uityu.shared 1.0.1 → 1.0.3

package/README.md

@@ -140,6 +140,29 @@ export async function handler(req): Promise<Response> {
 }
 ```
 
+### Middleware CORS configurable
+
+```ts
+import { createCorsToolkit } from 'uityu.shared/http';
+
+const cors = createCorsToolkit({
+  allowedOrigins: ['https://app.uityu.com', 'https://admin.uityu.com'],
+  allowedMethods: ['GET', 'POST'],
+  allowedHeaders: ['Content-Type', 'Authorization'],
+  exposeHeaders: ['X-Trace-Id'],
+  allowCredentials: true,
+});
+
+export const handler = (req, res, next) => {
+  cors.corsHandler(req, res, (err) => {
+    if (err) return next(err);
+    if (!cors.ensureMethod(req, res, 'POST')) return;
+    // ...logic
+    next();
+  });
+};
+```
+
 ## Búsqueda (`uityu.shared/search`)
 
 ```ts

package/dist/http/cors.d.ts

@@ -0,0 +1,27 @@
+export type CorsRequestLike = {
+    headers?: Record<string, unknown>;
+    method?: string;
+    get?(header: string): string | undefined;
+};
+export type CorsResponseLike = {
+    setHeader(name: string, value: string): void;
+    status?(code: number): CorsResponseLike | void;
+    send?(body?: unknown): unknown;
+};
+export type CorsNextLike = (error?: unknown) => unknown;
+export interface CorsConfig {
+    allowedOrigins: string[];
+    allowedMethods?: string[];
+    allowedHeaders?: string[];
+    exposeHeaders?: string[];
+    allowCredentials?: boolean;
+    preflightStatusCode?: number;
+    enableDebugHeader?: boolean;
+}
+export interface CorsToolkit {
+    applyCorsHeaders(req: CorsRequestLike, res: CorsResponseLike): void;
+    corsHandler(req: CorsRequestLike, res: CorsResponseLike, next: CorsNextLike): unknown;
+    ensureMethod(req: CorsRequestLike, res: CorsResponseLike, expectedMethod: string): boolean;
+}
+export declare function createCorsToolkit(config: CorsConfig): CorsToolkit;
+//# sourceMappingURL=cors.d.ts.map

package/dist/http/cors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cors.d.ts","sourceRoot":"","sources":["../../src/http/cors.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,eAAe,GAAG;IAC5B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC;CAC1C,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7C,MAAM,CAAC,CAAC,IAAI,EAAE,MAAM,GAAG,gBAAgB,GAAG,IAAI,CAAC;IAC/C,IAAI,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC;CAChC,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,CAAC,KAAK,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC;AAExD,MAAM,WAAW,UAAU;IACzB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,OAAO,CAAC;CAC7B;AAED,MAAM,WAAW,WAAW;IAC1B,gBAAgB,CAAC,GAAG,EAAE,eAAe,EAAE,GAAG,EAAE,gBAAgB,GAAG,IAAI,CAAC;IACpE,WAAW,CAAC,GAAG,EAAE,eAAe,EAAE,GAAG,EAAE,gBAAgB,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC;IACtF,YAAY,CAAC,GAAG,EAAE,eAAe,EAAE,GAAG,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC;CAC5F;AAOD,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,UAAU,GAAG,WAAW,CA2DjE"}

