npm - @tuturuuu/utils - Versions diffs - 0.0.2 → 0.6.0 - Mend

@tuturuuu/utils 0.0.2 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (186) hide show

package/CHANGELOG.md +305 -0
package/biome.json +5 -0
package/jsr.json +8 -8
package/package.json +63 -32
package/src/__tests__/ai-temp-auth.test.ts +309 -0
package/src/__tests__/api-proxy-guard.test.ts +1451 -0
package/src/__tests__/app-url.test.ts +270 -0
package/src/__tests__/avatar-url.test.ts +97 -0
package/src/__tests__/color-helper.test.ts +179 -0
package/src/__tests__/constants.test.ts +351 -0
package/src/__tests__/crypto.test.ts +107 -0
package/src/__tests__/date-helper.test.ts +408 -0
package/src/__tests__/fixtures/task-description-full-featured.json +456 -0
package/src/__tests__/format.test.ts +317 -0
package/src/__tests__/html-sanitizer.test.ts +360 -0
package/src/__tests__/interest-calculator.test.ts +336 -0
package/src/__tests__/interest-detector.test.ts +222 -0
package/src/__tests__/label-colors.test.ts +241 -0
package/src/__tests__/name-helper.test.ts +158 -0
package/src/__tests__/node-diff.test.ts +576 -0
package/src/__tests__/notification-service.test.ts +210 -0
package/src/__tests__/onboarding-helper.test.ts +331 -0
package/src/__tests__/path-helper.test.ts +152 -0
package/src/__tests__/permissions.test.tsx +81 -0
package/src/__tests__/request-emoji-limit.test.ts +172 -0
package/src/__tests__/search-helper.test.ts +51 -0
package/src/__tests__/storage-display-name.test.ts +37 -0
package/src/__tests__/storage-path.test.ts +238 -0
package/src/__tests__/tag-utils.test.ts +205 -0
package/src/__tests__/task-description-yjs-state.test.ts +581 -0
package/src/__tests__/task-helper-board-api-routing.test.ts +94 -0
package/src/__tests__/task-helper-create-task.test.ts +129 -0
package/src/__tests__/task-helpers.test.ts +464 -0
package/src/__tests__/task-overrides.test.ts +305 -0
package/src/__tests__/task-reorder-cache.test.ts +74 -0
package/src/__tests__/task-sort-keys.test.ts +36 -0
package/src/__tests__/task-transformers.test.ts +62 -0
package/src/__tests__/text-helper.test.ts +776 -0
package/src/__tests__/time-helper.test.ts +70 -0
package/src/__tests__/time-tracker-period.test.ts +55 -0
package/src/__tests__/timezone.test.ts +117 -0
package/src/__tests__/upstash-rest.test.ts +77 -0
package/src/__tests__/uuid-helper.test.ts +133 -0
package/src/__tests__/workspace-helper.test.ts +859 -0
package/src/__tests__/workspace-limits.test.ts +255 -0
package/src/__tests__/yjs-helper.test.ts +581 -0
package/src/abuse-protection/__tests__/backend-rate-limit.test.ts +113 -0
package/src/abuse-protection/__tests__/edge.test.ts +136 -0
package/src/abuse-protection/__tests__/index.test.ts +562 -0
package/src/abuse-protection/__tests__/reputation.test.ts +192 -0
package/src/abuse-protection/backend-rate-limit.ts +44 -0
package/src/abuse-protection/constants.ts +117 -0
package/src/abuse-protection/edge.ts +223 -0
package/src/abuse-protection/index.ts +1545 -0
package/src/abuse-protection/reputation.ts +587 -0
package/src/abuse-protection/types.ts +97 -0
package/src/abuse-protection/user-agent.ts +124 -0
package/src/abuse-protection/user-suspension.ts +231 -0
