npm - ngx-dsxlibrary - Versions diffs - 2.21.12 → 2.21.13 - Mend

ngx-dsxlibrary 2.21.12 → 2.21.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/fesm2022/ngx-dsxlibrary.mjs +34 -4
package/fesm2022/ngx-dsxlibrary.mjs.map +1 -1
package/ngx-dsxlibrary-2.21.13.tgz +0 -0
package/package.json +1 -1
package/types/ngx-dsxlibrary.d.ts +33 -0
package/ngx-dsxlibrary-2.21.12.tgz +0 -0

package/fesm2022/ngx-dsxlibrary.mjs CHANGED Viewed

@@ -1750,6 +1750,29 @@ class AuthorizeService {
         const privateIpv4Pattern = /^(10\.|192\.168\.|172\.(1[6-9]|2\d|3[0-1])\.)/;
         return privateIpv4Pattern.test(normalizedHost);
     }
+    /**
+     * Resuelve el dominio a usar para cookies según entorno/host actual.
+     *
+     * Orden de prioridad:
+     * 1. Si `environment.cookieDomain` está configurado, lo usa (para ambientes locales).
+     * 2. Si HTTPS público, usa `.itgtxela.com`.
+     * 3. Si no coincide nada, devuelve undefined (sin dominio compartido).
+     */
+    resolveCookieDomain(isProduction, isHttps) {
+        if (!isProduction || typeof window === 'undefined') {
+            return undefined;
+        }
+        // 1️⃣ Si está configurado en environment, usarlo (para ambientes locales).
+        if (this.environment.cookieDomain) {
+            return this.environment.cookieDomain;
+        }
+        // 2️⃣ Producción pública con HTTPS: mantener dominio corporativo.
+        if (isHttps) {
+            return '.itgtxela.com';
+        }
+        // 3️⃣ Sin coincidencia: sin dominio compartido.
+        return undefined;
+    }
     // Función para obtener opciones de cookies estándar
     /**
      * Construye las opciones usadas por `CookieService` al crear cookies.
@@ -1769,15 +1792,16 @@ class AuthorizeService {
     getCookieOptions(expiryDate) {
         const isProduction = this.environment.production;
         const isHttps = typeof window !== 'undefined' && window.location?.protocol === 'https:';
+        const cookieDomain = this.resolveCookieDomain(isProduction, isHttps);
         const cookieOptions = {
             path: '/',
             expires: expiryDate,
             secure: isHttps,
             sameSite: isHttps ? 'None' : 'Lax',
         };
-        // Solo establecer dominio cuando estemos en producción y usemos HTTPS
-        if (isProduction && isHttps) {
-            cookieOptions.domain = '.itgtxela.com';
+        // Asignar dominio cuando aplique (público HTTPS o red local .local en producción).
+        if (cookieDomain) {
+            cookieOptions.domain = cookieDomain;
         }
         if (isProduction && !isHttps) {
             console.warn('[AuthorizeService] Entorno en producción pero sin HTTPS. Ajustando opciones de cookie para evitar rechazo por Secure/SameSite.');
@@ -2118,7 +2142,13 @@ class AuthorizeService {
                     this._cookieService.delete(cookieName, '/');
                     // En producción, también intentar eliminar con dominio específico
                     if (this.environment.production) {
-                        this._cookieService.delete(cookieName, '/', '.itgtxela.com');
+                        const isHttps = typeof window !== 'undefined' &&
+                            window.location?.protocol === 'https:';
+                        const dynamicDomain = this.resolveCookieDomain(this.environment.production, isHttps);
+                        const domainsToDelete = Array.from(new Set(['.itgtxela.com', dynamicDomain].filter(Boolean)));
+                        domainsToDelete.forEach((domain) => {
+                            this._cookieService.delete(cookieName, '/', domain);
+                        });
                     }
                     console.debug(`[AuthorizeService] Cookie eliminada: ${cookieName}`);
                 }