@thor-commerce/app-bridge-react 0.6.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (17) hide show
  1. package/dist/{chunk-X5YISVIL.js → chunk-P5H5AHVK.js} +144 -6
  2. package/dist/chunk-P5H5AHVK.js.map +1 -0
  3. package/dist/index.cjs +146 -5
  4. package/dist/index.cjs.map +1 -1
  5. package/dist/index.d.cts +5 -2
  6. package/dist/index.d.ts +5 -2
  7. package/dist/index.js +7 -1
  8. package/dist/next.cjs +152 -6
  9. package/dist/next.cjs.map +1 -1
  10. package/dist/next.js +15 -3
  11. package/dist/next.js.map +1 -1
  12. package/dist/react-router.cjs +147 -33
  13. package/dist/react-router.cjs.map +1 -1
  14. package/dist/react-router.js +10 -30
  15. package/dist/react-router.js.map +1 -1
  16. package/package.json +1 -1
  17. package/dist/chunk-X5YISVIL.js.map +0 -1
package/dist/{chunk-X5YISVIL.js → chunk-P5H5AHVK.js} RENAMED
@@ -1,4 +1,20 @@
1
1
  // src/navigation.ts
2
+ var EMBEDDED_LAUNCH_PARAMS = [
3
+ "appLoadId",
4
+ "embedded",
5
+ "hmac",
6
+ "host",
7
+ "id_token",
8
+ "link_source",
9
+ "locale",
10
+ "project",
11
+ "protocol",
12
+ "session",
13
+ "shop",
14
+ "tenant",
15
+ "timestamp"
16
+ ];
17
+ var NAVIGATION_BASE_URL = "https://embedded-app.local";
2
18
  function normalizeSearch(search) {
3
19
  if (!search) {
4
20
  return "";
@@ -12,7 +28,8 @@ function normalizeHash(hash) {
12
28
  return hash.startsWith("#") ? hash : `#${hash}`;
13
29
  }
14
30
  function buildNavigationUpdatePayload(path) {
15
- let pathname = path;
31
+ const sanitizedPath = sanitizeEmbeddedAppPath(path) ?? path;
32
+ let pathname = sanitizedPath;
16
33
  let search = "";
17
34
  let hash = "";
18
35
  const hashIndex = pathname.indexOf("#");
@@ -32,24 +49,67 @@ function buildNavigationUpdatePayload(path) {
32
49
  hash
33
50
  };
34
51
  }
52
+ function sanitizeEmbeddedAppPath(path) {
53
+ if (!path) {
54
+ return path;
55
+ }
56
+ const trimmedPath = path.trim();
57
+ if (!trimmedPath) {
58
+ return trimmedPath;
59
+ }
60
+ const url = new URL(trimmedPath, NAVIGATION_BASE_URL);
61
+ let changed = false;
62
+ for (const key of EMBEDDED_LAUNCH_PARAMS) {
63
+ if (url.searchParams.has(key)) {
64
+ url.searchParams.delete(key);
65
+ changed = true;
66
+ }
67
+ }
68
+ if (!changed) {
69
+ return trimmedPath;
70
+ }
71
+ if (/^https?:\/\//i.test(trimmedPath)) {
72
+ return url.toString();
73
+ }
74
+ return `${url.pathname}${url.search}${url.hash}`;
75
+ }
76
+ function resolveLocalNavigationPath(href, currentOrigin) {
77
+ if (!href || href.startsWith("#")) {
78
+ return null;
79
+ }
80
+ let destination;
81
+ try {
82
+ destination = new URL(href, currentOrigin);
83
+ } catch {
84
+ return null;
85
+ }
86
+ if (destination.origin !== currentOrigin) {
87
+ return null;
88
+ }
89
+ return sanitizeEmbeddedAppPath(
90
+ `${destination.pathname}${destination.search}${destination.hash}`
91
+ ) ?? null;
92
+ }
35
93
  function resolveNavigationDestination(payload) {
36
94
  if (typeof payload === "string") {
37
- return payload;
95
+ return sanitizeEmbeddedAppPath(payload) ?? null;
38
96
  }
39
97
  if (!payload || typeof payload !== "object") {
40
98
  return null;
41
99
  }
42
100
  const value = payload;
43
101
  if (typeof value.path === "string" && value.path) {
44
- return value.path;
102
+ return sanitizeEmbeddedAppPath(value.path) ?? null;
45
103
  }
46
104
  if (typeof value.href === "string" && value.href) {
47
- return value.href;
105
+ return sanitizeEmbeddedAppPath(value.href) ?? null;
48
106
  }
49
107
  if (typeof value.pathname !== "string" || !value.pathname) {
50
108
  return null;
51
109
  }
52
- return `${value.pathname}${normalizeSearch(value.search ?? "")}${normalizeHash(value.hash ?? "")}`;
110
+ return sanitizeEmbeddedAppPath(
111
+ `${value.pathname}${normalizeSearch(value.search ?? "")}${normalizeHash(value.hash ?? "")}`
112
+ ) ?? null;
53
113
  }
54
114
 
55
115
  // src/core.ts
@@ -463,6 +523,78 @@ function AppBridgeProvider({
463
523
  onNavigateRef.current?.(destination, message);
464
524
  });
465
525
  }, [bridge, navigationEventType, onNavigate]);
526
+ useEffect(() => {
527
+ if (!bridge || !onNavigate || typeof document === "undefined" || typeof window === "undefined") {
528
+ return;
529
+ }
530
+ const handleLocalNavigation = (path) => {
531
+ const sanitizedPath = sanitizeEmbeddedAppPath(path);
532
+ if (!sanitizedPath) {
533
+ return;
534
+ }
535
+ onNavigateRef.current?.(sanitizedPath);
536
+ };
537
+ const handleDocumentClick = (event) => {
538
+ if (event.defaultPrevented || event.button !== 0 || event.metaKey || event.altKey || event.ctrlKey || event.shiftKey) {
539
+ return;
540
+ }
541
+ const target = event.target;
542
+ if (!(target instanceof Element)) {
543
+ return;
544
+ }
545
+ const anchor = target.closest("a[href]");
546
+ if (!(anchor instanceof HTMLAnchorElement)) {
547
+ return;
548
+ }
549
+ if (anchor.hasAttribute("download")) {
550
+ return;
551
+ }
552
+ const targetWindow2 = anchor.target.toLowerCase();
553
+ const href = anchor.getAttribute("href");
554
+ if (!href) {
555
+ return;
556
+ }
557
+ if (targetWindow2 === "_top" || targetWindow2 === "_parent") {
558
+ event.preventDefault();
559
+ bridge.redirectToRemote(anchor.href);
560
+ return;
561
+ }
562
+ if (targetWindow2 && targetWindow2 !== "_self") {
563
+ return;
564
+ }
565
+ const nextPath = resolveLocalNavigationPath(href, window.location.origin);
566
+ if (!nextPath) {
567
+ return;
568
+ }
569
+ event.preventDefault();
570
+ handleLocalNavigation(nextPath);
571
+ };
572
+ const originalOpen = window.open.bind(window);
573
+ window.open = (url, target, features) => {
574
+ if (url == null) {
575
+ return originalOpen(url, target, features);
576
+ }
577
+ const href = typeof url === "string" ? url : url.toString();
578
+ const targetName = (target ?? "").toLowerCase();
579
+ if (targetName === "_top" || targetName === "_parent") {
580
+ bridge.redirectToRemote(new URL(href, window.location.href).toString());
581
+ return null;
582
+ }
583
+ if (!targetName || targetName === "_self") {
584
+ const nextPath = resolveLocalNavigationPath(href, window.location.origin);
585
+ if (nextPath) {
586
+ handleLocalNavigation(nextPath);
587
+ return window;
588
+ }
589
+ }
590
+ return originalOpen(url, target, features);
591
+ };
592
+ document.addEventListener("click", handleDocumentClick, true);
593
+ return () => {
594
+ document.removeEventListener("click", handleDocumentClick, true);
595
+ window.open = originalOpen;
596
+ };
597
+ }, [bridge, onNavigate]);
466
598
  useEffect(() => {
467
599
  if (!bridge || typeof window === "undefined") {
468
600
  return;
@@ -486,6 +618,9 @@ function AppBridgeProvider({
486
618
  sessionTokenCacheRef
487
619
  });
488
620
  nextHeaders.set("Authorization", `Bearer ${sessionToken}`);
621
+ if (!nextHeaders.has("X-Requested-With")) {
622
+ nextHeaders.set("X-Requested-With", "XMLHttpRequest");
623
+ }
489
624
  if (input instanceof Request) {
490
625
  return originalFetch(
491
626
  new Request(input, {
@@ -604,7 +739,10 @@ function isExpired(expiresAt) {
604
739
  }
605
740
 
606
741
  export {
742
+ EMBEDDED_LAUNCH_PARAMS,
