altair-graphql-core 7.2.2 → 7.2.4

package/build/authorization/authorization-provider.d.ts

@@ -1,6 +1,6 @@
 import { AuthorizationResult } from '../types/state/authorization.interface';
 export interface AuthorizationProviderExecuteOptions<T = unknown> {
-    data: T;
+    data: T | undefined;
 }
 export declare abstract class AuthorizationProvider<T = unknown> {
     private hydrator;

package/build/authorization/providers/api-key.js

@@ -1,6 +1,11 @@
 import { AuthorizationProvider, } from '../authorization-provider';
 export default class ApiKeyAuthorizationProvider extends AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.key || !options.data?.value) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 [options.data.key]: this.hydrate(options.data.value),

package/build/authorization/providers/basic.js

@@ -1,7 +1,7 @@
 import { AuthorizationProvider, } from '../authorization-provider';
 export default class BasicAuthorizationProvider extends AuthorizationProvider {
     async execute(options) {
-        if (!options.data.username || !options.data.password) {
+        if (!options.data?.username || !options.data?.password) {
             return {
                 headers: {},
             };

package/build/authorization/providers/bearer.js

@@ -1,6 +1,11 @@
 import { AuthorizationProvider, } from '../authorization-provider';
 export default class BearerAuthorizationProvider extends AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.token) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 Authorization: `Bearer ${this.hydrate(options.data.token)}`,

package/build/authorization/providers/oauth2.js

@@ -1,6 +1,11 @@
 import { AuthorizationProvider, } from '../authorization-provider';
 export default class OAuth2AuthorizationProvider extends AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.accessTokenResponse) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 Authorization: `Bearer ${this.hydrate(options.data.accessTokenResponse.access_token)}`,

package/build/cjs/authorization/authorization-provider.d.ts

@@ -1,6 +1,6 @@
 import { AuthorizationResult } from '../types/state/authorization.interface';
 export interface AuthorizationProviderExecuteOptions<T = unknown> {
-    data: T;
+    data: T | undefined;
 }
 export declare abstract class AuthorizationProvider<T = unknown> {
     private hydrator;

package/build/cjs/authorization/providers/api-key.js

@@ -3,6 +3,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const authorization_provider_1 = require("../authorization-provider");
 class ApiKeyAuthorizationProvider extends authorization_provider_1.AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.key || !options.data?.value) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 [options.data.key]: this.hydrate(options.data.value),

package/build/cjs/authorization/providers/basic.js

@@ -26,7 +26,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const authorization_provider_1 = require("../authorization-provider");
 class BasicAuthorizationProvider extends authorization_provider_1.AuthorizationProvider {
     async execute(options) {
-        if (!options.data.username || !options.data.password) {
+        if (!options.data?.username || !options.data?.password) {
             return {
                 headers: {},
             };

package/build/cjs/authorization/providers/bearer.js

@@ -3,6 +3,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const authorization_provider_1 = require("../authorization-provider");
 class BearerAuthorizationProvider extends authorization_provider_1.AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.token) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 Authorization: `Bearer ${this.hydrate(options.data.token)}`,

package/build/cjs/authorization/providers/oauth2.js

@@ -3,6 +3,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const authorization_provider_1 = require("../authorization-provider");
 class OAuth2AuthorizationProvider extends authorization_provider_1.AuthorizationProvider {
     async execute(options) {
+        if (!options.data?.accessTokenResponse) {
+            return {
+                headers: {},
+            };
+        }
         return {
             headers: {
                 Authorization: `Bearer ${this.hydrate(options.data.accessTokenResponse.access_token)}`,

package/build/cjs/{config.spec.js → config/config.spec.js}

@@ -1,10 +1,10 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 const globals_1 = require("@jest/globals");
-const config_1 = require("./config");
+const _1 = require(".");
 (0, globals_1.describe)('config', () => {
     (0, globals_1.it)('creates config object with expected properties', () => {
-        const config = new config_1.AltairConfig();
+        const config = new _1.AltairConfig();
         (0, globals_1.expect)(config).toMatchSnapshot();
     });
 });

package/build/cjs/config/environment.d.ts

@@ -0,0 +1,2 @@
+export type ConfigEnvironment = 'development' | 'production' | 'testing';
+//# sourceMappingURL=environment.d.ts.map

package/build/cjs/config/environment.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=environment.js.map

