mcp-server-weisheng-scrm 0.0.1

package/README.md

@@ -0,0 +1,92 @@
+# weisheng-scrm-mcp
+
+
+
+## Getting started
+
+To make it easy for you to get started with GitLab, here's a list of recommended next steps.
+
+Already a pro? Just edit this README.md and make it your own. Want to make it easy? [Use the template at the bottom](#editing-this-readme)!
+
+## Add your files
+
+- [ ] [Create](https://docs.gitlab.com/ee/user/project/repository/web_editor.html#create-a-file) or [upload](https://docs.gitlab.com/ee/user/project/repository/web_editor.html#upload-a-file) files
+- [ ] [Add files using the command line](https://docs.gitlab.com/ee/gitlab-basics/add-file.html#add-a-file-using-the-command-line) or push an existing Git repository with the following command:
+
+```
+cd existing_repo
+git remote add origin https://gitlab.wshmi.com/basellm/weisheng-scrm-mcp.git
+git branch -M main
+git push -uf origin main
+```
+
+## Integrate with your tools
+
+- [ ] [Set up project integrations](http://gitlab.wshmi.com/basellm/weisheng-scrm-mcp/-/settings/integrations)
+
+## Collaborate with your team
+
+- [ ] [Invite team members and collaborators](https://docs.gitlab.com/ee/user/project/members/)
+- [ ] [Create a new merge request](https://docs.gitlab.com/ee/user/project/merge_requests/creating_merge_requests.html)
+- [ ] [Automatically close issues from merge requests](https://docs.gitlab.com/ee/user/project/issues/managing_issues.html#closing-issues-automatically)
+- [ ] [Enable merge request approvals](https://docs.gitlab.com/ee/user/project/merge_requests/approvals/)
+- [ ] [Automatically merge when pipeline succeeds](https://docs.gitlab.com/ee/user/project/merge_requests/merge_when_pipeline_succeeds.html)
+
+## Test and Deploy
+
+Use the built-in continuous integration in GitLab.
+
+- [ ] [Get started with GitLab CI/CD](https://docs.gitlab.com/ee/ci/quick_start/index.html)
+- [ ] [Analyze your code for known vulnerabilities with Static Application Security Testing(SAST)](https://docs.gitlab.com/ee/user/application_security/sast/)
+- [ ] [Deploy to Kubernetes, Amazon EC2, or Amazon ECS using Auto Deploy](https://docs.gitlab.com/ee/topics/autodevops/requirements.html)
+- [ ] [Use pull-based deployments for improved Kubernetes management](https://docs.gitlab.com/ee/user/clusters/agent/)
+- [ ] [Set up protected environments](https://docs.gitlab.com/ee/ci/environments/protected_environments.html)
+
+***
+
+# Editing this README
+
+When you're ready to make this README your own, just edit this file and use the handy template below (or feel free to structure it however you want - this is just a starting point!). Thank you to [makeareadme.com](https://www.makeareadme.com/) for this template.
+
+## Suggestions for a good README
+Every project is different, so consider which of these sections apply to yours. The sections used in the template are suggestions for most open source projects. Also keep in mind that while a README can be too long and detailed, too long is better than too short. If you think your README is too long, consider utilizing another form of documentation rather than cutting out information.
+
+## Name
+Choose a self-explaining name for your project.
+
+## Description
+Let people know what your project can do specifically. Provide context and add a link to any reference visitors might be unfamiliar with. A list of Features or a Background subsection can also be added here. If there are alternatives to your project, this is a good place to list differentiating factors.
+
+## Badges
+On some READMEs, you may see small images that convey metadata, such as whether or not all the tests are passing for the project. You can use Shields to add some to your README. Many services also have instructions for adding a badge.
+
+## Visuals
+Depending on what you are making, it can be a good idea to include screenshots or even a video (you'll frequently see GIFs rather than actual videos). Tools like ttygif can help, but check out Asciinema for a more sophisticated method.
+
+## Installation
+Within a particular ecosystem, there may be a common way of installing things, such as using Yarn, NuGet, or Homebrew. However, consider the possibility that whoever is reading your README is a novice and would like more guidance. Listing specific steps helps remove ambiguity and gets people to using your project as quickly as possible. If it only runs in a specific context like a particular programming language version or operating system or has dependencies that have to be installed manually, also add a Requirements subsection.
+
+## Usage
+Use examples liberally, and show the expected output if you can. It's helpful to have inline the smallest example of usage that you can demonstrate, while providing links to more sophisticated examples if they are too long to reasonably include in the README.
+
+## Support
+Tell people where they can go to for help. It can be any combination of an issue tracker, a chat room, an email address, etc.
+
+## Roadmap
+If you have ideas for releases in the future, it is a good idea to list them in the README.
+
+## Contributing
+State if you are open to contributions and what your requirements are for accepting them.
+
+For people who want to make changes to your project, it's helpful to have some documentation on how to get started. Perhaps there is a script that they should run or some environment variables that they need to set. Make these steps explicit. These instructions could also be useful to your future self.
+
+You can also document commands to lint the code or run tests. These steps help to ensure high code quality and reduce the likelihood that the changes inadvertently break something. Having instructions for running tests is especially helpful if it requires external setup, such as starting a Selenium server for testing in a browser.
+
+## Authors and acknowledgment
+Show your appreciation to those who have contributed to the project.
+
+## License
+For open source projects, say how it is licensed.
+
+## Project status
+If you have run out of energy or time for your project, put a note at the top of the README saying that development has slowed down or stopped completely. Someone may choose to fork your project or volunteer to step in as a maintainer or owner, allowing your project to keep going. You can also make an explicit request for maintainers.

