1.申請賬号登操作直接看文檔去申請就ok了,管理者身份登入,建立微應用
位址:https://oa.dingtalk.com/index.htm#/login
2.免登授權
CORP_ID :企業id,CORP_SECRET:企業秘鑰,agentid:應用辨別id
注:corp_id ,corp_secret 和 agentid 是免登必備參數,也是開發微應用和必要參數。
一:擷取access_token
/**
* 在此方法中,為了避免頻繁擷取access_token,
* 在距離上一次擷取access_token時間在兩個小時之内的情況,
* 将直接從持久化存儲中讀取access_token
*
* 因為access_token和jsapi_ticket期時間都是7200秒
* 是以在擷取access_token的同時也去擷取了jsapi_ticket
* 注:jsapi_ticket是在前端頁面JSAPI做權限驗證配置的時候需要使用的
* 具體資訊請檢視開發者文檔--權限驗證配置
*/
public static String getAccessToken(String path) throws OApiException {
long curTime = System.currentTimeMillis();
JSONObject accessTokenValue = (JSONObject) FileUtils.getValue("accesstoken", Env.CORP_ID,path);
String accToken = "";
String jsTicket = "";
JSONObject jsontemp = new JSONObject();
if (accessTokenValue == null || curTime - accessTokenValue.getLong("begin_time") >= cacheTime) {
try
{
ServiceFactory serviceFactory = ServiceFactory.getInstance();
CorpConnectionService corpConnectionService = serviceFactory.getOpenService(CorpConnectionService.class);
accToken = corpConnectionService.getCorpToken(Env.CORP_ID, Env.CORP_SECRET);
// save accessToken
JSONObject jsonAccess = new JSONObject();
jsontemp.clear();
jsontemp.put("access_token", accToken);
jsontemp.put("begin_time", curTime);
jsonAccess.put(Env.CORP_ID, jsontemp);
FileUtils.write2File(jsonAccess, "accesstoken",path);
if(accToken.length() > 0){
JsapiService jsapiService = serviceFactory.getOpenService(JsapiService.class);
JsapiTicket JsapiTicket = jsapiService.getJsapiTicket(accToken, "jsapi");
jsTicket = JsapiTicket.getTicket();
JSONObject jsonTicket = new JSONObject();
jsontemp.clear();
jsontemp.put("ticket", jsTicket);
jsontemp.put("begin_time", curTime);
jsonTicket.put(Env.CORP_ID, jsontemp);
FileUtils.write2File(jsonTicket, "jsticket",path);
}
} catch (SdkInitException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (ServiceException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (ServiceNotExistException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
} else {
return accessTokenValue.getString("access_token");
}
return accToken;
}
二:擷取jsapi_ticket
/**
* 正常的情況下,jsapi_ticket的有效期為7200秒,是以開發者需要在某個地方設計一個定時器,定期去更新jsapi_ticket
*/
public static String getJsapiTicket(String accessToken,String path) throws OApiException {
JSONObject jsTicketValue = (JSONObject) FileUtils.getValue("jsticket", Env.CORP_ID,path);
long curTime = System.currentTimeMillis();
String jsTicket = "";
if (jsTicketValue == null || curTime -
jsTicketValue.getLong("begin_time") >= cacheTime) {
ServiceFactory serviceFactory;
try {
serviceFactory = ServiceFactory.getInstance();
JsapiService jsapiService = serviceFactory.getOpenService(JsapiService.class);
JsapiTicket JsapiTicket = jsapiService.getJsapiTicket(accessToken, "jsapi");
jsTicket = JsapiTicket.getTicket();
JSONObject jsonTicket = new JSONObject();
JSONObject jsontemp = new JSONObject();
jsontemp.clear();
jsontemp.put("ticket", jsTicket);
jsontemp.put("begin_time", curTime);
jsonTicket.put(Env.CORP_ID, jsontemp);
FileUtils.write2File(jsonTicket, "jsticket", path);
} catch (SdkInitException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (ServiceException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (ServiceNotExistException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
return jsTicket;
} else {
return jsTicketValue.getString("ticket");
}
}
四:計算簽名資訊
public static String sign(String ticket, String nonceStr, long timeStamp, String url) throws OApiException {
String plain = "jsapi_ticket=" + ticket + "&noncestr=" + nonceStr + "×tamp=" + String.valueOf(timeStamp)
+ "&url=" + url;
try {
MessageDigest sha1 = MessageDigest.getInstance("SHA-1");
