jpsclient 0.2.0

data/lib/jpsclient/auth/token.rb

@@ -0,0 +1,209 @@
+#!/usr/bin/env ruby
+
+require 'json'
+require 'fileutils'
+require 'net/http'
+require 'uri'
+require 'jpsclient/utils/aes'
+require 'jpsclient/base/exception'
+require 'jpsclient/utils/logger'
+
+module JPSClient
+
+  # Token 管理类
+  class Token
+    attr_reader :token, :username, :expires_at
+
+    def initialize(config)
+      @config = config
+      @aes_key = config.aes_key if config
+
+      # 只使用新的 token 文件
+      @token_dir = File.expand_path('~/.pindo')
+      @token_file = File.join(@token_dir, '.jpstoken')
+
+      # token 数据
+      @token = nil
+      @username = nil
+      @expires_at = nil
+      @created_at = nil
+
+      # 调试模式
+      @verbose = ENV['PINDO_DEBUG'] == 'true'
+    end
+
+    # 加载 token
+    def load
+      return false unless File.exist?(@token_file)
+
+      begin
+        file_content = File.read(@token_file)
+
+        # 根据是否有 AES 密钥决定解密方式
+        token_data = if @aes_key
+          begin
+            aes = AES.new(@aes_key)
+            decrypted = aes.decrypt(file_content)
+            JSON.parse(decrypted)
+          rescue => e
+            # 解密失败，可能是明文，尝试直接解析
+            puts "尝试解密失败，作为明文读取: #{e.message}" if @verbose
+            JSON.parse(file_content)
+          end
+        else
+          JSON.parse(file_content)
+        end
+
+        @token = token_data['token']
+        @username = token_data['username']
+        @expires_at = token_data['expires_at']
+        @created_at = token_data['created_at']
+
+        return true if @token
+      rescue => e
+        puts "读取 token 失败: #{e.message}" if @verbose
+        clear_corrupted_file
+      end
+
+      false
+    end
+
+    # 保存 token
+    def save(token, username, expires_at)
+      return false unless token
+
+      @token = token
+      @username = username
+      @expires_at = expires_at
+      @created_at = Time.now.to_i
+
+      # 确保目录存在
+      FileUtils.mkdir_p(@token_dir) unless Dir.exist?(@token_dir)
+
+      token_data = {
+        'token' => @token,
+        'username' => @username,
+        'expires_at' => @expires_at,
+        'created_at' => @created_at
+      }
+
+      # 根据是否有 AES 密钥决定加密方式
+      content = if @aes_key
+        aes = AES.new(@aes_key)
+        aes.encrypt(token_data.to_json)
+      else
+        token_data.to_json
+      end
+
+      File.write(@token_file, content)
+      puts "✓ Token 已保存到 #{@token_file}" if @verbose
+
+      true
+    rescue => e
+      puts "保存 token 失败: #{e.message}"
+      false
+    end
+
+    # 验证 token 有效性
+    def valid?
+      return false unless @token
+
+      # 1. 检查本地时间过期
+      if expired?
+        puts "Token 已过期 (本地时间检查)" if @verbose
+        return false
+      end
+
+      # 2. 可选：API 验证
+      # 为了避免频繁调用，只在接近过期时验证
+      if should_verify_with_api?
+        return verify_with_api
+      end
+
+      true
+    end
+
+    # 检查是否过期
+    def expired?
+      return true unless @expires_at
+      Time.now.to_i > @expires_at
+    end
+
+    # API 验证 token
+    def verify_with_api
+      return false unless @token && @config
+
+      begin
+        # 使用配置中的验证端点
+        base_url = @config.api_endpoint.split('/api/')[0]  # 获取基础 URL
+        verify_endpoint = @config.respond_to?(:token_verify_endpoint) ? @config.token_verify_endpoint : '/api/user/profile'
+        uri = URI("#{base_url}#{verify_endpoint}")
+
+        request = Net::HTTP::Get.new(uri)
+        request['Authorization'] = "Bearer #{@token}"
+
+        response = Net::HTTP.start(uri.hostname, uri.port, use_ssl: uri.scheme == 'https') do |http|
+          http.request(request)
+        end
+
+        if response.code == '200'
+          puts "Token API 验证成功" if @verbose
+          return true
+        else
+          puts "Token API 验证失败: #{response.code}" if @verbose
+          return false
+        end
+      rescue => e
+        puts "Token API 验证出错: #{e.message}" if @verbose
+        # API 验证失败时，回退到本地验证
+        return !expired?
+      end
+    end
+
+    # 清除 token
+    def clear
+      @token = nil
+      @username = nil
+      @expires_at = nil
+      @created_at = nil
+
+      FileUtils.rm_f(@token_file) if File.exist?(@token_file)
+      puts "✓ Token 已清除" if @verbose
+    end
+
+    # 转换为 Hash（兼容旧代码）
+    def to_h
+      return nil unless @token
+
+      {
+        'token' => @token,
+        'username' => @username,
+        'expires_at' => @expires_at
+      }
+    end
+
+    # 从 Auth 实例更新 token
+    def update_from_auth(auth)
+      return false unless auth.access_token
+
+      save(auth.access_token, auth.username, auth.expires_at)
+    end
+
+    private
+
+    # 是否应该通过 API 验证
+    def should_verify_with_api?
+      return false unless @expires_at
+
+      # 策略：最后 24 小时内进行 API 验证
+      remaining_time = @expires_at - Time.now.to_i
+      remaining_time > 0 && remaining_time < 24 * 60 * 60
+    end
+
+    # 清除损坏的文件
+    def clear_corrupted_file
+      FileUtils.rm_f(@token_file) if File.exist?(@token_file)
+      puts "已清除损坏的 token 文件" if @verbose
+    end
+  end
+end

