cloudcc-cli 2.4.1 → 2.4.2

package/src/openapi/cloudcc-openapi-sdk.js

@@ -0,0 +1,1085 @@
+/**
+ * CloudCC OpenAPI 浏览器端 SDK（已内置账号登录 + 换票两个接口）
+ * 文档：https://help.cloudcc.cn/product03/apigai-lan/
+ *
+ * 依赖：crypto-js、jsencrypt（登录加密用）
+ *
+ * 用法：
+ * const api = new CloudCCOpenAPI({ ClientId, SecretKey, loginsvcurl });
+ * await api.login('账号', '密码');
+ * const res = await api.cquery({ ... });
+ *
+ * 兼容：全局仍挂载 AccountPasswordLogin（与历史脚本同名 API）
+ */
+(function (root, factory) {
+  var out = factory();
+  var CloudCCOpenAPI = out.CloudCCOpenAPI;
+  root.CloudCCOpenAPI = CloudCCOpenAPI;
+  root.AccountPasswordLogin = out.AccountPasswordLogin;
+  if (typeof module === 'object' && module.exports) {
+    module.exports = CloudCCOpenAPI;
+    module.exports.AccountPasswordLogin = out.AccountPasswordLogin;
+    module.exports.DEFAULT_LOGIN_SVC_BASE = out.DEFAULT_LOGIN_SVC_BASE;
+  }
+})(typeof self !== 'undefined' ? self : this, function () {
+  'use strict';
+
+  var DEFAULT_LOGIN_SVC_BASE = 'https://global.apis.cloudcc.cn/login';
+
+  var RSA_PUBLIC_KEY =
+    'MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwU/yGIaOnJuDqg9nV8FEwPL5BudK/l8cHaCcAy9sL56jtX1pHgvSpHW5ux2s2R+YGsdhRP1IJ9GBXFZre+DWmTf+rvRfzE26hKdRLMgYJnUjr1fyCcsRdDgBzjiDzdA8xCNSVt97ATE+1syX2k9Bwjoix3pX6rWOE/kKJw/yNOo8E6bJ6AWc/TFnmQ7AM0eatT3a6/uLSCKm8w9r95Jy/YQ37+1xN+prmxcOvZi+SJpE5V4fO7S7PD82TUCSQE1B7eUCitByJ/9DTNvZ6dYFP8/RFz8Ob+n3j7IcwcYherZKHr+F//TIPR+9xyluh5mNIyCw/MoryXHZnwxVTbT4wIDAQAB';
+
+  function getUuid() {
+    return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, function (c) {
+      var r = (Math.random() * 16) | 0;
+      var v = c === 'x' ? r : (r & 0x3) | 0x8;
+      return v.toString(16);
+    });
+  }
+
+  function getBrowserName() {
+    var ua = navigator.userAgent.toLowerCase();
+    var map = {
+      IE: window.ActiveXObject || 'ActiveXObject' in window,
+      Chrome: ua.indexOf('chrome') > -1 && ua.indexOf('safari') > -1,
+      Firefox: ua.indexOf('firefox') > -1,
+      Opera: ua.indexOf('opera') > -1,
+      Safari: ua.indexOf('safari') > -1 && ua.indexOf('chrome') === -1,
+      Edge: ua.indexOf('edge') > -1,
+      QQBrowser: /qqbrowser/.test(ua),
+      WeixinBrowser: /MicroMessenger/i.test(ua)
+    };
+    var name = '';
+    for (var k in map) {
+      if (map[k]) name = k;
+    }
+    return name || 'Unknown';
+  }
+
+  function getBrowserVersion() {
+    var ua = navigator.userAgent.toLowerCase();
+    var browser = {};
+    var s;
+    (s = ua.match(/msie ([\d.]+)/))
+      ? (browser.ie = s[1])
+      : (s = ua.match(/firefox\/([\d.]+)/))
+        ? (browser.firefox = s[1])
+        : (s = ua.match(/chrome\/([\d.]+)/))
+          ? (browser.chrome = s[1])
+          : (s = ua.match(/opera.([\d.]+)/))
+            ? (browser.opera = s[1])
+            : (s = ua.match(/version\/([\d.]+).*safari/))
+              ? (browser.safari = s[1])
+              : 0;
+    if (browser.ie) return 'IE ' + browser.ie;
+    if (browser.firefox) return browser.firefox;
+    if (browser.chrome) return browser.chrome;
+    if (browser.opera) return browser.opera;
+    if (browser.safari) return browser.safari;
+    return '未知浏览器';
+  }
+
+  function getOperationSys() {
+    var OS = '';
+    var ua = navigator.userAgent.toLowerCase();
+    var map = {};
+    map.Windows = navigator.platform === 'Win32' || navigator.platform === 'Windows';
+    map.Mac =
+      navigator.platform === 'Mac68K' ||
+      navigator.platform === 'MacPPC' ||
+      navigator.platform === 'Macintosh' ||
+      navigator.platform === 'MacIntel';
+    map.iphone = ua.indexOf('iphone') > -1;
+    map.ipod = ua.indexOf('ipod') > -1;
+    map.ipad = ua.indexOf('ipad') > -1;
+    map.Android = ua.indexOf('android') > -1;
+    for (var i in map) {
+      if (map[i]) OS = i;
+    }
+    return OS || 'Unknown';
+  }
+
+  function getClientEnvironment(overrides) {
+    overrides = overrides || {};
+    return {
+      explorer: overrides.explorer != null ? overrides.explorer : getBrowserName() + getBrowserVersion(),
+      operatingSystem: overrides.operatingSystem != null ? overrides.operatingSystem : getOperationSys()
+    };
+  }
+
+  function aesEncryptUtf8Key(word, aesKeyStr) {
+    var key = CryptoJS.enc.Utf8.parse(aesKeyStr);
+    var srcs = CryptoJS.enc.Utf8.parse(word);
+    var encrypted = CryptoJS.AES.encrypt(srcs, key, {
