1
0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-01-24 04:16:27 +02:00
Gabriel Cipriano 59a3eeb56d
fix: linkedin announce api changes (#4428)
Closes #4421 

I chose to keep `getProfileID` as `getProfileIDLegacy` and use it as a
fallback if `getProfileSub` fails because of permission scope.

In this way, it's not a breaking change because one that has only a
deprecated permissions such as `r_liteprofile` will still be able to hit
`v2/me`

this logic is encapsulated in the new function `getProfileURN`, that
resolves the user identifier and returns it formatted as a URN

---------

Co-authored-by: Gabriel F Cipriano <gabriel.cipriano@farme.com.br>
2023-11-18 09:51:42 -03:00

199 lines
5.5 KiB
Go

package linkedin
import (
"bytes"
"encoding/json"
"errors"
"fmt"
"io"
"net/http"
"github.com/caarlos0/log"
"github.com/goreleaser/goreleaser/pkg/context"
"golang.org/x/oauth2"
)
var ErrLinkedinForbidden = errors.New("forbidden. please check your permissions")
type oauthClientConfig struct {
Context *context.Context
AccessToken string
}
type client struct {
client *http.Client
baseURL string
}
type postShareText struct {
Text string `json:"text"`
}
type postShareRequest struct {
Text postShareText `json:"text"`
Owner string `json:"owner"`
}
func createLinkedInClient(cfg oauthClientConfig) (client, error) {
if cfg.Context == nil {
return client{}, fmt.Errorf("context is nil")
}
if cfg.AccessToken == "" {
return client{}, fmt.Errorf("empty access token")
}
config := oauth2.Config{}
c := config.Client(cfg.Context, &oauth2.Token{
AccessToken: cfg.AccessToken,
})
if c == nil {
return client{}, fmt.Errorf("client is nil")
}
return client{
client: c,
baseURL: "https://api.linkedin.com",
}, nil
}
// getProfileIDLegacy returns the Current Member's ID
// it's legacy because it uses deprecated v2/me endpoint, that requires old permissions such as r_liteprofile
// POST Share API requires a Profile ID in the 'owner' field
// Format must be in: 'urn:li:person:PROFILE_ID'
// https://docs.microsoft.com/en-us/linkedin/shared/integrations/people/profile-api#retrieve-current-members-profile
func (c client) getProfileIDLegacy() (string, error) {
resp, err := c.client.Get(c.baseURL + "/v2/me")
if err != nil {
return "", fmt.Errorf("could not GET /v2/me: %w", err)
}
if resp.StatusCode == http.StatusForbidden {
return "", ErrLinkedinForbidden
}
value, err := io.ReadAll(resp.Body)
if err != nil {
return "", fmt.Errorf("could not read response body: %w", err)
}
defer resp.Body.Close()
var result map[string]interface{}
err = json.Unmarshal(value, &result)
if err != nil {
return "", fmt.Errorf("could not unmarshal: %w", err)
}
if v, ok := result["id"]; ok {
return v.(string), nil
}
return "", fmt.Errorf("could not find 'id' in result: %w", err)
}
// getProfileSub returns the Current Member's sub (formally ID) - requires 'profile' permission
// POST Share API requires a Profile ID in the 'owner' field
// Format must be in: 'urn:li:person:PROFILE_SUB'
// https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin-v2#api-request-to-retreive-member-details
func (c client) getProfileSub() (string, error) {
resp, err := c.client.Get(c.baseURL + "/v2/userinfo")
if err != nil {
return "", fmt.Errorf("could not GET /v2/userinfo: %w", err)
}
if resp.StatusCode == http.StatusForbidden {
return "", ErrLinkedinForbidden
}
value, err := io.ReadAll(resp.Body)
if err != nil {
return "", fmt.Errorf("could not read response body: %w", err)
}
defer resp.Body.Close()
var result map[string]interface{}
err = json.Unmarshal(value, &result)
if err != nil {
return "", fmt.Errorf("could not unmarshal: %w", err)
}
if v, ok := result["sub"]; ok {
return v.(string), nil
}
return "", fmt.Errorf("could not find 'sub' in result: %w", err)
}
// Person or Organization URN - urn:li:person:PROFILE_IDENTIFIER
// Owner of the share. Required on create.
// tries to get the profile sub (formally id) first, if it fails, it tries to get the profile id (legacy)
// https://docs.microsoft.com/en-us/linkedin/marketing/integrations/community-management/shares/share-api?tabs=http#schema
func (c client) getProfileURN() (string, error) {
// To build the URN, we need to get the profile sub (formally id)
profileSub, err := c.getProfileSub()
if err != nil {
if !errors.Is(err, ErrLinkedinForbidden) {
return "", fmt.Errorf("could not get profile sub: %w", err)
}
log.Debug("could not get linkedin profile sub due to permission, getting profile id (legacy)")
profileSub, err = c.getProfileIDLegacy()
if err != nil {
return "", fmt.Errorf("could not get profile id: %w", err)
}
}
return fmt.Sprintf("urn:li:person:%s", profileSub), nil
}
func (c client) Share(message string) (string, error) {
// To get Owner of the share, we need to get the profile URN
profileURN, err := c.getProfileURN()
if err != nil {
return "", fmt.Errorf("could not get profile URN: %w", err)
}
req := postShareRequest{
Text: postShareText{
Text: message,
},
Owner: profileURN,
}
reqBytes, err := json.Marshal(req)
if err != nil {
return "", fmt.Errorf("could not marshal request: %w", err)
}
// Filling only required 'owner' and 'text' field is OK
// https://docs.microsoft.com/en-us/linkedin/marketing/integrations/community-management/shares/share-api?tabs=http#sample-request-3
resp, err := c.client.Post(c.baseURL+"/v2/shares", "application/json", bytes.NewReader(reqBytes))
if err != nil {
return "", fmt.Errorf("could not POST /v2/shares: %w", err)
}
body, err := io.ReadAll(resp.Body)
if err != nil {
return "", fmt.Errorf("could not read from body: %w", err)
}
defer resp.Body.Close()
var result map[string]interface{}
err = json.Unmarshal(body, &result)
if err != nil {
return "", fmt.Errorf("could not unmarshal: %w", err)
}
// Activity URN
// URN of the activity associated with this share. Activities act as a wrapper around
// shares and articles to represent content in the LinkedIn feed. Read only.
if v, ok := result["activity"]; ok {
return fmt.Sprintf("https://www.linkedin.com/feed/update/%s", v.(string)), nil
}
return "", fmt.Errorf("could not find 'activity' in result: %w", err)
}