weixin_authorize_905 1.6.5

data/lib/weixin_authorize/carrierwave/weixin_uploader.rb

@@ -0,0 +1,4 @@
+module WeixinAuthorize
+  class WeixinUploader < CarrierWave::Uploader::Base
+  end
+end

data/lib/weixin_authorize/client.rb

@@ -0,0 +1,95 @@
+# encoding: utf-8
+require "monitor"
+require "redis"
+require 'digest/md5'
+module WeixinAuthorize
+
+  class Client
+
+    include MonitorMixin
+
+    include Api::User
+    include Api::Menu
+    include Api::Custom
+    include Api::Groups
+    include Api::Qrcode
+    include Api::Media
+    include Api::Mass
+    include Api::Oauth
+    include Api::Template
+
+    attr_accessor :app_id, :app_secret, :expired_at # Time.now + expires_in
+    attr_accessor :access_token, :redis_key, :custom_access_token
+    attr_accessor :jsticket, :jsticket_expired_at, :jsticket_redis_key
+
+    # options: redis_key, custom_access_token
+    def initialize(app_id, app_secret, options={})
+      @app_id = app_id
+      @app_secret = app_secret
+      @jsticket_expired_at = @expired_at = Time.now.to_i
+      @redis_key = security_redis_key(options[:redis_key] || "weixin_#{app_id}")
+      @jsticket_redis_key = security_redis_key("js_sdk_#{app_id}")
+      @custom_access_token = options[:custom_access_token]
+      super() # Monitor#initialize
+    end
+
+    # return token
+    def get_access_token
+      return custom_access_token if !custom_access_token.nil?
+      synchronize{ token_store.access_token }
+    end
+
+    # 检查appid和app_secret是否有效。
+    def is_valid?
+      return true if !custom_access_token.nil?
+      token_store.valid?
+    end
+
+    def token_store
+      Token::Store.init_with(self)
+    end
+
+    def jsticket_store
+      JsTicket::Store.init_with(self)
+    end
+
+    def get_jsticket
+      jsticket_store.jsticket
+    end
+
+    # 获取js sdk 签名包
+    def get_jssign_package(url)
+      timestamp = Time.now.to_i
+      noncestr = SecureRandom.hex(16)
+      str = "jsapi_ticket=#{get_jsticket}&noncestr=#{noncestr}&timestamp=#{timestamp}&url=#{url}";
+      signature = Digest::SHA1.hexdigest(str)
+      {
+        "appId"     => app_id,    "nonceStr"  => noncestr,
+        "timestamp" => timestamp, "url"       => url,
+        "signature" => signature, "rawString" => str
+      }
+    end
+
+    # 暴露出：http_get,http_post两个方法，方便第三方开发者扩展未开发的微信API。
+    def http_get(url, url_params={}, endpoint="plain")
+      url_params = url_params.merge(access_token_param)
+      WeixinAuthorize.http_get_without_token(url, url_params, endpoint)
+    end
+
+    def http_post(url, post_body={}, url_params={}, endpoint="plain")
+      url_params = access_token_param.merge(url_params)
+      WeixinAuthorize.http_post_without_token(url, post_body, url_params, endpoint)
+    end
+
+    private
+
+      def access_token_param
+        {access_token: get_access_token}
+      end
+
+      def security_redis_key(key)
+        Digest::MD5.hexdigest(key.to_s).upcase
+      end
+
+  end
+end

data/lib/weixin_authorize/config.rb

@@ -0,0 +1,35 @@
+module WeixinAuthorize
+
+  class << self
+
+    attr_accessor :config
+
+    def configure
+      yield self.config ||= Config.new
+    end
+
+    def weixin_redis
+      return nil if config.nil?
+      @redis ||= config.redis
+    end
+
+    def key_expired
+      config.key_expired || 100
+    end
+
+    # 可选配置: RestClient timeout, etc.
+    # key 必须是符号
+    # 如果出现 RestClient::SSLCertificateNotVerified Exception: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed
+    # 这个错，除了改 verify_ssl: true，请参考：http://www.extendi.it/blog/2015/5/23/47-sslv3-read-server-certificate-b-certificate-verify-failed
+    def rest_client_options
+      if config.nil?
+        return {timeout: 5, open_timeout: 5, verify_ssl: true}
+      end
+      config.rest_client_options
+    end
+  end
+
+  class Config
+    attr_accessor :redis, :rest_client_options, :key_expired
+  end
+end

