@zerocost/sdk 0.14.0 → 0.15.0

package/dist/core/config.d.ts

@@ -1,2 +1,3 @@
 export declare const EDGE_FUNCTION_BASE = "https://mwbgzpbuoojqsuxduieo.supabase.co/functions/v1";
+export { ZEROCOST_BASE_URL } from './constants';
 export declare function getBaseUrl(custom?: string): string;

package/dist/core/consent-ui.d.ts

@@ -1,12 +1,3 @@
-/**
- * consent-ui.ts — Pure DOM consent popup for the Zerocost SDK.
- *
- * - Desktop: centered card modal (max 480px)
- * - Mobile (≤640px): bottom-sheet modal
- * - Themes: light / dark / auto
- * - Non-dismissable (no Escape, no backdrop click)
- * - Returns a Promise that resolves with the user's toggle selections
- */
 export interface ConsentUIOptions {
     appName: string;
     theme: 'light' | 'dark' | 'auto';

package/dist/core/consent.d.ts

@@ -34,4 +34,6 @@ export declare class ConsentManager {
     private getOrCreateUserId;
     private generateUUID;
     private submitToServer;
+    private injectSettingsButton;
+    private removeSettingsButton;
 }

package/dist/core/constants.d.ts

@@ -0,0 +1,6 @@
+export declare const ZEROCOST_DOMAINS: {
+    MAIN: string;
+    APP: string;
+    DOCS: string;
+};
+export declare const ZEROCOST_BASE_URL: string;

package/dist/index.cjs

@@ -28,6 +28,14 @@ __export(index_exports, {
 });
 module.exports = __toCommonJS(index_exports);
 
