qumra-engine 2.0.84 → 2.0.86

package/dist/middleware/prepareData.middleware.js

@@ -30,6 +30,7 @@ const prepareDataMiddleware = (req, res, next) => {
         params.set("themeWidget", String(res.locals.themeWidget));
     }
     themePath = params.toString() ? `?${params.toString()}` : "";
+    console.log("🚀 ~ prepareDataMiddleware ~ themePath:", themePath);
     let api = "";
     if (res.locals.preview && res.locals.themeWidget) {
         api = `${res.locals.renderApi}/render/preview-widget${themePath}`;

package/dist/middleware.js

@@ -41,16 +41,17 @@ const startEngine = async ({ renderApi, mode, getRender, setRender, port = 3000,
             next();
         });
         app.set("trust proxy", 1); // لو ورا Nginx/Proxy/Cloud
+        const isProduction = process.env.NODE_ENV === "production";
         app.use((0, express_session_1.default)({
-            secret: "your-secret-key",
+            secret: process.env.SESSION_SECRET || "your-secret-key",
             resave: false,
             saveUninitialized: false,
             cookie: {
-                sameSite: "none", // مطلوب للـ cross-site
-                secure: true, // لازم مع 'none'
+                sameSite: "none", // يدعم داخل وخارج iframe
+                secure: isProduction, // لازم يكون true في production مع HTTPS
                 httpOnly: true,
-                partitioned: true, // علشان تشتغل داخل iframe بعد حجب 3rd-party cookies
-                maxAge: 1000 * 60 * 5,
+                partitioned: true, // يخليها شغالة في iframe (Chrome 115+)
+                maxAge: 1000 * 60 * 5, // 5 دقائق
             },
         }));
         app.use((req, res, next) => {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "qumra-engine",
-  "version": "2.0.84",
+  "version": "2.0.86",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "scripts": {