sha1.reset();
sha1.update(plain.getBytes("UTF-8"));
return bytesToHex(sha1.digest());
} catch (NoSuchAlgorithmException e) {
throw new OApiResultException(e.getMessage());
} catch (UnsupportedEncodingException e) {
throw new OApiResultException(e.getMessage());
}
}
private static String bytesToHex(byte[] hash) {
Formatter formatter = new Formatter();
for (byte b : hash) {
formatter.format("%02x", b);
}
String result = formatter.toString();
formatter.close();
return result;
}
五:擷取權限資訊的方法,以備擷取權限的接口調用,擷取到權限資訊放到js裡驗證
public static String getConfig(HttpServletRequest request) {
String urlString = request.getRequestURL().toString();
String queryString = request.getQueryString();
String queryStringEncode = null;
String url;
if (queryString != null) {
queryStringEncode = URLDecoder.decode(queryString);
url = urlString + "?" + queryStringEncode;
} else {
url = urlString;
}
String nonceStr = "abcdefg";
long timeStamp = System.currentTimeMillis() / 1000;
String signedUrl = url;
String accessToken = null;
String ticket = null;
String signature = null;
String agentid = null;
try {
String path = request.getServletContext().getRealPath("/");
accessToken = AuthHelper.getAccessToken(path);
ticket = AuthHelper.getJsapiTicket(accessToken,path);
signature = AuthHelper.sign(ticket, nonceStr, timeStamp, signedUrl);
agentid = "xxxxxxxx";
} catch (OApiException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
String configValue = "{jsticket:'" + ticket + "',signature:'" + signature + "',nonceStr:'" + nonceStr + "',timeStamp:'"
+ timeStamp + "',corpId:'" + Env.CORP_ID + "',agentid:'" + agentid+ "'}";
return configValue;
}
注:以上代碼釘釘demo文檔裡有,需要引入釘釘的lib包,lib包在demo裡。
六:controller層寫接口供js裡調用
@Controller
@RequestMapping("api/authHelperApi/")
public class AuthHelperController {
@RequestMapping("getAuth")
@ResponseBody
public String getAuth(HttpServletRequest request){
//AuthHelper 就是上面方法的類
return AuthHelper.getConfig(request);
}
}
七:在加載的首頁index.html頁面,擷取權限資訊,放到js裡驗證使用。
需要引入釘釘的js檔案:http://g.alicdn.com/ilw/ding/0.7.3/scripts/dingtalk.js
注:以上js要放在head裡引入,保證首先加載。
定義的全局變量_config,放到demo.js裡驗證使用。
dd.runtime.permission.requestAuthCode({
corpId : _config.corpId,
onSuccess : function(info) {
$.ajax({
url:'/DingTask/api/ding/userInfo?code=' + info.code + '&corpid='
+ _config.corpId,
type : 'GET',
success : function(userId) {
if (userId != null && userId != ""){
userId = userId.replace("\"","");
var storage=window.localStorage;
//寫入緩存
storage["userId"] = userId;
}
},
error : function(xhr, errorType, error) {
alert(errorType + ', ' + error);
}
});
},
onFail : function(err) {
alert('fail: ' + JSON.stringify(err));
}
});
通過code和corp_id 擷取使用者資訊,我是擷取userId,把userId存入前端緩存,以備其他頁面和接口使用。
var storage=window.localStorage;
//寫入緩存
storage["userId"] = userId;
以上是寫緩存的方法,非常好用。
如:在需要的頁面取userId,
<script>
從緩存取userId
var storage=window.localStorage;
var id = storage.userId;
</script>
擷取userId的接口:
@RequestMapping(value = "userInfo", method = RequestMethod.GET)
@ResponseBody
public String userInfo(HttpServletRequest request, HttpServletResponse response) throws IOException {
// TODO Auto-generated method stub
String code = request.getParameter("code");
String corpId = request.getParameter("corpid");
String userId = null;
try {
response.setContentType("text/html; charset=utf-8");
String path = request.getServletContext().getRealPath("/");
String accessToken = AuthHelper.getAccessToken(path);
userId = UserHelper.getUserInfo(accessToken, code).getUserid();
/*CorpUserDetail user = (CorpUserDetail) UserHelper.getUser(accessToken, userId);
DdAdmin user1 = adminService.selectByUserId(user.getUserid());
request.getSession().setAttribute("userInfo", user);
