dexie-cloud-addon 4.4.7 → 4.4.9

package/dist/modern/sync/BlobDownloadTracker.d.ts

@@ -25,9 +25,12 @@ export declare class BlobDownloadTracker {
 /**
  * Download blob data from server via proxy endpoint.
  * Uses auth header for authentication (same as sync).
+ * When accessToken is null, the request is made without Authorization header —
+ * this allows downloading blobs from public realms (rlm-public) for
+ * unauthenticated users.
  *
  * @param blobRef - The BlobRef to download
  * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
- * @param accessToken - Access token for authentication
+ * @param accessToken - Access token for authentication, or null for anonymous access
  */
-export declare function downloadBlob(blobRef: BlobRef, dbUrl: string, accessToken: string): Promise<Uint8Array>;
+export declare function downloadBlob(blobRef: BlobRef, dbUrl: string, accessToken: string | null): Promise<Uint8Array>;

package/dist/umd/dexie-cloud-addon.js

@@ -8,7 +8,7 @@
  *
  * ==========================================================================
  *
- * Version 4.4.7, Fri Mar 27 2026
+ * Version 4.4.9, Tue Mar 31 2026
  *
  * https://dexie.org
  *
@@ -14493,7 +14493,7 @@
      *
      * ==========================================================================
      *
-     * Version 4.4.0, Fri Mar 27 2026
+     * Version 4.4.0, Tue Mar 31 2026
      *
      * https://dexie.org
      *
@@ -15537,6 +15537,14 @@
             });
             return Promise.resolve(currentUser.accessToken);
         }
+        // If the current user is not logged in (no isLoggedIn flag), there's no
+        // token to load from the database — skip the Dexie.ignoreTransaction() call.
+        // This avoids a crash in service worker context where Dexie's Promise zone
+        // (PSD.transless.env) may be undefined when called from within an active
+        // rw transaction (e.g. during applyServerChanges).
+        if (!(currentUser === null || currentUser === void 0 ? void 0 : currentUser.isLoggedIn)) {
+            return Promise.resolve(null);
+        }
         return Dexie.ignoreTransaction(() => loadAccessToken(db).then((user) => {
             var _a, _b;
             if (user === null || user === void 0 ? void 0 : user.accessToken) {
@@ -15598,7 +15606,7 @@
         return __awaiter(this, arguments, void 0, function* (db, options, schema, { isInitialSync, cancelToken, justCheckIfNeeded, purpose } = {
             isInitialSync: false,
         }) {
-            var _a, _b, _c;
+            var _a, _b, _c, _d, _e;
             if (!justCheckIfNeeded) {
                 console.debug('SYNC STARTED', { isInitialSync, purpose });
             }
@@ -15672,7 +15680,7 @@
             // Offload large blobs to blob storage before sync
             //
             let processedChangeSet = clientChangeSet;
-            const maxStringLength = (_c = (_b = db.cloud.options) === null || _b === void 0 ? void 0 : _b.maxStringLength) !== null && _c !== void 0 ? _c : 32768;
+            const maxStringLength = (_e = (_c = (_b = db.cloud.options) === null || _b === void 0 ? void 0 : _b.largeStringThreshold) !== null && _c !== void 0 ? _c : (_d = db.cloud.options) === null || _d === void 0 ? void 0 : _d.maxStringLength) !== null && _e !== void 0 ? _e : 32768;
             const hasLargeBlobs = hasLargeBlobsInOperations(clientChangeSet, maxStringLength);
             if (hasLargeBlobs) {
                 processedChangeSet = yield offloadBlobsInOperations(clientChangeSet, databaseUrl, () => loadCachedAccessToken(db), maxStringLength);
@@ -16118,8 +16126,9 @@
             if (!promise) {
                 promise = loadCachedAccessToken(this.db)
                     .then((accessToken) => {
-                    if (!accessToken)
-                        throw new Error('No access token available for blob download');
+                    // accessToken may be null for anonymous/unauthenticated users.
+                    // Public realm blobs (rlm-public) are accessible without auth.
+                    // downloadBlob will omit the Authorization header when token is null.
                     return downloadBlob(blobRef, dbUrl, accessToken);
                 })
                     .finally(() => this.inFlight.delete(blobRef.ref));
@@ -16132,19 +16141,22 @@
     /**
      * Download blob data from server via proxy endpoint.
