Sync from monorepo

Template version: 1.1.0-dev

Uses bundled workspace packages (not yet on NPM)

Synced by: joel-uong_sfemu

Monorepo SHA: f50c8d657a5a28b9a5dd8a0f59ceecb431993ec7

Latest change: f50c8d657 - Fix: Tolerate OTP length mismatch at verify modal (@W-22454318@) (#1903)

Author: joel-uong_sfemu

docs/README-CONFIG-OPTIONS.md

@@ -597,6 +597,8 @@ The length of the OTP (One-Time Password) code used for authentication. This val
 
 **Important:** This is a global setting that affects all authentication flows. SLAS enforces a single OTP length for all auth features, so this value should remain consistent across your application.
 
+`otpLength` sets the OTP modal's initial slot count, but it does not control the length SLAS actually delivers — keep it matched to your SLAS client. The modal tolerates a mismatch so a configuration drift never strands the shopper: pasting a code longer than `otpLength` expands the inputs to fit (up to the 8-digit maximum SLAS issues), and the modal accepts any 6-to-8-digit code. Match this value to your SLAS client anyway so the default slot count and the "we sent an N-digit code" copy are correct.
+
 Example:
 ```bash
 PUBLIC__app__auth__otpLength=6

docs/README-EMAIL-VERIFICATION.md

@@ -111,7 +111,7 @@ When email verification is **enabled**, the post-order registration card is not
 | --- | --- | --- |
 | OTP not delivered (email mode) | Sender email not configured in SLAS; password action email template not set | Verify SLAS email configuration |
 | OTP not delivered (callback mode) | `callbackUri` not allowlisted or endpoint unreachable | Ensure `callbackUri` exactly matches an allowlisted URL in the SLAS client (full URL, no wildcards); confirm the endpoint is publicly accessible |
-| OTP has wrong number of digits | `auth.otpLength` in `config.server.ts` doesn't match the SLAS client OTP length | Set `auth.otpLength` to `6` or `8` to match your SLAS private client configuration |
+| OTP modal shows the wrong number of input slots for the delivered code | `auth.otpLength` in `config.server.ts` doesn't match the SLAS client OTP length. SLAS owns the delivered length; `otpLength` only sets the modal's initial slot count. | Set `auth.otpLength` to `6` or `8` to match your SLAS private client so the slot count and copy are correct. The modal tolerates a mismatch regardless: pasting a code longer than `otpLength` expands the inputs to fit (up to 8) and auto-submits, and any 6-to-8-digit code can also be submitted via the **Verify** button — so a drift no longer hard-blocks login. (A code longer than `otpLength` that is *typed by hand* rather than pasted won't expand the inputs; paste it, or correct the config.) |
 | Passwordless registration form not shown | "Enable Email Verification" site preference is off | Enable the preference in Business Manager; allow up to 5 minutes to propagate |
 | Verification badge or "Change Email" button missing | "Enable Email Verification" is off or hasn't propagated | Enable the preference; allow up to 5 minutes to propagate |
 | Shopper can't log in after email update | "Enable Loginid Updates for SCAPI" is not enabled — SCAPI accepts the email change but doesn't sync the login ID | Contact Salesforce support to enable "Enable Loginid Updates for SCAPI" |

packages/storefront-next-runtime/dist/config.d.ts

@@ -2,7 +2,7 @@ import { n as Site, r as Url, t as Locale } from "./types.js";
 import { n as DefineConfigOptions, r as defineConfig, t as BaseConfig } from "./schema.js";
 import { ReactNode } from "react";
 import * as react_jsx_runtime2 from "react/jsx-runtime";
-import * as react_router5 from "react-router";
+import * as react_router15 from "react-router";
 import { RouterContextProvider } from "react-router";
 
 //#region src/config/context.d.ts
@@ -22,7 +22,7 @@ interface AppConfigShape {
  * app-config middleware; read via `context.get(appConfigContext)` in loaders,
  * actions, and other middleware. Returns the augmented `AppConfigShape`.
  */
-declare const appConfigContext: react_router5.RouterContext<AppConfigShape>;
