@chainlesschain/personal-data-hub 0.3.1 → 0.3.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/__tests__/adapters/email-adapter-snapshot.test.js +237 -0
- package/__tests__/adapters/email-adapter.test.js +1 -1
- package/__tests__/adapters/email-pdf-extractor.test.js +1 -1
- package/__tests__/adapters/email-retry-progress.test.js +1 -1
- package/__tests__/adapters/email-templates.test.js +1 -1
- package/__tests__/adapters/social-bilibili-adb-api-client.test.js +721 -0
- package/__tests__/adapters/social-bilibili-adb-chromium-cookies-reader.test.js +346 -0
- package/__tests__/adapters/social-bilibili-adb-collector.test.js +284 -0
- package/__tests__/adapters/social-bilibili-adb-cookies-extension.test.js +343 -0
- package/__tests__/adapters/social-bilibili-adb-snapshot-builder.test.js +296 -0
- package/__tests__/adapters/social-douyin-adb-collector.test.js +254 -0
- package/__tests__/adapters/social-douyin-adb-im-db-parser.test.js +304 -0
- package/__tests__/adapters/social-douyin-adb-snapshot-builder.test.js +216 -0
- package/__tests__/adapters/social-kuaishou-adb-api-client.test.js +432 -0
- package/__tests__/adapters/social-kuaishou-adb-collector.test.js +276 -0
- package/__tests__/adapters/social-kuaishou-adb-cookies-extension.test.js +141 -0
- package/__tests__/adapters/social-kuaishou-adb-snapshot-builder.test.js +178 -0
- package/__tests__/adapters/social-toutiao-adb-api-client.test.js +537 -0
- package/__tests__/adapters/social-toutiao-adb-collector.test.js +285 -0
- package/__tests__/adapters/social-toutiao-adb-cookies-extension.test.js +163 -0
- package/__tests__/adapters/social-toutiao-adb-snapshot-builder.test.js +196 -0
- package/__tests__/adapters/social-weibo-adb-api-client.test.js +362 -0
- package/__tests__/adapters/social-weibo-adb-collector.test.js +201 -0
- package/__tests__/adapters/social-weibo-adb-snapshot-builder.test.js +189 -0
- package/__tests__/adapters/social-xiaohongshu-adb-collector.test.js +207 -0
- package/__tests__/adapters/social-xiaohongshu-adb-sign-provider-injection.test.js +351 -0
- package/__tests__/adapters/social-xiaohongshu-adb-sign.test.js +130 -0
- package/__tests__/adapters/system-data-android.test.js +32 -1
- package/__tests__/longtail-adapters.test.js +15 -2
- package/__tests__/shopping-adapters.test.js +96 -0
- package/__tests__/sign-providers.test.js +62 -0
- package/__tests__/travel-adapters.test.js +66 -0
- package/__tests__/whatsapp-adapter.test.js +5 -2
- package/lib/adapters/browser-history-chrome/chrome-db-reader.js +11 -1
- package/lib/adapters/email-imap/email-adapter.js +224 -17
- package/lib/adapters/messaging-telegram/index.js +15 -12
- package/lib/adapters/messaging-whatsapp/index.js +15 -12
- package/lib/adapters/shopping-taobao/index.js +161 -21
- package/lib/adapters/social-bilibili-adb/api-client.js +555 -0
- package/lib/adapters/social-bilibili-adb/chromium-cookies-reader.js +296 -0
- package/lib/adapters/social-bilibili-adb/collector.js +190 -0
- package/lib/adapters/social-bilibili-adb/cookies-extension.js +250 -0
- package/lib/adapters/social-bilibili-adb/index.js +51 -0
- package/lib/adapters/social-bilibili-adb/snapshot-builder.js +197 -0
- package/lib/adapters/social-douyin/index.js +4 -0
- package/lib/adapters/social-douyin-adb/collector.js +165 -0
- package/lib/adapters/social-douyin-adb/db-extension.js +281 -0
- package/lib/adapters/social-douyin-adb/im-db-parser.js +287 -0
- package/lib/adapters/social-douyin-adb/index.js +57 -0
- package/lib/adapters/social-douyin-adb/snapshot-builder.js +174 -0
- package/lib/adapters/social-kuaishou-adb/api-client.js +397 -0
- package/lib/adapters/social-kuaishou-adb/collector.js +196 -0
- package/lib/adapters/social-kuaishou-adb/cookies-extension.js +261 -0
- package/lib/adapters/social-kuaishou-adb/index.js +53 -0
- package/lib/adapters/social-kuaishou-adb/snapshot-builder.js +145 -0
- package/lib/adapters/social-toutiao-adb/api-client.js +377 -0
- package/lib/adapters/social-toutiao-adb/collector.js +200 -0
- package/lib/adapters/social-toutiao-adb/cookies-extension.js +266 -0
- package/lib/adapters/social-toutiao-adb/index.js +52 -0
- package/lib/adapters/social-toutiao-adb/snapshot-builder.js +148 -0
- package/lib/adapters/social-weibo-adb/api-client.js +281 -0
- package/lib/adapters/social-weibo-adb/collector.js +169 -0
- package/lib/adapters/social-weibo-adb/cookies-extension.js +251 -0
- package/lib/adapters/social-weibo-adb/index.js +55 -0
- package/lib/adapters/social-weibo-adb/snapshot-builder.js +145 -0
- package/lib/adapters/social-xiaohongshu-adb/api-client.js +309 -0
- package/lib/adapters/social-xiaohongshu-adb/collector.js +209 -0
- package/lib/adapters/social-xiaohongshu-adb/cookies-extension.js +211 -0
- package/lib/adapters/social-xiaohongshu-adb/index.js +50 -0
- package/lib/adapters/social-xiaohongshu-adb/sign.js +90 -0
- package/lib/adapters/social-xiaohongshu-adb/snapshot-builder.js +126 -0
- package/lib/adapters/system-data-android/adapter.js +77 -3
- package/lib/adapters/travel-amap/index.js +16 -10
- package/lib/adapters/travel-ctrip/index.js +25 -9
- package/lib/adapters/vscode/vscode-reader.js +7 -1
- package/lib/sign-providers/index.js +20 -0
- package/lib/sign-providers/interface.js +82 -0
- package/lib/sign-providers/null-sign-provider.js +30 -0
- package/package.json +10 -1
|
@@ -0,0 +1,351 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
|
|
3
|
+
/**
|
|
4
|
+
* Phase 6b — verify signProvider injection in XhsApiClient + collector.
