chore: cf

Author: inglettronald

.gitignore

@@ -53,6 +53,10 @@ Temporary Items
 .svelte-kit/
 package
 
+### Cloudflare / Wrangler ###
+# Local wrangler/miniflare runtime state (sqlite cache, etc.)
+.wrangler/
+
 ### VisualStudioCode ###
 .vscode/*
 !.vscode/settings.json

README.md

@@ -1,3 +1,11 @@
+> This is a fork of [SkyCryptWebsite/SkyCrypt-Frontend](https://github.com/SkyCryptWebsite/SkyCrypt-Frontend) with minimal changes to support embedding the profile viewer in Lunar Client. To keep this fork up to date with upstream:
+>
+> ```
+> git rebase upstream/dev
+> # Resolve any conflicts that occur
+> git push origin dev --force-with-lease
+> ```
+
 <p align="center">
   <picture>
     <source media="(prefers-color-scheme: light)" srcset="static/img/logo_black.avif">

package.json

@@ -53,6 +53,7 @@
     "@oslojs/crypto": "^1.0.1",
     "@oslojs/encoding": "^1.1.0",
     "@playwright/test": "^1.60.0",
+    "@sveltejs/adapter-cloudflare": "^7.2.8",
     "@sveltejs/adapter-node": "^5.5.4",
     "@sveltejs/kit": "^2.63.0",
     "@sveltejs/load-config": "^0.1.1",
@@ -120,6 +121,7 @@
     "@sentry/sveltekit": "^10.56.0",
     "culori": "^4.0.2",
     "simple-git-hooks": "^2.13.1",
+    "svelte-interactions": "^0.2.0",
     "takumi-js": "^1.7.0"
   },
   "engines": {
@@ -133,4 +135,4 @@
   "simple-git-hooks": {
     "commit-msg": "pnpm exec commitlint --edit $1"
   }
-}
+}

pnpm-lock.yaml

@@ -6,5 +6,7 @@ allowBuilds:
   esbuild: true
   sharp: true
   simple-git-hooks: true
+  svelte-preprocess: true
+  workerd: true
 overrides:
   kysely: 0.28.17

pnpm-workspace.yaml

@@ -420,3 +420,8 @@
 @utility minecraft-tooltip {
   @apply relative rounded-sm border-2 border-solid border-transparent bg-mctooltip-bg px-1 pt-1 pb-0.75 indent-[initial] font-minecraft text-[0.9375rem] leading-4.5 font-normal text-pretty [border-image:linear-gradient(to_bottom,oklch(48.503%_0.297_278.42/0.31),oklch(29.365%_0.17619_281.21/0.31))_1] text-shadow-[0.09375rem_0.09375rem_oklch(36.768%,0.00004,271.152)];
 }
+
+body {
+  -webkit-user-select: none;
+  user-select: none;
+}

src/app.css

@@ -17,9 +17,9 @@ interface PreferencesData {
 export class PreferencesContext {
   #data = new PersistedState<PreferencesData>("skycryptPreferences", {
     sectionOrder: sections,
-    performanceMode: false,
+    performanceMode: true,
     keybind: "/",
-    showGlint: true,
+    showGlint: false,
     rainbowEnchantments: false,
     mctooltip: false
   });

src/context/preferences.svelte.ts

@@ -1,24 +1,12 @@
-import { building } from "$app/environment";
-import { env as envPublic } from "$env/dynamic/public";
-import { auth } from "$lib/server/auth";
-import { UserRole } from "$lib/shared/roles";
-import { runMigrations } from "$src/lib/server/db/migrate";
 import { handleErrorWithSentry, sentryHandle } from "@sentry/sveltekit";
-import { redirect, type Handle, type ServerInit } from "@sveltejs/kit";
+import { type Handle } from "@sveltejs/kit";
 import { sequence } from "@sveltejs/kit/hooks";
-import { svelteKitHandler } from "better-auth/svelte-kit";
 
-const protectedRouteGroupName = "(protected)";
-const protectedAdminRouteGroupName = "(admin)";
-const signInPath = "/login";
-
-export const init: ServerInit = async () => {
-  if (building) {
-    console.info("Skipping migrations during build.");
-    return;
-  }
-  await runMigrations();
-};
+// This fork is a public stats/card embed (skycrypt-embed.lunarclient.com) deployed
+// on Cloudflare Workers. It has no user accounts, so the upstream better-auth +
+// Postgres pipeline is intentionally omitted: DB-backed session lookups need a
+// database the embed doesn't have, and migrate-on-startup can't run on Workers
+// (no filesystem / process.cwd). See src/lib/server/db/index.ts (lazy db).
 
