npm - @sylphx/sdk - Versions diffs - 0.10.0 → 0.10.1 - Mend

@sylphx/sdk 0.10.0 → 0.10.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/README.md +13 -12
package/dist/index.d.ts +43 -23
package/dist/index.mjs +81 -102
package/dist/index.mjs.map +1 -1
package/dist/nextjs/index.d.ts +19 -6
package/dist/nextjs/index.mjs +127 -22
package/dist/nextjs/index.mjs.map +1 -1
package/dist/react/index.d.ts +20 -12
package/dist/react/index.mjs +199 -153
package/dist/react/index.mjs.map +1 -1
package/dist/server/index.d.ts +41 -34
package/dist/server/index.mjs +81 -66
package/dist/server/index.mjs.map +1 -1
package/dist/web-analytics.mjs.map +1 -1
package/package.json +1 -1

package/dist/index.mjs CHANGED Viewed

@@ -4783,7 +4783,7 @@ var init_webapi = __esm({
 // src/connection-url.ts
 var SYLPHX_PROTOCOL = "sylphx:";
 var DEFAULT_VERSION = "v1";
-var CREDENTIAL_REGEX = /^(pk|sk)_(dev|stg|prod|prev)_[a-f0-9]{32,64}$/;
+var CREDENTIAL_REGEX = /^(pk|sk)_(dev|stg|prod|prev)(?:_[a-z0-9]{12})?_[a-f0-9]{32,64}$/;
 var VERSION_REGEX = /^v[0-9]+$/;
 var SLUG_REGEX = /^[a-z0-9]([a-z0-9-]*[a-z0-9])?$/;
 var InvalidConnectionUrlError = class _InvalidConnectionUrlError extends Error {
@@ -4800,7 +4800,7 @@ function fail(reason) {
 function parseCredential(raw) {
   const match = CREDENTIAL_REGEX.exec(raw);
   if (!match) {
-    fail(`credential must match (pk|sk)_(dev|stg|prod|prev)_[a-f0-9]{32,64}, got "${raw}"`);
+    fail(`credential must match (pk|sk)_(dev|stg|prod|prev)(_{ref})?_{hex}, got "${raw}"`);
   }
   return {
     credentialType: match[1],
@@ -4879,7 +4879,7 @@ init_constants();
 init_errors();
 var LEGACY_EMBEDDED_REF_PATTERN = /^(pk|sk)_(dev|stg|prod|prev)_[a-z0-9]{12}_[a-f0-9]+$/;
 var LEGACY_APP_KEY_PATTERN = /^app_(dev|stg|prod|prev)_/;
-var MIGRATION_MESSAGE = "API key format has changed. Use a sylphx:// connection URL instead.\n\nNew format: sylphx://pk_prod_{hex}@your-slug.api.sylphx.com\n\nGenerate new credentials from the Sylphx Console \u2192 Your App \u2192 Environments.\nSee https://docs.sylphx.com/migration for details.";
+var MIGRATION_MESSAGE = "API key format has changed. Use a sylphx:// connection URL instead.\n\nNew format: sylphx://pk_prod_{ref?}_{hex}@your-slug.api.sylphx.com\n\nGenerate new credentials from the Sylphx Console \u2192 Your App \u2192 Environments.\nSee https://docs.sylphx.com/migration for details.";
 function rejectLegacyKeyFormat(input) {
   const trimmed = input.trim().toLowerCase();
   if (LEGACY_APP_KEY_PATTERN.test(trimmed)) {
@@ -5012,7 +5012,7 @@ function createConfigFromComponents(input) {
     });
   }
   throw new SylphxError(
-    `[Sylphx] Invalid credential format. Expected (pk|sk)_(dev|stg|prod|prev)_[a-f0-9]{32,64}. Got: "${trimmedCred.slice(0, 30)}..."`,
+    `[Sylphx] Invalid credential format. Expected (pk|sk)_(dev|stg|prod|prev)(_{ref})?_{hex}. Got: "${trimmedCred.slice(0, 30)}..."`,
     { code: "BAD_REQUEST" }
   );
 }
@@ -5291,11 +5291,12 @@ init_constants();
 init_errors();
 // src/key-validation.ts
-var SECRET_KEY_PATTERN = /^sk_(dev|stg|prod)_[a-z0-9_-]+$/;
+var SECRET_KEY_PATTERN = /^sk_(dev|stg|prod|prev)_[a-z0-9_-]+$/;
 var ENV_PREFIX_MAP = {
   dev: "development",
   stg: "staging",
-  prod: "production"
+  prod: "production",
+  prev: "preview"
 };
 function detectKeyIssues(key) {
   const issues = [];
@@ -5320,7 +5321,7 @@ The SDK will automatically sanitize the key, but fixing the source is recommende
 }
 function createInvalidKeyError(keyType, key, envVarName) {
