Security News
Supply Chain Attack Detected in Solana's web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
@cloak-app/craft
Advanced tools
Craft CMS API client and static site generation conventions.
$craft
helper object for executing queries that are scoped to a Craft site.$craft
outside of Nuxt runtime code.pageTypenames
._redirects
file from Craft "Redirects" section.yarn add @cloak-app/craft
nuxt.config
with modules: ['@cloak-app/craft']
Set these properties within cloak: { craft: { ... } }
in the nuxt.config.js:
endpoint
- The Craft CMS API endpoint, for example: https://cms.domain.com/api. Defaults to process.env.CMS_ENDPOINT
.site
- The Craft CMS Site handle to restrict queries to. If populated, it gets automatically passed into all GraphQL queries as a variable called site
. Defaults to process.env.CMS_SITE
.pageTypenames
- An array of GraphQL typenames of Craft entry types whose URIs should be generated as pages. For example: ['towers_tower_Entry']
. Defaults to []
.generateRedirects
- If true, adds redirect to the static/_redirects
file using a redirects
Craft section.mocks
- An array of objects for use with mockAxiosGql
.injectClient
- Boolean for whether to inject the $craft
client globally. Defaults to true
. You would set this to false
when this module is a depedency of another module (like @cloak-app/algolia) that is creating $craft
a different way.The craft-client
Nuxt plugin injects $craft
globally. This is an Axios instance with it's baseUrl
set to cloak.craft.endpoint
. In addition, you can call:
$craft.execute({ query, variables })
- Executes a GraphQL request that automatically adds a site
GraphQL variable with the value from the cloak.craft.site
value.$craft.getEntries({ query, variables })
- Sugar for $craft.execute()
that returns the entries
property of the GraphQL response.$craft.getEntry({ query, variables })
- Sugar for $craft.execute()
that returns the entry
property of the GraphQL response.$craft.setSite(site)
- Updates the site
variable for all future requests at runtime.# A page component
export default
asyncData: ({ $craft, params }) ->
page = await $craft.getEntry
variables: uri: params.tower
query: '''
query getTower($uri:[String], $site:[String]) {
entry(uri:$uri, site:$site) {
title
}
}
'''
return { page }
You can use the makeModuleCraftClient()
factory method within a Nuxt module to build a $craft
instance. In a module, we can't use the instance that is injected by the craft-client
plugin because that is constructed later in the lifecycle.
// A Nuxt module
import { makeModuleCraftClient } from '@cloak-app/craft/factories'
export default function() {
const $craft = makeModuleCraftClient(this)
}
You can make an instance of the Craft Axios client when outside of Nuxt (like in a Netlify function) as follows:
// The entry point of a non-Nuxt app
import Vue from 'vue'
import { makeCraftClient } from '@cloak-app/craft/factories'
Vue.prototype.$craft = makeCraftClient({
endpoint: process.env.CMS_ENDPOINT,
site: process.env.CMS_SITE,
})
This package enables the generate.fallback
option.. This is done so that admins can use Craft previews on new pages that haven't been statically generated yet. When the fallback is rendered, data that would normally be pre-fetched into Vuex via nuxtServerInit
won't exist before the page is mounted. Thus, you need to be careful to add v-if
test conditions for dependent Vuex data, like the header and footer.
Run yarn dev
to open a Nuxt dev build of the demo directory.
FAQs
Craft CMS API client and static site generation conventions.
The npm package @cloak-app/craft receives a total of 9 weekly downloads. As such, @cloak-app/craft popularity was classified as not popular.
We found that @cloak-app/craft demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.