@tencent-weixin/openclaw-weixin 2.3.1 → 2.4.2

package/dist/src/auth/accounts.js

@@ -0,0 +1,326 @@
+import fs from "node:fs";
+import path from "node:path";
+import { normalizeAccountId } from "openclaw/plugin-sdk/account-id";
+import { resolveStateDir } from "../storage/state-dir.js";
+import { resolveFrameworkAllowFromPath } from "./pairing.js";
+import { logger } from "../util/logger.js";
+export const DEFAULT_BASE_URL = "https://ilinkai.weixin.qq.com";
+export const CDN_BASE_URL = "https://novac2c.cdn.weixin.qq.com/c2c";
+// ---------------------------------------------------------------------------
+// Account ID compatibility (legacy raw ID → normalized ID)
+// ---------------------------------------------------------------------------
+/**
+ * Pattern-based reverse of normalizeWeixinAccountId for known weixin ID suffixes.
+ * Used only as a compatibility fallback when loading accounts / sync bufs stored
+ * under the old raw ID.
+ * e.g. "b0f5860fdecb-im-bot" → "b0f5860fdecb@im.bot"
+ */
+export function deriveRawAccountId(normalizedId) {
+    if (normalizedId.endsWith("-im-bot")) {
+        return `${normalizedId.slice(0, -7)}@im.bot`;
+    }
+    if (normalizedId.endsWith("-im-wechat")) {
+        return `${normalizedId.slice(0, -10)}@im.wechat`;
+    }
+    return undefined;
+}
+// ---------------------------------------------------------------------------
+// Account index (persistent list of registered account IDs)
+// ---------------------------------------------------------------------------
+function resolveWeixinStateDir() {
+    return path.join(resolveStateDir(), "openclaw-weixin");
+}
+function resolveAccountIndexPath() {
+    return path.join(resolveWeixinStateDir(), "accounts.json");
+}
+/** Returns all accountIds registered via QR login. */
+export function listIndexedWeixinAccountIds() {
+    const filePath = resolveAccountIndexPath();
+    try {
+        if (!fs.existsSync(filePath))
+            return [];
+        const raw = fs.readFileSync(filePath, "utf-8");
+        const parsed = JSON.parse(raw);
+        if (!Array.isArray(parsed))
+            return [];
+        return parsed.filter((id) => typeof id === "string" && id.trim() !== "");
+    }
+    catch {
+        return [];
+    }
+}
+/** Add accountId to the persistent index (no-op if already present). */
+export function registerWeixinAccountId(accountId) {
+    const dir = resolveWeixinStateDir();
+    fs.mkdirSync(dir, { recursive: true });
+    const existing = listIndexedWeixinAccountIds();
+    if (existing.includes(accountId))
+        return;
+    const updated = [...existing, accountId];
+    fs.writeFileSync(resolveAccountIndexPath(), JSON.stringify(updated, null, 2), "utf-8");
+}
+/** Remove accountId from the persistent index. */
+export function unregisterWeixinAccountId(accountId) {
+    const existing = listIndexedWeixinAccountIds();
+    const updated = existing.filter((id) => id !== accountId);
+    if (updated.length !== existing.length) {
+        fs.writeFileSync(resolveAccountIndexPath(), JSON.stringify(updated, null, 2), "utf-8");
+    }
+}
+/**
+ * Remove stale accounts that share the same userId as the newly-bound account.
+ * Called after a successful QR login to ensure only the latest account remains
+ * for a given WeChat user, preventing ambiguous contextToken matches.
+ *
+ * @param onClearContextTokens callback to clear context tokens for the removed account
+ */
+export function clearStaleAccountsForUserId(currentAccountId, userId, onClearContextTokens) {
+    if (!userId)
+        return;
+    const allIds = listIndexedWeixinAccountIds();
+    for (const id of allIds) {
+        if (id === currentAccountId)
+            continue;
+        const data = loadWeixinAccount(id);
+        if (data?.userId?.trim() === userId) {
+            logger.info(`clearStaleAccountsForUserId: removing stale account=${id} (same userId=${userId})`);
+            onClearContextTokens?.(id);
+            clearWeixinAccount(id);
+            unregisterWeixinAccountId(id);
+        }
+    }
+}
+function resolveAccountsDir() {
+    return path.join(resolveWeixinStateDir(), "accounts");
+}
+function resolveAccountPath(accountId) {
+    return path.join(resolveAccountsDir(), `${accountId}.json`);
+}
+/**
+ * Legacy single-file token: `credentials/openclaw-weixin/credentials.json` (pre per-account files).
+ */
+function loadLegacyToken() {
+    const legacyPath = path.join(resolveStateDir(), "credentials", "openclaw-weixin", "credentials.json");
+    try {
+        if (!fs.existsSync(legacyPath))
+            return undefined;
+        const raw = fs.readFileSync(legacyPath, "utf-8");
+        const parsed = JSON.parse(raw);
+        return typeof parsed.token === "string" ? parsed.token : undefined;
+    }
+    catch {
+        return undefined;
+    }
+}
+function readAccountFile(filePath) {
+    try {
+        if (fs.existsSync(filePath)) {
+            return JSON.parse(fs.readFileSync(filePath, "utf-8"));
+        }
+    }
+    catch {
+        // ignore
+    }
+    return null;
+}
+/** Load account data by ID, with compatibility fallbacks. */
+export function loadWeixinAccount(accountId) {
+    // Primary: try given accountId (normalized IDs written after this change).