package/src/ai-temp-auth.ts +315 -0
package/src/api-proxy-guard.ts +965 -0
package/src/app-url.ts +96 -0
package/src/avatar-url.ts +64 -0
package/src/break-duration.ts +84 -0
package/src/calendar-auth-token.test.ts +37 -0
package/src/calendar-auth-token.ts +19 -0
package/src/calendar-sync-coordination.md +197 -0
package/src/calendar-utils.test.ts +169 -0
package/src/calendar-utils.ts +91 -0
package/src/color-helper.ts +110 -0
package/src/common/nextjs.tsx +99 -0
package/src/common/scan.tsx +15 -0
package/src/configs/reports.ts +160 -0
package/src/constants.ts +85 -0
package/src/crypto.ts +21 -0
package/src/currencies.ts +97 -0
package/src/date-helper.ts +313 -0
package/src/editor/convert-to-task.ts +264 -0
package/src/editor/index.ts +5 -0
package/src/email/__tests__/client.test.ts +141 -0
package/src/email/__tests__/validation.test.ts +46 -0
package/src/email/client.ts +92 -0
package/src/email/server.ts +128 -0
package/src/email/validation.ts +11 -0
package/src/encryption/__tests__/calendar-events.test.ts +411 -0
package/src/encryption/__tests__/configuration.test.ts +114 -0
package/src/encryption/__tests__/field-encryption.test.ts +232 -0
package/src/encryption/__tests__/key-generation.test.ts +30 -0
package/src/encryption/__tests__/performance-edge-cases.test.ts +187 -0
package/src/encryption/__tests__/test-helpers.ts +22 -0
package/src/encryption/__tests__/workspace-key-encryption.test.ts +129 -0
package/src/encryption/encryption-service.ts +343 -0
package/src/encryption/index.ts +25 -0
package/src/encryption/types.ts +57 -0
package/src/exchange-rates.ts +49 -0
package/src/feature-flags/__tests__/feature-flags.test.ts +302 -0
package/src/feature-flags/core.ts +322 -0
package/src/feature-flags/data.ts +16 -0
package/src/feature-flags/default.ts +18 -0
package/src/feature-flags/index.ts +7 -0
package/src/feature-flags/requestable-features.ts +79 -0
package/src/feature-flags/types.ts +4 -0
package/src/fetcher.ts +2 -0
package/src/finance/index.ts +4 -0
package/src/finance/interest-calculator.ts +456 -0
package/src/finance/interest-detector.ts +141 -0
package/src/finance/transform-invoice-results.ts +219 -0
package/src/finance/wallet-permissions.test.ts +169 -0
package/src/finance/wallet-permissions.ts +82 -0
package/src/format.ts +122 -3
package/src/generated/platform-build-metadata.ts +11 -0
package/src/hooks/use-platform.ts +64 -0
package/src/html-sanitizer.ts +155 -0
package/src/internal-domains.ts +497 -0
package/src/keyboard-preset.ts +109 -0
package/src/label-colors.ts +213 -0
package/src/launchable-apps.test.ts +126 -0
package/src/launchable-apps.ts +490 -0
package/src/name-helper.ts +269 -0
package/src/next-config.test.ts +234 -0
package/src/next-config.ts +203 -0
package/src/node-diff.ts +375 -0
package/src/notification-service.ts +379 -0
package/src/nova/scores/__tests__/calculate.test.ts +254 -0
package/src/nova/scores/calculate.ts +132 -0
package/src/nova/submissions/check-permission.ts +132 -0
package/src/onboarding-helper.ts +213 -0
package/src/path-helper.ts +93 -0
package/src/permissions.tsx +1170 -0
package/src/plan-helpers.test.ts +188 -0
package/src/plan-helpers.ts +80 -0