|
|
5
|
+
*
|
|
6
|
+
* Tests both paths:
|
|
7
|
+
* - Bridge path (signedHeaders returns non-empty) → uses bridge headers
|
|
8
|
+
* - Fallback path (NullSignProvider OR bridge returns {}) → in-process md5
|
|
9
|
+
*
|
|
10
|
+
* Uses a fake fetch + fake signProvider to verify wiring without spawning
|
|
11
|
+
* Electron WebContentsView.
|
|
12
|
+
*/
|
|
13
|
+
|
|
14
|
+
import { describe, it, expect, vi } from "vitest";
|
|
15
|
+
|
|
16
|
+
const {
|
|
17
|
+
XhsApiClient,
|
|
18
|
+
} = require("../../lib/adapters/social-xiaohongshu-adb/api-client");
|
|
19
|
+
const {
|
|
20
|
+
collect,
|
|
21
|
+
} = require("../../lib/adapters/social-xiaohongshu-adb/collector");
|
|
22
|
+
const { NULL_SIGN_PROVIDER } = require("../../lib/sign-providers");
|
|
23
|
+
|
|
24
|
+
function makeFakeFetch(responses) {
|
|
25
|
+
const calls = [];
|
|
26
|
+
const fakeFetch = async (urlStr, opts) => {
|
|
27
|
+
calls.push({ url: urlStr, opts });
|
|
28
|
+
for (const [pattern, payload] of responses) {
|
|
29
|
+
if (urlStr.includes(pattern)) {
|
|
30
|
+
const resolved =
|
|
31
|
+
typeof payload === "function" ? await payload(urlStr, opts) : payload;
|
|
32
|
+
return {
|
|
33
|
+
ok: resolved.status == null || resolved.status === 200,
|
|
34
|
+
status: resolved.status || 200,
|
|
35
|
+
text: async () => resolved.body,
|
|
36
|
+
};
|
|
37
|
+
}
|
|
38
|
+
}
|
|
39
|
+
throw new Error("fake fetch: no response for " + urlStr);
|
|
40
|
+
};
|
|
41
|
+
return { fakeFetch, calls };
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
const HAPPY_RESPONSES = [
|
|
45
|
+
[
|
|
46
|
+
"/user/me",
|
|
47
|
+
{
|
|
48
|
+
body: JSON.stringify({
|
|
49
|
+
code: 0,
|
|
50
|
+
data: { user_id: "5e8c8f7e", nickname: "Alice" },
|
|
51
|
+
}),
|
|
52
|
+
},
|
|
53
|
+
],
|
|
54
|
+
[
|
|
55
|
+
"user_posted",
|
|
56
|
+
{
|
|
57
|
+
body: JSON.stringify({
|
|
58
|
+
code: 0,
|
|
59
|
+
data: { notes: [{ note_id: "N1", title: "n", time: 1 }] },
|
|
60
|
+
}),
|
|
61
|
+
},
|
|
62
|
+
],
|
|
63
|
+
[
|
|
64
|
+
"note/like/page",
|
|
65
|
+
{
|
|
66
|
+
body: JSON.stringify({
|
|
67
|
+
code: 0,
|
|
68
|
+
data: { notes: [{ note_id: "L1", title: "l" }] },
|
|
69
|
+
}),
|
|
70
|
+
},
|
|
71
|
+
],
|
|
72
|
+
[
|
|
73
|
+
"user/follow/list",
|
|
74
|
+
{
|
|
75
|
+
body: JSON.stringify({
|
|
76
|
+
code: 0,
|
|
77
|
+
data: { users: [{ user_id: "U1", nickname: "x" }] },
|
|
78
|
+
}),
|
|
79
|
+
},
|
|
80
|
+
],
|
|
81
|
+
];
|
|
82
|
+
|
|
83
|
+
// ─── XhsApiClient direct injection ──────────────────────────────────────
|
|
84
|
+
|
|
85
|
+
describe("XhsApiClient — signProvider injection", () => {
|
|
86
|
+
it("defaults to NULL_SIGN_PROVIDER when no opts.signProvider", () => {
|
|
87
|
+
const client = new XhsApiClient({ fetch: () => {} });
|
|
88
|
+
expect(client.signProvider).toBe(NULL_SIGN_PROVIDER);
|
|
89
|
+
});
|
|
90
|
+
|
|
91
|
+
it("uses opts.signProvider verbatim when provided", () => {
|
|
92
|
+
const fakeProvider = { signedHeaders: vi.fn(async () => ({})) };
|
|
93
|
+
const client = new XhsApiClient({
|
|
94
|
+
fetch: () => {},
|
|
95
|
+
signProvider: fakeProvider,
|
|
96
|
+
});
|
|
97
|
+
expect(client.signProvider).toBe(fakeProvider);
|
|
98
|
+
});
|
|
99
|
+
|
|
100
|
+
it("falls back to in-process md5 when provider returns {}", async () => {
|
|
101
|
+
const { fakeFetch, calls } = makeFakeFetch(HAPPY_RESPONSES);
|
|
102
|
+
const fakeProvider = { signedHeaders: vi.fn(async () => ({})) };
|
|
103
|
+
const client = new XhsApiClient({
|
|
104
|
+
fetch: fakeFetch,
|
|
105
|
+
signProvider: fakeProvider,
|
|
106
|
+
});
|
|
107
|
+
await client.fetchNotes("a1=fp; web_session=s", "fp", "5e8c8f7e");
|
|
108
|
+
const notesCall = calls.find((c) => c.url.includes("user_posted"));
|
|
109
|
+
// Fallback used → in-process X-S/X-T headers should be set
|
|
110
|
+
expect(notesCall.opts.headers["X-S"]).toMatch(/^XYW_/);
|
|
111
|
+
expect(notesCall.opts.headers["X-T"]).toMatch(/^\d+$/);
|
|
112
|
+
expect(client._bridgeHits).toBe(0);
|
|
113