data/lib/weixin_authorize/handler.rb

@@ -0,0 +1,3 @@
+require "weixin_authorize/handler/global_code"
+require "weixin_authorize/handler/result_handler"
+require "weixin_authorize/handler/exceptions"

data/lib/weixin_authorize/handler/exceptions.rb

@@ -0,0 +1,5 @@
+# encoding: utf-8
+module WeixinAuthorize
+  class ValidAccessTokenException < RuntimeError;end
+  class MediaTypeException < RuntimeError;end
+end

data/lib/weixin_authorize/handler/global_code.rb

@@ -0,0 +1,127 @@
+# encoding: utf-8
+module WeixinAuthorize
+
+  GLOBAL_CODES = {
+    -1    => "系统繁忙",
+    0     => "请求成功",
+    40001 => "获取access_token时AppSecret错误，或者access_token无效",
+    40002 => "不合法的凭证类型",
+    40003 => "不合法的OpenID",
+    40004 => "不合法的媒体文件类型",
+    40005 => "不合法的文件类型",
+    40006 => "不合法的文件大小",
+    40007 => "不合法的媒体文件id",
+    40008 => "不合法的消息类型",
+    40009 => "不合法的图片文件大小",
+    40010 => "不合法的语音文件大小",
+    40011 => "不合法的视频文件大小",
+    40012 => "不合法的缩略图文件大小",
+    40013 => "不合法的APPID",
+    40014 => "不合法的access_token",
+    40015 => "不合法的菜单类型",
+    40016 => "不合法的按钮个数",
+    40017 => "不合法的按钮个数",
+    40018 => "不合法的按钮名字长度",
+    40019 => "不合法的按钮KEY长度",
+    40020 => "不合法的按钮URL长度",
+    40021 => "不合法的菜单版本号",
+    40022 => "不合法的子菜单级数",
+    40023 => "不合法的子菜单按钮个数",
+    40024 => "不合法的子菜单按钮类型",
+    40025 => "不合法的子菜单按钮名字长度",
+    40026 => "不合法的子菜单按钮KEY长度",
+    40027 => "不合法的子菜单按钮URL长度",
+    40028 => "不合法的自定义菜单使用用户",
+    40029 => "不合法的oauth_code",
+    40030 => "不合法的refresh_token",
+    40031 => "不合法的openid列表",
+    40032 => "不合法的openid列表长度",
+    40033 => "不合法的请求字符，不能包含xxxx格式的字符",
+    40035 => "不合法的参数",
+    40038 => "不合法的请求格式",
+    40039 => "不合法的URL长度",
+    40050 => "不合法的分组id",
+    40051 => "分组名字不合法",
+    41001 => "缺少access_token参数",
+    41002 => "缺少appid参数",
+    41003 => "缺少refresh_token参数",
+    41004 => "缺少secret参数",
+    41005 => "缺少多媒体文件数据",
+    41006 => "缺少media_id参数",
+    41007 => "缺少子菜单数据",
+    41008 => "缺少oauth code",
+    41009 => "缺少openid",
+    42001 => "access_token超时",
+    42002 => "refresh_token超时",
+    42003 => "oauth_code超时",
+    43001 => "需要GET请求",
+    43002 => "需要POST请求",
+    43003 => "需要HTTPS请求",
+    43004 => "需要接收者关注",
+    43005 => "需要好友关系",
+    44001 => "多媒体文件为空",
+    44002 => "POST的数据包为空",
+    44003 => "图文消息内容为空",
+    44004 => "文本消息内容为空",
+    45001 => "多媒体文件大小超过限制",
+    45002 => "消息内容超过限制",
+    45003 => "标题字段超过限制",
+    45004 => "描述字段超过限制",
+    45005 => "链接字段超过限制",
+    45006 => "图片链接字段超过限制",
+    45007 => "语音播放时间超过限制",
+    45008 => "图文消息超过限制",
+    45009 => "接口调用超过限制",
+    45010 => "创建菜单个数超过限制",
+    45015 => "回复时间超过限制",
+    45016 => "系统分组，不允许修改",
+    45017 => "分组名字过长",
+    45018 => "分组数量超过上限",
+    46001 => "不存在媒体数据",
+    46002 => "不存在的菜单版本",
+    46003 => "不存在的菜单数据",
+    46004 => "不存在的用户",
+    47001 => "解析JSON/XML内容错误",
+    48001 => "api功能未授权",