package/dist/http/cors.js

@@ -0,0 +1,103 @@
+const DEFAULT_ALLOWED_METHODS = ["GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"];
+const DEFAULT_ALLOWED_HEADERS = ["Content-Type", "Authorization", "X-Requested-With"];
+const DEFAULT_EXPOSE_HEADERS = ["X-Trace-Id", "WWW-Authenticate"];
+const DEFAULT_PREFLIGHT_STATUS = 204;
+export function createCorsToolkit(config) {
+    const normalizedConfig = normalizeConfig(config);
+    const allowedOriginSet = new Set(normalizedConfig.allowedOrigins);
+    const applyCorsHeaders = (req, res) => {
+        const origin = readHeader(req, "origin");
+        const allowedOrigin = resolveAllowedOrigin(origin, allowedOriginSet);
+        if (allowedOrigin) {
+            res.setHeader("Access-Control-Allow-Origin", allowedOrigin);
+        }
+        else if (normalizedConfig.enableDebugHeader) {
+            res.setHeader("X-CORS-Not-Allowed-Origin", origin ?? "<none>");
+        }
+        res.setHeader("Vary", "Origin");
+        res.setHeader("Access-Control-Allow-Headers", normalizedConfig.allowedHeaders.join(", "));
+        res.setHeader("Access-Control-Allow-Methods", normalizedConfig.allowedMethods.join(", "));
+        res.setHeader("Access-Control-Expose-Headers", normalizedConfig.exposeHeaders.join(", "));
+        res.setHeader("Access-Control-Allow-Credentials", normalizedConfig.allowCredentials ? "true" : "false");
+    };
+    const corsHandler = (req, res, next) => {
+        applyCorsHeaders(req, res);
+        if (isPreflight(req)) {
+            respond(res, normalizedConfig.preflightStatusCode, "");
+            return undefined;
+        }
+        return next();
+    };
+    const ensureMethod = (req, res, expectedMethod) => {
+        if (isPreflight(req)) {
+            return true;
+        }
+        const method = (req.method ?? "").toUpperCase();
+        if (method !== expectedMethod.toUpperCase()) {
+            respond(res, 405, "Method Not Allowed");
+            return false;
+        }
+        return true;
+    };
+    return {
+        applyCorsHeaders,
+        corsHandler,
+        ensureMethod,
+    };
+}
+const normalizeConfig = (config) => {
+    const allowedOrigins = config.allowedOrigins.map((value) => value?.trim()).filter(Boolean);
+    if (!allowedOrigins.length) {
+        throw new Error("CORS configuration requires at least one allowed origin");
+    }
+    if (config.allowCredentials && allowedOrigins.includes("*")) {
+        throw new Error("Cannot use wildcard origin when allowCredentials is true");
+    }
+    return {
+        allowedOrigins,
+        allowedMethods: normalizeList(config.allowedMethods, DEFAULT_ALLOWED_METHODS),
+        allowedHeaders: normalizeList(config.allowedHeaders, DEFAULT_ALLOWED_HEADERS),
+        exposeHeaders: normalizeList(config.exposeHeaders, DEFAULT_EXPOSE_HEADERS),
+        allowCredentials: Boolean(config.allowCredentials),
+        preflightStatusCode: config.preflightStatusCode ?? DEFAULT_PREFLIGHT_STATUS,
+        enableDebugHeader: Boolean(config.enableDebugHeader),
+    };
+};
+const normalizeList = (value, fallback) => {
+    const source = value && value.length ? value : fallback;
+    return Array.from(new Set(source.map((entry) => entry.trim()).filter(Boolean)));
+};
+const resolveAllowedOrigin = (origin, whitelist) => {
+    if (!origin) {
+        return null;
+    }
+    if (whitelist.has("*")) {
+        return origin;
+    }
+    return whitelist.has(origin) ? origin : null;
+};
+const readHeader = (req, name) => {
+    if (typeof req.get === "function") {
+        const value = req.get(name);
+        if (typeof value === "string") {
+            return value;
+        }
+    }
+    const headers = req.headers ?? {};
+    const value = headers[name] ?? headers[name.toLowerCase()];
+    return typeof value === "string" ? value : undefined;
+};
+const isPreflight = (req) => (req.method ?? "").toUpperCase() === "OPTIONS";
+const respond = (res, status, body) => {
+    if (typeof res.status === "function") {
+        const next = res.status(status);
+        if (next && typeof next.send === "function") {
+            next.send(body);
+            return;
+        }
+    }
+    if (typeof res.send === "function") {
+        res.send(body);
+    }
+};
+//# sourceMappingURL=cors.js.map

