logto/packages/connector-wechat-native/src/index.ts

/**
 * The Implementation of OpenID Connect of WeChat Web Open Platform.
 * https://developers.weixin.qq.com/doc/oplatform/Website_App/WeChat_Login/Wechat_Login.html
 */

import {
  ConnectorMetadata,
  GetAuthorizationUri,
  ValidateConfig,
  GetUserInfo,
  ConnectorError,
  ConnectorErrorCodes,
  SocialConnector,
  GetConnectorConfig,
  codeDataGuard,
} from '@logto/connector-types';
import { assert } from '@silverhand/essentials';
import got, { RequestError as GotRequestError } from 'got';

import {
  authorizationEndpoint,
  accessTokenEndpoint,
  userInfoEndpoint,
  defaultMetadata,
  defaultTimeout,
} from './constant';
import {
  weChatNativeConfigGuard,
  AccessTokenResponse,
  UserInfoResponse,
  WeChatNativeConfig,
} from './types';

export default class WeChatNativeConnector implements SocialConnector {
  public metadata: ConnectorMetadata = defaultMetadata;

  constructor(public readonly getConfig: GetConnectorConfig<WeChatNativeConfig>) {}

  public validateConfig: ValidateConfig = async (config: unknown) => {
    const result = weChatNativeConfigGuard.safeParse(config);

    if (!result.success) {
      throw new ConnectorError(ConnectorErrorCodes.InvalidConfig, result.error.message);
    }
  };

  public getAuthorizationUri: GetAuthorizationUri = async ({ state }) => {
    const { appId, universalLinks } = await this.getConfig(this.metadata.id);

    const queryParameters = new URLSearchParams({
      app_id: appId,
      state,
      // `universalLinks` is used by Wechat open platform website,
      // while `universal_link` is their API requirement.
      ...(universalLinks && { universal_link: universalLinks }),
    });

    return `${authorizationEndpoint}?${queryParameters.toString()}`;
  };

  public getAccessToken = async (code: string) => {
    const { appId: appid, appSecret: secret } = await this.getConfig(this.metadata.id);

    const {
      access_token: accessToken,
      openid,
      errcode,
      errmsg,
    } = await got
      .get(accessTokenEndpoint, {
        searchParams: { appid, secret, code, grant_type: 'authorization_code' },
        timeout: defaultTimeout,
      })
      .json<AccessTokenResponse>();

    assert(errcode !== 40_029, new ConnectorError(ConnectorErrorCodes.SocialAuthCodeInvalid));
    assert(!errcode && accessToken && openid, new Error(errmsg ?? ''));

    return { accessToken, openid };
  };

  public getUserInfo: GetUserInfo = async (data) => {
    const { code } = codeDataGuard.parse(data);
    const { accessToken, openid } = await this.getAccessToken(code);

    try {
      const { unionid, headimgurl, nickname, errcode, errmsg } = await got
        .get(userInfoEndpoint, {
          searchParams: { access_token: accessToken, openid },
          timeout: defaultTimeout,
        })
        .json<UserInfoResponse>();

      // Response properties of user info can be separated into two groups: (1) {unionid, headimgurl, nickname}, (2) {errcode, errmsg}.
      // These two groups are mutually exclusive: if group (1) is not empty, group (2) should be empty and vice versa.
      // 'errmsg' and 'errcode' turn to non-empty values or empty values at the same time. Hence, if 'errmsg' is non-empty then 'errcode' should be non-empty.

      assert(errcode !== 40_001, new ConnectorError(ConnectorErrorCodes.SocialAccessTokenInvalid));
      assert(!errcode, new Error(errmsg));

      return { id: unionid ?? openid, avatar: headimgurl, name: nickname };
    } catch (error: unknown) {
      assert(
        !(error instanceof GotRequestError && error.response?.statusCode === 401),
        new ConnectorError(ConnectorErrorCodes.SocialAccessTokenInvalid)
      );

      throw error;
    }
  };
}
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`/**`
			`* The Implementation of OpenID Connect of WeChat Web Open Platform.`
			`* https://developers.weixin.qq.com/doc/oplatform/Website_App/WeChat_Login/Wechat_Login.html`
			`*/`

