npm - hono - Versions diffs - 4.3.11 → 4.4.0 - Mend

hono 4.3.11 → 4.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (188) hide show

package/README.md +2 -3
package/dist/adapter/aws-lambda/handler.js +12 -9
package/dist/adapter/bun/conninfo.js +21 -0
package/dist/adapter/bun/index.js +2 -0
package/dist/adapter/bun/websocket.js +1 -3
package/dist/adapter/cloudflare-workers/conninfo.js +10 -0
package/dist/adapter/cloudflare-workers/websocket.js +2 -6
package/dist/adapter/deno/conninfo.js +15 -0
package/dist/adapter/deno/index.js +2 -0
package/dist/adapter/lambda-edge/handler.js +3 -3
package/dist/cjs/adapter/aws-lambda/handler.js +12 -9
package/dist/cjs/adapter/bun/conninfo.js +44 -0
package/dist/cjs/adapter/bun/index.js +3 -0
package/dist/cjs/adapter/cloudflare-workers/conninfo.js +33 -0
package/dist/cjs/adapter/cloudflare-workers/websocket.js +2 -6
package/dist/cjs/adapter/deno/conninfo.js +38 -0
package/dist/cjs/adapter/deno/index.js +3 -0
package/dist/cjs/adapter/lambda-edge/handler.js +3 -3
package/dist/cjs/helper/conninfo/index.js +16 -0
package/dist/cjs/helper/ssg/ssg.js +64 -3
package/dist/cjs/helper/streaming/text.js +1 -1
package/dist/cjs/hono-base.js +10 -6
package/dist/cjs/jsx/base.js +5 -2
package/dist/cjs/jsx/dom/client.js +68 -0
package/dist/cjs/jsx/dom/index.js +8 -4
package/dist/cjs/jsx/dom/jsx-dev-runtime.js +6 -20
package/dist/cjs/jsx/dom/render.js +41 -25
package/dist/cjs/jsx/dom/utils.js +15 -0
package/dist/cjs/jsx/hooks/index.js +4 -1
package/dist/cjs/jsx/index.js +8 -4
package/dist/cjs/middleware/jwt/index.js +5 -82
package/dist/cjs/middleware/jwt/jwt.js +111 -0
package/dist/cjs/middleware/secure-headers/index.js +3 -123
package/dist/cjs/middleware/secure-headers/secure-headers.js +150 -0
package/dist/cjs/middleware/timeout/index.js +48 -0
package/dist/cjs/middleware/timing/index.js +5 -89
package/dist/cjs/middleware/timing/timing.js +118 -0
package/dist/cjs/utils/body.js +34 -9
package/dist/cjs/utils/jwt/jws.js +4 -5
package/dist/cjs/utils/jwt/jwt.js +6 -7
package/dist/cjs/utils/url.js +26 -2
package/dist/helper/css/index.js +4 -4
package/dist/helper/html/index.js +1 -1
package/dist/helper/ssg/ssg.js +63 -5
package/dist/helper/streaming/text.js +1 -1
package/dist/hono-base.js +11 -7
package/dist/jsx/base.js +3 -1
package/dist/jsx/dom/client.js +44 -0
package/dist/jsx/dom/css.js +4 -4
package/dist/jsx/dom/index.js +25 -21
package/dist/jsx/dom/jsx-dev-runtime.js +6 -20
package/dist/jsx/dom/render.js +40 -26
package/dist/jsx/dom/utils.js +14 -0
package/dist/jsx/hooks/index.js +4 -2
package/dist/jsx/index.js +22 -18
package/dist/jsx/jsx-runtime.js +1 -1
package/dist/middleware/jsx-renderer/index.js +1 -1
package/dist/middleware/jwt/index.js +1 -78
package/dist/middleware/jwt/jwt.js +85 -0
package/dist/middleware/secure-headers/index.js +1 -121
package/dist/middleware/secure-headers/secure-headers.js +126 -0
package/dist/middleware/timeout/index.js +25 -0
package/dist/middleware/timing/index.js +1 -85
package/dist/middleware/timing/timing.js +92 -0
package/dist/request.js +1 -1
package/dist/router/reg-exp-router/router.js +2 -2
package/dist/router/smart-router/router.js +1 -1
package/dist/router/trie-router/node.js +1 -1
package/dist/types/adapter/aws-lambda/handler.d.ts +3 -3
package/dist/types/adapter/aws-lambda/index.d.ts +4 -0
package/dist/types/adapter/bun/conninfo.d.ts +7 -0
package/dist/types/adapter/bun/index.d.ts +5 -0
package/dist/types/adapter/bun/websocket.d.ts +2 -3
package/dist/types/adapter/cloudflare-pages/index.d.ts +4 -0
package/dist/types/adapter/cloudflare-workers/conninfo.d.ts +2 -0
package/dist/types/adapter/cloudflare-workers/index.d.ts +4 -0
package/dist/types/adapter/cloudflare-workers/serve-static-module.d.ts +2 -2
package/dist/types/adapter/cloudflare-workers/serve-static.d.ts +1 -2
package/dist/types/adapter/cloudflare-workers/utils.d.ts +1 -2
package/dist/types/adapter/deno/conninfo.d.ts +7 -0
package/dist/types/adapter/deno/index.d.ts +5 -0
package/dist/types/adapter/lambda-edge/handler.d.ts +1 -2
package/dist/types/adapter/lambda-edge/index.d.ts +4 -0
package/dist/types/adapter/netlify/handler.d.ts +1 -7
package/dist/types/adapter/netlify/index.d.ts +4 -0
package/dist/types/adapter/netlify/mod.d.ts +0 -1
package/dist/types/adapter/vercel/index.d.ts +4 -0
package/dist/types/client/index.d.ts +4 -0
package/dist/types/compose.d.ts +1 -1
package/dist/types/helper/accepts/index.d.ts +4 -0
package/dist/types/helper/adapter/index.d.ts +4 -0
package/dist/types/helper/conninfo/index.d.ts +40 -0
package/dist/types/helper/cookie/index.d.ts +5 -1
package/dist/types/helper/css/index.d.ts +4 -0