   const maskedKey = key.length > 20 ? `${key.slice(0, 20)}...` : key;
-  const formatHint = keyType === "appId" ? "pk_(dev|stg|prod)_{ref}_{hex} or app_(dev|stg|prod)_[id]" : "sk_(dev|stg|prod)_{ref}_{hex}";
+  const formatHint = keyType === "appId" ? "pk_(dev|stg|prod|prev)_{ref}_{hex} or app_(dev|stg|prod|prev)_[id]" : "sk_(dev|stg|prod|prev)_{ref}_{hex}";
   const keyTypeName = keyType === "appId" ? "App ID" : "Secret Key";
   return `[Sylphx] Invalid ${keyTypeName} format.
@@ -5333,7 +5334,7 @@ You can find your keys in the Sylphx Console \u2192 API Keys.
 Common issues:
 \u2022 Key has uppercase characters (must be lowercase)
 \u2022 Key has wrong prefix (App ID: pk_ or app_, Secret Key: sk_)
-\u2022 Key has invalid environment (must be dev, stg, or prod)
+\u2022 Key has invalid environment (must be dev, stg, prod, or prev)
 \u2022 Key was copied with extra whitespace`;
 }
 function extractEnvironment(key) {
@@ -5380,7 +5381,7 @@ function validateKeyForType(key, keyType, pattern, envVarName) {
   };
 }
 function validateSecretKey(key) {
-  return validateKeyForType(key, "secret", SECRET_KEY_PATTERN, "SYLPHX_SECRET_KEY");
+  return validateKeyForType(key, "secret", SECRET_KEY_PATTERN, "secret credential");
 }
 function validateAndSanitizeSecretKey(key) {
   const result = validateSecretKey(key);
@@ -5402,7 +5403,14 @@ async function runPipeline(middlewares, initial) {
       if (next) request = next;
     }
   }
-  let response = await fetch(request);
+  const fetchWithMiddleware = middlewares.reduceRight(
+    (next, mw) => mw.onFetch ? async (request2) => {
+      const response2 = await mw.onFetch?.({ request: request2, next });
+      return response2 ?? next(request2);
+    } : next,
+    (request2) => fetch(request2)
+  );
+  let response = await fetchWithMiddleware(request);
   for (const mw of middlewares) {
     if (mw.onResponse) {
       const next = await mw.onResponse({ request, response });
@@ -5421,6 +5429,11 @@ function buildUrl(baseUrl, path, params) {
   ).toString();
   return `${url}?${search2}`;
 }
+function cloneRequestWithHeaders(request, updateHeaders) {
+  const headers = new Headers(request.headers);
+  updateHeaders(headers);
+  return new Request(request, { headers });
+}
 function interpolatePath(path, pathParams) {
   if (!pathParams) return path;
   return path.replace(/\{(\w+)\}/g, (_match, key) => {
@@ -5483,66 +5496,51 @@ function buildClient(baseUrl, baseHeaders) {
 function createAuthMiddleware(config) {
   return {
     async onRequest({ request }) {
-      request.headers.set("X-SDK-Version", SDK_VERSION);
-      request.headers.set("X-SDK-Platform", SDK_PLATFORM);
-      if (config.secretKey) {
-        request.headers.set("x-app-secret", config.secretKey);
-      }
-      const token = config.getAccessToken?.();
-      if (token) {
-        request.headers.set("Authorization", `Bearer ${token}`);
-      }
-      return request;
+      return cloneRequestWithHeaders(request, (headers) => {
+        headers.set("X-SDK-Version", SDK_VERSION);
+        headers.set("X-SDK-Platform", SDK_PLATFORM);
+        if (config.secretKey) {
+          headers.set("x-app-secret", config.secretKey);
+        }
+        const token = config.getAccessToken?.();
+        if (token) {
+          headers.set("Authorization", `Bearer ${token}`);
+        }
+      });
     }
   };
 }
 function isRetryableStatus(status) {
   return status >= 500 || status === 429;
 }
-var inFlightRequests = /* @__PURE__ */ new Map();