+      mode: CryptoJS.mode.ECB,
+      padding: CryptoJS.pad.Pkcs7
+    });
+    return CryptoJS.enc.Base64.stringify(encrypted.ciphertext);
+  }
+
+  function encryptedAesKeyBase64(data) {
+    var encrypt = new JSEncrypt();
+    encrypt.setPublicKey('-----BEGIN PUBLIC KEY-----\n' + RSA_PUBLIC_KEY + '\n-----END PUBLIC KEY-----');
+    var aesKey = CryptoJS.lib.WordArray.random(16).toString();
+    var sk = encrypt.encrypt(aesKey).toString();
+    var rp = aesEncryptUtf8Key(JSON.stringify(data), aesKey);
+    return { sk: sk, rp: rp };
+  }
+
+  var MIXKEY = ['username', 'password', 'password2', 'mobilePhone', 'verificationCode'];
+
+  function jsToFormData(obj) {
+    var mixobj = {};
+    var formData = new FormData();
+    Object.keys(obj).forEach(function (key) {
+      if (obj[key] instanceof Array) {
+        obj[key].forEach(function (item) {
+          formData.append(key, item);
+        });
+        return;
+      }
+      if (MIXKEY.indexOf(key) > -1) {
+        mixobj[key] = obj[key];
+      } else {
+        formData.append(key, obj[key]);
+      }
+    });
+    var pair = encryptedAesKeyBase64(mixobj);
+    formData.append('sk', pair.sk);
+    formData.append('rp', pair.rp);
+    return formData;
+  }
+
+  function buildAccountPasswordFormData(username, password, options) {
+    options = options || {};
+    var env = getClientEnvironment(options);
+    var parameter1 = {
+      password: password,
+      password2: CryptoJS.SHA512(password).toString(),
+      username: username,
+      explorer: env.explorer,
+      operatingSystem: env.operatingSystem,
+      rtnURL: options.rtnURL != null ? options.rtnURL : '',
+      serviceName: options.serviceName != null ? options.serviceName : ''
+    };
+    return jsToFormData(parameter1);
+  }
+
+  function logonUrl(loginSvcBase) {
+    return loginSvcBase.replace(/\/$/, '') + '/signin/logon';
+  }
+
+  function openApiConvertUrl(apiSvc) {
+    return apiSvc.replace(/\/$/, '') + '/api/cauth/convert';
+  }
+
+  function getGlobalFetch() {
+    return typeof fetch === 'function' ? fetch.bind(globalThis) : null;
+  }
+
+  /**
+   * POST {loginSvcBase}/signin/logon
+   */
+  function loginWithAccountPasswordImpl(opts, fetchImpl) {
+    if (!opts || !opts.loginSvcBase || !opts.username) {
+      return Promise.reject(new Error('loginSvcBase 与 username 为必填'));
+    }
+    if (typeof CryptoJS === 'undefined' || typeof JSEncrypt === 'undefined') {
+      return Promise.reject(new Error('请先引入 crypto-js 与 jsencrypt'));
+    }
+    if (!fetchImpl) return Promise.reject(new Error('fetch 不可用'));
+    var url = logonUrl(opts.loginSvcBase);
+    var formData = buildAccountPasswordFormData(opts.username, opts.password || '', {
+      rtnURL: opts.rtnURL,
+      serviceName: opts.serviceName,
+      explorer: opts.env && opts.env.explorer,
+      operatingSystem: opts.env && opts.env.operatingSystem
+    });
+    var headers = { requestId: getUuid() };
+    var fetchInit = Object.assign(
+      {
+        method: 'POST',
+        body: formData,
+        headers: headers
+      },
+      opts.fetchInit || {}
+    );
+    return fetchImpl(url, fetchInit)
+      .then(function (res) {
+        return res.json();
+      })
+      .then(function (body) {
+        var code = body.code != null ? body.code : 200;
+        if (code !== 200) {
+          var msg = body.msg == null ? '请求失败' : body.msg;
+          var err = new Error(msg);
+          err.responseBody = body;
+          throw err;
+        }
+        return body;
+      });
+  }
+
+  /**
+   * POST {apiSvc}/api/cauth/convert
+   */
+  function convertBusinessTokenToOpenApiImpl(opts, fetchImpl) {
+    if (!opts || !opts.apiSvc || !opts.userToken || opts.clientId === undefined || opts.clientId === '') {
+      return Promise.reject(new Error('apiSvc、userToken、clientId 为必填'));
+    }
+    if (opts.secretKey === undefined) {
+      return Promise.reject(new Error('secretKey 为必填'));
+    }
+    if (!fetchImpl) return Promise.reject(new Error('fetch 不可用'));
+    var url = openApiConvertUrl(opts.apiSvc);
+    var tokenHeader = opts.accessTokenHeaderName || 'accessToken';
+    var mergedHeaders = Object.assign(
+      {
+        'Content-Type': 'application/json; charset=utf-8',
+        requestId: getUuid()
+      },
+      opts.fetchInit && opts.fetchInit.headers