package/dist/config.d.ts

@@ -0,0 +1,8 @@
+/**
+ * MCP Server 配置模块
+ */
+export interface ServerConfig {
+    appKey: string;
+    baseUrl: string;
+}
+export declare function loadConfig(): ServerConfig;

package/dist/config.js

@@ -0,0 +1,13 @@
+/**
+ * MCP Server 配置模块
+ */
+const DEFAULT_BASE_URL = "https://open.wshoto.com";
+export function loadConfig() {
+    const appKey = process.env.SCRM_APP_KEY || "";
+    if (!appKey) {
+        throw new ConfigError("缺少必填环境变量 SCRM_APP_KEY", { env_var: "SCRM_APP_KEY" });
+    }
+    const baseUrl = (process.env.SCRM_BASE_URL || DEFAULT_BASE_URL).replace(/\/+$/, "");
+    return { appKey, baseUrl };
+}
+import { ConfigError } from "./exceptions.js";

package/dist/core/api-catalog.d.ts

@@ -0,0 +1,20 @@
+/**
+ * API 目录管理模块
+ *
+ * 从 SCRM 开放平台分页全量拉取 API 目录，使用 SimpleCache 做内存缓存，
+ * 支持按关键词模糊搜索和按 doc_url 精确查找。
+ */
+import type { SimpleCache } from "./cache.js";
+import type { HttpClient } from "./http-client.js";
+export declare class ApiCatalog {
+    private readonly httpClient;
+    private readonly cache;
+    private static readonly CACHE_TTL;
+    private static readonly FETCH_PAGE_SIZE;
+    constructor(httpClient: HttpClient, cache: SimpleCache);
+    getApiList(keyword: string): Promise<Record<string, unknown>[]>;
+    findApiByDocUrl(docUrl: string): Promise<Record<string, unknown>>;
+    private ensureCache;
+    private fetchAllFromRemote;
+    private static fuzzyMatch;
+}