+    50001 => "用户未授权该api",
+    50002 => "用户受限，可能是违规后接口被封禁",
+    61451 => "参数错误(invalid parameter)",
+    61452 => "无效客服账号(invalid kf_account)",
+    61453 => "客服帐号已存在(kf_account exsited)",
+    61454 => "客服帐号名长度超过限制(仅允许10个英文字符，不包括@及@后的公众号的微信号)(invalid kf_acount length)",
+    61455 => "客服帐号名包含非法字符(仅允许英文+数字)(illegal character in kf_account)",
+    61456 => "客服帐号个数超过限制(10个客服账号)(kf_account count exceeded)",
+    61457 => "无效头像文件类型(invalid file type)",
+    61450 => "系统错误(system error)",
+    61500 => "日期格式错误",
+    61501 => "日期范围错误",
+    9001001 => "POST数据参数不合法",
+    9001002 => "远端服务不可用",
+    9001003 => "Ticket不合法",
+    9001004 => "获取摇周边用户信息失败",
+    9001005 => "获取商户信息失败",
+    9001006 => "获取OpenID失败",
+    9001007 => "上传文件缺失",
+    9001008 => "上传素材的文件类型不合法",
+    9001009 => "上传素材的文件尺寸不合法",
+    9001010 => "上传失败",
+    9001020 => "帐号不合法",
+    9001021 => "已有设备激活率低于50%，不能新增设备",
+    9001022 => "设备申请数不合法，必须为大于0的数字",
+    9001023 => "已存在审核中的设备ID申请",
+    9001024 => "一次查询设备ID数量不能超过50",
+    9001025 => "设备ID不合法",
+    9001026 => "页面ID不合法",
+    9001027 => "页面参数不合法",
+    9001028 => "一次删除页面ID数量不能超过10",
+    9001029 => "页面已应用在设备中，请先解除应用关系再删除",
+    9001030 => "一次查询页面ID数量不能超过50",
+    9001031 => "时间区间不合法",
+    9001032 => "保存设备与页面的绑定关系参数错误",
+    9001033 => "门店ID不合法",
+    9001034 => "设备备注信息过长",
+    9001035 => "设备申请参数不合法",
+    9001036 => "查询起始值begin不合法"
+  }unless defined?(GLOBAL_CODES)
+
+end

data/lib/weixin_authorize/handler/result_handler.rb

@@ -0,0 +1,52 @@
+# encoding: utf-8
+module WeixinAuthorize
+
+  class ResultHandler
+
+    attr_accessor :code, :cn_msg, :en_msg, :result
+
+    def initialize(code, en_msg, result={})
+      @code   = code   || OK_CODE
+      @en_msg = en_msg || OK_MSG
+      @cn_msg = GLOBAL_CODES[@code.to_i]
+      @result = package_result(result)
+    end
+
+    # This method is to valid the current request if is true or is false
+    def is_ok?
+      code == OK_CODE
+    end
+    alias_method :ok?, :is_ok?
+
+    # e.g.:
+    # 45009: api freq out of limit(接口调用超过限制)
+    def full_message
+      "#{code}: #{en_msg}(#{cn_msg})."
+    end
+    alias_method :full_messages, :full_message
+
+    def full_error_message
+      full_message if !is_ok?
+    end
+    alias_method :full_error_messages, :full_error_message
+    alias_method :errors, :full_error_message
+
+    private
+
+      # if define Rails constant
+      # result = WeixinAuthorize::ResultHandler.new("0", "success", {:ok => "true"})
+      # result.result["ok"] #=> true
+      # result.result[:ok] #=> true
+      # result.result['ok'] #=> true
+      def package_result(result)
+        return result if !result.is_a?(Hash)
+        if defined?(Rails)
+          ActiveSupport::HashWithIndifferentAccess.new(result)
+        else
+          result
+        end
+      end
+
+  end
+
+end