+    );
+    mergedHeaders[tokenHeader] = opts.userToken;
+    var fetchInit = Object.assign({}, opts.fetchInit, {
+      method: 'POST',
+      headers: mergedHeaders,
+      body: JSON.stringify({
+        clientId: opts.clientId,
+        secretKey: opts.secretKey
+      })
+    });
+    return fetchImpl(url, fetchInit)
+      .then(function (res) {
+        return res.json();
+      })
+      .then(function (body) {
+        var code = body.code != null ? body.code : 200;
+        if (code !== 200) {
+          var msg0 = body.msg == null ? '请求失败' : body.msg;
+          var err0 = new Error(msg0);
+          err0.responseBody = body;
+          throw err0;
+        }
+        if (!body.result) {
+          var info = body.returnInfo != null ? body.returnInfo : '未知错误';
+          var err = new Error('OpenAPI token 转换失败: ' + info);
+          err.responseBody = body;
+          throw err;
+        }
+        if (body.data === undefined || body.data === null) {
+          var err2 = new Error('OpenAPI token 转换失败: 响应无 data');
+          err2.responseBody = body;
+          throw err2;
+        }
+        return body.data;
+      });
+  }
+
+  function loginThenOpenApiTokenImpl(opts, fetchImpl) {
+    if (!opts || !opts.apiSvc || opts.clientId === undefined || opts.secretKey === undefined) {
+      return Promise.reject(new Error('apiSvc、clientId、secretKey 为必填'));
+    }
+    return loginWithAccountPasswordImpl(opts, fetchImpl).then(function (body) {
+      if (!body.result || !body.data) {
+        var e = new Error(body.msg || '登录失败');
+        e.responseBody = body;
+        throw e;
+      }
+      var userToken = body.data.accessToken;
+      if (!userToken) {
+        var e2 = new Error('登录响应中无 data.accessToken，无法换取 OpenAPI token');
+        e2.responseBody = body;
+        throw e2;
+      }
+      return convertBusinessTokenToOpenApiImpl(
+        {
+          apiSvc: opts.apiSvc,
+          userToken: userToken,
+          clientId: opts.clientId,
+          secretKey: opts.secretKey,
+          accessTokenHeaderName: opts.accessTokenHeaderName,
+          fetchInit: opts.convertFetchInit
+        },
+        fetchImpl
+      ).then(function (openApiToken) {
+        return { login: body, openApiToken: openApiToken };
+      });
+    });
+  }
+
+  var AccountPasswordLogin = {
+    getUuid: getUuid,
+    getClientEnvironment: getClientEnvironment,
+    buildAccountPasswordFormData: buildAccountPasswordFormData,
+    logonUrl: logonUrl,
+    openApiConvertUrl: openApiConvertUrl,
+    convertBusinessTokenToOpenApi: function (opts) {
+      return convertBusinessTokenToOpenApiImpl(opts, getGlobalFetch());
+    },
+    loginThenOpenApiToken: function (opts) {
+      return loginThenOpenApiTokenImpl(opts, getGlobalFetch());
+    },
+    loginWithAccountPassword: function (opts) {
+      return loginWithAccountPasswordImpl(opts, getGlobalFetch());
+    },
+    DEFAULT_LOGIN_SVC_BASE: DEFAULT_LOGIN_SVC_BASE
+  };
+
+  function trimUrl(url) {
+    if (!url || typeof url !== 'string') return '';
+    return url.replace(/\/+$/, '');
+  }
+
+  function stringifyDataIfNeeded(data) {
+    if (data == null) return data;
+    if (typeof data === 'string') return data;
+    return JSON.stringify(data);
+  }
+
+  /**
+   * @typedef {Object} CloudCCOpenAPIOptions
+   * @property {string} [clientId] 与 ClientId 二选一
+   * @property {string} [ClientId]
+   * @property {string} [secretKey] 与 SecretKey 二选一
+   * @property {string} [SecretKey]
+   * @property {string} [loginSvcUrl] 登录服务根地址，与 loginsvcurl 二选一
+   * @property {string} [loginsvcurl]
+   * @property {typeof fetch} [fetch] 可选
+   */
+
+  function CloudCCOpenAPI(options) {
+    if (!options) throw new Error('CloudCCOpenAPI: 需要 options');
+    var o = options;
+    var clientId = o.clientId != null ? o.clientId : o.ClientId;
+    var secretKey = o.secretKey != null ? o.secretKey : o.SecretKey;
+    var loginSvcUrl =
+      o.loginSvcUrl != null ? o.loginSvcUrl : o.loginsvcurl != null ? o.loginsvcurl : o.loginSvcURL;
+    if (clientId === undefined || clientId === '' || secretKey === undefined || secretKey === '') {
+      throw new Error('CloudCCOpenAPI: clientId（或 ClientId）与 secretKey（或 SecretKey）为必填');
+    }
+    if (!loginSvcUrl) {
+      throw new Error('CloudCCOpenAPI: loginSvcUrl（或 loginsvcurl）为必填');