+// src/core/constants.ts
+var ZEROCOST_DOMAINS = {
+  MAIN: "https://zerocost.lovable.app",
+  APP: "https://app.zerocost.com",
+  DOCS: "https://docs.zerocost.com"
+};
+var ZEROCOST_BASE_URL = ZEROCOST_DOMAINS.MAIN;
+
 // src/core/config.ts
 var EDGE_FUNCTION_BASE = "https://mwbgzpbuoojqsuxduieo.supabase.co/functions/v1";
 function getBaseUrl(custom) {
@@ -70,7 +78,7 @@ var ZerocostClient = class {
       ...body || {},
       app_id: this.config.appId
     };
-    this.log(`\u2192 ${url}`, payload);
+    this.log(`\u2192 ${path}`, payload);
     const res = await fetch(url, {
       method: "POST",
       headers: {
@@ -89,7 +97,8 @@ var ZerocostClient = class {
   }
   log(message, data) {
     if (this.config.debug) {
-      console.log(`[Zerocost] ${message}`, data ?? "");
+      const sanitizedMessage = typeof message === "string" ? message.replace(/https:\/\/[a-z0-9.-]+\.supabase\.co/gi, "[INFRA]") : message;
+      console.log(`[Zerocost] ${sanitizedMessage}`, data ?? "");
     }
   }
 };
@@ -1589,6 +1598,44 @@ function injectStyles(theme) {
     .zc-consent-confirm:active {
       opacity: 0.75;
     }
+
+    /* Floating settings button */
+    .zc-settings-btn {
+      position: fixed;
+      width: 44px;
+      height: 44px;
+      border-radius: 50%;
+      background: var(--zc-bg);
+      border: 1px solid var(--zc-border);
+      color: var(--zc-text);
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      cursor: pointer;
+      z-index: 999998;
+      box-shadow: 0 4px 12px rgba(0,0,0,0.15);
+      transition: transform 200ms, border-color 200ms;
+    }
+
+    .zc-settings-btn:hover {
+      transform: scale(1.05);
+      border-color: var(--zc-text-secondary);
+    }
+
+    .zc-settings-btn svg {
+      width: 20px;
+      height: 20px;
+    }
+
+    .zc-settings-bottom-left { bottom: 20px; left: 20px; }
+    .zc-settings-bottom-right { bottom: 20px; right: 20px; }
+    .zc-settings-top-left { top: 20px; left: 20px; }
+    .zc-settings-top-right { top: 20px; right: 20px; }
+
+    @media (max-width: 640px) {
+      .zc-settings-btn { width: 40px; height: 40px; }
+      .zc-settings-bottom-left, .zc-settings-bottom-right { bottom: 16px; }
+    }
   `;
   const style = document.createElement("style");
   style.id = STYLE_ID;
@@ -1671,33 +1718,33 @@ function showConsentUI(options) {
     card.appendChild(subtitle);
     const toggles = document.createElement("div");
     toggles.className = "zc-consent-toggles";
-    const baseUrl = typeof window !== "undefined" ? window.location.origin : "";
+    const zerocostBaseUrl = ZEROCOST_BASE_URL;
     toggles.appendChild(createToggleCard(
       "zc-toggle-ads",
       "Ads",
       "Contextual, non-intrusive ads. No cookies or browsing history used.",
-      `${baseUrl}/consent/ads`,
+      `${zerocostBaseUrl}/consent/ads`,
       defaults.ads
     ));
     toggles.appendChild(createToggleCard(
       "zc-toggle-usage",
       "Usage data",
       "Anonymized usage patterns. No personal information is shared.",
-      `${baseUrl}/consent/usage-data`,
+      `${zerocostBaseUrl}/consent/usage-data`,
       defaults.usageData
     ));
     toggles.appendChild(createToggleCard(
       "zc-toggle-ai",
       "AI interactions",
       "Anonymized conversation data used for AI research.",
-      `${baseUrl}/consent/ai-interactions`,
+      `${zerocostBaseUrl}/consent/ai-interactions`,
       defaults.aiInteractions
     ));
     card.appendChild(toggles);
     const footer = document.createElement("div");
     footer.className = "zc-consent-footer";
     const ppLink = document.createElement("a");
-    ppLink.href = privacyPolicyUrl || `${baseUrl}/privacy`;
+    ppLink.href = privacyPolicyUrl || `${zerocostBaseUrl}/privacy`;
     ppLink.target = "_blank";
     ppLink.rel = "noopener noreferrer";
     ppLink.textContent = "Privacy Policy";
@@ -1707,7 +1754,7 @@ function showConsentUI(options) {
     sep1.textContent = "\xB7";
     footer.appendChild(sep1);
     const termsLink = document.createElement("a");
-    termsLink.href = `${baseUrl}/terms`;
+    termsLink.href = `${zerocostBaseUrl}/terms`;
     termsLink.target = "_blank";
     termsLink.rel = "noopener noreferrer";
     termsLink.textContent = "Terms";
@@ -1717,7 +1764,7 @@ function showConsentUI(options) {
     sep2.textContent = "\xB7";
     footer.appendChild(sep2);
     const dnsLink = document.createElement("a");
-    dnsLink.href = `${baseUrl}/do-not-sell`;
+    dnsLink.href = `${zerocostBaseUrl}/do-not-sell`;
     dnsLink.target = "_blank";
     dnsLink.rel = "noopener noreferrer";
     dnsLink.textContent = "Do Not Sell My Data";
@@ -1761,6 +1808,9 @@ var ConsentManager = class {
     this.appName = opts.appName ?? "";
     this.theme = opts.theme ?? "dark";
     this.hydrateFromStorage();
+    if (this.consentConfig.showSettingsButton) {
+      this.injectSettingsButton();
+    }
   }
   // ── Public API (per spec §6.3) ───────────────────────────────────
   /** Returns the current consent record, or null if none exists. */
@@ -1826,6 +1876,9 @@ var ConsentManager = class {
     };
     this.record = record;
     this.writeStorage(record);
+    if (this.consentConfig.showSettingsButton) {
+      this.injectSettingsButton();
+    }
     if (this.consentConfig.onConsentChange) {
       try {
         this.consentConfig.onConsentChange(record);
@@ -1904,6 +1957,23 @@ var ConsentManager = class {
       this.client.log(`Failed to submit consent to server: ${err}`);
     }
   }
+  injectSettingsButton() {
+    if (typeof document === "undefined") return;
+    const existing = document.getElementById("zerocost-privacy-settings-btn");
+    if (existing) return;
+    const btn = document.createElement("button");
+    btn.id = "zerocost-privacy-settings-btn";
+    btn.setAttribute("aria-label", "Privacy Settings");
+    btn.title = "Privacy Settings";
+    const pos = this.consentConfig.buttonPosition || "bottom-left";
+    btn.className = `zc-settings-btn zc-settings-${pos}`;
+    btn.innerHTML = `<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>`;
+    btn.addEventListener("click", () => this.open());
+    document.body.appendChild(btn);
+  }
+  removeSettingsButton() {
+    document.getElementById("zerocost-privacy-settings-btn")?.remove();
+  }
 };
 
