@wix/sdk 1.21.1 → 1.21.3

package/build/auth/oauth2/OAuthStrategy.d.ts

@@ -1,4 +1,4 @@
-import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
+import { IOAuthStrategy, TokenRequestOptions, Tokens, TokenStorage } from './types.js';
 /**
  * OAuth authentication strategy for Wix SDK.
  * @param config - Configuration object
@@ -8,6 +8,8 @@ import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
  * @param config.tokenStorage - Custom storage implementation (mutually exclusive with `tokens`).
  *   When provided, the strategy delegates all token persistence to this storage.
  *   The storage's `getTokens()` must always return `Tokens` (use `EMPTY_TOKENS` as fallback).
+ * @param config.tokenRequestOptions - Optional request options (e.g., custom headers) for all token requests.
+ *   Useful for passing 'client-binding' header in public rendering flows.
  * @returns OAuth strategy instance
  * @example
  * // Default in-memory storage with initial tokens
@@ -15,10 +17,14 @@ import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
  * @example
  * // Custom storage (e.g., cookies)
  * OAuthStrategy({ clientId: 'xxx', tokenStorage: myCookieStorage })
+ * @example
+ * // With custom headers for all token requests
+ * OAuthStrategy({ clientId: 'xxx', tokenRequestOptions: { headers: { 'client-binding': '...' } } })
  */
 export declare function OAuthStrategy(config: {
     clientId: string;
     publicKey?: string;
+    tokenRequestOptions?: TokenRequestOptions;
 } & ({
     tokens?: Tokens;
     tokenStorage?: never;

package/build/auth/oauth2/OAuthStrategy.js

@@ -20,6 +20,8 @@ const moduleWithTokens = { redirects, authentication, recovery, verification };
  * @param config.tokenStorage - Custom storage implementation (mutually exclusive with `tokens`).
  *   When provided, the strategy delegates all token persistence to this storage.
  *   The storage's `getTokens()` must always return `Tokens` (use `EMPTY_TOKENS` as fallback).
+ * @param config.tokenRequestOptions - Optional request options (e.g., custom headers) for all token requests.
+ *   Useful for passing 'client-binding' header in public rendering flows.
  * @returns OAuth strategy instance
  * @example
  * // Default in-memory storage with initial tokens
@@ -27,8 +29,12 @@ const moduleWithTokens = { redirects, authentication, recovery, verification };
  * @example
  * // Custom storage (e.g., cookies)
  * OAuthStrategy({ clientId: 'xxx', tokenStorage: myCookieStorage })
+ * @example
+ * // With custom headers for all token requests
+ * OAuthStrategy({ clientId: 'xxx', tokenRequestOptions: { headers: { 'client-binding': '...' } } })
  */
 export function OAuthStrategy(config) {
+    const _tokenRequestHeaders = config.tokenRequestOptions?.headers ?? {};
     const _tokenStorage = config.tokenStorage ??
         createLocalTokenStorage(config.tokens ?? EMPTY_TOKENS);
     const getTokens = () => _tokenStorage.getTokens();
@@ -81,7 +87,7 @@ export function OAuthStrategy(config) {
         const tokensResponse = await fetchTokens({
             clientId: config.clientId,
             grantType: 'anonymous',
-        });
+        }, _tokenRequestHeaders);
         return {
             accessToken: createAccessToken(tokensResponse.access_token, tokensResponse.expires_in),
             refreshToken: {
@@ -94,7 +100,7 @@ export function OAuthStrategy(config) {
         const tokensResponse = await fetchTokens({
             refreshToken: refreshToken.value,
             grantType: 'refresh_token',
-        });
+        }, _tokenRequestHeaders);
         const accessToken = createAccessToken(tokensResponse.access_token, tokensResponse.expires_in);
         return {
             accessToken,
@@ -175,7 +181,7 @@ export function OAuthStrategy(config) {
             ...(oauthData.redirectUri && { redirectUri: oauthData.redirectUri }),
             code,
             codeVerifier: oauthData.codeVerifier,
-        });
+        }, _tokenRequestHeaders);
         return {
             accessToken: createAccessToken(tokensResponse.access_token, tokensResponse.expires_in),
             refreshToken: {
@@ -350,6 +356,7 @@ export function OAuthStrategy(config) {
             member_id: memberId,
         }, {
             Authorization: getTokens().accessToken.value + ',' + apiKey,
+            ..._tokenRequestHeaders,
         });
         return {
             accessToken: createAccessToken(tokensResponse.access_token, tokensResponse.expires_in),