+    const primary = readAccountFile(resolveAccountPath(accountId));
+    if (primary)
+        return primary;
+    // Compatibility: if the given ID is normalized, derive the old raw filename
+    // (e.g. "b0f5860fdecb-im-bot" → "b0f5860fdecb@im.bot") for existing installs.
+    const rawId = deriveRawAccountId(accountId);
+    if (rawId) {
+        const compat = readAccountFile(resolveAccountPath(rawId));
+        if (compat)
+            return compat;
+    }
+    // Legacy fallback: read token from old single-account credentials file.
+    const token = loadLegacyToken();
+    if (token)
+        return { token };
+    return null;
+}
+/**
+ * Persist account data after QR login (merges into existing file).
+ * - token: overwritten when provided.
+ * - baseUrl: stored when non-empty; resolveWeixinAccount falls back to DEFAULT_BASE_URL.
+ * - userId: set when `update.userId` is provided; omitted from file when cleared to empty.
+ */
+export function saveWeixinAccount(accountId, update) {
+    const dir = resolveAccountsDir();
+    fs.mkdirSync(dir, { recursive: true });
+    const existing = loadWeixinAccount(accountId) ?? {};
+    const token = update.token?.trim() || existing.token;
+    const baseUrl = update.baseUrl?.trim() || existing.baseUrl;
+    const userId = update.userId !== undefined
+        ? update.userId.trim() || undefined
+        : existing.userId?.trim() || undefined;
+    const data = {
+        ...(token ? { token, savedAt: new Date().toISOString() } : {}),
+        ...(baseUrl ? { baseUrl } : {}),
+        ...(userId ? { userId } : {}),
+    };
+    const filePath = resolveAccountPath(accountId);
+    fs.writeFileSync(filePath, JSON.stringify(data, null, 2), "utf-8");
+    try {
+        fs.chmodSync(filePath, 0o600);
+    }
+    catch {
+        // best-effort
+    }
+}
+/**
+ * Remove all files associated with an account:
+ *   - accounts/{accountId}.json                  (credentials)
+ *   - accounts/{accountId}.sync.json             (getUpdates sync buf)
+ *   - accounts/{accountId}.context-tokens.json   (context tokens on disk)
+ *   - credentials/openclaw-weixin-{accountId}-allowFrom.json (authorized users)
+ */
+export function clearWeixinAccount(accountId) {
+    const dir = resolveAccountsDir();
+    const accountFiles = [
+        `${accountId}.json`,
+        `${accountId}.sync.json`,
+        `${accountId}.context-tokens.json`,
+    ];
+    for (const file of accountFiles) {
+        try {
+            fs.unlinkSync(path.join(dir, file));
+        }
+        catch {
+            // ignore if not found
+        }
+    }
+    try {
+        fs.unlinkSync(resolveFrameworkAllowFromPath(accountId));
+    }
+    catch {
+        // ignore if not found
+    }
+}
+/**
+ * Resolve the openclaw.json config file path.
+ * Checks OPENCLAW_CONFIG env var, then state dir.
+ */
+function resolveConfigPath() {
+    const envPath = process.env.OPENCLAW_CONFIG?.trim();
+    if (envPath)
+        return envPath;
+    return path.join(resolveStateDir(), "openclaw.json");
+}
+/**
+ * Read `routeTag` from openclaw.json (for callers without an `OpenClawConfig` object).
+ * Checks per-account `channels.<id>.accounts[accountId].routeTag` first, then section-level
+ * `channels.<id>.routeTag`. Matches `feat_weixin_extension` behavior; channel key is `"openclaw-weixin"`.
+ *
+ * The config is cached after the first read since routeTag does not change at runtime.
+ */
+let cachedRouteTagSection;
+function loadRouteTagSection() {
+    if (cachedRouteTagSection !== undefined)
+        return cachedRouteTagSection;
+    try {
+        const configPath = resolveConfigPath();
+        if (!fs.existsSync(configPath)) {
+            cachedRouteTagSection = null;
+            return null;
+        }
+        const raw = fs.readFileSync(configPath, "utf-8");
+        const cfg = JSON.parse(raw);
+        const channels = cfg.channels;
+        const section = channels?.["openclaw-weixin"] ?? null;
+        cachedRouteTagSection = section;
+        return section;
+    }
+    catch {
+        cachedRouteTagSection = null;
+        return null;
+    }
+}
+export function loadConfigRouteTag(accountId) {
+    const section = loadRouteTagSection();
+    if (!section)
+        return undefined;
+    if (accountId) {
+        const accounts = section.accounts;
+        const tag = accounts?.[accountId]?.routeTag;
+        if (typeof tag === "number")
+            return String(tag);
+        if (typeof tag === "string" && tag.trim())
+            return tag.trim();
+    }
+    if (typeof section.routeTag === "number")
+        return String(section.routeTag);
+    return typeof section.routeTag === "string" && section.routeTag.trim()
+        ? section.routeTag.trim()
+        : undefined;
+}
+/**
+ * Read `botAgent` from `channels.openclaw-weixin.botAgent` in openclaw.json.