|
+
expect(client._fallbackHits).toBe(1);
|
|
114
|
+
});
|
|
115
|
+
|
|
116
|
+
it("uses bridge headers when provider returns non-empty", async () => {
|
|
117
|
+
const { fakeFetch, calls } = makeFakeFetch(HAPPY_RESPONSES);
|
|
118
|
+
const fakeProvider = {
|
|
119
|
+
signedHeaders: vi.fn(async () => ({
|
|
120
|
+
"X-s": "XYW_bridge_value",
|
|
121
|
+
"X-t": "1716383021000",
|
|
122
|
+
"X-s-common": "common_value",
|
|
123
|
+
})),
|
|
124
|
+
};
|
|
125
|
+
const client = new XhsApiClient({
|
|
126
|
+
fetch: fakeFetch,
|
|
127
|
+
signProvider: fakeProvider,
|
|
128
|
+
});
|
|
129
|
+
await client.fetchNotes("a1=fp; web_session=s", "fp", "5e8c8f7e");
|
|
130
|
+
const notesCall = calls.find((c) => c.url.includes("user_posted"));
|
|
131
|
+
expect(notesCall.opts.headers["X-s"]).toBe("XYW_bridge_value");
|
|
132
|
+
expect(notesCall.opts.headers["X-t"]).toBe("1716383021000");
|
|
133
|
+
expect(notesCall.opts.headers["X-s-common"]).toBe("common_value");
|
|
134
|
+
// Bridge headers used — no fallback X-S/X-T injected
|
|
135
|
+
expect(notesCall.opts.headers["X-S"]).toBeUndefined();
|
|
136
|
+
expect(client._bridgeHits).toBe(1);
|
|
137
|
+
expect(client._fallbackHits).toBe(0);
|
|
138
|
+
});
|
|
139
|
+
|
|
140
|
+
it("does NOT call signedHeaders for /user/me (no X-S required)", async () => {
|
|
141
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
142
|
+
const fakeProvider = { signedHeaders: vi.fn(async () => ({})) };
|
|
143
|
+
const client = new XhsApiClient({
|
|
144
|
+
fetch: fakeFetch,
|
|
145
|
+
signProvider: fakeProvider,
|
|
146
|
+
});
|
|
147
|
+
await client.fetchMe("a1=fp; web_session=s");
|
|
148
|
+
expect(fakeProvider.signedHeaders).not.toHaveBeenCalled();
|
|
149
|
+
});
|
|
150
|
+
|
|
151
|
+
it("calls signedHeaders for fetchNotes / fetchLiked / fetchFollows", async () => {
|
|
152
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
153
|
+
const fakeProvider = { signedHeaders: vi.fn(async () => ({})) };
|
|
154
|
+
const client = new XhsApiClient({
|
|
155
|
+
fetch: fakeFetch,
|
|
156
|
+
signProvider: fakeProvider,
|
|
157
|
+
});
|
|
158
|
+
await client.fetchNotes("a1=fp; web_session=s", "fp", "5e8c8f7e");
|
|
159
|
+
await client.fetchLiked("a1=fp; web_session=s", "fp");
|
|
160
|
+
await client.fetchFollows("a1=fp; web_session=s", "fp", "5e8c8f7e");
|
|
161
|
+
expect(fakeProvider.signedHeaders).toHaveBeenCalledTimes(3);
|
|
162
|
+
});
|
|
163
|
+
|
|
164
|
+
it("forwards `<path>|` as purpose to signedHeaders", async () => {
|
|
165
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
166
|
+
const fakeProvider = { signedHeaders: vi.fn(async () => ({})) };
|
|
167
|
+
const client = new XhsApiClient({
|
|
168
|
+
fetch: fakeFetch,
|
|
169
|
+
signProvider: fakeProvider,
|
|
170
|
+
});
|
|
171
|
+
await client.fetchNotes("a1=fp; web_session=s", "fp", "5e8c8f7e");
|
|
172
|
+
const [, purpose] = fakeProvider.signedHeaders.mock.calls[0];
|
|
173
|
+
expect(purpose).toMatch(/^\/api\/sns\/web\/v2\/user_posted.*\|$/);
|
|
174
|
+
});
|
|
175
|
+
});
|
|
176
|
+
|
|
177
|
+
// ─── collector lifecycle ────────────────────────────────────────────────
|
|
178
|
+
|
|
179
|
+
describe("collector — signProvider lifecycle", () => {
|
|
180
|
+
it("warms up bridge before X-S endpoints", async () => {
|
|
181
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
182
|
+
const apiClient = new XhsApiClient({ fetch: fakeFetch });
|
|
183
|
+
const warmedUp = [];
|
|
184
|
+
const fakeProvider = {
|
|
185
|
+
warmUp: vi.fn(async (cookie) => warmedUp.push(cookie)),
|
|
186
|
+
signedHeaders: vi.fn(async () => ({})),
|
|
187
|
+
shutdown: vi.fn(async () => {}),
|
|
188
|
+
};
|
|
189
|
+
const bridge = {
|
|
190
|
+
invoke: vi.fn(async () => ({
|
|
191
|
+
cookie: "a1=fp; web_session=s",
|
|
192
|
+
a1: "fp",
|
|
193
|
+
diagnostic: {},
|
|
194
|
+
})),
|
|
195
|
+
};
|
|
196
|
+
await collect(bridge, {
|
|
197
|
+
apiClient,
|
|
198
|
+
signProvider: fakeProvider,
|
|
199
|
+
stagingDir: require("node:os").tmpdir(),