+declare const appConfigContext: react_router15.RouterContext<AppConfigShape>;
 interface ConfigProviderProps {
   config: AppConfigShape;
   children: ReactNode;

packages/storefront-next-runtime/dist/config.d.ts.map

@@ -1,4 +1,4 @@
-import * as react_router6 from "react-router";
+import * as react_router8 from "react-router";
 import { MiddlewareFunction, RouterContextProvider, createContext } from "react-router";
 import { DataStore, DataStoreNotFoundError, DataStoreServiceError, DataStoreUnavailableError } from "@salesforce/mrt-utilities/data-store";
 
@@ -157,7 +157,7 @@ interface DataStoreLogger {
  * Defaults to `null` (not `undefined`) because React Router's
  * `context.get()` throws when `defaultValue === undefined`.
  */
-declare const dataStoreLoggerContext: react_router6.RouterContext<DataStoreLogger | null>;
+declare const dataStoreLoggerContext: react_router8.RouterContext<DataStoreLogger | null>;
 /**
  * Read the data-store logger from router context, falling back to a
  * console-based default when nothing has been injected.
@@ -234,7 +234,7 @@ type LoginPreferences = {
 declare function getLoginPreferences(context: Readonly<RouterContextProvider>): LoginPreferences;
 //#endregion
 //#region src/data-store/index.d.ts
-declare const dataStoreMiddleware: react_router6.MiddlewareFunction<Response>[];
+declare const dataStoreMiddleware: react_router8.MiddlewareFunction<Response>[];
 //#endregion
 export { type CustomGlobalPreferences, DataStore, type DataStoreContextKey, type DataStoreEntry, type DataStoreEntryKey, type DataStoreLogger, type DataStoreMiddlewareOptions, DataStoreNotFoundError, DataStoreServiceError, DataStoreUnavailableError, type GcpPreferences, type LoginPreferences, type SitePreferences, createDataStoreContext, createDataStoreMiddleware, createLazyDataStoreMiddleware, dataStoreLoggerContext, dataStoreMiddleware, getCustomGlobalPreferences, getDataStoreEntry, getDataStoreLogger, getGcpApiKey, getGcpPreferences, getLoginPreferences, getSitePreferences, readLazyDataStoreEntry };
 //# sourceMappingURL=data-store.d.ts.map

packages/storefront-next-runtime/dist/data-store.d.ts

@@ -1,4 +1,4 @@
-import * as react_router15 from "react-router";
+import * as react_router14 from "react-router";
 import { MiddlewareFunction, RouterContextProvider } from "react-router";
 
 //#region src/security/types.d.ts
@@ -135,7 +135,7 @@ declare const defaultSecurityHeaders: ResolvedSecurityConfig;
 //#endregion
 //#region src/security/nonce.d.ts
 /** React Router context carrying the current request's CSP nonce. */
-declare const securityContext: react_router15.RouterContext<{
+declare const securityContext: react_router14.RouterContext<{
   nonce: string;
 } | null>;
 /**

packages/storefront-next-runtime/dist/data-store.d.ts.map

@@ -1,7 +1,7 @@
 import { n as Site$1, r as Url, t as Locale$1 } from "./types.js";
 import { PropsWithChildren } from "react";
 import * as react_jsx_runtime0 from "react/jsx-runtime";
-import * as react_router1 from "react-router";
+import * as react_router10 from "react-router";
 import { Cookie, CookieOptions, MiddlewareFunction, RouterContextProvider } from "react-router";
 import { RouteConfigEntry } from "@react-router/dev/routes";
 
@@ -198,7 +198,7 @@ declare function buildUrl({
 }): string;
 //#endregion
 //#region src/site-context/middleware.d.ts
-declare const siteContext: react_router1.RouterContext<SiteContext | null>;
+declare const siteContext: react_router10.RouterContext<SiteContext | null>;
 /**
  * Resolved site context result from {@link resolveSiteContext}.
  */
@@ -246,9 +246,9 @@ declare function resolveSiteContext(request: Request, settings: SiteSettings): P
  * ```
  */
 declare function getSiteContextCookies(context: Readonly<RouterContextProvider>): {
-  siteCookie: react_router1.Cookie;
-  localeCookie: react_router1.Cookie;
-  currencyCookie: react_router1.Cookie;
+  siteCookie: react_router10.Cookie;
+  localeCookie: react_router10.Cookie;
+  currencyCookie: react_router10.Cookie;
 } | null;
 /**
  * Creates a site context middleware that resolves the current site from