package/build/cjs/config/index.d.ts

@@ -0,0 +1,74 @@
+import { RequestHandlerIds } from '../request/types';
+import { IDictionary } from '../types/shared';
+import { IInitialEnvironments } from '../types/state/environments.interfaces';
+import { ConfigEnvironment } from './environment';
+import { AltairConfigOptions, AltairWindowOptions } from './options';
+import { UrlConfig } from './urls';
+export declare class AltairConfig {
+    private localSandboxUrl;
+    private useLocalSandboxUrl;
+    donation: {
+        url: string;
+        action_count_threshold: number;
+    };
+    ga: string;
+    add_query_depth_limit: number;
+    tab_size: number;
+    max_windows: number;
+    default_language: string;
+    languages: {
+        'en-US': string;
+        'fr-FR': string;
+        'es-ES': string;
+        'cs-CZ': string;
+        'de-DE': string;
+        'pt-BR': string;
+        'ru-RU': string;
+        'uk-UA': string;
+        'zh-CN': string;
+        'ja-JP': string;
+        'sr-SP': string;
+        'it-IT': string;
+        'pl-PL': string;
+        'ko-KR': string;
+        'ro-RO': string;
+        'vi-VN': string;
+    };
+    query_history_depth: number;
+    disableLineNumbers: boolean;
+    defaultTheme: string;
+    themes: string[];
+    isTranslateMode: any;
+    isWebApp: any;
+    initialData: {
+        url: string;
+        subscriptionsEndpoint: string;
+        subscriptionsProtocol: string;
+        query: string;
+        variables: string;
+        headers: IDictionary;
+        environments: IInitialEnvironments;
+        preRequestScript: string;
+        postRequestScript: string;
+        instanceStorageNamespace: string;
+        settings: Partial<import("../types/state/settings.interfaces").SettingsState> | undefined;
+        persistedSettings: Partial<import("../types/state/settings.interfaces").SettingsState> | undefined;
+        initialSubscriptionRequestHandlerId: RequestHandlerIds | undefined;
+        initialSubscriptionsPayload: IDictionary;
+        initialRequestHandlerId: RequestHandlerIds;
+        initialRequestHandlerAdditionalParams: Record<string, unknown>;
+        initialHttpMethod: "POST" | "GET" | "PUT" | "DELETE";
+        preserveState: boolean;
+        windows: AltairWindowOptions[];
+        disableAccount: boolean;
+    };
+    constructor({ endpointURL, subscriptionsEndpoint, subscriptionsProtocol, initialQuery, initialHeaders, initialEnvironments, initialVariables, initialPreRequestScript, initialPostRequestScript, instanceStorageNamespace, initialSettings, persistedSettings, initialRequestHandlerId, initialRequestHandlerAdditionalParams, initialSubscriptionRequestHandlerId, initialSubscriptionsPayload, initialHttpMethod, preserveState, initialWindows, disableAccount, }?: AltairConfigOptions);
+    private getPossibleLocalSandBoxUrl;
+    private getLocalSandBoxUrl;
+    getUrlConfig(environment?: ConfigEnvironment): UrlConfig;
+    getUrlConfigWithLocal(environment?: ConfigEnvironment): Promise<UrlConfig>;
+    getUrl(name: keyof UrlConfig, environment?: ConfigEnvironment): Promise<string>;
+}
+export declare const setAltairConfig: (_config: AltairConfig) => void;
+export declare const getAltairConfig: () => AltairConfig;
+//# sourceMappingURL=index.d.ts.map