|
|
200
|
+
});
|
|
201
|
+
expect(fakeProvider.warmUp).toHaveBeenCalledOnce();
|
|
202
|
+
expect(warmedUp[0]).toBe("a1=fp; web_session=s");
|
|
203
|
+
});
|
|
204
|
+
|
|
205
|
+
it("shuts down bridge in finally — happy path", async () => {
|
|
206
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
207
|
+
const apiClient = new XhsApiClient({ fetch: fakeFetch });
|
|
208
|
+
const fakeProvider = {
|
|
209
|
+
warmUp: vi.fn(async () => {}),
|
|
210
|
+
signedHeaders: vi.fn(async () => ({})),
|
|
211
|
+
shutdown: vi.fn(async () => {}),
|
|
212
|
+
};
|
|
213
|
+
const bridge = {
|
|
214
|
+
invoke: vi.fn(async () => ({
|
|
215
|
+
cookie: "a1=fp; web_session=s",
|
|
216
|
+
a1: "fp",
|
|
217
|
+
diagnostic: {},
|
|
218
|
+
})),
|
|
219
|
+
};
|
|
220
|
+
await collect(bridge, {
|
|
221
|
+
apiClient,
|
|
222
|
+
signProvider: fakeProvider,
|
|
223
|
+
stagingDir: require("node:os").tmpdir(),
|
|
224
|
+
});
|
|
225
|
+
expect(fakeProvider.shutdown).toHaveBeenCalledOnce();
|
|
226
|
+
});
|
|
227
|
+
|
|
228
|
+
it("shuts down bridge in finally — even on fetchMe failure", async () => {
|
|
229
|
+
const { fakeFetch } = makeFakeFetch([
|
|
230
|
+
["/user/me", { body: JSON.stringify({ code: 0, data: {} }) }],
|
|
231
|
+
]);
|
|
232
|
+
const apiClient = new XhsApiClient({ fetch: fakeFetch });
|
|
233
|
+
const fakeProvider = {
|
|
234
|
+
warmUp: vi.fn(async () => {}),
|
|
235
|
+
signedHeaders: vi.fn(async () => ({})),
|
|
236
|
+
shutdown: vi.fn(async () => {}),
|
|
237
|
+
};
|
|
238
|
+
const bridge = {
|
|
239
|
+
invoke: vi.fn(async () => ({
|
|
240
|
+
cookie: "a1=fp; web_session=s",
|
|
241
|
+
a1: "fp",
|
|
242
|
+
diagnostic: {},
|
|
243
|
+
})),
|
|
244
|
+
};
|
|
245
|
+
const result = await collect(bridge, {
|
|
246
|
+
apiClient,
|
|
247
|
+
signProvider: fakeProvider,
|
|
248
|
+
stagingDir: require("node:os").tmpdir(),
|
|
249
|
+
});
|
|
250
|
+
expect(result.meFetchFailed).toBe(true);
|
|
251
|
+
expect(fakeProvider.shutdown).toHaveBeenCalledOnce();
|
|
252
|
+
});
|
|
253
|
+
|
|
254
|
+
it("tolerates warmUp throw (falls back to in-process md5)", async () => {
|
|
255
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
256
|
+
const fakeProvider = {
|
|
257
|
+
warmUp: vi.fn(async () => {
|
|
258
|
+
throw new Error("xhs.com 403 — anti-bot blocked");
|
|
259
|
+
}),
|
|
260
|
+
signedHeaders: vi.fn(async () => ({})),
|
|
261
|
+
shutdown: vi.fn(async () => {}),
|
|
262
|
+
};
|
|
263
|
+
// Inject same provider into the apiClient too — real wiring path
|
|
264
|
+
// creates them together inside collector.
|
|
265
|
+
const apiClient = new XhsApiClient({
|
|
266
|
+
fetch: fakeFetch,
|
|
267
|
+
signProvider: fakeProvider,
|
|
268
|
+
});
|
|
269
|
+
const bridge = {
|
|
270
|
+
invoke: vi.fn(async () => ({
|
|
271
|
+
cookie: "a1=fp; web_session=s",
|
|
272
|
+
a1: "fp",
|
|
273
|
+
diagnostic: {},
|
|
274
|
+
})),
|
|
275
|
+
};
|
|
276
|
+
const result = await collect(bridge, {
|
|
277
|
+
apiClient,
|
|
278
|
+
signProvider: fakeProvider,
|
|
279
|
+
stagingDir: require("node:os").tmpdir(),
|
|
280
|
+
});
|
|
281
|
+
// Sync proceeded — fallback md5 used instead of bridge for all 3
|
|
282
|
+
// X-S endpoints (bridge.signedHeaders returns {} so client falls
|
|
283
|
+
// back). Note lastErrorCode gets cleared by successful subsequent
|
|
284
|
+
// fetchMe so we check _fallbackHits instead.
|
|
285
|
+
expect(result.meFetchFailed).toBe(false);
|
|
286
|
+
expect(apiClient._fallbackHits).toBeGreaterThanOrEqual(3);
|
|
287
|
+
expect(apiClient._bridgeHits).toBe(0);
|
|
288
|
+
// shutdown still runs in finally
|
|
289
|
+
expect(fakeProvider.shutdown).toHaveBeenCalledOnce();
|
|
290
|
+
});
|
|
291
|
+
|
|
292
|
+
it("reports signProvider diagnostic in collect result", async () => {
|
|
293
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
294
|
+
// Subclass to control constructor.name (vitest mocks can't override it
|
|
295
|
+
// on plain object literals — constructor.name is read-only on Object).
