Skip to content

example(cloudflare-worker-auth): use the real @alchemy.run/pr-package library#633

Closed
Mkassabov wants to merge 1 commit into
mainfrom
example/pr-package-real-lib
Closed

example(cloudflare-worker-auth): use the real @alchemy.run/pr-package library#633
Mkassabov wants to merge 1 commit into
mainfrom
example/pr-package-real-lib

Conversation

@Mkassabov

@Mkassabov Mkassabov commented Jun 17, 2026

Copy link
Copy Markdown
Contributor

Convert the cloudflare-worker-auth example from a hand-rolled worker to the real @alchemy.run/pr-package library, so the integration test exercises the actual library code path (the worker bearer-token check + the AuthTokenValue stack output) rather than a copy of it.

 // src/Api.ts
-export default class Api extends Cloudflare.Worker<Api>()("Api", { ... },
-  Effect.gen(function* () {
-    const authToken = yield* Cloudflare.Secret.bind(AuthToken);
-    return { fetch: /* hand-rolled bearer check */ };
-  }).pipe(Effect.provide(Cloudflare.SecretBindingLive)),
-) {}
+export default class Api extends Cloudflare.Worker<Api>()(
+  "Api",
+  { main: import.meta.filename, url: true },
+  PrPackage.handler(),
+) {}

The integ test drives the real bearer-protected routes:

// PUT /projects/:pkg/packages — auth runs before any body/binding work
valid token        -> 200 { resourceId }
invalid / missing  -> 401
"<redacted>"       -> 401   // the literal both old bugs produced

Distilled pin

Bumps the distilled submodule to include the Cloudflare error-class tree-shaking fix (distilled#352). Without it the worker bundle keeps a dangling import "@distilled.cloud/cloudflare/flagship" (pulled in transitively by the alchemy/Cloudflare barrel) and Cloudflare rejects the upload with ScriptModuleNotFound.

The pin points at the merged commit on distilled main, which is one commit ahead of the v0.25.2 tag — it is not yet a published release. Re-pin to the tagged release once distilled cuts v0.25.3, before the next alchemy npm publish.

@alchemy-version-bot

alchemy-version-bot Bot commented Jun 17, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Install the packages built from this commit:

alchemy

bun add alchemy@https://pkg.ing/alchemy/2652a32

@alchemy.run/better-auth

bun add @alchemy.run/better-auth@https://pkg.ing/@alchemy.run/better-auth/2652a32

@alchemy.run/pr-package

bun add @alchemy.run/pr-package@https://pkg.ing/@alchemy.run/pr-package/2652a32

@Mkassabov
example(cloudflare-worker-auth): use the real @alchemy.run/pr-package…
2652a32 
… library

Replace the self-contained worker with `PrPackage.handler()` and source the
bearer token from `PrPackage.AuthTokenValue`, so the example exercises the
actual library code path the Redacted bearer-token fix lives in. The integ
test drives the real bearer-protected routes (PUT /projects/:pkg/packages,
DELETE .../tags/:tag): valid token -> 200, invalid / missing / "<redacted>"
-> 401.

Bumps the distilled submodule pin to include the Cloudflare error-class
tree-shaking fix (distilled#352) — without it the Worker bundle keeps a
dangling `import "@distilled.cloud/cloudflare/flagship"` and Cloudflare
rejects the upload with ScriptModuleNotFound.
@Mkassabov Mkassabov force-pushed the example/pr-package-real-lib branch from e94778d to 2652a32 Compare June 17, 2026 15:11
@Mkassabov

Mkassabov commented Jun 17, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #638 — renamed the example from cloudflare-worker-auth to cloudflare-pr-package (it demonstrates @alchemy.run/pr-package specifically) and added upload/download + garbage-collection tests.

@Mkassabov Mkassabov closed this Jun 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Mkassabov