ATP API
This API is a client for ATProtocol servers. It communicates using HTTP. It includes:
- ✔️ APIs for ATProto and Bluesky.
- ✔️ Validation and complete typescript types.
- ✔️ Session management.
- ✔️ A RichText library.
Getting started
First install the package:
yarn add @atproto/api
Then in your application:
import { AtpAgent } from '@atproto/api'
const agent = new AtpAgent({ service: 'https://example.com' })
Usage
Session management
You'll need an authenticated session for most API calls. There are two ways to
manage sessions:
- App password based session management
- OAuth based session management
App password based session management
Username / password based authentication can be performed using the AtpAgent
class.
[!CAUTION]
This method is deprecated in favor of OAuth based session management. It is
recommended to use OAuth based session management (through the
@atproto/oauth-client-*
packages).
import { AtpAgent, AtpSessionEvent, AtpSessionData } from '@atproto/api'
const agent = new AtpAgent({
service: 'https://example.com',
persistSession: (evt: AtpSessionEvent, sess?: AtpSessionData) => {
},
})
await agent.createAccount({
email: 'alice@mail.com',
password: 'hunter2',
handle: 'alice.example.com',
inviteCode: 'some-code-12345-abcde',
})
await agent.resumeSession(savedSessionData)
await agent.login({
identifier: 'alice@mail.com',
password: 'hunter2',
})
OAuth based session management
Depending on the environment used by your application, different OAuth clients
are available:
Every @atproto/oauth-client-*
implementation has a different way to obtain an
OAuthSession
instance that can be used to instantiate an Agent
(from
@atproto/api
). Here is an example restoring a previously saved session:
import { Agent } from '@atproto/api'
import { OAuthClient } from '@atproto/oauth-client'
const oauthClient = new OAuthClient({
})
const oauthSession = await oauthClient.restore('did:plc:123')
const agent = new Agent(oauthSession)
API calls
The agent includes methods for many common operations, including:
agent.did
agent.accountDid
await agent.getTimeline(params, opts)
await agent.getAuthorFeed(params, opts)
await agent.getPostThread(params, opts)
await agent.getPost(params)
await agent.getPosts(params, opts)
await agent.getLikes(params, opts)
await agent.getRepostedBy(params, opts)
await agent.post(record)
await agent.deletePost(postUri)
await agent.like(uri, cid)
await agent.deleteLike(likeUri)
await agent.repost(uri, cid)
await agent.deleteRepost(repostUri)
await agent.uploadBlob(data, opts)
await agent.getFollows(params, opts)
await agent.getFollowers(params, opts)
await agent.follow(did)
await agent.deleteFollow(followUri)
await agent.getProfile(params, opts)
await agent.upsertProfile(updateFn)
await agent.getProfiles(params, opts)
await agent.getSuggestions(params, opts)
await agent.searchActors(params, opts)
await agent.searchActorsTypeahead(params, opts)
await agent.mute(did)
await agent.unmute(did)
await agent.muteModList(listUri)
await agent.unmuteModList(listUri)
await agent.blockModList(listUri)
await agent.unblockModList(listUri)
await agent.listNotifications(params, opts)
await agent.countUnreadNotifications(params, opts)
await agent.updateSeenNotifications()
await agent.resolveHandle(params, opts)
await agent.updateHandle(params, opts)
if (agent instanceof AtpAgent) {
await agent.createAccount({ ... })
await agent.login({ ... })
await agent.resumeSession(savedSession)
}
Validation and types
The package includes a complete types system which includes validation and type-guards. For example, to validate a post record:
import { AppBskyFeedPost } from '@atproto/api'
const post = {...}
if (AppBskyFeedPost.isRecord(post)) {
const res = AppBskyFeedPost.validateRecord(post)
if (res.success) {
} else {
console.log(res.error)
}
}
Rich text
Some records (ie posts) use the app.bsky.richtext
lexicon. At the moment richtext is only used for links and mentions, but it will be extended over time to include bold, italic, and so on.