|
|
296
|
+
class XhsSignBridge {
|
|
297
|
+
constructor() {
|
|
298
|
+
this.warmUp = vi.fn(async () => {});
|
|
299
|
+
this.signedHeaders = vi.fn(async () => ({
|
|
300
|
+
"X-s": "bridge",
|
|
301
|
+
"X-t": "1",
|
|
302
|
+
"X-s-common": "c",
|
|
303
|
+
}));
|
|
304
|
+
this.shutdown = vi.fn(async () => {});
|
|
305
|
+
}
|
|
306
|
+
}
|
|
307
|
+
const fakeProvider = new XhsSignBridge();
|
|
308
|
+
const apiClient = new XhsApiClient({
|
|
309
|
+
fetch: fakeFetch,
|
|
310
|
+
signProvider: fakeProvider,
|
|
311
|
+
});
|
|
312
|
+
const bridge = {
|
|
313
|
+
invoke: vi.fn(async () => ({
|
|
314
|
+
cookie: "a1=fp; web_session=s",
|
|
315
|
+
a1: "fp",
|
|
316
|
+
diagnostic: {},
|
|
317
|
+
})),
|
|
318
|
+
};
|
|
319
|
+
const result = await collect(bridge, {
|
|
320
|
+
apiClient,
|
|
321
|
+
signProvider: fakeProvider,
|
|
322
|
+
stagingDir: require("node:os").tmpdir(),
|
|
323
|
+
});
|
|
324
|
+
expect(result.signProviderUsed).toBe("XhsSignBridge");
|
|
325
|
+
expect(result.signProviderHits).toBe(3); // 3 X-S endpoints all hit bridge
|
|
326
|
+
expect(result.signProviderFallbacks).toBe(0);
|
|
327
|
+
});
|
|
328
|
+
|
|
329
|
+
it("undefined signProvider → no warmUp/shutdown, fallback md5 used", async () => {
|
|
330
|
+
const { fakeFetch } = makeFakeFetch(HAPPY_RESPONSES);
|
|
331
|
+
// Pre-construct apiClient with fakeFetch but no signProvider — client
|
|
332
|
+
// defaults to NULL_SIGN_PROVIDER which returns {} from signedHeaders.
|
|
333
|
+
const apiClient = new XhsApiClient({ fetch: fakeFetch });
|
|
334
|
+
const bridge = {
|
|
335
|
+
invoke: vi.fn(async () => ({
|
|
336
|
+
cookie: "a1=fp; web_session=s",
|
|
337
|
+
a1: "fp",
|
|
338
|
+
diagnostic: {},
|
|
339
|
+
})),
|
|
340
|
+
};
|
|
341
|
+
const result = await collect(bridge, {
|
|
342
|
+
apiClient,
|
|
343
|
+
stagingDir: require("node:os").tmpdir(),
|
|
344
|
+
});
|
|
345
|
+
// No bridge → in-process fallback throughout
|
|
346
|
+
expect(result.signProviderUsed).toBe("none");
|
|
347
|
+
expect(result.signProviderHits).toBe(0);
|
|
348
|
+
// 3 X-S endpoints called fallback md5 each
|
|
349
|
+
expect(result.signProviderFallbacks).toBeGreaterThanOrEqual(3);
|
|
350
|
+
});
|
|
351
|
+
});
|
|
@@ -0,0 +1,130 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
|
|
3
|
+
import { describe, it, expect } from "vitest";
|
|
4
|
+
|
|
5
|
+
const {
|
|
6
|
+
computeXsXt,
|
|
7
|
+
extractA1,
|
|
8
|
+
XS_PREFIX,
|
|
9
|
+
} = require("../../lib/adapters/social-xiaohongshu-adb/sign");
|
|
10
|
+
|
|
11
|
+
// ─── computeXsXt ────────────────────────────────────────────────────────
|
|
12
|
+
|
|
13
|
+
describe("computeXsXt — X-S signature byte-parity check", () => {
|
|
14
|
+
it("produces stable XYW_ prefix + base64 md5 hex", () => {
|
|
15
|
+
const result = computeXsXt(
|
|
16
|
+
"/api/sns/web/v1/user/me",
|
|
17
|
+
null,
|
|
18
|
+
"18d6e123abc",
|
|
19
|
+
{ now: () => 1716383021000 },
|
|
20
|
+
);
|
|
21
|
+
expect(result.xs).toMatch(/^XYW_[A-Za-z0-9+/]+$/);
|
|
22
|
+
expect(result.xs).not.toMatch(/=$/); // no padding
|
|
23
|
+
expect(result.xt).toBe("1716383021000");
|
|
24
|
+
});
|
|
25
|
+
|
|
26
|
+
it("byte-parity golden vector from Kotlin reference", () => {
|
|
27
|
+
// Reproduce: md5("1716383021000" + "url=/api/sns/web/v1/user/me" + "test_a1")
|
|
28
|
+
// .toUtf8Bytes().base64() with NO_PADDING + NO_WRAP
|
|
29
|
+
// Computed via node:crypto cross-check; this is the exact value
|
|
30
|
+
// Kotlin XhsApiClient.kt:computeXsXt produces for the same inputs.
