cozy-harvest-lib 9.2.7 → 9.5.0

package/CHANGELOG.md

@@ -3,6 +3,40 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+# [9.5.0](https://github.com/cozy/cozy-libs/compare/cozy-harvest-lib@9.4.0...cozy-harvest-lib@9.5.0) (2022-05-23)
+
+
+### Features
+
+* Handle banks with mulitple bank ids ([a944201](https://github.com/cozy/cozy-libs/commit/a944201ca5752766a49689f42531c84f03798002))
+
+
+
+
+
+# [9.4.0](https://github.com/cozy/cozy-libs/compare/cozy-harvest-lib@9.3.0...cozy-harvest-lib@9.4.0) (2022-05-18)
+
+
+### Features
+
+* **harvest:** HandleOAuthResponse can deal with cozy-data from DOM ([7c6ac1a](https://github.com/cozy/cozy-libs/commit/7c6ac1a8de7dd2b136530d0aafdb1e3f9e28fa56))
+* **harvest:** OAuthFormWrapperComp can be passed to TriggerManager ([76ee8b7](https://github.com/cozy/cozy-libs/commit/76ee8b74d9314d3c66593dfe925880e6a296b420))
+
+
+
+
+
+# [9.3.0](https://github.com/cozy/cozy-libs/compare/cozy-harvest-lib@9.2.7...cozy-harvest-lib@9.3.0) (2022-05-17)
+
+
+### Features
+
+* Remove useVaultClient call in LegacyTriggerManager ([439e603](https://github.com/cozy/cozy-libs/commit/439e603cef915e9fede72ae293ae35ca330347eb))
+
+
+
+
+
 ## [9.2.7](https://github.com/cozy/cozy-libs/compare/cozy-harvest-lib@9.2.6...cozy-harvest-lib@9.2.7) (2022-05-14)
 
 

package/dist/components/TriggerManager.js

@@ -1,6 +1,5 @@
 import _extends from "@babel/runtime/helpers/extends";
 import _objectWithoutProperties from "@babel/runtime/helpers/objectWithoutProperties";
-import _defineProperty from "@babel/runtime/helpers/defineProperty";
 import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
 import _classCallCheck from "@babel/runtime/helpers/classCallCheck";
 import _createClass from "@babel/runtime/helpers/createClass";
@@ -10,9 +9,6 @@ import _possibleConstructorReturn from "@babel/runtime/helpers/possibleConstruct
 import _getPrototypeOf from "@babel/runtime/helpers/getPrototypeOf";
 var _excluded = ["onLaunch", "onSuccess", "onLoginSuccess", "onError", "initialTrigger"],
     _excluded2 = ["vaultUnlockFormProps"];
-
-var _DumbTriggerManager$p;
-
 import _regeneratorRuntime from "@babel/runtime/regenerator";
 
 function _createSuper(Derived) { var hasNativeReflectConstruct = _isNativeReflectConstruct(); return function _createSuperInternal() { var Super = _getPrototypeOf(Derived), result; if (hasNativeReflectConstruct) { var NewTarget = _getPrototypeOf(this).constructor; result = Reflect.construct(Super, arguments, NewTarget); } else { result = Super.apply(this, arguments); } return _possibleConstructorReturn(this, result); }; }
@@ -28,7 +24,7 @@ import { Account } from 'cozy-doctypes';
 import { translate } from 'cozy-ui/transpiled/react/I18n';
 import Spinner from 'cozy-ui/transpiled/react/Spinner';
 import { ModalBackButton } from 'cozy-ui/transpiled/react/Modal';
-import { CipherType, withVaultUnlockContext, VaultUnlockPlaceholder, VaultUnlockProvider, useVaultClient, CozyUtils } from 'cozy-keys-lib';
+import { CipherType, withVaultUnlockContext, VaultUnlockPlaceholder, VaultUnlockProvider, CozyUtils } from 'cozy-keys-lib';
 import AccountForm from './AccountForm';
 import OAuthForm from './OAuthForm';
 import { fetchAccount } from '../connections/accounts';
@@ -510,7 +506,8 @@ export var DumbTriggerManager = /*#__PURE__*/function (_Component) {
           fieldOptions = _this$props5.fieldOptions,
           flow = _this$props5.flow,
           flowState = _this$props5.flowState,
-          client = _this$props5.client;
+          client = _this$props5.client,
+          OAuthFormWrapperComp = _this$props5.OAuthFormWrapperComp;
       var submitting = flowState.running;
       var _this$state = this.state,
           account = _this$state.account,
@@ -525,13 +522,14 @@ export var DumbTriggerManager = /*#__PURE__*/function (_Component) {
       var konnectorPolicy = findKonnectorPolicy(konnector);
 