ℹ️ It is strongly recommended to use this package's RichText
library. Javascript encodes strings in utf16 while the protocol (and most other programming environments) use utf8. Converting between the two is challenging, but RichText
handles that for you.
import { RichText } from '@atproto/api'
const rt = new RichText({
text: 'Hello @alice.com, check out this link: https://example.com',
})
await rt.detectFacets(agent)
const postRecord = {
$type: 'app.bsky.feed.post',
text: rt.text,
facets: rt.facets,
createdAt: new Date().toISOString(),
}
let markdown = ''
for (const segment of rt.segments()) {
if (segment.isLink()) {
markdown += `[${segment.text}](${segment.link?.uri})`
} else if (segment.isMention()) {
markdown += `[${segment.text}](https://my-bsky-app.com/user/${segment.mention?.did})`
} else {
markdown += segment.text
}
}
const rt2 = new RichText({ text: 'Hello' })
console.log(rt2.length)
console.log(rt2.graphemeLength)
const rt3 = new RichText({ text: '👨👩👧👧' })
console.log(rt3.length)
console.log(rt3.graphemeLength)
Moderation
Applying the moderation system is a challenging task, but we've done our best to simplify it for you. The Moderation API helps handle a wide range of tasks, including:
- Moderator labeling
- User muting (including mutelists)
- User blocking
- Mutewords
- Hidden posts
For more information, see the Moderation Documentation.
import { moderatePost } from '@atproto/api'
const prefs = await agent.getPreferences()
const labelDefs = await agent.getLabelDefinitions(prefs)
const postMod = moderatePost(postView, {
userDid: agent.session.did,
moderationPrefs: prefs.moderationPrefs,
labelDefs,
})
if (postMod.ui('contentList').filter) {
}
if (postMod.ui('contentList').blur) {
if (postMod.ui('contentList').noOverride) {
}
}
if (postMod.ui('contentList').alert || postMod.ui('contentList').inform) {
}
if (postMod.ui('contentView').filter) {
}
if (postMod.ui('contentView').blur) {
if (postMod.ui('contentView').noOverride) {
}
}
if (postMod.ui('contentView').alert || postMod.ui('contentView').inform) {
}
if (postMod.ui('contentMedia').blur) {
if (postMod.ui('contentMedia').noOverride) {
}
}
Advanced
Advanced API calls
The methods above are convenience wrappers. It covers most but not all available methods.
The AT Protocol identifies methods and records with reverse-DNS names. You can use them on the agent as well:
const res1 = await agent.com.atproto.repo.createRecord({
did: alice.did,
collection: 'app.bsky.feed.post',
record: {
$type: 'app.bsky.feed.post',
text: 'Hello, world!',
createdAt: new Date().toISOString(),
},
})
const res2 = await agent.com.atproto.repo.listRecords({
repo: alice.did,
collection: 'app.bsky.feed.post',
})
const res3 = await agent.app.bsky.feed.post.create(
{ repo: alice.did },
{
text: 'Hello, world!',
createdAt: new Date().toISOString(),
},
)
const res4 = await agent.app.bsky.feed.post.list({ repo: alice.did })
Non-browser configuration
If your environment doesn't have a built-in fetch
implementation, you'll need
to provide one. This will typically be done through a polyfill.
Bring your own fetch
If you want to provide your own fetch
implementation, you can do so by
instantiating the sessionManager with a custom fetch implementation:
import { AtpAgent } from '@atproto/api'
const myFetch = (input: RequestInfo | URL, init?: RequestInit) => {
console.log('requesting', input)
const response = await globalThis.fetch(input, init)
console.log('got response', response)
return response
}
const agent = new AtpAgent({
service: 'https://example.com',
fetch: myFetch,
})
License
This project is dual-licensed under MIT and Apache 2.0 terms:
Downstream projects and end users may chose either license individually, or both together, at their discretion. The motivation for this dual-licensing is the additional software patent assurance provided by Apache 2.0.