+    }
+    this.clientId = clientId;
+    this.secretKey = secretKey;
+    this.loginSvcUrl = trimUrl(loginSvcUrl);
+    this.gatewayUrl = '';
+    this.apiSvcUrl = '';
+    this.baseUrl = '';
+    this.accessToken = '';
+    this._lastLogin = null;
+    this._fetch = o.fetch || (typeof fetch === 'function' ? fetch.bind(globalThis) : null);
+    if (!this._fetch) throw new Error('CloudCCOpenAPI: 当前环境无 fetch，请传入 options.fetch');
+  }
+
+  /**
+   * 账号密码登录：从返回中取 gatewayUrl，拼 apisvc、lightningapi，再换 OpenAPI token
+   * @param {string} username
+   * @param {string} password
+   * @param {object} [opts] rtnURL、serviceName、env、fetchInit、accessTokenHeaderName、convertFetchInit
+   * @returns {Promise<{ gatewayUrl: string, apiSvcUrl: string, baseUrl: string, openApiToken: string, login: object }>}
+   */
+  CloudCCOpenAPI.prototype.login = function (username, password, opts) {
+    var self = this;
+    opts = opts || {};
+    if (!username) {
+      return Promise.reject(new Error('CloudCCOpenAPI: username 为必填'));
+    }
+    return loginWithAccountPasswordImpl(
+      {
+        loginSvcBase: self.loginSvcUrl,
+        username: username,
+        password: password || '',
+        rtnURL: opts.rtnURL,
+        serviceName: opts.serviceName,
+        env: opts.env,
+        fetchInit: opts.fetchInit
+      },
+      self._fetch
+    ).then(function (body) {
+      if (!body.result || !body.data) {
+        var e = new Error(body.msg || '登录失败');
+        e.responseBody = body;
+        throw e;
+      }
+      var gw = body.data.gatewayUrl;
+      if (!gw || typeof gw !== 'string') {
+        var e2 = new Error('CloudCCOpenAPI: 登录响应中无 data.gatewayUrl');
+        e2.responseBody = body;
+        throw e2;
+      }
+      gw = trimUrl(gw);
+      self.gatewayUrl = gw;
+      self.apiSvcUrl = gw + '/apisvc';
+      self.baseUrl = gw + '/lightningapi';
+      var userToken = body.data.accessToken;
+      if (!userToken) {
+        var e3 = new Error('CloudCCOpenAPI: 登录响应中无 data.accessToken');
+        e3.responseBody = body;
+        throw e3;
+      }
+      return convertBusinessTokenToOpenApiImpl(
+        {
+          apiSvc: self.apiSvcUrl,
+          userToken: userToken,
+          clientId: self.clientId,
+          secretKey: self.secretKey,
+          accessTokenHeaderName: opts.accessTokenHeaderName,
+          fetchInit: opts.convertFetchInit
+        },
+        self._fetch
+      ).then(function (openApiToken) {
+        self.accessToken = openApiToken;
+        self._lastLogin = body;
+        return {
+          gatewayUrl: self.gatewayUrl,
+          apiSvcUrl: self.apiSvcUrl,
+          baseUrl: self.baseUrl,
+          openApiToken: openApiToken,
+          login: body
+        };
+      });
+    });
+  };
+
+  CloudCCOpenAPI.prototype._ensureSession = function () {
+    if (!this.baseUrl || !this.accessToken) {
+      throw new Error('CloudCCOpenAPI: 请先调用 login(username, password)');
+    }
+  };
+
+  /** 手动覆盖 OpenAPI 根（一般无需；登录成功后会自动设置） */
+  CloudCCOpenAPI.prototype.setBaseUrl = function (url) {
+    if (!url) throw new Error('CloudCCOpenAPI: baseUrl 不能为空');
+    this.baseUrl = trimUrl(url);
+  };
+
+  CloudCCOpenAPI.prototype.setAccessToken = function (token) {
+    this.accessToken = token || '';
+  };
+
+  CloudCCOpenAPI.prototype._requireBrowserCookie = function () {
+    if (typeof document === 'undefined') {
+      throw new Error('CloudCCOpenAPI: Cookie 会话仅支持浏览器环境');
+    }
+  };
+
+  CloudCCOpenAPI.prototype._setCookie = function (name, value, maxAgeSeconds) {
+    this._requireBrowserCookie();
+    document.cookie =
+      name +
+      '=' +
+      encodeURIComponent(value) +
+      '; path=/; max-age=' +
+      String(maxAgeSeconds) +
+      '; SameSite=Lax';
+  };
+
+  CloudCCOpenAPI.prototype._getCookie = function (name) {
+    this._requireBrowserCookie();
+    var key = name + '=';
+    var parts = document.cookie ? document.cookie.split('; ') : [];
+    for (var i = 0; i < parts.length; i += 1) {
+      if (parts[i].indexOf(key) === 0) return decodeURIComponent(parts[i].slice(key.length));
+    }
+    return '';
+  };
+
+  /**
+   * 将当前会话写入 Cookie
+   * @param {Object} [opts]
+   * @param {string} [opts.cookieKey='cloudcc_openapi_session']
+   * @param {number} [opts.ttlMs=7200000] 默认 2 小时
+   */
+  CloudCCOpenAPI.prototype.saveSessionToCookie = function (opts) {
