hono 4.5.10 → 4.6.0

package/README.md

@@ -71,7 +71,7 @@ Contributions Welcome! You can contribute in the following ways.
 - Create an Issue - Propose a new feature. Report a bug.
 - Pull Request - Fix a bug and typo. Refactor the code.
 - Create third-party middleware - Instruct below.
-- Share - Share your thoughts on the Blog, Twitter, and others.
+- Share - Share your thoughts on the Blog, X, and others.
 - Make your application - Please try to use Hono.
 
 For more details, see [docs/CONTRIBUTING.md](docs/CONTRIBUTING.md).

package/dist/adapter/cloudflare-pages/handler.js

@@ -14,7 +14,7 @@ var handle = (app) => (eventContext) => {
 function handleMiddleware(middleware) {
   return async (executionCtx) => {
     const context = new Context(executionCtx.request, {
-      env: executionCtx.env,
+      env: { ...executionCtx.env, eventContext: executionCtx },
       executionCtx
     });
     let response = void 0;

package/dist/cjs/adapter/cloudflare-pages/handler.js

@@ -38,7 +38,7 @@ const handle = (app) => (eventContext) => {
 function handleMiddleware(middleware) {
   return async (executionCtx) => {
     const context = new import_context.Context(executionCtx.request, {
-      env: executionCtx.env,
+      env: { ...executionCtx.env, eventContext: executionCtx },
       executionCtx
     });
     let response = void 0;

package/dist/cjs/context.js

@@ -82,16 +82,30 @@ class Context {
   set res(_res) {
     this.#isFresh = false;
     if (this.#res && _res) {
-      this.#res.headers.delete("content-type");
-      for (const [k, v] of this.#res.headers.entries()) {
-        if (k === "set-cookie") {
-          const cookies = this.#res.headers.getSetCookie();
-          _res.headers.delete("set-cookie");
-          for (const cookie of cookies) {
-            _res.headers.append("set-cookie", cookie);
+      try {
+        for (const [k, v] of this.#res.headers.entries()) {
+          if (k === "content-type") {
+            continue;
           }
+          if (k === "set-cookie") {
+            const cookies = this.#res.headers.getSetCookie();
+            _res.headers.delete("set-cookie");
+            for (const cookie of cookies) {
+              _res.headers.append("set-cookie", cookie);
+            }
+          } else {
+            _res.headers.set(k, v);
+          }
+        }
+      } catch (e) {
+        if (e instanceof TypeError && e.message.includes("immutable")) {
+          this.res = new Response(_res.body, {
+            headers: _res.headers,
+            status: _res.status
+          });
+          return;
         } else {
-          _res.headers.set(k, v);
+          throw e;
         }
       }
     }
@@ -235,14 +249,9 @@ class Context {
     this.#preparedHeaders ??= {};
     this.#preparedHeaders["content-type"] = "text/html; charset=UTF-8";
     if (typeof html === "object") {
-      if (!(html instanceof Promise)) {
-        html = html.toString();
-      }
-      if (html instanceof Promise) {
-        return html.then((html2) => (0, import_html.resolveCallback)(html2, import_html.HtmlEscapedCallbackPhase.Stringify, false, {})).then((html2) => {
-          return typeof arg === "number" ? this.newResponse(html2, arg, headers) : this.newResponse(html2, arg);
-        });
-      }
+      return (0, import_html.resolveCallback)(html, import_html.HtmlEscapedCallbackPhase.Stringify, false, {}).then((html2) => {
+        return typeof arg === "number" ? this.newResponse(html2, arg, headers) : this.newResponse(html2, arg);
+      });
     }
     return typeof arg === "number" ? this.newResponse(html, arg, headers) : this.newResponse(html, arg);
   };