package/dist/types/helper/dev/index.d.ts +4 -0
package/dist/types/helper/factory/index.d.ts +4 -0
package/dist/types/helper/html/index.d.ts +4 -0
package/dist/types/helper/ssg/index.d.ts +4 -0
package/dist/types/helper/ssg/ssg.d.ts +6 -3
package/dist/types/helper/streaming/index.d.ts +4 -0
package/dist/types/helper/testing/index.d.ts +4 -0
package/dist/types/helper/websocket/index.d.ts +4 -0
package/dist/types/hono-base.d.ts +15 -15
package/dist/types/http-exception.d.ts +4 -0
package/dist/types/index.d.ts +15 -0
package/dist/types/jsx/base.d.ts +10 -11
package/dist/types/jsx/components.d.ts +1 -1
package/dist/types/jsx/context.d.ts +1 -1
package/dist/types/jsx/dom/client.d.ts +26 -0
package/dist/types/jsx/dom/components.d.ts +2 -2
package/dist/types/jsx/dom/css.d.ts +31 -20
package/dist/types/jsx/dom/index.d.ts +13 -7
package/dist/types/jsx/dom/jsx-dev-runtime.d.ts +5 -1
package/dist/types/jsx/dom/jsx-runtime.d.ts +4 -0
package/dist/types/jsx/dom/render.d.ts +4 -3
package/dist/types/jsx/dom/utils.d.ts +6 -0
package/dist/types/jsx/hooks/index.d.ts +4 -0
package/dist/types/jsx/index.d.ts +13 -7
package/dist/types/jsx/intrinsic-elements.d.ts +629 -630
package/dist/types/jsx/jsx-dev-runtime.d.ts +5 -0
package/dist/types/jsx/jsx-runtime.d.ts +5 -0
package/dist/types/jsx/streaming.d.ts +5 -1
package/dist/types/jsx/types.d.ts +1 -0
package/dist/types/middleware/basic-auth/index.d.ts +35 -0
package/dist/types/middleware/bearer-auth/index.d.ts +33 -0
package/dist/types/middleware/body-limit/index.d.ts +28 -11
package/dist/types/middleware/cache/index.d.ts +29 -0
package/dist/types/middleware/compress/index.d.ts +20 -0
package/dist/types/middleware/cors/index.d.ts +43 -0
package/dist/types/middleware/csrf/index.d.ts +41 -0
package/dist/types/middleware/etag/index.d.ts +24 -0
package/dist/types/middleware/jsx-renderer/index.d.ts +63 -2
package/dist/types/middleware/jwt/index.d.ts +5 -17
package/dist/types/middleware/jwt/jwt.d.ts +48 -0
package/dist/types/middleware/logger/index.d.ts +20 -0
package/dist/types/middleware/method-override/index.d.ts +22 -10
package/dist/types/middleware/powered-by/index.d.ts +4 -0
package/dist/types/middleware/pretty-json/index.d.ts +23 -0
package/dist/types/middleware/secure-headers/index.d.ts +6 -64
package/dist/types/middleware/secure-headers/secure-headers.d.ts +97 -0
package/dist/types/middleware/serve-static/index.d.ts +4 -0
package/dist/types/middleware/timeout/index.d.ts +31 -0
package/dist/types/middleware/timing/index.d.ts +5 -29
package/dist/types/middleware/timing/timing.d.ts +111 -0
package/dist/types/middleware/trailing-slash/index.d.ts +29 -5
package/dist/types/preset/quick.d.ts +4 -0
package/dist/types/preset/tiny.d.ts +4 -0
package/dist/types/request.d.ts +5 -4
package/dist/types/router/linear-router/index.d.ts +4 -0
package/dist/types/router/linear-router/router.d.ts +1 -1
package/dist/types/router/pattern-router/index.d.ts +4 -0
package/dist/types/router/reg-exp-router/index.d.ts +4 -0
package/dist/types/router/reg-exp-router/router.d.ts +1 -1
package/dist/types/router/reg-exp-router/trie.d.ts +1 -1
package/dist/types/router/smart-router/index.d.ts +4 -0
package/dist/types/router/smart-router/router.d.ts +1 -1
package/dist/types/router/trie-router/index.d.ts +4 -0
package/dist/types/router.d.ts +4 -0
package/dist/types/types.d.ts +4 -0
package/dist/types/utils/body.d.ts +61 -3
package/dist/types/utils/buffer.d.ts +4 -0
package/dist/types/utils/color.d.ts +4 -0
package/dist/types/utils/concurrent.d.ts +4 -0
package/dist/types/utils/cookie.d.ts +4 -0
package/dist/types/utils/crypto.d.ts +4 -0
package/dist/types/utils/encode.d.ts +4 -0
package/dist/types/utils/filepath.d.ts +4 -0
package/dist/types/utils/handler.d.ts +4 -0
package/dist/types/utils/html.d.ts +4 -0
package/dist/types/utils/http-status.d.ts +4 -0
package/dist/types/utils/jwt/index.d.ts +4 -0
package/dist/types/utils/jwt/jwt.d.ts +3 -3
package/dist/types/utils/mime.d.ts +4 -0
package/dist/types/utils/stream.d.ts +4 -0
package/dist/types/utils/types.d.ts +4 -0
package/dist/types/utils/url.d.ts +4 -0
package/dist/types/validator/index.d.ts +4 -0
package/dist/types/validator/validator.d.ts +1 -1
package/dist/utils/body.js +34 -9
package/dist/utils/jwt/index.js +1 -1
package/dist/utils/jwt/jws.js +1 -2
package/dist/utils/jwt/jwt.js +5 -5
package/dist/utils/url.js +26 -2
package/package.json +27 -6
package/dist/cjs/adapter/aws-lambda/awslambda.d.js +0 -1
package/dist/cjs/helper.js +0 -44
package/dist/helper.js +0 -18
/package/dist/{adapter/aws-lambda/awslambda.d.js → helper/conninfo/index.js} +0 -0

