job-pro 0.9.5 → 0.9.6

package/dist/apply.js

@@ -355,3 +355,215 @@ async function buildMultipartForm(staged) {
     }
     return fd;
 }
+/**
+ * Feishu Recruiting 3-step submission. Used by every 🟡 feishu-3-step
+ * adapter (xiaomi / nio / minimax / zhipu / iqiyi / agibot / zerooneai /
+ * baichuan, and moonshot when wired through the Feishu helper).
+ *
+ * Steps:
+ *   1. POST {host}/api/v1/attachment/upload/tokens
+ *      body: { filename, file_size }
+ *      → { code:0, data:{ upload_url, attachment_id, fields:{…} } }
+ *   2. POST/PUT to data.upload_url (lf-package-cn.feishucdn.com or similar)
+ *      multipart/form-data with fields[…] + file bytes
+ *   3. POST {host}/api/v1/resume/apply
+ *      body: { post_id, attachment_id, applicant_info:{ name, email, phone } }
+ *      → { code:0, data:{ application_id } }
+ *
+ * Session.json must contain valid Feishu cookies (typically `_csrf_token`,
+ * `lark_oapi_session`, `passport_csrf_token`) for the host.
+ */
+export async function executeFeishu3Step(staged, session, target) {
+    if (!staged.submit_endpoint) {
+        return { ok: false, posted_to: "", message: "no submit_endpoint", steps: [] };
+    }
+    if (target.kind === "dry-run") {
+        return {
+            ok: false,
+            posted_to: "dry-run (no network)",
+            message: "dry-run requested — no HTTP call fired",
+            steps: [],
+        };
+    }
+    if (target.kind === "upstream" && !session) {
+        return {
+            ok: false,
+            posted_to: staged.submit_endpoint,
+            message: "executeFeishu3Step requires a captured session (~/.jobpro/<adapter>.session.json) " +
+                "— Feishu apply endpoints all gate on candidate-session cookies. Install extension/ " +
+                "in Chrome, log in to the careers site, click Export.",
+            steps: [],
+        };
+    }
+    const submitUrl = new URL(staged.submit_endpoint);
+    const host = submitUrl.host;
+    const apiRoot = `${submitUrl.protocol}//${host}/api/v1`;
+    const debug = target.kind === "debug";
+    // Resolve the resume file from staged fields.
+    const resumeField = staged.staged.find((f) => f.name === "resume");
+    if (!resumeField || !resumeField.value) {
+        return { ok: false, posted_to: "", message: "staged.resume missing", steps: [] };
+    }
+    let resumeBytes;
+    try {
+        resumeBytes = readFileSync(resumeField.value);
+    }
+    catch (err) {
+        return {
+            ok: false,
+            posted_to: "",
+            message: `could not read resume ${resumeField.value}: ${err instanceof Error ? err.message : err}`,
+            steps: [],
+        };
+    }
+    const filename = resumeField.value.split("/").pop() ?? "resume.pdf";
+    const fileSize = resumeBytes.length;
+    const steps = [];
+    const sessionHeaders = sessionHeaderBag(session, host);
+    // STEP 1 — upload tokens
+    const step1Url = debug ? target.url : `${apiRoot}/attachment/upload/tokens`;
+    let step1Resp;
+    try {
+        step1Resp = await fetch(step1Url, {
+            method: "POST",
+            headers: {
+                ...sessionHeaders,
+                "Content-Type": "application/json",
+                Accept: "application/json, text/plain, */*",
+            },
+            body: JSON.stringify({ filename, file_size: fileSize }),
+        });
+    }
+    catch (err) {
+        steps.push({ step: "upload-tokens", url: step1Url, status: 0, ok: false, message: String(err) });
+        return { ok: false, posted_to: step1Url, message: "step 1 network error", steps };
+    }
+    const step1Body = await step1Resp.text();
+    steps.push({
+        step: "upload-tokens",
+        url: step1Url,
+        status: step1Resp.status,
+        ok: step1Resp.ok,
+        message: step1Body.slice(0, 200),
+    });
+    if (!step1Resp.ok) {
+        return { ok: false, posted_to: step1Url, status: step1Resp.status, message: "step 1 failed (upload tokens)", steps, response_preview: step1Body.slice(0, 4000) };
+    }
+    // In debug mode, we don't actually have a presigned URL — short-circuit.