package/dist/core/api-catalog.js

@@ -0,0 +1,96 @@
+/**
+ * API 目录管理模块
+ *
+ * 从 SCRM 开放平台分页全量拉取 API 目录，使用 SimpleCache 做内存缓存，
+ * 支持按关键词模糊搜索和按 doc_url 精确查找。
+ */
+export class ApiCatalog {
+    httpClient;
+    cache;
+    static CACHE_TTL = 7200; // 缓存有效期：2小时
+    static FETCH_PAGE_SIZE = 100; // 每页拉取条数
+    constructor(httpClient, cache) {
+        this.httpClient = httpClient;
+        this.cache = cache;
+    }
+    async getApiList(keyword) {
+        // Step 1: 确保缓存中有全量 API 目录
+        const allRecords = await this.ensureCache();
+        // Step 2: 按关键词模糊匹配
+        const matched = ApiCatalog.fuzzyMatch(allRecords, keyword);
+        // Step 3: 精简返回字段
+        return matched.map((record) => ({
+            api_name: record["api_name"] ?? "",
+            description: record["description"] ?? "",
+            doc_url: record["doc_url"] ?? "",
+            api_type: record["api_type"] ?? "",
+        }));
+    }
+    async findApiByDocUrl(docUrl) {
+        // Step 1: 确保缓存中有全量 API 目录
+        const allRecords = await this.ensureCache();
+        // Step 2: 精确匹配 doc_url
+        const matched = allRecords.filter((r) => r["doc_url"] === docUrl);
+        // Step 3: 唯一性校验
+        if (matched.length === 0) {
+            throw new Error(`未找到 doc_url=${docUrl} 对应的 API`);
+        }
+        if (matched.length > 1) {
+            throw new Error(`doc_url=${docUrl} 匹配到多条 API 记录，数据异常`);
+        }
+        return matched[0];
+    }
+    async ensureCache() {
+        const cached = this.cache.get("api_list");
+        if (cached != null) {
+            return cached;
+        }
+        return this.fetchAllFromRemote();
+    }
+    async fetchAllFromRemote() {
+        const allRecords = [];
+        let total = null;
+        let pageIndex = 1;
+        // Step 1: 循环分页拉取直到全量
+        while (total === null || allRecords.length < total) {
+            const resp = await this.httpClient.postJson("/openapi/claw/api/page", {
+                current_index: pageIndex,
+                page_size: ApiCatalog.FETCH_PAGE_SIZE,
+            }, { retryOnAuthError: true });
+            const data = (resp["data"] ?? resp);
+            const records = (data["records"] ?? []);
+            allRecords.push(...records);
+            // Step 2: 从首次响应中获取总条数
+            if (total === null) {
+                total = data["total"] ?? 0;
+            }
+            pageIndex++;
+        }
+        // Step 3: 按 id 去重
+        const seenIds = new Set();
+        const uniqueRecords = [];
+        for (const record of allRecords) {
+            const recordId = record["id"];
+            if (recordId != null && !seenIds.has(recordId)) {
+                seenIds.add(recordId);
+                uniqueRecords.push(record);
+            }
+        }
+        // Step 4: 写入缓存
+        this.cache.set("api_list", uniqueRecords, ApiCatalog.CACHE_TTL);
+        return uniqueRecords;
+    }
+    static fuzzyMatch(records, keyword) {
+        // Step 1: 拆分关键词并去除空白
+        const keywords = keyword.split(",").map((kw) => kw.trim()).filter(Boolean);
+        // Step 2: 无关键词则返回全量
+        if (keywords.length === 0) {
+            return records;
+        }
+        // Step 3: 对每条记录，检查 api_name 是否包含任一关键词（不区分大小写）
+        return records.filter((record) => {
+            const apiName = (String(record["api_name"] ?? "")).toLowerCase();
+            return keywords.some((kw) => apiName.includes(kw.toLowerCase()));
+        });
+    }
+}

package/dist/core/cache.d.ts

@@ -0,0 +1,11 @@
+/**
+ * 简单内存缓存模块
+ */
+export declare class SimpleCache {
+    private store;
+    private readDocs;
+    get(key: string): unknown;
+    set(key: string, value: unknown, ttl?: number): void;
+    addReadDoc(docUrl: string): void;
+    isDocRead(docUrl: string): boolean;
+}