package/dist/jsx/dom/render.js CHANGED Viewed

@@ -1,10 +1,11 @@
 // src/jsx/dom/render.ts
 import { toArray } from "../children.js";
-import { DOM_RENDERER, DOM_ERROR_HANDLER, DOM_STASH, DOM_INTERNAL_TAG } from "../constants.js";
+import { DOM_ERROR_HANDLER, DOM_INTERNAL_TAG, DOM_RENDERER, DOM_STASH } from "../constants.js";
 import { globalContexts as globalJSXContexts, useContext } from "../context.js";
 import { STASH_EFFECT } from "../hooks/index.js";
 import { styleObjectForEach } from "../utils.js";
 import { createContext } from "./context.js";
+import { newJSXNode } from "./utils.js";
 var HONO_PORTAL_ELEMENT = "_hp";
 var eventAliasMap = {
   Change: "Input",
@@ -26,6 +27,7 @@ var getEventSpec = (key) => {
   }
   return void 0;
 };
+var toAttributeName = (element, key) => element instanceof SVGElement && /[A-Z]/.test(key) && (key in element.style || key.match(/^(?:o|pai|str|u|ve)/)) ? key.replace(/([A-Z])/g, "-$1").toLowerCase() : key;
 var applyProps = (container, attributes, oldAttributes) => {
   attributes ||= {};
   for (const [key, value] of Object.entries(attributes)) {
@@ -80,14 +82,15 @@ var applyProps = (container, attributes, oldAttributes) => {
           ;
           container[key] = value;
         }
+        const k = toAttributeName(container, key);
         if (value === null || value === void 0 || value === false) {
-          container.removeAttribute(key);
+          container.removeAttribute(k);
         } else if (value === true) {
-          container.setAttribute(key, "");
+          container.setAttribute(k, "");
         } else if (typeof value === "string" || typeof value === "number") {
-          container.setAttribute(key, value);
+          container.setAttribute(k, value);
         } else {
-          container.setAttribute(key, value.toString());
+          container.setAttribute(k, value.toString());
         }
       }
     }
@@ -105,7 +108,7 @@ var applyProps = (container, attributes, oldAttributes) => {
             value.current = null;
           }
         } else {
-          container.removeAttribute(key);
+          container.removeAttribute(toAttributeName(container, key));
         }
       }
     }
@@ -153,6 +156,8 @@ var getNextChildren = (node, container, nextChildren, childrenToRemove, callback
 var findInsertBefore = (node) => {
   if (!node) {
     return null;
+  } else if (node.tag === HONO_PORTAL_ELEMENT) {
+    return findInsertBefore(node.nN);
   } else if (node.e) {
     return node.e;
   }
@@ -214,7 +219,7 @@ var applyNodeObject = (node, container) => {
   const callbacks = [];
   getNextChildren(node, container, next, remove, callbacks);
   const childNodes = container.childNodes;
-  let offset = findChildNodeIndex(childNodes, findInsertBefore(node.nN)) ?? findChildNodeIndex(childNodes, next.find((n) => n.e)?.e) ?? childNodes.length;
+  let offset = findChildNodeIndex(childNodes, findInsertBefore(node.nN)) ?? findChildNodeIndex(childNodes, next.find((n) => n.tag !== HONO_PORTAL_ELEMENT && n.e)?.e) ?? childNodes.length;
   for (let i = 0, len = next.length; i < len; i++, offset++) {
     const child = next[i];
     let el;
@@ -229,11 +234,14 @@ var applyNodeObject = (node, container) => {
       applyProps(el, child.props, child.pP);
       applyNode(child, el);
     }
-    if (childNodes[offset] !== el && childNodes[offset - 1] !== child.e && child.tag !== HONO_PORTAL_ELEMENT) {
+    if (child.tag === HONO_PORTAL_ELEMENT) {
+      offset--;
+    } else if (childNodes[offset] !== el && childNodes[offset - 1] !== child.e) {
       container.insertBefore(el, childNodes[offset] || null);
     }
   }