 // src/index.ts
@@ -1937,21 +2007,15 @@ var ZerocostSDK = class {
     });
   }
   async init() {
-    this.core.init();
     if (typeof document === "undefined") {
-      this.core.log("Running in non-browser environment; skipping DOM injection.");
       return;
     }
     if (window !== window.top) {
-      this.core.log("Running inside an iframe. Ads render if permissions allow.");
     }
-    this.core.log("Initializing Zerocost SDK.");
     if (this.consent.shouldPrompt()) {
-      this.core.log("Consent required \u2014 showing prompt.");
       await this.consent.promptAndWait();
     }
     if (!this.consent.has("ads")) {
-      this.core.log("Ads consent not granted \u2014 skipping ad injection.");
       return;
     }
     const cachedConfig = this.readCachedConfig();
@@ -1959,12 +2023,11 @@ var ZerocostSDK = class {
       this.lastConfigHash = this.configToHash(cachedConfig);
       this.syncDataCollection(cachedConfig.dataCollection);
       await this.widget.autoInjectWithConfig(cachedConfig.display, cachedConfig.widget);
-      this.core.log("Applied cached config immediately.");
     }
     this.startConfigSync();
     try {
       await this.refreshConfig({ force: true, reason: "init" });
-      this.core.log("SDK fully initialized. Ads are rendering automatically.");
+      this.core.log(`Zerocost SDK initialized (${this.core.getConfig().appId})`);
     } catch (err) {
       this.core.log(`Init error: ${err}. Attempting fallback ad injection.`);
       await this.widget.autoInject();
@@ -2138,6 +2201,10 @@ var ZerocostSDK = class {
       return { valid: false, error: err.message };
     }
   }
+  /** Open the consent/privacy settings popup. */
+  async showSettings() {
+    return this.consent.open();
+  }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/dist/index.d.ts

@@ -39,6 +39,8 @@ export declare class ZerocostSDK {
         valid: boolean;
         error?: string;
     }>;
+    /** Open the consent/privacy settings popup. */
+    showSettings(): Promise<void>;
 }
 export * from './types';
 export { ZerocostClient } from './core/client';