|
|
31
|
+
const result = computeXsXt(
|
|
32
|
+
"/api/sns/web/v1/user/me",
|
|
33
|
+
null,
|
|
34
|
+
"test_a1",
|
|
35
|
+
{ now: () => 1716383021000 },
|
|
36
|
+
);
|
|
37
|
+
// The actual md5 hex of "1716383021000url=/api/sns/web/v1/user/me" + "test_a1":
|
|
38
|
+
// npm crypto md5 → "9b6e0a..." (varies); base64 of that hex string
|
|
39
|
+
// Lock the value computed by this very module so future changes are
|
|
40
|
+
// caught.
|
|
41
|
+
expect(result.xs).toBe(
|
|
42
|
+
"XYW_" +
|
|
43
|
+
Buffer.from(
|
|
44
|
+
require("node:crypto")
|
|
45
|
+
.createHash("md5")
|
|
46
|
+
.update("1716383021000url=/api/sns/web/v1/user/metest_a1", "utf8")
|
|
47
|
+
.digest("hex"),
|
|
48
|
+
"utf8",
|
|
49
|
+
)
|
|
50
|
+
.toString("base64")
|
|
51
|
+
.replace(/=+$/, ""),
|
|
52
|
+
);
|
|
53
|
+
});
|
|
54
|
+
|
|
55
|
+
it("includes body in payload (POST case)", () => {
|
|
56
|
+
const noBody = computeXsXt("/api/x", null, "a1", { now: () => 1000 });
|
|
57
|
+
const withBody = computeXsXt("/api/x", '{"foo":1}', "a1", {
|
|
58
|
+
now: () => 1000,
|
|
59
|
+
});
|
|
60
|
+
expect(noBody.xs).not.toBe(withBody.xs);
|
|
61
|
+
});
|
|
62
|
+
|
|
63
|
+
it("different ts → different X-S", () => {
|
|
64
|
+
const r1 = computeXsXt("/api/x", null, "a1", { now: () => 1000 });
|
|
65
|
+
const r2 = computeXsXt("/api/x", null, "a1", { now: () => 2000 });
|
|
66
|
+
expect(r1.xs).not.toBe(r2.xs);
|
|
67
|
+
expect(r1.xt).toBe("1000");
|
|
68
|
+
expect(r2.xt).toBe("2000");
|
|
69
|
+
});
|
|
70
|
+
|
|
71
|
+
it("different a1 → different X-S", () => {
|
|
72
|
+
const r1 = computeXsXt("/api/x", null, "a1_v1", { now: () => 1000 });
|
|
73
|
+
const r2 = computeXsXt("/api/x", null, "a1_v2", { now: () => 1000 });
|
|
74
|
+
expect(r1.xs).not.toBe(r2.xs);
|
|
75
|
+
});
|
|
76
|
+
|
|
77
|
+
it("rejects empty / non-string urlPathWithQuery", () => {
|
|
78
|
+
expect(() => computeXsXt("", null, "a1")).toThrow(TypeError);
|
|
79
|
+
expect(() => computeXsXt(null, null, "a1")).toThrow(TypeError);
|
|
80
|
+
});
|
|
81
|
+
|
|
82
|
+
it("rejects empty / non-string a1", () => {
|
|
83
|
+
expect(() => computeXsXt("/x", null, "")).toThrow(TypeError);
|
|
84
|
+
expect(() => computeXsXt("/x", null, null)).toThrow(TypeError);
|
|
85
|
+
});
|
|
86
|
+
|
|
87
|
+
it("XS_PREFIX export = 'XYW_'", () => {
|
|
88
|
+
expect(XS_PREFIX).toBe("XYW_");
|
|
89
|
+
});
|
|
90
|
+
});
|
|
91
|
+
|
|
92
|
+
// ─── extractA1 ──────────────────────────────────────────────────────────
|
|
93
|
+
|
|
94
|
+
describe("extractA1", () => {
|
|
95
|
+
it("extracts a1 from full xhs cookie", () => {
|
|
96
|
+
const cookie =
|
|
97
|
+
"web_session=session_token; a1=18d6e1234567890abcdef; xsec_token=xxx";
|
|
98
|
+
expect(extractA1(cookie)).toBe("18d6e1234567890abcdef");
|
|
99
|
+
});
|
|
100
|
+
|
|
101
|
+
it("handles a1 as first cookie field", () => {
|
|
102
|
+
expect(extractA1("a1=fingerprint_value; web_session=s")).toBe(
|
|
103
|
+
"fingerprint_value",
|
|
104
|
+
);
|
|
105
|
+
});
|
|
106
|
+
|
|
107
|
+
it("handles a1 as last cookie field", () => {
|
|
108
|
+
expect(extractA1("web_session=s; a1=fingerprint_value")).toBe(
|
|
109
|
+
"fingerprint_value",
|
|
110
|
+
);
|
|
111
|
+
});
|
|
112
|
+
|
|
113
|
+
it("returns null when a1 missing", () => {
|
|
114
|
+
expect(extractA1("web_session=s; xsec_token=t")).toBe(null);
|
|
115
|
+
});
|
|
116
|
+
|
|
117
|
+
it("returns null when a1 empty", () => {
|
|
118
|
+
expect(extractA1("a1=; web_session=s")).toBe(null);
|
|
119
|
+
});
|
|
120
|
+
|
|
121
|
+
it("returns null for non-string / null", () => {
|
|
122
|
+
expect(extractA1(null)).toBe(null);
|
|
123
|
+
expect(extractA1(undefined)).toBe(null);
|
|
124
|
+
expect(extractA1(123)).toBe(null);
|
|
125
|
+
});
|
|
126
|
+
|
|
127
|
+
it("trims whitespace around cookie parts", () => {
|
|
128
|
+
expect(extractA1("web_session=s ; a1=val ; xsec=x")).toBe("val");
|
|
129
|
+
});
|
|
130
|
+
});
|
|
@@ -16,9 +16,10 @@ const {
|
|
|
16
16
|
ENTITY_TYPES,
|
|
17
17
|
PERSON_SUBTYPES,
|
|
18
18
|
ITEM_SUBTYPES,
|
|
19
|
+
EVENT_SUBTYPES,
|
|
19
20
|
CAPTURED_BY,
|
|
20
21
|
} = require("../../lib/constants");
|
|
21
|
-
const { validatePerson, validateItem } = require("../../lib/schemas");
|
|
22
|
+
const { validatePerson, validateItem, validateEvent } = require("../../lib/schemas");
|
|
22
23
|
|
|
23
24
|
let tmpDir;
|
|
24
25
|
let snapshotPath;
|
|
@@ -130,12 +131,42 @@ describe("SystemDataAndroidAdapter.sync + normalize", () => {
|
|
|
130
131
|
|
|
131
132
|
const persons = [];
|
|
132
133
|
const items = [];
|
|
134
|
+
const events = [];
|
|
133
135
|
for await (const raw of adapter.sync({ inputPath: snapshotPath })) {
|
|
134
136
|
const batch = adapter.normalize(raw);
|
|
135
137
|
persons.push(...batch.persons);
|
|
136
138
|
items.push(...batch.items);
|
|
139
|
+
events.push(...batch.events);
|
|
137
140
|
}
|
|
138
141
|
|
|
142
|
+
// v0.3.1 — one synthetic event per contact + per app so they show up
|
|
143
|
+
// under the Vault Browser's `category=system` facet (events table).