package/src/platform-release.test.ts +74 -0
package/src/platform-release.ts +155 -0
package/src/portless.ts +124 -0
package/src/priority-styles.ts +42 -0
package/src/request-emoji-limit.ts +335 -0
package/src/search-helper.ts +18 -0
package/src/search.test.ts +89 -0
package/src/search.ts +355 -0
package/src/storage-display-name.ts +30 -0
package/src/storage-path.ts +147 -0
package/src/tag-utils.ts +159 -0
package/src/task/reorder.ts +245 -0
package/src/task/transformers.ts +149 -0
package/src/task-date-timezone.ts +133 -0
package/src/task-description-content.ts +240 -0
package/src/task-helper/board.ts +193 -0
package/src/task-helper/bulk-actions.ts +564 -0
package/src/task-helper/personal-external-staging.ts +21 -0
package/src/task-helper/recycle-bin.ts +202 -0
package/src/task-helper/relationships.ts +346 -0
package/src/task-helper/shared.ts +109 -0
package/src/task-helper/sort-keys.ts +337 -0
package/src/task-helper/task-hooks-basic.ts +342 -0
package/src/task-helper/task-hooks-move.ts +264 -0
package/src/task-helper/task-operations.ts +278 -0
package/src/task-helper.ts +12 -0
package/src/task-helpers.ts +241 -0
package/src/task-list-status.ts +62 -0
package/src/task-overrides.ts +82 -0
package/src/task-snapshot.ts +374 -0
package/src/text-diff.ts +81 -0
package/src/text-helper.ts +537 -0
package/src/time-helper.ts +63 -0
package/src/time-tracker-period.ts +73 -0
package/src/timeblock-helper.ts +418 -0
package/src/timezone.ts +190 -0
package/src/timezones.json +1271 -0
package/src/upstash-rest.ts +56 -0
package/src/user-helper.ts +296 -0
package/src/uuid-helper.ts +11 -0
package/src/workspace-handle.ts +10 -0
package/src/workspace-helper.ts +1408 -0
package/src/workspace-limits.ts +68 -0
package/src/yjs-helper.ts +217 -0
package/src/yjs-task-description.ts +81 -0
package/tsconfig.json +3 -5
package/tsconfig.typecheck.json +33 -0
package/vitest.config.ts +36 -0
package/dist/index.d.ts +0 -8
package/dist/index.js +0 -2
package/dist/index.js.map +0 -1
package/dist/index.mjs +0 -2
package/dist/index.mjs.map +0 -1
package/eslint.config.mjs +0 -20
package/rollup.config.js +0 -41
package/src/index.ts +0 -1

package/src/html-sanitizer.ts ADDED Viewed

@@ -0,0 +1,155 @@
+/**
+ * Simple HTML sanitizer for event descriptions
+ * Allows only safe tags and attributes to prevent XSS attacks
+ */
+// Allowed HTML tags for event descriptions
+const ALLOWED_TAGS = [
+  'p',
+  'br',
+  'strong',
+  'b',
+  'em',
+  'i',
+  'u',
+  'a',
+  'ul',
+  'ol',
+  'li',
+  'span',
+  'div',
+];
+// Allowed attributes for each tag
+const ALLOWED_ATTRIBUTES: Record<string, string[]> = {
+  a: ['href', 'title', 'target', 'rel'],
+  span: ['class'],
+  div: ['class'],
+};
+// URL protocols that are safe
+const SAFE_URL_PROTOCOLS = ['http:', 'https:', 'mailto:'];
+/**
+ * Sanitize a URL to prevent javascript: and data: URLs
+ */
+function sanitizeUrl(url: string): string | null {
+  try {
+    const trimmed = url.trim();
+    // Allow relative URLs
+    if (
+      trimmed.startsWith('/') ||
+      trimmed.startsWith('./') ||
+      trimmed.startsWith('../')
+    ) {
+      return trimmed;
+    }
+    // Check protocol for absolute URLs
