@wix/cli-app 1.1.57 → 1.1.59

package/build/cloudflare-runtime/entry.js

@@ -31,137 +31,6 @@ var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__ge
   mod
 ));
 
-// ../../node_modules/serialize-error/index.js
-var require_serialize_error = __commonJS({
-  "../../node_modules/serialize-error/index.js"(exports, module) {
-    "use strict";
-    var NonError = class _NonError extends Error {
-      constructor(message2) {
-        super(_NonError._prepareSuperMessage(message2));
-        Object.defineProperty(this, "name", {
-          value: "NonError",
-          configurable: true,
-          writable: true
-        });
-        if (Error.captureStackTrace) {
-          Error.captureStackTrace(this, _NonError);
-        }
-      }
-      static _prepareSuperMessage(message2) {
-        try {
-          return JSON.stringify(message2);
-        } catch {
-          return String(message2);
-        }
-      }
-    };
-    var commonProperties = [
-      { property: "name", enumerable: false },
-      { property: "message", enumerable: false },
-      { property: "stack", enumerable: false },
-      { property: "code", enumerable: true }
-    ];
-    var isCalled = Symbol(".toJSON called");
-    var toJSON = (from) => {
-      from[isCalled] = true;
-      const json = from.toJSON();
-      delete from[isCalled];
-      return json;
-    };
-    var destroyCircular = ({
-      from,
-      seen,
-      to_,
-      forceEnumerable,
-      maxDepth,
-      depth
-    }) => {
-      const to = to_ || (Array.isArray(from) ? [] : {});
-      seen.push(from);
-      if (depth >= maxDepth) {
-        return to;
-      }
-      if (typeof from.toJSON === "function" && from[isCalled] !== true) {
-        return toJSON(from);
-      }
-      for (const [key, value] of Object.entries(from)) {
-        if (typeof Buffer === "function" && Buffer.isBuffer(value)) {
-          to[key] = "[object Buffer]";
-          continue;
-        }
-        if (typeof value === "function") {
-          continue;
-        }
-        if (!value || typeof value !== "object") {
-          to[key] = value;
-          continue;
-        }
-        if (!seen.includes(from[key])) {
-          depth++;
-          to[key] = destroyCircular({
-            from: from[key],
-            seen: seen.slice(),
-            forceEnumerable,
-            maxDepth,
-            depth
-          });
-          continue;
-        }
-        to[key] = "[Circular]";
-      }
-      for (const { property, enumerable } of commonProperties) {
-        if (typeof from[property] === "string") {
-          Object.defineProperty(to, property, {
-            value: from[property],
-            enumerable: forceEnumerable ? true : enumerable,
-            configurable: true,
-            writable: true
-          });
-        }
-      }
-      return to;
-    };
-    var serializeError2 = (value, options = {}) => {
-      const { maxDepth = Number.POSITIVE_INFINITY } = options;
-      if (typeof value === "object" && value !== null) {
-        return destroyCircular({
-          from: value,
-          seen: [],
-          forceEnumerable: true,
-          maxDepth,
-          depth: 0
-        });
-      }
-      if (typeof value === "function") {
-        return `[Function: ${value.name || "anonymous"}]`;
-      }
-      return value;
-    };
-    var deserializeError = (value, options = {}) => {
-      const { maxDepth = Number.POSITIVE_INFINITY } = options;
-      if (value instanceof Error) {
-        return value;
-      }
-      if (typeof value === "object" && value !== null && !Array.isArray(value)) {
-        const newError = new Error();
-        destroyCircular({
-          from: value,
-          seen: [],
-          to_: newError,
-          maxDepth,
-          depth: 0
-        });
-        return newError;
-      }
-      return new NonError(value);
-    };
-    module.exports = {
-      serializeError: serializeError2,
-      deserializeError
-    };
-  }
-});
-
 // ../../node_modules/jose/dist/browser/runtime/webcrypto.js
 var webcrypto_default, isCryptoKey;
 var init_webcrypto = __esm({
@@ -4407,6 +4276,137 @@ var init_browser = __esm({
   }
 });
 
