feishu-user-plugin 1.1.0 → 1.1.2

package/.claude-plugin/plugin.json

@@ -1,6 +1,6 @@
 {
   "name": "feishu-user-plugin",
-  "version": "1.1.0",
+  "version": "1.1.2",
   "description": "All-in-one Feishu plugin for Claude Code — send messages as yourself, read chats, manage docs/tables/wiki. 33 tools + 9 skills, 3 auth layers.",
   "author": {
     "name": "EthanQC"

package/CHANGELOG.md

@@ -4,6 +4,21 @@ All notable changes to this project will be documented in this file.
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/), and this project adheres to [Semantic Versioning](https://semver.org/).
 
+## [1.1.2] - 2026-03-11
+
+### Fixed
+- **Double OAuth on first install**: `oauth.js` now writes tokens to both `.env` and `~/.claude.json` MCP config directly, so MCP restart picks them up immediately without needing a second OAuth run.
+- **readMessagesAsUser fails with start_time but no end_time**: Auto-sets `end_time` to current timestamp when `start_time` is provided but `end_time` is not, preventing "end_time earlier than start_time" error.
+- **read_p2p_messages rejects chat names**: Now resolves user/group names automatically via search_contacts.
+- **External group messages show sender IDs instead of names**: `_populateSenderNames` now falls back to cookie-based user identity lookup for external tenant users.
+
+## [1.1.1] - 2026-03-11
+
+### Fixed
+- **read_messages can't read external groups**: `read_messages` now auto-falls back to UAT when bot API fails (e.g. bot not in group, external groups). No need to manually switch to `read_p2p_messages`.
+- **Chat name resolution for external groups**: Added Strategy 3 using `search_contacts` (cookie-based) to find groups not visible to bot or `im.chat.search`.
+- **Numeric chat IDs not accepted by read_messages**: `resolveToOcId` now passes through numeric IDs directly.
+
 ## [1.1.0] - 2026-03-11
 
 ### Fixed

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "feishu-user-plugin",
-  "version": "1.1.0",
+  "version": "1.1.2",
   "description": "All-in-one Feishu plugin for Claude Code — send messages as yourself, read chats, manage docs/tables/wiki. 33 tools + 9 skills, 3 auth layers.",
   "main": "src/index.js",
   "bin": {

package/skills/feishu-user-plugin/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: feishu-user-plugin
-version: "1.1.0"
+version: "1.1.2"
 description: "All-in-one Feishu plugin — send messages as yourself, read group/P2P chats, manage docs/tables/wiki. Replaces and extends the official Feishu MCP."
 allowed-tools: send_to_user, send_to_group, send_as_user, send_image_as_user, send_file_as_user, send_post_as_user, send_sticker_as_user, send_audio_as_user, search_contacts, create_p2p_chat, get_chat_info, get_user_info, get_login_status, read_p2p_messages, list_user_chats, list_chats, read_messages, reply_message, forward_message, search_docs, read_doc, create_doc, list_bitable_tables, list_bitable_fields, search_bitable_records, create_bitable_record, update_bitable_record, list_wiki_spaces, search_wiki, list_wiki_nodes, list_files, create_folder, find_user
 user_invocable: true

package/skills/feishu-user-plugin/references/CLAUDE.md

@@ -30,7 +30,7 @@ All-in-one Feishu plugin for Claude Code with three auth layers:
 - `list_user_chats` — List group chats the user is in. Note: API only returns groups, not P2P. For P2P, use: `search_contacts` → `create_p2p_chat` → `read_p2p_messages`.
 
 ### Official API Tools (app credentials)
-- `list_chats` / `read_messages` — Chat history (read_messages accepts chat name, auto-resolves to oc_ ID)
+- `list_chats` / `read_messages` — Chat history (accepts chat name, oc_ ID, or numeric ID; auto-falls back to UAT for external groups)
 - `reply_message` / `forward_message` — Message operations (as bot). reply_message only works for text messages.
 - `search_docs` / `read_doc` / `create_doc` — Document operations
 - `list_bitable_tables` / `list_bitable_fields` / `search_bitable_records` — Table queries
@@ -42,7 +42,7 @@ All-in-one Feishu plugin for Claude Code with three auth layers:
 ## Usage Patterns
 - Send text as yourself → `send_to_user` or `send_to_group`
 - Send rich content → `send_post_as_user` (formatted text), `send_image_as_user` (images)
-- Read group chat history → `read_messages` with chat name or oc_ ID
+- Read any group chat history → `read_messages` with chat name or ID (auto-handles external groups via UAT fallback)
 - Read P2P chat history → `search_contacts` → `create_p2p_chat` → `read_p2p_messages`
 - Reply as user in thread → `send_as_user` with root_id
 - Reply as bot → `reply_message` (official API, text messages only)

