@nextclaw/channel-plugin-feishu 0.2.29-beta.0 → 0.2.29-beta.2

package/dist/index.d.ts

@@ -0,0 +1,23 @@
+import { OpenClawPluginApi } from "./src/nextclaw-sdk/types.js";
+import { MentionTarget, buildMentionedCardContent, buildMentionedMessage, extractMentionTargets, extractMessageBody, formatMentionAllForCard, formatMentionAllForText, formatMentionForCard, formatMentionForText, isMentionForwardRequest } from "./src/mention.js";
+import { editMessageFeishu, getMessageFeishu, sendCardFeishu, sendMessageFeishu, updateCardFeishu } from "./src/send.js";
+import { monitorFeishuProvider } from "./src/monitor.js";
+import { sendFileFeishu, sendImageFeishu, sendMediaFeishu, uploadFileFeishu, uploadImageFeishu } from "./src/media.js";
+import { probeFeishu } from "./src/probe.js";
+import { FeishuEmoji, addReactionFeishu, listReactionsFeishu, removeReactionFeishu } from "./src/reactions.js";
+import { feishuPlugin } from "./src/channel.js";
+
+//#region index.d.ts
+declare const plugin: {
+  id: string;
+  name: string;
+  description: string;
+  configSchema: {
+    type: "object";
+    additionalProperties: false;
+    properties: Record<string, unknown>;
+  };
+  register(api: OpenClawPluginApi): void;
+};
+//#endregion
+export { FeishuEmoji, type MentionTarget, addReactionFeishu, buildMentionedCardContent, buildMentionedMessage, plugin as default, editMessageFeishu, extractMentionTargets, extractMessageBody, feishuPlugin, formatMentionAllForCard, formatMentionAllForText, formatMentionForCard, formatMentionForText, getMessageFeishu, isMentionForwardRequest, listReactionsFeishu, monitorFeishuProvider, probeFeishu, removeReactionFeishu, sendCardFeishu, sendFileFeishu, sendImageFeishu, sendMediaFeishu, sendMessageFeishu, updateCardFeishu, uploadFileFeishu, uploadImageFeishu };

package/dist/index.js

@@ -0,0 +1,45 @@
+import { emptyPluginConfigSchema } from "./src/nextclaw-sdk/core-channel.js";
+import "./src/nextclaw-sdk/feishu.js";
+import { registerFeishuCalendarTools } from "./src/calendar.js";
+import { registerFeishuBitableTools } from "./src/bitable.js";
+import { probeFeishu } from "./src/probe.js";
+import { setFeishuRuntime } from "./src/runtime.js";
+import { sendFileFeishu, sendImageFeishu, sendMediaFeishu, uploadFileFeishu, uploadImageFeishu } from "./src/media.js";
+import { buildMentionedCardContent, buildMentionedMessage, extractMentionTargets, extractMessageBody, formatMentionAllForCard, formatMentionAllForText, formatMentionForCard, formatMentionForText, isMentionForwardRequest } from "./src/mention.js";
+import { editMessageFeishu, getMessageFeishu, sendCardFeishu, sendMessageFeishu, updateCardFeishu } from "./src/send.js";
+import { feishuPlugin } from "./src/channel.js";
+import { registerFeishuChatTools } from "./src/chat.js";
+import { registerFeishuDocTools } from "./src/docx.js";
+import { registerFeishuDriveTools } from "./src/drive.js";
+import { registerFeishuIdentityTools } from "./src/identity.js";
+import { registerFeishuOAuthTool } from "./src/oauth.js";
+import { registerFeishuPermTools } from "./src/perm.js";
+import { registerFeishuSheetsTools } from "./src/sheets.js";
+import { registerFeishuTaskTools } from "./src/task.js";
+import { registerFeishuWikiTools } from "./src/wiki.js";
+import { monitorFeishuProvider } from "./src/monitor.js";
+import { FeishuEmoji, addReactionFeishu, listReactionsFeishu, removeReactionFeishu } from "./src/reactions.js";
+//#region index.ts
+const plugin = {
+	id: "feishu",
+	name: "Feishu",
+	description: "Feishu/Lark channel plugin",
+	configSchema: emptyPluginConfigSchema(),
+	register(api) {
+		setFeishuRuntime(api.runtime);
+		api.registerChannel({ plugin: feishuPlugin });
+		registerFeishuDocTools(api);
+		registerFeishuChatTools(api);
+		registerFeishuWikiTools(api);
+		registerFeishuDriveTools(api);
+		registerFeishuPermTools(api);
+		registerFeishuBitableTools(api);
+		registerFeishuCalendarTools(api);
+		registerFeishuTaskTools(api);
+		registerFeishuSheetsTools(api);
+		registerFeishuIdentityTools(api);
+		registerFeishuOAuthTool(api);
+	}
+};
+//#endregion
+export { FeishuEmoji, addReactionFeishu, buildMentionedCardContent, buildMentionedMessage, plugin as default, editMessageFeishu, extractMentionTargets, extractMessageBody, feishuPlugin, formatMentionAllForCard, formatMentionAllForText, formatMentionForCard, formatMentionForText, getMessageFeishu, isMentionForwardRequest, listReactionsFeishu, monitorFeishuProvider, probeFeishu, removeReactionFeishu, sendCardFeishu, sendFileFeishu, sendImageFeishu, sendMediaFeishu, sendMessageFeishu, updateCardFeishu, uploadFileFeishu, uploadImageFeishu };