package/dist/core/cache.js

@@ -0,0 +1,27 @@
+/**
+ * 简单内存缓存模块
+ */
+export class SimpleCache {
+    store = new Map();
+    readDocs = new Set();
+    get(key) {
+        const entry = this.store.get(key);
+        if (!entry)
+            return null;
+        if (entry.expireAt > 0 && Date.now() / 1000 > entry.expireAt) {
+            this.store.delete(key);
+            return null;
+        }
+        return entry.value;
+    }
+    set(key, value, ttl = 0) {
+        const expireAt = ttl > 0 ? Date.now() / 1000 + ttl : 0;
+        this.store.set(key, { value, expireAt });
+    }
+    addReadDoc(docUrl) {
+        this.readDocs.add(docUrl);
+    }
+    isDocRead(docUrl) {
+        return this.readDocs.has(docUrl);
+    }
+}

package/dist/core/doc-fetcher.d.ts

@@ -0,0 +1,11 @@
+/**
+ * 文档拉取模块
+ *
+ * 负责从远程 URL 拉取文档原文，使用 fetch 异步请求。
+ */
+export declare class DocFetcher {
+    private static readonly DEFAULT_TIMEOUT;
+    private static readonly DEFAULT_MAX_BYTES;
+    fetch(url: string): Promise<Record<string, unknown>>;
+    private static detectEncoding;
+}

package/dist/core/doc-fetcher.js

@@ -0,0 +1,69 @@
+/**
+ * 文档拉取模块
+ *
+ * 负责从远程 URL 拉取文档原文，使用 fetch 异步请求。
+ */
+import { NetworkError, ValidationError } from "../exceptions.js";
+export class DocFetcher {
+    static DEFAULT_TIMEOUT = 30_000;
+    static DEFAULT_MAX_BYTES = 50 * 1024 * 1024;
+    async fetch(url) {
+        // Step 1: 校验 URL 协议
+        if (!url.startsWith("http://") && !url.startsWith("https://")) {
+            throw new ValidationError(`不支持的 URL 协议，仅支持 http/https: ${url}`);
+        }
+        // Step 2: 发起 GET 请求
+        let response;
+        try {
+            response = await fetch(url, {
+                signal: AbortSignal.timeout(DocFetcher.DEFAULT_TIMEOUT),
+                redirect: "follow",
+            });
+            if (!response.ok) {
+                throw new NetworkError(`HTTP 请求失败，状态码: ${response.status}`, { url, status_code: response.status });
+            }
+        }
+        catch (e) {
+            if (e instanceof NetworkError || e instanceof ValidationError)
+                throw e;
+            throw new NetworkError(`网络请求失败: ${e}`, { url });
+        }
+        // Step 3: 读取响应体，判断截断
+        const contentBytes = new Uint8Array(await response.arrayBuffer());
+        const truncated = contentBytes.length > DocFetcher.DEFAULT_MAX_BYTES;
+        const finalBytes = truncated ? contentBytes.slice(0, DocFetcher.DEFAULT_MAX_BYTES) : contentBytes;
+        // Step 4: 检测编码并解码
+        const contentTypeHeader = response.headers.get("content-type");
+        const encoding = DocFetcher.detectEncoding(contentTypeHeader);
+        let decoder;
+        try {
+            decoder = new TextDecoder(encoding, { fatal: false });
+        }
+        catch {
+            // 不支持的 charset 退回 utf-8
+            decoder = new TextDecoder("utf-8", { fatal: false });
+        }
+        const content = decoder.decode(finalBytes);
+        return {
+            url: response.url,
+            final_url: response.url,
+            status: response.status,
+            content_type: contentTypeHeader,
+            encoding,
+            length: finalBytes.length,
+            truncated,
+            content,
+        };
+    }
+    static detectEncoding(contentType) {
+        if (!contentType)
+            return "utf-8";
+        for (const part of contentType.split(";")) {
+            const trimmed = part.trim().toLowerCase();
+            if (trimmed.startsWith("charset=")) {
+                return trimmed.split("=", 2)[1].trim();
+            }
+        }
+        return "utf-8";
+    }
+}