+    if (debug) {
+        return {
+            ok: true,
+            posted_to: step1Url,
+            status: step1Resp.status,
+            message: "debug-submit-to: step 1 fired; steps 2+3 skipped (no real upload URL in echo response)",
+            steps,
+            response_preview: step1Body.slice(0, 4000),
+        };
+    }
+    let step1Parsed;
+    try {
+        step1Parsed = JSON.parse(step1Body);
+    }
+    catch {
+        return { ok: false, posted_to: step1Url, message: "step 1 returned non-JSON", steps };
+    }
+    if (step1Parsed.code !== 0 || !step1Parsed.data?.upload_url) {
+        return {
+            ok: false,
+            posted_to: step1Url,
+            message: `step 1 upstream error: ${step1Parsed.message ?? `code=${step1Parsed.code}`}`,
+            steps,
+            response_preview: step1Body.slice(0, 4000),
+        };
+    }
+    const { upload_url, attachment_id, fields } = step1Parsed.data;
+    // STEP 2 — upload resume to presigned URL
+    const uploadFd = new FormData();
+    for (const [k, v] of Object.entries(fields ?? {}))
+        uploadFd.append(k, v);
+    const FileCtor = globalThis.File;
+    const filePart = typeof FileCtor === "function"
+        ? new FileCtor([new Uint8Array(resumeBytes)], filename, { type: "application/pdf" })
+        : new Blob([new Uint8Array(resumeBytes)], { type: "application/pdf" });
+    uploadFd.append("file", filePart, filename);
+    let step2Resp;
+    try {
+        step2Resp = await fetch(upload_url, { method: "POST", body: uploadFd });
+    }
+    catch (err) {
+        steps.push({ step: "upload-file", url: upload_url, status: 0, ok: false, message: String(err) });
+        return { ok: false, posted_to: upload_url, message: "step 2 network error", steps };
+    }
+    steps.push({
+        step: "upload-file",
+        url: upload_url,
+        status: step2Resp.status,
+        ok: step2Resp.ok,
+        message: `HTTP ${step2Resp.status}`,
+    });
+    if (!step2Resp.ok) {
+        return { ok: false, posted_to: upload_url, status: step2Resp.status, message: "step 2 failed (upload to CDN)", steps };
+    }
+    // STEP 3 — resume/apply
+    const applicantInfo = {};
+    for (const f of staged.staged) {
+        if (f.name === "name" || f.name === "email" || f.name === "phone") {
+            applicantInfo[f.name] = f.value;
+        }
+    }
+    const step3Body = {
+        post_id: staged.post_id,
+        attachment_id,
+        applicant_info: applicantInfo,
+    };
+    const step3Url = `${apiRoot}/resume/apply`;
+    let step3Resp;
+    try {
+        step3Resp = await fetch(step3Url, {
+            method: "POST",
+            headers: {
+                ...sessionHeaders,
+                "Content-Type": "application/json",
+                Accept: "application/json, text/plain, */*",
+            },
+            body: JSON.stringify(step3Body),
+        });
+    }
+    catch (err) {
+        steps.push({ step: "resume-apply", url: step3Url, status: 0, ok: false, message: String(err) });
+        return { ok: false, posted_to: step3Url, message: "step 3 network error", steps };
+    }
+    const step3Text = await step3Resp.text();
+    steps.push({
+        step: "resume-apply",
+        url: step3Url,
+        status: step3Resp.status,
+        ok: step3Resp.ok,
+        message: step3Text.slice(0, 200),
+    });
+    return {
+        ok: step3Resp.ok,
+        status: step3Resp.status,
+        posted_to: step3Url,
+        response_preview: step3Text.slice(0, 4000),
+        message: step3Resp.ok ? "Feishu 3-step submission accepted" : `step 3 rejected: HTTP ${step3Resp.status}`,
+        steps,
+    };
+}
+/** Build the headers bag used by every Feishu/Beisen/Moka step. */
+function sessionHeaderBag(session, targetHost) {
+    const out = {
+        "User-Agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36",
+    };
+    if (!session)
+        return out;
+    const cookieHeader = serializeCookieHeader(session, targetHost);
+    if (cookieHeader)
+        out.Cookie = cookieHeader;