   remove.forEach(removeNode);
+  callbacks.forEach(([, , , , cb]) => cb?.());
   callbacks.forEach(([, cb]) => cb?.());
   requestAnimationFrame(() => {
     callbacks.forEach(([, , , cb]) => cb?.());
@@ -249,7 +257,7 @@ var build = (context, node, topLevelErrorHandlerNode, children) => {
   }
   const oldVChildren = node.vC ? [...node.vC] : [];
   const vChildren = [];
-  const vChildrenToRemove = [];
+  node.vR = [];
   let prevNode;
   try {
     children.flat().forEach((c) => {
@@ -263,24 +271,23 @@ var build = (context, node, topLevelErrorHandlerNode, children) => {
           child[DOM_STASH][2] = globalJSXContexts.map((c2) => [c2, c2.values.at(-1)]);
         }
         let oldChild;
-        const i = oldVChildren.findIndex((c2) => c2.key === child.key);
+        const i = oldVChildren.findIndex(
+          isNodeString(child) ? (c2) => isNodeString(c2) : child.key !== void 0 ? (c2) => c2.key === child.key : (c2) => c2.tag === child.tag
+        );
         if (i !== -1) {
           oldChild = oldVChildren[i];
           oldVChildren.splice(i, 1);
         }
         if (oldChild) {
           if (isNodeString(child)) {
-            if (!isNodeString(oldChild)) {
-              vChildrenToRemove.push(oldChild);
-            } else {
-              if (oldChild.t !== child.t) {
-                oldChild.t = child.t;
-                oldChild.d = true;
-              }
-              child = oldChild;
+            if (oldChild.t !== child.t) {
+              ;
+              oldChild.t = child.t;
+              oldChild.d = true;
             }
+            child = oldChild;
           } else if (oldChild.tag !== child.tag) {
-            vChildrenToRemove.push(oldChild);
+            node.vR.push(oldChild);
           } else {
             oldChild.pP = oldChild.props;
             oldChild.props = child.props;
@@ -302,8 +309,7 @@ var build = (context, node, topLevelErrorHandlerNode, children) => {
       }
     });
     node.vC = vChildren;
-    vChildrenToRemove.push(...oldVChildren);
-    node.vR = vChildrenToRemove;
+    node.vR.push(...oldVChildren);
   } catch (e) {
     if (errorHandler) {
       const fallbackUpdateFn = () => update([0, false, context[2]], topLevelErrorHandlerNode);
@@ -338,10 +344,14 @@ var buildNode = (node) => {
   } else if (typeof node === "string" || typeof node === "number") {
     return { t: node.toString(), d: true };
   } else {
+    if ("vR" in node) {
+      node = newJSXNode({
+        tag: node.tag,
+        props: node.props,
+        key: node.key
+      });
+    }
     if (typeof node.tag === "function") {
-      if (node[DOM_STASH]) {
-        node = { ...node };
-      }
       ;
       node[DOM_STASH] = [0, []];
     } else {
@@ -417,8 +427,7 @@ var update = async (context, node) => {
   }
   return promise;
 };
-var render = (jsxNode, container) => {
-  const node = buildNode({ tag: "", props: { children: jsxNode } });
+var renderNode = (node, container) => {
   const context = [];
   context[4] = true;
   build(context, node, void 0);
@@ -428,6 +437,9 @@ var render = (jsxNode, container) => {
   replaceContainer(node, fragment, container);
   container.replaceChildren(fragment);
 };
+var render = (jsxNode, container) => {
+  renderNode(buildNode({ tag: "", props: { children: jsxNode } }), container);
+};
 var flushSync = (callback) => {
   const set = /* @__PURE__ */ new Set();
   currentUpdateSets.push(set);
@@ -452,8 +464,10 @@ var createPortal = (children, container, key) => ({
 export {
   build,
   buildDataStack,
+  buildNode,
   createPortal,
   flushSync,
   render,
+  renderNode,
   update
 };