       if (oauth || konnectorPolicy.isBIWebView) {
-        return /*#__PURE__*/React.createElement(OAuthForm, {
+        var Wrapper = OAuthFormWrapperComp ? OAuthFormWrapperComp : React.Fragment;
+        return /*#__PURE__*/React.createElement(Wrapper, null, /*#__PURE__*/React.createElement(OAuthForm, {
           client: client,
           flow: flow,
           account: account,
           konnector: konnector,
           onSuccess: this.handleOAuthAccountId
-        });
+        }));
       }
 
       if (showSpinner) {
@@ -568,7 +566,7 @@ export var DumbTriggerManager = /*#__PURE__*/function (_Component) {
 
   return DumbTriggerManager;
 }(Component);
-DumbTriggerManager.propTypes = (_DumbTriggerManager$p = {
+DumbTriggerManager.propTypes = {
   /**
    * Account document. Used to get initial form values.
    * If no account is passed, AccountForm will use empty initial values.
@@ -609,21 +607,21 @@ DumbTriggerManager.propTypes = (_DumbTriggerManager$p = {
   vaultClient: PropTypes.object,
   client: PropTypes.object,
   onError: PropTypes.func,
-  showUnlockForm: PropTypes.func
-}, _defineProperty(_DumbTriggerManager$p, "onVaultDismiss", PropTypes.func), _defineProperty(_DumbTriggerManager$p, "error", PropTypes.any), _defineProperty(_DumbTriggerManager$p, "showError", PropTypes.bool), _defineProperty(_DumbTriggerManager$p, "fieldOptions", PropTypes.object), _defineProperty(_DumbTriggerManager$p, "flow", PropTypes.object), _defineProperty(_DumbTriggerManager$p, "flowState", PropTypes.object), _DumbTriggerManager$p);
+  showUnlockForm: PropTypes.func,
+  error: PropTypes.any,
+
+  /**
+   * Used to have options on fields (forceEncryptedPlaceholder or focus)
+   */
+  fieldOptions: PropTypes.object,
+  flow: PropTypes.object,
+  flowState: PropTypes.object,
+  // Used to inject a component around OAuthForm, and so customize the UI from the app
+  OAuthFormWrapperComp: PropTypes.node
+};
 var TriggerManager = compose(translate(), withClient, withVaultUnlockContext, withConnectionFlow())(DumbTriggerManager); // TriggerManager is exported wrapped in FlowProvider to avoid breaking changes.
 
 var LegacyTriggerManager = function LegacyTriggerManager(props) {
-  // Since the 4.1.0 of cozy-keys-lib, we
-  // render children even if vaultClient is
-  // not defined yet. In that case we we were
-  // displaying TriggerManager without vaultClient.
-  // It was raising an error.
-  // The current fix, is to not display the
-  // TriggerManager when vaultClient is null.
-  var vaultClient = useVaultClient();
-  if (!vaultClient) return null;
-
   var onLaunch = props.onLaunch,
       onSuccess = props.onSuccess,
       onLoginSuccess = props.onLoginSuccess,