+// ../../node_modules/serialize-error/index.js
+var require_serialize_error = __commonJS({
+  "../../node_modules/serialize-error/index.js"(exports, module) {
+    "use strict";
+    var NonError = class _NonError extends Error {
+      constructor(message2) {
+        super(_NonError._prepareSuperMessage(message2));
+        Object.defineProperty(this, "name", {
+          value: "NonError",
+          configurable: true,
+          writable: true
+        });
+        if (Error.captureStackTrace) {
+          Error.captureStackTrace(this, _NonError);
+        }
+      }
+      static _prepareSuperMessage(message2) {
+        try {
+          return JSON.stringify(message2);
+        } catch {
+          return String(message2);
+        }
+      }
+    };
+    var commonProperties = [
+      { property: "name", enumerable: false },
+      { property: "message", enumerable: false },
+      { property: "stack", enumerable: false },
+      { property: "code", enumerable: true }
+    ];
+    var isCalled = Symbol(".toJSON called");
+    var toJSON = (from) => {
+      from[isCalled] = true;
+      const json = from.toJSON();
+      delete from[isCalled];
+      return json;
+    };
+    var destroyCircular = ({
+      from,
+      seen,
+      to_,
+      forceEnumerable,
+      maxDepth,
+      depth
+    }) => {
+      const to = to_ || (Array.isArray(from) ? [] : {});
+      seen.push(from);
+      if (depth >= maxDepth) {
+        return to;
+      }
+      if (typeof from.toJSON === "function" && from[isCalled] !== true) {
+        return toJSON(from);
+      }
+      for (const [key, value] of Object.entries(from)) {
+        if (typeof Buffer === "function" && Buffer.isBuffer(value)) {
+          to[key] = "[object Buffer]";
+          continue;
+        }
+        if (typeof value === "function") {
+          continue;
+        }
+        if (!value || typeof value !== "object") {
+          to[key] = value;
+          continue;
+        }
+        if (!seen.includes(from[key])) {
+          depth++;
+          to[key] = destroyCircular({
+            from: from[key],
+            seen: seen.slice(),
+            forceEnumerable,
+            maxDepth,
+            depth
+          });
+          continue;
+        }
+        to[key] = "[Circular]";
+      }
+      for (const { property, enumerable } of commonProperties) {
+        if (typeof from[property] === "string") {
+          Object.defineProperty(to, property, {
+            value: from[property],
+            enumerable: forceEnumerable ? true : enumerable,
+            configurable: true,
+            writable: true
+          });
+        }
+      }
+      return to;
+    };
+    var serializeError2 = (value, options = {}) => {
+      const { maxDepth = Number.POSITIVE_INFINITY } = options;
+      if (typeof value === "object" && value !== null) {
+        return destroyCircular({
+          from: value,
+          seen: [],
+          forceEnumerable: true,
+          maxDepth,
+          depth: 0
+        });
+      }
+      if (typeof value === "function") {
+        return `[Function: ${value.name || "anonymous"}]`;
+      }
+      return value;
+    };
+    var deserializeError = (value, options = {}) => {
+      const { maxDepth = Number.POSITIVE_INFINITY } = options;
+      if (value instanceof Error) {
+        return value;
+      }
+      if (typeof value === "object" && value !== null && !Array.isArray(value)) {
+        const newError = new Error();
+        destroyCircular({
+          from: value,
+          seen: [],
+          to_: newError,
+          maxDepth,
+          depth: 0
+        });
+        return newError;
+      }
+      return new NonError(value);
+    };
+    module.exports = {
+      serializeError: serializeError2,
+      deserializeError
+    };
+  }
+});
+
 // src/utils.ts
 import { dirname, sep } from "node:path";
 
@@ -4571,7 +4571,7 @@ function objectToKeyValue(input) {
   return Object.entries(input).filter(([_, value]) => Boolean(value)).map(([key, value]) => `${key}=${value}`).join(",");
 }
 
-// ../../node_modules/@wix/sdk/node_modules/@wix/sdk-runtime/build/context.js
+// ../../node_modules/@wix/sdk-runtime/build/context.js
 function runWithoutContext(fn) {
   const globalContext = globalThis.__wix_context__;
   const moduleContext = {
@@ -4903,120 +4903,6 @@ function servicePluginsModules(authStrategy) {
   };
 }
 