request.getSession().setAttribute("user", user1);*/
} catch (Exception e) {
// TODO Auto-generated catch block
e.printStackTrace();
/*response.getWriter().append(e.getMessage());*/
}
if (userId != null && userId != ""){
return userId;
}else {
return "";
}
}
至此免登并擷取userId(或者其他的資料)就結束了。
3. 消息推送
我需要發送的oa消息,其他類型消息可以參照文檔:
https://open-doc.dingtalk.com/microapp/serverapi2/pgoxpy
需要引入jar包:taobao-sdk-java-auto_1479188381469-20181204.jar ,以下是代碼,在需要發送消息的接口裡直接調用即可。
public static boolean send(HttpServletRequest req, String title, String useridList, List<OapiMessageCorpconversationAsyncsendV2Request.Form> forms, String author) {
DingTalkClient client = new DefaultDingTalkClient("https://oapi.dingtalk.com/topapi/message/corpconversation/asyncsend_v2");
OapiMessageCorpconversationAsyncsendV2Request request = new OapiMessageCorpconversationAsyncsendV2Request();
request.setUseridList(useridList);
request.setAgentId(208740242L);
request.setToAllUser(false);
OapiMessageCorpconversationAsyncsendV2Request.Msg msg = new OapiMessageCorpconversationAsyncsendV2Request.Msg();msg.setOa(new OapiMessageCorpconversationAsyncsendV2Request.OA());
msg.getOa().setHead(new OapiMessageCorpconversationAsyncsendV2Request.Head());
msg.getOa().getHead().setText("我的任務");
msg.getOa().getHead().setBgcolor("FFBBBBBB");
msg.getOa().setBody(new OapiMessageCorpconversationAsyncsendV2Request.Body());
msg.getOa().getBody().setTitle(title);
msg.getOa().getBody().setForm(forms);
msg.getOa().getBody().setAuthor(author);
msg.setMsgtype("oa");
request.setMsg(msg);
String path = req.getServletContext().getRealPath("/");
String token = null;
try {
token = getAccessToken(path);
} catch (OApiException e) {
e.printStackTrace();
}
OapiMessageCorpconversationAsyncsendV2Response response = null;
try {
response = client.execute(request,token);
} catch (ApiException e) {
e.printStackTrace();
}
if (response != null){
return true;
}else {
return false;
}
}
ps:
1.出現以下問題:
解決:檢查sign ,簽名方法裡 url是否為目前請求頁面的url,98%出現此問題的原因都是url錯誤,如果錯誤,可以把請求的頁面url動态加到sign方法裡請求。
2.使用釘釘jsAPI裡的方法,我使用的一個擷取釘釘裡組織清單選人的方法,如下:
ps:有的是需要dd.config()的,有的則不需要,如果需要,必須鑒權通過才可以調用。
在js裡給html頁面需要選擇人的地方,給個點選事件,調用此方法,即可跳出釘釘組織架構選人的頁面。
dd.ready(function() {
dd.biz.contact.complexPicker({
title: "選擇責任人", //标題
corpId: _config.corpId, //企業的corpId
multiple: false, //是否多選
limitTips: "超出了", //超過限定人數傳回提示
maxUsers: 1000, //最大可選人數
pickedUsers: [], //已選使用者
pickedDepartments: [], //已選部門
disabledUsers: [], //不可選使用者
disabledDepartments: [], //不可選部門
requiredUsers: [], //必選使用者(不可取消選中狀态)
requiredDepartments: [], //必選部門(不可取消選中狀态)
appId: _config.corpId, //微應用的Id
permissionType: "GLOBAL", //選人權限,目前隻有GLOBAL這個參數
responseUserOnly: false, //傳回人,或者傳回人和部門
startWithDepartmentId: 0, // 0表示從企業最上層開始,IOS不支援該字段
onSuccess: function (result) {
$("#accepter").html(result.users[0].name);
$("#accepterId").html(result.users[0].emplId);
queryStr = "&assignedTo=" + result.users[0].emplId;
//tableList(queryStr);
if(id == '1111'){
queryStr = "?assignedTo=" + result.users[0].emplId;
}
$.ajax({
url: ajaxUrl + queryStr,
type:'post',
dataType:'json',
success:function(data){
var tr;
if (data == null || data == ""){
tr = '<td>' + "" + '</td>' + '<td>' + "" + '</td>' + '<td>'
+ "" + '</td>' + '<td>' + "" + '</td>';
$("#tableList").html('<tr>' + tr + '</tr>')
}else {
$("#tableList").html('');
for (var i in data) {
tr = '<td>' + data[i].assignedToName + '</td>' + '<td>' + data[i].notCount + '</td>' + '<td>'
+ data[i].overDueCount + '</td>' + '<td>' + data[i].onDueCount + '</td>';
$("#tableList").append('<tr>' + tr + '</tr>')
}
}
}
})
},
onFail: function (err) {
var jsonData = JSON.stringify(err);// 轉成JSON格式
alert(jsonData)
}
});
});