ultimate-jekyll-manager 0.0.166 → 0.0.168

package/TODO-tracking.md

@@ -0,0 +1,69 @@
+TODO
+* Does signup work with BEM 5.0?? keeps ssying cannot resolve user after i sign up and try to go into accout :(
+
+
+  FIX ATTRIBUTION
+  https://claude.ai/share/bae8e516-e74c-4e77-9a85-e58277908b43
+
+i want to also add my own "itm" tags which are set by internal things. can we process those too?
+
+// attribution.js - load this on every page
+(function() {
+  const params = new URLSearchParams(window.location.search);
+
+  // Check if this pageview has any attribution params
+  const hasAttribution = params.get('fbclid') || params.get('gclid') ||
+                         params.get('ttclid') || params.get('utm_source');
+
+  if (hasAttribution) {
+    const attribution = {
+      fbclid: params.get('fbclid'),
+      fbc: getCookie('_fbc'),
+      gclid: params.get('gclid'),
+      ttclid: params.get('ttclid'),
+      utm_source: params.get('utm_source'),
+      utm_medium: params.get('utm_medium'),
+      utm_campaign: params.get('utm_campaign'),
+      utm_content: params.get('utm_content'),
+      utm_term: params.get('utm_term'),
+      landingPage: window.location.pathname,
+      capturedAt: new Date().toISOString(),
+    };
+
+    // Only save if we don't already have attribution (first-touch)
+    if (!localStorage.getItem('attribution')) {
+      localStorage.setItem('attribution', JSON.stringify(attribution));
+    }
+  }
+})();
+
+
+TODO
+fix tiktok pixel events (look at this)
+
+Test deletion account flow
+
+
+PROBLEM
+navigatin to https://192.168.86.69:4000/reset?authSignout=true
+
+WHILE SIGNED IT signs you out (GOOD) but then it KICKS you back to INDEX (BAD) istead of STAYING O THE PAGE
+
+FIX FORM MANAGER
+
+FIX TIKTKO PIXELS TRACKING ID NOT CORRECT
+
+   output: {
+     filename: '[name].[contenthash].js',
+     sourceMapFilename: '[name].[contenthash].js.map',
+   },
+   devtool: Manager.isProd() ? 'hidden-source-map' : 'eval-source-map',
+
+
+signout on homepage
+* sign up / singin button does NOT reappear (there is just no button)
+
+
+try not to expose Manager??
+
+

package/TODO.md

@@ -6,10 +6,6 @@ NEW TODO
 - FIx formmanager .getData() it keeps returning an empty object, make it work flawlessyly
 - It keeps testing whether there is a "." every time it reads or writes. just call the getNested and setNested functions and then check for the DOT inside those functions
 - form manager should NOT submit if the button that was clicked is disabled (class or attribute)
-- script that adds some helpful classes to the body or attributes to html maybe like
-  * data-device="mobile|tablet|desktop"
-  * data-browser="chrome|safari|firefox|edge|opera|other"
-  * data-os="windows|macos|linux|android|ios|other"
 
 Make an admin dashboard backend
 

package/dist/assets/js/pages/oauth2/index.js

@@ -1,5 +1,5 @@
 // Libraries
-import fetch from 'wonderful-fetch';
+import authorizedFetch from '__main_assets__/js/libs/authorized-fetch.js';
 let webManager = null;
 
 // Module
@@ -67,10 +67,6 @@ async function handleOAuthCallback() {
       throw new Error('Missing provider in state');
     }
 
-    if (!stateParsed.authenticationToken) {
-      throw new Error('Missing authentication token');
-    }
-
     if (!stateParsed.serverUrl) {
       throw new Error('Missing server URL');
     }
@@ -80,7 +76,7 @@ async function handleOAuthCallback() {
     $provider.textContent = providerName;
 
     // Validate redirect URL
-    if (stateParsed.redirectUrl && !isValidRedirectUrl(stateParsed.redirectUrl)) {
+    if (stateParsed.redirectUrl && !webManager.isValidRedirectUrl(stateParsed.redirectUrl)) {
       throw new Error('Invalid redirect URL');
     }
 
@@ -101,13 +97,12 @@ async function handleOAuthCallback() {
     console.log('Tokenize payload:', payload);
 
     // Call server to complete OAuth flow
-    const response = await fetch(stateParsed.serverUrl, {
+    const response = await authorizedFetch(stateParsed.serverUrl, {
       method: 'POST',
       timeout: 60000,
       response: 'json',
       tries: 2,
       body: {
-        authenticationToken: stateParsed.authenticationToken,
         command: 'user:oauth2',
         payload: payload
       }
@@ -177,34 +172,6 @@ function showError(message) {
   }
 }
 
