@zlr_236/popo 0.0.1

package/skills/popo-team/SKILL.md

@@ -0,0 +1,296 @@
+---
+name: popo-team
+description: |
+  POPO team (group) management operations. Activate when user mentions creating groups, managing team members, or group settings.
+---
+
+# POPO Team Tool
+
+Manage POPO teams (groups) and their settings.
+
+## Overview
+
+POPO team management supports:
+- Create new teams with members
+- Invite users/robots to teams
+- Disband (delete) teams
+- Query team members and information
+- Update team settings and announcements
+- Manage team permissions
+
+## Actions
+
+### Create Team
+
+Create a new team (group) with initial members.
+
+```json
+{
+  "action": "channel-create",
+  "uid": "owner@corp.netease.com",
+  "name": "Project Team",
+  "uidList": ["member1@corp.netease.com", "member2@corp.netease.com"],
+  "photoUrl": "https://example.com/team-avatar.png"
+}
+```
+
+**Parameters:**
+- `uid` (required): Team owner email
+- `name` (optional): Team name
+- `uidList` (required): Array of member emails
+- `photoUrl` (optional): Team avatar URL
+
+**Response:**
+```json
+{
+  "ok": true,
+  "tid": "1697154",
+  "passNum": 4,
+  "failList": {}
+}
+```
+
+### Invite to Team
+
+Invite users or robots to join an existing team.
+
+```json
+{
+  "action": "addParticipant",
+  "target": "1234567",
+  "inviteList": ["newuser@corp.netease.com"],
+  "type": "1",
+  "text": "Join our project team"
+}
+```
+
+**Parameters:**
+- `target` (required): Team ID
+- `inviteList` (required): Array of emails to invite
+- `type` (optional): "1" for normal user (default), "2" for robot
+- `text` (optional): Application reason
+
+**Response:**
+```json
+{
+  "ok": true,
+  "type": 0,
+  "failList": {}
+}
+```
+
+### Drop Team
+
+Disband (delete) a team.
+
+```json
+{
+  "action": "channel-delete",
+  "channelId": "1234567"
+}
+```
+
+**Parameters:**
+- `channelId` (required): Team ID to disband
+
+### Get Team Members
+
+Query member list of a team.
+
+```json
+{
+  "action": "member-info",
+  "tid": "1234567",
+  "page": 1,
+  "limit": 20
+}
+```
+
+**Parameters:**
+- `tid` (required): Team ID
+- `page` (optional): Page number, default 1
+- `limit` (optional): Page size, default 20
+
+**Response:**
+```json
+{
+  "ok": true,
+  "records": [
+    {
+      "uid": "user@corp.netease.com",
+      "name": "张三",
+      "nickName": "张三 nick",
+      "teamNickName": "群昵称"
+    }
+  ],
+  "total": 25,
+  "page": 1,
+  "limit": 20
+}
+```
+
+### Get Team Info
+
+Query basic information of a team.
+
+```json
+{
+  "action": "channel-info",
+  "channelId": "1234567",
+  "scopes": ["board"]
+}
+```
+
+**Parameters:**
+- `channelId` (required): Team ID
+- `scopes` (optional): Array of scopes to query, e.g., `["board"]` for announcement
+
+**Response:**
+```json
+{
+  "ok": true,
+  "info": {
+    "name": "Project Team",
+    "desc": "Team description",
+    "board": "Team announcement"
+  }
+}
+```
+
+### Update Team Info
+
+Update team name and announcement.
+
+```json
+{
+  "action": "channel-edit",
+  "channelId": "1234567",
+  "name": "New Team Name",
+  "board": "Updated announcement",
+  "type": 2
+}
+```
+
+**Parameters:**
+- `channelId` (required): Team ID
+- `name` (required): New team name
+- `board` (required): New announcement
+- `type` (optional): Notification type (1=notification only, 2=card announcement)
+
+### Update Team Management Settings
+
+Update team permission settings.
+
+```json
+{
+  "action": "update-team-mgmt",
+  "tid": "1234567",
+  "type": 8,
+  "value": 1
+}
+```
+
+**Setting Types:**
+
+| Type | Description | Value |
+|------|-------------|-------|
+| 1 | Only owner/admin can edit group info | 1=on, 2=off |
+| 2 | Only owner/admin can add members | 1=on, 2=off |
+| 3 | Allow apply to join | 1=on, 2=off |
+| 4 | Members can view chat history | 1=on, 2=off |
+| 5 | New member join notification | 1=all, 2=owner/admin only, 3=none |
+| 6 | Member leave notification | 1=all, 2=owner/admin only, 3=none |
+| 7 | Allow modify nickname in group | 1=on, 2=off |
+| 8 | Allow external accounts to join | 1=on, 2=off |
+
+## Examples
+
+### Create a project team
+
+```json
+{
+  "action": "channel-create",
+  "uid": "pm@corp.netease.com",
+  "name": "2024 Q1 Project",
+  "uidList": [
+    "dev1@corp.netease.com",
+    "dev2@corp.netease.com",
+    "designer@corp.netease.com"
+  ]
+}
+```
+
+### Invite new member
+
+```json
+{
+  "action": "addParticipant",
+  "target": "1234567",
+  "inviteList": ["newhire@corp.netease.com"],
+  "text": "Welcome to the team!"
+}
+```
+
+### Update team announcement
+
+```json
+{
+  "action": "channel-edit",
+  "channelId": "1234567",
+  "name": "Project Team",
+  "board": "Meeting tomorrow at 10am",
+  "type": 2
+}
+```
+
+### Enable external access
+
+```json
+{
+  "action": "update-team-mgmt",
+  "tid": "1234567",
+  "type": 8,
+  "value": 1
+}
+```
+
+### Get team members
+
+```json
+{
+  "action": "member-info",
+  "tid": "8888888",
+  "page": 1,
+  "limit": 50
+}
+```
+
+## Configuration
+
+```yaml
+channels:
+  popo:
+    enabled: true
+    appKey: "your_app_key"
+    appSecret: "your_app_secret"
+    token: "your_token"
+    aesKey: "your_aes_key"
+```
+
+## Notes
+
+- Team IDs (tid) are numeric strings, typically 7 digits
+- Only team owner or admin can update team info and settings
+- Member emails use domains: `@corp.netease.com` or `@mesg.corp.netease.com`
+- When disbanding a team, all members will be removed
+- Team creation requires appropriate bot permissions
+
+## API Reference
+
+- Create team: `POST /open-apis/robots/v1/team`
+- Invite to team: `POST /open-apis/robots/v1/team/{tid}/invite`
+- Drop team: `DELETE /open-apis/robots/v1/team/{tid}/drop`
+- Get members: `GET /open-apis/robots/v1/team/{tid}/members`
+- Get info: `GET /open-apis/robots/v1/team/{tid}/info`
+- Update info: `PUT /open-apis/robots/v1/team/{tid}/info`
+- Update settings: `POST /open-apis/robots/v1/team/{tid}/management`