+    const urlObj = new URL(trimmed, window.location.origin);
+    if (SAFE_URL_PROTOCOLS.includes(urlObj.protocol)) {
+      return trimmed;
+    }
+    return null;
+  } catch {
+    // If URL parsing fails, it's probably not a valid URL
+    return null;
+  }
+}
+/**
+ * Sanitize HTML content by stripping dangerous tags and attributes
+ * This is a simple implementation - for production, consider using DOMPurify
+ */
+export function sanitizeHtml(html: string): string {
+  if (!html) return '';
+  // Create a temporary DOM element to parse HTML
+  const temp = document.createElement('div');
+  temp.innerHTML = html;
+  // Recursive function to sanitize nodes
+  function sanitizeNode(node: Node): Node | null {
+    // Text nodes are always safe
+    if (node.nodeType === Node.TEXT_NODE) {
+      return node.cloneNode(true);
+    }
+    // Only process element nodes
+    if (node.nodeType !== Node.ELEMENT_NODE) {
+      return null;
+    }
+    const element = node as Element;
+    const tagName = element.tagName.toLowerCase();
+    // Check if tag is allowed
+    if (!ALLOWED_TAGS.includes(tagName)) {
+      // For disallowed tags, keep their text content but not the tag itself
+      const textContent = element.textContent || '';
+      return document.createTextNode(textContent);
+    }
+    // Create a new element with the same tag
+    const newElement = document.createElement(tagName);
+    // Copy allowed attributes
+    const allowedAttrs = ALLOWED_ATTRIBUTES[tagName] || [];
+    for (const attr of allowedAttrs) {
+      const value = element.getAttribute(attr);
+      if (value) {
+        // Special handling for URLs in href
+        if (attr === 'href') {
+          const sanitizedUrl = sanitizeUrl(value);
+          if (sanitizedUrl) {
+            newElement.setAttribute(attr, sanitizedUrl);
+            // Add rel="noopener noreferrer" for external links for security
+            if (sanitizedUrl.startsWith('http')) {
+              newElement.setAttribute('rel', 'noopener noreferrer');
+              newElement.setAttribute('target', '_blank');
+            }
+          }
+        } else {
+          newElement.setAttribute(attr, value);
+        }
+      }
+    }
+    // Recursively sanitize child nodes
+    for (const child of Array.from(element.childNodes)) {
+      const sanitizedChild = sanitizeNode(child);
+      if (sanitizedChild) {
+        newElement.appendChild(sanitizedChild);
+      }
+    }
+    return newElement;
+  }
+  // Sanitize all child nodes
+  const sanitizedDiv = document.createElement('div');
+  for (const child of Array.from(temp.childNodes)) {
+    const sanitizedChild = sanitizeNode(child);
+    if (sanitizedChild) {
+      sanitizedDiv.appendChild(sanitizedChild);
+    }
+  }
+  return sanitizedDiv.innerHTML;
+}
+/**
+ * Convert plain text to HTML, preserving line breaks
+ */
+export function textToHtml(text: string): string {
+  return text.replace(/\n/g, '<br>');
+}
+/**
+ * Check if a string contains HTML tags
+ */
+export function containsHtml(str: string): boolean {
+  return /<[^>]+>/g.test(str);
+}

package/src/internal-domains.ts ADDED Viewed