+ * Returns the raw configured string (caller is responsible for sanitization)
+ * or undefined when not set. Reuses the cached channel section.
+ */
+export function loadConfigBotAgent() {
+    const section = loadRouteTagSection();
+    if (!section)
+        return undefined;
+    const value = section.botAgent;
+    return typeof value === "string" && value.trim() ? value : undefined;
+}
+/**
+ * Bump `channels.openclaw-weixin.channelConfigUpdatedAt` in openclaw.json on each successful login
+ * so the gateway reloads config from disk (no empty `accounts: {}` placeholder).
+ */
+export async function triggerWeixinChannelReload() {
+    try {
+        const { loadConfig, writeConfigFile } = await import("openclaw/plugin-sdk/config-runtime");
+        const cfg = loadConfig();
+        const channels = (cfg.channels ?? {});
+        const existing = channels["openclaw-weixin"] ?? {};
+        const updated = {
+            ...cfg,
+            channels: {
+                ...channels,
+                "openclaw-weixin": {
+                    ...existing,
+                    channelConfigUpdatedAt: new Date().toISOString(),
+                },
+            },
+        };
+        await writeConfigFile(updated);
+        logger.info("triggerWeixinChannelReload: wrote channel config to openclaw.json");
+    }
+    catch (err) {
+        logger.warn(`triggerWeixinChannelReload: failed to update config: ${String(err)}`);
+    }
+}
+/** List accountIds from the index file (written at QR login). */
+export function listWeixinAccountIds(_cfg) {
+    return listIndexedWeixinAccountIds();
+}
+/** Resolve a weixin account by ID, merging config and stored credentials. */
+export function resolveWeixinAccount(cfg, accountId) {
+    const raw = accountId?.trim();
+    if (!raw) {
+        throw new Error("weixin: accountId is required (no default account)");
+    }
+    const id = normalizeAccountId(raw);
+    const section = cfg.channels?.["openclaw-weixin"];
+    const accountCfg = section?.accounts?.[id] ?? section ?? {};
+    const accountData = loadWeixinAccount(id);
+    const token = accountData?.token?.trim() || undefined;
+    const stateBaseUrl = accountData?.baseUrl?.trim() || "";
+    return {
+        accountId: id,
+        baseUrl: stateBaseUrl || DEFAULT_BASE_URL,
+        cdnBaseUrl: accountCfg.cdnBaseUrl?.trim() || CDN_BASE_URL,
+        token,
+        enabled: accountCfg.enabled !== false,
+        configured: Boolean(token),
+        name: accountCfg.name?.trim() || undefined,
+    };
+}
+//# sourceMappingURL=accounts.js.map

package/dist/src/auth/accounts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"accounts.js","sourceRoot":"","sources":["../../../src/auth/accounts.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAC;AAGpE,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,6BAA6B,EAAE,MAAM,cAAc,CAAC;AAC7D,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAE3C,MAAM,CAAC,MAAM,gBAAgB,GAAG,+BAA+B,CAAC;AAChE,MAAM,CAAC,MAAM,YAAY,GAAG,uCAAuC,CAAC;AAGpE,8EAA8E;AAC9E,2DAA2D;AAC3D,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,YAAoB;IACrD,IAAI,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QACrC,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAC/C,CAAC;IACD,IAAI,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QACxC,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,YAAY,CAAC;IACnD,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,8EAA8E;AAC9E,4DAA4D;AAC5D,8EAA8E;AAE9E,SAAS,qBAAqB;IAC5B,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,EAAE,iBAAiB,CAAC,CAAC;AACzD,CAAC;AAED,SAAS,uBAAuB;IAC9B,OAAO,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,eAAe,CAAC,CAAC;AAC7D,CAAC;AAED,sDAAsD;AACtD,MAAM,UAAU,2BAA2B;IACzC,MAAM,QAAQ,GAAG,uBAAuB,EAAE,CAAC;IAC3C,IAAI,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,EAAE,CAAC;QACxC,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC;YAAE,OAAO,EAAE,CAAC;QACtC,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,EAAgB,EAAE,CAAC,OAAO,EAAE,KAAK,QAAQ,IAAI,EAAE,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACzF,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,wEAAwE;AACxE,MAAM,UAAU,uBAAuB,CAAC,SAAiB;IACvD,MAAM,GAAG,GAAG,qBAAqB,EAAE,CAAC;IACpC,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEvC,MAAM,QAAQ,GAAG,2BAA2B,EAAE,CAAC;IAC/C,IAAI,QAAQ,CAAC,QAAQ,CAAC,SAAS,CAAC;QAAE,OAAO;IAEzC,MAAM,OAAO,GAAG,CAAC,GAAG,QAAQ,EAAE,SAAS,CAAC,CAAC;IACzC,EAAE,CAAC,aAAa,CAAC,uBAAuB,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;AACzF,CAAC;AAED,kDAAkD;AAClD,MAAM,UAAU,yBAAyB,CAAC,SAAiB;IACzD