","url","test","storeToken","token","wasPersistedToLocalStorage","Boolean","localStorage","getItem","setItem","JSON","stringify","setCookie","refreshAccessToken","backendURL","window","strapi","response","fetch","method","credentials","headers","Accept","ok","console","warn","status","result","json","data","error","attemptTokenRefresh","finally","newToken","Error","name","FetchError","message","code","captureStackTrace","isFetchError","getToken","fromLocalStorage","parse","fromCookie","getCookieValue","getFetchClient","defaultOptions","getDefaultHeaders","Authorization","isFormDataRequest","body","FormData","addPrependingSlash","charAt","hasProtocol","RegExp","normalizeUrl","responseInterceptor","validateStatus","responseType","fetchError","blob","text","arrayBuffer","withTokenRefresh","executeRequest","paramsSerializer","params","serializedParams","qs","encode","addBaseUrl","makeCreateRequestUrl","options","pipe","fetchClient","get","createRequestUrl","defaultHeaders","Headers","signal","post","delete","put","del"],"mappings":";;;;AAqBA,MAAMA,YAAAA,GAAe;IACnBC,KAAAA,EAAO,UAET,CAAA;AAEA;;AAEC,IACD,IAAIC,cAAAA,GAAgD,IAAA;AAEpD;;AAEC,IACD,IAAIC,aAAAA,GAAkD,IAAA;AAEtD;;;;;AAKC,IACD,IAAIC,gBAAAA,GAAwC,IAAA;AAE5C;;;;;;;;;;;IAYA,MAAMC,mBAAmB,CAACC,QAAAA,GAAAA;IACxBH,aAAAA,GAAgBG,QAAAA;AAClB;AAEA;;;;;;;IAQA,MAAMC,sBAAsB,CAACD,QAAAA,GAAAA;IAC3BF,gBAAAA,GAAmBE,QAAAA;AACrB;AAEA;;;AAGC,UACKE,qBAAAA,GAAwB,IAAA;AAC5BJ,IAAAA,gBAAAA,IAAAA;AACF;AAEA;;;;AAIC,IACD,MAAMK,UAAAA,GAAa,CAACC,GAAAA,GAAgB,wCAAA,CAAyCC,IAAI,CAACD,GAAAA,CAAAA;AAElF;;;;;;;;;IAUA,MAAME,aAAa,CAACC,KAAAA,GAAAA;;AAElB,IAAA,MAAMC,6BAA6BC,OAAAA,CAAQC,YAAAA,CAAaC,OAAO,CAACjB,aAAaC,KAAK,CAAA,CAAA;AAElF,IAAA,IAAIa,0BAAAA,EAA4B;AAC9BE,QAAAA,YAAAA,CAAaE,OAAO,CAAClB,YAAAA,CAAaC,KAAK,EAAEkB,IAAAA,CAAKC,SAAS,CAACP,KAAAA,CAAAA,CAAAA;IAC1D,CAAA,MAAO;QACLQ,SAAAA,CAAUrB,YAAAA,CAAaC,KAAK,EAAEY,KAAAA,CAAAA;AAChC,IAAA;;AAGA,IAAA,IAAIV,aAAAA,EAAe;QACjBA,aAAAA,CAAcU,KAAAA,CAAAA;AAChB,IAAA;AACF;AAEA;;;;AAIC,IACD,MAAMS,kBAAAA,GAAqB,UAAA;AACzB,IAAA,MAAMC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