@@ -0,0 +1,497 @@
+import {
+  getTuturuuuPortlessAppOrigin,
+  TUTURUUU_PORTLESS_APP_HOSTS,
+} from './portless';
+export const PRODUCTION_INTERNAL_APP_DOMAINS = [
+  {
+    name: 'apps',
+    url: 'https://apps.tuturuuu.com',
+  },
+  {
+    name: 'platform',
+    url: 'https://tuturuuu.com',
+  },
+  {
+    name: 'cms',
+    url: 'https://cms.tuturuuu.com',
+  },
+  {
+    name: 'calendar',
+    url: 'https://calendar.tuturuuu.com',
+  },
+  {
+    name: 'chat',
+    url: 'https://chat.tuturuuu.com',
+  },
+  {
+    name: 'drive',
+    url: 'https://drive.tuturuuu.com',
+  },
+  {
+    name: 'mail',
+    url: 'https://mail.tuturuuu.com',
+  },
+  {
+    name: 'meet',
+    url: 'https://meet.tuturuuu.com',
+  },
+  {
+    name: 'qr',
+    url: 'https://qr.tuturuuu.com',
+  },
+  {
+    name: 'nova',
+    url: 'https://nova.ai.vn',
+  },
+  {
+    name: 'mira',
+    url: 'https://mira.tuturuuu.com',
+  },
+  {
+    name: 'rewise',
+    url: 'https://rewise.me',
+  },
+  {
+    name: 'tasks',
+    url: 'https://tasks.tuturuuu.com',
+  },
+  {
+    name: 'finance',
+    url: 'https://finance.tuturuuu.com',
+  },
+  {
+    name: 'inventory',
+    url: 'https://inventory.tuturuuu.com',
+  },
+  {
+    name: 'storefront',
+    url: 'https://storefront.tuturuuu.com',
+  },
+  {
+    name: 'track',
+    url: 'https://track.tuturuuu.com',
+  },
+  {
+    name: 'learn',
+    url: 'https://learn.tuturuuu.com',
+  },
+  {
+    name: 'teach',
+    url: 'https://teach.tuturuuu.com',
+  },
+  {
+    name: 'hive',
+    url: 'https://hive.tuturuuu.com',
+  },
+  {
+    name: 'mind',
+    url: 'https://mind.tuturuuu.com',
+  },
+] as const;
+export const PORTLESS_INTERNAL_APP_DOMAINS = [
+  {
+    name: 'apps',
+    url: getTuturuuuPortlessAppOrigin('apps'),
+  },
+  {
+    name: 'platform',
+    url: getTuturuuuPortlessAppOrigin('platform'),
+  },
+  {
+    name: 'cms',
+    url: getTuturuuuPortlessAppOrigin('cms'),
+  },
+  {
+    name: 'calendar',
+    url: getTuturuuuPortlessAppOrigin('calendar'),
+  },
+  {
+    name: 'chat',
+    url: getTuturuuuPortlessAppOrigin('chat'),
+  },
+  {
+    name: 'drive',
+    url: getTuturuuuPortlessAppOrigin('drive'),
+  },
+  {
+    name: 'mail',
+    url: getTuturuuuPortlessAppOrigin('mail'),
+  },
+  {
+    name: 'meet',
+    url: getTuturuuuPortlessAppOrigin('meet'),
+  },
+  {
+    name: 'qr',
+    url: getTuturuuuPortlessAppOrigin('qr'),
+  },
+  {
+    name: 'nova',
+    url: getTuturuuuPortlessAppOrigin('nova'),
+  },
+  {
+    name: 'rewise',
+    url: getTuturuuuPortlessAppOrigin('rewise'),
+  },
+  {
+    name: 'tasks',
+    url: getTuturuuuPortlessAppOrigin('tasks'),
+  },
+  {
+    name: 'finance',
+    url: getTuturuuuPortlessAppOrigin('finance'),
+  },
+  {
+    name: 'inventory',
+    url: getTuturuuuPortlessAppOrigin('inventory'),
+  },
+  {
+    name: 'storefront',
+    url: getTuturuuuPortlessAppOrigin('storefront'),
+  },
+  {
+    name: 'track',
+    url: getTuturuuuPortlessAppOrigin('track'),
+  },
+  {
+    name: 'learn',
+    url: getTuturuuuPortlessAppOrigin('learn'),
+  },
+  {
+    name: 'teach',
+    url: getTuturuuuPortlessAppOrigin('teach'),
+  },