 const headersHandler = (async ({ event, resolve }) => {
   const response = await resolve(event);
@@ -29,18 +17,8 @@ const headersHandler = (async ({ event, resolve }) => {
   response.headers.set("Permissions-Policy", "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), geolocation=()");
   response.headers.set("X-Content-Type-Options", "nosniff");
   response.headers.set("Strict-Transport-Security", "max-age=31536000; includeSubDomains; preload");
-
-  // Clickjacking protection. The newsroom draft preview must be embeddable in the Payload
-  // CMS admin's live-preview iframe, so allow only the CMS origin to frame that one route;
-  // everything else stays frame-locked.
-  const isNewsroomPreview = url.pathname.startsWith("/newsroom/") && url.searchParams.get("preview") === "1";
-  if (isNewsroomPreview) {
-    const cms = envPublic.PUBLIC_CMS_URL?.trim();
-    response.headers.append("Content-Security-Policy", `frame-ancestors 'self'${cms ? ` ${cms}` : ""}`);
-  } else {
-    response.headers.set("X-Frame-Options", "DENY");
-    response.headers.append("Content-Security-Policy", "frame-ancestors 'none'");
-  }
+  // No frame-locking: this fork is embedded as an iframe (skycrypt-embed.lunarclient.com),
+  // so X-Frame-Options / frame-ancestors restrictions are intentionally omitted.
 
   // Cross-Origin policies
   // COEP intentionally unsafe-none: tightening would require all cross-origin
@@ -66,40 +44,4 @@ const headersHandler = (async ({ event, resolve }) => {
 // If you have a custom error handler, pass it to `handleErrorWithSentry`
 export const handleError = handleErrorWithSentry();
 
-const betterAuthHandler: Handle = async ({ event, resolve }) => {
-  const session = await auth.api.getSession({ headers: event.request.headers });
-
-  if (session) {
-    event.locals.session = session.session;
-    event.locals.user = session.user;
-  }
-
-  return svelteKitHandler({ event, resolve, auth, building });
-};
-
-const protectedHandler = (async ({ event, resolve }) => {
-  const { locals, route } = event;
-  if (!locals.user) {
-    if (route.id?.includes(protectedRouteGroupName)) {
-      console.info("Redirecting to sign-in page as user is not authenticated.");
-      redirect(307, signInPath);
-    }
-  }
-  if (locals.user) {
-    const roles = (locals.user.role ? locals.user.role.split(",") : []) as UserRole[];
-    const isAdmin = roles.includes(UserRole.Admin);
-    if (route.id?.includes(protectedAdminRouteGroupName) && !isAdmin) {
-      console.info("Redirecting to dashboard as user lacks admin role.");
-      redirect(307, "/dashboard");
-    }
-  }
-  if (locals.user && locals.session) {
-    if (route.id?.startsWith(signInPath)) {
-      redirect(307, "/dashboard");
-    }
-  }
-  return resolve(event);
-}) satisfies Handle;
-
-// If you have custom handlers, make sure to place them after `sentryHandle()` in the `sequence` function.
-export const handle = sequence(sentryHandle(), betterAuthHandler, protectedHandler, headersHandler) satisfies Handle;
+export const handle = sequence(sentryHandle(), headersHandler) satisfies Handle;

src/hooks.server.ts

@@ -1,7 +1,7 @@
 <script lang="ts">
+  import { version } from "$app/environment";
   import { getHoverContext } from "$ctx";
   import { env } from "$env/dynamic/public";
-  import { PUBLIC_COMMIT_HASH } from "$env/static/public";
   import { flyAndScale } from "$lib/shared/utils";
   import ExternalLink from "@lucide/svelte/icons/external-link";
   import Info from "@lucide/svelte/icons/info";
@@ -12,12 +12,12 @@
 
   const { PUBLIC_DISCORD_INVITE, PUBLIC_PATREON } = env;
   const packageVersion = __NPM_PACKAGE_VERSION__;
-  const commitHash = PUBLIC_COMMIT_HASH;
+  const commitHash = version;
 </script>
 
 {#snippet info()}
   <p class="my-4">SkyCrypt is a free, open-source stats viewer for Hypixel SkyBlock.</p>
-  {#if __NPM_PACKAGE_VERSION__ || PUBLIC_COMMIT_HASH}
+  {#if __NPM_PACKAGE_VERSION__ || version}
     <p>
       Currently running version
       <span class="font-semibold">