npm - @tiquo/dom-package - Versions diffs - 1.3.2 → 1.3.3 - Mend

@tiquo/dom-package 1.3.2 → 1.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -231,6 +231,9 @@ declare global {
             accessToken: string;
             refreshToken?: string;
         };
+        __tiquo_get_iframe_token?: () => Promise<{
+            token: string;
+        }>;
     }
 }
 interface TiquoUser {
@@ -418,6 +421,8 @@ declare class TiquoAuth {
     private refreshTimer;
     private isRefreshing;
     private visibilityHandler;
+    private iframeObserver;
+    private injectedIframes;
     private broadcastChannel;
     private tabId;
     private isProcessingTabSync;
@@ -490,6 +495,17 @@ declare class TiquoAuth {
         onLoad?: () => void;
         onError?: (error: Error) => void;
     }): Promise<HTMLIFrameElement>;
+    /**
+     * Automatically find and inject auth tokens into existing Tiquo booking
+     * iframes on the page. Also watches for iframes added later via
+     * MutationObserver. This enables token injection even when the site uses
+     * a static <iframe> embed snippet rather than embedCustomerFlow().
+     */
+    private autoInjectIframeTokens;
+    private scanAndInjectIframes;
+    private injectTokenIntoIframe;
+    private isTiquoEmbedUrl;
+    private observeNewIframes;
     /**
      * Get the current access token (for advanced use cases)
      */

package/dist/index.d.ts CHANGED Viewed

@@ -231,6 +231,9 @@ declare global {
             accessToken: string;
             refreshToken?: string;
         };
+        __tiquo_get_iframe_token?: () => Promise<{
+            token: string;
+        }>;
     }
 }
 interface TiquoUser {
@@ -418,6 +421,8 @@ declare class TiquoAuth {
     private refreshTimer;
     private isRefreshing;
     private visibilityHandler;
+    private iframeObserver;
+    private injectedIframes;
     private broadcastChannel;
     private tabId;
     private isProcessingTabSync;
@@ -490,6 +495,17 @@ declare class TiquoAuth {
         onLoad?: () => void;
         onError?: (error: Error) => void;
     }): Promise<HTMLIFrameElement>;
+    /**
+     * Automatically find and inject auth tokens into existing Tiquo booking
+     * iframes on the page. Also watches for iframes added later via
+     * MutationObserver. This enables token injection even when the site uses
+     * a static <iframe> embed snippet rather than embedCustomerFlow().
+     */
+    private autoInjectIframeTokens;
+    private scanAndInjectIframes;
+    private injectTokenIntoIframe;
+    private isTiquoEmbedUrl;
+    private observeNewIframes;
     /**
      * Get the current access token (for advanced use cases)
      */

package/dist/index.js CHANGED Viewed

@@ -712,6 +712,8 @@ var TiquoAuth = class {
     this.refreshTimer = null;
     this.isRefreshing = false;
     this.visibilityHandler = null;
+    this.iframeObserver = null;
+    this.injectedIframes = /* @__PURE__ */ new WeakSet();
     // Multi-tab sync
     this.broadcastChannel = null;
     this.isProcessingTabSync = false;
@@ -742,6 +744,7 @@ var TiquoAuth = class {
     this.checkForInjectedTokens();
     this.restoreTokens();
     this.initVisibilityHandler();
+    this.autoInjectIframeTokens();
   }
   // ============================================
   // PUBLIC METHODS
@@ -1073,6 +1076,77 @@ var TiquoAuth = class {
     containerEl.appendChild(iframe);
     return iframe;
   }
+  /**
+   * Automatically find and inject auth tokens into existing Tiquo booking
+   * iframes on the page. Also watches for iframes added later via
+   * MutationObserver. This enables token injection even when the site uses
+   * a static <iframe> embed snippet rather than embedCustomerFlow().
+   */
+  autoInjectIframeTokens() {
+    if (typeof document === "undefined") return;
+    if (!this.accessToken) return;
+    if (typeof window !== "undefined") {
+      window.__tiquo_get_iframe_token = () => this.getIframeToken();
+    }
+    Promise.resolve().then(() => this.scanAndInjectIframes());
+    this.observeNewIframes();
+  }
+  async scanAndInjectIframes() {
+    if (!this.accessToken) return;
+    const iframes = document.querySelectorAll("iframe");
+    for (const iframe of iframes) {
+      await this.injectTokenIntoIframe(iframe);
+    }
+  }
+  async injectTokenIntoIframe(iframe) {
+    if (this.injectedIframes.has(iframe)) return;
+    const src = iframe.src || iframe.getAttribute("src") || "";
+    if (!src) return;
+    try {
+      const url = new URL(src, window.location.origin);
+      if (!this.isTiquoEmbedUrl(url)) return;
+      if (url.searchParams.has("_auth_token")) {
+        this.injectedIframes.add(iframe);
+        return;
+      }
+      const { token } = await this.getIframeToken();
+      url.searchParams.set("_auth_token", token);
+      this.injectedIframes.add(iframe);
+      iframe.src = url.toString();
+      this.log("Injected auth token into existing iframe:", url.pathname);
+    } catch (error) {
+      this.log("Failed to inject token into iframe:", error);
+    }
+  }
+  isTiquoEmbedUrl(url) {
+    const hostname = url.hostname;
+    const isTiquoHost = hostname === "book.tiquo.app" || hostname.endsWith(".tiquo.app") || hostname === "localhost";
+    return isTiquoHost && url.pathname.startsWith("/embed/");
+  }
+  observeNewIframes() {
+    if (typeof MutationObserver === "undefined") return;
+    if (this.iframeObserver) return;
+    this.iframeObserver = new MutationObserver((mutations) => {
+      if (!this.accessToken) return;
+      for (const mutation of mutations) {
+        for (const node of mutation.addedNodes) {
+          if (node instanceof HTMLIFrameElement) {
+            this.injectTokenIntoIframe(node);
+          }
+          if (node instanceof HTMLElement) {
+            const nested = node.querySelectorAll("iframe");
+            for (const iframe of nested) {
+              this.injectTokenIntoIframe(iframe);
+            }
+          }
+        }
+      }
+    });
+    this.iframeObserver.observe(document.body || document.documentElement, {
+      childList: true,
+      subtree: true
+    });
+  }
   /**
    * Get the current access token (for advanced use cases)
    */
@@ -1469,6 +1543,13 @@ var TiquoAuth = class {
       this.broadcastChannel.close();
       this.broadcastChannel = null;
     }
+    if (this.iframeObserver) {
+      this.iframeObserver.disconnect();
+      this.iframeObserver = null;
+    }
+    if (typeof window !== "undefined") {
+      delete window.__tiquo_get_iframe_token;
+    }
     this.listeners.clear();
   }
 };