,MAAM,QAAQ,GAAG,2BAA2B,EAAE,CAAC;IAC/C,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,SAAS,CAAC,CAAC;IAC1D,IAAI,OAAO,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM,EAAE,CAAC;QACvC,EAAE,CAAC,aAAa,CAAC,uBAAuB,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IACzF,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,2BAA2B,CACzC,gBAAwB,EACxB,MAAc,EACd,oBAAkD;IAElD,IAAI,CAAC,MAAM;QAAE,OAAO;IACpB,MAAM,MAAM,GAAG,2BAA2B,EAAE,CAAC;IAC7C,KAAK,MAAM,EAAE,IAAI,MAAM,EAAE,CAAC;QACxB,IAAI,EAAE,KAAK,gBAAgB;YAAE,SAAS;QACtC,MAAM,IAAI,GAAG,iBAAiB,CAAC,EAAE,CAAC,CAAC;QACnC,IAAI,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,MAAM,EAAE,CAAC;YACpC,MAAM,CAAC,IAAI,CAAC,uDAAuD,EAAE,iBAAiB,MAAM,GAAG,CAAC,CAAC;YACjG,oBAAoB,EAAE,CAAC,EAAE,CAAC,CAAC;YAC3B,kBAAkB,CAAC,EAAE,CAAC,CAAC;YACvB,yBAAyB,CAAC,EAAE,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;AACH,CAAC;AAeD,SAAS,kBAAkB;IACzB,OAAO,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,UAAU,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,kBAAkB,CAAC,SAAiB;IAC3C,OAAO,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE,EAAE,GAAG,SAAS,OAAO,CAAC,CAAC;AAC9D,CAAC;AAED;;GAEG;AACH,SAAS,eAAe;IACtB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,EAAE,aAAa,EAAE,iBAAiB,EAAE,kBAAkB,CAAC,CAAC;IACtG,IAAI,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC;YAAE,OAAO,SAAS,CAAC;QACjD,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QACjD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAuB,CAAC;QACrD,OAAO,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;IACrE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,QAAgB;IACvC,IAAI,CAAC;QACH,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC5B,OAAO,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAsB,CAAC;QAC7E,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,SAAS;IACX,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,6DAA6D;AAC7D,MAAM,UAAU,iBAAiB,CAAC,SAAiB;IACjD,2EAA2E;IAC3E,MAAM,OAAO,GAAG,eAAe,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC,CAAC;IAC/D,IAAI,OAAO;QAAE,OAAO,OAAO,CAAC;IAE5B,4EAA4E;IAC5E,8EAA8E;IAC9E,MAAM,KAAK,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAC;IAC5C,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,MAAM,GAAG,eAAe,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC,CAAC;QAC1D,IAAI,MAAM;YAAE,OAAO,MAAM,CAAC;IAC5B,CAAC;IAED,wEAAwE;IACxE,MAAM,KAAK,GAAG,eAAe,EAAE,CAAC;IAChC,IAAI,KAAK;QAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAE5B,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAC/B,SAAiB,EACjB,MAA6D;IAE7D,MAAM,GAAG,GAAG,kBAAkB,EAAE,CAAC;IACjC,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEvC,MAAM,QAAQ,GAAG,iBAAiB,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC;IAEpD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,IAAI,QAAQ,CAAC,KAAK,CAAC;IACrD,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,EAAE,IAAI,EAAE,IAAI,QAAQ,CAAC,OAAO,CAAC;IAC3D,MAAM,MAAM,GACV,MAAM,CAAC,MAAM,KAAK,SAAS;QACzB,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,SAAS;QACnC,CAAC,CAAC,QAAQ,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,SAAS,CAAC;IAE3C,MAAM,IAAI,GAAsB;QAC9B,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9D,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/B,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC9B,CAAC;IAEF,MAAM,QAAQ,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAC;IAC/C,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IACnE,IAAI,CAAC;QACH,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,cAAc;IAChB,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,kBAAkB,CAAC,SAAiB;IAClD,MAAM,GAAG,GAAG,kBAAkB,EAAE,CAAC;IACjC,MAAM,YAAY,GAAG;QACnB,GAAG,SAAS,OAAO;QACnB,GAAG,SAAS,YAAY;QACxB,GAAG,SAAS,sBAAsB;KACnC,CAAC;IACF,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE,CAAC;QAChC,IAAI,CAAC;YACH,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC;QACtC,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;IACH,CAAC;IACD,IAAI,CAAC;QACH,EAAE,CAAC,UAAU,CAAC,6BAA6B,CAAC,SAAS,CAAC,CAAC,CAAC;IAC1D,CAAC;IAAC,MAAM,CAAC;QACP,sBAAsB;IACxB,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,iBAAiB;IACxB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,EAAE,CAAC;IACpD,IAAI,OAAO;QAAE,OAAO,OAAO,CAAC;IAC5B,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,EAAE,eAAe,CAAC,CAAC;AACvD,CAAC;AAED;;;;;;GAMG;AACH,IAAI,qBAAiE,CAAC;AAEtE,SAAS,mBAAmB;IAC1B,IAAI,qBAAqB,KAAK,SAAS;QAAE,OAAO,qBAAqB,CAAC;IACtE,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,iBAAiB,EAAE,CAAC;QACvC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAAC,qBAAqB,GAAG,IAAI,CAAC