package/src/accounts.ts

@@ -0,0 +1,52 @@
+import type { ClawdbotConfig } from "openclaw/plugin-sdk";
+import { DEFAULT_ACCOUNT_ID } from "openclaw/plugin-sdk";
+import type { PopoConfig, ResolvedPopoAccount } from "./types.js";
+
+export function resolvePopoCredentials(cfg?: PopoConfig): {
+  appKey: string;
+  appSecret: string;
+  token?: string;
+  aesKey?: string;
+  server: string;
+} | null {
+  const appKey = cfg?.appKey?.trim();
+  const appSecret = cfg?.appSecret?.trim();
+  if (!appKey || !appSecret) return null;
+  return {
+    appKey,
+    appSecret,
+    token: cfg?.token?.trim() || undefined,
+    aesKey: cfg?.aesKey?.trim() || undefined,
+    server: cfg?.server ?? "https://open.popo.netease.com",
+  };
+}
+
+export function resolvePopoAccount(params: {
+  cfg: ClawdbotConfig;
+  accountId?: string | null;
+}): ResolvedPopoAccount {
+  const popoCfg = params.cfg.channels?.popo as PopoConfig | undefined;
+  const enabled = popoCfg?.enabled !== false;
+  const creds = resolvePopoCredentials(popoCfg);
+
+  return {
+    accountId: params.accountId?.trim() || DEFAULT_ACCOUNT_ID,
+    enabled,
+    configured: Boolean(creds),
+    appKey: creds?.appKey,
+  };
+}
+
+export function listPopoAccountIds(_cfg: ClawdbotConfig): string[] {
+  return [DEFAULT_ACCOUNT_ID];
+}
+
+export function resolveDefaultPopoAccountId(_cfg: ClawdbotConfig): string {
+  return DEFAULT_ACCOUNT_ID;
+}
+
+export function listEnabledPopoAccounts(cfg: ClawdbotConfig): ResolvedPopoAccount[] {
+  return listPopoAccountIds(cfg)
+    .map((accountId) => resolvePopoAccount({ cfg, accountId }))
+    .filter((account) => account.enabled && account.configured);
+}