data/lib/jpsclient/base/api_config.rb

@@ -0,0 +1,225 @@
+require 'json'
+require 'jpsclient/base/exception'
+
+module JPSClient
+  # API 配置管理类
+  class ApiConfig
+    attr_reader :endpoints, :base_url
+
+    def initialize(config_json)
+      @base_url = config_json["pgyerapps_base_url"]
+
+      # 兼容旧配置格式
+      if config_json["api_path_config"]
+        @legacy_config = config_json["api_path_config"]
+        @endpoints = convert_legacy_config(@legacy_config)
+      elsif config_json["api_endpoints"]
+        @endpoints = config_json["api_endpoints"]
+      else
+        raise ExceptionError, "API配置格式错误：缺少api_path_config或api_endpoints"
+      end
+
+      @error_codes = config_json["error_codes"] || default_error_codes
+      @rate_limits = config_json["rate_limits"] || default_rate_limits
+    end
+
+    # 获取API端点信息
+    def get_endpoint(category, action)
+      if @legacy_config
+        # 兼容旧格式
+        path = @legacy_config["#{category}_#{action}"] || @legacy_config[action]
+        return nil unless path
+
+        {
+          "path" => path,
+          "method" => guess_method(action),
+          "requires_auth" => !action.include?("login"),
+          "description" => "#{category}.#{action}"
+        }
+      else
+        # 新格式
+        @endpoints.dig(category.to_s, action.to_s)
+      end
+    end
+
+    # 获取完整的API URL
+    def get_url(category, action)
+      endpoint = get_endpoint(category, action)
+      return nil unless endpoint
+
+      "#{@base_url}#{endpoint['path']}"
+    end
+
+    # 获取API方法
+    def get_method(category, action)
+      endpoint = get_endpoint(category, action)
+      endpoint ? endpoint['method'] : 'GET'
+    end
+
+    # 是否需要认证
+    def requires_auth?(category, action)
+      endpoint = get_endpoint(category, action)
+      endpoint ? endpoint.fetch('requires_auth', true) : true
+    end
+
+    # 获取参数定义
+    def get_parameters(category, action)
+      endpoint = get_endpoint(category, action)
+      endpoint ? endpoint.fetch('parameters', {}) : {}
+    end
+
+    # 验证参数
+    def validate_params(category, action, params)
+      param_definitions = get_parameters(category, action)
+      errors = []
+
+      # 检查必需参数
+      param_definitions.each do |name, definition|
+        if definition['required'] && !params.key?(name.to_sym) && !params.key?(name.to_s)
+          errors << "缺少必需参数: #{name}"
+        end
+
+        # 类型检查（如果提供了参数）
+        value = params[name.to_sym] || params[name.to_s]
+        if value && definition['type']
+          unless check_type(value, definition['type'])
+            errors << "参数 #{name} 类型错误，期望 #{definition['type']}"
+          end
+        end
+
+        # 枚举值检查
+        if value && definition['enum'] && !definition['enum'].include?(value)
+          errors << "参数 #{name} 值无效，必须是: #{definition['enum'].join(', ')}"
+        end
+      end
+
+      errors
+    end
+
+    # 获取错误描述
+    def get_error_message(code)
+      @error_codes[code.to_s] || "未知错误 (#{code})"
+    end
+
+    private
+
+    # 将旧配置格式转换为新格式
+    def convert_legacy_config(legacy)
+      converted = {}