package/dist/http/cors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cors.js","sourceRoot":"","sources":["../../src/http/cors.ts"],"names":[],"mappings":"AA8BA,MAAM,uBAAuB,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,SAAS,CAAU,CAAC;AAC9F,MAAM,uBAAuB,GAAG,CAAC,cAAc,EAAE,eAAe,EAAE,kBAAkB,CAAU,CAAC;AAC/F,MAAM,sBAAsB,GAAG,CAAC,YAAY,EAAE,kBAAkB,CAAU,CAAC;AAC3E,MAAM,wBAAwB,GAAG,GAAG,CAAC;AAErC,MAAM,UAAU,iBAAiB,CAAC,MAAkB;IAClD,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;IAElE,MAAM,gBAAgB,GAAG,CAAC,GAAoB,EAAE,GAAqB,EAAQ,EAAE;QAC7E,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QACzC,MAAM,aAAa,GAAG,oBAAoB,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;QAErE,IAAI,aAAa,EAAE,CAAC;YAClB,GAAG,CAAC,SAAS,CAAC,6BAA6B,EAAE,aAAa,CAAC,CAAC;QAC9D,CAAC;aAAM,IAAI,gBAAgB,CAAC,iBAAiB,EAAE,CAAC;YAC9C,GAAG,CAAC,SAAS,CAAC,2BAA2B,EAAE,MAAM,IAAI,QAAQ,CAAC,CAAC;QACjE,CAAC;QAED,GAAG,CAAC,SAAS,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QAChC,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,gBAAgB,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1F,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,gBAAgB,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1F,GAAG,CAAC,SAAS,CAAC,+BAA+B,EAAE,gBAAgB,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1F,GAAG,CAAC,SAAS,CAAC,kCAAkC,EAAE,gBAAgB,CAAC,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC1G,CAAC,CAAC;IAEF,MAAM,WAAW,GAAG,CAClB,GAAoB,EACpB,GAAqB,EACrB,IAAkB,EACT,EAAE;QACX,gBAAgB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QAE3B,IAAI,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;YACrB,OAAO,CAAC,GAAG,EAAE,gBAAgB,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAC;YACvD,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,OAAO,IAAI,EAAE,CAAC;IAChB,CAAC,CAAC;IAEF,MAAM,YAAY,GAAG,CACnB,GAAoB,EACpB,GAAqB,EACrB,cAAsB,EACb,EAAE;QACX,IAAI,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,MAAM,GAAG,CAAC,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;QAChD,IAAI,MAAM,KAAK,cAAc,CAAC,WAAW,EAAE,EAAE,CAAC;YAC5C,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,oBAAoB,CAAC,CAAC;YACxC,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC,CAAC;IAEF,OAAO;QACL,gBAAgB;QAChB,WAAW;QACX,YAAY;KACb,CAAC;AACJ,CAAC;AAED,MAAM,eAAe,GAAG,CAAC,MAAkB,EAAE,EAAE;IAC7C,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAa,CAAC;IACvG,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;IAC7E,CAAC;IAED,IAAI,MAAM,CAAC,gBAAgB,IAAI,cAAc,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC5D,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;IAC9E,CAAC;IAED,OAAO;QACL,cAAc;QACd,cAAc,EAAE,aAAa,CAAC,MAAM,CAAC,cAAc,EAAE,uBAAuB,CAAC;QAC7E,cAAc,EAAE,aAAa,CAAC,MAAM,CAAC,cAAc,EAAE,uBAAuB,CAAC;QAC7E,aAAa,EAAE,aAAa,CAAC,MAAM,CAAC,aAAa,EAAE,sBAAsB,CAAC;QAC1E,gBAAgB,EAAE,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC;QAClD,mBAAmB,EAAE,MAAM,CAAC,mBAAmB,IAAI,wBAAwB;QAC3E,iBAAiB,EAAE,OAAO,CAAC,MAAM,CAAC,iBAAiB,CAAC;KACrD,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,KAA2B,EAAE,QAA2B,EAAY,EAAE;IAC3F,MAAM,MAAM,GAAG,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC;IACxD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;AAClF,CAAC,CAAC;AAEF,MAAM,oBAAoB,GAAG,CAAC,MAA0B,EAAE,SAAsB,EAAiB,EAAE;IACjG,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC;AAC/C,CAAC,CAAC;AAEF,MAAM,UAAU,GAAG,CAAC,GAAoB,EAAE,IAAY,EAAsB,EAAE;IAC5E,IAAI,OAAO,GAAG,CAAC,GAAG,KAAK,UAAU,EAAE,CAAC;QAClC,MAAM,KAAK,GAAG,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC;IAClC,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;IAC3D,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AACvD,CAAC,CAAC;AAEF,MAAM,WAAW,GAAG,CAAC,GAAoB,EAAW,EAAE,CAAC,CAAC,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,KAAK,SAAS,CAAC;AAEtG,MAAM,OAAO,GAAG,CAAC,GAAqB,EAAE,MAAc,EAAE,IAAY,EAAQ,EAAE;IAC5E,IAAI,OAAO,GAAG,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;QACrC,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,IAAI,IAAI,OAAO,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;YAC5C,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChB,OAAO;QACT,CAAC;IACH,CAAC;IAED,IAAI,OAAO,GAAG,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;QACnC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACjB,CAAC;AACH,CAAC,CAAC"}

