whatsapp-api-js

/** @module WhatsAppAPI */ import { ClientMessage, type WhatsAppAPIConstructorArguments, type PostData, type GetParams, type ServerMessageResponse, type ServerMarkAsReadResponse, type ServerCreateQRResponse, type ServerRetrieveQRResponse, type ServerUpdateQRResponse, type ServerDeleteQRResponse, type ServerMediaRetrieveResponse, type ServerMediaUploadResponse, type ServerMediaDeleteResponse, type ServerBlockResponse, type ServerUnblockResponse } from "./types.js"; import type { OnMessage, OnSent, OnStatus } from "./emitters.d.ts"; /** * The main API Class * * @template EmittersReturnType - The return type of the emitters * ({@link OnMessage}, {@link OnStatus}) */ export declare class WhatsAppAPI<EmittersReturnType = void> { /** * The API token */ private token; /** * The app secret */ private appSecret?; /** * The webhook verify token */ private webhookVerifyToken?; /** * The API version to use */ private v; /** * The fetch function for the requests */ private fetch; /** * The CryptoSubtle library for checking the signatures */ private subtle?; /** * If true, API operations will return the fetch promise instead. Intended for low level debugging. */ private parsed; /** * If false, the API will be used in a less secure way, removing the need for appSecret. Defaults to true. */ private secure; /** * The callbacks for the events (message, sent, status) * * @example * ```ts * const Whatsapp = new WhatsAppAPI({ * token: "my-token", * appSecret: "my-app-secret" * }); * * // Set the callback * Whatsapp.on.message = ({ from, phoneID }) => console.log(`Message from ${from} to bot ${phoneID}`); * * // If you need to disable the callback: * // Whatsapp.on.message = undefined; * ``` */ on: { message?: OnMessage<EmittersReturnType>; sent?: OnSent; status?: OnStatus<EmittersReturnType>; }; /** * Main entry point for the API. * * It's highly recommended reading the named parameters docs at * {@link types.TheBasicConstructorArguments}, * at least for `token`, `appSecret` and `webhookVerifyToken` properties, * which are the most common in normal usage. * * The other parameters are used for fine tunning the framework, * such as `ponyfill`, which allows the code to execute on platforms * that are missing standard APIs such as fetch and crypto. * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * ``` * * @template EmittersReturnType - The return type of the emitters * ({@link OnMessage}, {@link OnStatus}) * * @throws If fetch is not defined in the enviroment and the provided ponyfill isn't a function * @throws If secure is true, crypto.subtle is not defined in the enviroment and the provided ponyfill isn't an object */ constructor({ token, appSecret, webhookVerifyToken, v, parsed, secure, ponyfill }: WhatsAppAPIConstructorArguments); /** * Send a Whatsapp message * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * Whatsapp.sendMessage( * "BOT_PHONE_ID", * "USER_PHONE", * new Text("Hello World") * ).then(console.log); * ``` * * @param phoneID - The bot's phone ID * @param to - The user's phone number * @param message - A Whatsapp message, built using the corresponding module for each type of message. * @param context - The message ID of the message to reply to * @param biz_opaque_callback_data - An arbitrary 512B string, useful for tracking (length not checked by the framework) * @returns The server response */ sendMessage(phoneID: string, to: string, message: ClientMessage, context?: string, biz_opaque_callback_data?: string): Promise<ServerMessageResponse | Response>; /** * Send a Whatsapp message to multiple phone numbers. * * In order to avoid reaching the * [API rate limit](https://developers.facebook.com/docs/whatsapp/cloud-api/overview?locale=en_US#throughput), * this method will send the messages in batches of 50 per second by default, * but this can be changed using the `batch_size` and `delay` parameters. * * The API rate limit can be increased by contacting Facebook as explained * [here](https://developers.facebook.com/docs/whatsapp/cloud-api/overview?locale=en_US#throughput). * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * const phoneID = "YOUR_BOT_NUMBER"; * const users = ["YOUR_USER1_NUMBER", "YOUR_USER2_NUMBER"]; * const message = new Text("Hello World"); * * const responses = Whatsapp.broadcastMessage(phoneID, users, message); * * Promise.all(responses).then(console.log); * ``` * * @param phoneID - The bot's phone ID * @param to - The users' phone numbers * @param message - A Whatsapp message, built using the corresponding module for each type of