package/dist/helpers/oauth.js

@@ -1,8 +1,9 @@
 import uuid from 'uuid/v4';
-import * as konnectors from './konnectors';
+import get from 'lodash/get';
 import CozyClient from 'cozy-client';
 import CozyRealtime from 'cozy-realtime';
-import get from 'lodash/get';
+import { readCozyDataFromDOM } from 'cozy-ui/transpiled/react/helpers/appDataset';
+import * as konnectors from './konnectors';
 export var OAUTH_REALTIME_CHANNEL = 'oauth-popup';
 /**
  * Checks that the given data for the given konnector is consistent with the
@@ -51,10 +52,11 @@ export var handleOAuthResponse = function handleOAuthResponse() {
     var client = options.client;
 
     if (!client) {
-      var root = document.querySelector('[role=application]');
+      var domain = readCozyDataFromDOM('domain');
+      var token = readCozyDataFromDOM('token');
       client = new CozyClient({
-        uri: "".concat(window.location.protocol, "//").concat(root.dataset.cozyDomain),
-        token: root.dataset.cozyToken
+        uri: "".concat(window.location.protocol, "//").concat(domain),
+        token: token
       });
     }
 

package/dist/services/biWebView.js

@@ -18,8 +18,11 @@ import { getBIConnection } from './bi-http';
 import assert from '../assert';
 import logger from '../logger';
 import flag from 'cozy-flags';
-import { fetchExtraOAuthUrlParams, createTemporaryToken, setBIConnectionId, saveBIConfig, findAccountWithBiConnection, convertBIErrortoKonnectorJobError, isBudgetInsightConnector } from './budget-insight';
+import { setBIConnectionId, saveBIConfig, findAccountWithBiConnection, convertBIErrortoKonnectorJobError, isBudgetInsightConnector } from './budget-insight';
 import { KonnectorJobError } from '../helpers/konnectors';
+import { waitForRealtimeEvent } from './jobUtils';
+import '../types';
+var TEMP_TOKEN_TIMOUT_S = 60;
 export var isBiWebViewConnector = function isBiWebViewConnector(konnector) {
   return flag('harvest.bi.webview') && isBudgetInsightConnector(konnector);
 };
@@ -116,19 +119,19 @@ export var checkBIConnection = /*#__PURE__*/function () {
 
 export var handleOAuthAccount = /*#__PURE__*/function () {
   var _ref4 = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime.mark(function _callee2(_ref3) {
-    var account, flow, konnector, client, t, cozyBankId, biWebviewAccount, connectionId;
+    var account, flow, konnector, client, t, cozyBankIds, biWebviewAccount, connectionId;
     return _regeneratorRuntime.wrap(function _callee2$(_context2) {
       while (1) {
         switch (_context2.prev = _context2.next) {
           case 0:
             account = _ref3.account, flow = _ref3.flow, konnector = _ref3.konnector, client = _ref3.client, t = _ref3.t;
-            cozyBankId = getCozyBankId({
+            cozyBankIds = getCozyBankIds({
               konnector: konnector,
               account: account
             });
-            biWebviewAccount = _objectSpread(_objectSpread({}, account), cozyBankId ? {
+            biWebviewAccount = _objectSpread(_objectSpread({}, account), cozyBankIds ? {
               auth: {
-                bankId: cozyBankId
+                bankIds: cozyBankIds
               }
             } : {});
             connectionId = getWebviewBIConnectionId(biWebviewAccount);
@@ -240,26 +243,125 @@ export var onBIAccountCreation = /*#__PURE__*/function () {
     return _ref6.apply(this, arguments);
   };
 }();
+export var fetchExtraOAuthUrlParams = /*#__PURE__*/function () {
+  var _ref8 = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime.mark(function _callee4(_ref7) {
+    var client, konnector, account, _yield$createTemporar, token, biBankId, biBankIds;
+
+    return _regeneratorRuntime.wrap(function _callee4$(_context4) {
+      while (1) {
+        switch (_context4.prev = _context4.next) {
+          case 0:
+            client = _ref7.client, konnector = _ref7.konnector, account = _ref7.account;
+            _context4.next = 3;
+            return createTemporaryToken({
+              client: client,
+              konnector: konnector,
+              account: account
+            });
+
+          case 3:
+            _yield$createTemporar = _context4.sent;
+            token = _yield$createTemporar.code;
+            biBankId = _yield$createTemporar.biBankId;
+            biBankIds = _yield$createTemporar.biBankIds;
+            return _context4.abrupt("return", {
+              id_connector: biBankId || biBankIds,
+              token: token
+            });
+
+          case 8:
+          case "end":
+            return _context4.stop();
+        }
+      }
+    }, _callee4);
+  }));
+
+  return function fetchExtraOAuthUrlParams(_x4) {
+    return _ref8.apply(this, arguments);
+  };
+}();
 /**
  * Finds the current bankIid in a given konnector or account
  *
  * @param {io.cozy.accounts} options.account The account content
  * @param {io.cozy.konnectors} options.konnector connector manifest content
+ * @return {Array<String>} - list of bank ids
  */
 