package/dist/jsx/dom/utils.js CHANGED Viewed

@@ -5,6 +5,20 @@ var setInternalTagFlag = (fn) => {
   fn[DOM_INTERNAL_TAG] = true;
   return fn;
 };
+var JSXNodeCompatPrototype = {
+  type: {
+    get() {
+      return this.tag;
+    }
+  },
+  ref: {
+    get() {
+      return this.props?.ref;
+    }
+  }
+};
+var newJSXNode = (obj) => Object.defineProperties(obj, JSXNodeCompatPrototype);
 export {
+  newJSXNode,
   setInternalTagFlag
 };

package/dist/jsx/hooks/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 // src/jsx/hooks/index.ts
 import { DOM_STASH } from "../constants.js";
-import { buildDataStack, update, build } from "../dom/render.js";
+import { build, buildDataStack, update } from "../dom/render.js";
 var STASH_SATE = 0;
 var STASH_EFFECT = 1;
 var STASH_CALLBACK = 2;
@@ -175,13 +175,14 @@ var useEffectCommon = (index, effect, deps) => {
       data[index] = void 0;
       data[2] = effect();
     };
-    const data = [deps, void 0, void 0, void 0];
+    const data = [deps, void 0, void 0, void 0, void 0];
     data[index] = runner;
     effectDepsArray[hookIndex] = data;
   }
 };
 var useEffect = (effect, deps) => useEffectCommon(3, effect, deps);
 var useLayoutEffect = (effect, deps) => useEffectCommon(1, effect, deps);
+var useInsertionEffect = (effect, deps) => useEffectCommon(4, effect, deps);
 var useCallback = (callback, deps) => {
   const buildData = buildDataStack.at(-1);
   if (!buildData) {
@@ -314,6 +315,7 @@ export {
   useEffect,
   useId,
   useImperativeHandle,
+  useInsertionEffect,
   useLayoutEffect,
   useMemo,
   useReducer,