 async function getRequestKey(request) {
   const body = request.body ? await request.clone().text() : "";
   return `${request.method}:${request.url}:${body}`;
 }
 function createDeduplicationMiddleware(config = {}) {
   const { enabled = true, methods = ["GET"] } = config;
-  if (!enabled) {
-    return {
-      async onRequest({ request }) {
-        return request;
-      }
-    };
-  }
+  if (!enabled) return {};
+  const inFlightRequests = /* @__PURE__ */ new Map();
   return {
-    async onRequest({ request }) {
-      if (!methods.includes(request.method)) {
-        return request;
+    async onFetch({ request, next }) {
+      const method = request.method.toUpperCase();
+      if (!methods.includes(method)) {
+        return next(request);
       }
       const key = await getRequestKey(request);
       const existing = inFlightRequests.get(key);
       if (existing) {
-        const deduped = request.clone();
-        deduped._dedupKey = key;
-        return deduped;
-      }
-      ;
-      request._dedupKey = key;
-      return request;
-    },
-    async onResponse({ request, response }) {
-      const key = request._dedupKey;
-      if (!key) return response;
-      const existing = inFlightRequests.get(key);
-      if (existing && inFlightRequests.get(key) !== void 0) {
         const cachedResponse = await existing;
         return cachedResponse.clone();
       }
-      const responsePromise = Promise.resolve(response.clone());
+      const responsePromise = next(request).then((response) => response.clone());
       inFlightRequests.set(key, responsePromise);
-      responsePromise.finally(() => {
-        setTimeout(() => inFlightRequests.delete(key), 100);
-      });
-      return response;
+      try {
+        const response = await responsePromise;
+        return response.clone();
+      } finally {
+        inFlightRequests.delete(key);
+      }
     }
   };
 }
@@ -5708,7 +5706,9 @@ function createETagMiddleware(config) {
         if (Date.now() - cached.timestamp > ttlMs) {
           etagCache.delete(cacheKey);
         } else {
-          request.headers.set("If-None-Match", cached.etag);
+          return cloneRequestWithHeaders(request, (headers) => {
+            headers.set("If-None-Match", cached.etag);
+          });
         }
       }
       return request;
@@ -6000,11 +6000,28 @@ async function inviteUser(config, input) {
     body: input
   });
 }
-async function switchOrg(config, orgId) {
-  return callApi(config, "/auth/switch-org", {
+function normalizeOrgScopedTokenResponse(data) {
+  const accessToken = data.accessToken ?? data.access_token;
+  if (!accessToken) {
+    throw new Error("Invalid org-scoped token response: missing access token");
+  }
+  return {
+    token: accessToken,
+    accessToken,
+    expiresIn: data.expiresIn ?? data.expires_in,
+    tokenType: data.tokenType ?? data.token_type,
+    user: data.user
+  };
+}
+async function getOrgScopedToken(config, orgId) {
+  const data = await callApi(config, "/auth/switch-org", {
     method: "POST",
     body: { orgId }
   });
+  return normalizeOrgScopedTokenResponse(data);
+}
+async function switchOrg(config, orgId) {
+  return getOrgScopedToken(config, orgId);
 }
 var device = {
   /**
@@ -8002,6 +8019,9 @@ async function getBillingUsage(config, options) {
   });
 }
+// src/storage.ts
+init_errors();
 // src/lib/retry.ts
 init_constants();
 var DEFAULT_RETRY_CONFIG = {
@@ -8124,7 +8144,6 @@ var PATHS = {