      * Uses auth header for authentication (same as sync).
+     * When accessToken is null, the request is made without Authorization header —
+     * this allows downloading blobs from public realms (rlm-public) for
+     * unauthenticated users.
      *
      * @param blobRef - The BlobRef to download
      * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
-     * @param accessToken - Access token for authentication
+     * @param accessToken - Access token for authentication, or null for anonymous access
      */
     function downloadBlob(blobRef, dbUrl, accessToken) {
         return __awaiter(this, void 0, void 0, function* () {
             const downloadUrl = `${dbUrl}/blob/${blobRef.ref}`;
-            const response = yield fetch(downloadUrl, {
-                headers: {
-                    Authorization: `Bearer ${accessToken}`,
-                },
-            });
+            const headers = {};
+            if (accessToken) {
+                headers['Authorization'] = `Bearer ${accessToken}`;
+            }
+            const response = yield fetch(downloadUrl, { headers });
             if (!response.ok) {
                 throw new Error(`Failed to download blob ${blobRef.ref}: ${response.status} ${response.statusText}`);
             }
@@ -19718,7 +19730,7 @@
         const downloading$ = createDownloadingState();
         dexie.cloud = {
             // @ts-ignore
-            version: "4.4.7",
+            version: "4.4.9",
             options: Object.assign({}, DEFAULT_OPTIONS),
             schema: null,
             get currentUserId() {
@@ -19746,18 +19758,27 @@
             invites: getInvitesObservable(dexie),
             roles: getGlobalRolesObservable(dexie),
             configure(options) {
-                // Validate maxStringLength — Infinity disables offloading, otherwise must be
-                // a finite number between 100 and the server limit (32768).
+                // Validate largeStringThreshold (preferred) or maxStringLength (deprecated) —
+                // Infinity disables offloading, otherwise must be a finite number between 100
+                // and the server limit (32768).
                 // Minimum 100 prevents accidental offloading of primary keys and short strings
                 // that would break sync.
                 const MIN_STRING_LENGTH = 100;
                 const MAX_SERVER_STRING_LENGTH = 32768;
-                if (options.maxStringLength !== undefined &&
-                    options.maxStringLength !== Infinity &&
-                    (!Number.isFinite(options.maxStringLength) ||
-                        options.maxStringLength < MIN_STRING_LENGTH ||
-                        options.maxStringLength > MAX_SERVER_STRING_LENGTH)) {
-                    throw new Error(`maxStringLength must be Infinity or a finite number in [${MIN_STRING_LENGTH}, ${MAX_SERVER_STRING_LENGTH}]. Got: ${options.maxStringLength}`);
+                if (options.maxStringLength !== undefined) {
+                    console.warn('maxStringLength is deprecated, use largeStringThreshold instead');
+                    // If largeStringThreshold is not explicitly set, migrate to new name
+                    if (options.largeStringThreshold === undefined) {
+                        options = Object.assign(Object.assign({}, options), { largeStringThreshold: options.maxStringLength });
+                    }
+                }
+                const thresholdValue = options.largeStringThreshold;
+                if (thresholdValue !== undefined &&
+                    thresholdValue !== Infinity &&
+                    (!Number.isFinite(thresholdValue) ||
+                        thresholdValue < MIN_STRING_LENGTH ||
+                        thresholdValue > MAX_SERVER_STRING_LENGTH)) {
+                    throw new Error(`largeStringThreshold must be Infinity or a finite number in [${MIN_STRING_LENGTH}, ${MAX_SERVER_STRING_LENGTH}]. Got: ${thresholdValue}`);
                 }
                 options = dexie.cloud.options = Object.assign(Object.assign({}, dexie.cloud.options), options);
                 configuredProgramatically = true;
@@ -20154,7 +20175,7 @@
         }
     }
     // @ts-ignore
-    dexieCloud.version = "4.4.7";
+    dexieCloud.version = "4.4.9";
     Dexie.Cloud = dexieCloud;
 
     exports.default = dexieCloud;