package/build/cjs/{config.js → config/index.js}

@@ -4,11 +4,13 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getAltairConfig = exports.setAltairConfig = exports.AltairConfig = void 0;
-const types_1 = require("./request/types");
-const is_electron_1 = __importDefault(require("./utils/is_electron"));
+const types_1 = require("../request/types");
+const is_electron_1 = __importDefault(require("../utils/is_electron"));
+const urls_1 = require("./urls");
 const isTranslateMode = window.__ALTAIR_TRANSLATE__;
 class AltairConfig {
     constructor({ endpointURL, subscriptionsEndpoint, subscriptionsProtocol, initialQuery, initialHeaders, initialEnvironments, initialVariables, initialPreRequestScript, initialPostRequestScript = '', instanceStorageNamespace, initialSettings, persistedSettings, initialRequestHandlerId = types_1.HTTP_HANDLER_ID, initialRequestHandlerAdditionalParams = {}, initialSubscriptionRequestHandlerId = types_1.WEBSOCKET_HANDLER_ID, initialSubscriptionsPayload = {}, initialHttpMethod = 'POST', preserveState = true, initialWindows = [], disableAccount = false, } = {}) {
+        this.useLocalSandboxUrl = false;
         this.donation = {
             url: 'https://opencollective.com/altair/donate',
             action_count_threshold: 50,
@@ -101,6 +103,50 @@ class AltairConfig {
         this.initialData.windows = initialWindows;
         this.initialData.disableAccount = disableAccount;
     }
+    getPossibleLocalSandBoxUrl() {
+        // check document base url
+        if (document.baseURI) {
+            // add iframe-sandbox path to base url
+            if (document.baseURI.endsWith('/')) {
+                return new URL(document.baseURI + 'iframe-sandbox/index.html');
+            }
+            else {
+                // remove the last part of the url
+                return new URL(document.baseURI.slice(0, document.baseURI.lastIndexOf('/') + 1) +
+                    'iframe-sandbox/index.html');
+            }
+        }
+    }
+    async getLocalSandBoxUrl() {
+        if (typeof this.localSandboxUrl === 'undefined') {
+            this.localSandboxUrl = this.getPossibleLocalSandBoxUrl()?.href ?? '';
+            if (this.localSandboxUrl) {
+                const res = await fetch(this.localSandboxUrl);
+                if (res.ok) {
+                    this.useLocalSandboxUrl = true;
+                }
+            }
+        }
+        if (this.useLocalSandboxUrl) {
+            return this.localSandboxUrl;
+        }
+    }
+    getUrlConfig(environment = 'production') {
+        return urls_1.urlMap[environment];
+    }
+    async getUrlConfigWithLocal(environment = 'production') {
+        // Check for local sandbox url first
+        const localSandboxUrl = await this.getLocalSandBoxUrl();
+        const urls = urls_1.urlMap[environment];
+        if (localSandboxUrl) {
+            urls.sandbox = localSandboxUrl;
+        }
+        return urls;
+    }
+    async getUrl(name, environment = 'production') {
+        const urlConfig = await this.getUrlConfigWithLocal(environment);
+        return urlConfig[name];
+    }
 }
 exports.AltairConfig = AltairConfig;
 let config = new AltairConfig();
@@ -113,4 +159,4 @@ const getAltairConfig = () => {
 };
 exports.getAltairConfig = getAltairConfig;
 window.getAltairConfig = exports.getAltairConfig;
-//# sourceMappingURL=config.js.map
+//# sourceMappingURL=index.js.map