			`import {`
			`ConnectorMetadata,`
			`GetAuthorizationUri,`
			`ValidateConfig,`
			`GetUserInfo,`
			`ConnectorError,`
			`ConnectorErrorCodes,`
			`SocialConnector,`
			`GetConnectorConfig,`
refactor: social connectors (#975) * refactor: social connectors * refactor(connectors): remove unused fixme comment * fix(connectors): test 2022-05-29 13:59:00 +08:00			`codeDataGuard,`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`} from '@logto/connector-types';`
			`import { assert } from '@silverhand/essentials';`
			`import got, { RequestError as GotRequestError } from 'got';`

			`import {`
			`authorizationEndpoint,`
			`accessTokenEndpoint,`
			`userInfoEndpoint,`
			`defaultMetadata,`
			`defaultTimeout,`
refactor(connectors): reorganize connectors (#807) 2022-05-13 14:22:37 +08:00			`} from './constant';`
			`import {`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`weChatNativeConfigGuard,`
refactor(connectors): reorganize connectors (#807) 2022-05-13 14:22:37 +08:00			`AccessTokenResponse,`
			`UserInfoResponse,`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`WeChatNativeConfig,`
refactor(connectors): reorganize connectors (#807) 2022-05-13 14:22:37 +08:00			`} from './types';`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
feat(core): serve connector logo (#931) 2022-05-24 13:54:37 +08:00			`export default class WeChatNativeConnector implements SocialConnector {`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`public metadata: ConnectorMetadata = defaultMetadata;`

refactor(connector): connector constructor (#926) 2022-05-23 17:49:29 +08:00			`constructor(public readonly getConfig: GetConnectorConfig<WeChatNativeConfig>) {}`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`public validateConfig: ValidateConfig = async (config: unknown) => {`
			`const result = weChatNativeConfigGuard.safeParse(config);`

			`if (!result.success) {`
			`throw new ConnectorError(ConnectorErrorCodes.InvalidConfig, result.error.message);`
			`}`
			`};`

refactor: social connectors (#975) * refactor: social connectors * refactor(connectors): remove unused fixme comment * fix(connectors): test 2022-05-29 13:59:00 +08:00			`public getAuthorizationUri: GetAuthorizationUri = async ({ state }) => {`
			`const { appId, universalLinks } = await this.getConfig(this.metadata.id);`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`const queryParameters = new URLSearchParams({`
feat(connector-types/wechat-native): fix wechat native getAuthUri (#895) * feat(connector-types/wechat-native): fix wechat native getAuthUri * feat(connector-wechat-native): fix 2022-05-20 10:22:12 +08:00			`app_id: appId,`
feat(native-connectors): pass random state to native connector sdk (#922) * feat(native-connectors): pass random state to native connector SDK * refactor(connector-): update type GetAuthorizationUri refactor(core): fix input params order 2022-05-25 14:23:53 +08:00			`state,`
refactor: social connectors (#975) * refactor: social connectors * refactor(connectors): remove unused fixme comment * fix(connectors): test 2022-05-29 13:59:00 +08:00			// `universalLinks` is used by Wechat open platform website,
			// while `universal_link` is their API requirement.
			`...(universalLinks && { universal_link: universalLinks }),`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`});`