message. * @param batch_size - The number of messages to send per batch * @param delay - The delay between each batch of messages in milliseconds * @returns The server's responses * @throws if batch_size is lower than 1 * @throws if delay is lower than 0 */ broadcastMessage(phoneID: string, to: string[], message: ClientMessage, batch_size: number, delay: number): Array<ReturnType<WhatsAppAPI["sendMessage"]>>; /** * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * const phoneID = "YOUR_BOT_NUMBER"; * const users = [{ user: "USER1_ID" }, { user: "USER2_ID" }]; * const message_builder = ({ user }) => [DB.fetch(user).phone, new Text(`Hello ${user}`)]; * * const responses = Whatsapp.broadcastMessage(phoneID, users, message); * * Promise.all(responses).then(console.log); * ``` * * @typeParam T - The type of the data to be used in the message builder * @param phoneID - The bot's phone ID * @param to - The users' data * @param message_builder - A Whatsapp message builder, it returns an array with the phone number and the message. * @param batch_size - The number of messages to send per batch * @param delay - The delay between each batch of messages in milliseconds * @returns The server's responses * @throws if batch_size is lower than 1 * @throws if delay is lower than 0 */ broadcastMessage<T>(phoneID: string, to: T[], message_builder: (data: T) => [string, ClientMessage], batch_size: number, delay: number): Array<ReturnType<WhatsAppAPI["sendMessage"]>>; /** * Mark a message as read * * @param phoneID - The bot's phone ID * @param messageId - The message ID * @returns The server response */ markAsRead(phoneID: string, messageId: string): Promise<ServerMarkAsReadResponse | Response>; /** * Generate a QR code for sharing the bot * * @param phoneID - The bot's phone ID * @param message - The quick message on the QR code * @param format - The format of the QR code * @returns The server response */ createQR(phoneID: string, message: string, format?: "png" | "svg"): Promise<ServerCreateQRResponse | Response>; /** * Get one or many QR codes of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to find. If not specified, all QRs will be returned * @returns The server response */ retrieveQR(phoneID: string, id?: string): Promise<ServerRetrieveQRResponse | Response>; /** * Update a QR code of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to edit * @param message - The new quick message for the QR code * @returns The server response */ updateQR(phoneID: string, id: string, message: string): Promise<ServerUpdateQRResponse | Response>; /** * Delete a QR code of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to delete * @returns The server response */ deleteQR(phoneID: string, id: string): Promise<ServerDeleteQRResponse | Response>; /** * Get a Media object data with an ID * * @see {@link fetchMedia} * * @param id - The Media's ID * @param phoneID - Business phone number ID. If included, the operation will only be processed if the ID matches the ID of the business phone number that the media was uploaded on. * @returns The server response */ retrieveMedia(id: string, phoneID?: string): Promise<ServerMediaRetrieveResponse | Response>; /** * Upload a Media to the API server * * @example * ```ts * // author ekoeryanto on issue #322 * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * const url = "https://example.com/image.png"; * * const image = await fetch(url); * const blob = await image.blob(); * * // If required: * // import FormData from "undici"; * * const form = new FormData(); * form.set("file", blob); * * console.log(await Whatsapp.uploadMedia("phoneID", form)); * // Expected output: { id: "mediaID" } * ``` * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * // If required: * // import FormData from "undici"; * // import { Blob } from "node:buffer"; * * const form = new FormData(); * * // If you don't mind reading the whole file into memory: * form.set("file", new Blob([fs.readFileSync("image.png")], "image/png")); * * // If you do, you will need to use streams. The module "form-data", * // although not spec compliant (hence needing to set check to false), * // has an easy way to do this: * // form.append("file", fs.createReadStream("image.png"), { contentType: "image/png" }); * * console.log(await Whatsapp.uploadMedia("phoneID", form)); * // Expected output: { id: "mediaID" } * ``` * * @param phoneID - The bot's phone ID * @param form - The Media's FormData. Must have a 'file' property with the file to upload as a blob and a valid mime-type in the 'type' field of the