Add error checking in WeChat::getUserByToken() (#302)

Copilot · overtrue · web-flow · commit 2ec64721dfd6 · 2026-02-27T15:52:24.000+08:00
* Initial plan

* Add error checking in WeChat::getUserByToken() for API error responses

Co-authored-by: overtrue &lt;1472352+overtrue@users.noreply.github.com&gt;

---------

Co-authored-by: copilot-swe-agent[bot] &lt;198982749+Copilot@users.noreply.github.com&gt;
Co-authored-by: overtrue &lt;1472352+overtrue@users.noreply.github.com&gt;
diff --git a/src/Providers/WeChat.php b/src/Providers/WeChat.php
@@ -166,7 +166,13 @@ protected function getUserByToken(string $token): array
             ]),
         ]);
 
-        return $this->fromJsonBody($response);
+        $response = $this->fromJsonBody($response);
+
+        if (! empty($response['errcode'])) {
+            throw new Exceptions\AuthorizeFailedException((string) ($response['errmsg'] ?? ''), $response);
+        }
+
+        return $response;
     }
 
     #[Pure]
diff --git a/tests/Providers/WechatTest.php b/tests/Providers/WechatTest.php
@@ -186,4 +186,34 @@ public function test_throws_exception_when_access_token_missing()
 
         $getSnsapiBaseUserFromCode->invoke($mockProvider, 'test_code');
     }
+
+    public function test_throws_exception_when_get_user_by_token_fails()
+    {
+        $mockProvider = $this->getMockBuilder(WeChat::class)
+            ->setConstructorArgs([[
+                'client_id' => 'client_id',
+                'client_secret' => 'client_secret',
+                'redirect_url' => 'http://localhost/socialite/callback.php',
+            ]])
+            ->onlyMethods(['getHttpClient', 'fromJsonBody'])
+            ->getMock();
+
+        $mockResponse = $this->createMock(\Psr\Http\Message\ResponseInterface::class);
+        $mockHttpClient = $this->createMock(\GuzzleHttp\Client::class);
+        $mockHttpClient->method('get')->willReturn($mockResponse);
+
+        $mockProvider->method('getHttpClient')->willReturn($mockHttpClient);
+        $mockProvider->method('fromJsonBody')->willReturn([
+            'errcode' => 40003,
+            'errmsg' => 'invalid openid',
+        ]);
+
+        $getUserByToken = new ReflectionMethod(WeChat::class, 'getUserByToken');
+        $getUserByToken->setAccessible(true);
+
+        $this->expectException(AuthorizeFailedException::class);
+        $this->expectExceptionMessage('invalid openid');
+
+        $getUserByToken->invoke($mockProvider, 'test_token');
+    }
 }