+
+      legacy.each do |key, value|
+        # 处理新格式（包含 http_method 和 url）
+        if value.is_a?(Hash) && value['url']
+          endpoint = {
+            "path" => value['url'],
+            "method" => value['http_method'] || guess_method(key),
+            "alias" => value['alias'] || key,
+            "description" => value['description'],
+            "requires_auth" => !key.include?('login') && !key.include?('send_code')
+          }
+
+          # 根据 key 分类到不同的组
+          category, action = categorize_endpoint(key)
+          converted[category] ||= {}
+          converted[category][action] = endpoint
+        # 处理旧格式（只有路径字符串）
+        elsif value.is_a?(String)
+          endpoint = build_endpoint(value, guess_method(key), !key.include?('login'))
+          category, action = categorize_endpoint(key)
+          converted[category] ||= {}
+          converted[category][action] = endpoint
+        end
+      end
+
+      converted
+    end
+
+    def build_endpoint(path, method, requires_auth = true)
+      return nil unless path
+      {
+        "path" => path,
+        "method" => method,
+        "requires_auth" => requires_auth,
+        "parameters" => {}
+      }
+    end
+
+    # 根据 key 分类端点
+    def categorize_endpoint(key)
+      case key
+      when /app_list|app_info/
+        ["apps", key.gsub(/^(get_|update_)/, '')]
+      when /upload|signed_url/
+        ["upload", key.gsub(/^(post_|multi_)/, '')]
+      when /version|comment/
+        ["version", key.gsub(/^(get_|update_)/, '')]
+      when /cert|resign/
+        ["cert", key.gsub(/^(get_|post_)/, '')]
+      when /login|send_code|profile/
+        ["auth", key.gsub(/^do_/, '')]
+      when /message|notification/
+        ["notification", key.gsub(/^send_/, '')]
+      else
+        ["misc", key]
+      end
+    end
+
+    # 根据动作名称猜测HTTP方法
+    def guess_method(action)
+      case action
+      when /^(get|list|fetch|query|search)/i
+        "GET"
+      when /^(post|create|add|send|do|update|upload)/i
+        "POST"
+      when /^(put|update|modify)/i
+        "PUT"
+      when /^(delete|remove)/i
+        "DELETE"
+      else
+        "GET"
+      end
+    end
+
+    # 检查值类型
+    def check_type(value, expected_type)
+      case expected_type.downcase
+      when 'string'
+        value.is_a?(String)
+      when 'integer', 'int'
+        value.is_a?(Integer)
+      when 'number', 'float'
+        value.is_a?(Numeric)
+      when 'boolean', 'bool'
+        [true, false].include?(value)
+      when 'array'
+        value.is_a?(Array)
+      when 'object', 'hash'
+        value.is_a?(Hash)
+      else
+        true
+      end
+    end
+
+    # 默认错误码
+    def default_error_codes
+      {
+        "200" => "成功",
+        "400" => "请求参数错误",
+        "401" => "未授权或token过期",
+        "403" => "权限不足",
+        "404" => "资源不存在",
+        "500" => "服务器内部错误"
+      }
+    end
+
+    # 默认速率限制
+    def default_rate_limits
+      {
+        "default" => {
+          "requests_per_minute" => 60,
+          "requests_per_hour" => 1000
+        }
+      }
+    end
+  end
+end