+    for (const [k, v] of Object.entries(session.headers ?? {})) {
+        if (k.toLowerCase() === "cookie" || k.toLowerCase() === "content-type")
+            continue;
+        out[k] = v;
+    }
+    return out;
+}

package/dist/index.js

@@ -50,11 +50,11 @@ import * as geely from "./geely.js";
 import * as webank from "./webank.js";
 import * as horizonrobotics from "./horizonrobotics.js";
 import * as cambricon from "./cambricon.js";
-import { loadProfile, loadSession, profileTemplate, stageApplication, submitApplication, formatStaged, } from "./apply.js";
+import { loadProfile, loadSession, profileTemplate, stageApplication, submitApplication, executeFeishu3Step, formatStaged, } from "./apply.js";
 import { memoryList, memoryGet, memorySet, memoryEvent, memoryClear, } from "./memory.js";
 import { writeFileSync, mkdirSync, existsSync } from "node:fs";
 import { dirname } from "node:path";
-const VERSION = "0.9.5";
+const VERSION = "0.9.6";
 const COMPANIES = [
     { key: "tencent", family: "Bespoke", source: "join.qq.com", label: "Tencent / 腾讯" },
     { key: "bytedance", family: "Bespoke", source: "jobs.bytedance.com", label: "ByteDance / 字节跳动" },
@@ -441,8 +441,15 @@ async function runCompany(adapter, company, rawArgs) {
         const session = loadSession(company);
         // Mode selection: --debug-submit-to <url> overrides everything.
         if (debugUrl) {
+            // Route through the family-specific executor where appropriate so the
+            // user can verify each step's wire format against their echo server.
+            const kindForDebug = sr.schema.submit_kind ?? "multipart-anon";
+            if (kindForDebug === "feishu-3-step") {
+                const result = await executeFeishu3Step(staged, session, { kind: "debug", url: debugUrl });
+                return emit({ mode: "debug-submit", staged, submit_kind: kindForDebug, result }, compact);
+            }
             const result = await submitApplication(staged, { kind: "debug", url: debugUrl });
-            return emit({ mode: "debug-submit", staged, result }, compact);
+            return emit({ mode: "debug-submit", staged, submit_kind: kindForDebug, result }, compact);
         }
         // --really-submit: actually hit the upstream endpoint. Guarded by both
         // an env-var attestation and (for non-anon adapters) a session.json.
@@ -492,6 +499,22 @@ async function runCompany(adapter, company, rawArgs) {
                         `Open apply_url in your browser to start the actual application flow.`,
                 }, compact);
             }
+            if (kind === "feishu-3-step") {
+                if (!session) {
+                    return emit({
+                        ok: false,
+                        source: company,
+                        post_id: postId,
+                        mode: "really-submit-blocked",
+                        staged,
+                        message: `Feishu 3-step submission requires a captured session at ` +
+                            `~/.jobpro/${company}.session.json. Install extension/ in Chrome, ` +
+                            `log in to the careers site, click Export.`,
+                    }, compact);
+                }
+                const result = await executeFeishu3Step(staged, session, { kind: "upstream" });
+                return emit({ mode: "really-submit", staged, submit_kind: kind, session_used: true, result }, compact);
+            }
             if (!isGenericMultipart) {
                 return emit({
                     ok: false,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "job-pro",
-  "version": "0.9.5",
+  "version": "0.9.6",
   "description": "Query Chinese big-tech campus recruiting from your terminal. 50 companies, all 50 live. 46 via each company's own API; the 4 with no public canonical feed (Hikvision, CICC, Cainiao, WeBank) surfaced via Liepin as a clearly-labeled third-party fallback. No signup, no token, no server.",
   "homepage": "https://job.ha7ch.com",
   "repository": "https://github.com/HA7CH/job-pro",