package/src/index.js

@@ -48,6 +48,8 @@ class ChatIdMapper {
 
   async resolveToOcId(chatIdOrName, official) {
     if (chatIdOrName.startsWith('oc_')) return chatIdOrName;
+    // Also accept raw numeric IDs (from search_contacts)
+    if (/^\d+$/.test(chatIdOrName)) return chatIdOrName;
     // Strategy 1: Search in bot's group list cache
     const cached = await this.findByName(chatIdOrName, official);
     if (cached) return cached;
@@ -67,6 +69,27 @@ class ChatIdMapper {
     }
     return null;
   }
+
+  // Strategy 3: Use search_contacts (cookie-based) to find external groups by name
+  // Returns numeric chat_id that works with UAT readMessagesAsUser
+  async resolveViaContacts(chatName, userClient) {
+    if (!userClient) return null;
+    try {
+      const results = await userClient.search(chatName);
+      const groups = results.filter(r => r.type === 'group');
+      // Exact match first
+      for (const g of groups) {
+        if (g.title === chatName) return String(g.id);
+      }
+      // Partial match
+      for (const g of groups) {
+        if (g.title && g.title.includes(chatName)) return String(g.id);
+      }
+    } catch (e) {
+      console.error('[feishu-user-plugin] search_contacts fallback failed:', e.message);
+    }
+    return null;
+  }
 }
 
 // --- Client Singletons ---
@@ -306,11 +329,11 @@ const TOOLS = [
   },
   {
     name: 'read_messages',
-    description: '[Official API] Read message history. Accepts oc_xxx ID or chat name (auto-searched via bot group list + im.chat.search). Returns newest messages first by default, with sender names resolved.',
+    description: '[Official API + UAT fallback] Read message history from any group. Accepts oc_xxx ID, numeric ID, or chat name (auto-searched). Auto-falls back to UAT for external groups the bot cannot access. Returns newest messages first by default, with sender names resolved.',
     inputSchema: {
       type: 'object',
       properties: {
-        chat_id: { type: 'string', description: 'Chat ID (oc_xxx) or chat name (auto-searched)' },
+        chat_id: { type: 'string', description: 'Chat ID (oc_xxx), numeric ID, or chat name (auto-searched via bot groups, im.chat.search, and user contacts)' },
         page_size: { type: 'number', description: 'Messages to fetch (default 20, max 50)' },
         start_time: { type: 'string', description: 'Start timestamp in seconds (optional)' },
         end_time: { type: 'string', description: 'End timestamp in seconds (optional)' },
@@ -508,7 +531,7 @@ const TOOLS = [
 // --- Server ---
 
 const server = new Server(
-  { name: 'feishu-user-plugin', version: '1.1.0' },
+  { name: 'feishu-user-plugin', version: '1.1.2' },
   { capabilities: { tools: {} } }
 );
 