;IAE3C,IAAI;AACF,QAAA,MAAMG,WAAW,MAAMC,KAAAA,CAAM,GAAGJ,UAAAA,CAAW,mBAAmB,CAAC,EAAE;YAC/DK,MAAAA,EAAQ,MAAA;YACRC,WAAAA,EAAa,SAAA;YACbC,OAAAA,EAAS;gBACPC,MAAAA,EAAQ,kBAAA;gBACR,cAAA,EAAgB;AAClB;AACF,SAAA,CAAA;QAEA,IAAI,CAACL,QAAAA,CAASM,EAAE,EAAE;AAChBC,YAAAA,OAAAA,CAAQC,IAAI,CAAC,0CAAA,EAA4CR,QAAAA,CAASS,MAAM,CAAA;YACxE,OAAO,IAAA;AACT,QAAA;QAEA,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;QAClC,MAAMxB,KAAAA,GAAQuB,QAAQE,IAAAA,EAAMzB,KAAAA;AAE5B,QAAA,IAAI,CAACA,KAAAA,EAAO;AACVoB,YAAAA,OAAAA,CAAQC,IAAI,CAAC,6CAAA,CAAA;YACb,OAAO,IAAA;AACT,QAAA;QAEAtB,UAAAA,CAAWC,KAAAA,CAAAA;QACX,OAAOA,KAAAA;AACT,IAAA,CAAA,CAAE,OAAO0B,KAAAA,EAAO;QACdN,OAAAA,CAAQM,KAAK,CAAC,6BAAA,EAA+BA,KAAAA,CAAAA;QAC7C,OAAO,IAAA;AACT,IAAA;AACF,CAAA;AAEA;;;;;;;AAOC,UACKC,mBAAAA,GAAsB,UAAA;AAC1B,IAAA,IAAI,CAACtC,cAAAA,EAAgB;QACnBA,cAAAA,GAAiBoB,kBAAAA,EAAAA,CAAqBmB,OAAO,CAAC,IAAA;YAC5CvC,cAAAA,GAAiB,IAAA;AACnB,QAAA,CAAA,CAAA;AACF,IAAA;AAEA,IAAA,MAAMwC,WAAW,MAAMxC,cAAAA;AACvB,IAAA,IAAI,CAACwC,QAAAA,EAAU;QACb,MAAMH,KAAAA,GAAQ,IAAII,KAAAA,CAAM,uCAAA,CAAA;AACxBJ,QAAAA,KAAAA,CAAMK,IAAI,GAAG,mBAAA;QACb,MAAML,KAAAA;AACR,IAAA;IAEA,OAAOG,QAAAA;AACT;AA2BA,MAAMG,UAAAA,SAAmBF,KAAAA,CAAAA;IAOvB,WAAA,CAAYG,OAAe,EAAEpB,QAAwB,CAAE;AACrD,QAAA,KAAK,CAACoB,OAAAA,CAAAA;QACN,IAAI,CAACF,IAAI,GAAG,YAAA;QACZ,IAAI,CAACE,OAAO,GAAGA,OAAAA;QACf,IAAI,CAACpB,QAAQ,GAAGA,QAAAA;AAChB,QAAA,IAAI,CAACqB,IAAI,GAAGrB,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;AACnC,QAAA,IAAI,CAACA,MAAM,GAAGT,QAAAA,EAAUY,MAAMC,KAAAA,EAAOJ,MAAAA;;QAGrC,IAAIQ,KAAAA,CAAMK,iBAAiB,EAAE;YAC3BL,KAAAA,CAAMK,iBAAiB,CAAC,IAAI,EAAEH,UAAAA,CAAAA;AAChC,QAAA;AACF,IAAA;AACF;AAEA,MAAMI,eAAe,CAACV,KAAAA,GAAAA;AACpB,IAAA,OAAOA,KAAAA,YAAiBM,UAAAA;AAC1B;AAEA,MAAMK,QAAAA,GAAW,IAAA;AACf,IAAA,MAAMC,gBAAAA,GAAmBnC,YAAAA,CAAaC,OAAO,CAACjB,aAAaC,KAAK,CAAA;AAChE,IAAA,IAAIkD,gBAAAA,EAAkB;QACpB,OAAOhC,IAAAA,CAAKiC,KAAK,CAACD,gBAAAA,CAAAA;AACpB,IAAA;IAEA,MAAME,UAAAA,GAAaC,cAAAA,CAAetD,YAAAA,CAAaC,KAAK,CAAA;AACpD,IAAA,OAAOoD,UAAAA,IAAc,IAAA;AACvB,CAAA;AAyBA;;;;;;;;;;;;;;;;;;;AAmBC,IACD,MAAME,cAAAA,GAAiB