fix: remove deprecated Client Credentials grant type

nioc · nioc · commit e90404d712c0 · 2024-11-05T00:39:00.000+01:00
diff --git a/README.md b/README.md
@@ -25,71 +25,96 @@ npm install netatmo-nodejs-api
 
 ## Usage
 
-### Basic example with refresh token and client credentials grant type
+You need to [create an application](https://dev.netatmo.com/apps/createanapp#form)
+
+### ~~Basic example with Client Credentials grant type~~
+
+This method has been deprecated, see [Natatmo documentation](https://dev.netatmo.com/apidocumentation/oauth#client-credential)
+
+### Basic example with Refresh Token grant type
+
+You need to generate a token on [Netatmo website](https://dev.netatmo.com/apps/):
+-    choose scopes
+-    click `generate token` button and accept the condition
+-    copy both `Access Token` and `Refresh Token` and use it in the following code
+
 ```js
 const { NetatmoClient, SCOPE_BASIC_CAMERA } = require('netatmo-nodejs-api')
 
-// you need to set your own information
-const clientId = '60...'
-const clientSecret = 'abc...'
-const username = 'user@domain'
-const password = 'pass'
-let refreshToken = ''
-let accessToken = ''
-let expiresInTimestamp = 0
-
-try {
-  // create client
-  const client = new NetatmoClient(clientId, clientSecret, SCOPE_BASIC_CAMERA, { timeout: 1000 })
-
-  // authenticate
-  if (!client.checkAndSetAccesToken(accessToken, expiresInTimestamp)) {
-    if (refreshToken) {
-      // use previous refresh token
-      ({ accessToken, refreshToken, expiresInTimestamp } = await client.authenticateByRefreshToken(refreshToken))
-    } else {
-      // use user credentials
-      ({ accessToken, refreshToken, expiresInTimestamp } = await client.authenticateByClientCredentials(username, password))
+async function main () {
+  // you need to set your own information
+  const clientId = ''
+  const clientSecret = ''
+  let accessToken = ''
+  let refreshToken = ''
+  let expiresInTimestamp = 0
+
+  try {
+    // create client
+    const client = new NetatmoClient(clientId, clientSecret, SCOPE_BASIC_CAMERA, { timeout: 1000 })
+
+    // authenticate
+    if (!client.checkAndSetAccesToken(accessToken, expiresInTimestamp)) {
+      if (refreshToken) {
+        // use previous refresh token
+        ({ accessToken, refreshToken, expiresInTimestamp } = await client.authenticateByRefreshToken(refreshToken))
+        // you should store accessToken, refreshToken, expiresInTimestamp for further request
+        console.log('update the code with following 3 lines:')
+        console.log(`  let accessToken = '${accessToken}'`)
+        console.log(`  let refreshToken = '${refreshToken}'`)
+        console.log(`  let expiresInTimestamp = ${expiresInTimestamp}`)
+      } else {
+        throw new Error('Refresh token is missing')
+      }
     }
-    // you should store accessToken, refreshToken, expiresInTimestamp for further request
-  }
 
-  // get data
-  const homes = await client.getHomes()
-} catch (error) {
-  console.log(error)
+    // get data
+    const homes = await client.getHomes()
+    console.log(homes)
+  } catch (error) {
+    console.log(error)
+  }
 }
+
+main()
 ```
 
-### Authenticate wrapper (try access token, refresh token or client credentials)
+### Authenticate wrapper (try access token or refresh token)
 
-You can use the `authenticate` method which wrap 3 authentication methods.
+You can use the `authenticate` method which wrap 2 authentication methods.
 
 ```js
 const { NetatmoClient, SCOPE_BASIC_CAMERA } = require('netatmo-nodejs-api')
 
-// you need to set your own information
-const clientId = '60...'
-const clientSecret = 'abc...'
-const username = 'user@domain'
-const password = 'pass'
-let refreshToken = ''
-let accessToken = ''
-let expiresInTimestamp = 0
-
-try {
-  // create client
-  const client = new NetatmoClient(clientId, clientSecret, SCOPE_BASIC_CAMERA, { timeout: 1000 })
-
-  // authenticate
-  ({ accessToken, refreshToken, expiresInTimestamp } = await client.authenticate(accessToken, refreshToken, expiresInTimestamp, username, password))
-  // you should store accessToken, refreshToken, expiresInTimestamp for further request
-
-  // get data
-  const homes = await client.getHomes()
-} catch (error) {
-  console.log(error)
+async function main () {
+  // you need to set your own information
+  const clientId = ''
+  const clientSecret = ''
+  let refreshToken = ''
+  let accessToken = ''
+  let expiresInTimestamp = 0
+
+  try {
+    // create client
+    const client = new NetatmoClient(clientId, clientSecret, SCOPE_BASIC_CAMERA, { timeout: 1000 });
+
+    // authenticate
+    ({ accessToken, refreshToken, expiresInTimestamp } = await client.authenticate(accessToken, refreshToken, expiresInTimestamp))
+    // you should store accessToken, refreshToken, expiresInTimestamp for further request
+    console.log('update the code with following:', refreshToken)
+    console.log(`  let accessToken = '${accessToken}'`)
+    console.log(`  let refreshToken = '${refreshToken}'`)
+    console.log(`  let expiresInTimestamp = ${expiresInTimestamp}`)
+
+    // get data
+    const homes = await client.getHomes()
+    console.log(homes)
+  } catch (error) {
+    console.log(error)
+  }
 }
+
+main()
 ```
 