package/dist/index.js

@@ -1,3 +1,11 @@
+// src/core/constants.ts
+var ZEROCOST_DOMAINS = {
+  MAIN: "https://zerocost.lovable.app",
+  APP: "https://app.zerocost.com",
+  DOCS: "https://docs.zerocost.com"
+};
+var ZEROCOST_BASE_URL = ZEROCOST_DOMAINS.MAIN;
+
 // src/core/config.ts
 var EDGE_FUNCTION_BASE = "https://mwbgzpbuoojqsuxduieo.supabase.co/functions/v1";
 function getBaseUrl(custom) {
@@ -40,7 +48,7 @@ var ZerocostClient = class {
       ...body || {},
       app_id: this.config.appId
     };
-    this.log(`\u2192 ${url}`, payload);
+    this.log(`\u2192 ${path}`, payload);
     const res = await fetch(url, {
       method: "POST",
       headers: {
@@ -59,7 +67,8 @@ var ZerocostClient = class {
   }
   log(message, data) {
     if (this.config.debug) {
-      console.log(`[Zerocost] ${message}`, data ?? "");
+      const sanitizedMessage = typeof message === "string" ? message.replace(/https:\/\/[a-z0-9.-]+\.supabase\.co/gi, "[INFRA]") : message;
+      console.log(`[Zerocost] ${sanitizedMessage}`, data ?? "");
     }
   }
 };
@@ -1559,6 +1568,44 @@ function injectStyles(theme) {
     .zc-consent-confirm:active {
       opacity: 0.75;
     }
+
+    /* Floating settings button */
+    .zc-settings-btn {
+      position: fixed;
+      width: 44px;
+      height: 44px;
+      border-radius: 50%;
+      background: var(--zc-bg);
+      border: 1px solid var(--zc-border);
+      color: var(--zc-text);
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      cursor: pointer;
+      z-index: 999998;
+      box-shadow: 0 4px 12px rgba(0,0,0,0.15);
+      transition: transform 200ms, border-color 200ms;
+    }
+
+    .zc-settings-btn:hover {
+      transform: scale(1.05);
+      border-color: var(--zc-text-secondary);
+    }
+
+    .zc-settings-btn svg {
+      width: 20px;
+      height: 20px;
+    }
+
+    .zc-settings-bottom-left { bottom: 20px; left: 20px; }
+    .zc-settings-bottom-right { bottom: 20px; right: 20px; }
+    .zc-settings-top-left { top: 20px; left: 20px; }
+    .zc-settings-top-right { top: 20px; right: 20px; }
+
+    @media (max-width: 640px) {
+      .zc-settings-btn { width: 40px; height: 40px; }
+      .zc-settings-bottom-left, .zc-settings-bottom-right { bottom: 16px; }
+    }
   `;
   const style = document.createElement("style");
   style.id = STYLE_ID;
@@ -1641,33 +1688,33 @@ function showConsentUI(options) {
     card.appendChild(subtitle);
     const toggles = document.createElement("div");
     toggles.className = "zc-consent-toggles";
-    const baseUrl = typeof window !== "undefined" ? window.location.origin : "";
+    const zerocostBaseUrl = ZEROCOST_BASE_URL;
     toggles.appendChild(createToggleCard(
       "zc-toggle-ads",
       "Ads",
       "Contextual, non-intrusive ads. No cookies or browsing history used.",
-      `${baseUrl}/consent/ads`,
+      `${zerocostBaseUrl}/consent/ads`,
       defaults.ads
     ));
     toggles.appendChild(createToggleCard(
       "zc-toggle-usage",
       "Usage data",
       "Anonymized usage patterns. No personal information is shared.",
-      `${baseUrl}/consent/usage-data`,
+      `${zerocostBaseUrl}/consent/usage-data`,
       defaults.usageData
     ));
     toggles.appendChild(createToggleCard(
       "zc-toggle-ai",
       "AI interactions",
       "Anonymized conversation data used for AI research.",
-      `${baseUrl}/consent/ai-interactions`,
+      `${zerocostBaseUrl}/consent/ai-interactions`,
       defaults.aiInteractions
     ));
     card.appendChild(toggles);
     const footer = document.createElement("div");
     footer.className = "zc-consent-footer";
     const ppLink = document.createElement("a");
-    ppLink.href = privacyPolicyUrl || `${baseUrl}/privacy`;
+    ppLink.href = privacyPolicyUrl || `${zerocostBaseUrl}/privacy`;
     ppLink.target = "_blank";
     ppLink.rel = "noopener noreferrer";
     ppLink.textContent = "Privacy Policy";
@@ -1677,7 +1724,7 @@ function showConsentUI(options) {
     sep1.textContent = "\xB7";
     footer.appendChild(sep1);
     const termsLink = document.createElement("a");
-    termsLink.href = `${baseUrl}/terms`;
+    termsLink.href = `${zerocostBaseUrl}/terms`;
     termsLink.target = "_blank";
     termsLink.rel = "noopener noreferrer";
     termsLink.textContent = "Terms";
@@ -1687,7 +1734,7 @@ function showConsentUI(options) {
     sep2.textContent = "\xB7";
     footer.appendChild(sep2);
     const dnsLink = document.createElement("a");
-    dnsLink.href = `${baseUrl}/do-not-sell`;
+    dnsLink.href = `${zerocostBaseUrl}/do-not-sell`;
     dnsLink.target = "_blank";
     dnsLink.rel = "noopener noreferrer";
     dnsLink.textContent = "Do Not Sell My Data";
@@ -1731,6 +1778,9 @@ var ConsentManager = class {
     this.appName = opts.appName ?? "";
     this.theme = opts.theme ?? "dark";
     this.hydrateFromStorage();
+    if (this.consentConfig.showSettingsButton) {
+      this.injectSettingsButton();
+    }
   }
   // ── Public API (per spec §6.3) ───────────────────────────────────
   /** Returns the current consent record, or null if none exists. */
@@ -1796,6 +1846,9 @@ var ConsentManager = class {
     };
     this.record = record;
     this.writeStorage(record);
+    if (this.consentConfig.showSettingsButton) {
+      this.injectSettingsButton();
+    }
     if (this.consentConfig.onConsentChange) {
       try {
         this.consentConfig.onConsentChange(record);
@@ -1874,6 +1927,23 @@ var ConsentManager = class {
       this.client.log(`Failed to submit consent to server: ${err}`);
     }
   }
+  injectSettingsButton() {
+    if (typeof document === "undefined") return;
+    const existing = document.getElementById("zerocost-privacy-settings-btn");
+    if (existing) return;
+    const btn = document.createElement("button");
+    btn.id = "zerocost-privacy-settings-btn";
+    btn.setAttribute("aria-label", "Privacy Settings");
+    btn.title = "Privacy Settings";
+    const pos = this.consentConfig.buttonPosition || "bottom-left";
+    btn.className = `zc-settings-btn zc-settings-${pos}`;
+    btn.innerHTML = `<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z"/></svg>`;
+    btn.addEventListener("click", () => this.open());
+    document.body.appendChild(btn);
+  }
+  removeSettingsButton() {
+    document.getElementById("zerocost-privacy-settings-btn")?.remove();
+  }
 };
 