-export var getCozyBankId = function getCozyBankId(_ref7) {
-  var _konnector$parameters, _account$auth;
+export var getCozyBankIds = function getCozyBankIds(_ref9) {
+  var _konnector$parameters, _account$auth, _konnector$fields, _konnector$fields$ban;
 
-  var konnector = _ref7.konnector,
-      account = _ref7.account;
+  var konnector = _ref9.konnector,
+      account = _ref9.account;
   var cozyBankId = (konnector === null || konnector === void 0 ? void 0 : (_konnector$parameters = konnector.parameters) === null || _konnector$parameters === void 0 ? void 0 : _konnector$parameters.bankId) || (account === null || account === void 0 ? void 0 : (_account$auth = account.auth) === null || _account$auth === void 0 ? void 0 : _account$auth.bankId);
 
-  if (!cozyBankId) {
+  if (cozyBankId) {
+    return [cozyBankId];
+  }
+
+  var cozyBankIds = konnector === null || konnector === void 0 ? void 0 : (_konnector$fields = konnector.fields) === null || _konnector$fields === void 0 ? void 0 : (_konnector$fields$ban = _konnector$fields.bankId) === null || _konnector$fields$ban === void 0 ? void 0 : _konnector$fields$ban.options.map(function (opt) {
+    return opt === null || opt === void 0 ? void 0 : opt.value;
+  });
+
+  if (!(cozyBankIds !== null && cozyBankIds !== void 0 && cozyBankIds.length)) {
     logger.error('Could not find any bank id');
   }
 
-  return cozyBankId;
+  return cozyBankIds;
 };
+/**
+ * Gets a temporary token corresponding to the current BI user
+ *
+ * @param {CozyClient} options.client - CozyClient instance
+ * @param {io.cozy.konnectors} options.konnector connector manifest content
+ * @param {io.cozy.accounts} options.account The account content
+ *
+ * @returns {createTemporaryTokenResponse}
+ */
+
+export var createTemporaryToken = /*#__PURE__*/function () {
+  var _ref11 = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime.mark(function _callee5(_ref10) {
+    var client, konnector, account, cozyBankIds, jobResponse, event;
+    return _regeneratorRuntime.wrap(function _callee5$(_context5) {
+      while (1) {
+        switch (_context5.prev = _context5.next) {
+          case 0:
+            client = _ref10.client, konnector = _ref10.konnector, account = _ref10.account;
+            assert(konnector.slug, 'createTemporaryToken: konnector passed in options has no slug');
+            cozyBankIds = getCozyBankIds({
+              konnector: konnector,
+              account: account
+            });
+            assert(cozyBankIds.length, 'createTemporaryToken: Could not determine cozyBankId from account or konnector');
+            _context5.next = 6;
+            return client.stackClient.jobs.create('konnector', {
+              mode: 'getTemporaryToken',
+              konnector: konnector.slug,
+              bankIds: cozyBankIds
+            }, {}, true);
+
+          case 6:
+            jobResponse = _context5.sent;
+            _context5.next = 9;
+            return waitForRealtimeEvent(client, jobResponse.data.attributes, 'result', TEMP_TOKEN_TIMOUT_S * 1000);
+
+          case 9:
+            event = _context5.sent;
+            return _context5.abrupt("return", event.data.result);
+
+          case 11:
+          case "end":
+            return _context5.stop();
+        }
+      }
+    }, _callee5);
+  }));
+
+  return function createTemporaryToken(_x5) {
+    return _ref11.apply(this, arguments);
+  };
+}();
 export var konnectorPolicy = {
   isBIWebView: true,
   name: 'budget-insight-webview',