,CAACC,cAAAA,GAA8B,EAAE,GAAA;AACtD,IAAA,MAAMjC,UAAAA,GAAaC,MAAAA,CAAOC,MAAM,CAACF,UAAU;AAE3C;;;MAIA,MAAMkC,iBAAAA,GAAoB,KAAO;YAC/B1B,MAAAA,EAAQ,kBAAA;YACR,cAAA,EAAgB,kBAAA;YAChB2B,aAAAA,EAAe,CAAC,OAAO,EAAER,QAAAA,EAAAA,CAAAA;SAC3B,CAAA;IAEA,MAAMS,iBAAAA,GAAoB,CAACC,IAAAA,GAAkBA,IAAAA,YAAgBC,QAAAA;AAC7D,IAAA,MAAMC,kBAAAA,GAAqB,CAACpD,GAAAA,GAAiBA,GAAAA,CAAIqD,MAAM,CAAC,CAAA,CAAA,KAAO,GAAA,GAAM,CAAC,CAAC,EAAErD,GAAAA,CAAAA,CAAK,GAAGA,GAAAA;;IAGjF,MAAMsD,WAAAA,GAAc,CAACtD,GAAAA,GAAgB,IAAIuD,OAAO,kBAAA,EAAoB,GAAA,CAAA,CAAKtD,IAAI,CAACD,GAAAA,CAAAA;;AAG9E,IAAA,MAAMwD,eAAe,CAACxD,GAAAA,GAAiBsD,WAAAA,CAAYtD,GAAAA,CAAAA,GAAOA,MAAMoD,kBAAAA,CAAmBpD,GAAAA,CAAAA;;AAGnF,IAAA,MAAMyD,mBAAAA,GAAsB,OAC1BzC,QAAAA,EACA0C,cAAAA,EACAC,eAA0D,MAAM,GAAA;AAEhE,QAAA,IAAIA,iBAAiB,MAAA,EAAQ;YAC3B,IAAI,CAAC3C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,cAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAIlC,MAAAA;AACJ,YAAA,IAAIiC,iBAAiB,MAAA,EAAQ;gBAC3BjC,MAAAA,GAAS,MAAMV,SAAS6C,IAAI,EAAA;YAC9B,CAAA,MAAO,IAAIF,iBAAiB,MAAA,EAAQ;gBAClCjC,MAAAA,GAAS,MAAMV,SAAS8C,IAAI,EAAA;YAC9B,CAAA,MAAO;gBACLpC,MAAAA,GAAS,MAAMV,SAAS+C,WAAW,EAAA;AACrC,YAAA;YAEA,OAAO;gBAAEnC,IAAAA,EAAMF,MAAAA;AAAiBD,gBAAAA,MAAAA,EAAQT,SAASS,MAAM;AAAEL,gBAAAA,OAAAA,EAASJ,SAASI;AAAQ,aAAA;AACrF,QAAA;QAEA,IAAIJ,QAAAA,CAASS,MAAM,KAAK,GAAA,EAAK;YAC3B,OAAO;AAAEG,gBAAAA,IAAAA,EAAM,EAAC;AAAYH,gBAAAA,MAAAA,EAAQT,SAASS;AAAO,aAAA;AACtD,QAAA;QAEA,IAAI;YACF,MAAMC,MAAAA,GAAS,MAAMV,QAAAA,CAASW,IAAI,EAAA;YAElC,IAAI,CAACX,QAAAA,CAASM,EAAE,IAAII,MAAAA,CAAOG,KAAK,IAAI,CAAC6B,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;AACtE,gBAAA,MAAMmC,aAAa,IAAIzB,UAAAA,CAAWT,OAAOG,KAAK,CAACO,OAAO,EAAE;oBAAER,IAAAA,EAAMF;AAAO,iBAAA,CAAA;gBACvEkC,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,IAAI,CAAC5C,SAASM,EAAE,IAAI,CAACoC,cAAAA,GAAiB1C,QAAAA,CAASS,MAAM,CAAA,EAAG;gBACtD,MAAMmC,UAAAA,GAAa,IAAIzB,UAAAA,CAAW,sBAAA,CAAA;gBAClCyB,UAAAA,CAAWnC,MAAM,GAAGT,QAAAA,CAASS,MAAM;gBACnC,MAAMmC,UAAAA;AACR,YAAA;YAEA,OAAO;gBAAEhC,IAAAA,EAAMF;AAAO,aAAA;AACxB,QAAA,CAAA,CAAE,OAAOG,KAAAA,EAAO;;;;;;;;AAQd,YAAA,IAAI,KAACA,EAAwBK,IAAAA,KAAS,aAAA,IAAiBlB,QAAAA,CAASM,EAAE,EAAE;gBAClE,OAAO;AAAEM,oBAAAA,IAAAA,EAAM,EAAE;AAAEH,oBAAAA,MAAAA,EAAQT,SAASS;AAAO,iBAAA;YAC7C,CAAA,MAAO;gBACL,MAAMI,KAAAA;AACR,YAAA;AACF,QAAA;AACF,IAAA,CAAA;AAEA;;;;MAKA,MAAMmC,gBAAAA,GAAmB,OACvBhE,GAAAA,EACAiE,cAAAA,GAAAA;QAEA,IAAI;AACF,YAAA,OAAO,MAAMA,cAAAA,EAAAA;AACf,QAAA,CAAA,CAAE,OAAOpC,KAAAA,EAAO;;YAEd,IAAIU,YAAAA,CAAaV,UAAUA,KAAAA,CAAMJ,MAAM,KAAK,GAAA,IAAO,CAAC1B,WAAWC,GAAAA,CAAAA,EAAM;gBACnE,IAAI;oBACF,MAAM8B,mBAAAA,EAAAA;;AAEN,oBAAA,OAAO,MAAMmC,cAAAA,EAAAA;AACf,gBAAA,CAAA,CAAE,OAAM;;oBAEN,MAAMpC,KAAAA;AACR,gBAAA;AACF,YAAA;YACA,MAAMA,KAAAA;AACR,QAAA;AACF,IAAA,CAAA;IAEA,MAAMqC,gBAAAA,GACJ,CAAkBC,MAAAA,GAClB,CAACnE,GAAAA,GAAAA;AACC,YAAA,IAAImE,MAAAA,EAAQ;gBACV,IAAI,OAAOA,WAAW,QAAA,EAAU;AAC9B,oBAAA,OAAO,CAAA,EAAGnE,GAAAA,CAAI,CAAC,EAAEmE,MAAAA,CAAAA,CAAQ;AAC3B,gBAAA;AAEA;;;;AAIC,YACD,MAAMC,gBAAAA,GAAmBC,WAAAA,CAAG3D,SAAS,CAACyD,MAAAA,EAAQ;oBAAEG,MAAAA,EAAQ;AAAM,iBAAA,CAAA;AAC9D,gBAAA,IAAIF,gBAAAA,EAAkB;AACpB,oBAAA,OAAO,CAAA,EAAGpE,GAAAA,CAAI,CAAC,EAAEoE,gBAAAA,CAAAA,CAAkB;AACrC,gBAAA;gBACA,OAAOpE,GAAAA;AACT,YAAA;YACA,OAAOA,GAAAA;AACT,QAAA,CAAA;AAEF,IAAA,MAAMuE,aAAa,CAACvE,GAAAA,GAAAA;QAClB,OAAO,CAAA,EAAGa,aAAab,GAAAA,CAAAA,CAAK;AAC9B,IAAA,CAAA;AAEA;;;MAIA,MAAMwE,uBAAuB,CAACC,OAAAA,GAC5BC,KAAKlB,YAAAA,EAAce,UAAAA,EAAYL,iBAAiBO,OAAAA,EAASN,MAAAA,CAAAA,CAAAA;AAE3D,IAAA,MAAMQ,WAAAA,GAA2B;AAC/BC,QAAAA,GAAAA,EAAK,OAAc5E,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;YAC9C,MAAMd,YAAAA,GAAec,SAASd,YAAAA,IAAgB,MAAA;AAE9C,YAAA,MAAMM,cAAAA,GAAiB,UAAA;gBACrB,MAAM,EAAEjB,aAAa,EAAE,GAAGD,iBAAAA,EAAAA;;gBAG1B,MAAM+B,cAAAA,GAAiBnB,YAAAA,KAAiB,MAAA,GAASZ,iBAAAA,EAAAA,GAAsB;AAAEC,oBAAAA;AAAc,iBAAA;gBAEvF,MAAM5B,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGD,cAAc;AACjB,oBAAA,GAAGL,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBAEA,OAAOqC,mBAAAA,CAA2BzC,QAAAA,EAAUyD,OAAAA,EAASf,cAAAA,EAAgBC,YAAAA,CAAAA;AACvE,YAAA,CAAA;AAEA,YAAA,OAAOK,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAgB,IAAAA,EAAM,OACJjF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,MAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBACA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;QACAkB,GAAAA,EAAK,OACHnF,KACA4B,IAAAA,EACA6C,OAAAA,GAAAA;AAEA,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA;;;YAIA,IAAI6B,kBAAkBrB,IAAAA,CAAAA,EAAO;AAC3BR,oBAAAA,OAAAA,CAAQ8D,MAAM,CAAC,cAAA,CAAA;AACjB,gBAAA;AAEA,gBAAA,MAAMlE,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,KAAA;AACRE,oBAAAA,OAAAA;AACA8B,oBAAAA,IAAAA,EAAMD,iBAAAA,CAAkBrB,IAAAA,CAAAA,GAASA,IAAAA,GAAoBnB,IAAAA,CAAKC,SAAS,CAACkB,IAAAA;AACtE,iBAAA,CAAA;gBAEA,OAAO6B,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA,CAAA;AACAmB,QAAAA,GAAAA,EAAK,OAAcpF,GAAAA,EAAayE,OAAAA,GAAAA;AAC9B,YAAA,MAAMI,mBAAmBL,oBAAAA,CAAqBC,OAAAA,CAAAA;AAE9C,YAAA,MAAMR,cAAAA,GAAiB,UAAA;gBACrB,MAAM7C,OAAAA,GAAU,IAAI2D,OAAAA,CAAQ;AAC1B,oBAAA,GAAGhC,iBAAAA,EAAmB;AACtB,oBAAA,GAAG0B,SAASrD;AACd,iBAAA,CAAA;AAEA,gBAAA,MAAMJ,QAAAA,GAAW,MAAMC,KAAAA,CAAM4D,gBAAAA,CAAiB7E,GAAAA,CAAAA,EAAM;oBAClDgF,MAAAA,EAAQP,OAAAA,EAASO,MAAAA,IAAUlC,cAAAA,CAAekC,MAAM;oBAChD9D,MAAAA,EAAQ,QAAA;AACRE,oBAAAA;AACF,iBAAA,CAAA;gBACA,OAAOqC,mBAAAA,CAA2BzC,UAAUyD,OAAAA,EAASf,cAAAA,CAAAA;AACvD,YAAA,CAAA;AAEA,YAAA,OAAOM,iBAAiBhE,GAAAA,EAAKiE,cAAAA,CAAAA;AAC/B,QAAA;AACF,KAAA;IAEA,OAAOU,WAAAA;AACT;;;;"}
|
|
@@ -0,0 +1,37 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
/**
|
|
4
|
+
* Decode the `exp` claim of an admin access JWT and return it as milliseconds
|
|
5
|
+
* since the epoch. Returns `null` if the token can't be parsed or has no
|
|
6
|
+
* numeric `exp`.
|
|
7
|
+
*
|
|
8
|
+
* The signature is intentionally not verified — the server is the source of
|
|
9
|
+
* truth for token validity. This is purely so the client can schedule a
|
|
10
|
+
* one-shot timer to react to access-token expiry without polling.
|
|
11
|
+
*
|
|
12
|
+
* Handles `base64url` payloads (RFC 7515) by mapping the URL-safe alphabet
|
|
13
|
+
* back to standard base64 and re-adding the `=` padding that `base64url`
|
|
14
|
+
* strips. Some browsers' `atob` implementations reject unpadded input.