package/dist/core/doc-parser.d.ts

@@ -0,0 +1,9 @@
+/**
+ * 文档解析模块
+ *
+ * 负责从文档内容中提取 FIELD_INPUT_SPEC 结构化字段定义。
+ */
+export declare function extractFieldInputSpec(content: string): {
+    field_input_spec: Record<string, unknown> | null;
+    warnings: string[];
+};

package/dist/core/doc-parser.js

@@ -0,0 +1,31 @@
+/**
+ * 文档解析模块
+ *
+ * 负责从文档内容中提取 FIELD_INPUT_SPEC 结构化字段定义。
+ */
+export function extractFieldInputSpec(content) {
+    const warnings = [];
+    const marker = "## FIELD_INPUT_SPEC";
+    // Step 1: 查找 FIELD_INPUT_SPEC 标记位置
+    const markerIndex = content.indexOf(marker);
+    if (markerIndex === -1) {
+        return { field_input_spec: null, warnings };
+    }
+    // Step 2: 取标记之后的内容，定位 JSON 行
+    const afterMarker = content.slice(markerIndex + marker.length);
+    const lines = afterMarker.trim().split("\n");
+    if (lines.length === 0) {
+        warnings.push("FIELD_INPUT_SPEC 标记后无内容");
+        return { field_input_spec: null, warnings };
+    }
+    // Step 3: 解析 JSON
+    const jsonLine = lines[0].trim();
+    try {
+        const spec = JSON.parse(jsonLine);
+        return { field_input_spec: spec, warnings };
+    }
+    catch (e) {
+        warnings.push(`FIELD_INPUT_SPEC JSON 解析失败: ${e}`);
+        return { field_input_spec: null, warnings };
+    }
+}

package/dist/core/file-uploader.d.ts

@@ -0,0 +1,14 @@
+/**
+ * 文件上传模块
+ *
+ * 将本地文件通过 multipart/form-data 上传到 SCRM 平台（COS），返回公网 URL 和 file_id。
+ */
+import type { HttpClient } from "./http-client.js";
+export declare class FileUploader {
+    private readonly httpClient;
+    private static readonly UPLOAD_PATH;
+    constructor(httpClient: HttpClient);
+    upload(filePath: string): Promise<Record<string, unknown>>;
+    private static buildMultipartBody;
+    private static guessMimeType;
+}