;YAAC,OAAO,IAAI,CAAC;QAAC,CAAC;QAC9E,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QACjD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAA4B,CAAC;QACvD,MAAM,QAAQ,GAAG,GAAG,CAAC,QAA+C,CAAC;QACrE,MAAM,OAAO,GAAI,QAAQ,EAAE,CAAC,iBAAiB,CAA6B,IAAI,IAAI,CAAC;QACnF,qBAAqB,GAAG,OAAO,CAAC;QAChC,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,qBAAqB,GAAG,IAAI,CAAC;QAC7B,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,SAAkB;IACnD,MAAM,OAAO,GAAG,mBAAmB,EAAE,CAAC;IACtC,IAAI,CAAC,OAAO;QAAE,OAAO,SAAS,CAAC;IAC/B,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,QAAQ,GAAG,OAAO,CAAC,QAA+D,CAAC;QACzF,MAAM,GAAG,GAAG,QAAQ,EAAE,CAAC,SAAS,CAAC,EAAE,QAAQ,CAAC;QAC5C,IAAI,OAAO,GAAG,KAAK,QAAQ;YAAE,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;QAChD,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,IAAI,EAAE;YAAE,OAAO,GAAG,CAAC,IAAI,EAAE,CAAC;IAC/D,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC1E,OAAO,OAAO,OAAO,CAAC,QAAQ,KAAK,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE;QACpE,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE;QACzB,CAAC,CAAC,SAAS,CAAC;AAChB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,MAAM,OAAO,GAAG,mBAAmB,EAAE,CAAC;IACtC,IAAI,CAAC,OAAO;QAAE,OAAO,SAAS,CAAC;IAC/B,MAAM,KAAK,GAAG,OAAO,CAAC,QAAQ,CAAC;IAC/B,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AACvE,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,0BAA0B;IAC9C,IAAI,CAAC;QACH,MAAM,EAAE,UAAU,EAAE,eAAe,EAAE,GAAG,MAAM,MAAM,CAAC,oCAAoC,CAAC,CAAC;QAC3F,MAAM,GAAG,GAAG,UAAU,EAAE,CAAC;QACzB,MAAM,QAAQ,GAAG,CAAC,GAAG,CAAC,QAAQ,IAAI,EAAE,CAA4B,CAAC;QACjE,MAAM,QAAQ,GAAI,QAAQ,CAAC,iBAAiB,CAAyC,IAAI,EAAE,CAAC;QAC5F,MAAM,OAAO,GAAmB;YAC9B,GAAG,GAAG;YACN,QAAQ,EAAE;gBACR,GAAG,QAAQ;gBACX,iBAAiB,EAAE;oBACjB,GAAG,QAAQ;oBACX,sBAAsB,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACjD;aACF;SACF,CAAC;QACF,MAAM,eAAe,CAAC,OAAO,CAAC,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC,mEAAmE,CAAC,CAAC;IACnF,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,IAAI,CAAC,wDAAwD,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IACrF,CAAC;AACH,CAAC;AA+BD,iEAAiE;AACjE,MAAM,UAAU,oBAAoB,CAAC,IAAoB;IACvD,OAAO,2BAA2B,EAAE,CAAC;AACvC,CAAC;AAED,6EAA6E;AAC7E,MAAM,UAAU,oBAAoB,CAClC,GAAmB,EACnB,SAAyB;IAEzB,MAAM,GAAG,GAAG,SAAS,EAAE,IAAI,EAAE,CAAC;IAC9B,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IACD,MAAM,EAAE,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IACnC,MAAM,OAAO,GAAG,GAAG,CAAC,QAAQ,EAAE,CAAC,iBAAiB,CAAoC,CAAC;IACrF,MAAM,UAAU,GAAwB,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC,IAAI,OAAO,IAAI,EAAE,CAAC;IAEjF,MAAM,WAAW,GAAG,iBAAiB,CAAC,EAAE,CAAC,CAAC;IAC1C,MAAM,KAAK,GAAG,WAAW,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,SAAS,CAAC;IACtD,MAAM,YAAY,GAAG,WAAW,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;IAExD,OAAO;QACL,SAAS,EAAE,EAAE;QACb,OAAO,EAAE,YAAY,IAAI,gBAAgB;QACzC,UAAU,EAAE,UAAU,CAAC,UAAU,EAAE,IAAI,EAAE,IAAI,YAAY;QACzD,KAAK;QACL,OAAO,EAAE,UAAU,CAAC,OAAO,KAAK,KAAK;QACrC,UAAU,EAAE,OAAO,CAAC,KAAK,CAAC;QAC1B,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,SAAS;KAC3C,CAAC;AACJ,CAAC"}

package/dist/src/auth/login-qr.js

@@ -0,0 +1,332 @@
+import { randomUUID } from "node:crypto";
+import { apiGetFetch, apiPostFetch } from "../api/api.js";
+import { listIndexedWeixinAccountIds, loadWeixinAccount } from "./accounts.js";
+import { logger } from "../util/logger.js";
+import { redactToken } from "../util/redact.js";
+const ACTIVE_LOGIN_TTL_MS = 5 * 60_000;
+/** Client-side timeout for the long-poll get_qrcode_status request. */
+const QR_LONG_POLL_TIMEOUT_MS = 35_000;
+/** Default `bot_type` for ilink get_bot_qrcode / get_qrcode_status (this channel build). */
+export const DEFAULT_ILINK_BOT_TYPE = "3";
+/** Fixed API base URL for all QR code requests. */
+const FIXED_BASE_URL = "https://ilinkai.weixin.qq.com";
+const activeLogins = new Map();
+function isLoginFresh(login) {
+    return Date.now() - login.startedAt < ACTIVE_LOGIN_TTL_MS;
+}
+/** Remove all expired entries from the activeLogins map to prevent memory leaks. */
+function purgeExpiredLogins() {
+    for (const [id, login] of activeLogins) {
+        if (!isLoginFresh(login)) {
+            activeLogins.delete(id);
+        }
+    }
+}
+/** 获取本地已登录账号的 bot token 列表，最多返回最新的 10 个。 */
+function getLocalBotTokenList() {
+    const accountIds = listIndexedWeixinAccountIds();
+    const tokens = [];
+    // 从最新注册的账号开始取（列表末尾为最新）
+    for (let i = accountIds.length - 1; i >= 0 && tokens.length < 10; i--) {
+        const data = loadWeixinAccount(accountIds[i]);
+        const token = data?.token?.trim();