blob. Example for Node ^18: `new FormData().set("file", new Blob([stringOrFileBuffer], "image/png"));` Previous versions of Node will need an external FormData, such as undici's. To use non spec complaints versions of FormData (eg: form-data) or Blob set the 'check' parameter to false. * @param check - If the FormData should be checked before uploading. The FormData must have the method .get("name") to work with the checks. If it doesn't (for example, using the module "form-data"), set this to false. * @returns The server response * @throws If check is set to true and form is not a FormData * @throws If check is set to true and the form doesn't have valid required properties (file, type) * @throws If check is set to true and the form file is too big for the file type */ uploadMedia(phoneID: string, form: unknown, check?: boolean): Promise<ServerMediaUploadResponse | Response>; /** * Get a Media fetch from an url. * When using this method, be sure to pass a trusted url, since the request will be authenticated with the token. * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * const id = "mediaID"; * const { url } = await Whatsapp.retrieveMedia(id); * const response = Whatsapp.fetchMedia(url); * ``` * * @param url - The Media's url * @returns The fetch raw response * @throws If url is not a valid url */ fetchMedia(url: string): Promise<Response>; /** * Delete a Media object with an ID * * @param id - The Media's ID * @param phoneID - Business phone number ID. If included, the operation will only be processed if the ID matches the ID of the business phone number that the media was uploaded on. * @returns The server response */ deleteMedia(id: string, phoneID?: string): Promise<ServerMediaDeleteResponse | Response>; /** * Block a user from sending messages to the bot * * The block API has 2 restrictions: * - You can only block users that have messaged your business in the last 24 hours * - You can only block up to 64k users * * @param phoneID - The bot's phone ID from which to block * @param users - The user phone numbers to block (the API doesn't fail if it's empty) * @returns The server response */ blockUser(phoneID: string, ...users: string[]): Promise<ServerBlockResponse | Response>; /** * Unblock a user from the bot's block list * * @remarks Contrary to blocking, unblocking isn't restricted by the 24 hours rule * * @param phoneID - The bot's phone ID from which to unblock * @param users - The user phone numbers to unblock (the API doesn't fail if it's empty) * @returns The server response */ unblockUser(phoneID: string, ...users: string[]): Promise<ServerUnblockResponse | Response>; /** * POST helper, must be called inside the post function of your code. * When setting up the webhook, only subscribe to messages. Other subscritions support might be added later. * * raw_body and signature are required when secure is `true` on initialization (default). * * @example * ```ts * // author arivanbastos on issue #114 * // Simple http example implementation with Whatsapp.post() on Node@^19 * import { WhatsAppAPI } from "whatsapp-api-js"; * import { WhatsAppAPIError } from "whatsapp-api-js/errors"; * import { NodeNext } from "whatsapp-api-js/setup/node"; * * import { createServer } from "http"; * * const token = "token"; * const appSecret = "appSecret"; * const Whatsapp = new WhatsAppAPI<number>(NodeNext({ token, appSecret })); * * function handler(req, res) { * if (req.method == "POST") { * const chunks = []; * req.on("data", (chunk) => chunks.push(chunk)); * * req.on("end", async () => { * const body = Buffer.concat(chunks).toString(); * * try { * const response = await Whatsapp.post(JSON.parse(body), body, req.headers["x-hub-signature-256"]); * res.writeHead(response); * } catch (err) { * res.writeHead(err instanceof WhatsAppAPIError ? err.httpStatus : 500); * } * * res.end(); * }); * } else res.writeHead(501).end(); * }; * * Whatsapp.on.message = ({ phoneID, from, message, name, reply, offload }) => { * console.log(`User ${name} (${from}) sent to bot ${phoneID} a(n) ${message.type}`); * offload(() => reply(new Text("Hello!"))); * return 202; * }; * * const server = createServer(handler); * server.listen(3000); * ``` * * @param data - The POSTed data object sent by Whatsapp * @param raw_body - The raw body of the POST request * @param signature - The x-hub-signature-256 header signature sent by Whatsapp * @returns The emitter's return value, undefined if the corresponding emitter isn't set * @throws Class {@link WhatsAppAPIMissingRawBodyError} if the raw body is missing * @throws Class {@link WhatsAppAPIMissingSignatureError} if the signature is missing * @throws Class {@link WhatsAppAPIMissingAppSecretError} if the appSecret isn't defined * @throws Class {@link WhatsAppAPIMissingCryptoSubtleError} if crypto.subtle or ponyfill isn't available * @throws Class {@link WhatsAppAPIFailedToVerifyError} if the signature doesn't match the hash * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is not a valid Whatsapp API request * @throws Any error generated within the user's callbacks * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is valid but not a message or status update (ignored) */ post(data: PostData, raw_body: string, signature: string): Promise<EmittersReturnType | undefined>; /** * POST helper, must be called inside the post function of your code. * When setting up the webhook, only subscribe to messages. Other subscritions support might be added later. * * raw_body and signature are NOT required when secure is `false` on initialization. * * @deprecated The method isn't deprecated, but it's strongly discouraged to use * the server without signature verification. It's a security risk. * * Provide an `appSecret` and set `secure` to true on {@link WhatsAppAPI} initialization. * * @param data - The POSTed data object sent by Whatsapp * @returns The emitter's return value, undefined if the corresponding emitter isn't set * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is not a valid Whatsapp API request * @throws Any error generated within the user's callbacks * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is valid but not a message or status update (ignored) */ post(data: PostData): Promise<EmittersReturnType | undefined>; /** * GET helper, must be called inside the get function of your code. * Used once at the first webhook setup. * * @example * ```ts * // Simple http example implementation with Whatsapp.get() on Node@^19 * import { WhatsAppAPI } from "whatsapp-api-js"; * import { WhatsAppAPIError } from "whatsapp-api-js/errors"; * import { NodeNext } from "whatsapp-api-js/setup/node"; * * import { createServer } from "http"; * * const token = "token"; * const appSecret = "appSecret"; * const Whatsapp = new WhatsAppAPI(NodeNext({ token, appSecret })); * * function handler(req, res) { * if (req.method == "GET") { * const params = new URLSearchParams(req.url.split("?")[1]); * * try { * const response = Whatsapp.get(Object.fromEntries(params)); * res.writeHead(200, {"Content-Type": "text/html"}); * res.write(response); * } catch (err) { * res.writeHead(err instanceof WhatsAppAPIError ? err.httpStatus : 500); * } * * res.end(); * } else res.writeHead(501).end(); * }; * * const server = createServer(handler); * server.listen(3000); * ``` * * @param params - The request object sent by Whatsapp * @returns The challenge string, it must be the http response body * @throws Class {@link WhatsAppAPIMissingVerifyTokenError} if webhookVerifyToken is not specified * @throws Class {@link WhatsAppAPIMissingSearchParamsError} if the request is missing data * @throws Class {@link WhatsAppAPIFailedToVerifyTokenError} if the verification tokens don't match */ get(params: GetParams): string; /** * Make an authenticated request to any url. * When using this method, be sure to pass a trusted url, since the request will be authenticated with the token. * * It's strongly recommended NOT using this method as you might risk exposing your API key accidentally, * but it's here in case you need a specific API operation which is not implemented by the library. * * @param url - The url to fetch * @param options - The fetch options (headers.Authorization is already included) * @returns The fetch response */ $$apiFetch$$(url: string | URL | Request, options?: RequestInit): Promise<Response>; /** * Verify the signature of a request * * @param raw_body - The raw body of the request * @param signature - The signature to validate * @returns If the signature is valid * @throws Class {@link WhatsAppAPIMissingAppSecretError} if the appSecret isn't defined * @throws Class {@link WhatsAppAPIMissingCryptoSubtleError} if crypto.subtle or ponyfill isn't available */ verifyRequestSignature(raw_body: string, signature: string): Promise<boolean>; /** * Get the body of a fetch response * * @internal * @param promise - The fetch response * @returns The json body parsed */ private getBody; /** * Offload a function to the next tick of the event loop * * @param f - The function to offload from the main thread */ static offload(f: () => unknown): void; } //# sourceMappingURL=index.d.ts.map