607
743
  buildNavigationUpdatePayload,
744
+ sanitizeEmbeddedAppPath,
745
+ resolveLocalNavigationPath,
608
746
  resolveNavigationDestination,
609
747
  isBridgeMessage,
610
748
  AppBridge,
@@ -612,4 +750,4 @@ export {
612
750
  AppBridgeProvider,
613
751
  useAppBridge
614
752
  };
615
- //# sourceMappingURL=chunk-X5YISVIL.js.map
753
+ //# sourceMappingURL=chunk-P5H5AHVK.js.map
package/dist/chunk-P5H5AHVK.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"sources":["../src/navigation.ts","../src/core.ts","../src/react.tsx"],"sourcesContent":["export interface BridgeNavigationGoPayload {\n path?: string;\n href?: string;\n pathname?: string;\n search?: string;\n hash?: string;\n}\n\nexport interface BridgeNavigationRedirectPayload extends BridgeNavigationGoPayload {}\n\nexport interface BridgeNavigationUpdatePayload {\n path: string;\n pathname: string;\n search: string;\n hash: string;\n}\n\nexport const EMBEDDED_LAUNCH_PARAMS = [\n \"appLoadId\",\n \"embedded\",\n \"hmac\",\n \"host\",\n \"id_token\",\n \"link_source\",\n \"locale\",\n \"project\",\n \"protocol\",\n \"session\",\n \"shop\",\n \"tenant\",\n \"timestamp\"\n] as const;\n\nconst NAVIGATION_BASE_URL = \"https://embedded-app.local\";\n\nfunction normalizeSearch(search: string) {\n if (!search) {\n return \"\";\n }\n\n return search.startsWith(\"?\") ? search : `?${search}`;\n}\n\nfunction normalizeHash(hash: string) {\n if (!hash) {\n return \"\";\n }\n\n return hash.startsWith(\"#\") ? hash : `#${hash}`;\n}\n\nexport function buildNavigationUpdatePayload(path: string): BridgeNavigationUpdatePayload {\n const sanitizedPath = sanitizeEmbeddedAppPath(path) ?? path;\n let pathname = sanitizedPath;\n let search = \"\";\n let hash = \"\";\n\n const hashIndex = pathname.indexOf(\"#\");\n if (hashIndex >= 0) {\n hash = pathname.slice(hashIndex);\n pathname = pathname.slice(0, hashIndex);\n }\n\n const searchIndex = pathname.indexOf(\"?\");\n if (searchIndex >= 0) {\n search = pathname.slice(searchIndex);\n pathname = pathname.slice(0, searchIndex);\n }\n\n return {\n path: `${pathname || \"/\"}${search}${hash}`,\n pathname: pathname || \"/\",\n search,\n hash\n };\n}\n\nexport function sanitizeEmbeddedAppPath(path: string | undefined) {\n if (!path) {\n return path;\n }\n\n const trimmedPath = path.trim();\n if (!trimmedPath) {\n return trimmedPath;\n }\n\n const url = new URL(trimmedPath, NAVIGATION_BASE_URL);\n let changed = false;\n\n for (const key of EMBEDDED_LAUNCH_PARAMS) {\n if (url.searchParams.has(key)) {\n url.searchParams.delete(key);\n changed = true;\n }\n }\n\n if (!changed) {\n return trimmedPath;\n }\n\n if (/^https?:\\/\\//i.test(trimmedPath)) {\n return url.toString();\n }\n\n return `${url.pathname}${url.search}${url.hash}`;\n}\n\nexport function resolveLocalNavigationPath(\n href: string,\n currentOrigin: string\n): string | null {\n if (!href || href.startsWith(\"#\")) {\n return null;\n }\n\n let destination: URL;\n try {\n destination = new URL(href, currentOrigin);\n } catch {\n return null;\n }\n\n if (destination.origin !== currentOrigin) {\n return null;\n }\n\n return sanitizeEmbeddedAppPath(\n `${destination.pathname}${destination.search}${destination.hash}`\n ) ?? null;\n}\n\nexport function resolveNavigationDestination(payload: unknown): string | null {\n if (typeof payload === \"string\") {\n return sanitizeEmbeddedAppPath(payload) ?? null;\n }\n\n if (!payload || typeof payload !== \"object\") {\n return null;\n }\n\n const value = payload as BridgeNavigationGoPayload;\n\n if (typeof value.path === \"string\" && value.path) {\n return sanitizeEmbeddedAppPath(value.path) ?? null;\n }\n\n if (typeof value.href === \"string\" && value.href) {\n return sanitizeEmbeddedAppPath(value.href) ?? null;\n }\n\n if (typeof value.pathname !== \"string\" || !value.pathname) {\n return null;\n }\n\n return (\n sanitizeEmbeddedAppPath(\n `${value.pathname}${normalizeSearch(value.search ?? \"\")}${normalizeHash(value.hash ?? \"\")}`\n ) ?? null\n );\n}\n","import {\n resolveNavigationDestination,\n type BridgeNavigationGoPayload,\n type BridgeNavigationRedirectPayload\n} from \"./navigation\";\n\nexport type BridgeParticipant = \"embedded-app\" | \"dashboard\" | \"unknown\";\n\nexport type BridgeMessageKind = \"event\" | \"request\" | \"response\";\n\nexport interface BridgeErrorPayload {\n code: string;\n message: string;\n}\n\nexport interface BridgeMessage<TPayload = unknown> {\n namespace: string;\n version: \"1.0\";\n kind: BridgeMessageKind;\n id: string;\n type: string;\n source: BridgeParticipant;\n target?: BridgeParticipant;\n payload?: TPayload;\n replyTo?: string;\n error?: BridgeErrorPayload;\n}\n\nexport interface AppBridgeOptions {\n clientId?: string;\n source?: BridgeParticipant;\n target?: BridgeParticipant;\n namespace?: string;\n targetOrigin?: string;\n allowedOrigins?: string[];\n requestTimeoutMs?: number;\n selfWindow?: Window;\n targetWindow?: Window | null;\n}\n\nexport interface RequestOptions {\n timeoutMs?: number;\n}\n\nexport interface SessionTokenRequest {\n clientId?: string;\n}\n\nexport interface SessionTokenResponse {\n sessionToken?: string;\n idToken: string;\n exp?: number;\n project?: string;\n}\n\nexport interface ReceivedBridgeMessage<TPayload = unknown> extends BridgeMessage<TPayload> {\n origin: string;\n rawEvent: MessageEvent<unknown>;\n}\n\nexport type BridgeEventHandler<TPayload = unknown> = (\n message: ReceivedBridgeMessage<TPayload>\n) => void;\n\nexport type BridgeRequestHandler<TRequest = unknown, TResponse = unknown> = (\n payload: TRequest,\n message: ReceivedBridgeMessage<TRequest>\n) => TResponse | Promise<TResponse>;\n\nexport type Unsubscribe = () => void;\n\nconst DEFAULT_NAMESPACE = \"thorcommerce:app-bridge\";\nconst DEFAULT_TIMEOUT_MS = 10_000;\nconst DEFAULT_REDIRECT_EVENT_TYPE = \"navigation:redirect\";\n\nfunction createMessageId() {\n if (typeof crypto !== \"undefined\" && typeof crypto.randomUUID === \"function\") {\n return crypto.randomUUID();\n }\n\n return `msg_${Date.now()}_${Math.random().toString(36).slice(2, 10)}`;\n}\n\nfunction resolveSelfWindow(explicitWindow?: Window) {\n if (explicitWindow) {\n return explicitWindow;\n }\n\n if (typeof window !== \"undefined\") {\n return window;\n }\n\n return undefined;\n}\n\nfunction resolveTargetWindow(selfWindow: Window | undefined, targetWindow?: Window | null) {\n if (targetWindow) {\n return targetWindow;\n }\n\n if (!selfWindow) {\n return undefined;\n }\n\n if (selfWindow.parent && selfWindow.parent !== selfWindow) {\n return selfWindow.parent;\n }\n\n return undefined;\n}\n\nfunction isDevelopmentEnvironment() {\n const nodeEnv =\n typeof globalThis !== \"undefined\" && \"process\" in globalThis\n ? (\n globalThis as typeof globalThis & {\n process?: { env?: { NODE_ENV?: string } };\n }\n ).process?.env?.NODE_ENV\n : undefined;\n\n if (nodeEnv) {\n return nodeEnv !