package/dist/cjs/helper/streaming/sse.js

@@ -23,17 +23,19 @@ __export(sse_exports, {
 });
 module.exports = __toCommonJS(sse_exports);
 var import_stream = require("../../utils/stream");
+var import_html = require("../../utils/html");
 class SSEStreamingApi extends import_stream.StreamingApi {
   constructor(writable, readable) {
     super(writable, readable);
   }
   async writeSSE(message) {
-    const data = message.data.split("\n").map((line) => {
+    const data = await (0, import_html.resolveCallback)(message.data, import_html.HtmlEscapedCallbackPhase.Stringify, false, {});
+    const dataLines = data.split("\n").map((line) => {
       return `data: ${line}`;
     }).join("\n");
     const sseData = [
       message.event && `event: ${message.event}`,
-      data,
+      dataLines,
       message.id && `id: ${message.id}`,
       message.retry && `retry: ${message.retry}`
     ].filter(Boolean).join("\n") + "\n\n";

package/dist/cjs/jsx/base.js

@@ -271,7 +271,7 @@ const jsxFn = (tag, props, children) => {
       props,
       children
     );
-  } else if (tag === "svg") {
+  } else if (tag === "svg" || tag === "head") {
     nameSpaceContext ||= (0, import_context.createContext)("");
     return new JSXNode(tag, props, [
       new JSXFunctionNode(

package/dist/cjs/jsx/components.js

@@ -71,11 +71,11 @@ const ErrorBoundary = async ({ children, fallback, fallbackRender, onError }) =>
     const index = errorBoundaryCounter++;
     const replaceRe = RegExp(`(<template id="E:${index}"></template>.*?)(.*?)(<!--E:${index}-->)`);
     const caught = false;
-    const catchCallback = ({ error, buffer }) => {
+    const catchCallback = ({ error: error2, buffer }) => {
       if (caught) {
         return "";
       }
-      const fallbackResString = fallbackRes(error);
+      const fallbackResString = fallbackRes(error2);
       if (buffer) {
         buffer[0] = buffer[0].replace(replaceRe, fallbackResString);
       }
@@ -89,12 +89,17 @@ d.replaceWith(c.content)
 })(document)
 <\/script>`;
     };
+    let error;
+    const promiseAll = Promise.all(resArray).catch((e) => error = e);
     return (0, import_html.raw)(`<template id="E:${index}"></template><!--E:${index}-->`, [
       ({ phase, buffer, context }) => {
         if (phase === import_html2.HtmlEscapedCallbackPhase.BeforeStream) {
           return;
         }
-        return Promise.all(resArray).then(async (htmlArray) => {
+        return promiseAll.then(async (htmlArray) => {
+          if (error) {
+            throw error;
+          }
           htmlArray = htmlArray.flat();
           const content = htmlArray.join("");
           let html = buffer ? "" : `<template data-hono-target="E:${index}">${content}</template><script>
@@ -150,10 +155,10 @@ d.remove()
 <\/script>`),
                 content2.callbacks
               );
-            }).catch((error) => catchCallback({ error, buffer }))
+            }).catch((error2) => catchCallback({ error: error2, buffer }))
           );
           return (0, import_html.raw)(html, promises);
-        }).catch((error) => catchCallback({ error, buffer }));
+        }).catch((error2) => catchCallback({ error: error2, buffer }));
       }
     ]);
   } else {

package/dist/cjs/jsx/intrinsic-element/components.js

@@ -107,8 +107,15 @@ const documentMetadataTag = (tag, children, props, sort) => {
 };
 const title = ({ children, ...props }) => {
   const nameSpaceContext = (0, import_base.getNameSpaceContext)();
-  if (nameSpaceContext && (0, import_context.useContext)(nameSpaceContext) === "svg") {
-    new import_base.JSXNode("title", props, (0, import_children.toArray)(children ?? []));
+  if (nameSpaceContext) {
+    const context = (0, import_context.useContext)(nameSpaceContext);
+    if (context === "svg" || context === "head") {
+      return new import_base.JSXNode(
+        "title",
+        props,
+        (0, import_children.toArray)(children ?? [])
+      );
+    }
   }
   return documentMetadataTag("title", children, props, false);
 };
@@ -116,7 +123,8 @@ const script = ({
   children,
   ...props
 }) => {
-  if (["src", "async"].some((k) => !props[k])) {
+  const nameSpaceContext = (0, import_base.getNameSpaceContext)();
+  if (["src", "async"].some((k) => !props[k]) || nameSpaceContext && (0, import_context.useContext)(nameSpaceContext) === "head") {
     return returnWithoutSpecialBehavior("script", children, props);
   }
   return documentMetadataTag("script", children, props, false);
@@ -139,6 +147,10 @@ const link = ({ children, ...props }) => {
   return documentMetadataTag("link", children, props, "precedence" in props);
 };
 const meta = ({ children, ...props }) => {
+  const nameSpaceContext = (0, import_base.getNameSpaceContext)();
+  if (nameSpaceContext && (0, import_context.useContext)(nameSpaceContext) === "head") {
+    return returnWithoutSpecialBehavior("meta", children, props);
+  }
   return documentMetadataTag("meta", children, props, false);
 };
 const newJSXNode = (tag, { children, ...props }) => new import_base.JSXNode(tag, props, (0, import_children.toArray)(children ?? []));