package/dist/src/accounts.js

@@ -0,0 +1,141 @@
+import { DEFAULT_ACCOUNT_ID, normalizeAccountId } from "./nextclaw-sdk/account-id.js";
+import { normalizeResolvedSecretInputString, normalizeSecretInputString } from "./nextclaw-sdk/secrets-core.js";
+import "./secret-input.js";
+//#region src/accounts.ts
+/**
+* List all configured account IDs from the accounts field.
+*/
+function listConfiguredAccountIds(cfg) {
+	const accounts = (cfg?.channels?.feishu)?.accounts;
+	if (!accounts || typeof accounts !== "object") return [];
+	return Object.keys(accounts).filter(Boolean);
+}
+/**
+* List all Feishu account IDs.
+* If no accounts are configured, returns [DEFAULT_ACCOUNT_ID] for backward compatibility.
+*/
+function listFeishuAccountIds(cfg) {
+	const ids = listConfiguredAccountIds(cfg);
+	if (ids.length === 0) return [DEFAULT_ACCOUNT_ID];
+	return [...ids].toSorted((a, b) => a.localeCompare(b));
+}
+/**
+* Resolve the default account selection and its source.
+*/
+function resolveDefaultFeishuAccountSelection(cfg) {
+	const preferredRaw = (cfg?.channels?.feishu)?.defaultAccount?.trim();
+	const preferred = preferredRaw ? normalizeAccountId(preferredRaw) : void 0;
+	if (preferred) return {
+		accountId: preferred,
+		source: "explicit-default"
+	};
+	const ids = listFeishuAccountIds(cfg);
+	if (ids.includes("default")) return {
+		accountId: DEFAULT_ACCOUNT_ID,
+		source: "mapped-default"
+	};
+	return {
+		accountId: ids[0] ?? "default",
+		source: "fallback"
+	};
+}
+/**
+* Resolve the default account ID.
+*/
+function resolveDefaultFeishuAccountId(cfg) {
+	return resolveDefaultFeishuAccountSelection(cfg).accountId;
+}
+/**
+* Get the raw account-specific config.
+*/
+function resolveAccountConfig(cfg, accountId) {
+	const accounts = (cfg?.channels?.feishu)?.accounts;
+	if (!accounts || typeof accounts !== "object") return;
+	return accounts[accountId];
+}
+/**
+* Merge top-level config with account-specific config.
+* Account-specific fields override top-level fields.
+*/
+function mergeFeishuAccountConfig(cfg, accountId) {
+	const { accounts: _ignored, defaultAccount: _ignoredDefaultAccount, ...base } = cfg?.channels?.feishu ?? {};
+	const account = resolveAccountConfig(cfg, accountId) ?? {};
+	return {
+		...base,
+		...account
+	};
+}
+function resolveFeishuCredentials(cfg, options) {
+	const normalizeString = (value) => {
+		if (typeof value !== "string") return;
+		const trimmed = value.trim();
+		return trimmed ? trimmed : void 0;
+	};
+	const resolveSecretLike = (value, path) => {
+		const asString = normalizeString(value);
+		if (asString) return asString;
+		if (options?.allowUnresolvedSecretRef && typeof value === "object" && value !== null) {
+			const rec = value;
+			const source = normalizeString(rec.source)?.toLowerCase();
+			const id = normalizeString(rec.id);
+			if (source === "env" && id) {
+				const envValue = normalizeString(process.env[id]);
+				if (envValue) return envValue;
+			}
+		}
+		if (options?.allowUnresolvedSecretRef) return normalizeSecretInputString(value);
+		return normalizeResolvedSecretInputString({
+			value,
+			path
+		});
+	};
+	const appId = resolveSecretLike(cfg?.appId, "channels.feishu.appId");
+	const appSecret = resolveSecretLike(cfg?.appSecret, "channels.feishu.appSecret");
+	if (!appId || !appSecret) return null;
+	return {
+		appId,
+		appSecret,
+		encryptKey: (cfg?.connectionMode ?? "websocket") === "webhook" ? resolveSecretLike(cfg?.encryptKey, "channels.feishu.encryptKey") : normalizeString(cfg?.encryptKey),
+		verificationToken: resolveSecretLike(cfg?.verificationToken, "channels.feishu.verificationToken"),
+		domain: cfg?.domain ?? "feishu"
+	};
+}
+/**
+* Resolve a complete Feishu account with merged config.
+*/
+function resolveFeishuAccount(params) {
+	const hasExplicitAccountId = typeof params.accountId === "string" && params.accountId.trim() !== "";
+	const defaultSelection = hasExplicitAccountId ? null : resolveDefaultFeishuAccountSelection(params.cfg);
+	const accountId = hasExplicitAccountId ? normalizeAccountId(params.accountId) : defaultSelection?.accountId ?? "default";
+	const selectionSource = hasExplicitAccountId ? "explicit" : defaultSelection?.source ?? "fallback";
+	const baseEnabled = (params.cfg.channels?.feishu)?.enabled !== false;
+	const merged = mergeFeishuAccountConfig(params.cfg, accountId);
+	const accountEnabled = merged.enabled !== false;
+	const enabled = baseEnabled && accountEnabled;
+	const creds = resolveFeishuCredentials(merged);
+	const accountName = merged.name;
+	return {
+		accountId,
+		selectionSource,
+		enabled,
+		configured: Boolean(creds),
+		name: typeof accountName === "string" ? accountName.trim() || void 0 : void 0,
+		appId: creds?.appId,
+		appSecret: creds?.appSecret,
+		encryptKey: creds?.encryptKey,
+		verificationToken: creds?.verificationToken,
+		domain: creds?.domain ?? "feishu",
+		config: merged
+	};
+}
+/**
+* List all enabled and configured accounts.
+*/
+function listEnabledFeishuAccounts(cfg) {
+	return listFeishuAccountIds(cfg).map((accountId) => resolveFeishuAccount({
+		cfg,
+		accountId
+	})).filter((account) => account.enabled && account.configured);
+}
+//#endregion
+export { listEnabledFeishuAccounts, listFeishuAccountIds, resolveDefaultFeishuAccountId, resolveFeishuAccount, resolveFeishuCredentials };