+        if (token) {
+            tokens.push(token);
+        }
+    }
+    return tokens;
+}
+async function fetchQRCode(apiBaseUrl, botType) {
+    logger.info(`NewFetching QR code from: ${apiBaseUrl} bot_type=${botType}`);
+    const localTokenList = getLocalBotTokenList();
+    logger.info(`newfetchQRCode: local_token_list count=${localTokenList.length}`);
+    const rawText = await apiPostFetch({
+        baseUrl: apiBaseUrl,
+        endpoint: `ilink/bot/get_bot_qrcode?bot_type=${encodeURIComponent(botType)}`,
+        body: JSON.stringify({ local_token_list: localTokenList }),
+        label: "fetchQRCode",
+    });
+    return JSON.parse(rawText);
+}
+/** 从 stdin 读取一行用户输入，输出提示语后等待回车确认，返回 trim 后的字符串。 */
+async function readVerifyCodeFromStdin(prompt) {
+    process.stdout.write(prompt);
+    return new Promise((resolve) => {
+        let input = "";
+        const onData = (chunk) => {
+            const str = chunk.toString();
+            input += str;
+            if (input.includes("\n")) {
+                process.stdin.removeListener("data", onData);
+                process.stdin.pause();
+                resolve(input.trim());
+            }
+        };
+        process.stdin.resume();
+        process.stdin.setEncoding("utf-8");
+        process.stdin.on("data", onData);
+    });
+}
+async function pollQRStatus(apiBaseUrl, qrcode, verifyCode) {
+    logger.debug(`Long-poll QR status from: ${apiBaseUrl} qrcode=***`);
+    try {
+        let endpoint = `ilink/bot/get_qrcode_status?qrcode=${encodeURIComponent(qrcode)}`;
+        if (verifyCode) {
+            endpoint += `&verify_code=${encodeURIComponent(verifyCode)}`;
+        }
+        const rawText = await apiGetFetch({
+            baseUrl: apiBaseUrl,
+            endpoint,
+            timeoutMs: QR_LONG_POLL_TIMEOUT_MS,
+            label: "pollQRStatus",
+        });
+        logger.debug(`pollQRStatus: body=${rawText.substring(0, 200)}`);
+        return JSON.parse(rawText);
+    }
+    catch (err) {
+        if (err instanceof Error && err.name === "AbortError") {
+            logger.debug(`pollQRStatus: client-side timeout after ${QR_LONG_POLL_TIMEOUT_MS}ms, returning wait`);
+            return { status: "wait" };
+        }
+        // 网关超时（如 Cloudflare 524）或其他网络错误，视为等待状态继续轮询
+        logger.warn(`pollQRStatus: network/gateway error, will retry: ${String(err)}`);
+        return { status: "wait" };
+    }
+}
+/**
+ * 在终端展示二维码及备用链接。
+ * 供 CLI 登录流程和 MCP Tool 登录流程共同复用。
+ */
+export async function displayQRCode(qrcodeUrl) {
+    try {
+        const qrterm = await import("qrcode-terminal");
+        qrterm.default.generate(qrcodeUrl, { small: true });
+        process.stdout.write(`若二维码未能显示或无法使用，你可以访问以下链接以继续：\n`);
+        process.stdout.write(`${qrcodeUrl}\n`);
+    }
+    catch {
+        process.stdout.write(`若二维码未能显示或无法使用，你可以访问以下链接以继续：\n`);
+        process.stdout.write(`${qrcodeUrl}\n`);
+    }
+}
+export async function startWeixinLoginWithQr(opts) {
+    const sessionKey = opts.accountId || randomUUID();
+    purgeExpiredLogins();
+    const existing = activeLogins.get(sessionKey);
+    if (!opts.force && existing && isLoginFresh(existing) && existing.qrcodeUrl) {
+        return {
+            qrcodeUrl: existing.qrcodeUrl,
+            message: "二维码已显示，请用手机微信扫描。",
+            sessionKey,
+        };
+    }
+    try {
+        const botType = opts.botType || DEFAULT_ILINK_BOT_TYPE;
+        logger.info(`Starting Weixin login with bot_type=${botType}`);
+        const qrResponse = await fetchQRCode(FIXED_BASE_URL, botType);
+        logger.info(`QR code received, qrcode=${redactToken(qrResponse.qrcode)} imgContentLen=${qrResponse.qrcode_img_content?.length ?? 0}`);
+        logger.info(`二维码链接: ${qrResponse.qrcode_img_content}`);
+        const login = {
+            sessionKey,
+            id: randomUUID(),
+            qrcode: qrResponse.qrcode,
+            qrcodeUrl: qrResponse.qrcode_img_content,
+            startedAt: Date.now(),
+        };
+        activeLogins.set(sessionKey, login);
+        return {
+            qrcodeUrl: qrResponse.qrcode_img_content,
+            message: "用手机微信扫描以下二维码，以继续连接：",
+            sessionKey,
+        };
+    }
+    catch (err) {
+        logger.error(`Failed to start Weixin login: ${String(err)}`);
+        return {
+            message: `Failed to start login: ${String(err)}`,
+            sessionKey,
+        };
+    }
+}
+const MAX_QR_REFRESH_COUNT = 3;
+/**
+ * 刷新二维码并展示给用户，返回是否成功。
+ * 成功时更新 activeLogin 的 qrcode/qrcodeUrl/startedAt，并重置 scannedPrinted。