-// ../../node_modules/@wix/sdk/build/web-method-modules.js
-var import_serialize_error = __toESM(require_serialize_error(), 1);
-
-// ../../node_modules/@wix/sdk/build/get-token-info.js
-async function getTokenInfo(token) {
-  const tokenInfoRes = await fetch("https://www.wixapis.com/oauth2/token-info", {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/json"
-    },
-    body: JSON.stringify({
-      token
-    })
-  });
-  if (tokenInfoRes.status !== 200) {
-    throw new Error(`Failed to get token info. Unexpected status code from Wix OAuth API: ${tokenInfoRes.status}`);
-  }
-  return await tokenInfoRes.json();
-}
-
-// ../../node_modules/@wix/sdk/build/web-method-modules.js
-var isWebMethodModules = (val) => val.__type === "web-method-module";
-var Permissions;
-(function(Permissions2) {
-  Permissions2["Anyone"] = "anyone";
-  Permissions2["Admin"] = "admin";
-  Permissions2["SiteMember"] = "site-member";
-})(Permissions || (Permissions = {}));
-async function checkPermission(request, permission) {
-  const accessToken = request.headers.get("Authorization");
-  if (!accessToken) {
-    throw new Error("Request is missing authentication data");
-  }
-  const { subjectType } = await getTokenInfo(accessToken);
-  switch (permission) {
-    case Permissions.Anyone: {
-      if (subjectType !== "VISITOR" && subjectType !== "MEMBER" && subjectType !== "USER") {
-        throw new Error("Insufficient permissions");
-      }
-      break;
-    }
-    case Permissions.SiteMember: {
-      if (subjectType !== "MEMBER" && subjectType !== "USER") {
-        throw new Error("Insufficient permissions");
-      }
-      break;
-    }
-    case Permissions.Admin: {
-      if (subjectType !== "USER") {
-        throw new Error("Insufficient permissions");
-      }
-      break;
-    }
-  }
-}
-var urlRegex = /\/_webMethods\/(.+\..+)\/(.+\..+)/;
-function extractUrlParts(url) {
-  const parts = url.match(urlRegex);
-  if (parts) {
-    return [parts[1], parts[2].replace(".ajax", "")];
-  }
-}
-function isRequestBodyValid(body) {
-  return !!body && typeof body === "object" && Array.isArray(body);
-}
-var productionErrorMessage = "Error: Unable to handle the request. Contact the site administrator or view site monitoring logs for more information.";
-function webMethodModules() {
-  const webMethods = {};
-  const client = {
-    async processRequest(request, devMode = false) {
-      const urlParts = extractUrlParts(request.url);
-      if (!urlParts) {
-        return new Response("invalid request", { status: 400 });
-      }
-      const [file, method] = urlParts;
-      const body = await request.json();
-      if (!isRequestBodyValid(body)) {
-        return new Response("invalid request", { status: 400 });
-      }
-      const loadWebMethodFile = webMethods[`/${file}`];
-      try {
-        if (!loadWebMethodFile) {
-          throw new Error(`Error loading web module ${file}: Cannot find module '${file}'`);
-        }
-        const webMethodFile = await loadWebMethodFile();
-        const webMethod = webMethodFile[method];
-        if (!webMethod) {
-          throw new Error(`Error loading function from web module ${file}: function '${method}' not found`);
-        }
-        await checkPermission(request, webMethod.permission);
-        return Response.json({
-          result: await webMethod.handler(...body)
-        });
-      } catch (error) {
-        const serializedError = (0, import_serialize_error.serializeError)(error, { maxDepth: 1 });
-        return Response.json({
-          result: devMode || !(error instanceof Error) ? serializedError : {
-            ...serializedError,
-            message: productionErrorMessage,
-            stack: productionErrorMessage
-          },
-          exception: true
-        });
-      }
-    }
-  };
-  return {
-    initModule(webMethodModule) {
-      Object.assign(webMethods, webMethodModule);
-    },
-    client
-  };
-}
-
 // ../../node_modules/@wix/sdk/build/wixClient.js
 function createClient(config) {
   const _headers = config.headers || { Authorization: "" };
@@ -5043,7 +4929,6 @@ function createClient(config) {
   };
   const { client: servicePluginsClient, initModule: initServicePluginModule } = servicePluginsModules(authStrategy);
   const { client: eventHandlersClient, initModule: initEventHandlerModule } = eventHandlersModules(authStrategy);
-  const { client: webMethodClient, initModule } = webMethodModules();
   const boundFetch = async (url, options) => {
     const authHeaders = await boundGetAuthHeaders();
     const defaultContentTypeHeader = getDefaultContentHeader(options);
@@ -5065,8 +4950,6 @@ function createClient(config) {
       return initServicePluginModule(modules);
     } else if (isHostModule(modules) && config.host) {
       return buildHostModule(modules, config.host);
-    } else if (isWebMethodModules(modules)) {
-      return initModule(modules);
     } else if (typeof modules === "function") {
       if ("__type" in modules && modules.__type === SERVICE_PLUGIN_ERROR_TYPE) {
         return modules;
@@ -5152,11 +5035,27 @@ function createClient(config) {
       return { data: data ?? {}, errors };
     },
     webhooks: eventHandlersClient,
-    webMethods: webMethodClient,
     servicePlugins: servicePluginsClient
   };
 }
 