|
|
15
|
+
*/ const decodeAccessTokenExpiry = (token)=>{
|
|
16
|
+
if (typeof token !== 'string') {
|
|
17
|
+
return null;
|
|
18
|
+
}
|
|
19
|
+
const parts = token.split('.');
|
|
20
|
+
if (parts.length < 2 || parts[1].length === 0) {
|
|
21
|
+
return null;
|
|
22
|
+
}
|
|
23
|
+
try {
|
|
24
|
+
// base64url → base64
|
|
25
|
+
const urlDecoded = parts[1].replace(/-/g, '+').replace(/_/g, '/');
|
|
26
|
+
// Restore `=` padding to a multiple of 4 chars; base64url omits it.
|
|
27
|
+
const remainder = urlDecoded.length % 4;
|
|
28
|
+
const padded = remainder === 0 ? urlDecoded : urlDecoded + '='.repeat(4 - remainder);
|
|
29
|
+
const payload = JSON.parse(window.atob(padded));
|
|
30
|
+
return typeof payload?.exp === 'number' && Number.isFinite(payload.exp) ? payload.exp * 1000 : null;
|
|
31
|
+
} catch {
|
|
32
|
+
return null;
|
|
33
|
+
}
|
|
34
|
+
};
|
|
35
|
+
|
|
36
|
+
exports.decodeAccessTokenExpiry = decodeAccessTokenExpiry;
|
|
37
|
+
//# sourceMappingURL=jwt.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"jwt.js","sources":["../../../../../admin/src/utils/jwt.ts"],"sourcesContent":["/**\n * Decode the `exp` claim of an admin access JWT and return it as milliseconds\n * since the epoch. Returns `null` if the token can't be parsed or has no\n * numeric `exp`.\n *\n * The signature is intentionally not verified — the server is the source of\n * truth for token validity. This is purely so the client can schedule a\n * one-shot timer to react to access-token expiry without polling.\n *\n * Handles `base64url` payloads (RFC 7515) by mapping the URL-safe alphabet\n * back to standard base64 and re-adding the `=` padding that `base64url`\n * strips. Some browsers' `atob` implementations reject unpadded input.\n */\nconst decodeAccessTokenExpiry = (token: string): number | null => {\n if (typeof token !== 'string') {\n return null;\n }\n\n const parts = token.split('.');\n if (parts.length < 2 || parts[1].length === 0) {\n return null;\n }\n\n try {\n // base64url → base64\n const urlDecoded = parts[1].replace(/-/g, '+').replace(/_/g, '/');\n\n // Restore `=` padding to a multiple of 4 chars; base64url omits it.\n const remainder = urlDecoded.length % 4;\n const padded = remainder === 0 ? urlDecoded : urlDecoded + '='.repeat(4 - remainder);\n\n const payload = JSON.parse(window.atob(padded));\n return typeof payload?.exp === 'number' && Number.isFinite(payload.exp)\n ? payload.exp * 1000\n : null;\n } catch {\n return null;\n }\n};\n\nexport { decodeAccessTokenExpiry };\n"],"names":["decodeAccessTokenExpiry","token","parts","split","length","urlDecoded","replace","remainder","padded","repeat","payload","JSON","parse","window","atob","exp","Number","isFinite"],"mappings":";;AAAA;;;;;;;;;;;;IAaA,MAAMA,0BAA0B,CAACC,KAAAA,GAAAA;IAC/B,IAAI,OAAOA,UAAU,QAAA,EAAU;QAC7B,OAAO,IAAA;AACT,IAAA;IAEA,MAAMC,KAAAA,GAAQD,KAAAA,CAAME,KAAK,CAAC,GAAA,CAAA;IAC1B,IAAID,KAAAA,CAAME,MAAM,GAAG,CAAA,IAAKF,KAAK,CAAC,CAAA,CAAE,CAACE,MAAM,KAAK,CAAA,EAAG;QAC7C,OAAO,IAAA;AACT,IAAA;IAEA,IAAI;;QAEF,MAAMC,UAAAA,GAAaH,KAAK,CAAC,CAAA,CAAE,CAACI,OAAO,CAAC,IAAA,EAAM,GAAA,CAAA,CAAKA,OAAO,CAAC,IAAA,EAAM,GAAA,CAAA;;QAG7D,MAAMC,SAAAA,GAAYF,UAAAA,CAAWD,MAAM,GAAG,CAAA;QACtC,MAAMI,MAAAA,GAASD,cAAc,CAAA,GAAIF,UAAAA,GAAaA,aAAa,GAAA,CAAII,MAAM,CAAC,CAAA,GAAIF,SAAAA,CAAAA;AAE1E,QAAA,MAAMG,UAAUC,IAAAA,CAAKC,KAAK,CAACC,MAAAA,CAAOC,IAAI,CAACN,MAAAA,CAAAA,CAAAA;AACvC,QAAA,OAAO,OAAOE,OAAAA,EAASK,GAAAA,KAAQ,QAAA,IAAYC,MAAAA,CAAOC,QAAQ,CAACP,OAAAA,CAAQK,GAAG,CAAA,GAClEL,OAAAA,CAAQK,GAAG,GAAG,IAAA,GACd,IAAA;AACN,IAAA,CAAA,CAAE,OAAM;QACN,OAAO,IAAA;AACT,IAAA;AACF;;;;"}
|
|
@@ -0,0 +1,35 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Decode the `exp` claim of an admin access JWT and return it as milliseconds
|
|
3
|
+
* since the epoch. Returns `null` if the token can't be parsed or has no
|
|
4
|
+
* numeric `exp`.