package/dist/jsx/index.js CHANGED Viewed

@@ -1,32 +1,33 @@
 // src/jsx/index.ts
-import { jsx, memo, Fragment, isValidElement, cloneElement } from "./base.js";
+import { Fragment, cloneElement, isValidElement, jsx, memo, reactAPICompatVersion } from "./base.js";
 import { Children } from "./children.js";
 import { ErrorBoundary } from "./components.js";
 import { createContext, useContext } from "./context.js";
 import {
-  useState,
-  useEffect,
-  useRef,
-  useCallback,
-  use,
+  createRef,
+  forwardRef,
   startTransition,
-  useTransition,
-  useDeferredValue,
   startViewTransition,
-  useViewTransition,
-  useMemo,
-  useLayoutEffect,
-  useReducer,
-  useId,
+  use,
+  useCallback,
   useDebugValue,
-  createRef,
-  forwardRef,
+  useDeferredValue,
+  useEffect,
+  useId,
   useImperativeHandle,
-  useSyncExternalStore
+  useInsertionEffect,
+  useLayoutEffect,
+  useMemo,
+  useReducer,
+  useRef,
+  useState,
+  useSyncExternalStore,
+  useTransition,
+  useViewTransition
 } from "./hooks/index.js";
 import { Suspense } from "./streaming.js";
-export * from "./types.js";
 var jsx_default = {
+  version: reactAPICompatVersion,
   memo,
   Fragment,
   isValidElement,
@@ -50,6 +51,7 @@ var jsx_default = {
   useViewTransition,
   useMemo,
   useLayoutEffect,
+  useInsertionEffect,
   createRef,
   forwardRef,
   useImperativeHandle,
@@ -81,6 +83,7 @@ export {
   useEffect,
   useId,
   useImperativeHandle,
+  useInsertionEffect,
   useLayoutEffect,
   useMemo,
   useReducer,
@@ -88,5 +91,6 @@ export {
   useState,
   useSyncExternalStore,
   useTransition,
-  useViewTransition
+  useViewTransition,
+  reactAPICompatVersion as version
 };

package/dist/jsx/jsx-runtime.js CHANGED Viewed

@@ -1,7 +1,7 @@
 // src/jsx/jsx-runtime.ts
 import { jsxDEV, Fragment } from "./jsx-dev-runtime.js";
 import { jsxDEV as jsxDEV2 } from "./jsx-dev-runtime.js";
-import { raw, html } from "../helper/html/index.js";
+import { html, raw } from "../helper/html/index.js";
 var jsxAttr = (name, value) => typeof value === "string" ? raw(name + '="' + html`${value}` + '"') : html`${name}="${value}"`;
 var jsxEscape = (value) => value;
 export {

package/dist/middleware/jsx-renderer/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 // src/middleware/jsx-renderer/index.ts
 import { html, raw } from "../../helper/html/index.js";
-import { jsx, createContext, useContext, Fragment } from "../../jsx/index.js";
+import { Fragment, createContext, jsx, useContext } from "../../jsx/index.js";
 import { renderToReadableStream } from "../../jsx/streaming.js";
 var RequestContext = createContext(null);
 var createRenderer = (c, Layout, component, options) => (children, props) => {

package/dist/middleware/jwt/index.js CHANGED Viewed

@@ -1,82 +1,5 @@
 // src/middleware/jwt/index.ts
-import { getCookie } from "../../helper/cookie/index.js";
-import { HTTPException } from "../../http-exception.js";
-import { Jwt } from "../../utils/jwt/index.js";
-import "../../context.js";
-var jwt = (options) => {
-  if (!options || !options.secret) {
-    throw new Error('JWT auth middleware requires options for "secret');
-  }
-  if (!crypto.subtle || !crypto.subtle.importKey) {
-    throw new Error("`crypto.subtle.importKey` is undefined. JWT auth middleware requires it.");
-  }
-  return async function jwt2(ctx, next) {
-    const credentials = ctx.req.raw.headers.get("Authorization");
-    let token;
-    if (credentials) {
-      const parts = credentials.split(/\s+/);
-      if (parts.length !== 2) {
-        const errDescription = "invalid credentials structure";
-        throw new HTTPException(401, {
-          message: errDescription,
-          res: unauthorizedResponse({
-            ctx,
-            error: "invalid_request",
-            errDescription
-          })
-        });
-      } else {
-        token = parts[1];
-      }
-    } else if (options.cookie) {
-      token = getCookie(ctx)[options.cookie];
-    }
-    if (!token) {
-      const errDescription = "no authorization included in request";
-      throw new HTTPException(401, {
-        message: errDescription,
-        res: unauthorizedResponse({
-          ctx,
-          error: "invalid_request",
-          errDescription
-        })
-      });
-    }
-    let payload;
-    let cause;
-    try {
-      payload = await Jwt.verify(token, options.secret, options.alg);
-    } catch (e) {
-      cause = e;
-    }
-    if (!payload) {
-      throw new HTTPException(401, {
-        message: "Unauthorized",
-        res: unauthorizedResponse({
-          ctx,
-          error: "invalid_token",
-          statusText: "Unauthorized",
-          errDescription: "token verification failure"
-        }),
-        cause
-      });
-    }
-    ctx.set("jwtPayload", payload);
-    await next();
-  };
-};
-function unauthorizedResponse(opts) {
-  return new Response("Unauthorized", {
-    status: 401,
-    statusText: opts.statusText,
-    headers: {
-      "WWW-Authenticate": `Bearer realm="${opts.ctx.req.url}",error="${opts.error}",error_description="${opts.errDescription}"`
-    }
-  });
-}
-var verify = Jwt.verify;
-var decode = Jwt.decode;
-var sign = Jwt.sign;
+import { jwt, verify, decode, sign } from "./jwt.js";
 export {
   decode,
   jwt,