package/dist/services/biWebView.spec.js

@@ -113,7 +113,7 @@ describe('handleOAuthAccount', function () {
               t: t,
               account: _objectSpread(_objectSpread(_objectSpread({}, account), {
                 auth: {
-                  bankId: TEST_BANK_COZY_ID
+                  bankIds: [TEST_BANK_COZY_ID]
                 }
               }), {
                 data: {

package/dist/services/budget-insight.js

@@ -34,6 +34,7 @@ import { mkConnAuth, biErrorMap } from 'cozy-bi-auth';
 import { KonnectorJobError } from '../helpers/konnectors';
 import { LOGIN_SUCCESS_EVENT } from '../models/flowEvents';
 import logger from '../logger';
+import '../types';
 var DECOUPLED_ERROR = 'decoupled';
 var ADDITIONAL_INFORMATION_NEEDED_ERROR = 'additionalInformationNeeded';
 var TEMP_TOKEN_TIMOUT_S = 60;
@@ -401,19 +402,6 @@ export var resumeBIConnection = function resumeBIConnection(flow) {
     resume: 'true'
   });
 };
-/**
- * @typedef biConnection
- * @property {number} id
- * @property {number} id_user
- * @property {number} id_connector
- * @property {string|null} state  - ( wrongpass | additionalInformationNeeded | websiteUnavailable | actionNeeded | SCARequired | decoupled | passwordExpired | webauthRequired | rateLimiting | bug). Null indicates a success
- * @property {string|null} last_update - Date string: Last successful update.
- * @property {string|null} created - Date string: Creation date
- * @property {boolean} active - Whether this connection is active and will be automatically synced.
- * @property {string|null} last_push - Date string: Last successfull push
- * @property {string|null} next_try - Date string: Date of next synchronization.
- */
-
 /**
  * Checks for any number 2FA and/or decoupled requests
  *

package/dist/types.js

@@ -0,0 +1,22 @@
+/**
+ * @typedef createTemporaryTokenResponse
+ * @property {String} code - the temporary token
+ * @property {String} url - BI environment url
+ * @property {String} bankId - Cozy bank id corresponding to the current connector (deprecated once bi webviews are in production)
+ * @property {String} biBankId - BI bank id corresponding to the bankId translated by the connector (deprecated once bi webviews are in production)
+ * @property {Array<String>} bankIds - Cozy bank ids corresponding to the current connector
+ * @property {Array<String>} biBankIds - BI bank ids corresponding to the bankIds translated by the connector
+ */
+
+/**
+ * @typedef biConnection
+ * @property {number} id
+ * @property {number} id_user
+ * @property {number} id_connector
+ * @property {string|null} state  - ( wrongpass | additionalInformationNeeded | websiteUnavailable | actionNeeded | SCARequired | decoupled | passwordExpired | webauthRequired | rateLimiting | bug). Null indicates a success
+ * @property {string|null} last_update - Date string: Last successful update.
+ * @property {string|null} created - Date string: Creation date
+ * @property {boolean} active - Whether this connection is active and will be automatically synced.
+ * @property {string|null} last_push - Date string: Last successfull push
+ * @property {string|null} next_try - Date string: Date of next synchronization.
+ */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cozy-harvest-lib",
-  "version": "9.2.7",
+  "version": "9.5.0",
   "description": "Provides logic, modules and components for Cozy's harvest applications.",
   "main": "dist/index.js",
   "author": "Cozy",
@@ -87,5 +87,5 @@
     "react-router-dom": "^5.0.1"
   },
   "sideEffects": false,
-  "gitHead": "a29540278e4a6456a14cb04d95e99d8c39bf4c6d"
+  "gitHead": "d941e5ac9af1ce3e4394034f8a989431d233e84f"
 }