package/build/auth/oauth2/types.d.ts

@@ -1,5 +1,15 @@
 import { authentication } from '@wix/identity';
 import { AuthenticationStrategy } from '@wix/sdk-types';
+/**
+ * Options for token-related API requests.
+ */
+export interface TokenRequestOptions {
+    /**
+     * Custom headers to include in the token request.
+     * Useful for passing 'client-binding' header in public rendering flows.
+     */
+    headers?: Record<string, string>;
+}
 export interface Tokens {
     accessToken: AccessToken;
     refreshToken: RefreshToken;

package/build/event-handlers-modules.d.ts

@@ -1,4 +1,4 @@
-import { AuthenticationStrategy, EventDefinition, EventHandler, EventIdentity } from '@wix/sdk-types';
+import { AuthenticationStrategy, EventDefinition, EventHandler, EventIdentity, AccountInfo } from '@wix/sdk-types';
 import { Emitter } from './nanoevents.js';
 export declare const isEventHandlerModule: (val: any) => val is EventDefinition<unknown, string>;
 export declare function buildEventDefinition<T extends EventDefinition<any, string>>(eventDefinition: T, registerHandler: (eventDefinition: T, handler: EventHandler<T>) => void): (handler: EventHandler<T>) => void;
@@ -11,6 +11,7 @@ type ResolvePossibleEvents<T extends EventDefinition<any>[]> = {
 export type ProcessedEvent<T extends EventDefinition<any>[] = []> = {
     instanceId: string;
     identity?: EventIdentity;
+    accountInfo?: AccountInfo;
 } & (T['length'] extends 0 ? {
     eventType: string;
     payload: unknown;

package/build/event-handlers-modules.js

@@ -82,7 +82,7 @@ export function eventHandlersModules(getAuthStrategy) {
         async process(jwt, opts = {
             expectedEvents: [],
         }) {
-            const { eventType, identity, instanceId, payload } = await this.parseJWT(jwt);
+            const { eventType, identity, instanceId, payload, accountInfo } = await this.parseJWT(jwt);
             const allExpectedEvents = [
                 ...opts.expectedEvents,
                 ...Array.from(eventHandlers.keys()).map((type) => ({ type })),
@@ -97,12 +97,14 @@ export function eventHandlersModules(getAuthStrategy) {
             await Promise.all(handlers.map(({ eventDefinition, handler }) => runHandler(eventDefinition, handler, payload, {
                 instanceId,
                 identity,
+                accountInfo,
             })));
             return {
                 instanceId,
                 eventType,
                 payload,
                 identity,
+                accountInfo,
             };
         },
         async processRequest(request, opts) {
@@ -123,6 +125,7 @@ export function eventHandlersModules(getAuthStrategy) {
             }
             const parsedDecoded = JSON.parse(decoded.data);
             const eventType = parsedDecoded.eventType;
+            const accountInfo = parsedDecoded.accountInfo;
             const instanceId = parsedDecoded.instanceId;
             const identity = parsedDecoded.identity
                 ? JSON.parse(parsedDecoded.identity)
@@ -133,6 +136,7 @@ export function eventHandlersModules(getAuthStrategy) {
                 eventType,
                 payload,
                 identity,
+                accountInfo,
             };
         },
         async parseRequest(request) {

package/cjs/build/auth/oauth2/OAuthStrategy.d.ts

@@ -1,4 +1,4 @@
-import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
+import { IOAuthStrategy, TokenRequestOptions, Tokens, TokenStorage } from './types.js';
 /**
  * OAuth authentication strategy for Wix SDK.
  * @param config - Configuration object
@@ -8,6 +8,8 @@ import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
  * @param config.tokenStorage - Custom storage implementation (mutually exclusive with `tokens`).
  *   When provided, the strategy delegates all token persistence to this storage.
  *   The storage's `getTokens()` must always return `Tokens` (use `EMPTY_TOKENS` as fallback).
+ * @param config.tokenRequestOptions - Optional request options (e.g., custom headers) for all token requests.
+ *   Useful for passing 'client-binding' header in public rendering flows.
  * @returns OAuth strategy instance
  * @example
  * // Default in-memory storage with initial tokens
@@ -15,10 +17,14 @@ import { IOAuthStrategy, Tokens, TokenStorage } from './types.js';
  * @example
  * // Custom storage (e.g., cookies)
  * OAuthStrategy({ clientId: 'xxx', tokenStorage: myCookieStorage })
+ * @example
+ * // With custom headers for all token requests
+ * OAuthStrategy({ clientId: 'xxx', tokenRequestOptions: { headers: { 'client-binding': '...' } } })
  */
 export declare function OAuthStrategy(config: {
     clientId: string;
     publicKey?: string;
+    tokenRequestOptions?: TokenRequestOptions;
 } & ({
     tokens?: Tokens;
     tokenStorage?: never;