   versions: (id) => `/storage/files/${encodeURIComponent(String(id))}/versions`,
   versionRestore: (id, vid) => `/storage/files/${encodeURIComponent(String(id))}/versions/${encodeURIComponent(String(vid))}:restore`
 };
-var isBrowser = () => typeof globalThis !== "undefined" && typeof globalThis.window !== "undefined";
 var hasXhr = () => typeof globalThis.XMLHttpRequest !== "undefined";
 var hasLocalStorage = () => {
   try {
@@ -8136,16 +8155,14 @@ var hasLocalStorage = () => {
 };
 async function computeSha256Hex(blob) {
   const subtle = globalThis.crypto?.subtle;
-  if (subtle?.digest) {
-    const buf2 = await blob.arrayBuffer();
-    const digest2 = await subtle.digest("SHA-256", buf2);
-    return bytesToHex(new Uint8Array(digest2));
+  if (!subtle?.digest) {
+    throw new SylphxError("Web Crypto SHA-256 support is required for storage uploads", {
+      code: "NOT_IMPLEMENTED"
+    });
   }
-  const nodeCrypto = await import("crypto");
-  const hash = nodeCrypto.createHash("sha256");
-  const buf = Buffer.from(await blob.arrayBuffer());
-  hash.update(buf);
-  return hash.digest("hex");
+  const buf = await blob.arrayBuffer();
+  const digest2 = await subtle.digest("SHA-256", buf);
+  return bytesToHex(new Uint8Array(digest2));
 }
 function bytesToHex(b) {
   let s = "";
@@ -8162,10 +8179,6 @@ function persistResume(rec) {
       localStorage.setItem(resumeKey(rec.uploadId), JSON.stringify(rec));
     } catch {
     }
-    return;
-  }
-  if (!isBrowser()) {
-    void persistResumeNode(rec);
   }
 }
 function clearResume(uploadId) {
@@ -8174,41 +8187,6 @@ function clearResume(uploadId) {
       localStorage.removeItem(resumeKey(uploadId));
     } catch {
     }
-    return;
-  }
-  if (!isBrowser()) void clearResumeNode(uploadId);
-}
-async function persistResumeNode(rec) {
-  try {
-    const fs = await import("fs/promises");
-    const path = await import("path");
-    const os = await import("os");
-    const dir = path.join(os.homedir(), ".sylphx");
-    await fs.mkdir(dir, { recursive: true });
-    const file = path.join(dir, "uploads.json");
-    let store = {};
-    try {
-      const text = await fs.readFile(file, "utf8");
-      store = JSON.parse(text);
-    } catch {
-      store = {};
-    }
-    store[rec.uploadId] = rec;
-    await fs.writeFile(file, JSON.stringify(store), "utf8");
-  } catch {
-  }
-}
-async function clearResumeNode(uploadId) {
-  try {
-    const fs = await import("fs/promises");
-    const path = await import("path");
-    const os = await import("os");
-    const file = path.join(os.homedir(), ".sylphx", "uploads.json");
-    const text = await fs.readFile(file, "utf8");
-    const store = JSON.parse(text);
-    delete store[uploadId];
-    await fs.writeFile(file, JSON.stringify(store), "utf8");
-  } catch {
   }
 }
 function putBlob(url, body, headers, signal, onProgress) {
@@ -8925,7 +8903,7 @@ function createTasksHandler(taskDefs, options = {}) {
         { status: 400 }
       );
     }
-    const signingSecret = options.signingSecret ?? process.env.SYLPHX_SIGNING_SECRET ?? process.env.SYLPHX_SECRET_KEY ?? "";
+    const signingSecret = options.signingSecret ?? process.env.SYLPHX_SIGNING_SECRET ?? "";
     if (signingSecret) {
       const signature = req.headers.get("x-sylphx-signature") ?? "";
       if (!signature) {
@@ -11032,6 +11010,7 @@ export {
   getMemberPermissions,
   getMyReferralCode,
   getOidcDiscoveryDocument,
+  getOrgScopedToken,
   getOrganization,
   getOrganizationInvitations,
   getOrganizationMembers,