package/src/components/TriggerManager.jsx

@@ -15,7 +15,6 @@ import {
   withVaultUnlockContext,
   VaultUnlockPlaceholder,
   VaultUnlockProvider,
-  useVaultClient,
   CozyUtils
 } from 'cozy-keys-lib'
 
@@ -313,8 +312,16 @@ export class DumbTriggerManager extends Component {
   }
 
   render() {
-    const { konnector, showError, t, fieldOptions, flow, flowState, client } =
-      this.props
+    const {
+      konnector,
+      showError,
+      t,
+      fieldOptions,
+      flow,
+      flowState,
+      client,
+      OAuthFormWrapperComp
+    } = this.props
 
     const submitting = flowState.running
 
@@ -329,14 +336,19 @@ export class DumbTriggerManager extends Component {
     const konnectorPolicy = findKonnectorPolicy(konnector)
 
     if (oauth || konnectorPolicy.isBIWebView) {
+      const Wrapper = OAuthFormWrapperComp
+        ? OAuthFormWrapperComp
+        : React.Fragment
       return (
-        <OAuthForm
-          client={client}
-          flow={flow}
-          account={account}
-          konnector={konnector}
-          onSuccess={this.handleOAuthAccountId}
-        />
+        <Wrapper>
+          <OAuthForm
+            client={client}
+            flow={flow}
+            account={account}
+            konnector={konnector}
+            onSuccess={this.handleOAuthAccountId}
+          />
+        </Wrapper>
       )
     }
 
@@ -424,21 +436,15 @@ DumbTriggerManager.propTypes = {
   client: PropTypes.object,
   onError: PropTypes.func,
   showUnlockForm: PropTypes.func,
-  onVaultDismiss: PropTypes.func,
   error: PropTypes.any,
-   /**
-   * Indicates if the AccountForm has to show errors. Sometimes errors may be
-   * displayed elsewhere. However, a KonnectorJobError corresponding to a login
-   * error is always displayed.
-   * @type {Boolean}
-   */
-    showError: PropTypes.bool,
   /**
    * Used to have options on fields (forceEncryptedPlaceholder or focus)
    */
   fieldOptions: PropTypes.object,
   flow: PropTypes.object,
-  flowState: PropTypes.object
+  flowState: PropTypes.object,
+  // Used to inject a component around OAuthForm, and so customize the UI from the app
+  OAuthFormWrapperComp: PropTypes.node
 }
 
 const TriggerManager = compose(
@@ -450,15 +456,6 @@ const TriggerManager = compose(
 
 // TriggerManager is exported wrapped in FlowProvider to avoid breaking changes.
 const LegacyTriggerManager = props => {
-  // Since the 4.1.0 of cozy-keys-lib, we
-  // render children even if vaultClient is
-  // not defined yet. In that case we we were
-  // displaying TriggerManager without vaultClient.
-  // It was raising an error.
-  // The current fix, is to not display the
-  // TriggerManager when vaultClient is null.
-  const vaultClient = useVaultClient()
-  if (!vaultClient) return null
   const {
     onLaunch,
     onSuccess,

package/src/helpers/oauth.js

@@ -1,9 +1,11 @@
 import uuid from 'uuid/v4'
+import get from 'lodash/get'
 
-import * as konnectors from './konnectors'
 import CozyClient from 'cozy-client'
 import CozyRealtime from 'cozy-realtime'
-import get from 'lodash/get'
+import { readCozyDataFromDOM } from 'cozy-ui/transpiled/react/helpers/appDataset'
+
+import * as konnectors from './konnectors'
 
 export const OAUTH_REALTIME_CHANNEL = 'oauth-popup'
 