|
|
5
|
+
*
|
|
6
|
+
* The signature is intentionally not verified — the server is the source of
|
|
7
|
+
* truth for token validity. This is purely so the client can schedule a
|
|
8
|
+
* one-shot timer to react to access-token expiry without polling.
|
|
9
|
+
*
|
|
10
|
+
* Handles `base64url` payloads (RFC 7515) by mapping the URL-safe alphabet
|
|
11
|
+
* back to standard base64 and re-adding the `=` padding that `base64url`
|
|
12
|
+
* strips. Some browsers' `atob` implementations reject unpadded input.
|
|
13
|
+
*/ const decodeAccessTokenExpiry = (token)=>{
|
|
14
|
+
if (typeof token !== 'string') {
|
|
15
|
+
return null;
|
|
16
|
+
}
|
|
17
|
+
const parts = token.split('.');
|
|
18
|
+
if (parts.length < 2 || parts[1].length === 0) {
|
|
19
|
+
return null;
|
|
20
|
+
}
|
|
21
|
+
try {
|
|
22
|
+
// base64url → base64
|
|
23
|
+
const urlDecoded = parts[1].replace(/-/g, '+').replace(/_/g, '/');
|
|
24
|
+
// Restore `=` padding to a multiple of 4 chars; base64url omits it.
|
|
25
|
+
const remainder = urlDecoded.length % 4;
|
|
26
|
+
const padded = remainder === 0 ? urlDecoded : urlDecoded + '='.repeat(4 - remainder);
|
|
27
|
+
const payload = JSON.parse(window.atob(padded));
|
|
28
|
+
return typeof payload?.exp === 'number' && Number.isFinite(payload.exp) ? payload.exp * 1000 : null;
|
|
29
|
+
} catch {
|
|
30
|
+
return null;
|
|
31
|
+
}
|
|
32
|
+
};
|
|
33
|
+
|
|
34
|
+
export { decodeAccessTokenExpiry };
|
|
35
|
+
//# sourceMappingURL=jwt.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"jwt.mjs","sources":["../../../../../admin/src/utils/jwt.ts"],"sourcesContent":["/**\n * Decode the `exp` claim of an admin access JWT and return it as milliseconds\n * since the epoch. Returns `null` if the token can't be parsed or has no\n * numeric `exp`.\n *\n * The signature is intentionally not verified — the server is the source of\n * truth for token validity. This is purely so the client can schedule a\n * one-shot timer to react to access-token expiry without polling.\n *\n * Handles `base64url` payloads (RFC 7515) by mapping the URL-safe alphabet\n * back to standard base64 and re-adding the `=` padding that `base64url`\n * strips. Some browsers' `atob` implementations reject unpadded input.\n */\nconst decodeAccessTokenExpiry = (token: string): number | null => {\n if (typeof token !== 'string') {\n return null;\n }\n\n const parts = token.split('.');\n if (parts.length < 2 || parts[1].length === 0) {\n return null;\n }\n\n try {\n // base64url → base64\n const urlDecoded = parts[1].replace(/-/g, '+').replace(/_/g, '/');\n\n // Restore `=` padding to a multiple of 4 chars; base64url omits it.