== \"production\";\n }\n\n return true;\n}\n\nfunction hasAllowedOrigin(origin: string, allowedOrigins?: string[]) {\n if (!allowedOrigins || allowedOrigins.length === 0) {\n return true;\n }\n\n return allowedOrigins.includes(origin);\n}\n\nfunction isMessageTarget(value: unknown): value is Window {\n return !!value && typeof (value as Window).postMessage === \"function\";\n}\n\nfunction omitUndefinedFields<T extends object>(value: T): T {\n return Object.fromEntries(\n Object.entries(value).filter(([, fieldValue]) => fieldValue !== undefined)\n ) as T;\n}\n\nexport function isBridgeMessage<TPayload = unknown>(\n value: unknown,\n namespace = DEFAULT_NAMESPACE\n): value is BridgeMessage<TPayload> {\n if (!value || typeof value !== \"object\") {\n return false;\n }\n\n const message = value as Partial<BridgeMessage<TPayload>>;\n\n return (\n message.namespace === namespace &&\n message.version === \"1.0\" &&\n typeof message.kind === \"string\" &&\n typeof message.id === \"string\" &&\n typeof message.type === \"string\" &&\n typeof message.source === \"string\"\n );\n}\n\nexport class AppBridge {\n private readonly namespace: string;\n private readonly clientId?: string;\n private readonly source: BridgeParticipant;\n private readonly target: BridgeParticipant | undefined;\n private readonly targetOrigin: string;\n private readonly allowedOrigins?: string[];\n private readonly selfWindow?: Window;\n private readonly defaultTimeoutMs: number;\n private targetWindow?: Window;\n private readonly eventHandlers = new Map<string, Set<BridgeEventHandler>>();\n private readonly requestHandlers = new Map<string, BridgeRequestHandler>();\n private readonly pendingRequests = new Map<\n string,\n {\n resolve: (value: unknown) => void;\n reject: (error: Error) => void;\n timeoutId: ReturnType<typeof setTimeout>;\n }\n >();\n private readonly messageListener: (event: MessageEvent<unknown>) => void;\n\n constructor(options: AppBridgeOptions = {}) {\n this.namespace = options.namespace ?? DEFAULT_NAMESPACE;\n this.clientId = options.clientId;\n this.source = options.source ?? \"embedded-app\";\n this.target = options.target;\n this.targetOrigin = options.targetOrigin ?? \"*\";\n this.allowedOrigins = options.allowedOrigins;\n this.defaultTimeoutMs = options.requestTimeoutMs ?? DEFAULT_TIMEOUT_MS;\n this.selfWindow = resolveSelfWindow(options.selfWindow);\n this.targetWindow = resolveTargetWindow(this.selfWindow, options.targetWindow);\n this.messageListener = (event) => {\n this.handleMessage(event);\n };\n\n if (!this.selfWindow) {\n throw new Error(\n \"AppBridge requires a browser window. Pass selfWindow explicitly when constructing it outside global window scope.\"\n );\n }\n\n if (this.targetOrigin === \"*\" && isDevelopmentEnvironment()) {\n console.warn(\n 'AppBridge is using \"*\" as targetOrigin. Set targetOrigin explicitly for both the dashboard and embedded app in production.'\n );\n }\n\n this.selfWindow.addEventListener(\"message\", this.messageListener);\n }\n\n setTargetWindow(targetWindow: Window | null) {\n this.targetWindow = targetWindow ?? undefined;\n }\n\n hasTargetWindow() {\n return this.targetWindow !== undefined;\n }\n\n redirect(payload: string | BridgeNavigationRedirectPayload) {\n const destination = resolveNavigationDestination(payload);\n if (!destination) {\n throw new Error(\"AppBridge redirect requires a valid destination.\");\n }\n\n if (!this.targetWindow) {\n this.navigateSelf(destination);\n return;\n }\n\n this.postMessage<BridgeNavigationRedirectPayload>({\n kind: \"event\",\n type: DEFAULT_REDIRECT_EVENT_TYPE,\n payload: typeof payload === \"string\" ? { href: payload } : payload\n });\n }\n\n redirectToRemote(href: string) {\n this.redirect({ href });\n }\n\n redirectToApp(path: string | BridgeNavigationGoPayload) {\n this.redirect(typeof path === \"string\" ? { path } : path);\n }\n\n send<TPayload = unknown>(type: string, payload?: TPayload) {\n this.postMessage({\n kind: \"event\",\n type,\n payload\n });\n }\n\n request<TRequest = unknown, TResponse = unknown>(\n type: string,\n payload?: TRequest,\n options: RequestOptions = {}\n ) {\n const messageId = createMessageId();\n const timeoutMs = options.timeoutMs ?? this.defaultTimeoutMs;\n\n return new Promise<TResponse>((resolve, reject) => {\n const timeoutId = setTimeout(() => {\n this.pendingRequests.delete(messageId);\n reject(new Error(`Bridge request timed out for \"${type}\" after ${timeoutMs}ms.`));\n }, timeoutMs);\n\n this.pendingRequests.set(messageId, {\n resolve: (value) => resolve(value as TResponse),\n reject,\n timeoutId\n });\n\n try {\n this.postMessage({\n id: messageId,\n kind: \"request\",\n type,\n payload\n });\n } catch (error) {\n clearTimeout(timeoutId);\n this.pendingRequests.delete(messageId);\n reject(error instanceof Error ? error : new Error(\"Failed to send bridge request.\"));\n }\n });\n }\n\n getSessionToken(\n request: SessionTokenRequest = {},\n options: RequestOptions = {}\n ) {\n const resolvedRequest =\n request.clientId || this.clientId\n ? {\n ...request,\n clientId: request.clientId ?? this.clientId\n }\n : request;\n\n return this.request<SessionTokenRequest, SessionTokenResponse>(\n \"thor:session-token:get\",\n resolvedRequest,\n options\n );\n }\n\n on<TPayload = unknown>(type: string, handler: BridgeEventHandler<TPayload>): Unsubscribe {\n const handlers = this.eventHandlers.get(type) ?? new Set<BridgeEventHandler>();\n handlers.add(handler as BridgeEventHandler);\n this.eventHandlers.set(type, handlers);\n\n return () => {\n handlers.delete(handler as BridgeEventHandler);\n if (handlers.size === 0) {\n this.eventHandlers.delete(type);\n }\n };\n }\n\n onRequest<TRequest = unknown, TResponse = unknown>(\n type: string,\n handler: BridgeRequestHandler<TRequest, TResponse>\n ): Unsubscribe {\n this.requestHandlers.set(type, handler as BridgeRequestHandler);\n\n return () => {\n const registeredHandler = this.requestHandlers.get(type);\n if (registeredHandler === handler) {\n this.requestHandlers.delete(type);\n }\n };\n }\n\n destroy() {\n if (this.selfWindow) {\n this.selfWindow.removeEventListener(\"message\", this.messageListener);\n }\n\n for (const pendingRequest of this.pendingRequests.values()) {\n clearTimeout(pendingRequest.timeoutId);\n pendingRequest.reject(new Error(\"AppBridge destroyed before a response was received.\"));\n }\n\n this.pendingRequests.clear();\n this.eventHandlers.clear();\n this.requestHandlers.clear();\n }\n\n private handleMessage(event: MessageEvent<unknown>) {\n if (!hasAllowedOrigin(event.origin, this.allowedOrigins)) {\n return;\n }\n\n if (!isBridgeMessage(event.data, this.namespace)) {\n return;\n }\n\n const message = event.data;\n\n if (this.target && message.target && message.target !