data/lib/weixin_authorize/js_ticket/object_store.rb

@@ -0,0 +1,21 @@
+module WeixinAuthorize
+  module JsTicket
+    class ObjectStore < Store
+
+      def jsticket_expired?
+        # 如果当前token过期时间小于现在的时间，则重新获取一次
+        client.jsticket_expired_at <= Time.now.to_i
+      end
+
+      def jsticket
+        super
+        client.jsticket
+      end
+
+      def refresh_jsticket
+        super
+      end
+
+    end
+  end
+end

data/lib/weixin_authorize/js_ticket/redis_store.rb

@@ -0,0 +1,41 @@
+module WeixinAuthorize
+  module JsTicket
+    class RedisStore < Store
+      JSTICKET = "jsticket"
+      EXPIRED_AT = "expired_at"
+
+      def jsticket_expired?
+        weixin_redis.hvals(client.jsticket_redis_key).empty?
+      end
+
+      def refresh_jsticket
+        super
+        weixin_redis.hmset(
+          client.jsticket_redis_key,
+          JSTICKET,
+          client.jsticket,
+          EXPIRED_AT,
+          client.jsticket_expired_at
+        )
+        weixin_redis.expireat(
+          client.jsticket_redis_key,
+          client.jsticket_expired_at.to_i
+        )
+      end
+
+      def jsticket
+        super
+        client.jsticket = weixin_redis.hget(client.jsticket_redis_key, JSTICKET)
+        client.jsticket_expired_at = weixin_redis.hget(
+          client.jsticket_redis_key,
+          EXPIRED_AT
+        )
+        client.jsticket
+      end
+
+      def weixin_redis
+        WeixinAuthorize.weixin_redis
+      end
+    end
+  end
+end

data/lib/weixin_authorize/js_ticket/store.rb

@@ -0,0 +1,40 @@
+# encoding: utf-8
+module WeixinAuthorize
+  module JsTicket
+    class Store
+
+      attr_accessor :client
+
+      def initialize(client)
+        @client = client
+      end
+
+      def self.init_with(client)
+        if WeixinAuthorize.weixin_redis.nil?
+          ObjectStore.new(client)
+        else
+          RedisStore.new(client)
+        end
+      end
+
+      def jsticket_expired?
+        raise NotImplementedError, "Subclasses must implement a jsticket_expired? method"
+      end
+
+      def refresh_jsticket
+        set_jsticket
+      end
+
+      def jsticket
+        refresh_jsticket if jsticket_expired?
+      end
+
+      def set_jsticket
+        result = client.http_get("/ticket/getticket", {type: 1}).result
+        client.jsticket = result["ticket"]
+        client.jsticket_expired_at = WeixinAuthorize.calculate_expire(result["expires_in"])
+      end
+
+    end
+  end
+end

data/lib/weixin_authorize/token/object_store.rb

@@ -0,0 +1,25 @@
+# encoding: utf-8
+module WeixinAuthorize
+  module Token
+    class ObjectStore < Store
+
+      def valid?
+        super
+      end
+
+      def token_expired?
+        # 如果当前token过期时间小于现在的时间，则重新获取一次
+        client.expired_at <= Time.now.to_i
+      end
+
+      def refresh_token
+        super
+      end
+
+      def access_token
+        super
+        client.access_token
+      end
+    end
+  end
+end