+  {
+    name: 'hive',
+    url: getTuturuuuPortlessAppOrigin('hive'),
+  },
+  {
+    name: 'mind',
+    url: getTuturuuuPortlessAppOrigin('mind'),
+  },
+] as const;
+export const LOCALHOST_INTERNAL_APP_DOMAINS = [
+  {
+    name: 'apps',
+    url: 'http://localhost:7818',
+  },
+  {
+    name: 'cms',
+    url: 'http://localhost:7811',
+  },
+  {
+    name: 'calendar',
+    url: 'http://localhost:7806',
+  },
+  {
+    name: 'chat',
+    url: 'http://localhost:7821',
+  },
+  {
+    name: 'drive',
+    url: 'http://localhost:7817',
+  },
+  {
+    name: 'mail',
+    url: 'http://localhost:7820',
+  },
+  {
+    name: 'meet',
+    url: 'http://localhost:7807',
+  },
+  {
+    name: 'qr',
+    url: 'http://localhost:7819',
+  },
+  {
+    name: 'platform',
+    url: 'http://localhost:7803',
+  },
+  {
+    name: 'rewise',
+    url: 'http://localhost:7804',
+  },
+  {
+    name: 'nova',
+    url: 'http://localhost:7805',
+  },
+  {
+    name: 'tasks',
+    url: 'http://localhost:7809',
+  },
+  {
+    name: 'finance',
+    url: 'http://localhost:7808',
+  },
+  {
+    name: 'inventory',
+    url: 'http://localhost:7815',
+  },
+  {
+    name: 'storefront',
+    url: 'http://localhost:7822',
+  },
+  {
+    name: 'track',
+    url: 'http://localhost:7810',
+  },
+  {
+    name: 'learn',
+    url: 'http://localhost:7812',
+  },
+  {
+    name: 'teach',
+    url: 'http://localhost:7813',
+  },
+  {
+    name: 'hive',
+    url: 'http://localhost:7814',
+  },
+  {
+    name: 'mind',
+    url: 'http://localhost:7816',
+  },
+] as const;
+export const DEV_INTERNAL_APP_DOMAINS = [
+  ...PORTLESS_INTERNAL_APP_DOMAINS,
+  ...LOCALHOST_INTERNAL_APP_DOMAINS,
+] as const;
+export const APP_DOMAIN_MAP = [
+  ...PRODUCTION_INTERNAL_APP_DOMAINS,
+  ...DEV_INTERNAL_APP_DOMAINS,
+] as const;
+export type AppName = (typeof APP_DOMAIN_MAP)[number]['name'];
+export type AppDomain = {
+  kind?: 'external' | 'internal';
+  name: string;
+  url: string;
+};
+export type AppDomainUrlMatch = AppDomain & {
+  canonicalUrl: string;
+};
+export function getPortlessInternalAppUrl(appName: AppName) {
+  return appName in TUTURUUU_PORTLESS_APP_HOSTS
+    ? getTuturuuuPortlessAppOrigin(
+        appName as keyof typeof TUTURUUU_PORTLESS_APP_HOSTS
+      )
+    : null;
+}
+export function getLocalInternalAppUrl(appName: AppName, legacyUrl: string) {
+  return getPortlessInternalAppUrl(appName) ?? legacyUrl;
+}
+function parseExternalAppDomainEntry(entry: string): AppDomain | null {
+  const trimmed = entry.trim();
+  if (!trimmed) {
+    return null;
+  }
+  const separatorIndex = trimmed.indexOf(':');
+  if (separatorIndex <= 0) {
+    return null;
+  }
+  const name = trimmed.slice(0, separatorIndex).trim().toLowerCase();
+  const url = trimmed.slice(separatorIndex + 1).trim();
+  if (!/^[a-z0-9_-]{1,64}$/u.test(name)) {
+    return null;
+  }
+  try {
+    return {
+      kind: 'external',
+      name,
+      url: new URL(url).origin,
+    };
+  } catch {
+    return null;
+  }
+}
+export function getConfiguredExternalAppDomains(): AppDomain[] {
+  const configured =
+    process.env.NEXT_PUBLIC_TUTURUUU_EXTERNAL_APP_DOMAINS ??