== this.source) {\n return;\n }\n\n const receivedMessage: ReceivedBridgeMessage = {\n ...message,\n origin: event.origin,\n rawEvent: event\n };\n\n if (\n message.kind === \"event\" &&\n message.type === DEFAULT_REDIRECT_EVENT_TYPE &&\n this.handleRedirectMessage(receivedMessage)\n ) {\n return;\n }\n\n if (message.kind === \"response\" && message.replyTo) {\n this.resolvePendingRequest(message.replyTo, message);\n return;\n }\n\n this.emitHandlers(message.type, receivedMessage);\n\n if (message.kind === \"request\") {\n void this.handleRequest(receivedMessage);\n }\n }\n\n private emitHandlers(type: string, message: ReceivedBridgeMessage) {\n const typeHandlers = this.eventHandlers.get(type);\n if (typeHandlers) {\n for (const handler of typeHandlers) {\n handler(message);\n }\n }\n\n if (type === \"*\") {\n return;\n }\n\n const wildcardHandlers = this.eventHandlers.get(\"*\");\n if (wildcardHandlers) {\n for (const handler of wildcardHandlers) {\n handler(message);\n }\n }\n }\n\n private async handleRequest(message: ReceivedBridgeMessage) {\n const handler = this.requestHandlers.get(message.type);\n if (!handler) {\n return;\n }\n\n const replyTarget = isMessageTarget(message.rawEvent.source)\n ? message.rawEvent.source\n : this.targetWindow;\n\n try {\n const payload = await handler(message.payload, message);\n this.postMessage(\n {\n kind: \"response\",\n type: message.type,\n payload,\n replyTo: message.id\n },\n replyTarget\n );\n } catch (error) {\n const bridgeError =\n error instanceof Error\n ? { code: \"request_handler_error\", message: error.message }\n : { code: \"request_handler_error\", message: \"Unknown request handler error.\" };\n\n this.postMessage(\n {\n kind: \"response\",\n type: message.type,\n error: bridgeError,\n replyTo: message.id\n },\n replyTarget\n );\n }\n }\n\n private resolvePendingRequest(messageId: string, message: BridgeMessage) {\n const pendingRequest = this.pendingRequests.get(messageId);\n if (!pendingRequest) {\n return;\n }\n\n clearTimeout(pendingRequest.timeoutId);\n this.pendingRequests.delete(messageId);\n\n if (message.error) {\n pendingRequest.reject(new Error(`${message.error.code}: ${message.error.message}`));\n return;\n }\n\n pendingRequest.resolve(message.payload);\n }\n\n private postMessage<TPayload = unknown>(\n partialMessage: Pick<BridgeMessage<TPayload>, \"kind\" | \"type\"> &\n Partial<Omit<BridgeMessage<TPayload>, \"namespace\" | \"version\" | \"source\">>,\n targetWindowOverride?: Window\n ) {\n const targetWindow = targetWindowOverride ?? this.targetWindow;\n if (!targetWindow) {\n throw new Error(\n \"AppBridge could not resolve a target window. Pass targetWindow explicitly or call setTargetWindow().\"\n );\n }\n\n const message = omitUndefinedFields({\n namespace: this.namespace,\n version: \"1.0\",\n id: partialMessage.id ?? createMessageId(),\n kind: partialMessage.kind,\n type: partialMessage.type,\n source: this.source,\n target: partialMessage.target ?? this.target,\n payload: partialMessage.payload,\n replyTo: partialMessage.replyTo,\n error: partialMessage.error\n }) as BridgeMessage<TPayload>;\n\n targetWindow.postMessage(message, this.targetOrigin);\n }\n\n private handleRedirectMessage(message: ReceivedBridgeMessage): boolean {\n const destination = resolveNavigationDestination(message.payload);\n if (!destination) {\n return false;\n }\n\n this.navigateSelf(destination);\n return true;\n }\n\n private navigateSelf(destination: string) {\n if (!this.selfWindow) {\n throw new Error(\"AppBridge could not resolve a browser window for redirect.\");\n }\n\n this.selfWindow.location.assign(destination);\n }\n}\n\nexport function createAppBridge(options: AppBridgeOptions = {}) {\n return new AppBridge(options);\n}\n","import {\n createContext,\n useContext,\n useEffect,\n useRef,\n useState,\n type MutableRefObject,\n type ReactNode\n} from \"react\";\n\nimport {\n createAppBridge,\n type AppBridge,\n type AppBridgeOptions,\n type ReceivedBridgeMessage\n} from \"./core\";\nimport {\n buildNavigationUpdatePayload,\n resolveLocalNavigationPath,\n resolveNavigationDestination,\n sanitizeEmbeddedAppPath,\n type BridgeNavigationGoPayload\n} from \"./navigation\";\n\nconst AppBridgeContext = createContext<AppBridge | null>(null);\n\nexport interface AppBridgeProviderProps\n extends Omit<AppBridgeOptions, \"source\" | \"target\" | \"allowedOrigins\"> {\n children: ReactNode;\n clientId: string;\n readyEventType?: string;\n readyPayload?: unknown;\n currentPath?: string | null;\n navigationEventType?: string;\n navigationUpdateEventType?: string;\n onNavigate?: (\n path: string,\n message?: ReceivedBridgeMessage<BridgeNavigationGoPayload>\n ) => void;\n}\n\nexport function AppBridgeProvider({\n children,\n clientId,\n currentPath,\n navigationEventType = \"navigation:go\",\n navigationUpdateEventType = \"navigation:update\",\n namespace,\n onNavigate,\n readyEventType = \"app:ready\",\n readyPayload,\n requestTimeoutMs,\n selfWindow,\n targetOrigin,\n targetWindow\n}: AppBridgeProviderProps) {\n const [bridge, setBridge] = useState<AppBridge | null>(null);\n const onNavigateRef = useRef(onNavigate);\n const sessionTokenCacheRef = useRef<{\n token: string;\n expiresAt?: number;\n } | null>(null);\n const pendingSessionTokenRef = useRef<Promise<string> | null>(null);\n\n useEffect(() => {\n onNavigateRef.current = onNavigate;\n }, [onNavigate]);\n\n useEffect(() => {\n if (typeof window === \"undefined\" && !selfWindow) {\n return;\n }\n\n const resolvedTargetOrigin = targetOrigin ?? getReferrerOrigin(selfWindow);\n const resolvedAllowedOrigins = resolvedTargetOrigin\n ? [resolvedTargetOrigin]\n : undefined;\n\n const nextBridge = createAppBridge({\n allowedOrigins: resolvedAllowedOrigins,\n clientId,\n namespace,\n requestTimeoutMs,\n selfWindow,\n source: \"embedded-app\",\n target: \"dashboard\",\n targetOrigin: resolvedTargetOrigin,\n targetWindow\n });\n\n setBridge(nextBridge);\n\n return () => {\n setBridge((currentBridge) => (currentBridge === nextBridge ? null : currentBridge));\n nextBridge.destroy();\n };\n }, [\n clientId,\n namespace,\n requestTimeoutMs,\n selfWindow,\n targetOrigin,\n targetWindow\n ]);\n\n useEffect(() => {\n if (!bridge || !bridge.hasTargetWindow()) {\n return;\n }\n\n bridge.send(\n readyEventType,\n readyPayload ?? {\n clientId\n }\n );\n }, [bridge, clientId, readyEventType, readyPayload]);\n\n useEffect(() => {\n if (!bridge || !bridge.hasTargetWindow() || !currentPath) {\n return;\n }\n\n bridge.send(navigationUpdateEventType, buildNavigationUpdatePayload(currentPath));\n }, [bridge, currentPath, navigationUpdateEventType]);\n\n useEffect(() => {\n if (!bridge || !onNavigate) {\n return;\n }\n\n return bridge.on<BridgeNavigationGoPayload>(navigationEventType, (message) => {\n const destination = resolveNavigationDestination(message.payload);\n if (!destination) {\n return;\n }\n\n onNavigateRef.current?.(destination, message);\n });\n }, [bridge, navigationEventType, onNavigate]);\n\n useEffect(() => {\n if (\n !bridge ||\n !onNavigate ||\n typeof document === \"undefined\" ||\n typeof window === \"undefined\"\n ) {\n return;\n }\n\n const handleLocalNavigation = (path: string) => {\n const sanitizedPath = sanitizeEmbeddedAppPath(path);\n if (!sanitizedPath) {\n return;\n }\n\n onNavigateRef.current?.(sanitizedPath);\n };\n\n const handleDocumentClick = (event: MouseEvent) => {\n if (\n event.defaultPrevented ||\n event.button !== 0 ||\n event.metaKey ||\n event.altKey ||\n event.ctrlKey ||\n event.shiftKey\n ) {\n return;\n }\n\n const target = event.target;\n if (!