package/dist/http/index.d.ts

@@ -1,2 +1,3 @@
 export * from "./error-mapper.js";
+export * from "./cors.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/http/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/http/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/http/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC;AAClC,cAAc,WAAW,CAAC"}

package/dist/http/index.js

@@ -1,2 +1,3 @@
 export * from "./error-mapper.js";
+export * from "./cors.js";
 //# sourceMappingURL=index.js.map

package/dist/http/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/http/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/http/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC;AAClC,cAAc,WAAW,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "uityu.shared",
-  "version": "1.0.1",
+  "version": "1.0.3",
   "description": "Shared infrastructure toolkit for UITYU microservices (Cloud Functions, SSR, APIs).",
   "type": "module",
   "main": "dist/index.js",
@@ -8,38 +8,47 @@
   "exports": {
     ".": {
       "import": "./dist/index.js",
+      "default": "./dist/index.js",
       "types": "./dist/index.d.ts"
     },
     "./common": {
       "import": "./dist/common/index.js",
+      "default": "./dist/common/index.js",
       "types": "./dist/common/index.d.ts"
     },
     "./common/math": {
       "import": "./dist/common/math/index.js",
+      "default": "./dist/common/math/index.js",
       "types": "./dist/common/math/index.d.ts"
     },
     "./common/logging": {
       "import": "./dist/common/logging/index.js",
+      "default": "./dist/common/logging/index.js",
       "types": "./dist/common/logging/index.d.ts"
     },
     "./common/string": {
       "import": "./dist/common/string/index.js",
+      "default": "./dist/common/string/index.js",
       "types": "./dist/common/string/index.d.ts"
     },
     "./errors": {
       "import": "./dist/errors/index.js",
+      "default": "./dist/errors/index.js",
       "types": "./dist/errors/index.d.ts"
     },
     "./firebase/admin": {
       "import": "./dist/firebase/admin/index.js",
+      "default": "./dist/firebase/admin/index.js",
       "types": "./dist/firebase/admin/index.d.ts"
     },
     "./http": {
       "import": "./dist/http/index.js",
+      "default": "./dist/http/index.js",
       "types": "./dist/http/index.d.ts"
     },
     "./search": {
       "import": "./dist/search/index.js",
+      "default": "./dist/search/index.js",
       "types": "./dist/search/index.d.ts"
     }
   },