package/dist/core/file-uploader.js

@@ -0,0 +1,74 @@
+/**
+ * 文件上传模块
+ *
+ * 将本地文件通过 multipart/form-data 上传到 SCRM 平台（COS），返回公网 URL 和 file_id。
+ */
+import * as fs from "node:fs";
+import * as path from "node:path";
+import * as crypto from "node:crypto";
+import { ValidationError } from "../exceptions.js";
+export class FileUploader {
+    httpClient;
+    static UPLOAD_PATH = "/openapi/document/upload/bind";
+    constructor(httpClient) {
+        this.httpClient = httpClient;
+    }
+    async upload(filePath) {
+        // Step 1: 校验文件路径
+        if (!fs.existsSync(filePath)) {
+            throw new ValidationError(`文件不存在: ${filePath}`, { file_path: filePath });
+        }
+        const stat = fs.statSync(filePath);
+        if (!stat.isFile()) {
+            throw new ValidationError(`路径不是文件: ${filePath}`, { file_path: filePath });
+        }
+        // Step 2: 构建 multipart/form-data 请求体
+        const { body, contentType } = FileUploader.buildMultipartBody(filePath);
+        // Step 3: 发送上传请求
+        const response = await this.httpClient.postMultipart(FileUploader.UPLOAD_PATH, body, contentType);
+        // Step 4: 从响应 data 中提取 url 和 file_id
+        const data = (response["data"] ?? {});
+        return {
+            url: data["url"] ?? "",
+            file_id: data["file_id"] ?? null,
+        };
+    }
+    static buildMultipartBody(filePath, fileField = "file") {
+        const boundary = crypto.randomUUID().replace(/-/g, "");
+        const contentType = `multipart/form-data; boundary=${boundary}`;
+        const filename = path.basename(filePath);
+        const fileContent = fs.readFileSync(filePath);
+        const mimeType = FileUploader.guessMimeType(filePath);
+        const parts = [];
+        const encoder = new TextEncoder();
+        parts.push(encoder.encode(`--${boundary}\r\n`));
+        parts.push(encoder.encode(`Content-Disposition: form-data; name="${fileField}"; filename="${filename}"\r\n`));
+        parts.push(encoder.encode(`Content-Type: ${mimeType}\r\n`));
+        parts.push(encoder.encode("\r\n"));
+        parts.push(fileContent);
+        parts.push(encoder.encode(`\r\n--${boundary}--\r\n`));
+        // 合并所有 parts
+        const totalLength = parts.reduce((sum, p) => sum + p.length, 0);
+        const body = new Uint8Array(totalLength);
+        let offset = 0;
+        for (const part of parts) {
+            body.set(part, offset);
+            offset += part.length;
+        }
+        return { body, contentType };
+    }
+    static guessMimeType(filePath) {
+        const ext = path.extname(filePath).toLowerCase();
+        const mimeMap = {
+            ".jpg": "image/jpeg",
+            ".jpeg": "image/jpeg",
+            ".png": "image/png",
+            ".gif": "image/gif",
+            ".webp": "image/webp",
+            ".svg": "image/svg+xml",
+            ".pdf": "application/pdf",
+            ".txt": "text/plain",
+        };
+        return mimeMap[ext] || "application/octet-stream";
+    }
+}

package/dist/core/http-client.d.ts

@@ -0,0 +1,23 @@
+/**
+ * HTTP 客户端模块
+ *
+ * 封装 SCRM 开放平台接口调用，支持 GET/POST/multipart，
+ * 遇到 token 失效时自动刷新并重试读请求。
+ */
+import type { SimpleCache } from "./cache.js";
+import type { TokenManager } from "./token-manager.js";
+export declare class HttpClient {
+    private readonly tokenManager;
+    private readonly cache;
+    private static readonly AUTH_ERROR_CODES;
+    constructor(tokenManager: TokenManager, cache: SimpleCache);
+    getJson(path: string, params?: Record<string, unknown>): Promise<Record<string, unknown>>;
+    postJson(path: string, payload: Record<string, unknown>, options?: {
+        retryOnAuthError?: boolean;
+    }): Promise<Record<string, unknown>>;
+    postMultipart(path: string, body: Uint8Array, contentType: string): Promise<Record<string, unknown>>;
+    private executeWithAuthRetry;
+    private buildUrl;
+    private shouldRefreshToken;
+    private execute;
+}