package/build/cjs/{config.d.ts → config/options.d.ts}

@@ -1,8 +1,8 @@
-import { RequestHandlerIds } from './request/types';
-import { IDictionary } from './types/shared';
-import { IInitialEnvironments } from './types/state/environments.interfaces';
-import { HttpVerb } from './types/state/query.interfaces';
-import { SettingsState } from './types/state/settings.interfaces';
+import { RequestHandlerIds } from '../request/types';
+import { IDictionary } from '../types/shared';
+import { IInitialEnvironments } from '../types/state/environments.interfaces';
+import { HttpVerb } from '../types/state/query.interfaces';
+import { SettingsState } from '../types/state/settings.interfaces';
 export interface AltairWindowOptions {
     /**
      * Initial name of the window
@@ -118,64 +118,4 @@ export interface AltairConfigOptions extends AltairWindowOptions {
      */
     disableAccount?: boolean;
 }
-export declare class AltairConfig {
-    donation: {
-        url: string;
-        action_count_threshold: number;
-    };
-    ga: string;
-    add_query_depth_limit: number;
-    tab_size: number;
-    max_windows: number;
-    default_language: string;
-    languages: {
-        'en-US': string;
-        'fr-FR': string;
-        'es-ES': string;
-        'cs-CZ': string;
-        'de-DE': string;
-        'pt-BR': string;
-        'ru-RU': string;
-        'uk-UA': string;
-        'zh-CN': string;
-        'ja-JP': string;
-        'sr-SP': string;
-        'it-IT': string;
-        'pl-PL': string;
-        'ko-KR': string;
-        'ro-RO': string;
-        'vi-VN': string;
-    };
-    query_history_depth: number;
-    disableLineNumbers: boolean;
-    defaultTheme: string;
-    themes: string[];
-    isTranslateMode: any;
-    isWebApp: any;
-    initialData: {
-        url: string;
-        subscriptionsEndpoint: string;
-        subscriptionsProtocol: string;
-        query: string;
-        variables: string;
-        headers: IDictionary;
-        environments: IInitialEnvironments;
-        preRequestScript: string;
-        postRequestScript: string;
-        instanceStorageNamespace: string;
-        settings: Partial<SettingsState> | undefined;
-        persistedSettings: Partial<SettingsState> | undefined;
-        initialSubscriptionRequestHandlerId: RequestHandlerIds | undefined;
-        initialSubscriptionsPayload: IDictionary;
-        initialRequestHandlerId: RequestHandlerIds;
-        initialRequestHandlerAdditionalParams: Record<string, unknown>;
-        initialHttpMethod: "POST" | "GET" | "PUT" | "DELETE";
-        preserveState: boolean;
-        windows: AltairWindowOptions[];
-        disableAccount: boolean;
-    };
-    constructor({ endpointURL, subscriptionsEndpoint, subscriptionsProtocol, initialQuery, initialHeaders, initialEnvironments, initialVariables, initialPreRequestScript, initialPostRequestScript, instanceStorageNamespace, initialSettings, persistedSettings, initialRequestHandlerId, initialRequestHandlerAdditionalParams, initialSubscriptionRequestHandlerId, initialSubscriptionsPayload, initialHttpMethod, preserveState, initialWindows, disableAccount, }?: AltairConfigOptions);
-}
-export declare const setAltairConfig: (_config: AltairConfig) => void;
-export declare const getAltairConfig: () => AltairConfig;
-//# sourceMappingURL=config.d.ts.map
+//# sourceMappingURL=options.d.ts.map

package/build/cjs/config/options.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=options.js.map

package/build/cjs/config/urls.d.ts

@@ -0,0 +1,8 @@
+import { ConfigEnvironment } from './environment';
+export interface UrlConfig {
+    api: string;
+    loginClient: string;
+    sandbox: string;
+}
+export declare const urlMap: Record<ConfigEnvironment, UrlConfig>;
+//# sourceMappingURL=urls.d.ts.map

package/build/cjs/config/urls.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.urlMap = void 0;
+exports.urlMap = {
+    development: {
+        api: 'http://localhost:3000',
+        loginClient: 'http://localhost:1234',
+        sandbox: 'http://localhost:5123',
+    },
+    production: {
+        api: undefined ?? 'https://api.altairgraphql.dev',
+        loginClient: undefined ??
+            'https://redir.altairgraphql.dev',
+        sandbox: undefined ??
+            'https://sandbox.altairgraphql.dev',
+    },
+    testing: {
+        api: 'http://localhost:3000',
+        loginClient: 'http://localhost:1234',
+        sandbox: 'http://localhost:5123',
+    },
+};
+//# sourceMappingURL=urls.js.map

package/build/cjs/plugin/v3/frame-worker.d.ts

@@ -4,10 +4,22 @@ export declare const instanceTypes: {
     readonly PANEL: "panel";
 };
 export type InstanceType = (typeof instanceTypes)[keyof typeof instanceTypes];
-export interface FrameQueryParams {
+export interface FrameOptions {
+    /**
+     * Source origin of the parent window
+     */
     sc: string;
+    /**
+     * Plugin ID
+     */
     id: string;
+    /**
+     * Instance type of the plugin
+     */
     instanceType: InstanceType;
+    /**
+     * Additional parameters
+     */
     [key: string]: string;
 }
 export declare class PluginFrameWorker extends EvaluatorWorker {
@@ -17,7 +29,7 @@ export declare class PluginFrameWorker extends EvaluatorWorker {
     private params;
     constructor();
     getInstanceType(): InstanceType;
-    getParams(): FrameQueryParams;
+    getParams(): FrameOptions;
     onMessage<T extends string, P = unknown>(handler: (e: EventData<T, P>) => void): void;
     send(type: string, payload: any): void;
     onError(handler: (err: any) => void): void;