@@ -55,10 +57,12 @@ export const handleOAuthResponse = (options = {}) => {
   if (!realtime) {
     let client = options.client
     if (!client) {
-      const root = document.querySelector('[role=application]')
+      const domain = readCozyDataFromDOM('domain')
+      const token = readCozyDataFromDOM('token')
+
       client = new CozyClient({
-        uri: `${window.location.protocol}//${root.dataset.cozyDomain}`,
-        token: root.dataset.cozyToken
+        uri: `${window.location.protocol}//${domain}`,
+        token: token
       })
     }
     realtime = new CozyRealtime({ client })

package/src/services/biWebView.js

@@ -9,8 +9,6 @@ import assert from '../assert'
 import logger from '../logger'
 import flag from 'cozy-flags'
 import {
-  fetchExtraOAuthUrlParams,
-  createTemporaryToken,
   setBIConnectionId,
   saveBIConfig,
   findAccountWithBiConnection,
@@ -18,6 +16,10 @@ import {
   isBudgetInsightConnector
 } from './budget-insight'
 import { KonnectorJobError } from '../helpers/konnectors'
+import { waitForRealtimeEvent } from './jobUtils'
+import '../types'
+
+const TEMP_TOKEN_TIMOUT_S = 60
 
 export const isBiWebViewConnector = konnector =>
   flag('harvest.bi.webview') && isBudgetInsightConnector(konnector)
@@ -94,10 +96,10 @@ export const handleOAuthAccount = async ({
   client,
   t
 }) => {
-  const cozyBankId = getCozyBankId({ konnector, account })
+  const cozyBankIds = getCozyBankIds({ konnector, account })
   let biWebviewAccount = {
     ...account,
-    ...(cozyBankId ? { auth: { bankId: cozyBankId } } : {})
+    ...(cozyBankIds ? { auth: { bankIds: cozyBankIds } } : {})
   }
 
   const connectionId = getWebviewBIConnectionId(biWebviewAccount)
@@ -167,18 +169,81 @@ export const onBIAccountCreation = async ({
   return await flow.saveAccount(setBIConnectionId(account, biConnection.id))
 }
 
+export const fetchExtraOAuthUrlParams = async ({
+  client,
+  konnector,
+  account
+}) => {
+  const {
+    code: token,
+    biBankId,
+    biBankIds
+  } = await createTemporaryToken({
+    client,
+    konnector,
+    account
+  })
+
+  return { id_connector: biBankId || biBankIds, token }
+}
+
 /**
  * Finds the current bankIid in a given konnector or account
  *
  * @param {io.cozy.accounts} options.account The account content
  * @param {io.cozy.konnectors} options.konnector connector manifest content
+ * @return {Array<String>} - list of bank ids
  */
-export const getCozyBankId = ({ konnector, account }) => {
+export const getCozyBankIds = ({ konnector, account }) => {
   const cozyBankId = konnector?.parameters?.bankId || account?.auth?.bankId
-  if (!cozyBankId) {
+
+  if (cozyBankId) {
+    return [cozyBankId]
+  }
+
+  const cozyBankIds = konnector?.fields?.bankId?.options.map(opt => opt?.value)
+  if (!cozyBankIds?.length) {
     logger.error('Could not find any bank id')
   }
-  return cozyBankId
+  return cozyBankIds
+}
+
+/**
+ * Gets a temporary token corresponding to the current BI user
+ *
+ * @param {CozyClient} options.client - CozyClient instance
+ * @param {io.cozy.konnectors} options.konnector connector manifest content
+ * @param {io.cozy.accounts} options.account The account content
+ *
+ * @returns {createTemporaryTokenResponse}
+ */
+export const createTemporaryToken = async ({ client, konnector, account }) => {
+  assert(
+    konnector.slug,
+    'createTemporaryToken: konnector passed in options has no slug'
+  )
+  const cozyBankIds = getCozyBankIds({ konnector, account })
+  assert(
+    cozyBankIds.length,
+    'createTemporaryToken: Could not determine cozyBankId from account or konnector'
+  )
+  const jobResponse = await client.stackClient.jobs.create(
+    'konnector',
+    {
+      mode: 'getTemporaryToken',
+      konnector: konnector.slug,
+      bankIds: cozyBankIds
+    },
+    {},
+    true
+  )
+  const event = await waitForRealtimeEvent(
+    client,
+    jobResponse.data.attributes,
+    'result',
+    TEMP_TOKEN_TIMOUT_S * 1000
+  )
+  return event.data.result
 }
 