+// ../../node_modules/@wix/sdk/build/get-token-info.js
+async function getTokenInfo(token) {
+  const tokenInfoRes = await fetch("https://www.wixapis.com/oauth2/token-info", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({
+      token
+    })
+  });
+  if (tokenInfoRes.status !== 200) {
+    throw new Error(`Failed to get token info. Unexpected status code from Wix OAuth API: ${tokenInfoRes.status}`);
+  }
+  return await tokenInfoRes.json();
+}
+
 // ../../node_modules/@wix/sdk/build/auth/AppStrategy.js
 function AppStrategy(opts) {
   let refreshToken = "refreshToken" in opts ? opts.refreshToken : void 0;
@@ -5599,6 +5498,135 @@ var CallsHandler = class {
   }
 };
 
+// ../../node_modules/@wix/web-methods-platform/build/server/index.js
+var import_serialize_error = __toESM(require_serialize_error(), 1);
+
+// ../../node_modules/@wix/web-methods-platform/build/server/getTokenInfo.js
+async function getTokenInfo2(token) {
+  const tokenInfoRes = await fetch("https://www.wixapis.com/oauth2/token-info", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({
+      token
+    })
+  });
+  if (tokenInfoRes.status !== 200) {
+    throw new Error(`Failed to get token info. Unexpected status code from Wix OAuth API: ${tokenInfoRes.status}`);
+  }
+  return await tokenInfoRes.json();
+}
+
+// ../../node_modules/@wix/web-methods-platform/build/server/types.js
+var Roles;
+(function(Roles2) {
+  Roles2["SITE_OWNER"] = "siteOwner";
+  Roles2["SITE_MEMBER"] = "siteMember";
+  Roles2["ANONYMOUS"] = "anonymous";
+})(Roles || (Roles = {}));
+
+// ../../node_modules/@wix/web-methods-platform/build/server/checkPermissions.js
+async function checkPermission(request, permission) {
+  const accessToken = request.headers.get("Authorization");
+  if (!accessToken) {
+    throw new Error("Request is missing authentication data");
+  }
+  const { subjectType } = await getTokenInfo2(accessToken);
+  const normalized = normalizedSubjectType(subjectType);
+  if (!normalized || !permission.allowedRoles.includes(normalized)) {
+    throw new Error("Insufficient permissions");
+  }
+}
+function normalizedSubjectType(subjectType) {
+  switch (subjectType) {
+    case "USER":
+      return Roles.SITE_OWNER;
+    case "MEMBER":
+      return Roles.SITE_MEMBER;
+    case "VISITOR":
+      return Roles.ANONYMOUS;
+  }
+  return null;
+}
+
+// ../../node_modules/@wix/web-methods-platform/build/server/utils.js
+var urlRegex = /\/_webMethods\/(.+\..+)\/(.+\..+)/;
+function extractUrlParts(url) {
+  const parts = url.match(urlRegex);
+  if (parts) {
+    return [parts[1], parts[2].replace(".ajax", "")];
+  }
+}
+function isRequestBodyValid(body) {
+  return !!body && typeof body === "object" && Array.isArray(body);
+}
+var productionErrorMessage = "Error: Unable to handle the request. Contact the site administrator or view site monitoring logs for more information.";
+
+// ../../node_modules/@wix/web-methods-platform/build/server/index.js
+function createClient2(webMethods2) {
+  return {
+    async processRequest(request, devMode = false) {
+      const urlParts = extractUrlParts(request.url);
+      if (!urlParts) {
+        return new Response("invalid request", { status: 400 });
+      }
+      const [file, method] = urlParts;
+      const body = await request.json();
+      if (!isRequestBodyValid(body)) {
+        return new Response("invalid request", { status: 400 });
+      }
+      const loadWebMethodFile = webMethods2[`/${file}`];
+      try {
+        if (!loadWebMethodFile) {