-// Validate redirect URL
-function isValidRedirectUrl(url) {
-  try {
-    const parsed = new URL(url);
-    const current = new URL(window.location.href);
-
-    // Allow same origin or configured trusted domains
-    return parsed.origin === current.origin ||
-           isAllowedDomain(parsed.hostname);
-  } catch (e) {
-    return false;
-  }
-}
-
-// Check if domain is allowed
-function isAllowedDomain(hostname) {
-  // Add any trusted domains here
-  const allowedDomains = [
-    'localhost',
-    '127.0.0.1',
-    webManager?.config?.brand?.domain
-  ].filter(Boolean);
-
-  return allowedDomains.some(domain =>
-    hostname === domain || hostname.endsWith('.' + domain)
-  );
-}
-
 // Capitalize first letter
 function capitalizeFirstLetter(string) {
   if (!string) return '';

package/dist/assets/js/pages/token/index.js

@@ -0,0 +1,108 @@
+// This file is required by /token page to generate custom auth tokens for extensions/apps
+import authorizedFetch from '__main_assets__/js/libs/authorized-fetch.js';
+
+// Module
+export default function (Manager) {
+  // Shortcuts
+  const { webManager } = Manager;
+
+  // DOM elements
+  const $status = document.getElementById('token-status');
+  const $error = document.getElementById('token-error');
+  const $errorMessage = document.getElementById('token-error-message');
+
+  // Get URL params
+  const url = new URL(window.location.href);
+  const authReturnUrl = url.searchParams.get('authReturnUrl');
+
+  // Handle DOM ready
+  webManager.dom().ready()
+  .then(async () => {
+    // Log
+    console.log('[Token] Initialized. authReturnUrl:', authReturnUrl);
+
+    // Validate authReturnUrl if present
+    if (authReturnUrl && !webManager.isValidRedirectUrl(authReturnUrl)) {
+      showError('Invalid redirect URL');
+      return;
+    }
+
+    // Wait for auth to be ready and get user
+    webManager.auth().listen({ once: true }, async (state) => {
+      const user = state.user;
+
+      // Should not happen since page requires auth, but just in case
+      if (!user) {
+        showError('Not authenticated. Please sign in first.');
+        return;
+      }
+
+      try {
+        // Generate custom token
+        updateStatus('Generating secure token...');
+        const token = await generateCustomToken(webManager);
+
+        // Update status
+        updateStatus('Token generated successfully!');
+
+        // Handle redirect or URL update
+        if (authReturnUrl) {
+          // Redirect to return URL with token (for electron/deep links)
+          updateStatus('Redirecting...');
+          const returnUrl = new URL(authReturnUrl);
+          returnUrl.searchParams.set('authToken', token);
+          window.location.href = returnUrl.toString();
+        } else {
+          // Add token to current URL (for browser extensions)
+          // Extension background will detect this and close the tab
+          url.searchParams.set('authToken', token);
+          window.history.replaceState({}, '', url.toString());
+          updateStatus('You can close this tab now.');
+        }
+      } catch (error) {
+        console.error('[Token] Error generating token:', error);
+        showError(error.message || 'Failed to generate token. Please try again.');
+      }
+    });
+  });
+
+  // Generate custom token via backend-manager API
+  async function generateCustomToken(webManager) {
+    const serverApiURL = `${webManager.getApiUrl()}/backend-manager`;
+
+    const response = await authorizedFetch(serverApiURL, {
+      method: 'POST',
+      body: {
+        command: 'user:create-custom-token',
+        payload: {},
+      },
+    });
+
+    // Extract token from response
+    const token = response?.data?.token;
+
+    if (!token) {
+      throw new Error('No token received from server');
+    }
+
+    return token;
+  }
+
+  // Update status message
+  function updateStatus(message) {
+    if ($status) {
+      $status.innerHTML = `<p class="text-muted small">${message}</p>`;
+    }
+  }
+
+  // Show error message
+  function showError(message) {
+    if ($error && $errorMessage) {
+      $errorMessage.textContent = message;
+      $error.classList.remove('d-none');
+    }
+    if ($status) {
+      $status.classList.add('d-none');
+    }
+  }
+}

package/dist/commands/setup.js

@@ -340,7 +340,7 @@ function install(package, ver, location) {
 // Create CNAME
 async function createCname() {
   // Get the CNAME
-  const url = config.url || 'https://template.itwcreativeworks.com';
+  const url = config.url || 'https://ultimate-jekyll.itwcreativeworks.com';
   const host = new URL(url).host
 