package/dist/middleware/jwt/jwt.js ADDED Viewed

@@ -0,0 +1,85 @@
+// src/middleware/jwt/jwt.ts
+import { getCookie } from "../../helper/cookie/index.js";
+import { HTTPException } from "../../http-exception.js";
+import { Jwt } from "../../utils/jwt/index.js";
+import "../../context.js";
+var jwt = (options) => {
+  if (!options || !options.secret) {
+    throw new Error('JWT auth middleware requires options for "secret"');
+  }
+  if (!crypto.subtle || !crypto.subtle.importKey) {
+    throw new Error("`crypto.subtle.importKey` is undefined. JWT auth middleware requires it.");
+  }
+  return async function jwt2(ctx, next) {
+    const credentials = ctx.req.raw.headers.get("Authorization");
+    let token;
+    if (credentials) {
+      const parts = credentials.split(/\s+/);
+      if (parts.length !== 2) {
+        const errDescription = "invalid credentials structure";
+        throw new HTTPException(401, {
+          message: errDescription,
+          res: unauthorizedResponse({
+            ctx,
+            error: "invalid_request",
+            errDescription
+          })
+        });
+      } else {
+        token = parts[1];
+      }
+    } else if (options.cookie) {
+      token = getCookie(ctx)[options.cookie];
+    }
+    if (!token) {
+      const errDescription = "no authorization included in request";
+      throw new HTTPException(401, {
+        message: errDescription,
+        res: unauthorizedResponse({
+          ctx,
+          error: "invalid_request",
+          errDescription
+        })
+      });
+    }
+    let payload;
+    let cause;
+    try {
+      payload = await Jwt.verify(token, options.secret, options.alg);
+    } catch (e) {
+      cause = e;
+    }
+    if (!payload) {
+      throw new HTTPException(401, {
+        message: "Unauthorized",
+        res: unauthorizedResponse({
+          ctx,
+          error: "invalid_token",
+          statusText: "Unauthorized",
+          errDescription: "token verification failure"
+        }),
+        cause
+      });
+    }
+    ctx.set("jwtPayload", payload);
+    await next();
+  };
+};
+function unauthorizedResponse(opts) {
+  return new Response("Unauthorized", {
+    status: 401,
+    statusText: opts.statusText,
+    headers: {
+      "WWW-Authenticate": `Bearer realm="${opts.ctx.req.url}",error="${opts.error}",error_description="${opts.errDescription}"`
+    }
+  });
+}
+var verify = Jwt.verify;
+var decode = Jwt.decode;
+var sign = Jwt.sign;
+export {
+  decode,
+  jwt,
+  sign,
+  verify
+};