package/build/cjs/plugin/v3/frame-worker.js

@@ -10,10 +10,13 @@ class PluginFrameWorker extends worker_1.EvaluatorWorker {
     constructor() {
         super();
         this.instanceType = exports.instanceTypes.MAIN;
-        const params = Object.fromEntries(new URLSearchParams(window.location.search));
+        // Check for params in special params object on the window object first. Using srcdoc, we will set the params on the window object
+        const paramFromWindow = window.__ALTAIR_PLUGIN_PARAMS__;
+        const paramsFromUrl = Object.fromEntries(new URLSearchParams(window.location.search));
+        const params = paramFromWindow ?? paramsFromUrl;
         this.params = params;
-        // Get the source origin that embeds the iframe from the URL query parameter
         if (!params.sc) {
+            console.log('Invalid source provided!', paramFromWindow, paramsFromUrl);
             throw new Error('Invalid source provided!');
         }
         if (!params.id) {
@@ -38,7 +41,7 @@ class PluginFrameWorker extends worker_1.EvaluatorWorker {
         });
     }
     send(type, payload) {
-        window.parent.postMessage({ type, payload }, this.origin);
+        window.parent.postMessage({ type, payload, frameId: this.id }, this.origin);
     }
     onError(handler) {
         window.addEventListener('error', handler);

package/build/cjs/plugin/v3/manifest.d.ts

@@ -1,8 +1,14 @@
 import { PluginCapabilities } from './capabilities';
-interface PluginEntry {
+interface PluginHtmlEntry {
     type: 'html';
     path: string;
 }
+interface PluginJsEntry {
+    type: 'js';
+    scripts: string[];
+    styles: string[];
+}
+type PluginEntry = PluginHtmlEntry | PluginJsEntry;
 export interface PluginV3Manifest {
     /**
      * Version of manifest (should be 3). It is a control measure for variations in the plugin versions

package/build/cjs/plugin/v3/panel.js

@@ -21,6 +21,8 @@ class AltairV3Panel {
         data.styleUrls.forEach((styleUrl) => {
             const link = document.createElement('link');
             link.rel = 'stylesheet';
+            link.type = 'text/css';
+            link.crossOrigin = 'anonymous';
             link.href = styleUrl;
             document.head.appendChild(link);
         });

package/build/cjs/plugin/v3/parent-engine.js

@@ -66,6 +66,8 @@ class PluginParentEngine {
         this.worker.respond(events_1.PLUGIN_GET_APP_STYLE_URL_EVENT, async () => {
             const styleSheets = Array.from(document.styleSheets);
             // Get the style sheet URLs
+            // FYI for some reason I haven't figured out yet, we can't link to the stylesheets
+            // in the browser extensions directly from the sandboxed iframe.
             const styleUrls = styleSheets
                 .map((sheet) => {
                 if (sheet?.href) {

package/build/cjs/plugin/v3/parent-worker.d.ts

@@ -1,13 +1,23 @@
 import { EvaluatorWorker, EventData } from '../../evaluator/worker';
 import { InstanceType } from './frame-worker';
-export interface PluginParentWorkerOptions {
+interface BasePluginParentWorkerOptions {
     id: string;
-    pluginEntrypointUrl: string;
     disableAppend?: boolean;
     instanceType?: InstanceType;
     additionalParams?: Record<string, string>;
     additionalSandboxAttributes?: string[];
 }
+interface PluginParentWorkerOptionsWithScripts extends BasePluginParentWorkerOptions {
+    type: 'scripts';
+    sandboxUrl: string;
+    scriptUrls: string[];
+    styleUrls: string[];
+}
+interface PluginParentWorkerOptionsWithUrl extends BasePluginParentWorkerOptions {
+    type: 'url';
+    pluginEntrypointUrl: string;
+}
+export type PluginParentWorkerOptions = PluginParentWorkerOptionsWithScripts | PluginParentWorkerOptionsWithUrl;
 export declare class PluginParentWorker extends EvaluatorWorker {
     private opts;
     constructor(opts: PluginParentWorkerOptions);
@@ -22,4 +32,5 @@ export declare class PluginParentWorker extends EvaluatorWorker {
     onError(handler: (err: unknown) => void): void;
     destroy(): void;
 }
+export {};
 //# sourceMappingURL=parent-worker.d.ts.map