(target instanceof Element)) {\n return;\n }\n\n const anchor = target.closest(\"a[href]\");\n if (!(anchor instanceof HTMLAnchorElement)) {\n return;\n }\n\n if (anchor.hasAttribute(\"download\")) {\n return;\n }\n\n const targetWindow = anchor.target.toLowerCase();\n const href = anchor.getAttribute(\"href\");\n if (!href) {\n return;\n }\n\n if (targetWindow === \"_top\" || targetWindow === \"_parent\") {\n event.preventDefault();\n bridge.redirectToRemote(anchor.href);\n return;\n }\n\n if (targetWindow && targetWindow !== \"_self\") {\n return;\n }\n\n const nextPath = resolveLocalNavigationPath(href, window.location.origin);\n if (!nextPath) {\n return;\n }\n\n event.preventDefault();\n handleLocalNavigation(nextPath);\n };\n\n const originalOpen = window.open.bind(window);\n window.open = (url?: string | URL, target?: string, features?: string) => {\n if (url == null) {\n return originalOpen(url, target, features);\n }\n\n const href = typeof url === \"string\" ? url : url.toString();\n const targetName = (target ?? \"\").toLowerCase();\n\n if (targetName === \"_top\" || targetName === \"_parent\") {\n bridge.redirectToRemote(new URL(href, window.location.href).toString());\n return null;\n }\n\n if (!targetName || targetName === \"_self\") {\n const nextPath = resolveLocalNavigationPath(href, window.location.origin);\n if (nextPath) {\n handleLocalNavigation(nextPath);\n return window;\n }\n }\n\n return originalOpen(url, target, features);\n };\n\n document.addEventListener(\"click\", handleDocumentClick, true);\n\n return () => {\n document.removeEventListener(\"click\", handleDocumentClick, true);\n window.open = originalOpen;\n };\n }, [bridge, onNavigate]);\n\n useEffect(() => {\n if (!bridge || typeof window === \"undefined\") {\n return;\n }\n\n const originalFetch = window.fetch.bind(window);\n\n window.fetch = async (input: RequestInfo | URL, init?: RequestInit) => {\n if (!shouldAttachSessionToken(input)) {\n return originalFetch(input, init);\n }\n\n const existingAuthorization = getExistingAuthorization(input, init);\n if (existingAuthorization) {\n return originalFetch(input, init);\n }\n\n const nextHeaders = new Headers(\n input instanceof Request ? input.headers : init?.headers\n );\n const sessionToken = await getSessionToken({\n bridge,\n clientId,\n pendingSessionTokenRef,\n sessionTokenCacheRef\n });\n\n nextHeaders.set(\"Authorization\", `Bearer ${sessionToken}`);\n if (!nextHeaders.has(\"X-Requested-With\")) {\n nextHeaders.set(\"X-Requested-With\", \"XMLHttpRequest\");\n }\n\n if (input instanceof Request) {\n return originalFetch(\n new Request(input, {\n headers: nextHeaders\n })\n );\n }\n\n return originalFetch(input, {\n ...init,\n headers: nextHeaders\n });\n };\n\n return () => {\n window.fetch = originalFetch;\n };\n }, [bridge, clientId]);\n\n return <AppBridgeContext.Provider value={bridge}>{children}</AppBridgeContext.Provider>;\n}\n\nexport function useAppBridge() {\n return useContext(AppBridgeContext);\n}\n\nfunction getReferrerOrigin(explicitWindow?: Window) {\n const resolvedWindow = explicitWindow ?? (typeof window !== \"undefined\" ? window : undefined);\n const referrer = resolvedWindow?.document?.referrer;\n\n if (!referrer) {\n return undefined;\n }\n\n try {\n return new URL(referrer).origin;\n } catch {\n return undefined;\n }\n}\n\nasync function getSessionToken({\n bridge,\n clientId,\n pendingSessionTokenRef,\n sessionTokenCacheRef\n}: {\n bridge: AppBridge;\n clientId: string;\n pendingSessionTokenRef: MutableRefObject<Promise<string> | null>;\n sessionTokenCacheRef: MutableRefObject<{\n token: string;\n expiresAt?: number;\n } | null>;\n}) {\n const cachedToken = sessionTokenCacheRef.current;\n if (cachedToken && !isExpired(cachedToken.expiresAt)) {\n return cachedToken.token;\n }\n\n if (pendingSessionTokenRef.current) {\n return pendingSessionTokenRef.current;\n }\n\n const pendingToken = bridge\n .getSessionToken({ clientId })\n .then((response) => {\n const token = response.sessionToken ?? response.idToken;\n if (!token) {\n throw new Error(\"Missing Thor embedded session token\");\n }\n\n sessionTokenCacheRef.current = {\n token,\n expiresAt: normalizeTokenExpiry(token, response.exp)\n };\n pendingSessionTokenRef.current = null;\n\n return token;\n })\n .catch((error) => {\n pendingSessionTokenRef.current = null;\n throw error;\n });\n\n pendingSessionTokenRef.current = pendingToken;\n return pendingToken;\n}\n\nfunction shouldAttachSessionToken(input: RequestInfo | URL) {\n if (typeof window === \"undefined\") {\n return false;\n }\n\n const requestUrl = resolveRequestUrl(input);\n return requestUrl.origin === window.location.origin;\n}\n\nfunction resolveRequestUrl(input: RequestInfo | URL) {\n if (input instanceof Request) {\n return new URL(input.url);\n }\n\n if (input instanceof URL) {\n return input;\n }\n\n return new URL(input, window.location.href);\n}\n\nfunction getExistingAuthorization(input: RequestInfo | URL, init?: RequestInit) {\n if (input instanceof Request && input.headers.has(\"Authorization\")) {\n return input.headers.get(\"Authorization\");\n }\n\n if (!init?.headers) {\n return null;\n }\n\n return new Headers(init.headers).get(\"Authorization\");\n}\n\nfunction normalizeTokenExpiry(token: string, explicitExp?: number) {\n const tokenExp = explicitExp ?? decodeJwtExpiry(token);\n return tokenExp ? tokenExp * 1000 : undefined;\n}\n\nfunction decodeJwtExpiry(token: string) {\n const [, payload] = token.split(\".\");\n if (!payload || typeof window === \"undefined\") {\n return undefined;\n }\n\n try {\n const normalized = payload.replace(/-/g, \"+\").replace(/_/g, \"/\");\n const padded = normalized.padEnd(\n normalized.length + ((4 - (normalized.length % 4)) % 4),\n \"=\"\n );\n const json = JSON.parse(window.atob(padded)) as { exp?: unknown };\n\n return typeof json.exp === \"number\" ? json.exp : undefined;\n } catch {\n return undefined;\n }\n}\n\nfunction isExpired(expiresAt?: number) {\n if (!expiresAt) {\n return false;\n }\n\n return Date.now() >= expiresAt - 