package/dist/cjs/middleware/basic-auth/index.js

@@ -22,26 +22,8 @@ __export(basic_auth_exports, {
 });
 module.exports = __toCommonJS(basic_auth_exports);
 var import_http_exception = require("../../http-exception");
+var import_basic_auth = require("../../utils/basic-auth");
 var import_buffer = require("../../utils/buffer");
-var import_encode = require("../../utils/encode");
-const CREDENTIALS_REGEXP = /^ *(?:[Bb][Aa][Ss][Ii][Cc]) +([A-Za-z0-9._~+/-]+=*) *$/;
-const USER_PASS_REGEXP = /^([^:]*):(.*)$/;
-const utf8Decoder = new TextDecoder();
-const auth = (req) => {
-  const match = CREDENTIALS_REGEXP.exec(req.header("Authorization") || "");
-  if (!match) {
-    return void 0;
-  }
-  let userPass = void 0;
-  try {
-    userPass = USER_PASS_REGEXP.exec(utf8Decoder.decode((0, import_encode.decodeBase64)(match[1])));
-  } catch {
-  }
-  if (!userPass) {
-    return void 0;
-  }
-  return { username: userPass[1], password: userPass[2] };
-};
 const basicAuth = (options, ...users) => {
   const usernamePasswordInOptions = "username" in options && "password" in options;
   const verifyUserInOptions = "verifyUser" in options;
@@ -53,11 +35,14 @@ const basicAuth = (options, ...users) => {
   if (!options.realm) {
     options.realm = "Secure Area";
   }
+  if (!options.invalidUserMessage) {
+    options.invalidUserMessage = "Unauthorized";
+  }
   if (usernamePasswordInOptions) {
     users.unshift({ username: options.username, password: options.password });
   }
   return async function basicAuth2(ctx, next) {
-    const requestUser = auth(ctx.req);
+    const requestUser = (0, import_basic_auth.auth)(ctx.req.raw);
     if (requestUser) {
       if (verifyUserInOptions) {
         if (await options.verifyUser(requestUser.username, requestUser.password, ctx)) {
@@ -77,13 +62,19 @@ const basicAuth = (options, ...users) => {
         }
       }
     }
-    const res = new Response("Unauthorized", {
-      status: 401,
+    const status = 401;
+    const headers = {
+      "WWW-Authenticate": 'Basic realm="' + options.realm?.replace(/"/g, '\\"') + '"'
+    };
+    const responseMessage = typeof options.invalidUserMessage === "function" ? await options.invalidUserMessage(ctx) : options.invalidUserMessage;
+    const res = typeof responseMessage === "string" ? new Response(responseMessage, { status, headers }) : new Response(JSON.stringify(responseMessage), {
+      status,
       headers: {
-        "WWW-Authenticate": 'Basic realm="' + options.realm?.replace(/"/g, '\\"') + '"'
+        ...headers,
+        "content-type": "application/json; charset=UTF-8"
       }
     });
-    throw new import_http_exception.HTTPException(401, { res });
+    throw new import_http_exception.HTTPException(status, { res });
   };
 };
 // Annotate the CommonJS export names for ESM import in node:

package/dist/cjs/middleware/bearer-auth/index.js

@@ -40,26 +40,38 @@ const bearerAuth = (options) => {
   const prefixRegexStr = options.prefix === "" ? "" : `${options.prefix} +`;
   const regexp = new RegExp(`^${prefixRegexStr}(${TOKEN_STRINGS}) *$`);
   const wwwAuthenticatePrefix = options.prefix === "" ? "" : `${options.prefix} `;
+  const throwHTTPException = async (c, status, wwwAuthenticateHeader, messageOption) => {
+    const headers = {
+      "WWW-Authenticate": wwwAuthenticateHeader
+    };
+    const responseMessage = typeof messageOption === "function" ? await messageOption(c) : messageOption;
+    const res = typeof responseMessage === "string" ? new Response(responseMessage, { status, headers }) : new Response(JSON.stringify(responseMessage), {
+      status,
+      headers: {
+        ...headers,
+        "content-type": "application/json; charset=UTF-8"
+      }
+    });
+    throw new import_http_exception.HTTPException(status, { res });
+  };
   return async function bearerAuth2(c, next) {
     const headerToken = c.req.header(options.headerName || HEADER);
     if (!headerToken) {
-      const res = new Response("Unauthorized", {
-        status: 401,
-        headers: {
-          "WWW-Authenticate": `${wwwAuthenticatePrefix}realm="` + realm + '"'
-        }
-      });
-      throw new import_http_exception.HTTPException(401, { res });
+      await throwHTTPException(
+        c,
+        401,
+        `${wwwAuthenticatePrefix}realm="${realm}"`,
+        options.noAuthenticationHeaderMessage || "Unauthorized"
+      );
     } else {
       const match = regexp.exec(headerToken);
       if (!match) {
-        const res = new Response("Bad Request", {
-          status: 400,
-          headers: {
-            "WWW-Authenticate": `${wwwAuthenticatePrefix}error="invalid_request"`
-          }
-        });
-        throw new import_http_exception.HTTPException(400, { res });
+        await throwHTTPException(
+          c,
+          400,
+          `${wwwAuthenticatePrefix}error="invalid_request"`,
+          options.invalidAuthenticationHeaderMessage || "Bad Request"
+        );
       } else {
         let equal = false;
         if ("verifyToken" in options) {
@@ -75,13 +87,12 @@ const bearerAuth = (options) => {
           }
         }
         if (!equal) {
-          const res = new Response("Unauthorized", {
-            status: 401,
-            headers: {
-              "WWW-Authenticate": `${wwwAuthenticatePrefix}error="invalid_token"`
-            }
-          });
-          throw new import_http_exception.HTTPException(401, { res });
+          await throwHTTPException(
+            c,
+            401,
+            `${wwwAuthenticatePrefix}error="invalid_token"`,
+            options.invalidTokenMessage || "Unauthorized"
+          );
         }
       }
     }

package/dist/cjs/middleware/context-storage/index.js

@@ -0,0 +1,43 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var context_storage_exports = {};
+__export(context_storage_exports, {
+  contextStorage: () => contextStorage,
+  getContext: () => getContext
+});
+module.exports = __toCommonJS(context_storage_exports);
+var import_node_async_hooks = require("node:async_hooks");
+const asyncLocalStorage = new import_node_async_hooks.AsyncLocalStorage();
+const contextStorage = () => {
+  return async function contextStorage2(c, next) {
+    await asyncLocalStorage.run(c, next);
+  };
+};
+const getContext = () => {
+  const context = asyncLocalStorage.getStore();
+  if (!context) {
+    throw new Error("Context is not available");
+  }
+  return context;
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  contextStorage,
+  getContext
+});

package/dist/cjs/middleware/jsx-renderer/index.js

@@ -45,6 +45,7 @@ const createRenderer = (c, Layout, component, options) => (children, props) => {
     if (options.stream === true) {
       c.header("Transfer-Encoding", "chunked");
       c.header("Content-Type", "text/html; charset=UTF-8");
+      c.header("Content-Encoding", "Identity");
     } else {
       for (const [key, value] of Object.entries(options.stream)) {
         c.header(key, value);

package/dist/cjs/middleware/secure-headers/permissions-policy.js

@@ -0,0 +1,16 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var permissions_policy_exports = {};
+module.exports = __toCommonJS(permissions_policy_exports);