 ## Versioning
diff --git a/lib/index.js b/lib/index.js
@@ -60,9 +60,6 @@ class NetatmoClient {
     this.clientSecret = clientSecret
     this.scope = scope
     this.requestConfig = requestConfig
-    // client credentials
-    this.username = null
-    this.password = null
     // authorization code
     this.authorizationCode = null
     this.redirectUrl = null
@@ -79,11 +76,9 @@ class NetatmoClient {
    * @param {string} accessToken Access token for your user
    * @param {string} refreshToken Refresh token to get a new access token
    * @param {number} expiresInTimestamp Validity timelaps as timestamp
-   * @param {string} username User address email
-   * @param {string} password User password
    * @return {Token} Token `{accessToken, refreshToken, expiresInTimestamp}`
    */
-  async authenticate (accessToken = null, refreshToken = null, expiresInTimestamp = 0, username = null, password = null) {
+  async authenticate (accessToken = null, refreshToken = null, expiresInTimestamp = 0) {
     if (this.checkAndSetAccesToken(accessToken, expiresInTimestamp)) {
       if (refreshToken) {
         this.refreshToken = refreshToken
@@ -93,7 +88,7 @@ class NetatmoClient {
     if (refreshToken) {
       return this.authenticateByRefreshToken(refreshToken)
     }
-    return this.authenticateByClientCredentials(username, password)
+    throw new Error('Refresh token is missing')
   }
 
   /**
@@ -148,30 +143,6 @@ class NetatmoClient {
     return this.setToken(authentication)
   }
 
-  /**
-   * Authenticate with client credentials
-   *
-   * @param {string} username User address email
-   * @param {string} password User password
-   * @return {Token} Token `{accessToken, refreshToken, expiresInTimestamp}`
-   */
-  async authenticateByClientCredentials (username, password) {
-    if (!username || !password) {
-      throw new Error('Username and password must be provided')
-    }
-    this.username = username
-    this.password = password
-    const authentication = await this.request(HTTP_POST, PATH_AUTH, null, {
-      grant_type: 'password',
-      client_id: this.clientId,
-      client_secret: this.clientSecret,
-      username: this.username,
-      password: this.password,
-      scope: this.scope,
-    })
-    return this.setToken(authentication)
-  }
-
   /**
    * Authenticate with an existing refresh token
    *
@@ -266,7 +237,7 @@ class NetatmoClient {
         if (!isRetry && (error.response.status === 403 || error.response.status === 401) && error.response.data.error && error.response.data.error.code && error.response.data.error.code === 3) {
           // expired access token error, remove it and try to get a new one before a retry
           this.accessToken = null
-          await this.authenticate(null, this.refreshToken, this.expiresInTimestamp, this.username, this.password)
+          await this.authenticate(null, this.refreshToken, this.expiresInTimestamp)
           return await this.request(method, path, params, data, true)
         }
         if (error.response.data.error_description) {
diff --git a/test/index.test.js b/test/index.test.js
@@ -11,8 +11,6 @@ const clientSecret = 'clientSecret'
 const scope = 'scope'
 const requestConfig = { dummy: '1' }
 const redirectUrl = 'http://localhost/auth'
-const username = 'user'
-const password = 'password'
 const authResult = {
   access_token: '2YotnFZFEjr1zCsicMWpAA',
   expires_in: 10800,
@@ -141,22 +139,6 @@ describe('Authentication', function () {
     })
   })
 
-  describe('User credentials grant type', function () {
-    it('should throw error if user credentials are missing', async function () {
-      const client = new NetatmoClient(clientId, clientSecret, scope, {})
-      await assert.rejects(async () => { await client.authenticateByClientCredentials(null, password) }, new Error('Username and password must be provided'))
-      await assert.rejects(async () => { await client.authenticateByClientCredentials(username, undefined) }, new Error('Username and password must be provided'))
-    })
-
-    it('should obtain token with client credentials', async function () {
-      const client = new NetatmoClient(clientId, clientSecret, scope, {})
-      const { accessToken, refreshToken, expiresInTimestamp } = await client.authenticateByClientCredentials(username, password)
-      assert.strictEqual(accessToken, authResult.access_token)
-      assert.strictEqual(refreshToken, authResult.refresh_token)
-      assert.strictEqual(expiresInTimestamp > Date.now() / 1000, true)
-    })
-  })
-
   describe('Refresh token', function () {
     it('should throw error if refresh token is missing', async function () {
       const client = new NetatmoClient(clientId, clientSecret, scope, {})
@@ -185,13 +167,6 @@ describe('Authentication', function () {
       assert.strictEqual(refreshToken, authResult.refresh_token)
       assert.strictEqual(expiresInTimestamp > Date.now() / 1000, true)
     })
-    it('should obtain token with client credentials', async function () {
-      const client = new NetatmoClient(clientId, clientSecret, scope, {})
-      const { accessToken, refreshToken, expiresInTimestamp } = await client.authenticate(undefined, undefined, 0, username, password)
-      assert.strictEqual(accessToken, authResult.access_token)
-      assert.strictEqual(refreshToken, authResult.refresh_token)
-      assert.strictEqual(expiresInTimestamp > Date.now() / 1000, true)
-    })
   })
 
   describe('Invalid token', function () {