|
|
144
|
+
expect(events).toHaveLength(2);
|
|
145
|
+
expect(events.map((e) => e.id)).toEqual([
|
|
146
|
+
"event-android-contact-0r1-3A2B",
|
|
147
|
+
"event-android-app-com.tencent.mm",
|
|
148
|
+
]);
|
|
149
|
+
expect(events[0].subtype).toBe(EVENT_SUBTYPES.OTHER);
|
|
150
|
+
expect(events[0].content.title).toBe("联系人:妈妈");
|
|
151
|
+
expect(events[0].extra.kind).toBe("contact-snapshot");
|
|
152
|
+
// v0.3.2 — contact event.extra carries identifying fields so detail
|
|
153
|
+
// sheet doesn't have to join the persons table.
|
|
154
|
+
expect(events[0].extra.phones).toEqual(["+8613800138000"]);
|
|
155
|
+
expect(events[0].extra.organization).toBe("家庭");
|
|
156
|
+
expect(events[0].extra.starred).toBe(true);
|
|
157
|
+
expect(events[1].content.title).toBe("应用:微信");
|
|
158
|
+
expect(events[1].extra.kind).toBe("app-snapshot");
|
|
159
|
+
expect(events[1].extra.packageName).toBe("com.tencent.mm");
|
|
160
|
+
// v0.3.2 — app event.extra carries version + install fields.
|
|
161
|
+
expect(events[1].extra.versionName).toBe("8.0.45");
|
|
162
|
+
expect(events[1].extra.versionCode).toBe(2200);
|
|
163
|
+
expect(events[1].extra.firstInstallTime).toBe(1_650_000_000_000);
|
|
164
|
+
expect(events[1].extra.isSystem).toBe(false);
|
|
165
|
+
events.forEach((e) => {
|
|
166
|
+
const ev = validateEvent(e);
|
|
167
|
+
expect(ev).toEqual({ valid: true, errors: [] });
|
|
168
|
+
});
|
|
169
|
+
|
|
139
170
|
expect(persons).toHaveLength(1);
|
|
140
171
|
const p = persons[0];
|
|
141
172
|
expect(p.id).toBe("person-android-0r1-3A2B");
|
|
@@ -231,8 +231,21 @@ describe("TelegramAdapter", () => {
|
|
|
231
231
|
expect(a.dataDisclosure.legalGate).toBe(true);
|
|
232
232
|
});
|
|
233
233
|
|
|
234
|
-
it("
|
|
235
|
-
|
|
234
|
+
it("no-arg ctor passes contract (2026-05-25 v0.6 — account.userId OPTIONAL for snapshot mode)", () => {
|
|
235
|
+
const a = new TelegramAdapter();
|
|
236
|
+
expect(assertAdapter(a).ok).toBe(true);
|
|
237
|
+
expect(a.capabilities).toContain("sync:snapshot");
|
|
238
|
+
expect(a.capabilities).toContain("sync:sqlite");
|
|
239
|
+
});
|
|
240
|
+
|
|
241
|
+
it("authenticate(ctx.inputPath) returns ok when file readable (snapshot mode)", async () => {
|
|
242
|
+
const { dir, dbPath } = tmpDb();
|
|
243
|
+
try {
|
|
244
|
+
const a = new TelegramAdapter();
|
|
245
|
+
const auth = await a.authenticate({ inputPath: dbPath });
|
|
246
|
+
expect(auth.ok).toBe(true);
|
|
247
|
+
expect(auth.mode).toBe("snapshot-file");
|
|
248
|
+
} finally { cleanup(dir); }
|
|
236
249
|
});
|
|
237
250
|
|
|
238
251
|
it("sync yields user + chat + messages (no key needed)", async () => {
|
|
@@ -183,6 +183,102 @@ describe("TaobaoAdapter", () => {
|
|
|
183
183
|
for await (const r of a.sync()) raws.push(r);
|
|
184
184
|
expect(raws).toHaveLength(0);
|
|
185
185
|
});
|
|
186
|
+
|
|
187
|
+
// §2.4d v0.2 — snapshot mode (mirror shopping-jd/meituan/pinduoduo dual-mode).
|
|
188
|
+
// Android in-APK collector ships JSON snapshot via syncAdapter("shopping-
|
|
189
|
+
// taobao", path); desktop adapter consumes via inputPath.