+ */
+async function refreshQRCode(activeLogin, botType, qrRefreshCount, onScannedReset) {
+    process.stdout.write(`\n⏳ 正在刷新二维码...(${qrRefreshCount}/${MAX_QR_REFRESH_COUNT})\n`);
+    logger.info(`waitForWeixinLogin: refreshing QR code (${qrRefreshCount}/${MAX_QR_REFRESH_COUNT})`);
+    try {
+        const qrResponse = await fetchQRCode(FIXED_BASE_URL, botType);
+        activeLogin.qrcode = qrResponse.qrcode;
+        activeLogin.qrcodeUrl = qrResponse.qrcode_img_content;
+        activeLogin.startedAt = Date.now();
+        onScannedReset();
+        logger.info(`waitForWeixinLogin: new QR code obtained qrcode=${redactToken(qrResponse.qrcode)}`);
+        process.stdout.write(`🔄 二维码已更新，请重新扫描。\n\n`);
+        await displayQRCode(qrResponse.qrcode_img_content);
+        return { success: true };
+    }
+    catch (refreshErr) {
+        logger.error(`waitForWeixinLogin: failed to refresh QR code: ${String(refreshErr)}`);
+        return { success: false, message: `刷新二维码失败: ${String(refreshErr)}` };
+    }
+}
+export async function waitForWeixinLogin(opts) {
+    let activeLogin = activeLogins.get(opts.sessionKey);
+    if (!activeLogin) {
+        logger.warn(`waitForWeixinLogin: no active login sessionKey=${opts.sessionKey}`);
+        return {
+            connected: false,
+            message: "当前没有进行中的登录，请先发起登录。",
+        };
+    }
+    if (!isLoginFresh(activeLogin)) {
+        logger.warn(`waitForWeixinLogin: login QR expired sessionKey=${opts.sessionKey}`);
+        activeLogins.delete(opts.sessionKey);
+        return {
+            connected: false,
+            message: "二维码已过期，请重新生成。",
+        };
+    }
+    const timeoutMs = Math.max(opts.timeoutMs ?? 480_000, 1000);
+    const deadline = Date.now() + timeoutMs;
+    let scannedPrinted = false;
+    let qrRefreshCount = 1;
+    // Initialize the effective polling base URL; may be updated on IDC redirect.
+    activeLogin.currentApiBaseUrl = FIXED_BASE_URL;
+    logger.info("Starting to poll QR code status...");
+    while (Date.now() < deadline) {
+        try {
+            const currentBaseUrl = activeLogin.currentApiBaseUrl ?? FIXED_BASE_URL;
+            const statusResponse = await pollQRStatus(currentBaseUrl, activeLogin.qrcode, activeLogin.pendingVerifyCode);
+            logger.debug(`pollQRStatus: status=${statusResponse.status} hasBotToken=${Boolean(statusResponse.bot_token)} hasBotId=${Boolean(statusResponse.ilink_bot_id)}`);
+            activeLogin.status = statusResponse.status;
+            switch (statusResponse.status) {
+                case "wait":
+                    if (opts.verbose) {
+                        process.stdout.write(".");
+                    }
+                    break;
+                case "scaned":
+                    // 若携带了配对码且服务端返回 scaned，说明验证码正确，清除暂存
+                    if (activeLogin.pendingVerifyCode) {
+                        logger.info("verify code accepted, resuming polling");
+                        activeLogin.pendingVerifyCode = undefined;
+                    }
+                    if (!scannedPrinted) {
+                        process.stdout.write("\n正在验证\n");
+                        scannedPrinted = true;
+                    }
+                    break;
+                case "need_verifycode": {
+                    // 首次进入提示输入，再次进入（已有 pendingVerifyCode）说明上次输入错误
+                    const verifyPrompt = activeLogin.pendingVerifyCode
+                        ? "❌ 你输入的数字不匹配，请重新输入："
+                        : "输入手机微信显示的数字，以继续连接：";
+                    const code = await readVerifyCodeFromStdin(verifyPrompt);
+                    activeLogin.pendingVerifyCode = code;
+                    // 立即进入下一次轮询，不等待 1s
+                    continue;
+                }
+                case "expired": {
+                    qrRefreshCount++;
+                    if (qrRefreshCount > MAX_QR_REFRESH_COUNT) {
+                        logger.warn(`waitForWeixinLogin: QR expired ${MAX_QR_REFRESH_COUNT} times, giving up sessionKey=${opts.sessionKey}`);
+                        activeLogins.delete(opts.sessionKey);
+                        return {
+                            connected: false,
+                            message: "二维码多次失效，连接流程已停止。请稍后再试。",
+                        };
+                    }
+                    process.stdout.write(`\n⏳ 二维码已过期，正在刷新...\n`);
+                    const expiredRefreshResult = await refreshQRCode(activeLogin, opts.botType || DEFAULT_ILINK_BOT_TYPE, qrRefreshCount, () => { scannedPrinted = false; });