@@ -639,10 +662,34 @@ async function handleTool(name, args) {
 
     case 'read_p2p_messages': {
       const official = getOfficialClient();
-      return json(await official.readMessagesAsUser(args.chat_id, {
+      let chatId = args.chat_id;
+      // If chat_id is not numeric or oc_, try to resolve as user name → P2P chat
+      if (!/^\d+$/.test(chatId) && !chatId.startsWith('oc_')) {
+        let uc = null;
+        try { uc = await getUserClient(); } catch (_) {}
+        if (uc) {
+          const results = await uc.search(chatId);
+          const user = results.find(r => r.type === 'user');
+          if (user) {
+            const pChatId = await uc.createChat(String(user.id));
+            if (pChatId) chatId = String(pChatId);
+            else return text(`Found user "${user.title}" but failed to create P2P chat.`);
+          } else {
+            // Maybe it's a group name
+            const group = results.find(r => r.type === 'group');
+            if (group) chatId = String(group.id);
+            else return text(`Cannot resolve "${args.chat_id}" to a chat. Use search_contacts to find the ID first.`);
+          }
+        } else {
+          return text(`"${args.chat_id}" is not a valid chat ID. Provide a numeric ID or oc_xxx format. Use search_contacts + create_p2p_chat to get the ID.`);
+        }
+      }
+      let uc = null;
+      try { uc = await getUserClient(); } catch (_) {}
+      return json(await official.readMessagesAsUser(chatId, {
         pageSize: args.page_size, startTime: args.start_time, endTime: args.end_time,
         sortType: args.sort_type,
-      }));
+      }, uc));
     }
     case 'list_user_chats':
       return json(await getOfficialClient().listChatsAsUser({ pageSize: args.page_size, pageToken: args.page_token }));
@@ -653,14 +700,40 @@ async function handleTool(name, args) {
       return json(await getOfficialClient().listChats({ pageSize: args.page_size, pageToken: args.page_token }));
     case 'read_messages': {
       const official = getOfficialClient();
+      const msgOpts = { pageSize: args.page_size, startTime: args.start_time, endTime: args.end_time, sortType: args.sort_type };
+      // Get userClient for name resolution fallback (best-effort)
+      let uc = null;
+      try { uc = await getUserClient(); } catch (_) {}
       const resolvedChatId = await chatIdMapper.resolveToOcId(args.chat_id, official);
-      if (!resolvedChatId) {
-        return text(`Cannot resolve "${args.chat_id}" to oc_ ID. Searched bot's group list and used im.chat.search API — no match found.\nTry: list_chats to see all bot groups, or provide the oc_xxx ID directly.\nIf the bot is not in this group, use read_p2p_messages with UAT instead.`);
+
+      // Try bot API first if we resolved an oc_ ID
+      if (resolvedChatId) {
+        try {
+          return json(await official.readMessages(resolvedChatId, msgOpts, uc));
+        } catch (botErr) {
+          // Bot API failed (e.g. bot not in group, no permission) — fall through to UAT
+          console.error(`[feishu-user-plugin] read_messages bot API failed for ${resolvedChatId}: ${botErr.message}`);
+          if (official.hasUAT) {
+            try {
+              return json(await official.readMessagesAsUser(resolvedChatId, msgOpts, uc));
+            } catch (uatErr) {
+              console.error(`[feishu-user-plugin] read_messages UAT fallback also failed for ${resolvedChatId}: ${uatErr.message}`);
+            }
+          }
+          throw botErr; // Re-throw original error if UAT also failed
+        }
       }
-      return json(await official.readMessages(resolvedChatId, {
-        pageSize: args.page_size, startTime: args.start_time, endTime: args.end_time,
-        sortType: args.sort_type,
-      }));
+
+      // Bot couldn't resolve the chat name — try search_contacts + UAT for external groups
+      if (official.hasUAT) {
+        if (!uc) try { uc = await getUserClient(); } catch (_) {}
+        const contactChatId = await chatIdMapper.resolveViaContacts(args.chat_id, uc);
+        if (contactChatId) {
+          return json(await official.readMessagesAsUser(contactChatId, msgOpts, uc));
+        }
+      }
+
+      return text(`Cannot resolve "${args.chat_id}" to a chat ID.\nSearched: bot's group list, im.chat.search API, and user contacts (search_contacts).\nTry: provide the oc_xxx or numeric chat ID directly.`);
     }
     case 'reply_message':
       return text(`Reply sent: ${(await getOfficialClient().replyMessage(args.message_id, args.text)).messageId}`);
@@ -725,7 +798,7 @@ async function main() {
   const hasCookie = !!process.env.LARK_COOKIE;
   const hasApp = !!(process.env.LARK_APP_ID && process.env.LARK_APP_SECRET);
   const hasUAT = !!process.env.LARK_USER_ACCESS_TOKEN;
-  console.error(`[feishu-user-plugin] MCP Server v1.1.0 — ${TOOLS.length} tools`);
+  console.error(`[feishu-user-plugin] MCP Server v1.1.2 — ${TOOLS.length} tools`);
   console.error(`[feishu-user-plugin] Auth: Cookie=${hasCookie ? 'YES' : 'NO'} App=${hasApp ? 'YES' : 'NO'} UAT=${hasUAT ? 'YES' : 'NO'}`);
   if (!hasCookie) console.error('[feishu-user-plugin] WARNING: LARK_COOKIE not set — user identity tools (send_to_user, etc.) will fail');
   if (!hasApp) console.error('[feishu-user-plugin] WARNING: LARK_APP_ID/SECRET not set — official API tools (read_messages, docs, etc.) will fail');