5_000;\n}\n"],"mappings":";AAiBO,IAAM,yBAAyB;AAAA,EACpC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,IAAM,sBAAsB;AAE5B,SAAS,gBAAgB,QAAgB;AACvC,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,SAAO,OAAO,WAAW,GAAG,IAAI,SAAS,IAAI,MAAM;AACrD;AAEA,SAAS,cAAc,MAAc;AACnC,MAAI,CAAC,MAAM;AACT,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,WAAW,GAAG,IAAI,OAAO,IAAI,IAAI;AAC/C;AAEO,SAAS,6BAA6B,MAA6C;AACxF,QAAM,gBAAgB,wBAAwB,IAAI,KAAK;AACvD,MAAI,WAAW;AACf,MAAI,SAAS;AACb,MAAI,OAAO;AAEX,QAAM,YAAY,SAAS,QAAQ,GAAG;AACtC,MAAI,aAAa,GAAG;AAClB,WAAO,SAAS,MAAM,SAAS;AAC/B,eAAW,SAAS,MAAM,GAAG,SAAS;AAAA,EACxC;AAEA,QAAM,cAAc,SAAS,QAAQ,GAAG;AACxC,MAAI,eAAe,GAAG;AACpB,aAAS,SAAS,MAAM,WAAW;AACnC,eAAW,SAAS,MAAM,GAAG,WAAW;AAAA,EAC1C;AAEA,SAAO;AAAA,IACL,MAAM,GAAG,YAAY,GAAG,GAAG,MAAM,GAAG,IAAI;AAAA,IACxC,UAAU,YAAY;AAAA,IACtB;AAAA,IACA;AAAA,EACF;AACF;AAEO,SAAS,wBAAwB,MAA0B;AAChE,MAAI,CAAC,MAAM;AACT,WAAO;AAAA,EACT;AAEA,QAAM,cAAc,KAAK,KAAK;AAC9B,MAAI,CAAC,aAAa;AAChB,WAAO;AAAA,EACT;AAEA,QAAM,MAAM,IAAI,IAAI,aAAa,mBAAmB;AACpD,MAAI,UAAU;AAEd,aAAW,OAAO,wBAAwB;AACxC,QAAI,IAAI,aAAa,IAAI,GAAG,GAAG;AAC7B,UAAI,aAAa,OAAO,GAAG;AAC3B,gBAAU;AAAA,IACZ;AAAA,EACF;AAEA,MAAI,CAAC,SAAS;AACZ,WAAO;AAAA,EACT;AAEA,MAAI,gBAAgB,KAAK,WAAW,GAAG;AACrC,WAAO,IAAI,SAAS;AAAA,EACtB;AAEA,SAAO,GAAG,IAAI,QAAQ,GAAG,IAAI,MAAM,GAAG,IAAI,IAAI;AAChD;AAEO,SAAS,2BACd,MACA,eACe;AACf,MAAI,CAAC,QAAQ,KAAK,WAAW,GAAG,GAAG;AACjC,WAAO;AAAA,EACT;AAEA,MAAI;AACJ,MAAI;AACF,kBAAc,IAAI,IAAI,MAAM,aAAa;AAAA,EAC3C,QAAQ;AACN,WAAO;AAAA,EACT;AAEA,MAAI,YAAY,WAAW,eAAe;AACxC,WAAO;AAAA,EACT;AAEA,SAAO;AAAA,IACL,GAAG,YAAY,QAAQ,GAAG,YAAY,MAAM,GAAG,YAAY,IAAI;AAAA,EACjE,KAAK;AACP;AAEO,SAAS,6BAA6B,SAAiC;AAC5E,MAAI,OAAO,YAAY,UAAU;AAC/B,WAAO,wBAAwB,OAAO,KAAK;AAAA,EAC7C;AAEA,MAAI,CAAC,WAAW,OAAO,YAAY,UAAU;AAC3C,WAAO;AAAA,EACT;AAEA,QAAM,QAAQ;AAEd,MAAI,OAAO,MAAM,SAAS,YAAY,MAAM,MAAM;AAChD,WAAO,wBAAwB,MAAM,IAAI,KAAK;AAAA,EAChD;AAEA,MAAI,OAAO,MAAM,SAAS,YAAY,MAAM,MAAM;AAChD,WAAO,wBAAwB,MAAM,IAAI,KAAK;AAAA,EAChD;AAEA,MAAI,OAAO,MAAM,aAAa,YAAY,CAAC,MAAM,UAAU;AACzD,WAAO;AAAA,EACT;AAEA,SACE;AAAA,IACE,GAAG,MAAM,QAAQ,GAAG,gBAAgB,MAAM,UAAU,EAAE,CAAC,GAAG,cAAc,MAAM,QAAQ,EAAE,CAAC;AAAA,EAC3F,KAAK;AAET;;;ACzFA,IAAM,oBAAoB;AAC1B,IAAM,qBAAqB;AAC3B,IAAM,8BAA8B;AAEpC,SAAS,kBAAkB;AACzB,MAAI,OAAO,WAAW,eAAe,OAAO,OAAO,eAAe,YAAY;AAC5E,WAAO,OAAO,WAAW;AAAA,EAC3B;AAEA,SAAO,OAAO,KAAK,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,SAAS,EAAE,EAAE,MAAM,GAAG,EAAE,CAAC;AACrE;AAEA,SAAS,kBAAkB,gBAAyB;AAClD,MAAI,gBAAgB;AAClB,WAAO;AAAA,EACT;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO;AAAA,EACT;AAEA,SAAO;AACT;AAEA,SAAS,oBAAoB,YAAgC,cAA8B;AACzF,MAAI,cAAc;AAChB,WAAO;AAAA,EACT;AAEA,MAAI,CAAC,YAAY;AACf,WAAO;AAAA,EACT;AAEA,MAAI,WAAW,UAAU,WAAW,WAAW,YAAY;AACzD,WAAO,WAAW;AAAA,EACpB;AAEA,SAAO;AACT;AAEA,SAAS,2BAA2B;AAClC,QAAM,UACJ,OAAO,eAAe,eAAe,aAAa,aAE5C,WAGA,SAAS,KAAK,WAChB;AAEN,MAAI,SAAS;AACX,WAAO,YAAY;AAAA,EACrB;AAEA,SAAO;AACT;AAEA,SAAS,iBAAiB,QAAgB,gBAA2B;AACnE,MAAI,CAAC,kBAAkB,eAAe,WAAW,GAAG;AAClD,WAAO;AAAA,EACT;AAEA,SAAO,eAAe,SAAS,MAAM;AACvC;AAEA,SAAS,gBAAgB,OAAiC;AACxD,SAAO,CAAC,CAAC,SAAS,OAAQ,MAAiB,gBAAgB;AAC7D;AAEA,SAAS,oBAAsC,OAAa;AAC1D,SAAO,OAAO;AAAA,IACZ,OAAO,QAAQ,KAAK,EAAE,OAAO,CAAC,CAAC,EAAE,UAAU,MAAM,eAAe,MAAS;AAAA,EAC3E;AACF;AAEO,SAAS,gBACd,OACA,YAAY,mBACsB;AAClC,MAAI,CAAC,SAAS,OAAO,UAAU,UAAU;AACvC,WAAO;AAAA,EACT;AAEA,QAAM,UAAU;AAEhB,SACE,QAAQ,cAAc,aACtB,QAAQ,YAAY,SACpB,OAAO,QAAQ,SAAS,YACxB,OAAO,QAAQ,OAAO,YACtB,OAAO,QAAQ,SAAS,YACxB,OAAO,QAAQ,WAAW;AAE9B;AAEO,IAAM,YAAN,MAAgB;AAAA,EAsBrB,YAAY,UAA4B,CAAC,GAAG;AAZ5C,SAAiB,gBAAgB,oBAAI,IAAqC;AAC1E,SAAiB,kBAAkB,oBAAI,IAAkC;AACzE,SAAiB,kBAAkB,oBAAI,IAOrC;AAIA,SAAK,YAAY,QAAQ,aAAa;AACtC,SAAK,WAAW,QAAQ;AACxB,SAAK,SAAS,QAAQ,UAAU;AAChC,SAAK,SAAS,QAAQ;AACtB,SAAK,eAAe,QAAQ,gBAAgB;AAC5C,SAAK,iBAAiB,QAAQ;AAC9B,SAAK,mBAAmB,QAAQ,oBAAoB;AACpD,SAAK,aAAa,kBAAkB,QAAQ,UAAU;AACtD,SAAK,eAAe,oBAAoB,KAAK,YAAY,QAAQ,YAAY;AAC7E,SAAK,kBAAkB,CAAC,UAAU;AAChC,WAAK,cAAc,KAAK;AAAA,IAC1B;AAEA,QAAI,CAAC,KAAK,YAAY;AACpB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,QAAI,KAAK,iBAAiB,OAAO,yBAAyB,GAAG;AAC3D,cAAQ;AAAA,QACN;AAAA,MACF;AAAA,IACF;AAEA,SAAK,WAAW,iBAAiB,WAAW,KAAK,eAAe;AAAA,EAClE;AAAA,EAEA,gBAAgB,cAA6B;AAC3C,SAAK,eAAe,gBAAgB;AAAA,EACtC;AAAA,EAEA,kBAAkB;AAChB,WAAO,KAAK,iBAAiB;AAAA,EAC/B;AAAA,EAEA,SAAS,SAAmD;AAC1D,UAAM,cAAc,6BAA6B,OAAO;AACxD,QAAI,CAAC,aAAa;AAChB,YAAM,IAAI,MAAM,kDAAkD;AAAA,IACpE;AAEA,QAAI,CAAC,KAAK,cAAc;AACtB,WAAK,aAAa,WAAW;AAC7B;AAAA,IACF;AAEA,SAAK,YAA6C;AAAA,MAChD,MAAM;AAAA,MACN,MAAM;AAAA,MACN,SAAS,OAAO,YAAY,WAAW,EAAE,MAAM,QAAQ,IAAI;AAAA,IAC7D,CAAC;AAAA,EACH;AAAA,EAEA,iBAAiB,MAAc;AAC7B,SAAK,SAAS,EAAE,KAAK,CAAC;AAAA,EACxB;AAAA,EAEA,cAAc,MAA0C;AACtD,SAAK,SAAS,OAAO,SAAS,WAAW,EAAE,KAAK,IAAI,IAAI;AAAA,EAC1D;AAAA,EAEA,KAAyB,MAAc,SAAoB;AACzD,SAAK,YAAY;AAAA,MACf,MAAM;AAAA,MACN;AAAA,MACA;AAAA,IACF,CAAC;AAAA,EACH;AAAA,EAEA,QACE,MACA,SACA,UAA0B,CAAC,GAC3B;AACA,UAAM,YAAY,gBAAgB;AAClC,UAAM,YAAY,QAAQ,aAAa,KAAK;AAE5C,WAAO,IAAI,QAAmB,CAAC,SAAS,WAAW;AACjD,YAAM,YAAY,WAAW,MAAM;AACjC,aAAK,gBAAgB,OAAO,SAAS;AACrC,eAAO,IAAI,MAAM,iCAAiC,IAAI,WAAW,SAAS,KAAK,CAAC;AAAA,MAClF,GAAG,SAAS;AAEZ,WAAK,gBAAgB,IAAI,WAAW;AAAA,QAClC,SAAS,CAAC,UAAU,QAAQ,KAAkB;AAAA,QAC9C;AAAA,QACA;AAAA,MACF,CAAC;AAED,UAAI;AACF,aAAK,YAAY;AAAA,UACf,IAAI;AAAA,UACJ,MAAM;AAAA,UACN;AAAA,UACA;AAAA,QACF,CAAC;AAAA,MACH,SAAS,OAAO;AACd,qBAAa,SAAS;AACtB,aAAK,gBAAgB,OAAO,SAAS;AACrC,eAAO,iBAAiB,QAAQ,QAAQ,IAAI,MAAM,gCAAgC,CAAC;AAAA,MACrF;AAAA,IACF,CAAC;AAAA,EACH;AAAA,EAEA,gBACE,UAA+B,CAAC,GAChC,UAA0B,CAAC,GAC3B;AACA,UAAM,kBACJ,QAAQ,YAAY,KAAK,WACrB;AAAA,MACE,GAAG;AAAA,MACH,UAAU,QAAQ,YAAY,KAAK;AAAA,IACrC,IACA;AAEN,WAAO,KAAK;AAAA,MACV;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAAA,EAEA,GAAuB,MAAc,SAAoD;AACvF,UAAM,WAAW,KAAK,cAAc,IAAI,IAAI,KAAK,oBAAI,IAAwB;AAC7E,aAAS,IAAI,OAA6B;AAC1C,SAAK,cAAc,IAAI,MAAM,QAAQ;AAErC,WAAO,MAAM;AACX,eAAS,OAAO,OAA6B;AAC7C,UAAI,SAAS,SAAS,GAAG;AACvB,aAAK,cAAc,OAAO,IAAI;AAAA,MAChC;AAAA,IACF;AAAA,EACF;AAAA,EAEA,UACE,MACA,SACa;AACb,SAAK,gBAAgB,IAAI,MAAM,OAA+B;AAE9D,WAAO,MAAM;AACX,YAAM,oBAAoB,KAAK,gBAAgB,IAAI,IAAI;AACvD,UAAI,sBAAsB,SAAS;AACjC,aAAK,gBAAgB,OAAO,IAAI;AAAA,MAClC;AAAA,IACF;AAAA,EACF;AAAA,EAEA,UAAU;AACR,QAAI,KAAK,YAAY;AACnB,WAAK,WAAW,oBAAoB,WAAW,KAAK,eAAe;AAAA,IACrE;AAEA,eAAW,kBAAkB,KAAK,gBAAgB,OAAO,GAAG;AAC1D,mBAAa,eAAe,SAAS;AACrC,qBAAe,OAAO,IAAI,MAAM,qDAAqD,CAAC;AAAA,IACxF;AAEA,SAAK,gBAAgB,MAAM;AAC3B,SAAK,cAAc,MAAM;AACzB,SAAK,gBAAgB,MAAM;AAAA,EAC7B;AAAA,EAEQ,cAAc,OAA8B;AAClD,QAAI,CAAC,iBAAiB,MAAM,QAAQ,KAAK,cAAc,GAAG;AACxD;AAAA,IACF;AAEA,QAAI,CAAC,gBAAgB,MAAM,MAAM,KAAK,SAAS,GAAG;AAChD;AAAA,IACF;AAEA,UAAM,UAAU,MAAM;AAEtB,QAAI,KAAK,UAAU,QAAQ,UAAU,QAAQ,WAAW,KAAK,QAAQ;AACnE;AAAA,IACF;AAEA,UAAM,kBAAyC;AAAA,MAC7C,GAAG;AAAA,MACH,QAAQ,MAAM;AAAA,MACd,UAAU;AAAA,IACZ;AAEA,QACE,QAAQ,SAAS,WACjB,QAAQ,SAAS,+BACjB,KAAK,sBAAsB,eAAe,GAC1C;AACA;AAAA,IACF;AAEA,QAAI,QAAQ,SAAS,cAAc,QAAQ,SAAS;AAClD,WAAK,sBAAsB,QAAQ,SAAS,OAAO;AACnD;AAAA,IACF;AAEA,SAAK,aAAa,QAAQ,MAAM,eAAe;AAE/C,QAAI,QAAQ,SAAS,WAAW;AAC9B,WAAK,KAAK,cAAc,eAAe;AAAA,IACzC;AAAA,EACF;AAAA,EAEQ,aAAa,MAAc,SAAgC;AACjE,UAAM,eAAe,KAAK,cAAc,IAAI,IAAI;AAChD,QAAI,cAAc;AAChB,iBAAW,WAAW,cAAc;AAClC,gBAAQ,OAAO;AAAA,MACjB;AAAA,IACF;AAEA,QAAI,SAAS,KAAK;AAChB;AAAA,IACF;AAEA,UAAM,mBAAmB,KAAK,cAAc,IAAI,GAAG;AACnD,QAAI,kBAAkB;AACpB,iBAAW,WAAW,kBAAkB;AACtC,gBAAQ,OAAO;AAAA,MACjB;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAc,cAAc,SAAgC;AAC1D,UAAM,UAAU,KAAK,gBAAgB,IAAI,QAAQ,IAAI;AACrD,QAAI,CAAC,SAAS;AACZ;AAAA,IACF;AAEA,UAAM,cAAc,gBAAgB,QAAQ,SAAS,MAAM,IACvD,QAAQ,SAAS,SACjB,KAAK;AAET,QAAI;AACF,YAAM,UAAU,MAAM,QAAQ,QAAQ,SAAS,OAAO;AACtD,WAAK;AAAA,QACH;AAAA,UACE,MAAM;AAAA,UACN,MAAM,QAAQ;AAAA,UACd;AAAA,UACA,SAAS,QAAQ;AAAA,QACnB;AAAA,QACA;AAAA,MACF;AAAA,IACF,SAAS,OAAO;AACd,YAAM,cACJ,iBAAiB,QACb,EAAE,MAAM,yBAAyB,SAAS,MAAM,QAAQ,IACxD,EAAE,MAAM,yBAAyB,SAAS,iCAAiC;AAEjF,WAAK;AAAA,QACH;AAAA,UACE,MAAM;AAAA,UACN,MAAM,QAAQ;AAAA,UACd,OAAO;AAAA,UACP,SAAS,QAAQ;AAAA,QACnB;AAAA,QACA;AAAA,MACF;AAAA,IACF;AAAA,EACF;AAAA,EAEQ,sBAAsB,WAAmB,SAAwB;AACvE,UAAM,iBAAiB,KAAK,gBAAgB,IAAI,SAAS;AACzD,QAAI,CAAC,gBAAgB;AACnB;AAAA,IACF;AAEA,iBAAa,eAAe,SAAS;AACrC,SAAK,gBAAgB,OAAO,SAAS;AAErC,QAAI,QAAQ,OAAO;AACjB,qBAAe,OAAO,IAAI,MAAM,GAAG,QAAQ,MAAM,IAAI,KAAK,QAAQ,MAAM,OAAO,EAAE,CAAC;AAClF;AAAA,IACF;AAEA,mBAAe,QAAQ,QAAQ,OAAO;AAAA,EACxC;AAAA,EAEQ,YACN,gBAEA,sBACA;AACA,UAAM,eAAe,wBAAwB,KAAK;AAClD,QAAI,CAAC,cAAc;AACjB