International
中国站
Console
PrevNext
search by keyword

Recent Pages

Documentation
Instant Messaging
    Documentation

    Third-Party Callback Overview

    Last updated: 2020-06-11 17:48:53

      Overview

      To implement refined control over app features, IM provides you with powerful callbacks free of charge. These callbacks use the persistent connection mode by default. A callback is a request sent by the IM backend to the app backend server before or after an event occurs. This allows the app backend to synchronize data if necessary or intervene in the subsequent event processing. For more information on the callbacks currently supported by IM, see the Callback Command List.

      A third-party callback is sent to the app backend server through an HTTP or HTTPS request, and the app backend server must process the IM callback request and respond as soon as possible. Take the callback before delivering a group message as an example. Before the message is sent, the IM backend sends a callback request to the app backend server and determines whether the message should be sent based on the callback result. Based on the callback, the app can synchronize the message or perform content filtering on the message to be sent. The following figure shows the callback process.

      Callback Classification

      Callbacks can be classified into four types according to their functions:

      • Online status callbacks
      • Profile and relationship chain callbacks
      • One-to-one chat message callbacks
      • Group system callbacks

      Callbacks can be classified into two types by process:

      • Callback before an event occurs: the purpose of this type of callback is to allow the app backend to intervene in the processing logic of the event. IM will determine the subsequent processing flow based on the return code of the callback. For example, the callback before a group message is sent belongs to this type of callback.
      • Callback after an event occurs: the purpose of this type of callback is to allow the app backend to implement essential data synchronization. IM ignores the return codes of such callbacks. For example, the callback after a member quits a group belongs to this type of callback.

      Callback Protocols

      Third-party callbacks are based on HTTP and HTTPS protocols. The app backend must provide a callback URL to IM, and IM uses a POST request to initiate a callback request to the app backend. When initiating a callback request, IM appends the following parameters to the URL provided by the app backend:

      Parameter Description
      SdkAppid App ID assigned by IM
      CallbackCommand Callback command
      contenttype An optional parameter, whose value is generally a JSON string
      ClientIP IP address of the client
      OptPlatform Client platform. Depending on the platform type, possible values are as follows:
      RESTAPI (requests are sent through RESTful APIs), Web (requests are sent by using Web SDKs), and
      Android, iOS, Windows, Mac, and Unknown (requests are sent by using an unknown device.)

      The specific callback content is included in the HTTP request packet. For details, see the following callback examples.

      Callback Examples

      Callback request example:

      POST /?SdkAppid=888888&CallbackCommand=Group.CallbackAfterNewMemberJoin&contenttype=json&ClientIP=$ClientIP&OptPlatform=$OptPlatform HTTP/1.1
Host: www.example.com
Content-Length: 337
{
    "CallbackCommand": "Group.CallbackAfterNewMemberJoin", 
    "GroupId": "@TGS#2J4SZEAEL", 
    "Type": "Public", 
    "JoinType": "Apply", 
    "Operator_Account": "leckie", 
    "NewMemberList": [
        {
            "Member_Account": "jared"
        }, 
        {
            "Member_Account": "tommy"
        }
    ]
}

      Callback response example:

      HTTP/1.1 200 OK
Server: nginx/1.7.10
Date: Fri, 09 Oct 2015 02:59:55 GMT
Content-Length: 75
{
    "ActionStatus": "OK", 
    "ErrorInfo": "", 
    "ErrorCode": 0
}

      Callback Timeout Period

      The timeout period for IM callbacks to the app backend is 2 seconds, after which the callback is not retried. If the callback times out, the subsequent processing logic is the same as if the callback was not configured. For example, if the callback before a group message is sent times out, the message is sent normally.

      To ensure a high callback success rate, third-party apps need to process callbacks quickly. For example, the app can send a callback response and then process the specific business logic.

