✨ implement check_permission procedure

2025-01-19 17:58:26 +08:00 · 2021-07-03 13:57:45 +08:00 · 2021-07-03 13:57:45 +08:00 · 24144a9474
commit 24144a9474
parent 4afd681ca9
1 changed files with 65 additions and 8 deletions
--- a/packages/nonebot-adapter-feishu/nonebot/adapters/feishu/bot.py
+++ b/packages/nonebot-adapter-feishu/nonebot/adapters/feishu/bot.py
@ -1,15 +1,20 @@
-from typing import Any, Union, Optional, TYPE_CHECKING
+import json
+
+from typing import Any, Tuple, Union, Optional, TYPE_CHECKING

 from nonebot.log import logger
+from nonebot.typing import overrides
 from nonebot.message import handle_event
 from nonebot.adapters import Bot as BaseBot
-from nonebot.exception import RequestDenied
+from nonebot.drivers import Driver, HTTPRequest, HTTPResponse

+from .config import Config as FeishuConfig
 from .event import Event
 from .message import Message, MessageSegment
+from .utils import log, AESCipher

 if TYPE_CHECKING:
-    from nonebot.drivers import Driver
+    from nonebot.config import Config


 class Bot(BaseBot):
@ -22,12 +27,64 @@ class Bot(BaseBot):
        return "feishu"

    @classmethod
-    async def check_permission(cls, driver: "Driver", connection_type: str,
-                               headers: dict, body: Optional[dict]) -> str:
-        # raise RequestDenied(401, "reason")
-        return "bot id"
+    def register(cls, driver: Driver, config: "Config"):
+        super().register(driver, config)
+        cls.feishu_config = FeishuConfig(**config.dict())

-    async def handle_message(self, message: dict):
+    @classmethod
+    @overrides(BaseBot)
+    async def check_permission(
+            cls, driver: Driver, request: HTTPRequest
+    ) -> Tuple[Optional[str], Optional[HTTPResponse]]:
+        if not isinstance(request, HTTPRequest):
+            log("WARNING",
+                "Unsupported connection type, available type: `http`")
+            return None, HTTPResponse(
+                405, b"Unsupported connection type, available type: `http`")
+
+        encrypt_key = cls.feishu_config.encrypt_key
+        if encrypt_key:
+            encrypted = json.loads(request.body)["encrypt"]
+            decrypted = AESCipher(encrypt_key).decrypt_string(encrypted)
+            data = json.loads(decrypted)
+        else:
+            data = json.loads(request.body)
+
+        challenge = data.get("challenge")
+        if challenge:
+            return None, HTTPResponse(
+                200,
+                json.dumps({
+                    "challenge": challenge
+                }).encode())
+
+        headers = data.get("header")
+        if headers:
+            token = headers.get("token")
+            app_id = headers.get("app_id")
+        else:
+            log("WARNING", "Missing `header` in POST body")
+            return None, HTTPResponse(400, b"Missing `header` in POST body")
+
+        if not token:
+            log("WARNING", "Missing `verification token` in POST body")
+            return None, HTTPResponse(
+                400, b"Missing `verification token` in POST body")
+        else:
+            if token != cls.feishu_config.verification_token:
+                log("WARNING", "Verification token check failed")
+                return None, HTTPResponse(403,
+                                          b"Verification token check failed")
+
+        return app_id, HTTPResponse(200, b'')
+
+    async def handle_message(self, message: bytes):
+        """
+        :说明:
+
+          处理事件并转换为 `Event <#class-event>`_
+        """
+        data = json.loads(message)
        try:
            event = Event.parse_obj(message)
            await handle_event(self, event)