package/build/cjs/plugin/v3/parent-worker.js

@@ -32,16 +32,26 @@ class PluginParentWorker extends worker_1.EvaluatorWorker {
             id: this.opts.id,
             instanceType: this.getInstanceType(),
         };
-        const url = (0, url_1.urlWithParams)(this.opts.pluginEntrypointUrl, params);
-        iframe.src = url;
+        // NOTE: Don't add allow-same-origin to the sandbox attribute!
         iframe.sandbox.add('allow-scripts');
-        iframe.sandbox.add('allow-same-origin');
         if (this.opts.additionalSandboxAttributes) {
             this.opts.additionalSandboxAttributes.forEach((attr) => {
                 iframe.sandbox.add(attr);
             });
         }
         iframe.referrerPolicy = 'no-referrer';
+        if (this.opts.type === 'scripts') {
+            const url = (0, url_1.urlWithParams)(this.opts.sandboxUrl, {
+                ...params,
+                sandbox_type: 'plugin',
+                plugin_sandbox_opts: JSON.stringify(this.opts),
+            });
+            iframe.src = url;
+        }
+        else if (this.opts.type === 'url') {
+            const url = (0, url_1.urlWithParams)(this.opts.pluginEntrypointUrl, params);
+            iframe.src = url;
+        }
         if (!this.opts.disableAppend) {
             document.body.appendChild(iframe);
         }
@@ -58,7 +68,11 @@ class PluginParentWorker extends worker_1.EvaluatorWorker {
     }
     onMessage(handler) {
         window.addEventListener('message', (e) => {
-            if (e.origin !== new URL(this.opts.pluginEntrypointUrl).origin) {
+            if (e.origin !== 'null' || e.source !== this.iframe.contentWindow) {
+                return;
+            }
+            if (e.data.frameId !== this.opts.id) {
+                console.error('Invalid frameId in data', e.data.frameId, this.opts.id);
                 return;
             }
             handler(e.data);
@@ -66,7 +80,13 @@ class PluginParentWorker extends worker_1.EvaluatorWorker {
     }
     send(type, payload) {
         this.frameReady().then(() => {
-            this.iframe.contentWindow?.postMessage({ type, payload }, this.opts.pluginEntrypointUrl);
+            this.iframe.contentWindow?.postMessage({ type, payload }, 
+            // https://web.dev/articles/sandboxed-iframes#safely_sandboxing_eval
+            // Note that we're sending the message to "*", rather than some specific
+            // origin. Sandboxed iframes which lack the 'allow-same-origin' header
+            // don't have an origin which you can target: you'll have to send to any
+            // origin, which might alow some esoteric attacks. Validate your output!
+            '*');
         });
     }
     onError(handler) {

package/build/cjs/utils/inject.d.ts

@@ -0,0 +1,3 @@
+export declare const injectScript: (url: string) => Promise<unknown>;
+export declare const injectStylesheet: (url: string) => Promise<unknown>;
+//# sourceMappingURL=inject.d.ts.map

package/build/cjs/utils/inject.js

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.injectStylesheet = exports.injectScript = void 0;
+const injectScript = (url) => {
+    return new Promise((resolve, reject) => {
+        const head = document.getElementsByTagName('head')[0];
+        if (!head) {
+            return reject(new Error('No head found!'));
+        }
+        const script = document.createElement('script');
+        script.type = 'text/javascript';
+        script.src = url;
+        script.onload = () => resolve(null);
+        script.onerror = (err) => reject(err);
+        head.appendChild(script);
+    });
+};
+exports.injectScript = injectScript;
+const injectStylesheet = (url) => {
+    return new Promise((resolve, reject) => {
+        const head = document.getElementsByTagName('head')[0];
+        if (!head) {
+            return reject(new Error('No head found!'));
+        }
+        const style = document.createElement('link');
+        style.type = 'text/css';
+        style.rel = 'stylesheet';
+        style.href = url;
+        style.onload = () => resolve(null);
+        style.onerror = (err) => reject(err);
+        head.appendChild(style);
+    });
+};
+exports.injectStylesheet = injectStylesheet;
+//# sourceMappingURL=inject.js.map

package/build/{config.spec.js → config/config.spec.js}

@@ -1,5 +1,5 @@
 import { describe, expect, it } from '@jest/globals';
-import { AltairConfig } from './config';
+import { AltairConfig } from '.';
 describe('config', () => {
     it('creates config object with expected properties', () => {
         const config = new AltairConfig();

package/build/config/environment.d.ts

@@ -0,0 +1,2 @@
+export type ConfigEnvironment = 'development' | 'production' | 'testing';
+//# sourceMappingURL=environment.d.ts.map

package/build/config/environment.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=environment.js.map