whatsapp-api-js

/** @module WhatsAppAPI */ import { ClientMessage, type WhatsAppAPIConstructorArguments, type PostData, type GetParams, type ClientTypingIndicators, type ServerMessageResponse, type ServerMarkAsReadResponse, type ServerCreateQRResponse, type ServerRetrieveQRResponse, type ServerUpdateQRResponse, type ServerDeleteQRResponse, type ServerMediaRetrieveResponse, type ServerMediaUploadResponse, type ServerMediaDeleteResponse, type ServerBlockResponse, type ServerUnblockResponse, type ServerPreacceptCallResponse, type ServerAcceptCallResponse, type ServerTerminateCallResponse, type ServerRejectCallResponse, type ServerInitiateCallResponse } from "./types.js"; import type { OnCallConnect, OnCallStatus, OnCallTerminate, OnMessage, OnSent, OnStatus } from "./emitters.d.ts"; /** * The main API Class * * @template EmittersReturnType - The return type of the emitters * ({@link OnMessage}, {@link OnStatus}) */ export declare class WhatsAppAPI<EmittersReturnType = void> { /** * The API token */ private token; /** * The app secret */ private appSecret?; /** * The webhook verify token */ private webhookVerifyToken?; /** * The API version to use */ private v; /** * The fetch function for the requests */ private fetch; /** * The CryptoSubtle library for checking the signatures */ private subtle?; /** * If false, the API will be used in a less secure way, removing the need for appSecret. Defaults to true. */ private secure; /** * The callbacks for the events (message, sent, status, call) * * @example * ```ts * const Whatsapp = new WhatsAppAPI({ * token: "my-token", * appSecret: "my-app-secret" * }); * * // Set the callback * Whatsapp.on.message = ({ from, phoneID }) => console.log(`Message from ${from} to bot ${phoneID}`); * * // If you need to disable the callback: * // Whatsapp.on.message = undefined; * ``` */ on: { message?: OnMessage<EmittersReturnType>; sent?: OnSent; status?: OnStatus<EmittersReturnType>; call: { connect?: OnCallConnect<EmittersReturnType>; terminate?: OnCallTerminate<EmittersReturnType>; status?: OnCallStatus<EmittersReturnType>; }; }; /** * Main entry point for the API. * * It's highly recommended reading the named parameters docs at * {@link types.TheBasicConstructorArguments}, * at least for `token`, `appSecret` and `webhookVerifyToken` properties, * which are the most common in normal usage. * * The other parameters are used for fine tunning the framework, * such as `ponyfill`, which allows the code to execute on platforms * that are missing standard APIs such as fetch and crypto. * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * ``` * * @template EmittersReturnType - The return type of the emitters * ({@link OnMessage}, {@link OnStatus}) * * @throws If fetch is not defined in the enviroment and the provided ponyfill isn't a function * @throws If secure is true, crypto.subtle is not defined in the enviroment and the provided ponyfill isn't an object */ constructor({ token, appSecret, webhookVerifyToken, v, secure, ponyfill }: WhatsAppAPIConstructorArguments); /** * Send a Whatsapp message * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * Whatsapp.sendMessage( * "BOT_PHONE_ID", * "USER_PHONE", * new Text("Hello World") * ).then(console.log); * ``` * * @param phoneID - The bot's phone ID * @param to - The user's phone number * @param message - A Whatsapp message, built using the corresponding module for each type of message. * @param context - The message ID of the message to reply to * @param biz_opaque_callback_data - An arbitrary 512B string, useful for tracking (length not checked by the framework) * @returns The server response */ sendMessage(phoneID: string, to: string, message: ClientMessage, context?: string, biz_opaque_callback_data?: string): Promise<ServerMessageResponse>; /** * Send a Whatsapp message to multiple phone numbers. * * In order to avoid reaching the * [API rate limit](https://developers.facebook.com/docs/whatsapp/cloud-api/overview?locale=en_US#throughput), * this method will send the messages in batches of 50 per second by default, * but this can be changed using the `batch_size` and `delay` parameters. * * The API rate limit can be increased by contacting Facebook as explained * [here](https://developers.facebook.com/docs/whatsapp/cloud-api/overview?locale=en_US#throughput). * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * const phoneID = "YOUR_BOT_NUMBER"; * const users = ["YOUR_USER1_NUMBER", "YOUR_USER2_NUMBER"]; * const message = new Text("Hello World"); * * const responses = Whatsapp.broadcastMessage(phoneID, users, message); * * Promise.all(responses).then(console.log); * ``` * * @param phoneID - The bot's phone ID * @param to - The users' phone numbers * @param message - A Whatsapp message, built using the corresponding module for each type of message. * @param batch_size - The number of messages to send per batch * @param delay - The delay between each batch of messages in milliseconds * @returns The server's responses * @throws if batch_size is lower than 1 * @throws if delay is lower than 0 */ broadcastMessage(phoneID: string, to: string[], message: ClientMessage, batch_size: number, delay: number): Array<ReturnType<WhatsAppAPI["sendMessage"]>>; /** * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * import { Text } from "whatsapp-api-js/messages/text"; * * const Whatsapp = new WhatsAppAPI({ * token: "YOUR_TOKEN", * appSecret: "YOUR_APP_SECRET" * }); * * const phoneID = "YOUR_BOT_NUMBER"; * const users = [{ user: "USER1_ID" }, { user: "USER2_ID" }]; * const message_builder = ({ user }) => [DB.fetch(user).phone, new Text(`Hello ${user}`)]; * * const responses = Whatsapp.broadcastMessage(phoneID, users, message); * * Promise.all(responses).then(console.log); * ``` * * @typeParam T - The type of the data to be used in the message builder * @param phoneID - The bot's phone ID * @param to - The users' data * @param message_builder - A Whatsapp message builder, it returns an array with the phone number and the message. * @param batch_size - The number of messages to send per batch * @param delay - The delay between each batch of messages in milliseconds * @returns The server's responses * @throws if batch_size is lower than 1 * @throws if delay is lower than 0 */ broadcastMessage<T>(phoneID: string, to: T[], message_builder: (data: T) => [string, ClientMessage], batch_size: number, delay: number): Array<ReturnType<WhatsAppAPI["sendMessage"]>>; /** * Mark a message as read, and optionally include a reply indicator * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/typing-indicators * * @param phoneID - The bot's phone ID * @param messageId - The message ID * @param indicator - The type of reply indicator * @returns The server response */ markAsRead(phoneID: string, messageId: string, indicator?: ClientTypingIndicators): Promise<ServerMarkAsReadResponse>; /** * Initiate a call. * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/calling/reference#initiate-call * * @beta * @param phoneID - The bot's phone ID * @param to - The callee phone number * @param sdp - The SDP invitation string (RFC 8866) * @param biz_opaque_callback_data - An arbitrary 512B string, useful for tracking (length not checked by the framework) * @returns The server response */ initiateCall(phoneID: string, to: string, sdp: string, biz_opaque_callback_data?: string): Promise<ServerInitiateCallResponse>; /** * Pre-accept a call, before attempting to open the WebRTC connection. * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/calling/user-initiated-calls * * @beta * @param phoneID - The bot's phone ID * @param callID - The call ID * @param sdp - The SDP invitation string (RFC 8866) * @returns The server response */ preacceptCall(phoneID: string, callID: `wacid.${string}`, sdp: string): Promise<ServerPreacceptCallResponse>; /** * Reject a call, before attempting to open the WebRTC connection. * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/calling/user-initiated-calls * * @beta * @param phoneID - The bot's phone ID * @param callID - The call ID * @returns The server response */ rejectCall(phoneID: string, callID: `wacid.${string}`): Promise<ServerRejectCallResponse>; /** * Accept a call, after opening the WebRTC connection. * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/calling/user-initiated-calls * * @beta * @param phoneID - The bot's phone ID * @param callID - The call ID * @param sdp - The SDP invitation string (RFC 8866) * @param biz_opaque_callback_data - An arbitrary 512B string, useful for tracking (length not checked by the framework) * @returns The server response */ acceptCall(phoneID: string, callID: `wacid.