package/cjs/build/auth/oauth2/OAuthStrategy.js

@@ -23,6 +23,8 @@ const moduleWithTokens = { redirects: redirects_1.redirects, authentication: ide
  * @param config.tokenStorage - Custom storage implementation (mutually exclusive with `tokens`).
  *   When provided, the strategy delegates all token persistence to this storage.
  *   The storage's `getTokens()` must always return `Tokens` (use `EMPTY_TOKENS` as fallback).
+ * @param config.tokenRequestOptions - Optional request options (e.g., custom headers) for all token requests.
+ *   Useful for passing 'client-binding' header in public rendering flows.
  * @returns OAuth strategy instance
  * @example
  * // Default in-memory storage with initial tokens
@@ -30,8 +32,12 @@ const moduleWithTokens = { redirects: redirects_1.redirects, authentication: ide
  * @example
  * // Custom storage (e.g., cookies)
  * OAuthStrategy({ clientId: 'xxx', tokenStorage: myCookieStorage })
+ * @example
+ * // With custom headers for all token requests
+ * OAuthStrategy({ clientId: 'xxx', tokenRequestOptions: { headers: { 'client-binding': '...' } } })
  */
 function OAuthStrategy(config) {
+    const _tokenRequestHeaders = config.tokenRequestOptions?.headers ?? {};
     const _tokenStorage = config.tokenStorage ??
         (0, token_storage_js_1.createLocalTokenStorage)(config.tokens ?? token_storage_js_1.EMPTY_TOKENS);
     const getTokens = () => _tokenStorage.getTokens();
@@ -84,7 +90,7 @@ function OAuthStrategy(config) {
         const tokensResponse = await fetchTokens({
             clientId: config.clientId,
             grantType: 'anonymous',
-        });
+        }, _tokenRequestHeaders);
         return {
             accessToken: (0, tokenHelpers_js_1.createAccessToken)(tokensResponse.access_token, tokensResponse.expires_in),
             refreshToken: {
@@ -97,7 +103,7 @@ function OAuthStrategy(config) {
         const tokensResponse = await fetchTokens({
             refreshToken: refreshToken.value,
             grantType: 'refresh_token',
-        });
+        }, _tokenRequestHeaders);
         const accessToken = (0, tokenHelpers_js_1.createAccessToken)(tokensResponse.access_token, tokensResponse.expires_in);
         return {
             accessToken,
@@ -178,7 +184,7 @@ function OAuthStrategy(config) {
             ...(oauthData.redirectUri && { redirectUri: oauthData.redirectUri }),
             code,
             codeVerifier: oauthData.codeVerifier,
-        });
+        }, _tokenRequestHeaders);
         return {
             accessToken: (0, tokenHelpers_js_1.createAccessToken)(tokensResponse.access_token, tokensResponse.expires_in),
             refreshToken: {
@@ -353,6 +359,7 @@ function OAuthStrategy(config) {
             member_id: memberId,
         }, {
             Authorization: getTokens().accessToken.value + ',' + apiKey,
+            ..._tokenRequestHeaders,
         });
         return {
             accessToken: (0, tokenHelpers_js_1.createAccessToken)(tokensResponse.access_token, tokensResponse.expires_in),

package/cjs/build/auth/oauth2/types.d.ts

@@ -1,5 +1,15 @@
 import { authentication } from '@wix/identity';
 import { AuthenticationStrategy } from '@wix/sdk-types';
+/**
+ * Options for token-related API requests.
+ */
+export interface TokenRequestOptions {
+    /**
+     * Custom headers to include in the token request.
+     * Useful for passing 'client-binding' header in public rendering flows.
+     */
+    headers?: Record<string, string>;
+}
 export interface Tokens {
     accessToken: AccessToken;
     refreshToken: RefreshToken;