package/dist/src/app-scope-checker.js

@@ -0,0 +1,36 @@
+import { AppScopeCheckFailedError } from "./auth-errors.js";
+//#region src/app-scope-checker.ts
+const cache = /* @__PURE__ */ new Map();
+const CACHE_TTL_MS = 30 * 1e3;
+function invalidateAppScopeCache(appId) {
+	cache.delete(appId);
+}
+async function getAppGrantedScopes(sdk, appId, tokenType) {
+	const cached = cache.get(appId);
+	if (cached && Date.now() - cached.fetchedAt < CACHE_TTL_MS) return cached.rawScopes.filter((scope) => !tokenType || !scope.token_types || scope.token_types.includes(tokenType)).map((scope) => scope.scope);
+	try {
+		const response = await sdk.request({
+			method: "GET",
+			url: `/open-apis/application/v6/applications/${appId}`,
+			params: { lang: "zh_cn" }
+		});
+		if (response.code !== 0) throw new AppScopeCheckFailedError(appId);
+		const rawScopes = response.data?.app?.scopes?.filter((scope) => typeof scope.scope === "string" && scope.scope.length > 0) ?? [];
+		cache.set(appId, {
+			rawScopes,
+			fetchedAt: Date.now()
+		});
+		return rawScopes.filter((scope) => !tokenType || !scope.token_types || scope.token_types.includes(tokenType)).map((scope) => scope.scope);
+	} catch (error) {
+		if (error instanceof AppScopeCheckFailedError) throw error;
+		const statusCode = error.response?.status ?? error.status ?? error.statusCode;
+		if (statusCode === 400 || statusCode === 403) throw new AppScopeCheckFailedError(appId);
+		return [];
+	}
+}
+function missingScopes(appGranted, apiRequired) {
+	const granted = new Set(appGranted);
+	return apiRequired.filter((scope) => !granted.has(scope));
+}
+//#endregion
+export { getAppGrantedScopes, invalidateAppScopeCache, missingScopes };