${string}`, sdp: string, biz_opaque_callback_data?: string): Promise<ServerAcceptCallResponse>; /** * Terminate a call. * * @see https://developers.facebook.com/docs/whatsapp/cloud-api/calling/user-initiated-calls * * @beta * @param phoneID - The bot's phone ID * @param callID - The call ID * @returns The server response */ terminateCall(phoneID: string, callID: `wacid.${string}`): Promise<ServerTerminateCallResponse>; /** * Generate a QR code for sharing the bot * * @param phoneID - The bot's phone ID * @param message - The quick message on the QR code * @param format - The format of the QR code * @returns The server response */ createQR(phoneID: string, message: string, format?: "png" | "svg"): Promise<ServerCreateQRResponse>; /** * Get one or many QR codes of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to find. If not specified, all QRs will be returned * @returns The server response */ retrieveQR(phoneID: string, id?: string): Promise<ServerRetrieveQRResponse>; /** * Update a QR code of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to edit * @param message - The new quick message for the QR code * @returns The server response */ updateQR(phoneID: string, id: string, message: string): Promise<ServerUpdateQRResponse>; /** * Delete a QR code of the bot * * @param phoneID - The bot's phone ID * @param id - The QR's id to delete * @returns The server response */ deleteQR(phoneID: string, id: string): Promise<ServerDeleteQRResponse>; /** * Get a Media object data with an ID * * @see {@link fetchMedia} * * @param id - The Media's ID * @param phoneID - Business phone number ID. If included, the operation will only be processed if the ID matches the ID of the business phone number that the media was uploaded on. * @returns The server response */ retrieveMedia(id: string, phoneID?: string): Promise<ServerMediaRetrieveResponse>; /** * Upload a Media to the API server * * @example * ```ts * // author ekoeryanto on issue #322 * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * const url = "https://example.com/image.png"; * * const image = await fetch(url); * const blob = await image.blob(); * * // If required: * // import FormData from "undici"; * * const form = new FormData(); * form.set("file", blob); * * console.log(await Whatsapp.uploadMedia("phoneID", form)); * // Expected output: { id: "mediaID" } * ``` * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * // If required: * // import FormData from "undici"; * // import { Blob } from "node:buffer"; * * const form = new FormData(); * * // If you don't mind reading the whole file into memory: * form.set("file", new Blob([fs.readFileSync("image.png")], "image/png")); * * // If you do, you will need to use streams. The module "form-data", * // although not spec compliant (hence needing to set check to false), * // has an easy way to do this: * // form.append("file", fs.createReadStream("image.png"), { contentType: "image/png" }); * * console.log(await Whatsapp.uploadMedia("phoneID", form)); * // Expected output: { id: "mediaID" } * ``` * * @param phoneID - The bot's phone ID * @param form - The Media's FormData. Must have a 'file' property with the file to upload as a blob and a valid mime-type in the 'type' field of the blob. Example for Node ^18: `new FormData().set("file", new Blob([stringOrFileBuffer], "image/png"));` Previous versions of Node will need an external FormData, such as undici's. To use non spec complaints versions of FormData (eg: form-data) or Blob set the 'check' parameter to false. * @param check - If the FormData should be checked before uploading. The FormData must have the method .get("name") to work with the checks. If it doesn't (for example, using the module "form-data"), set this to false. * @returns The server response * @throws If check is set to true and form is not a FormData * @throws If check is set to true and the form doesn't have valid required properties (file, type) * @throws If check is set to true and the form file is too big for the file type */ uploadMedia(phoneID: string, form: unknown, check?: boolean): Promise<ServerMediaUploadResponse>; /** * Get a Media fetch from an url. * When using this method, be sure to pass a trusted url, since the request will be authenticated with the token. * * @example * ```ts * import { WhatsAppAPI } from "whatsapp-api-js"; * * const token = "token"; * const appSecret = "appSecret"; * * const Whatsapp = new WhatsAppAPI({ token, appSecret }); * * const id = "mediaID"; * const { url } = await Whatsapp.retrieveMedia(id); * const response = Whatsapp.fetchMedia(url); * ``` * * @param url - The Media's url * @returns The fetch raw response * @throws If url is not a valid url */ fetchMedia(url: string): Promise<Response>; /** * Delete a Media object with an ID * * @param id - The Media's ID * @param phoneID - Business phone number ID. If included, the operation will only be processed if the ID matches the ID of the business phone number that the media was uploaded on. * @returns The server response */ deleteMedia(id: string, phoneID?: string): Promise<ServerMediaDeleteResponse>; /** * Block a user from sending messages to the bot * * The block API has 2 restrictions: * - You can only block users that have messaged your business in the last 24 hours * - You can only block up to 64k users * * @param phoneID - The bot's phone ID from which to block * @param users - The user phone numbers to block (the API doesn't fail if it's empty) * @returns The server response */ blockUser(phoneID: string, ...users: string[]): Promise<ServerBlockResponse>; /** * Unblock a user from the bot's block list * * @remarks Contrary to blocking, unblocking isn't restricted by the 24 hours rule * * @param phoneID - The bot's phone ID from which to unblock * @param users - The user phone numbers to unblock (the API doesn't fail if it's empty) * @returns The server response */ unblockUser(phoneID: string, ...users: string[]): Promise<ServerUnblockResponse>; /** * POST helper, must be called inside the post function of your server. * When setting up the webhook, you can subscribe to messages and calls. * Unexpected events will throw an {@link WhatsAppAPIUnexpectedError}. * * raw_body and signature are required when secure is `true` on initialization (default). * * @example * ```ts * // author arivanbastos on issue #114 * // Simple http example implementation with Whatsapp.post() on Node@^19 * import { WhatsAppAPI } from "whatsapp-api-js"; * import { WhatsAppAPIError } from "whatsapp-api-js/errors"; * import { NodeNext } from "whatsapp-api-js/setup/node"; * * import { createServer } from "http"; * * const token = "token"; * const appSecret = "appSecret"; * const Whatsapp = new WhatsAppAPI<number>(NodeNext({ token, appSecret })); * * function handler(req, res) { * if (req.method == "POST") { * const chunks = []; * req.on("data", (chunk) => chunks.push(chunk)); * * req.on("end", async () => { * const body = Buffer.concat(chunks).toString(); * * try { * const response = await Whatsapp.post(JSON.parse(body), body, req.headers["x-hub-signature-256"]); * res.writeHead(response); * } catch (err) { * res.writeHead(err instanceof WhatsAppAPIError ? err.httpStatus : 500); * } * * res.end(); * }); * } else res.writeHead(501).end(); * }; * * Whatsapp.on.message = ({ phoneID, from, message, name, reply, offload }) => { * console.log(`User ${name} (${from}) sent to bot ${phoneID} a(n) ${message.type}`); * offload(() => reply(new Text("Hello!"))); * return 202; * }; * * const server = createServer(handler); * server.listen(3000); * ``` * * @param data - The POSTed data object sent by Whatsapp * @param raw_body - The raw body of the POST request * @param signature - The x-hub-signature-256 header signature sent by Whatsapp * @returns The emitter's return value, undefined if the corresponding emitter isn't set * @throws Class {@link WhatsAppAPIMissingRawBodyError} if the raw body is missing * @throws Class {@link WhatsAppAPIMissingSignatureError} if the signature is missing * @throws Class {@link WhatsAppAPIMissingAppSecretError} if the appSecret isn't defined * @throws Class {@link WhatsAppAPIMissingCryptoSubtleError} if crypto.subtle or ponyfill isn't available * @throws Class {@link WhatsAppAPIFailedToVerifyError} if the signature doesn't match the hash * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is not a valid Whatsapp API request * @throws Any error generated within the user's callbacks * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is valid but not a message or status update (ignored) */ post(data: PostData, raw_body: string, signature: string): Promise<EmittersReturnType | undefined>; /** * POST helper, must be called inside the post function of your server. * When setting up the webhook, you can subscribe to messages and calls. * Unexpected events will throw an {@link WhatsAppAPIUnexpectedError}. * * raw_body and signature are NOT required when secure is `false` on initialization. * * @deprecated The method isn't deprecated, but it's strongly discouraged to use * the server without signature verification. It's a security risk. * * Provide an `appSecret` and set `secure` to true on {@link WhatsAppAPI} initialization. * * @param data - The POSTed data object sent by Whatsapp * @returns The emitter's return value, undefined if the corresponding emitter isn't set * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is not a valid Whatsapp API request * @throws Any error generated within the user's callbacks * @throws Class {@link WhatsAppAPIUnexpectedError} if the POSTed data is valid but not a message or status update (ignored) */ post(data: PostData): Promise<EmittersReturnType | undefined>; /** * GET helper, must be called inside the get function of your code. * Used once at the first webhook setup. * * @example * ```ts * // Simple http example implementation with Whatsapp.get() on Node@^19 * import { WhatsAppAPI } from "whatsapp-api-js"; * import { WhatsAppAPIError } from "whatsapp-api-js/errors"; * import { NodeNext } from "whatsapp-api-js/setup/node"; * * import { createServer } from "http"; * * const token = "token"; * const appSecret = "appSecret"; * const Whatsapp = new WhatsAppAPI(NodeNext({ token, appSecret })); * * function handler(req, res) { * if (req.method == "GET") { * const params = new URLSearchParams(req.url.split("?")[1]); * * try { * const response = Whatsapp.get(Object.fromEntries(params)); * res.writeHead(200, {"Content-Type": "text/html"}); * res.write(response); * } catch (err) { * res.writeHead(err instanceof WhatsAppAPIError ? err.httpStatus : 500); * } * * res.end(); * } else res.writeHead(501).end(); * }; * * const server = createServer(handler); * server.listen(3000); * ``` * * @param params - The request object sent by Whatsapp * @returns The challenge string, it must be the http response body * @throws Class {@link WhatsAppAPIMissingVerifyTokenError} if webhookVerifyToken is not specified * @throws Class {@link WhatsAppAPIMissingSearchParamsError} if the request is missing data * @throws Class {@link WhatsAppAPIFailedToVerifyTokenError} if the verification tokens don't match */ get(params: GetParams): string; /** * Make an authenticated request to any url. * When using this method, be sure to pass a trusted url, since the request will be authenticated with the token. * * It's strongly recommended NOT using this method as you might risk exposing your API key accidentally, * but it's here in case you need a specific API operation which is not implemented by the library. * * @param url - The url to fetch * @param options - The fetch options (headers.Authorization is already included) * @returns The fetch response */ $$apiFetch$$(url: string | URL | Request, options?: RequestInit): Promise<Response>; /** * Verify the signature of a request * * @param raw_body - The raw body of the request * @param signature - The signature to validate * @returns If the signature is valid * @throws Class {@link WhatsAppAPIMissingAppSecretError} if the appSecret isn't defined * @throws Class {@link WhatsAppAPIMissingCryptoSubtleError} if crypto.subtle or ponyfill isn't available */ verifyRequestSignature(raw_body: string, signature: string): Promise<boolean>; /** * Get the body of a fetch response * * @internal * @param promise - The fetch response * @returns The json body parsed */ private getBody; /** * Offload a function to the next tick of the event loop * * @param f - The function to offload from the main thread */ static offload(f: () => unknown): void; } //# sourceMappingURL=index.d.ts.map