+    process.env.TUTURUUU_EXTERNAL_APP_DOMAINS;
+  if (!configured?.trim()) {
+    return [];
+  }
+  return configured
+    .split(/[,\n]/u)
+    .map(parseExternalAppDomainEntry)
+    .filter((entry): entry is AppDomain => Boolean(entry));
+}
+export function getAppDomainMap(): AppDomain[] {
+  return [
+    ...APP_DOMAIN_MAP.map((domain) => ({
+      ...domain,
+      kind: 'internal' as const,
+    })),
+    ...getConfiguredExternalAppDomains(),
+  ];
+}
+function parseHttpUrl(value: string) {
+  try {
+    const url = new URL(value);
+    if (url.protocol !== 'http:' && url.protocol !== 'https:') {
+      return null;
+    }
+    return url;
+  } catch {
+    return null;
+  }
+}
+function canUpgradeToRegisteredHttpsOrigin(value: URL, registeredUrl: URL) {
+  return (
+    registeredUrl.protocol === 'https:' &&
+    value.protocol === 'http:' &&
+    value.hostname === registeredUrl.hostname &&
+    value.port === registeredUrl.port
+  );
+}
+const PORTLESS_APP_HOSTS = new Set(Object.values(TUTURUUU_PORTLESS_APP_HOSTS));
+function canUseLocalPortlessProxyPort(value: URL, registeredUrl: URL) {
+  return (
+    value.protocol === registeredUrl.protocol &&
+    !registeredUrl.port &&
+    Boolean(value.port) &&
+    PORTLESS_APP_HOSTS.has(registeredUrl.hostname)
+  );
+}
+function hasCompatiblePortlessPort(value: URL, registeredUrl: URL) {
+  return (
+    value.port === registeredUrl.port ||
+    canUseLocalPortlessProxyPort(value, registeredUrl)
+  );
+}
+function matchesPortlessProxyOrigin(value: URL, registeredUrl: URL) {
+  return (
+    canUseLocalPortlessProxyPort(value, registeredUrl) &&
+    value.hostname === registeredUrl.hostname
+  );
+}
+function matchesPrefixedPortlessOrigin(value: URL, registeredUrl: URL) {
+  if (
+    value.protocol !== registeredUrl.protocol ||
+    !hasCompatiblePortlessPort(value, registeredUrl) ||
+    !PORTLESS_APP_HOSTS.has(registeredUrl.hostname) ||
+    PORTLESS_APP_HOSTS.has(value.hostname)
+  ) {
+    return false;
+  }
+  const suffix = `.${registeredUrl.hostname}`;
+  if (!value.hostname.endsWith(suffix)) {
+    return false;
+  }
+  const prefix = value.hostname.slice(0, -suffix.length);
+  return Boolean(prefix) && !prefix.includes('.');
+}
+function serializeUrl(value: URL) {
+  return value.pathname === '/' && !value.search && !value.hash
+    ? value.origin
+    : value.toString();
+}
+function matchesAppDomainUrl(value: URL, domain: AppDomain) {
+  const registeredUrl = parseHttpUrl(domain.url);
+  if (!registeredUrl) {
+    return false;
+  }
+  if (value.origin === registeredUrl.origin) {
+    return true;
+  }
+  if (
+    domain.kind === 'internal' &&
+    (matchesPortlessProxyOrigin(value, registeredUrl) ||
+      matchesPrefixedPortlessOrigin(value, registeredUrl))
+  ) {
+    return true;
+  }
+  return domain.kind === 'internal'
+    ? canUpgradeToRegisteredHttpsOrigin(value, registeredUrl)
+    : false;
+}
+function canonicalizeAppDomainUrl(value: URL, domain: AppDomain) {
+  const registeredUrl = parseHttpUrl(domain.url);
+  if (
+    registeredUrl &&
+    domain.kind === 'internal' &&
+    (canUpgradeToRegisteredHttpsOrigin(value, registeredUrl) ||
+      matchesPortlessProxyOrigin(value, registeredUrl))
+  ) {
+    const canonicalUrl = new URL(value.toString());
+    canonicalUrl.protocol = registeredUrl.protocol;
+    canonicalUrl.hostname = registeredUrl.hostname;
+    canonicalUrl.port = registeredUrl.port;
+    return serializeUrl(canonicalUrl);
+  }
+  return serializeUrl(value);
+}
+export function getAppDomainByUrl(value: string): AppDomainUrlMatch | null {
+  const url = parseHttpUrl(value);
+  if (!url) {
+    return null;
+  }
+  const domain = getAppDomainMap().find((entry) =>
+    matchesAppDomainUrl(url, entry)
+  );
+  return domain
+    ? {
+        ...domain,
+        canonicalUrl: canonicalizeAppDomainUrl(url, domain),
+      }
+    : null;
+}
+export function getInternalAppDomainByUrl(
+  value: string
+): AppDomainUrlMatch | null {
+  const appDomain = getAppDomainByUrl(value);
+  return appDomain?.kind === 'internal' ? appDomain : null;
+}
+export const INTERNAL_DOMAINS = [
+  ...PRODUCTION_INTERNAL_APP_DOMAINS,
+  ...DEV_INTERNAL_APP_DOMAINS,
+].map((domain) => domain.url);