data/lib/jpsclient/base/exception.rb

@@ -0,0 +1,5 @@
+module JPSClient
+  # JPS 模块的统一异常类
+  class ExceptionError < StandardError
+  end
+end

data/lib/jpsclient/http/http_client.rb

@@ -0,0 +1,148 @@
+require 'json'
+require 'faraday'
+require 'faraday/retry'
+
+module JPSClient
+  # JPS 专用 HTTP 客户端 - 优化版
+  class HttpClient
+    attr_accessor :base_url
+    attr_accessor :token
+
+    def initialize(base_url: nil, token: nil)
+      @base_url = base_url
+      @token = token
+      @connection = nil
+    end
+
+    # GET 请求
+    def get(path, params: nil)
+      request(:get, path, params: params)
+    end
+
+    # POST 请求
+    def post(path, body: nil, timeout: nil)
+      request(:post, path, body: body, timeout: timeout)
+    end
+
+    # 更新 token
+    def update_token(new_token)
+      @token = new_token
+    end
+
+    private
+
+    # 统一的请求处理
+    def request(method, path, params: nil, body: nil, timeout: nil)
+      url = @base_url + path
+
+      begin
+        response = connection.send(method) do |req|
+          req.url url
+          req.headers['Content-Type'] = 'application/json'
+          req.headers['token'] = @token if @token
+          req.params = params if params
+          req.body = body.to_json if body && method == :post
+          req.options.timeout = timeout if timeout
+        end
+
+        parse_response(response)
+      rescue Faraday::Error => e
+        # 处理网络错误
+        {
+          code: 0,
+          body: nil,
+          success: false,
+          error: e.message
+        }
+      end
+    end
+
+    # 获取或创建连接（复用连接）
+    def connection
+      @connection ||= Faraday.new do |config|
+        # 重试配置
+        config.request :retry, {
+          max: 3,
+          interval: 0.5,
+          backoff_factor: 2,
+          interval_randomness: 0.5,
+          exceptions: [Faraday::TimeoutError, Faraday::ConnectionFailed]
+        }
+
+        # 代理配置
+        if ENV['http_proxy'] || ENV['https_proxy']
+          config.proxy = {
+            uri: ENV['http_proxy'] || ENV['https_proxy'],
+            user: ENV['HTTP_PROXY_USER'],
+            password: ENV['HTTP_PROXY_PASSWORD']
+          }.compact
+        end
+
+        config.adapter Faraday.default_adapter
+      end
+    end
+
+    # 解析响应
+    def parse_response(response)
+      result = {
+        code: response.status,
+        body: parse_body(response.body),
+        success: response.success?
+      }
+
+      # 标记需要登录
+      result[:need_login] = true if response.status == 401
+
+      result
+    end
+
+    # 解析响应体
+    def parse_body(body)
+      return nil if body.nil? || body.empty?
+
+      JSON.parse(body)
+    rescue JSON::ParserError
+      body
+    end
+  end
+
+end
+
+module JPSClient
+  # JPS API 响应封装类 - 简化版
+  class Response
+    attr_reader :code
+    attr_reader :data
+    attr_reader :msg
+
+    def initialize(http_response)
+      @success = http_response[:success]
+      @need_login = http_response[:need_login]
+
+      if http_response[:body].is_a?(Hash)
+        @code = http_response[:body]['code'] || http_response[:code]
+        @data = http_response[:body]['data']
+        @msg = http_response[:body]['msg'] || http_response[:body]['message']
+      else
+        @code = http_response[:code]
+        @data = http_response[:body]
+      end
+    end
+
+    def success?
+      @success && @code.to_s == '200'
+    end
+
+    def need_login?
+      @need_login || @code.to_s == '401'
+    end
+
+    def to_h
+      {
+        'code' => @code,
+        'data' => @data,
+        'msg' => @msg
+      }
+    end
+  end
+end