+                    if (!expiredRefreshResult.success) {
+                        activeLogins.delete(opts.sessionKey);
+                        return { connected: false, message: expiredRefreshResult.message };
+                    }
+                    break;
+                }
+                case "verify_code_blocked": {
+                    logger.warn(`waitForWeixinLogin: verify code blocked, qrRefreshCount=${qrRefreshCount} sessionKey=${opts.sessionKey}`);
+                    process.stdout.write("\n⛔ 多次输入错误，请稍后再试。\n");
+                    // 清除配对码暂存
+                    activeLogin.pendingVerifyCode = undefined;
+                    qrRefreshCount++;
+                    if (qrRefreshCount > MAX_QR_REFRESH_COUNT) {
+                        logger.warn(`waitForWeixinLogin: verify_code_blocked and QR refresh limit reached, giving up sessionKey=${opts.sessionKey}`);
+                        activeLogins.delete(opts.sessionKey);
+                        return {
+                            connected: false,
+                            message: "多次输入错误，连接流程已停止。请稍后再试。",
+                        };
+                    }
+                    const blockedRefreshResult = await refreshQRCode(activeLogin, opts.botType || DEFAULT_ILINK_BOT_TYPE, qrRefreshCount, () => { scannedPrinted = false; });
+                    if (!blockedRefreshResult.success) {
+                        activeLogins.delete(opts.sessionKey);
+                        return { connected: false, message: blockedRefreshResult.message };
+                    }
+                    break;
+                }
+                case "binded_redirect": {
+                    logger.info(`waitForWeixinLogin: binded_redirect received, bot already bound sessionKey=${opts.sessionKey}`);
+                    process.stdout.write("\n✅ 已连接过此 OpenClaw，无需重复连接。\n");
+                    activeLogins.delete(opts.sessionKey);
+                    return {
+                        connected: false,
+                        message: "已连接过此 OpenClaw，无需重复连接。",
+                    };
+                }
+                case "scaned_but_redirect": {
+                    const redirectHost = statusResponse.redirect_host;
+                    if (redirectHost) {
+                        const newBaseUrl = `https://${redirectHost}`;
+                        activeLogin.currentApiBaseUrl = newBaseUrl;
+                        logger.info(`waitForWeixinLogin: IDC redirect, switching polling host to ${redirectHost}`);
+                    }
+                    else {
+                        logger.warn(`waitForWeixinLogin: received scaned_but_redirect but redirect_host is missing, continuing with current host`);
+                    }
+                    break;
+                }
+                case "confirmed": {
+                    if (!statusResponse.ilink_bot_id) {
+                        activeLogins.delete(opts.sessionKey);
+                        logger.error("Login confirmed but ilink_bot_id missing from response");
+                        return {
+                            connected: false,
+                            message: "登录失败：服务器未返回 ilink_bot_id。",
+                        };
+                    }
+                    activeLogin.botToken = statusResponse.bot_token;
+                    activeLogins.delete(opts.sessionKey);
+                    logger.info(`✅ Login confirmed! ilink_bot_id=${statusResponse.ilink_bot_id} ilink_user_id=${redactToken(statusResponse.ilink_user_id)}`);
+                    return {
+                        connected: true,
+                        botToken: statusResponse.bot_token,
+                        accountId: statusResponse.ilink_bot_id,
+                        baseUrl: statusResponse.baseurl,
+                        userId: statusResponse.ilink_user_id,
+                        message: "已将此 OpenClaw 连接到微信。",
+                    };
+                }
+            }
+        }
+        catch (err) {
+            logger.error(`Error polling QR status: ${String(err)}`);
+            activeLogins.delete(opts.sessionKey);
+            return {
+                connected: false,
+                message: `Login failed: ${String(err)}`,
+            };
+        }
+        await new Promise((r) => setTimeout(r, 1000));
+    }
+    logger.warn(`waitForWeixinLogin: timed out waiting for QR scan sessionKey=${opts.sessionKey} timeoutMs=${timeoutMs}`);
+    activeLogins.delete(opts.sessionKey);
+    return {
+        connected: false,
+        message: "登录超时，请重试。",
+    };
+}
+//# sourceMappingURL=login-qr.js.map