\n const remainder = urlDecoded.length % 4;\n const padded = remainder === 0 ? urlDecoded : urlDecoded + '='.repeat(4 - remainder);\n\n const payload = JSON.parse(window.atob(padded));\n return typeof payload?.exp === 'number' && Number.isFinite(payload.exp)\n ? payload.exp * 1000\n : null;\n } catch {\n return null;\n }\n};\n\nexport { decodeAccessTokenExpiry };\n"],"names":["decodeAccessTokenExpiry","token","parts","split","length","urlDecoded","replace","remainder","padded","repeat","payload","JSON","parse","window","atob","exp","Number","isFinite"],"mappings":"AAAA;;;;;;;;;;;;IAaA,MAAMA,0BAA0B,CAACC,KAAAA,GAAAA;IAC/B,IAAI,OAAOA,UAAU,QAAA,EAAU;QAC7B,OAAO,IAAA;AACT,IAAA;IAEA,MAAMC,KAAAA,GAAQD,KAAAA,CAAME,KAAK,CAAC,GAAA,CAAA;IAC1B,IAAID,KAAAA,CAAME,MAAM,GAAG,CAAA,IAAKF,KAAK,CAAC,CAAA,CAAE,CAACE,MAAM,KAAK,CAAA,EAAG;QAC7C,OAAO,IAAA;AACT,IAAA;IAEA,IAAI;;QAEF,MAAMC,UAAAA,GAAaH,KAAK,CAAC,CAAA,CAAE,CAACI,OAAO,CAAC,IAAA,EAAM,GAAA,CAAA,CAAKA,OAAO,CAAC,IAAA,EAAM,GAAA,CAAA;;QAG7D,MAAMC,SAAAA,GAAYF,UAAAA,CAAWD,MAAM,GAAG,CAAA;QACtC,MAAMI,MAAAA,GAASD,cAAc,CAAA,GAAIF,UAAAA,GAAaA,aAAa,GAAA,CAAII,MAAM,CAAC,CAAA,GAAIF,SAAAA,CAAAA;AAE1E,QAAA,MAAMG,UAAUC,IAAAA,CAAKC,KAAK,CAACC,MAAAA,CAAOC,IAAI,CAACN,MAAAA,CAAAA,CAAAA;AACvC,QAAA,OAAO,OAAOE,OAAAA,EAASK,GAAAA,KAAQ,QAAA,IAAYC,MAAAA,CAAOC,QAAQ,CAACP,OAAAA,CAAQK,GAAG,CAAA,GAClEL,OAAAA,CAAQK,GAAG,GAAG,IAAA,GACd,IAAA;AACN,IAAA,CAAA,CAAE,OAAM;QACN,OAAO,IAAA;AACT,IAAA;AACF;;;;"}
|
package/dist/admin/index.js
CHANGED
|
@@ -108,8 +108,10 @@ exports.FetchError = getFetchClient.FetchError;
|
|
|
108
108
|
exports.attemptTokenRefresh = getFetchClient.attemptTokenRefresh;
|
|
109
109
|
exports.getFetchClient = getFetchClient.getFetchClient;
|
|
110
110
|
exports.isFetchError = getFetchClient.isFetchError;
|
|
111
|
+
exports.setOnSessionExpired = getFetchClient.setOnSessionExpired;
|
|
111
112
|
exports.setOnTokenUpdate = getFetchClient.setOnTokenUpdate;
|
|
112
113
|
exports.storeToken = getFetchClient.storeToken;
|
|
114
|
+
exports.triggerSessionExpired = getFetchClient.triggerSessionExpired;
|
|
113
115
|
exports.fetchBaseQuery = baseQuery.fetchBaseQuery;
|
|
114
116
|
exports.isBaseQueryError = baseQuery.isBaseQueryError;
|
|
115
117
|
exports.ConditionSchema = rulesEngine.ConditionSchema;
|
package/dist/admin/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sources":[],"sourcesContent":[],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"index.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}
|