feat(vk): native share/copy, auto theme, friend-code deep link, home-bar safe area #142

Merged
developer merged 4 commits from feature/vk-bridge-integration into development 2026-06-29 21:04:53 +00:00
5 changed files with 28 additions and 37 deletions
Showing only changes of commit d76f1f4026 - Show all commits
+8 -5
View File
@@ -90,11 +90,14 @@ The bridge talks to the embedding VK client over postMessage; it is NOT an exter
it has no telegram.org-style load-hang risk. The SDK reads browser globals at import — we import
it **lazily** so the pure URL helpers stay node-test-importable.
**Deep links** (direct-link launch): `https://vk.com/app<id>#<payload>` forwards everything after the
`#` to the app as the **`hash` launch query parameter** (it is also in `location.hash`, but that
collides with our hash router, so read the `hash` query param). `?` query strings are NOT supported
for VK direct links. The friend-code invite is built as `vk.com/app<id>#f<code>` — the app id comes
from `vk_app_id` in the launch params (no `VITE_VK_APP_ID` needed) — and read back via `vkStartParam`.
**Deep links — NOT possible on VK (confirmed on the contour).** The VK iframe receives ONLY the signed
`vk_*` launch params (+ `sign`); VK strips any custom data from the app link. The documented
`vk.com/app<id>#<payload>` form is eaten by the vk.com SPA (which owns the URL hash), and a
`vk.com/app<id>?hash=<payload>` query is dropped (the diagnostic showed `rawSearch` with only `vk_*`
and an empty `hash`). So the friend-code invite link is just `vk.com/app<id>` (`vkShareLink`, app id
from `vk_app_id`); the recipient enters the **copied code by hand** (`VKWebAppCopyText` works). The
`vkStartParam` reader + the `bootVK` routing stay as a no-op today, ready if a post-moderation VK
channel (e.g. an invite API) ever delivers a payload.
## 5. Test mode (to verify before moderation)
+9 -20
View File
@@ -751,19 +751,12 @@ async function bootVK(): Promise<void> {
for (let attempt = 0; ; attempt++) {
try {
await adoptSession(await gateway.authVK(params, displayName));
// A VK direct-link deep link (vk.com/app<id>?hash=<param>) rides in as the `hash` launch param.
const sp = vkStartParam();
const diag = app.blocked ? 'blocked' : await routeStartParam(sp);
// TEMP VK deep-link diagnostic (remove after the contour catch): VK launches are not
// reproducible locally and the cold-boot path lands unexpectedly on the lobby, so surface
// the raw query, the parsed payload, the redeem outcome and the final route.
console.log('[VK deeplink]', {
rawSearch: typeof location !== 'undefined' ? location.search : '',
hash: sp,
outcome: diag,
route: router.route.name,
});
showToast(`VK dl: "${sp || '∅'}" -> ${diag}`);
// VK forwards only the signed vk_* params to the iframe — a custom payload on the app link
// (whether after '#', eaten by the vk.com SPA, or as a '?' query, dropped) never reaches it,
// confirmed on the contour. So there is no friend-code auto-redeem on VK in test mode: the
// launch lands on the lobby. vkStartParam stays as the reader for a future (post-moderation)
// deep-link channel, and routes the lobby for an empty payload today.
if (!app.blocked) await routeStartParam(vkStartParam());
app.bootError = false;
return;
} catch (err) {
@@ -825,12 +818,12 @@ export async function retryTelegramLaunch(): Promise<void> {
* specific game, the friends screen with a friend-code redemption, or the lobby
* (where invitations surface as a badge).
*/
async function routeStartParam(param: string): Promise<string> {
async function routeStartParam(param: string): Promise<void> {
const link = parseStartParam(param);
switch (link.kind) {
case 'game':
navigate(`/game/${link.id}`);
return 'game:' + link.id;
return;
case 'friendCode':
try {
const friend = await gateway.friendCodeRedeem(link.code);
@@ -843,7 +836,6 @@ async function routeStartParam(param: string): Promise<string> {
showToast(t('friends.added', { name: friend.displayName }));
}
void refreshNotifications();
return 'friendCode ok: ' + friend.displayName;
} catch (err) {
const code = err instanceof GatewayError ? err.code : '';
if (code === 'self_relation') {
@@ -851,22 +843,19 @@ async function routeStartParam(param: string): Promise<string> {
// scary "can't do that to yourself" error.
navigate('/friends');
showToast(t('friends.selfInvite'));
return 'friendCode self_relation';
} else if (code === 'friend_code_invalid') {
// A previously shared link whose single-use, 12h code is already spent or expired:
// land in the lobby and gently point at the bot, rather than a red error on Friends.
navigate('/');
app.staleInvite = true;
return 'friendCode invalid/stale -> lobby';
} else {
navigate('/friends');
handleError(err);
return 'friendCode err: ' + (code || 'unknown');
}
}
return;
default:
navigate('/');
return 'lobby (empty/unknown param)';
}
}
+3 -3
View File
@@ -42,12 +42,12 @@ describe('vkShareLink', () => {
it('returns null outside a VK launch (no vk_app_id)', () => {
vi.stubGlobal('location', { search: '' });
expect(vkShareLink('f123456')).toBeNull();
expect(vkShareLink()).toBeNull();
});
it('wraps the payload in a vk.com/app link as the hash query param', () => {
it('returns the plain vk.com/app link (VK drops a custom query payload, so the code is not carried)', () => {
vi.stubGlobal('location', { search: '?vk_app_id=6736218&vk_user_id=1&sign=x' });
expect(vkShareLink('f123456')).toBe('https://vk.com/app6736218?hash=f123456');
expect(vkShareLink()).toBe('https://vk.com/app6736218');
});
});
+7 -7
View File
@@ -78,14 +78,14 @@ export function shareLink(param: string): string | null {
}
/**
* vkShareLink wraps a deep-link start parameter in a VK Mini App link
* (https://vk.com/app<id>?hash=<param>), read back by vk.ts vkStartParam (the `hash` query param).
* VK's documented '#' direct-link form is consumed by the vk.com SPA before it reaches the app, so
* we pass the payload as a query parameter instead. Returns null when the VK app id is unknown
* (outside a VK launch), so the caller falls back to the Telegram/web link.
* vkShareLink returns the VK Mini App link (https://vk.com/app<id>) to share on VK, or null when the
* VK app id is unknown (outside a VK launch). VK forwards no custom payload through the app link to
* the iframe — the '#' form is eaten by the vk.com SPA and a '?' query is dropped (confirmed on the
* contour: only the signed vk_* params arrive) — so the link cannot carry the friend code; the
* recipient enters the copied code by hand.
*/
export function vkShareLink(param: string): string | null {
export function vkShareLink(): string | null {
const id = vkAppId();
if (!id) return null;
return `https://vk.com/app${id}?hash=${encodeURIComponent(param)}`;
return `https://vk.com/app${id}`;
}
+1 -2
View File
@@ -201,8 +201,7 @@
<button class="btn" onclick={redeem} disabled={!connection.online}>{t('friends.redeem')}</button>
</div>
{#if code}
{@const sharePayload = friendCodeParam(code.code)}
{@const shareUrl = insideVK() ? vkShareLink(sharePayload) : shareLink(sharePayload)}
{@const shareUrl = insideVK() ? vkShareLink() : shareLink(friendCodeParam(code.code))}
<div class="code" data-testid="friend-code">
<div class="coderow">
<button class="codeval" onclick={copyCode}>{code.code}</button>