package/dist/middleware/secure-headers/index.js CHANGED Viewed

@@ -1,125 +1,5 @@
 // src/middleware/secure-headers/index.ts
-import { encodeBase64 } from "../../utils/encode.js";
-var HEADERS_MAP = {
-  crossOriginEmbedderPolicy: ["Cross-Origin-Embedder-Policy", "require-corp"],
-  crossOriginResourcePolicy: ["Cross-Origin-Resource-Policy", "same-origin"],
-  crossOriginOpenerPolicy: ["Cross-Origin-Opener-Policy", "same-origin"],
-  originAgentCluster: ["Origin-Agent-Cluster", "?1"],
-  referrerPolicy: ["Referrer-Policy", "no-referrer"],
-  strictTransportSecurity: ["Strict-Transport-Security", "max-age=15552000; includeSubDomains"],
-  xContentTypeOptions: ["X-Content-Type-Options", "nosniff"],
-  xDnsPrefetchControl: ["X-DNS-Prefetch-Control", "off"],
-  xDownloadOptions: ["X-Download-Options", "noopen"],
-  xFrameOptions: ["X-Frame-Options", "SAMEORIGIN"],
-  xPermittedCrossDomainPolicies: ["X-Permitted-Cross-Domain-Policies", "none"],
-  xXssProtection: ["X-XSS-Protection", "0"]
-};
-var DEFAULT_OPTIONS = {
-  crossOriginEmbedderPolicy: false,
-  crossOriginResourcePolicy: true,
-  crossOriginOpenerPolicy: true,
-  originAgentCluster: true,
-  referrerPolicy: true,
-  strictTransportSecurity: true,
-  xContentTypeOptions: true,
-  xDnsPrefetchControl: true,
-  xDownloadOptions: true,
-  xFrameOptions: true,
-  xPermittedCrossDomainPolicies: true,
-  xXssProtection: true
-};
-var generateNonce = () => {
-  const buffer = new Uint8Array(16);
-  crypto.getRandomValues(buffer);
-  return encodeBase64(buffer);
-};
-var NONCE = (ctx) => {
-  const nonce = ctx.get("secureHeadersNonce") || (() => {
-    const newNonce = generateNonce();
-    ctx.set("secureHeadersNonce", newNonce);
-    return newNonce;
-  })();
-  return `'nonce-${nonce}'`;
-};
-var secureHeaders = (customOptions) => {
-  const options = { ...DEFAULT_OPTIONS, ...customOptions };
-  const headersToSet = getFilteredHeaders(options);
-  const callbacks = [];
-  if (options.contentSecurityPolicy) {
-    const [callback, value] = getCSPDirectives(options.contentSecurityPolicy);
-    if (callback) {
-      callbacks.push(callback);
-    }
-    headersToSet.push(["Content-Security-Policy", value]);
-  }
-  if (options.reportingEndpoints) {
-    headersToSet.push(["Reporting-Endpoints", getReportingEndpoints(options.reportingEndpoints)]);
-  }
-  if (options.reportTo) {
-    headersToSet.push(["Report-To", getReportToOptions(options.reportTo)]);
-  }
-  return async function secureHeaders2(ctx, next) {
-    const headersToSetForReq = callbacks.length === 0 ? headersToSet : callbacks.reduce((acc, cb) => cb(ctx, acc), headersToSet);
-    await next();
-    setHeaders(ctx, headersToSetForReq);
-    ctx.res.headers.delete("X-Powered-By");
-  };
-};
-function getFilteredHeaders(options) {
-  return Object.entries(HEADERS_MAP).filter(([key]) => options[key]).map(([key, defaultValue]) => {
-    const overrideValue = options[key];
-    return typeof overrideValue === "string" ? [defaultValue[0], overrideValue] : defaultValue;
-  });
-}
-function getCSPDirectives(contentSecurityPolicy) {
-  const callbacks = [];
-  const resultValues = [];
-  for (const [directive, value] of Object.entries(contentSecurityPolicy)) {
-    const valueArray = Array.isArray(value) ? value : [value];
-    valueArray.forEach((value2, i) => {
-      if (typeof value2 === "function") {
-        const index = i * 2 + 2 + resultValues.length;
-        callbacks.push((ctx, values) => {
-          values[index] = value2(ctx, directive);
-        });
-      }
-    });
-    resultValues.push(
-      directive.replace(
-        /[A-Z]+(?![a-z])|[A-Z]/g,
-        (match, offset) => offset ? "-" + match.toLowerCase() : match.toLowerCase()
-      ),
-      ...valueArray.flatMap((value2) => [" ", value2]),
-      "; "
-    );
-  }
-  resultValues.pop();
-  return callbacks.length === 0 ? [void 0, resultValues.join("")] : [
-    (ctx, headersToSet) => headersToSet.map((values) => {
-      if (values[0] === "Content-Security-Policy") {
-        const clone = values[1].slice();
-        callbacks.forEach((cb) => {
-          cb(ctx, clone);
-        });
-        return [values[0], clone.join("")];
-      } else {
-        return values;
-      }
-    }),
-    resultValues
-  ];
-}
-function getReportingEndpoints(reportingEndpoints = []) {
-  return reportingEndpoints.map((endpoint) => `${endpoint.name}="${endpoint.url}"`).join(", ");
-}
-function getReportToOptions(reportTo = []) {
-  return reportTo.map((option) => JSON.stringify(option)).join(", ");
-}
-function setHeaders(ctx, headersToSet) {
-  headersToSet.forEach(([header, value]) => {
-    ctx.res.headers.set(header, value);
-  });
-}
+import { NONCE, secureHeaders } from "./secure-headers.js";
 export {
   NONCE,
   secureHeaders