npm - tandem-editor - Versions diffs - 0.6.3 → 0.7.1 - Mend

tandem-editor 0.6.3 → 0.7.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

package/CHANGELOG.md +389 -32
package/dist/channel/index.js +41 -7
package/dist/channel/index.js.map +1 -1
package/dist/cli/index.js +382 -40
package/dist/cli/index.js.map +1 -1
package/dist/client/assets/index-DLTxaDBk.js +351 -0
package/dist/client/index.html +1 -1
package/dist/monitor/index.js +23 -2
package/dist/monitor/index.js.map +1 -1
package/dist/server/index.js +835 -395
package/dist/server/index.js.map +1 -1
package/package.json +1 -1
package/dist/client/assets/index-B1Cd5UGT.js +0 -349

package/dist/client/index.html CHANGED Viewed

@@ -117,7 +117,7 @@
         }
       }
     </style>
-    <script type="module" crossorigin src="/assets/index-B1Cd5UGT.js"></script>
+    <script type="module" crossorigin src="/assets/index-DLTxaDBk.js"></script>
   </head>
   <body>
     <div id="root"></div>

package/dist/monitor/index.js CHANGED Viewed

@@ -84,6 +84,27 @@ var TANDEM_MODE_DEFAULT = "tandem";
 var CHANNEL_MAX_RETRIES = 5;
 var CHANNEL_RETRY_DELAY_MS = 2e3;
+// src/shared/cli-runtime.ts
+var VALID_TOKEN_RE = /^[A-Za-z0-9_\-]{32,}$/;
+var _warnedInvalidToken = false;
+async function authFetch(url, init) {
+  const token = process.env.TANDEM_AUTH_TOKEN;
+  if (token !== void 0 && token.trim() !== "") {
+    if (VALID_TOKEN_RE.test(token.trim())) {
+      const headers = new Headers(init?.headers);
+      headers.set("Authorization", `Bearer ${token.trim()}`);
+      return fetch(url, { ...init, headers });
+    }
+    if (!_warnedInvalidToken) {
+      _warnedInvalidToken = true;
+      console.error(
+        "[tandem] authFetch: TANDEM_AUTH_TOKEN is set but invalid (must be 32+ alphanumeric chars [A-Za-z0-9_-]); sending without Authorization header"
+      );
+    }
+  }
+  return fetch(url, init);
+}
 // node_modules/zod/v3/external.js
 var external_exports = {};
 __export(external_exports, {
@@ -4168,7 +4189,7 @@ var STABLE_CONNECTION_MS = 6e4;
 var CHANNEL_RETRY_MAX_DELAY_MS = 3e4;
 async function fetchWithTimeout(url, init, timeoutMs) {
   const signal = AbortSignal.timeout(timeoutMs);
-  return fetch(url, { ...init, signal });
+  return authFetch(url, { ...init, signal });
 }
 function describeFetchError(err, endpoint, timeoutMs) {
   if (err instanceof Error && (err.name === "TimeoutError" || err.name === "AbortError")) {
@@ -4253,7 +4274,7 @@ async function connectAndStream(lastEventId, onEventId, onStable = () => {
   );
   let res;
   try {
-    res = await fetch(`${TANDEM_URL}/api/events`, { headers, signal: connectCtrl.signal });
+    res = await authFetch(`${TANDEM_URL}/api/events`, { headers, signal: connectCtrl.signal });
   } finally {
     clearTimeout(connectTimer);
   }