+    opts = opts || {};
+    this._ensureSession();
+    var cookieKey = opts.cookieKey || 'cloudcc_openapi_session';
+    var ttlMs = Number(opts.ttlMs || 2 * 60 * 60 * 1000);
+    if (!Number.isFinite(ttlMs) || ttlMs <= 0) {
+      throw new Error('CloudCCOpenAPI: ttlMs 必须为正数');
+    }
+    var payload = {
+      accessToken: this.accessToken,
+      baseUrl: this.baseUrl,
+      gatewayUrl: this.gatewayUrl || '',
+      apiSvcUrl: this.apiSvcUrl || '',
+      expireAt: Date.now() + ttlMs
+    };
+    this._setCookie(cookieKey, JSON.stringify(payload), Math.floor(ttlMs / 1000));
+    return payload;
+  };
+
+  /**
+   * 清理 Cookie 会话
+   * @param {Object} [opts]
+   * @param {string} [opts.cookieKey='cloudcc_openapi_session']
+   */
+  CloudCCOpenAPI.prototype.clearSessionCookie = function (opts) {
+    opts = opts || {};
+    var cookieKey = opts.cookieKey || 'cloudcc_openapi_session';
+    this._setCookie(cookieKey, '', 0);
+  };
+
+  /**
+   * 从 Cookie 恢复会话（可选校验 token）
+   * @param {Object} [opts]
+   * @param {string} [opts.cookieKey='cloudcc_openapi_session']
+   * @param {boolean} [opts.validate=false] 是否调用 isValidWithBinding 校验 token
+   * @returns {Promise<null|Object>} 成功返回会话数据，失败返回 null
+   */
+  CloudCCOpenAPI.prototype.restoreSessionFromCookie = async function (opts) {
+    opts = opts || {};
+    var cookieKey = opts.cookieKey || 'cloudcc_openapi_session';
+    var validate = opts.validate === true;
+    var raw = this._getCookie(cookieKey);
+    if (!raw) return null;
+    var session;
+    try {
+      session = JSON.parse(raw);
+    } catch (_e) {
+      this.clearSessionCookie({ cookieKey: cookieKey });
+      return null;
+    }
+    if (!session || !session.accessToken || !session.baseUrl || !session.expireAt) {
+      this.clearSessionCookie({ cookieKey: cookieKey });
+      return null;
+    }
+    if (Date.now() >= Number(session.expireAt)) {
+      this.clearSessionCookie({ cookieKey: cookieKey });
+      return null;
+    }
+    this.accessToken = session.accessToken;
+    this.baseUrl = trimUrl(session.baseUrl);
+    this.gatewayUrl = session.gatewayUrl || '';
+    this.apiSvcUrl = session.apiSvcUrl || '';
+    if (validate) {
+      try {
+        var v = await this.isValidWithBinding();
+        if (!v || v.returnCode !== '1') {
+          this.clearSessionCookie({ cookieKey: cookieKey });
+          this.accessToken = '';
+          return null;
+        }
+      } catch (_e2) {
+        this.clearSessionCookie({ cookieKey: cookieKey });
+        this.accessToken = '';
+        return null;
+      }
+    }
+    return session;
+  };
+
+  CloudCCOpenAPI.prototype._headersJson = function () {
+    return {
+      'Content-Type': 'application/json; charset=UTF-8',
+      accessToken: this.accessToken
+    };
+  };
+
+  CloudCCOpenAPI.prototype._postJson = async function (path, body) {
+    this._ensureSession();
+    var url = this.baseUrl + path;
+    var res = await this._fetch(url, {
+      method: 'POST',
+      headers: this._headersJson(),
+      body: JSON.stringify(body)
+    });
+    var text = await res.text();
+    var data = null;
+    try {
+      data = text ? JSON.parse(text) : null;
+    } catch (e) {
+      var errParse = new Error('CloudCCOpenAPI: 响应非 JSON');
+      errParse.cause = e;
+      errParse.raw = text;
+      errParse.status = res.status;
+      throw errParse;
+    }
+    if (!res.ok) {
+      var errHttp = new Error(data && data.returnInfo ? data.returnInfo : 'HTTP ' + res.status);
+      errHttp.status = res.status;
+      errHttp.payload = data;
+      throw errHttp;
+    }
+    return data;
+  };
+
+  CloudCCOpenAPI.prototype._postJsonWithConfig = async function (url, body, config) {
+    this._ensureSession();
+    config = config || {};
+    var timeout = Number(config.timeout);
+    var hasTimeout = Number.isFinite(timeout) && timeout > 0;
+    var controller = hasTimeout && typeof AbortController !== 'undefined' ? new AbortController() : null;
+    var timer = null;
+    if (controller) {
+      timer = setTimeout(function () {
+        controller.abort();
+      }, timeout);
+    }
+    try {
+      var requestInit = {
+        method: 'POST',
+        headers: this._headersJson(),
+        body: JSON.stringify(body)
+      };
+      if (controller) requestInit.signal = controller.signal;