package/dist/index.mjs CHANGED Viewed

@@ -676,6 +676,8 @@ var TiquoAuth = class {
     this.refreshTimer = null;
     this.isRefreshing = false;
     this.visibilityHandler = null;
+    this.iframeObserver = null;
+    this.injectedIframes = /* @__PURE__ */ new WeakSet();
     // Multi-tab sync
     this.broadcastChannel = null;
     this.isProcessingTabSync = false;
@@ -706,6 +708,7 @@ var TiquoAuth = class {
     this.checkForInjectedTokens();
     this.restoreTokens();
     this.initVisibilityHandler();
+    this.autoInjectIframeTokens();
   }
   // ============================================
   // PUBLIC METHODS
@@ -1037,6 +1040,77 @@ var TiquoAuth = class {
     containerEl.appendChild(iframe);
     return iframe;
   }
+  /**
+   * Automatically find and inject auth tokens into existing Tiquo booking
+   * iframes on the page. Also watches for iframes added later via
+   * MutationObserver. This enables token injection even when the site uses
+   * a static <iframe> embed snippet rather than embedCustomerFlow().
+   */
+  autoInjectIframeTokens() {
+    if (typeof document === "undefined") return;
+    if (!this.accessToken) return;
+    if (typeof window !== "undefined") {
+      window.__tiquo_get_iframe_token = () => this.getIframeToken();
+    }
+    Promise.resolve().then(() => this.scanAndInjectIframes());
+    this.observeNewIframes();
+  }
+  async scanAndInjectIframes() {
+    if (!this.accessToken) return;
+    const iframes = document.querySelectorAll("iframe");
+    for (const iframe of iframes) {
+      await this.injectTokenIntoIframe(iframe);
+    }
+  }
+  async injectTokenIntoIframe(iframe) {
+    if (this.injectedIframes.has(iframe)) return;
+    const src = iframe.src || iframe.getAttribute("src") || "";
+    if (!src) return;
+    try {
+      const url = new URL(src, window.location.origin);
+      if (!this.isTiquoEmbedUrl(url)) return;
+      if (url.searchParams.has("_auth_token")) {
+        this.injectedIframes.add(iframe);
+        return;
+      }
+      const { token } = await this.getIframeToken();
+      url.searchParams.set("_auth_token", token);
+      this.injectedIframes.add(iframe);
+      iframe.src = url.toString();
+      this.log("Injected auth token into existing iframe:", url.pathname);
+    } catch (error) {
+      this.log("Failed to inject token into iframe:", error);
+    }
+  }
+  isTiquoEmbedUrl(url) {
+    const hostname = url.hostname;
+    const isTiquoHost = hostname === "book.tiquo.app" || hostname.endsWith(".tiquo.app") || hostname === "localhost";
+    return isTiquoHost && url.pathname.startsWith("/embed/");
+  }
+  observeNewIframes() {
+    if (typeof MutationObserver === "undefined") return;
+    if (this.iframeObserver) return;
+    this.iframeObserver = new MutationObserver((mutations) => {
+      if (!this.accessToken) return;
+      for (const mutation of mutations) {
+        for (const node of mutation.addedNodes) {
+          if (node instanceof HTMLIFrameElement) {
+            this.injectTokenIntoIframe(node);
+          }
+          if (node instanceof HTMLElement) {
+            const nested = node.querySelectorAll("iframe");
+            for (const iframe of nested) {
+              this.injectTokenIntoIframe(iframe);
+            }
+          }
+        }
+      }
+    });
+    this.iframeObserver.observe(document.body || document.documentElement, {
+      childList: true,
+      subtree: true
+    });
+  }
   /**
    * Get the current access token (for advanced use cases)
    */
@@ -1433,6 +1507,13 @@ var TiquoAuth = class {
       this.broadcastChannel.close();
       this.broadcastChannel = null;
     }
+    if (this.iframeObserver) {
+      this.iframeObserver.disconnect();
+      this.iframeObserver = null;
+    }
+    if (typeof window !== "undefined") {
+      delete window.__tiquo_get_iframe_token;
+    }
     this.listeners.clear();
   }
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@tiquo/dom-package",
-  "version": "1.3.2",
+  "version": "1.3.3",
   "description": "Tiquo SDK for third-party websites - authentication, customer profiles, orders, bookings, and enquiries",
   "sideEffects": true,
   "publishConfig": {