package/dist/cjs/middleware/secure-headers/secure-headers.js

@@ -50,7 +50,8 @@ const DEFAULT_OPTIONS = {
   xFrameOptions: true,
   xPermittedCrossDomainPolicies: true,
   xXssProtection: true,
-  removePoweredBy: true
+  removePoweredBy: true,
+  permissionsPolicy: {}
 };
 const generateNonce = () => {
   const buffer = new Uint8Array(16);
@@ -76,6 +77,12 @@ const secureHeaders = (customOptions) => {
     }
     headersToSet.push(["Content-Security-Policy", value]);
   }
+  if (options.permissionsPolicy && Object.keys(options.permissionsPolicy).length > 0) {
+    headersToSet.push([
+      "Permissions-Policy",
+      getPermissionsPolicyDirectives(options.permissionsPolicy)
+    ]);
+  }
   if (options.reportingEndpoints) {
     headersToSet.push(["Reporting-Endpoints", getReportingEndpoints(options.reportingEndpoints)]);
   }
@@ -135,6 +142,28 @@ function getCSPDirectives(contentSecurityPolicy) {
     resultValues
   ];
 }
+function getPermissionsPolicyDirectives(policy) {
+  return Object.entries(policy).map(([directive, value]) => {
+    const kebabDirective = camelToKebab(directive);
+    if (typeof value === "boolean") {
+      return `${kebabDirective}=${value ? "*" : "none"}`;
+    }
+    if (Array.isArray(value)) {
+      if (value.length === 0) {
+        return `${kebabDirective}=()`;
+      }
+      if (value.length === 1 && (value[0] === "*" || value[0] === "none")) {
+        return `${kebabDirective}=${value[0]}`;
+      }
+      const allowlist = value.map((item) => ["self", "src"].includes(item) ? item : `"${item}"`);
+      return `${kebabDirective}=(${allowlist.join(" ")})`;
+    }
+    return "";
+  }).filter(Boolean).join(", ");
+}
+function camelToKebab(str) {
+  return str.replace(/([a-z\d])([A-Z])/g, "$1-$2").toLowerCase();
+}
 function getReportingEndpoints(reportingEndpoints = []) {
   return reportingEndpoints.map((endpoint) => `${endpoint.name}="${endpoint.url}"`).join(", ");
 }