+      var res = await this._fetch(url, requestInit);
+      var text = await res.text();
+      var data = null;
+      try {
+        data = text ? JSON.parse(text) : null;
+      } catch (e) {
+        var errParse = new Error('CloudCCOpenAPI: 响应非 JSON');
+        errParse.cause = e;
+        errParse.raw = text;
+        errParse.status = res.status;
+        throw errParse;
+      }
+      if (!res.ok) {
+        var errHttp = new Error(data && data.returnInfo ? data.returnInfo : 'HTTP ' + res.status);
+        errHttp.status = res.status;
+        errHttp.payload = data;
+        throw errHttp;
+      }
+      return data;
+    } catch (e2) {
+      if (e2 && e2.name === 'AbortError') {
+        var errTimeout = new Error('CloudCCOpenAPI: 请求超时');
+        errTimeout.code = 'ETIMEDOUT';
+        errTimeout.timeout = timeout;
+        throw errTimeout;
+      }
+      throw e2;
+    } finally {
+      if (timer) clearTimeout(timer);
+    }
+  };
+
+  /**
+   * 通用调用：自行传 serviceName 及文档要求的字段
+   * @param {Record<string, *>} payload
+   */
+  CloudCCOpenAPI.prototype.common = function (payload) {
+    return this._postJson('/openApi/common', payload);
+  };
+
+  /**
+   * 请求 common 自定义类接口
+   * @param {string} className 类名
+   * @param {string} methodName 方法名
+   * @param {Array} params 参数集合
+   * @param {object} [config] http 配置项，例如：{ timeout: 1000 }
+   * @returns {Promise<*>}
+   */
+  CloudCCOpenAPI.prototype.post = function (className, methodName, params, config) {
+    if (!className) {
+      return Promise.reject(new Error('CloudCCOpenAPI: className 为必填'));
+    }
+    if (!methodName) {
+      return Promise.reject(new Error('CloudCCOpenAPI: methodName 为必填'));
+    }
+    if (!this.apiSvcUrl) {
+      return Promise.reject(new Error('CloudCCOpenAPI: 缺少 apiSvcUrl，请先调用 login(username, password)'));
+    }
+    var url = trimUrl(this.apiSvcUrl) + '/api/openCall/common';
+    return this._postJsonWithConfig(
+      url,
+      {
+        className: className,
+        methodName: methodName,
+        params: params instanceof Array ? params : []
+      },
+      config
+    );
+  };
+
+  // ---------- 2.2 accessToken ----------
+  CloudCCOpenAPI.prototype.isValidWithBinding = function () {
+    return this.common({ serviceName: 'isValidWithBinding' });
+  };
+
+  // ---------- 2.3 查询 ----------
+  CloudCCOpenAPI.prototype.cquery = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'cquery' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.cqueryWithRoleRight = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'cqueryWithRoleRight' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.pageQuery = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'pageQuery' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.pageQueryWithRoleRight = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'pageQueryWithRoleRight' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.getQueryPermisson = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getQueryPermisson' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.cqlQueryWithLogInfo = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'cqlQueryWithLogInfo' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.cqlQueryWithStatic = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'cqlQueryWithStatic' }, params)
+    );
+  };
+
+  // ---------- 2.4–2.7 增删改 upsert ----------
+  CloudCCOpenAPI.prototype.insert = function (params) {
+    var p = Object.assign({ serviceName: 'insert' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.insertWithRoleRight = function (params) {
+    var p = Object.assign({ serviceName: 'insertWithRoleRight' }, params);
+    if (p.Data !== undefined) p.Data = stringifyDataIfNeeded(p.Data);
+    else if (p.data !== undefined) p.Data = stringifyDataIfNeeded(p.data);
+    delete p.data;
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.deleteRecords = function (params) {
+    var p = Object.assign({ serviceName: 'delete' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.deleteWithRoleRight = function (params) {
+    var p = Object.assign({ serviceName: 'deleteWithRoleRight' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.update = function (params) {
+    var p = Object.assign({ serviceName: 'update' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.updateWithRoleRight = function (params) {