package/dist/src/async.js

@@ -0,0 +1,34 @@
+//#region src/async.ts
+const RACE_TIMEOUT = Symbol("race-timeout");
+const RACE_ABORT = Symbol("race-abort");
+async function raceWithTimeoutAndAbort(promise, options = {}) {
+	if (options.abortSignal?.aborted) return { status: "aborted" };
+	if (options.timeoutMs === void 0 && !options.abortSignal) return {
+		status: "resolved",
+		value: await promise
+	};
+	let timeoutHandle;
+	let abortHandler;
+	const contenders = [promise];
+	if (options.timeoutMs !== void 0) contenders.push(new Promise((resolve) => {
+		timeoutHandle = setTimeout(() => resolve(RACE_TIMEOUT), options.timeoutMs);
+	}));
+	if (options.abortSignal) contenders.push(new Promise((resolve) => {
+		abortHandler = () => resolve(RACE_ABORT);
+		options.abortSignal?.addEventListener("abort", abortHandler, { once: true });
+	}));
+	try {
+		const result = await Promise.race(contenders);
+		if (result === RACE_TIMEOUT) return { status: "timeout" };
+		if (result === RACE_ABORT) return { status: "aborted" };
+		return {
+			status: "resolved",
+			value: result
+		};
+	} finally {
+		if (timeoutHandle) clearTimeout(timeoutHandle);
+		if (abortHandler) options.abortSignal?.removeEventListener("abort", abortHandler);
+	}
+}
+//#endregion
+export { raceWithTimeoutAndAbort };

package/dist/src/auth-errors.js

@@ -0,0 +1,72 @@
+//#region src/auth-errors.ts
+const LARK_ERROR = {
+	APP_SCOPE_MISSING: 99991672,
+	USER_SCOPE_INSUFFICIENT: 99991679,
+	TOKEN_INVALID: 99991668,
+	TOKEN_EXPIRED: 99991677,
+	REFRESH_TOKEN_INVALID: 20026,
+	REFRESH_TOKEN_EXPIRED: 20037,
+	REFRESH_TOKEN_REVOKED: 20064,
+	REFRESH_TOKEN_ALREADY_USED: 20073,
+	REFRESH_SERVER_ERROR: 20050
+};
+const REFRESH_TOKEN_RETRYABLE = new Set([LARK_ERROR.REFRESH_SERVER_ERROR]);
+const TOKEN_RETRY_CODES = new Set([LARK_ERROR.TOKEN_INVALID, LARK_ERROR.TOKEN_EXPIRED]);
+var NeedAuthorizationError = class extends Error {
+	userOpenId;
+	constructor(userOpenId) {
+		super("need_user_authorization");
+		this.name = "NeedAuthorizationError";
+		this.userOpenId = userOpenId;
+	}
+};
+var AppScopeCheckFailedError = class extends Error {
+	appId;
+	constructor(appId) {
+		super("应用缺少 application:application:self_manage 权限，无法查询应用权限配置。");
+		this.name = "AppScopeCheckFailedError";
+		this.appId = appId;
+	}
+};
+var AppScopeMissingError = class extends Error {
+	apiName;
+	missingScopes;
+	appId;
+	constructor(info) {
+		super(`应用缺少权限 [${info.scopes.join(", ")}]，请管理员在飞书开放平台开通。`);
+		this.name = "AppScopeMissingError";
+		this.apiName = info.apiName;
+		this.missingScopes = info.scopes;
+		this.appId = info.appId;
+	}
+};
+var UserAuthRequiredError = class extends Error {
+	userOpenId;
+	apiName;
+	requiredScopes;
+	appScopeVerified;
+	appId;
+	constructor(userOpenId, info) {
+		super("need_user_authorization");
+		this.name = "UserAuthRequiredError";
+		this.userOpenId = userOpenId;
+		this.apiName = info.apiName;
+		this.requiredScopes = info.scopes;
+		this.appScopeVerified = info.appScopeVerified ?? true;
+		this.appId = info.appId;
+	}
+};
+var UserScopeInsufficientError = class extends Error {
+	userOpenId;
+	apiName;
+	missingScopes;
+	constructor(userOpenId, info) {
+		super("user_scope_insufficient");
+		this.name = "UserScopeInsufficientError";
+		this.userOpenId = userOpenId;
+		this.apiName = info.apiName;
+		this.missingScopes = info.scopes;
+	}
+};
+//#endregion
+export { AppScopeCheckFailedError, AppScopeMissingError, LARK_ERROR, NeedAuthorizationError, REFRESH_TOKEN_RETRYABLE, TOKEN_RETRY_CODES, UserAuthRequiredError, UserScopeInsufficientError };