   // Write to file

package/dist/defaults/dist/_includes/core/foot.html

@@ -91,6 +91,7 @@
 <!-- Configuration -->
 <script type="text/javascript">
   var Configuration = {
+    runtime: "web",
     environment: "{{ jekyll.environment }}",
     buildTime: {{ site.uj.cache_breaker }},
     brand: {{ page.resolved.brand | jsonify }},

package/dist/defaults/dist/_layouts/blueprint/auth/token.html

@@ -0,0 +1,20 @@
+---
+### ALL PAGES ###
+layout: themes/[ site.theme.id ]/frontend/pages/auth/token
+
+### REGULAR PAGES ###
+meta:
+  title: "Authenticating - {{ site.brand.name }}"
+  description: "Generating authentication token for {{ site.brand.name }}."
+  breadcrumb: "Token"
+
+### WEB MANAGER CONFIG ###
+web_manager:
+  auth:
+    config:
+      policy: "authenticated"
+      redirects:
+        unauthenticated: "/signup"
+---
+
+{{ content | uj_content_format }}

package/dist/defaults/dist/_layouts/themes/classy/frontend/pages/auth/token.html

@@ -0,0 +1,42 @@
+---
+### ALL PAGES ###
+layout: themes/[ site.theme.id ]/frontend/core/cover
+---
+
+<section class="col-12 col-md-8 col-lg-6 col-xl-5 mw-sm">
+  <div class="card border-0 shadow-lg">
+    <div class="card-body p-3 p-md-5">
+      <!-- Logo -->
+      <div class="text-center mb-3">
+        <div class="avatar avatar-xl">
+          <img src="{{ site.brand.images.brandmark }}?cb={{ site.uj.cache_breaker }}" alt="{{ site.brand.name }} Logo"/>
+        </div>
+      </div>
+
+      <!-- Header -->
+      <div class="text-center mb-4">
+        <h1 class="h3 mb-2">Authenticating...</h1>
+        <p class="text-muted">Please wait while we complete your sign in</p>
+      </div>
+
+      <!-- Spinner -->
+      <div class="text-center mb-4">
+        <div class="spinner-border text-primary" role="status">
+          <span class="visually-hidden">Loading...</span>
+        </div>
+      </div>
+
+      <!-- Status message -->
+      <div id="token-status" class="text-center">
+        <p class="text-muted small">Generating secure token...</p>
+      </div>
+
+      <!-- Error message (hidden by default) -->
+      <div id="token-error" class="alert alert-danger d-none" role="alert">
+        <strong>Error:</strong> <span id="token-error-message"></span>
+      </div>
+    </div>
+  </div>
+</section>
+
+{{ content | uj_content_format }}

package/dist/defaults/dist/pages/auth/token.md

@@ -0,0 +1,7 @@
+---
+### ALL PAGES ###
+layout: blueprint/auth/token
+permalink: /token
+
+### REGULAR PAGES ###
+---

package/firebase-debug.log

@@ -3434,3 +3434,31 @@
 [debug] [2025-12-15T04:18:53.455Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
 [debug] [2025-12-15T04:18:53.455Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
 [debug] [2025-12-15T04:18:53.455Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.900Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.902Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.902Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.903Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.903Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.915Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.915Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.904Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.904Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.905Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:13.920Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:13.920Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.027Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.027Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.028Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.029Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.036Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.036Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.036Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.037Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.037Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.036Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.037Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.037Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.039Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.040Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)
+[debug] [2025-12-16T05:17:14.040Z] > command requires scopes: ["email","openid","https://www.googleapis.com/auth/cloudplatformprojects.readonly","https://www.googleapis.com/auth/firebase","https://www.googleapis.com/auth/cloud-platform"]
+[debug] [2025-12-16T05:17:14.040Z] > authorizing via signed-in user (ian.wiedenman@gmail.com)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ultimate-jekyll-manager",
-  "version": "0.0.166",
+  "version": "0.0.168",
   "description": "Ultimate Jekyll dependency manager",
   "main": "dist/index.js",
   "exports": {
@@ -53,7 +53,7 @@
   "bugs": {
     "url": "https://github.com/itw-creative-works/ultimate-jekyll/issues"
   },
-  "homepage": "https://template.itwcreativeworks.com",
+  "homepage": "https://ultimate-jekyll.itwcreativeworks.com",
   "noteDeps": {
     "browser-sync": "2.23.7 (6-22-2023): Hard lock because every version after uses socket.io@4.7.0 which uses engine.io@6.5.0 which is incompatible with node 10.15.1 due to TextDecoder() in build process",
     "sharp": "0.23.1 (sometime before 2021ish): Hard lock because later versions had issues. Possibly solved in higher node versions",
@@ -84,7 +84,7 @@
     "gulp-responsive-modern": "^1.0.0",
     "gulp-sass": "^6.0.1",
     "html-minifier-terser": "^7.2.0",
-    "html-validate": "^10.4.0",
+    "html-validate": "^10.5.0",
     "itwcw-package-analytics": "^1.0.6",
     "js-yaml": "^3.14.2",
     "json5": "^2.2.3",
@@ -95,10 +95,10 @@
     "npm-api": "^1.0.1",
     "postcss": "^8.5.6",
     "prettier": "^3.7.4",
-    "sass": "^1.96.0",
+    "sass": "^1.97.0",
     "spellchecker": "^3.7.1",
     "through2": "^4.0.2",
-    "web-manager": "^4.0.34",
+    "web-manager": "^4.0.38",
     "webpack": "^5.103.0",
     "wonderful-fetch": "^1.3.4",
     "wonderful-version": "^1.3.2",