package/cjs/build/event-handlers-modules.d.ts

@@ -1,4 +1,4 @@
-import { AuthenticationStrategy, EventDefinition, EventHandler, EventIdentity } from '@wix/sdk-types';
+import { AuthenticationStrategy, EventDefinition, EventHandler, EventIdentity, AccountInfo } from '@wix/sdk-types';
 import { Emitter } from './nanoevents.js';
 export declare const isEventHandlerModule: (val: any) => val is EventDefinition<unknown, string>;
 export declare function buildEventDefinition<T extends EventDefinition<any, string>>(eventDefinition: T, registerHandler: (eventDefinition: T, handler: EventHandler<T>) => void): (handler: EventHandler<T>) => void;
@@ -11,6 +11,7 @@ type ResolvePossibleEvents<T extends EventDefinition<any>[]> = {
 export type ProcessedEvent<T extends EventDefinition<any>[] = []> = {
     instanceId: string;
     identity?: EventIdentity;
+    accountInfo?: AccountInfo;
 } & (T['length'] extends 0 ? {
     eventType: string;
     payload: unknown;

package/cjs/build/event-handlers-modules.js

@@ -88,7 +88,7 @@ function eventHandlersModules(getAuthStrategy) {
         async process(jwt, opts = {
             expectedEvents: [],
         }) {
-            const { eventType, identity, instanceId, payload } = await this.parseJWT(jwt);
+            const { eventType, identity, instanceId, payload, accountInfo } = await this.parseJWT(jwt);
             const allExpectedEvents = [
                 ...opts.expectedEvents,
                 ...Array.from(eventHandlers.keys()).map((type) => ({ type })),
@@ -103,12 +103,14 @@ function eventHandlersModules(getAuthStrategy) {
             await Promise.all(handlers.map(({ eventDefinition, handler }) => runHandler(eventDefinition, handler, payload, {
                 instanceId,
                 identity,
+                accountInfo,
             })));
             return {
                 instanceId,
                 eventType,
                 payload,
                 identity,
+                accountInfo,
             };
         },
         async processRequest(request, opts) {
@@ -129,6 +131,7 @@ function eventHandlersModules(getAuthStrategy) {
             }
             const parsedDecoded = JSON.parse(decoded.data);
             const eventType = parsedDecoded.eventType;
+            const accountInfo = parsedDecoded.accountInfo;
             const instanceId = parsedDecoded.instanceId;
             const identity = parsedDecoded.identity
                 ? JSON.parse(parsedDecoded.identity)
@@ -139,6 +142,7 @@ function eventHandlersModules(getAuthStrategy) {
                 eventType,
                 payload,
                 identity,
+                accountInfo,
             };
         },
         async parseRequest(request) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wix/sdk",
-  "version": "1.21.1",
+  "version": "1.21.3",
   "author": {
     "name": "Ronny Ringel",
     "email": "ronnyr@wix.com"
@@ -10,8 +10,8 @@
     "@wix/image-kit": "^1.114.0",
     "@wix/redirects": "^1.0.70",
     "@wix/sdk-context": "0.0.1",
-    "@wix/sdk-runtime": "1.0.3",
-    "@wix/sdk-types": "1.17.1",
+    "@wix/sdk-runtime": "1.0.7",
+    "@wix/sdk-types": "1.17.3",
     "jose": "^5.10.0",
     "type-fest": "^4.41.0"
   },
@@ -23,7 +23,7 @@
     "@wix/events": "^1.0.382",
     "@wix/metro": "^1.0.93",
     "@wix/metro-runtime": "^1.1891.0",
-    "@wix/sdk-runtime": "1.0.3",
+    "@wix/sdk-runtime": "1.0.7",
     "eslint": "^8.57.1",
     "eslint-config-sdk": "1.0.0",
     "graphql": "^16.8.0",
@@ -126,5 +126,5 @@
   "yoshiFlowLibrary": {
     "buildEsmWithBabel": true
   },
-  "falconPackageHash": "b15d34d496e485b7ec7be4a51298d0acccc5273ecb15b7b370d50b9b"
+  "falconPackageHash": "85c30d8bf85fa6b345737b139ab7ebaf274735a08a7bcac2a23b5ebf"
 }