package/src/auth.ts

@@ -0,0 +1,151 @@
+import type { PopoConfig, PopoToken } from "./types.js";
+import { resolvePopoCredentials } from "./accounts.js";
+
+// Token cache
+let cachedToken: PopoToken | null = null;
+let cachedAppKey: string | null = null;
+
+/**
+ * Get a valid access token, refreshing if necessary.
+ */
+export async function getAccessToken(cfg: PopoConfig): Promise<string> {
+  const creds = resolvePopoCredentials(cfg);
+  if (!creds) {
+    throw new Error("POPO credentials not configured (appKey, appSecret required)");
+  }
+
+  const now = Date.now();
+
+  // Check if we have a valid cached token
+  if (
+    cachedToken &&
+    cachedAppKey === creds.appKey &&
+    cachedToken.accessExpiredAt > now + 60000 // 1 minute buffer
+  ) {
+    return cachedToken.accessToken;
+  }
+
+  // Check if we can use refresh token
+  if (
+    cachedToken &&
+    cachedAppKey === creds.appKey &&
+    cachedToken.refreshExpiredAt > now + 60000
+  ) {
+    try {
+      cachedToken = await refreshAccessToken(cfg, cachedToken.refreshToken);
+      return cachedToken.accessToken;
+    } catch {
+      // Fall through to get a new token
+    }
+  }
+
+  // Get a new token
+  cachedToken = await fetchNewToken(cfg);
+  cachedAppKey = creds.appKey;
+  return cachedToken.accessToken;
+}
+
+/**
+ * Fetch a new token using appKey and appSecret.
+ */
+async function fetchNewToken(cfg: PopoConfig): Promise<PopoToken> {
+  const creds = resolvePopoCredentials(cfg);
+  if (!creds) {
+    throw new Error("POPO credentials not configured");
+  }
+
+  const response = await fetch(`${creds.server}/open-apis/robots/v1/token`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+    },
+    body: JSON.stringify({
+      appKey: creds.appKey,
+      appSecret: creds.appSecret,
+    }),
+  });
+
+  if (!response.ok) {
+    throw new Error(`POPO token request failed: ${response.status} ${response.statusText}`);
+  }
+
+  const data = (await response.json()) as {
+    errcode?: number;
+    errmsg?: string;
+    data?: {
+      accessToken: string;
+      accessExpiredAt: number;
+      refreshToken: string;
+      refreshExpiredAt: number;
+    };
+  };
+
+  if (data.errcode !== 0 || !data.data) {
+    throw new Error(`POPO token request failed: ${data.errmsg || "unknown error"}`);
+  }
+
+  return {
+    accessToken: data.data.accessToken,
+    accessExpiredAt: data.data.accessExpiredAt,
+    refreshToken: data.data.refreshToken,
+    refreshExpiredAt: data.data.refreshExpiredAt,
+  };
+}
+
+/**
+ * Refresh an access token using a refresh token.
+ */
+export async function refreshAccessToken(
+  cfg: PopoConfig,
+  refreshToken: string
+): Promise<PopoToken> {
+  const creds = resolvePopoCredentials(cfg);
+  if (!creds) {
+    throw new Error("POPO credentials not configured");
+  }
+
+  const response = await fetch(`${creds.server}/open-apis/robots/v1/token/refresh`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+    },
+    body: JSON.stringify({
+      appKey: creds.appKey,
+      refreshToken,
+    }),
+  });
+
+  if (!response.ok) {
+    throw new Error(`POPO token refresh failed: ${response.status} ${response.statusText}`);
+  }
+
+  const data = (await response.json()) as {
+    errcode?: number;
+    errmsg?: string;
+    data?: {
+      accessToken: string;
+      accessExpiredAt: number;
+      refreshToken: string;
+      refreshExpiredAt: number;
+    };
+  };
+
+  if (data.errcode !== 0 || !data.data) {
+    throw new Error(`POPO token refresh failed: ${data.errmsg || "unknown error"}`);
+  }
+
+  return {
+    accessToken: data.data.accessToken,
+    accessExpiredAt: data.data.accessExpiredAt,
+    refreshToken: data.data.refreshToken,
+    refreshExpiredAt: data.data.refreshExpiredAt,
+  };
+}
+
+/**
+ * Clear the token cache.
+ */
+export function clearTokenCache() {
+  cachedToken = null;
+  cachedAppKey = null;
+}