import { spawn } from "node:child_process" ;import {"openclaw/plugin-sdk/setup" ;import type { MSTeamsTeamConfig } from "../runtime-api.js" ;import { formatUnknownError } from "./errors.js" ;import {"./resolve-allowlist.js" ;import { createMSTeamsSetupWizardBase, msteamsSetupAdapter } from "./setup-core.js" ;import { resolveMSTeamsCredentials, saveDelegatedTokens } from "./token.js" ;const channel = "msteams" as const ;const setMSTeamsAllowFrom = createTopLevelChannelAllowFromSetter({const setMSTeamsGroupPolicy = createTopLevelChannelGroupPolicySetter({true ,function openDelegatedOAuthUrl(url: string): Promise<void > {return new Promise<void >((resolve, reject) => {const cmd = process.platform === "darwin" ? "open" : "xdg-open" ;const child = spawn(cmd, [url], { stdio: "ignore" , shell: false });"error" , reject);"exit" , (code, signal) => {if (code === 0 ) {return ;const reason = signal ? `signal ${signal}` : `code ${code ?? "unknown" }`;new Error(`${cmd} failed with ${reason}`));function looksLikeGuid(value: string): boolean {return /^[0 -9 a-fA-F-]{16 ,}$/.test(value);function promptMSTeamsAllowFrom(params: {const existing = params.cfg.channels?.msteams?.allowFrom ?? [];"Allowlist MS Teams DMs by display name, UPN/email, or user id." ,"We resolve names to user IDs via Microsoft Graph when credentials allow." ,"Examples:" ,"- alex@example.com" ,"- Alex Johnson" ,"- 00000000-0000-0000-0000-000000000000" ,"\n" ),"MS Teams allowlist" ,while (true ) {const entry = await params.prompter.text({"MS Teams allowFrom (usernames or ids)" ,"alex@example.com, Alex Johnson" ,0 ] ? existing[0 ] : undefined,"Required" ),const parts = splitSetupEntries(entry);if (parts.length === 0 ) {"Enter at least one user." , "MS Teams allowlist" );continue ;const resolved = await resolveMSTeamsUserAllowlist({catch (() => null );if (!resolved) {const ids = parts.filter((part) => looksLikeGuid(part));if (ids.length !== parts.length) {"Graph lookup unavailable. Use user IDs only." ,"MS Teams allowlist" ,continue ;const unique = mergeAllowFromEntries(existing, ids);return setMSTeamsAllowFrom(params.cfg, unique);const unresolved = resolved.filter((item) => !item.resolved || !item.id);if (unresolved.length > 0 ) {", " )}`,"MS Teams allowlist" ,continue ;const ids = resolved.map((item) => item.id as string);const unique = mergeAllowFromEntries(existing, ids);return setMSTeamsAllowFrom(params.cfg, unique);function setMSTeamsTeamsAllowlist(const baseTeams = cfg.channels?.msteams?.teams ?? {};const teams: Record<string, { channels?: Record<string, unknown> }> = { ...baseTeams };for (const entry of entries) {const teamKey = entry.teamKey;if (!teamKey) {continue ;const existing = teams[teamKey] ?? {};if (entry.channelKey) {const channels = { ...existing.channels };else {return {true ,function listMSTeamsGroupEntries(cfg: OpenClawConfig): string[] {return Object.entries(cfg.channels?.msteams?.teams ?? {}).flatMap(([teamKey, value]) => {const channels = value?.channels ?? {};const channelKeys = Object.keys(channels);if (channelKeys.length === 0 ) {return [teamKey];return channelKeys.map((channelKey) => `${teamKey}/${channelKey}`);function resolveMSTeamsGroupAllowlist(params: {"note" >;Boolean ) as Array<{ teamKey: string; channelKey?: string }>;if (params.entries.length === 0 || !resolveMSTeamsCredentials(params.cfg.channels?.msteams)) {return resolvedEntries;try {const lookups = await resolveMSTeamsChannelAllowlist({const resolvedChannels = lookups.filter(const resolvedTeams = lookups.filter(const unresolved = lookups.filter((entry) => !entry.resolved).map((entry) => entry.input);Boolean ),const summary: string[] = [];if (resolvedChannels.length > 0 ) {Boolean )", " )}`,if (resolvedTeams.length > 0 ) {Boolean )", " )}`,if (unresolved.length > 0 ) {", " )}`);if (summary.length > 0 ) {"\n" ), "MS Teams channels" );return resolvedEntries;catch (err) {"MS Teams channels" ,return resolvedEntries;const msteamsGroupAccess: NonNullable<ChannelSetupWizard["groupAccess" ]> = {"MS Teams channels" ,"Team Name/Channel Name, teamId/conversationId" ,"allowlist" ,Boolean (cfg.channels?.msteams?.teams),,const msteamsDmPolicy: ChannelSetupDmPolicy = createTopLevelChannelDmPolicy({"MS Teams" ,"channels.msteams.dmPolicy" ,"channels.msteams.allowFrom" ,"pairing" ,"./setup-core.js" ;const msteamsSetupWizardBase = createMSTeamsSetupWizardBase();const msteamsSetupWizard: ChannelSetupWizard = {// Override finalize to layer on the optional delegated-auth bootstrap after // the base wizard collects app credentials. This preserves main's shared // setup-core flow while keeping the delegated OAuth step from this PR. // setup-core always provides a finalize; the type is optional only because // ChannelSetupWizard.finalize is generally optional. Fall back to the // incoming cfg if the base ever returns void for forward-compat. const baseFinalize = msteamsSetupWizardBase.finalize;const baseResult = baseFinalize ? await baseFinalize(params) : undefined;const finalCreds = resolveMSTeamsCredentials(next.channels?.msteams);if (finalCreds?.type === "secret" ) {const enableDelegated = await params.prompter.confirm({"Enable delegated auth? (required for reactions and write operations)" ,false ,if (enableDelegated) {true },try {const { loginMSTeamsDelegated } = await import ("./oauth.js" );const { shouldUseManualOAuthFlow } = await import ("./oauth.flow.js" );const isRemote = Boolean (process.env.SSH_TTY || process.env.SSH_CONNECTION);const progress = params.prompter.progress("MSTeams Delegated OAuth" );const tokens = await loginMSTeamsDelegated("Delegated auth configured" );catch (err) {"You can retry later via the setup wizard." ,"MS Teams delegated auth" ,return { ...baseResult, cfg: next };false },
Messung V0.5 in Prozent C=100 H=98 G=98
¤ Dauer der Verarbeitung: 0.1 Sekunden
(vorverarbeitet am 2026-05-26)
¤ *© Formatika GbR, Deutschland