      Security Considerations

      IM supports three types of callbacks:

      1. HTTP callback
      2. HTTPS callback. The WebServer of the app backend is configured with a certificate issued by a CA or a certificate issued by IM free of charge.
      3. HTTPS mutual authentication callback. The WebServer of the app backend is configured with a certificate issued by a CA or a certificate issued by IM free of charge. In addition, mutual authentication is enabled.

      To obtain a certificate issued by IM free of charge, you need to log in to the console, configure the callback URL, and download the certificate. For more information, see Callback Configuration.

      The first type of callback has the lowest security level, and the last type has the highest.

      1. HTTP callbacks have two defects. One is that data transmitted in plain text is vulnerable to interception, and the other is that a third-party app cannot determine whether the callback request actually comes from IM.
      2. For an HTTPS callback, if mutual authentication is disabled, the data encryption issue can be resolved, but the app still cannot ensure that the callback request comes from IM.
      3. Only the combination of HTTPS callback and mutual authentication can ensure the security of third-party callbacks.

      We strongly recommend that apps use the third type of callbacks. In addition, the certificate issued by IM is completely free of charge.

      Callback Configuration

      Currently, the IM console allows you to configure callbacks, including configuring the callback URL and the types of enabled callbacks. For details on the configuration method, see the Configuration of Third-Party Callbacks.

      The IM console allows you to configure only HTTP and HTTPS callbacks. If you need to enable the HTTPS mutual authentication callback, which has the highest security level, complete the following steps:

      1. In the IM console, configure the callback URL (which must be an HTTPS domain name) and enable the callback.
      2. Submit a requirement ticket to IM. IM will issue the certificate required for mutual authentication to the app. The following information must be specified in the ticket:
        1. SDKAppID
        2. App name
        3. Callback URL, which must be consistent with that in the self-service configuration in the console
      3. After receiving the certificate, configure HTTPS mutual authentication by following two guides:
        1. Configuring HTTPS Mutual Authentication on an Apache Server
        2. Configuring HTTPS Mutual Authentication on an Nginx Server

      Common Reasons for Callback Failures

      If a callback failure occurs, check whether the configured callback service has a problem according to the following checklist:

      Callback Failure Symptom Possible Reason
      Access to the callback URL times out 1. IM cannot complete DNS resolution. In this case, check whether the domain name is valid on the public network. For example, if the callback host is http://notexist.com, IM cannot complete DNS resolution because this domain name does not exist.
      2. IM cannot access the IP address configured in the callback URL. In this case, check whether this IP address is accessible from the public network. For example, if the callback host is http://10.0.0.1, IM cannot access this IP address because the domain name is a private IP address of the app.
      3. The failure occurs due to the firewall policy of the app callback service. In this case, check the firewall configuration. For example, a callback failure occurs if the app callback server denies all requests arriving at port 80.
      Access denied by the callback service IM can access the host, but no connection can be established. In this case, check whether the WebServer has started properly. For example, a callback failure will occur when the WebServer of the app callback server is not started or when the port configuration is incorrect.
      HTTPS certificate configuration error of the callback service This can occur when the callback type is HTTPS (or HTTPS mutual authentication). IM can access the app callback server, but determines that the certificate configured on the app WebServer is invalid. In this case, check that the HTTPS certificate is correctlly configured.
      HTTPS mutual authentication configuration error of the callback service This can occur when the callback type is HTTPS mutual authentication. IM verifies that the certificate configured on the app callback server is valid, but the app callback server fails to verify the IM certificate.
      HTTP return code of the callback service is not 200 The callback request is successful, but the HTTP return code in the response packet is not 200.
      Callback response packet cannot be parsed The callback response packet is not in JSON format.

      Was this page helpful?

      Confirm

      Was this page helpful?

      • Not at all
      • Not very helpful
      • Somewhat helpful
      • Very helpful
      • Extremely helpful
      Send Feedback
      Hide
      Submit a TicketContact sales
      Help
        tencent
        Copyright © 2013-2020 Tencent Cloud. All Rights Reserved.
        Privacy PolicyTerms of ServiceCookie Policy