+    var p = Object.assign({ serviceName: 'updateWithRoleRight' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.upsert = function (params) {
+    var p = Object.assign({ serviceName: 'upsert' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.upsertWithRoleRight = function (params) {
+    var p = Object.assign({ serviceName: 'upsertWithRoleRight' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.8 自助 Mongo ----------
+  CloudCCOpenAPI.prototype.customService = function (params) {
+    var p = Object.assign({ serviceName: 'customService' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.9 短信 ----------
+  CloudCCOpenAPI.prototype.telMessage = function (params) {
+    var p = Object.assign({ serviceName: 'telMessage' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.10 图片（JSON 通道） ----------
+  CloudCCOpenAPI.prototype.uploadImg = function (params) {
+    var p = Object.assign({ serviceName: 'uploadImg' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this._postJson('/openApi/file', p);
+  };
+
+  CloudCCOpenAPI.prototype.uploadImgMany = function (params) {
+    var p = Object.assign({ serviceName: 'uploadImgMany' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this._postJson('/openApi/file', p);
+  };
+
+  CloudCCOpenAPI.prototype.getImgProperty = function (params) {
+    var p = Object.assign({ serviceName: 'getImgProperty' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.12 base64 附件 ----------
+  CloudCCOpenAPI.prototype.uploadAttachement = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'uploadAttachement' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.downloadAttachement = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'downloadAttachement' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.deleteAttachment = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'deleteAttachment' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.deleteFile = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'deleteFile' }, params)
+    );
+  };
+
+  // ---------- 2.17 邮件 ----------
+  CloudCCOpenAPI.prototype.sendEmail = function (params) {
+    var p = Object.assign({ serviceName: 'sendEmail' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.18 Chatter（统一走 common，附带便捷方法） ----------
+  CloudCCOpenAPI.prototype.chatter = function (serviceName, data) {
+    var payload = { serviceName: serviceName };
+    if (data !== undefined) payload.data = stringifyDataIfNeeded(data);
+    return this.common(payload);
+  };
+
+  CloudCCOpenAPI.prototype.getChatters01 = function (data) {
+    return this.chatter('getChatters01', data);
+  };
+
+  CloudCCOpenAPI.prototype.addMicroComment = function (data) {
+    return this.chatter('addMicroComment', data);
+  };
+
+  // ---------- 2.19–2.21 ----------
+  CloudCCOpenAPI.prototype.getPickListValue = function (params) {
+    var p = Object.assign({ serviceName: 'getPickListValue' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.saveDependency = function (params) {
+    var p = Object.assign({ serviceName: 'saveDependency' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.getApprovalPaddingList = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getApprovalPaddingList' }, params)
+    );
+  };
+
+  CloudCCOpenAPI.prototype.doApproved = function (params) {
+    var p = Object.assign({ serviceName: 'doApproved' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.doRejected = function (params) {
+    var p = Object.assign({ serviceName: 'doRejected' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.doReassign = function (params) {
+    var p = Object.assign({ serviceName: 'doReassign' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.reCall = function (params) {
+    var p = Object.assign({ serviceName: 'reCall' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  CloudCCOpenAPI.prototype.submitForApproval = function (params) {
+    var p = Object.assign({ serviceName: 'submitForApproval' }, params);
+    if (p.data !== undefined) p.data = stringifyDataIfNeeded(p.data);
+    return this.common(p);
+  };
+
+  // ---------- 2.22–2.25 应用 / 选项卡 / 搜索 ----------
+  CloudCCOpenAPI.prototype.getAppList = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getAppList' }, params || {})
+    );
+  };
+