package/dist/cjs/middleware/serve-static/index.js

@@ -23,6 +23,11 @@ __export(serve_static_exports, {
 module.exports = __toCommonJS(serve_static_exports);
 var import_filepath = require("../../utils/filepath");
 var import_mime = require("../../utils/mime");
+const ENCODINGS = {
+  br: ".br",
+  zstd: ".zst",
+  gzip: ".gz"
+};
 const DEFAULT_DOCUMENT = "index.html";
 const defaultPathResolve = (path) => path;
 const serveStatic = (options) => {
@@ -40,7 +45,7 @@ const serveStatic = (options) => {
         root
       });
       if (path2 && await options.isDir(path2)) {
-        filename = filename + "/";
+        filename += "/";
       }
     }
     let path = (0, import_filepath.getFilePath)({
@@ -56,34 +61,46 @@ const serveStatic = (options) => {
     path = pathResolve(path);
     let content = await getContent(path, c);
     if (!content) {
-      let pathWithOutDefaultDocument = (0, import_filepath.getFilePathWithoutDefaultDocument)({
+      let pathWithoutDefaultDocument = (0, import_filepath.getFilePathWithoutDefaultDocument)({
         filename,
         root
       });
-      if (!pathWithOutDefaultDocument) {
+      if (!pathWithoutDefaultDocument) {
         return await next();
       }
-      pathWithOutDefaultDocument = pathResolve(pathWithOutDefaultDocument);
-      if (pathWithOutDefaultDocument !== path) {
-        content = await getContent(pathWithOutDefaultDocument, c);
+      pathWithoutDefaultDocument = pathResolve(pathWithoutDefaultDocument);
+      if (pathWithoutDefaultDocument !== path) {
+        content = await getContent(pathWithoutDefaultDocument, c);
         if (content) {
-          path = pathWithOutDefaultDocument;
+          path = pathWithoutDefaultDocument;
         }
       }
     }
     if (content instanceof Response) {
       return c.newResponse(content.body, content);
     }
+    const mimeType = options.mimes ? (0, import_mime.getMimeType)(path, options.mimes) ?? (0, import_mime.getMimeType)(path) : (0, import_mime.getMimeType)(path);
+    if (mimeType) {
+      c.header("Content-Type", mimeType);
+    }
     if (content) {
-      let mimeType;
-      if (options.mimes) {
-        mimeType = (0, import_mime.getMimeType)(path, options.mimes) ?? (0, import_mime.getMimeType)(path);
-      } else {
-        mimeType = (0, import_mime.getMimeType)(path);
-      }
-      if (mimeType) {
-        c.header("Content-Type", mimeType);
+      if (options.precompressed) {
+        const acceptEncodings = c.req.header("Accept-Encoding")?.split(",").map((encoding) => encoding.trim()).filter(
+          (encoding) => Object.hasOwn(ENCODINGS, encoding)
+        ).sort(
+          (a, b) => Object.keys(ENCODINGS).indexOf(a) - Object.keys(ENCODINGS).indexOf(b)
+        ) ?? [];
+        for (const encoding of acceptEncodings) {
+          const compressedContent = await getContent(path + ENCODINGS[encoding], c);
+          if (compressedContent) {
+            content = compressedContent;
+            c.header("Content-Encoding", encoding);
+            c.header("Vary", "Accept-Encoding", { append: true });
+            break;
+          }
+        }
       }
+      await options.onFound?.(path, c);
       return c.body(content);
     }
     await options.onNotFound?.(path, c);

package/dist/cjs/utils/basic-auth.js

@@ -0,0 +1,46 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var basic_auth_exports = {};
+__export(basic_auth_exports, {
+  auth: () => auth
+});
+module.exports = __toCommonJS(basic_auth_exports);
+var import_encode = require("./encode");
+const CREDENTIALS_REGEXP = /^ *(?:[Bb][Aa][Ss][Ii][Cc]) +([A-Za-z0-9._~+/-]+=*) *$/;
+const USER_PASS_REGEXP = /^([^:]*):(.*)$/;
+const utf8Decoder = new TextDecoder();
+const auth = (req) => {
+  const match = CREDENTIALS_REGEXP.exec(req.headers.get("Authorization") || "");
+  if (!match) {
+    return void 0;
+  }
+  let userPass = void 0;
+  try {
+    userPass = USER_PASS_REGEXP.exec(utf8Decoder.decode((0, import_encode.decodeBase64)(match[1])));
+  } catch {
+  }
+  if (!userPass) {
+    return void 0;
+  }
+  return { username: userPass[1], password: userPass[2] };
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  auth
+});

package/dist/cjs/utils/body.js

@@ -26,7 +26,7 @@ const parseBody = async (request, options = /* @__PURE__ */ Object.create(null))
   const { all = false, dot = false } = options;
   const headers = request instanceof import_request.HonoRequest ? request.raw.headers : request.headers;
   const contentType = headers.get("Content-Type");
-  if (contentType !== null && contentType.startsWith("multipart/form-data") || contentType !== null && contentType.startsWith("application/x-www-form-urlencoded")) {
+  if (contentType?.startsWith("multipart/form-data") || contentType?.startsWith("application/x-www-form-urlencoded")) {
     return parseFormData(request, { all, dot });
   }
   return {};

package/dist/cjs/utils/html.js

@@ -112,6 +112,14 @@ const resolveCallbackSync = (str) => {
   return buffer[0];
 };
 const resolveCallback = async (str, phase, preserveCallbacks, context, buffer) => {
+  if (typeof str === "object" && !(str instanceof String)) {
+    if (!(str instanceof Promise)) {
+      str = str.toString();
+    }
+    if (str instanceof Promise) {
+      str = await str;
+    }
+  }
   const callbacks = str.callbacks;
   if (!callbacks?.length) {
     return Promise.resolve(str);