package/dist/core/http-client.js

@@ -0,0 +1,117 @@
+/**
+ * HTTP 客户端模块
+ *
+ * 封装 SCRM 开放平台接口调用，支持 GET/POST/multipart，
+ * 遇到 token 失效时自动刷新并重试读请求。
+ */
+import { NetworkError, ScrmError } from "../exceptions.js";
+export class HttpClient {
+    tokenManager;
+    cache;
+    static AUTH_ERROR_CODES = new Set([10001, 10010, 10011]);
+    constructor(tokenManager, cache) {
+        this.tokenManager = tokenManager;
+        this.cache = cache;
+    }
+    async getJson(path, params) {
+        const self = this;
+        async function requestFactory() {
+            const token = await self.tokenManager.getToken();
+            let url = self.buildUrl(path, token);
+            if (params) {
+                const filtered = Object.entries(params).filter(([, v]) => v != null);
+                if (filtered.length > 0) {
+                    const qs = new URLSearchParams(filtered.map(([k, v]) => [k, String(v)])).toString();
+                    const sep = url.includes("?") ? "&" : "?";
+                    url = `${url}${sep}${qs}`;
+                }
+            }
+            return { url, method: "GET" };
+        }
+        return this.executeWithAuthRetry(requestFactory, true);
+    }
+    async postJson(path, payload, options) {
+        const self = this;
+        const retryOnAuthError = options?.retryOnAuthError ?? false;
+        async function requestFactory() {
+            const token = await self.tokenManager.getToken();
+            const url = self.buildUrl(path, token);
+            return {
+                url,
+                method: "POST",
+                body: JSON.stringify(payload),
+                headers: { "Content-Type": "application/json; charset=utf-8" },
+            };
+        }
+        return this.executeWithAuthRetry(requestFactory, retryOnAuthError);
+    }
+    async postMultipart(path, body, contentType) {
+        const self = this;
+        async function requestFactory() {
+            const token = await self.tokenManager.getToken();
+            const url = self.buildUrl(path, token);
+            return { url, method: "POST", body, headers: { "Content-Type": contentType } };
+        }
+        return this.executeWithAuthRetry(requestFactory, false);
+    }
+    async executeWithAuthRetry(requestFactory, retryOnAuthError) {
+        // Step 1: 先用当前 token 执行请求
+        let authError = null;
+        try {
+            return await this.execute(await requestFactory());
+        }
+        catch (exc) {
+            if (!(exc instanceof ScrmError) || !this.shouldRefreshToken(exc)) {
+                throw exc;
+            }
+            authError = exc;
+        }
+        // Step 2: 发生 token 失效时强制刷新
+        await this.tokenManager.getToken(true);
+        // Step 3: 写请求禁止自动重放，只刷新 token 供后续请求使用
+        if (!retryOnAuthError) {
+            throw authError;
+        }
+        // Step 4: 读请求使用新 token 重建请求并重试一次
+        return this.execute(await requestFactory());
+    }
+    buildUrl(path, token) {
+        const cleanPath = path.startsWith("/") ? path : `/${path}`;
+        return `${this.tokenManager.baseUrl}${cleanPath}?access_token=${token}`;
+    }
+    shouldRefreshToken(exc) {
+        const code = exc.details["code"];
+        if (code == null)
+            return false;
+        return HttpClient.AUTH_ERROR_CODES.has(code);
+    }
+    async execute(req) {
+        let response;
+        try {
+            response = await fetch(req.url, {
+                method: req.method,
+                body: req.body,
+                headers: req.headers,
+                signal: AbortSignal.timeout(30_000),
+            });
+        }
+        catch (e) {
+            throw new NetworkError(`接口请求失败: ${e}`, { url: req.url, method: req.method });
+        }
+        const text = await response.text();
+        let payload;
+        try {
+            payload = JSON.parse(text);
+        }
+        catch (e) {
+            throw new NetworkError("接口返回了非 JSON 内容", {
+                status: response.status,
+                body: text,
+            });
+        }
+        if (payload["code"] !== 0) {
+            throw new ScrmError(payload["msg"] || "接口返回失败", { code: payload["code"], response: payload });
+        }
+        return payload;
+    }
+}

package/dist/core/identity.d.ts

@@ -0,0 +1,16 @@
+/**
+ * 身份管理模块
+ *
+ * 调用 /openapi/auth/check_super_user 获取用户身份（超管/分管/员工），
+ * 使用 SimpleCache 做内存缓存。
+ */
+import type { SimpleCache } from "./cache.js";
+import type { HttpClient } from "./http-client.js";
+export declare class Identity {
+    private readonly httpClient;
+    private readonly cache;
+    private static readonly CACHE_TTL;
+    constructor(httpClient: HttpClient, cache: SimpleCache);
+    getIdentity(userId: string): Promise<Record<string, unknown>>;
+    private refresh;
+}