+          throw new Error(`Error loading web module ${file}: Cannot find module '${file}'`);
+        }
+        const webMethodFile = await loadWebMethodFile();
+        const webMethod = webMethodFile[method];
+        if (!webMethod) {
+          throw new Error(`Error loading function from web module ${file}: function '${method}' not found`);
+        }
+        await checkPermission(request, webMethod.permission);
+        return Response.json({
+          result: await webMethod(...body)
+        });
+      } catch (error) {
+        const serializedError = (0, import_serialize_error.serializeError)(error, { maxDepth: 1 });
+        return Response.json({
+          result: devMode || !(error instanceof Error) ? serializedError : {
+            ...serializedError,
+            message: productionErrorMessage,
+            stack: productionErrorMessage
+          },
+          exception: true
+        });
+      }
+    }
+  };
+}
+
+// src/webMethodHandler.ts
+var WebMethodHandler = class {
+  constructor(webMethods2, callsHandler) {
+    this.callsHandler = callsHandler;
+    this.webMethodsClient = createClient2(webMethods2);
+  }
+  webMethodsClient;
+  async handle(request) {
+    if (!this.callsHandler) {
+      throw new Error(
+        "passing a `callsHandler` is required for running web methods"
+      );
+    }
+    const accessToken = request.headers.get("Authorization");
+    return this.callsHandler.run(
+      accessToken,
+      null,
+      async () => this.webMethodsClient.processRequest(request, import.meta.env.DEV)
+    );
+  }
+};
+
 // src/initialize.ts
 var logError = (error) => {
   console.error(error instanceof Error ? error.stack : error);
@@ -5606,7 +5634,8 @@ var logError = (error) => {
 async function initialize({
   apis: apis2,
   events: events2,
-  servicePlugins: servicePlugins2
+  servicePlugins: servicePlugins2,
+  webMethods: webMethods2
 }) {
   const callsHandler = new CallsHandler();
   const apiHandler = new ApiHandler(apis2, callsHandler);
@@ -5615,6 +5644,7 @@ async function initialize({
     servicePlugins2,
     callsHandler
   );
+  const webMethodHandler = new WebMethodHandler(webMethods2, callsHandler);
   await eventsHandler.initialize();
   await servicePluginHandler.initialize();
   await callsHandler.initialize();
@@ -5672,6 +5702,22 @@ async function initialize({
           return response;
         }
       }
+      if (endpointName === "_webMethods") {
+        const response = await webMethodHandler.handle(request).catch((error) => {
+          logError(error);
+          return new Response(formatError(error), { status: 500 });
+        }).then((response2) => {
+          if (response2) {
+            response2.headers.append("Access-Control-Allow-Origin", "*");
+            response2.headers.append("Access-Control-Allow-Methods", "*");
+            response2.headers.append("Access-Control-Allow-Headers", "*");
+            return response2;
+          }
+        });
+        if (response) {
+          return response;
+        }
+      }
       return new Response("not found", { status: 404 });
     }
   };
@@ -5690,9 +5736,17 @@ var servicePlugins = import.meta.glob(
     eager: false
   }
 );
+var webMethods = import.meta.glob("/src/**/*.web.ts", {
+  eager: false
+});
 
 // src/entry.ts
-var entry_default = await initialize({ apis, events, servicePlugins });
+var entry_default = await initialize({
+  apis,
+  events,
+  servicePlugins,
+  webMethods
+});
 if (import.meta.hot) {
   import.meta.hot.accept();
 }