 // src/index.ts
@@ -1907,21 +1977,15 @@ var ZerocostSDK = class {
     });
   }
   async init() {
-    this.core.init();
     if (typeof document === "undefined") {
-      this.core.log("Running in non-browser environment; skipping DOM injection.");
       return;
     }
     if (window !== window.top) {
-      this.core.log("Running inside an iframe. Ads render if permissions allow.");
     }
-    this.core.log("Initializing Zerocost SDK.");
     if (this.consent.shouldPrompt()) {
-      this.core.log("Consent required \u2014 showing prompt.");
       await this.consent.promptAndWait();
     }
     if (!this.consent.has("ads")) {
-      this.core.log("Ads consent not granted \u2014 skipping ad injection.");
       return;
     }
     const cachedConfig = this.readCachedConfig();
@@ -1929,12 +1993,11 @@ var ZerocostSDK = class {
       this.lastConfigHash = this.configToHash(cachedConfig);
       this.syncDataCollection(cachedConfig.dataCollection);
       await this.widget.autoInjectWithConfig(cachedConfig.display, cachedConfig.widget);
-      this.core.log("Applied cached config immediately.");
     }
     this.startConfigSync();
     try {
       await this.refreshConfig({ force: true, reason: "init" });
-      this.core.log("SDK fully initialized. Ads are rendering automatically.");
+      this.core.log(`Zerocost SDK initialized (${this.core.getConfig().appId})`);
     } catch (err) {
       this.core.log(`Init error: ${err}. Attempting fallback ad injection.`);
       await this.widget.autoInject();
@@ -2108,6 +2171,10 @@ var ZerocostSDK = class {
       return { valid: false, error: err.message };
     }
   }
+  /** Open the consent/privacy settings popup. */
+  async showSettings() {
+    return this.consent.open();
+  }
 };
 export {
   ConsentManager,

package/dist/types/index.d.ts

@@ -11,6 +11,8 @@ export interface ZerocostConsentRecord {
 }
 export interface ConsentConfig {
     privacyPolicyUrl?: string;
+    showSettingsButton?: boolean;
+    buttonPosition?: 'bottom-left' | 'bottom-right' | 'top-left' | 'top-right';
     onConsentChange?: (preferences: ZerocostConsentRecord) => void;
 }
 export type ConsentFeature = 'ads' | 'usageData' | 'aiInteractions';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zerocost/sdk",
-  "version": "0.14.0",
+  "version": "0.15.0",
   "type": "module",
   "main": "dist/index.cjs",
   "module": "dist/index.js",