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,UAAU,oBAAoB;AAAA,MAClC,WAAW,KAAK;AAAA,MAChB,SAAS;AAAA,MACT,IAAI,eAAe,MAAM,gBAAgB;AAAA,MACzC,MAAM,eAAe;AAAA,MACrB,MAAM,eAAe;AAAA,MACrB,QAAQ,KAAK;AAAA,MACb,QAAQ,eAAe,UAAU,KAAK;AAAA,MACtC,SAAS,eAAe;AAAA,MACxB,SAAS,eAAe;AAAA,MACxB,OAAO,eAAe;AAAA,IACxB,CAAC;AAED,iBAAa,YAAY,SAAS,KAAK,YAAY;AAAA,EACrD;AAAA,EAEQ,sBAAsB,SAAyC;AACrE,UAAM,cAAc,6BAA6B,QAAQ,OAAO;AAChE,QAAI,CAAC,aAAa;AAChB,aAAO;AAAA,IACT;AAEA,SAAK,aAAa,WAAW;AAC7B,WAAO;AAAA,EACT;AAAA,EAEQ,aAAa,aAAqB;AACxC,QAAI,CAAC,KAAK,YAAY;AACpB,YAAM,IAAI,MAAM,4DAA4D;AAAA,IAC9E;AAEA,SAAK,WAAW,SAAS,OAAO,WAAW;AAAA,EAC7C;AACF;AAEO,SAAS,gBAAgB,UAA4B,CAAC,GAAG;AAC9D,SAAO,IAAI,UAAU,OAAO;AAC9B;;;ACzgBA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OAGK;AA+RE;AA/QT,IAAM,mBAAmB,cAAgC,IAAI;AAiBtD,SAAS,kBAAkB;AAAA,EAChC;AAAA,EACA;AAAA,EACA;AAAA,EACA,sBAAsB;AAAA,EACtB,4BAA4B;AAAA,EAC5B;AAAA,EACA;AAAA,EACA,iBAAiB;AAAA,EACjB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,GAA2B;AACzB,QAAM,CAAC,QAAQ,SAAS,IAAI,SAA2B,IAAI;AAC3D,QAAM,gBAAgB,OAAO,UAAU;AACvC,QAAM,uBAAuB,OAGnB,IAAI;AACd,QAAM,yBAAyB,OAA+B,IAAI;AAElE,YAAU,MAAM;AACd,kBAAc,UAAU;AAAA,EAC1B,GAAG,CAAC,UAAU,CAAC;AAEf,YAAU,MAAM;AACd,QAAI,OAAO,WAAW,eAAe,CAAC,YAAY;AAChD;AAAA,IACF;AAEA,UAAM,uBAAuB,gBAAgB,kBAAkB,UAAU;AACzE,UAAM,yBAAyB,uBAC3B,CAAC,oBAAoB,IACrB;AAEJ,UAAM,aAAa,gBAAgB;AAAA,MACjC,gBAAgB;AAAA,MAChB;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA,QAAQ;AAAA,MACR,QAAQ;AAAA,MACR,cAAc;AAAA,MACd;AAAA,IACF,CAAC;AAED,cAAU,UAAU;AAEpB,WAAO,MAAM;AACX,gBAAU,CAAC,kBAAmB,kBAAkB,aAAa,OAAO,aAAc;AAClF,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF,GAAG;AAAA,IACD;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AAED,YAAU,MAAM;AACd,QAAI,CAAC,UAAU,CAAC,OAAO,gBAAgB,GAAG;AACxC;AAAA,IACF;AAEA,WAAO;AAAA,MACL;AAAA,MACA,gBAAgB;AAAA,QACd;AAAA,MACF;AAAA,IACF;AAAA,EACF,GAAG,CAAC,QAAQ,UAAU,gBAAgB,YAAY,CAAC;AAEnD,YAAU,MAAM;AACd,QAAI,CAAC,UAAU,CAAC,OAAO,gBAAgB,KAAK,CAAC,aAAa;AACxD;AAAA,IACF;AAEA,WAAO,KAAK,2BAA2B,6BAA6B,WAAW,CAAC;AAAA,EAClF,GAAG,CAAC,QAAQ,aAAa,yBAAyB,CAAC;AAEnD,YAAU,MAAM;AACd,QAAI,CAAC,UAAU,CAAC,YAAY;AAC1B;AAAA,IACF;AAEA,WAAO,OAAO,GAA8B,qBAAqB,CAAC,YAAY;AAC5E,YAAM,cAAc,6BAA6B,QAAQ,OAAO;AAChE,UAAI,CAAC,aAAa;AAChB;AAAA,MACF;AAEA,oBAAc,UAAU,aAAa,OAAO;AAAA,IAC9C,CAAC;AAAA,EACH,GAAG,CAAC,QAAQ,qBAAqB,UAAU,CAAC;AAE5C,YAAU,MAAM;AACd,QACE,CAAC,UACD,CAAC,cACD,OAAO,aAAa,eACpB,OAAO,WAAW,aAClB;AACA;AAAA,IACF;AAEA,UAAM,wBAAwB,CAAC,SAAiB;AAC9C,YAAM,gBAAgB,wBAAwB,IAAI;AAClD,UAAI,CAAC,eAAe;AAClB;AAAA,MACF;AAEA,oBAAc,UAAU,aAAa;AAAA,IACvC;AAEA,UAAM,sBAAsB,CAAC,UAAsB;AACjD,UACE,MAAM,oBACN,MAAM,WAAW,KACjB,MAAM,WACN,MAAM,UACN,MAAM,WACN,MAAM,UACN;AACA;AAAA,MACF;AAEA,YAAM,SAAS,MAAM;AACrB,UAAI,EAAE,kBAAkB,UAAU;AAChC;AAAA,MACF;AAEA,YAAM,SAAS,OAAO,QAAQ,SAAS;AACvC,UAAI,EAAE,kBAAkB,oBAAoB;AAC1C;AAAA,MACF;AAEA,UAAI,OAAO,aAAa,UAAU,GAAG;AACnC;AAAA,MACF;AAEA,YAAMA,gBAAe,OAAO,OAAO,YAAY;AAC/C,YAAM,OAAO,OAAO,aAAa,MAAM;AACvC,UAAI,CAAC,MAAM;AACT;AAAA,MACF;AAEA,UAAIA,kBAAiB,UAAUA,kBAAiB,WAAW;AACzD,cAAM,eAAe;AACrB,eAAO,iBAAiB,OAAO,IAAI;AACnC;AAAA,MACF;AAEA,UAAIA,iBAAgBA,kBAAiB,SAAS;AAC5C;AAAA,MACF;AAEA,YAAM,WAAW,2BAA2B,MAAM,OAAO,SAAS,MAAM;AACxE,UAAI,CAAC,UAAU;AACb;AAAA,MACF;AAEA,YAAM,eAAe;AACrB,4BAAsB,QAAQ;AAAA,IAChC;AAEA,UAAM,eAAe,OAAO,KAAK,KAAK,MAAM;AAC5C,WAAO,OAAO,CAAC,KAAoB,QAAiB,aAAsB;AACxE,UAAI,OAAO,MAAM;AACf,eAAO,aAAa,KAAK,QAAQ,QAAQ;AAAA,MAC3C;AAEA,YAAM,OAAO,OAAO,QAAQ,WAAW,MAAM,IAAI,SAAS;AAC1D,YAAM,cAAc,UAAU,IAAI,YAAY;AAE9C,UAAI,eAAe,UAAU,eAAe,WAAW;AACrD,eAAO,iBAAiB,IAAI,IAAI,MAAM,OAAO,SAAS,IAAI,EAAE,SAAS,CAAC;AACtE,eAAO;AAAA,MACT;AAEA,UAAI,CAAC,cAAc,eAAe,SAAS;AACzC,cAAM,WAAW,2BAA2B,MAAM,OAAO,SAAS,MAAM;AACxE,YAAI,UAAU;AACZ,gCAAsB,QAAQ;AAC9B,iBAAO;AAAA,QACT;AAAA,MACF;AAEA,aAAO,aAAa,KAAK,QAAQ,QAAQ;AAAA,IAC3C;AAEA,aAAS,iBAAiB,SAAS,qBAAqB,IAAI;AAE5D,WAAO,MAAM;AACX,eAAS,oBAAoB,SAAS,qBAAqB,IAAI;AAC/D,aAAO,OAAO;AAAA,IAChB;AAAA,EACF,GAAG,CAAC,QAAQ,UAAU,CAAC;AAEvB,YAAU,MAAM;AACd,QAAI,CAAC,UAAU,OAAO,WAAW,aAAa;AAC5C;AAAA,IACF;AAEA,UAAM,gBAAgB,OAAO,MAAM,KAAK,MAAM;AAE9C,WAAO,QAAQ,OAAO,OAA0B,SAAuB;AACrE,UAAI,CAAC,yBAAyB,KAAK,GAAG;AACpC,eAAO,cAAc,OAAO,IAAI;AAAA,MAClC;AAEA,YAAM,wBAAwB,yBAAyB,OAAO,IAAI;AAClE,UAAI,uBAAuB;AACzB,eAAO,cAAc,OAAO,IAAI;AAAA,MAClC;AAEA,YAAM,cAAc,IAAI;AAAA,QACtB,iBAAiB,UAAU,MAAM,UAAU,MAAM;AAAA,MACnD;AACA,YAAM,eAAe,MAAM,gBAAgB;AAAA,QACzC;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,MACF,CAAC;AAED,kBAAY,IAAI,iBAAiB,UAAU,YAAY,EAAE;AACzD,UAAI,CAAC,YAAY,IAAI,kBAAkB,GAAG;AACxC,oBAAY,IAAI,oBAAoB,gBAAgB;AAAA,MACtD;AAEA,UAAI,iBAAiB,SAAS;AAC5B,eAAO;AAAA,UACL,IAAI,QAAQ,OAAO;AAAA,YACjB,SAAS;AAAA,UACX,CAAC;AAAA,QACH;AAAA,MACF;AAEA,aAAO,cAAc,OAAO;AAAA,QAC1B,GAAG;AAAA,QACH,SAAS;AAAA,MACX,CAAC;AAAA,IACH;AAEA,WAAO,MAAM;AACX,aAAO,QAAQ;AAAA,IACjB;AAAA,EACF,GAAG,CAAC,QAAQ,QAAQ,CAAC;AAErB,SAAO,oBAAC,iBAAiB,UAAjB,EAA0B,OAAO,QAAS,UAAS;AAC7D;AAEO,SAAS,eAAe;AAC7B,SAAO,WAAW,gBAAgB;AACpC;AAEA,SAAS,kBAAkB,gBAAyB;AAClD,QAAM,iBAAiB,mBAAmB,OAAO,WAAW,cAAc,SAAS;AACnF,QAAM,WAAW,gBAAgB,UAAU;AAE3C,MAAI,CAAC,UAAU;AACb,WAAO;AAAA,EACT;AAEA,MAAI;AACF,WAAO,IAAI,IAAI,QAAQ,EAAE;AAAA,EAC3B,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,eAAe,gBAAgB;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,GAQG;AACD,QAAM,cAAc,qBAAqB;AACzC,MAAI,eAAe,CAAC,UAAU,YAAY,SAAS,GAAG;AACpD,WAAO,YAAY;AAAA,EACrB;AAEA,MAAI,uBAAuB,SAAS;AAClC,WAAO,uBAAuB;AAAA,EAChC;AAEA,QAAM,eAAe,OAClB,gBAAgB,EAAE,SAAS,CAAC,EAC5B,KAAK,CAAC,aAAa;AAClB,UAAM,QAAQ,SAAS,gBAAgB,SAAS;AAChD,QAAI,CAAC,OAAO;AACV,YAAM,IAAI,MAAM,qCAAqC;AAAA,IACvD;AAEA,yBAAqB,UAAU;AAAA,MAC7B;AAAA,MACA,WAAW,qBAAqB,OAAO,SAAS,GAAG;AAAA,IACrD;AACA,2BAAuB,UAAU;AAEjC,WAAO;AAAA,EACT,CAAC,EACA,MAAM,CAAC,UAAU;AAChB,2BAAuB,UAAU;AACjC,UAAM;AAAA,EACR,CAAC;AAEH,yBAAuB,UAAU;AACjC,SAAO;AACT;AAEA,SAAS,yBAAyB,OAA0B;AAC1D,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO;AAAA,EACT;AAEA,QAAM,aAAa,kBAAkB,KAAK;AAC1C,SAAO,WAAW,WAAW,OAAO,SAAS;AAC/C;AAEA,SAAS,kBAAkB,OAA0B;AACnD,MAAI,iBAAiB,SAAS;AAC5B,WAAO,IAAI,IAAI,MAAM,GAAG;AAAA,EAC1B;AAEA,MAAI,iBAAiB,KAAK;AACxB,WAAO;AAAA,EACT;AAEA,SAAO,IAAI,IAAI,OAAO,OAAO,SAAS,IAAI;AAC5C;AAEA,SAAS,yBAAyB,OAA0B,MAAoB;AAC9E,MAAI,iBAAiB,WAAW,MAAM,QAAQ,IAAI,eAAe,GAAG;AAClE,WAAO,MAAM,QAAQ,IAAI,eAAe;AAAA,EAC1C;AAEA,MAAI,CAAC,MAAM,SAAS;AAClB,WAAO;AAAA,EACT;AAEA,SAAO,IAAI,QAAQ,KAAK,OAAO,EAAE,IAAI,eAAe;AACtD;AAEA,SAAS,qBAAqB,OAAe,aAAsB;AACjE,QAAM,WAAW,eAAe,gBAAgB,KAAK;AACrD,SAAO,WAAW,WAAW,MAAO;AACtC;AAEA,SAAS,gBAAgB,OAAe;AACtC,QAAM,CAAC,EAAE,OAAO,IAAI,MAAM,MAAM,GAAG;AACnC,MAAI,CAAC,WAAW,OAAO,WAAW,aAAa;AAC7C,WAAO;AAAA,EACT;AAEA,MAAI;AACF,UAAM,aAAa,QAAQ,QAAQ,MAAM,GAAG,EAAE,QAAQ,MAAM,GAAG;AAC/D,UAAM,SAAS,WAAW;AAAA,MACxB,WAAW,UAAW,IAAK,WAAW,SAAS,KAAM;AAAA,MACrD;AAAA,IACF;AACA,UAAM,OAAO,KAAK,MAAM,OAAO,KAAK,MAAM,CAAC;AAE3C,WAAO,OAAO,KAAK,QAAQ,WAAW,KAAK,MAAM;AAAA,EACnD,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,SAAS,UAAU,WAAoB;AACrC,MAAI,CAAC,WAAW;AACd,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,IAAI,KAAK,YAAY;AACnC;","names":["targetWindow"]}
package/dist/index.cjs CHANGED
@@ -22,15 +22,34 @@ var index_exports = {};
22
22
  __export(index_exports, {
23
23
  AppBridge: () => AppBridge,
24
24
  AppBridgeProvider: () => AppBridgeProvider,
25
+ EMBEDDED_LAUNCH_PARAMS: () => EMBEDDED_LAUNCH_PARAMS,
25
26
