Class: Lotify::Client

Inherits:
Object
  • Object
show all
Defined in:
lib/lotify.rb

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(options = {}) ⇒ Client

Returns a new instance of Client.



17
18
19
20
21
22
23
24
 
# File 'lib/lotify.rb', line 17

def initialize(options = {})
  self.client_id = options[:client_id]
  self.client_secret = options[:client_secret]
  self.redirect_uri = options[:redirect_uri]

  self.bot_origin = options[:bot_origin] || "https://notify-bot.line.me"
  self.api_origin = options[:api_origin] || "https://notify-api.line.me"
end

Instance Attribute Details

#api_originObject

Returns the value of attribute api_origin.



15
16
17
 
# File 'lib/lotify.rb', line 15

def api_origin
  @api_origin
end

#bot_originObject

Returns the value of attribute bot_origin.



14
15
16
 
# File 'lib/lotify.rb', line 14

def bot_origin
  @bot_origin
end

#client_idObject

Returns the value of attribute client_id.



11
12
13
 
# File 'lib/lotify.rb', line 11

def client_id
  @client_id
end

#client_secretObject

Returns the value of attribute client_secret.



12
13
14
 
# File 'lib/lotify.rb', line 12

def client_secret
  @client_secret
end

#redirect_uriObject

Returns the value of attribute redirect_uri.



13
14
15
 
# File 'lib/lotify.rb', line 13

def redirect_uri
  @redirect_uri
end

Instance Method Details

#get(option) ⇒ Object

發送一個get option: :url, :header, :param, :ssl_verify



28
29
30
31
32
33
34
35
36
37
38
 
# File 'lib/lotify.rb', line 28

def get(option)
  url = URI(option[:url])
  http = Net::HTTP.new(url.host, url.port)
  http.use_ssl = option[:url]["https://"].nil? == false
  http.verify_mode = OpenSSL::SSL::VERIFY_NONE unless option[:ssl_verify]
  request = Net::HTTP::Get.new(url)
  option[:header]&.each do |key, value|
    request[key] = value
  end
  http.request(request)
end

#get_auth_link(state) ⇒ Object

Get Auth Link

Get The OAuth2 authorization endpoint URI.

CSRF attacks are typically countered by assigning a hash value generated from a user“s session ID, and then verifying the state parameter variable when it attempts to access redirect_uri.

LINE Notify is designed with web applications in mind, and requires state parameter variables.

Parameters:

  • state

    Assigns a token that can be used for responding to CSRF attacks



65
66
67
68
69
70
71
72
73
74
75
 
# File 'lib/lotify.rb', line 65

def get_auth_link(state)
  data = {
    scope: "notify",
    response_type: "code",
    client_id: self.client_id,
    redirect_uri: self.redirect_uri,
    state: state
  };

  "#{self.bot_origin}/oauth/authorize?#{URI.encode_www_form(data)}"
end

#get_token(code) ⇒ Object

Get Token

The OAuth2 token endpoint.

Parameters:

  • code

    Assigns a code parameter value generated during redirection



84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
 
# File 'lib/lotify.rb', line 84

def get_token(code)
  option = {
    url: "#{self.bot_origin}/oauth/token",
    header: {
      "Content-Type": "application/x-www-form-urlencoded",
    },
    param: {
      grant_type: "authorization_code",
      client_id: self.client_id,
      client_secret: self.client_secret,
      redirect_uri: self.redirect_uri,
      code: code
    }
  }
  response = post(option)
  json = JSON.parse(response.body)
  json["access_token"]
end

#post(option) ⇒ Object

發送一個post option: :url, :header, :param, :ssl_verify



42
43
44
45
46
47
48
49
50
51
52
53
 
# File 'lib/lotify.rb', line 42

def post(option)
  url = URI(option[:url])
  http = Net::HTTP.new(url.host, url.port)
  http.use_ssl = option[:url]["https://"].nil? == false
  http.verify_mode = OpenSSL::SSL::VERIFY_NONE unless option[:ssl_verify]
  request = Net::HTTP::Post.new(url)
  option[:header]&.each do |key, value|
    request[key] = value
  end
  request.set_form_data(option[:param] || {})
  http.request(request)
end

#revoke(access_token) ⇒ Object

Revoke

An API used on the connected service side to revoke notification configurations. Using this API will revoke all used access tokens, disabling the access tokens from accessing the API.

The revocation process on the connected service side is as follows

  1. Call /api/revoke

  2. If step 1 returns status code 200, the request is accepted, revoking all access tokens and ending the process

  3. If step 1 returns status code 401, the access tokens have already been revoked and the connection will be d

  4. If step 1 returns any other status code, the process will end (you can try again at a later time)

### Expected use cases When the connected service wishes to end a connection with a user

As LINE Notify also provides the same feature, support for this API is optional.

  • status: Value according to HTTP status code

  • message: Message visible to end-user

Parameters:

  • accessToken

    the accessToken you want to revoke



184
185
186
187
188
189
190
191
192
193
194
 
# File 'lib/lotify.rb', line 184

def revoke(access_token)
  option = {
    url: "#{api_origin}/api/revoke",
    header: {
      "Content-Type": "application/x-www-form-urlencoded",
      Authorization: "Bearer #{access_token}",
    }
  }
  response = post(option)
  JSON.parse(response.body)
end

#send(access_token, param) ⇒ Object

Send

Sends notifications to users or groups that are related to an access token.

If this API receives a status code 401 when called, the access token will be deactivated on LINE Notify (disabled by the user in most cases). Connected services will also delete the connection information.

Requests use POST method with application/x-www-form-urlencoded (Identical to the default HTML form transfer type).

## Expected use cases When a connected service has an event that needs to send a notification to LINE

  • status: Value according to HTTP status code

  • message: Message visible to end-user

Parameters:

  • accessToken

    An access token related to users or groups

  • message

    The notification content

  • options

    Other optional parameters



151
152
153
154
155
156
157
158
159
160
161
162
 
# File 'lib/lotify.rb', line 151

def send(access_token, param)
  option = {
    url: "#{api_origin}/api/notify",
    header: {
      "Content-Type": "application/x-www-form-urlencoded",
      Authorization: "Bearer #{access_token}",
    },
    param: param
  }
  response = post(option)
  JSON.parse(response.body)
end

#status(access_token) ⇒ Object

Status

An API for checking connection status. You can use this API to check the validity of an access token. Acquires the names of related users or groups if acquiring them is possible.

On the connected service side, it“s used to see which groups are configured with a notification and which user the notifications will be sent to. There is no need to check the status with this API before calling /api/notify or /api/revoke.

If this API receives a status code 401 when called, the access token will be deactivated on LINE Notify (disabled by the user in most cases). Connected services will also delete the connection information.

## Expected use cases If a connected service wishes to check the connection status of a certain user

As LINE Notify also provides the same feature, support for this API is optional.

  • status: Value according to HTTP status code.

  • message: Message visible to end-user.

  • targetType: If the notification target is a user: “USER”. If the notification target is a group: “GROUP”.

  • target: If the notification target is a user, displays user name. If acquisition fails, displays “null”. If the notification target is a group, displays group name. If the target user has already left the group, displays “null”.

Parameters:

  • accessToken

    the accessToken you want to revoke



123
124
125
126
127
128
129
130
131
132
 
# File 'lib/lotify.rb', line 123

def status(access_token)
  option = {
    url: "#{api_origin}/api/status",
    header: {
      Authorization: "Bearer #{access_token}",
    }
  }
  response = get(option)
  JSON.parse(response.body)
end