+  CloudCCOpenAPI.prototype.getAllTabs = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getAllTabs' }, params || {})
+    );
+  };
+
+  CloudCCOpenAPI.prototype.getAppAndTabList = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getAppAndTabList' }, params || {})
+    );
+  };
+
+  CloudCCOpenAPI.prototype.getMySetupObjs = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'getMySetupObjs' }, params || {})
+    );
+  };
+
+  // ---------- 2.26 用户 ----------
+  CloudCCOpenAPI.prototype.searchRole = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'searchRole' }, params || {})
+    );
+  };
+
+  CloudCCOpenAPI.prototype.searchProfile = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'searchProfile' }, params || {})
+    );
+  };
+
+  CloudCCOpenAPI.prototype.createUser = function (params) {
+    return this.common(
+      Object.assign({ serviceName: 'createUser' }, params || {})
+    );
+  };
+
+  /**
+   * 文件流上传（multipart/form-data）
+   * @param {FormData} formData 需含 serviceName、relatedId、fileName、suffix 及文件字段（与官方示例一致）
+   */
+  CloudCCOpenAPI.prototype.uploadFileFormData = async function (formData) {
+    this._ensureSession();
+    var url = this.baseUrl + '/openApi/file';
+    var res = await this._fetch(url, {
+      method: 'POST',
+      headers: { accessToken: this.accessToken },
+      body: formData
+    });
+    var text = await res.text();
+    var data = null;
+    try {
+      data = text ? JSON.parse(text) : null;
+    } catch (e) {
+      var errParse = new Error('CloudCCOpenAPI: 响应非 JSON');
+      errParse.raw = text;
+      errParse.status = res.status;
+      throw errParse;
+    }
+    if (!res.ok) {
+      var errHttp = new Error(data && data.returnInfo ? data.returnInfo : 'HTTP ' + res.status);
+      errHttp.status = res.status;
+      errHttp.payload = data;
+      throw errHttp;
+    }
+    return data;
+  };
+
+  /**
+   * 文件下载（二进制流，GET）
+   * @param {string} fileId
+   * @returns {Promise<Blob>}
+   */
+  CloudCCOpenAPI.prototype.downloadFileBlob = async function (fileId) {
+    this._ensureSession();
+    var q = new URLSearchParams({
+      accessToken: this.accessToken,
+      id: fileId
+    });
+    var url = this.baseUrl + '/openApi/downloadFile?' + q.toString();
+    var res = await this._fetch(url, { method: 'GET' });
+    if (!res.ok) {
+      var errHttp = new Error('HTTP ' + res.status);
+      errHttp.status = res.status;
+      throw errHttp;
+    }
+    return res.blob();
+  };
+
+  /**
+   * Chatter 文件下载（文档为 POST /openApi/common，返回二进制流，不用 JSON 解析）
+   * @param {string} fileId 文件所在记录相关 id（见官方说明）
+   * @returns {Promise<Blob>}
+   */
+  CloudCCOpenAPI.prototype.downloadFileChatterBlob = async function (fileId) {
+    this._ensureSession();
+    var url = this.baseUrl + '/openApi/common';
+    var res = await this._fetch(url, {
+      method: 'POST',
+      headers: this._headersJson(),
+      body: JSON.stringify({
+        serviceName: 'downloadFileChatter',
+        fileId: fileId
+      })
+    });
+    if (!res.ok) {
+      var err = new Error('HTTP ' + res.status);
+      err.status = res.status;
+      throw err;
+    }
+    var ct = (res.headers && res.headers.get && res.headers.get('content-type')) || '';
+    if (ct.indexOf('application/json') !== -1) {
+      var text = await res.text();
+      try {
+        return JSON.parse(text);
+      } catch (e) {
+        return text;
+      }
+    }
+    return res.blob();
+  };
+
+  /**
+   * 用户头像展示（GET，请求头 accessToken）
+   * @param {string} [userId] 不传则默认当前登录人
+   * @returns {Promise<Blob>}
+   */
+  CloudCCOpenAPI.prototype.userPhotoBlob = async function (userId) {
+    this._ensureSession();
+    var q = userId ? '?id=' + encodeURIComponent(userId) : '';
+    var url = this.baseUrl + '/api/user/userPhoto' + q;
+    var res = await this._fetch(url, {
+      method: 'GET',
+      headers: { accessToken: this.accessToken }
+    });
+    if (!res.ok) {
+      var err = new Error('HTTP ' + res.status);
+      err.status = res.status;
+      throw err;
+    }
+    return res.blob();
+  };
+
+  CloudCCOpenAPI.VERSION = '1.3.0';
+  CloudCCOpenAPI.AccountPasswordLogin = AccountPasswordLogin;
+  CloudCCOpenAPI.DEFAULT_LOGIN_SVC_BASE = DEFAULT_LOGIN_SVC_BASE;
+
+  return {
+    CloudCCOpenAPI: CloudCCOpenAPI,
+    AccountPasswordLogin: AccountPasswordLogin,
+    DEFAULT_LOGIN_SVC_BASE: DEFAULT_LOGIN_SVC_BASE
+  };
+});