  buildNavigationUpdatePayload: () => buildNavigationUpdatePayload,
26
27
  createAppBridge: () => createAppBridge,
27
28
  isBridgeMessage: () => isBridgeMessage,
29
+ resolveLocalNavigationPath: () => resolveLocalNavigationPath,
28
30
  resolveNavigationDestination: () => resolveNavigationDestination,
31
+ sanitizeEmbeddedAppPath: () => sanitizeEmbeddedAppPath,
29
32
  useAppBridge: () => useAppBridge
30
33
  });
31
34
  module.exports = __toCommonJS(index_exports);
32
35
 
33
36
  // src/navigation.ts
37
+ var EMBEDDED_LAUNCH_PARAMS = [
38
+ "appLoadId",
39
+ "embedded",
40
+ "hmac",
41
+ "host",
42
+ "id_token",
43
+ "link_source",
44
+ "locale",
45
+ "project",
46
+ "protocol",
47
+ "session",
48
+ "shop",
49
+ "tenant",
50
+ "timestamp"
51
+ ];
52
+ var NAVIGATION_BASE_URL = "https://embedded-app.local";
34
53
  function normalizeSearch(search) {
35
54
  if (!search) {
36
55
  return "";
@@ -44,7 +63,8 @@ function normalizeHash(hash) {
44
63
  return hash.startsWith("#") ? hash : `#${hash}`;
45
64
  }
46
65
  function buildNavigationUpdatePayload(path) {
47
- let pathname = path;
66
+ const sanitizedPath = sanitizeEmbeddedAppPath(path) ?? path;
67
+ let pathname = sanitizedPath;
48
68
  let search = "";
49
69
  let hash = "";
50
70
  const hashIndex = pathname.indexOf("#");
@@ -64,24 +84,67 @@ function buildNavigationUpdatePayload(path) {
64
84
  hash
65
85
  };
66
86
  }
87
+ function sanitizeEmbeddedAppPath(path) {
88
+ if (!path) {
89
+ return path;
90
+ }
91
+ const trimmedPath = path.trim();
92
+ if (!trimmedPath) {
93
+ return trimmedPath;
94
+ }
95
+ const url = new URL(trimmedPath, NAVIGATION_BASE_URL);
96
+ let changed = false;
97
+ for (const key of EMBEDDED_LAUNCH_PARAMS) {
98
+ if (url.searchParams.has(key)) {
99
+ url.searchParams.delete(key);
100
+ changed = true;
101
+ }
102
+ }
103
+ if (!changed) {
104
+ return trimmedPath;
105
+ }
106
+ if (/^https?:\/\//i.test(trimmedPath)) {
107
+ return url.toString();
108
+ }
109
+ return `${url.pathname}${url.search}${url.hash}`;
110
+ }
111
+ function resolveLocalNavigationPath(href, currentOrigin) {
112
+ if (!href || href.startsWith("#")) {
113
+ return null;
114
+ }
115
+ let destination;
116
+ try {
117
+ destination = new URL(href, currentOrigin);
118
+ } catch {
119
+ return null;
120
+ }
121
+ if (destination.origin !== currentOrigin) {
122
+ return null;
123
+ }
124
+ return sanitizeEmbeddedAppPath(
125
+ `${destination.pathname}${destination.search}${destination.hash}`
126
+ ) ?? null;
127
+ }
67
128
  function resolveNavigationDestination(payload) {
68
129
  if (typeof payload === "string") {
69
- return payload;
130
+ return sanitizeEmbeddedAppPath(payload) ?? null;
70
131
  }
71
132
  if (!payload || typeof payload !== "object") {
72
133
  return null;
73
134
  }
74
135
  const value = payload;
75
136
  if (typeof value.path === "string" && value.path) {
76
- return value.path;
137
+ return sanitizeEmbeddedAppPath(value.path) ?? null;
77
138
  }
78
139
  if (typeof value.href === "string" && value.href) {
79
- return value.href;
140
+ return sanitizeEmbeddedAppPath(value.href) ?? null;
80
141
  }
81
142
  if (typeof value.pathname !== "string" || !value.pathname) {
82
143
  return null;
83
144
  }
84
- return `${value.pathname}${normalizeSearch(value.search ?? "")}${normalizeHash(value.hash ?? "")}`;
145
+ return sanitizeEmbeddedAppPath(
146
+ `${value.pathname}${normalizeSearch(value.search ?? "")}${normalizeHash(value.hash ?? "")}`
147
+ ) ?? null;
85
148
  }
86
149
 
87
150
  // src/core.ts
@@ -489,6 +552,78 @@ function AppBridgeProvider({
489
552
  onNavigateRef.current?.(destination, message);
490
553
  });
491
554
  }, [bridge, navigationEventType, onNavigate]);
555
+ (0, import_react.useEffect)(() => {
556
+ if (!bridge || !onNavigate || typeof document === "undefined" || typeof window === "undefined") {
557
+ return;
558
+ }
559
+ const handleLocalNavigation = (path) => {
560
+ const sanitizedPath = sanitizeEmbeddedAppPath(path);
561
+ if (!sanitizedPath) {
562
+ return;
563
+ }
564
+ onNavigateRef.current?.(sanitizedPath);
565
+ };
566
+ const handleDocumentClick = (event) => {
567
+ if (event.defaultPrevented || event.button !== 0 || event.metaKey || event.altKey || event.ctrlKey || event.shiftKey) {
568
+ return;
569
+ }
570
+ const target = event.target;
571
+ if (!(target instanceof Element)) {
572
+ return;
573
+ }
574
+ const anchor = target.closest("a[href]");
575
+ if (!(anchor instanceof HTMLAnchorElement)) {
576
+ return;
577
+ }
578
+ if (anchor.hasAttribute("download")) {
579
+ return;
580
+ }
581
+ const targetWindow2 = anchor.target.toLowerCase();
582
+ const href = anchor.getAttribute("href");
583
+ if (!href) {
584
+ return;
585
+ }
586
+ if (targetWindow2 === "_top" || targetWindow2 === "_parent") {
587
+ event.preventDefault();
588
+ bridge.redirectToRemote(anchor.href);
589
+ return;
590
+ }
591
+ if (targetWindow2 && targetWindow2 !== "_self") {
592
+ return;
593
+ }
594
+ const nextPath = resolveLocalNavigationPath(href, window.location.origin);
595
+ if (!nextPath) {
596
+ return;
597
+ }
598
+ event.preventDefault();
599
+ handleLocalNavigation(nextPath);
600
+ };
601
+ const originalOpen = window.open.bind(window);
602
+ window.open = (url, target, features) => {
603
+ if (url == null) {
604
+ return originalOpen(url, target, features);
605
+ }
606
+ const href = typeof url === "string" ? url : url.toString();
607
+ const targetName = (target ?? "").toLowerCase();
608
+ if (targetName === "_top" || targetName === "_parent") {
609
+ bridge.redirectToRemote(new URL(href, window.location.href).toString());
610
+ return null;
611
+ }
612
+ if (!targetName || targetName === "_self") {
613
+ const nextPath = resolveLocalNavigationPath(href, window.location.origin);
614
+ if (nextPath) {
615
+ handleLocalNavigation(nextPath);
616
+ return window;
617
+ }
618
+ }
619
+ return originalOpen(url, target, features);
620
+ };
621
+ document.addEventListener("click", handleDocumentClick, true);
622
+ return () => {
623
+ document.removeEventListener("click", handleDocumentClick, true);
624
+ window.open = originalOpen;
625
+ };
626
+ }, [bridge, onNavigate]);
492
627
  (0, import_react.useEffect)(() => {
493
628
  if (!bridge || typeof window === "undefined") {
494
629
  return;
@@ -512,6 +647,9 @@ function AppBridgeProvider({
512
647
  sessionTokenCacheRef
513
648
  });
514
649
  nextHeaders.set("Authorization", `Bearer ${sessionToken}`);
650
+ if (!nextHeaders.has("X-Requested-With")) {
651
+ nextHeaders.set("X-Requested-With", "XMLHttpRequest");
652
+ }
515
653
  if (input instanceof Request) {
516
654
  return originalFetch(
517
655
  new Request(input, {
@@ -632,10 +770,13 @@ function isExpired(expiresAt) {
632
770
  0 && (module.exports = {
633
771
  AppBridge,
634
772
  AppBridgeProvider,
773
+ EMBEDDED_LAUNCH_PARAMS,
635
774
  buildNavigationUpdatePayload,
636
775
  createAppBridge,
637
776
  isBridgeMessage,
777
+ resolveLocalNavigationPath,
638
778
  resolveNavigationDestination,
779
+ sanitizeEmbeddedAppPath,
639
780
  useAppBridge
640
781
  });
641
782
  //# sourceMappingURL=index.cjs.map