			return `${authorizationEndpoint}?${queryParameters.toString()}`;
			`};`

refactor: social connectors (#975) * refactor: social connectors * refactor(connectors): remove unused fixme comment * fix(connectors): test 2022-05-29 13:59:00 +08:00			`public getAccessToken = async (code: string) => {`
feat: remove target, platform from connector schema and add id to metadata (#930) * feat(core,schema,connectors): remove target,platform form connector schema and add id to metadata * feat(schema,ui,console): unwrap ConnectorMetadata in ConnectorDTO * feat(schema,ui,console): connector id use dashline instead of underscore * feat(connector-alipay): fix typos feat(connector-alipay*): remove unnecessary type declaration 2022-05-24 11:39:44 +08:00			`const { appId: appid, appSecret: secret } = await this.getConfig(this.metadata.id);`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`const {`
			`access_token: accessToken,`
			`openid,`
			`errcode,`
chore(connector-wechat): fix wechat connectors error handler, comments and UTs (#1020) fix(connector-wechat): remove unnecessary comments fix(connector-wechat*): fix wechat connectors error handler, comments and UTs 2022-06-07 12:06:37 +08:00			`errmsg,`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00			`} = await got`
			`.get(accessTokenEndpoint, {`
			`searchParams: { appid, secret, code, grant_type: 'authorization_code' },`
			`timeout: defaultTimeout,`
			`})`
			`.json<AccessTokenResponse>();`

chore(connector-wechat): fix wechat connectors error handler, comments and UTs (#1020) fix(connector-wechat): remove unnecessary comments fix(connector-wechat*): fix wechat connectors error handler, comments and UTs 2022-06-07 12:06:37 +08:00			`assert(errcode !== 40_029, new ConnectorError(ConnectorErrorCodes.SocialAuthCodeInvalid));`
			`assert(!errcode && accessToken && openid, new Error(errmsg ?? ''));`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`return { accessToken, openid };`
			`};`

refactor: social connectors (#975) * refactor: social connectors * refactor(connectors): remove unused fixme comment * fix(connectors): test 2022-05-29 13:59:00 +08:00			`public getUserInfo: GetUserInfo = async (data) => {`
			`const { code } = codeDataGuard.parse(data);`
			`const { accessToken, openid } = await this.getAccessToken(code);`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`try {`
			`const { unionid, headimgurl, nickname, errcode, errmsg } = await got`
			`.get(userInfoEndpoint, {`
			`searchParams: { access_token: accessToken, openid },`
			`timeout: defaultTimeout,`
			`})`
			`.json<UserInfoResponse>();`

refactor(core, connector): fix code to fit new ESlint rule (#942) * refactor(core): separate/refactor connector route UTs * refactor(connector-wechat): fix wechat connectors error handler to fit new eslint rule refactor(connector-wechat*): fix error handler 2022-05-27 21:21:23 +08:00			`// Response properties of user info can be separated into two groups: (1) {unionid, headimgurl, nickname}, (2) {errcode, errmsg}.`
			`// These two groups are mutually exclusive: if group (1) is not empty, group (2) should be empty and vice versa.`
			`// 'errmsg' and 'errcode' turn to non-empty values or empty values at the same time. Hence, if 'errmsg' is non-empty then 'errcode' should be non-empty.`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
refactor(core, connector): fix code to fit new ESlint rule (#942) * refactor(core): separate/refactor connector route UTs * refactor(connector-wechat): fix wechat connectors error handler to fit new eslint rule refactor(connector-wechat*): fix error handler 2022-05-27 21:21:23 +08:00			`assert(errcode !== 40_001, new ConnectorError(ConnectorErrorCodes.SocialAccessTokenInvalid));`
			`assert(!errcode, new Error(errmsg));`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`return { id: unionid ?? openid, avatar: headimgurl, name: nickname };`
			`} catch (error: unknown) {`
refactor(core, connector): fix code to fit new ESlint rule (#942) * refactor(core): separate/refactor connector route UTs * refactor(connector-wechat): fix wechat connectors error handler to fit new eslint rule refactor(connector-wechat*): fix error handler 2022-05-27 21:21:23 +08:00			`assert(`
			`!(error instanceof GotRequestError && error.response?.statusCode === 401),`
			`new ConnectorError(ConnectorErrorCodes.SocialAccessTokenInvalid)`
			`);`
feat(core): wrap wechat connector (#676) * feat(core): wrap wechat web connector * feat(core): wrap wechat native connector * feat(core): fix dependency and remove query-string.stringify() 2022-04-28 15:55:49 +08:00
			`throw error;`
			`}`
			`};`
			`}`