package/src/oauth.js

@@ -121,6 +121,31 @@ function saveToken(tokenData) {
   }
 
   fs.writeFileSync(envPath, envContent.trim() + '\n');
+
+  // Also persist to ~/.claude.json MCP config so MCP restart picks up tokens immediately
+  _persistToClaudeJson(updates);
+}
+
+function _persistToClaudeJson(updates) {
+  const claudeJsonPaths = [
+    path.join(process.env.HOME || '', '.claude.json'),
+    path.join(process.env.HOME || '', '.claude', '.claude.json'),
+  ];
+  for (const cjPath of claudeJsonPaths) {
+    try {
+      const raw = fs.readFileSync(cjPath, 'utf8');
+      const config = JSON.parse(raw);
+      const servers = config.mcpServers || {};
+      for (const name of ['feishu-user-plugin', 'feishu']) {
+        if (servers[name]?.env) {
+          Object.assign(servers[name].env, updates);
+          fs.writeFileSync(cjPath, JSON.stringify(config, null, 2) + '\n');
+          console.log(`[feishu-user-plugin] OAuth tokens persisted to ${cjPath}`);
+          return;
+        }
+      }
+    } catch {}
+  }
 }
 
 const server = http.createServer(async (req, res) => {

package/src/official.js

@@ -156,7 +156,11 @@ class LarkOfficialClient {
     return { items: data.data.items || [], pageToken: data.data.page_token, hasMore: data.data.has_more };
   }
 
-  async readMessagesAsUser(chatId, { pageSize = 20, startTime, endTime, pageToken, sortType = 'ByCreateTimeDesc' } = {}) {
+  async readMessagesAsUser(chatId, { pageSize = 20, startTime, endTime, pageToken, sortType = 'ByCreateTimeDesc' } = {}, userClient) {
+    // Feishu API requires end_time >= start_time; auto-set end_time to now if missing
+    if (startTime && !endTime) {
+      endTime = String(Math.floor(Date.now() / 1000));
+    }
     const params = new URLSearchParams({
       container_id_type: 'chat', container_id: chatId, page_size: String(pageSize),
       sort_type: sortType,
@@ -172,7 +176,7 @@ class LarkOfficialClient {
     });
     if (data.code !== 0) throw new Error(`readMessagesAsUser failed (${data.code}): ${data.msg}`);
     const items = (data.data.items || []).map(m => this._formatMessage(m));
-    await this._populateSenderNames(items);
+    await this._populateSenderNames(items, userClient);
     return { items, hasMore: data.data.has_more, pageToken: data.data.page_token };
   }
 
@@ -186,14 +190,14 @@ class LarkOfficialClient {
     return { items: res.data.items || [], pageToken: res.data.page_token, hasMore: res.data.has_more };
   }
 
-  async readMessages(chatId, { pageSize = 20, startTime, endTime, pageToken, sortType = 'ByCreateTimeDesc' } = {}) {
+  async readMessages(chatId, { pageSize = 20, startTime, endTime, pageToken, sortType = 'ByCreateTimeDesc' } = {}, userClient) {
     const params = { container_id_type: 'chat', container_id: chatId, page_size: pageSize, sort_type: sortType };
     if (startTime) params.start_time = startTime;
     if (endTime) params.end_time = endTime;
     if (pageToken) params.page_token = pageToken;
     const res = await this._safeSDKCall(() => this.client.im.message.list({ params }), 'readMessages');
     const items = (res.data.items || []).map(m => this._formatMessage(m));
-    await this._populateSenderNames(items);
+    await this._populateSenderNames(items, userClient);
     return { items, hasMore: res.data.has_more, pageToken: res.data.page_token };
   }
 
@@ -429,7 +433,7 @@ class LarkOfficialClient {
     return null;
   }
 
-  async _populateSenderNames(items) {
+  async _populateSenderNames(items, userClient) {
     // Collect unique sender IDs that aren't cached
     const unknownIds = new Set();
     for (const item of items) {
@@ -437,10 +441,21 @@ class LarkOfficialClient {
         unknownIds.add(item.senderId);
       }
     }
-    // Batch resolve (sequential, with caching to avoid duplicate calls)
+    // Batch resolve via official contact API
     for (const id of unknownIds) {
       await this.getUserById(id);
     }
+    // Fallback: resolve remaining unknowns via cookie-based user identity client
+    if (userClient) {
+      for (const id of unknownIds) {
+        if (!this._userNameCache.has(id) || !this._userNameCache.get(id)) {
+          try {
+            const name = await userClient.getUserName(id);
+            if (name) this._userNameCache.set(id, name);
+          } catch {}
+        }
+      }
+    }
     // Populate senderName field
     for (const item of items) {
       if (item.senderId) {

package/src/test-comprehensive.js

@@ -274,7 +274,7 @@ async function testUAT() {
 }
 
 async function main() {
-  console.log('=== feishu-user-plugin v1.1.0 — Comprehensive Test ===\n');
+  console.log('=== feishu-user-plugin v1.1.2 — Comprehensive Test ===\n');
 
   await testUserIdentity();
   console.log('');