 export const konnectorPolicy = {

package/src/services/biWebView.spec.js

@@ -69,7 +69,7 @@ describe('handleOAuthAccount', () => {
       t,
       account: {
         ...account,
-        ...{ auth: { bankId: TEST_BANK_COZY_ID } },
+        ...{ auth: { bankIds: [TEST_BANK_COZY_ID] } },
         ...{ data: { auth: { bi: { connId: 12 } } } }
       }
     })

package/src/services/budget-insight.js

@@ -27,6 +27,7 @@ import { mkConnAuth, biErrorMap } from 'cozy-bi-auth'
 import { KonnectorJobError } from '../helpers/konnectors'
 import { LOGIN_SUCCESS_EVENT } from '../models/flowEvents'
 import logger from '../logger'
+import '../types'
 
 const DECOUPLED_ERROR = 'decoupled'
 const ADDITIONAL_INFORMATION_NEEDED_ERROR = 'additionalInformationNeeded'
@@ -292,19 +293,6 @@ export const resumeBIConnection = flow => {
   return updateBIConnectionFromFlow(flow, { resume: 'true' })
 }
 
-/**
- * @typedef biConnection
- * @property {number} id
- * @property {number} id_user
- * @property {number} id_connector
- * @property {string|null} state  - ( wrongpass | additionalInformationNeeded | websiteUnavailable | actionNeeded | SCARequired | decoupled | passwordExpired | webauthRequired | rateLimiting | bug). Null indicates a success
- * @property {string|null} last_update - Date string: Last successful update.
- * @property {string|null} created - Date string: Creation date
- * @property {boolean} active - Whether this connection is active and will be automatically synced.
- * @property {string|null} last_push - Date string: Last successfull push
- * @property {string|null} next_try - Date string: Date of next synchronization.
- */
-
 /**
  * Checks for any number 2FA and/or decoupled requests
  *

package/src/types.js

@@ -0,0 +1,22 @@
+/**
+ * @typedef createTemporaryTokenResponse
+ * @property {String} code - the temporary token
+ * @property {String} url - BI environment url
+ * @property {String} bankId - Cozy bank id corresponding to the current connector (deprecated once bi webviews are in production)
+ * @property {String} biBankId - BI bank id corresponding to the bankId translated by the connector (deprecated once bi webviews are in production)
+ * @property {Array<String>} bankIds - Cozy bank ids corresponding to the current connector
+ * @property {Array<String>} biBankIds - BI bank ids corresponding to the bankIds translated by the connector
+ */
+
+/**
+ * @typedef biConnection
+ * @property {number} id
+ * @property {number} id_user
+ * @property {number} id_connector
+ * @property {string|null} state  - ( wrongpass | additionalInformationNeeded | websiteUnavailable | actionNeeded | SCARequired | decoupled | passwordExpired | webauthRequired | rateLimiting | bug). Null indicates a success
+ * @property {string|null} last_update - Date string: Last successful update.
+ * @property {string|null} created - Date string: Creation date
+ * @property {boolean} active - Whether this connection is active and will be automatically synced.
+ * @property {string|null} last_push - Date string: Last successfull push
+ * @property {string|null} next_try - Date string: Date of next synchronization.
+ */