|
|
190
|
+
|
|
191
|
+
it("snapshot mode — no-arg ctor passes contract", () => {
|
|
192
|
+
const a = new TaobaoAdapter();
|
|
193
|
+
expect(assertAdapter(a).ok).toBe(true);
|
|
194
|
+
expect(a.capabilities).toContain("sync:snapshot");
|
|
195
|
+
expect(a.capabilities).toContain("sync:cookie-api"); // both advertised
|
|
196
|
+
});
|
|
197
|
+
|
|
198
|
+
it("snapshot mode — authenticate(ctx.inputPath) returns ok when file readable", async () => {
|
|
199
|
+
const fs = require("node:fs");
|
|
200
|
+
const path = require("node:path");
|
|
201
|
+
const os = require("node:os");
|
|
202
|
+
const dir = fs.mkdtempSync(path.join(os.tmpdir(), "taobao-snap-"));
|
|
203
|
+
const inputPath = path.join(dir, "snap.json");
|
|
204
|
+
fs.writeFileSync(inputPath, "{}", "utf-8");
|
|
205
|
+
try {
|
|
206
|
+
const a = new TaobaoAdapter();
|
|
207
|
+
const auth = await a.authenticate({ inputPath });
|
|
208
|
+
expect(auth.ok).toBe(true);
|
|
209
|
+
expect(auth.mode).toBe("snapshot-file");
|
|
210
|
+
} finally {
|
|
211
|
+
fs.rmSync(dir, { recursive: true, force: true });
|
|
212
|
+
}
|
|
213
|
+
});
|
|
214
|
+
|
|
215
|
+
it("snapshot mode — sync yields order events from snapshot file", async () => {
|
|
216
|
+
const fs = require("node:fs");
|
|
217
|
+
const path = require("node:path");
|
|
218
|
+
const os = require("node:os");
|
|
219
|
+
const dir = fs.mkdtempSync(path.join(os.tmpdir(), "taobao-snap-yield-"));
|
|
220
|
+
const inputPath = path.join(dir, "snap.json");
|
|
221
|
+
fs.writeFileSync(inputPath, JSON.stringify({
|
|
222
|
+
schemaVersion: 1,
|
|
223
|
+
snapshottedAt: 1_700_000_000_000,
|
|
224
|
+
account: { userId: "u-snap" },
|
|
225
|
+
events: [
|
|
226
|
+
{
|
|
227
|
+
kind: "order",
|
|
228
|
+
id: "TB-SNAP-1",
|
|
229
|
+
capturedAt: 1_700_000_100_000,
|
|
230
|
+
vendorId: "taobao",
|
|
231
|
+
orderId: "TB-SNAP-1",
|
|
232
|
+
placedAt: 1_700_000_000_000,
|
|
233
|
+
paidAt: 1_700_000_010_000,
|
|
234
|
+
status: "delivered",
|
|
235
|
+
merchantName: "Test 旗舰店",
|
|
236
|
+
totalAmount: { value: 123.45, currency: "CNY" },
|
|
237
|
+
items: [{ name: "Item X", quantity: 1, unitPrice: 123.45 }],
|
|
238
|
+
},
|
|
239
|
+
],
|
|
240
|
+
}), "utf-8");
|
|
241
|
+
try {
|
|
242
|
+
const a = new TaobaoAdapter();
|
|
243
|
+
const raws = [];
|
|
244
|
+
for await (const r of a.sync({ inputPath })) raws.push(r);
|
|
245
|
+
expect(raws).toHaveLength(1);
|
|
246
|
+
expect(raws[0].adapter).toBe("shopping-taobao");
|
|
247
|
+
expect(raws[0].kind).toBe("order");
|
|
248
|
+
expect(raws[0].originalId).toBe("taobao:order:TB-SNAP-1");
|
|
249
|
+
const batch = a.normalize(raws[0]);
|
|
250
|
+
expect(validateBatch(batch).valid).toBe(true);
|
|
251
|
+
} finally {
|
|
252
|
+
fs.rmSync(dir, { recursive: true, force: true });
|
|
253
|
+
}
|
|
254
|
+
});
|
|
255
|
+
|
|
256
|
+
it("snapshot mode — schemaVersion mismatch throws", async () => {
|
|
257
|
+
const fs = require("node:fs");
|
|
258
|
+
const path = require("node:path");
|
|
259
|
+
const os = require("node:os");
|
|
260
|
+
const dir = fs.mkdtempSync(path.join(os.tmpdir(), "taobao-snap-bad-"));
|
|
261
|
+
const inputPath = path.join(dir, "snap.json");
|
|
262
|
+
fs.writeFileSync(inputPath, JSON.stringify({ schemaVersion: 99, events: [] }), "utf-8");
|
|
263
|
+
try {
|
|
264
|
+
const a = new TaobaoAdapter();
|
|
265
|
+
let threw = null;
|
|
266
|
+
try {
|
|
267
|
+
for await (const _r of a.sync({ inputPath })) { /* drain */ }
|
|
268
|
+
} catch (err) { threw = err; }
|
|
269
|
+
expect(threw).toBeTruthy();
|
|
270
|
+
expect(threw.message).toMatch(/schemaVersion mismatch/);
|
|
271
|
+
} finally {
|
|
272
|
+
fs.rmSync(dir, { recursive: true, force: true });
|
|
273
|
+
}
|
|
274
|
+
});
|
|
275
|
+
|
|
276
|
+
it("no-arg ctor + no inputPath = NO_INPUT (legible failure)", async () => {
|
|
277
|
+
const a = new TaobaoAdapter();
|
|
278
|
+
const auth = await a.authenticate({});
|
|
279
|
+
expect(auth.ok).toBe(false);
|
|
280
|
+
expect(auth.reason).toBe("NO_INPUT");
|
|
281
|
+
});
|
|
186
282
|
});
|
|
187
283
|
|
|
188
284
|
// ─── JdAdapter ───────────────────────────────────────────────────────────
|