fix: add whatsapp pipe

Author: hsluoyz

chat/provider.go

@@ -30,6 +30,7 @@ type IncomingMessage struct {
 	Username string
 }
 
+// ChatProvider is the core interface every chat platform must implement.
 type ChatProvider interface {
 	SendMessage(chatId string, text string) error
 	ParseWebhookRequest(body []byte) (*IncomingMessage, error)
@@ -42,22 +43,35 @@ type WebhookResponse struct {
 	Body        []byte
 }
 
+// ImmediateWebhookResponder is implemented by providers that must reply to the
+// webhook HTTP request before processing the message (e.g. Discord interactions).
 type ImmediateWebhookResponder interface {
 	GetWebhookResponse(body []byte, header http.Header) (*WebhookResponse, error)
 }
 
+// WebhookVerifier is implemented by providers that verify webhook ownership via
+// a GET request challenge (e.g. WhatsApp Cloud API hub.challenge handshake).
+type WebhookVerifier interface {
+	VerifyWebhook(params map[string]string) (*WebhookResponse, error)
+}
+
 func NormalizeChatProviderType(typ string) string {
 	return strings.ToLower(strings.ReplaceAll(typ, " ", "-"))
 }
 
-func GetChatProvider(typ string, token string, providerKey string, lang string) (ChatProvider, error) {
+// GetChatProvider returns a ChatProvider for the given type.
+// pipeName is passed to providers that use it as part of their configuration
+// (e.g. WhatsApp uses it as the webhook verify token).
+func GetChatProvider(typ string, token string, providerKey string, pipeName string, lang string) (ChatProvider, error) {
 	var p ChatProvider
 	var err error
 
 	if typ == "Telegram" {
 		p, err = NewTelegramChatProvider(token, proxy.ProxyHttpClient)
 	} else if typ == "Discord" {
 		p, err = NewDiscordChatProvider(token, providerKey, proxy.ProxyHttpClient)
+	} else if typ == "WhatsApp" {
+		p, err = NewWhatsAppChatProvider(token, providerKey, pipeName, proxy.ProxyHttpClient)
 	} else {
 		return nil, fmt.Errorf(i18n.Translate(lang, "object:the chat provider type: %s is not supported"), typ)
 	}

chat/whatsapp.go

@@ -0,0 +1,186 @@
+// Copyright 2026 The OpenAgent Authors. All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package chat
+
+import (
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"strings"
+)
+
+const whatsAppApiBaseUrl = "https://graph.facebook.com/v19.0"
+
+type WhatsAppChatProvider struct {
+	accessToken   string
+	phoneNumberId string
+	verifyToken   string
+	httpClient    *http.Client
+}
+
+type whatsAppWebhookPayload struct {
+	Object string          `json:"object"`
+	Entry  []whatsAppEntry `json:"entry"`
+}
+
+type whatsAppEntry struct {
+	Id      string           `json:"id"`
+	Changes []whatsAppChange `json:"changes"`
+}
+
+type whatsAppChange struct {
+	Value whatsAppValue `json:"value"`
+	Field string        `json:"field"`
+}
+
+type whatsAppValue struct {
+	MessagingProduct string            `json:"messaging_product"`
+	Metadata         whatsAppMetadata  `json:"metadata"`
+	Contacts         []whatsAppContact `json:"contacts"`
+	Messages         []whatsAppMessage `json:"messages"`
+}
+
+type whatsAppMetadata struct {
+	DisplayPhoneNumber string `json:"display_phone_number"`
+	PhoneNumberId      string `json:"phone_number_id"`
+}
+
+type whatsAppContact struct {
+	Profile whatsAppProfile `json:"profile"`
+	WaId    string          `json:"wa_id"`
+}
+
+type whatsAppProfile struct {
+	Name string `json:"name"`
+}
+
+type whatsAppMessage struct {
+	From      string        `json:"from"`
+	Id        string        `json:"id"`
+	Timestamp string        `json:"timestamp"`
+	Type      string        `json:"type"`
+	Text      *whatsAppText `json:"text,omitempty"`
+}
+
+type whatsAppText struct {
+	Body string `json:"body"`
+}
+
+type whatsAppSendPayload struct {
+	MessagingProduct string              `json:"messaging_product"`
+	To               string              `json:"to"`
+	Type             string              `json:"type"`
+	Text             whatsAppTextPayload `json:"text"`
+}
+
+type whatsAppTextPayload struct {
+	Body string `json:"body"`
+}
+
+func NewWhatsAppChatProvider(accessToken string, phoneNumberId string, verifyToken string, httpClient *http.Client) (*WhatsAppChatProvider, error) {
+	return &WhatsAppChatProvider{
+		accessToken:   accessToken,
+		phoneNumberId: strings.TrimSpace(phoneNumberId),
+		verifyToken:   verifyToken,
+		httpClient:    httpClient,
+	}, nil
+}
+
+func (p *WhatsAppChatProvider) authorizationHeaders() map[string]string {
+	return map[string]string{
+		"Authorization": fmt.Sprintf("Bearer %s", p.accessToken),
+	}
+}
+
+func (p *WhatsAppChatProvider) SendMessage(chatId string, text string) error {
+	payload := whatsAppSendPayload{
+		MessagingProduct: "whatsapp",
+		To:               chatId,
+		Type:             "text",
+		Text:             whatsAppTextPayload{Body: text},
+	}
+	_, err := doJSONRequest(
+		p.httpClient,
+		"WhatsApp",
+		http.MethodPost,
+		fmt.Sprintf("%s/%s/messages", whatsAppApiBaseUrl, p.phoneNumberId),
+		p.authorizationHeaders(),
+		payload,
+		http.StatusOK,
+		http.StatusCreated,
+	)
+	return err
+}
+
+func (p *WhatsAppChatProvider) ParseWebhookRequest(body []byte) (*IncomingMessage, error) {
+	var payload whatsAppWebhookPayload
+	if err := json.Unmarshal(body, &payload); err != nil {
+		return nil, err
+	}
+
+	for _, entry := range payload.Entry {
+		for _, change := range entry.Changes {
+			if change.Field != "messages" {
+				continue
+			}
+			contacts := change.Value.Contacts
+			for i, message := range change.Value.Messages {
+				if message.Type != "text" || message.Text == nil || message.Text.Body == "" {
+					continue
+				}
+
+				userId := message.From
+				username := message.From
+				if i < len(contacts) {
+					username = contacts[i].Profile.Name
+				}
+
+				return &IncomingMessage{
+					ChatId:   message.From,
+					UserId:   userId,
+					Text:     message.Text.Body,
+					Username: username,
+				}, nil
+			}
+		}
+	}
+
+	return nil, nil
+}
+
+// VerifyWebhook handles the Meta webhook verification challenge (GET request).
+// The verify token is the pipe name, which must match what is configured in
+// the Meta Developer Console as the webhook verify token.
+func (p *WhatsAppChatProvider) VerifyWebhook(params map[string]string) (*WebhookResponse, error) {
+	mode := params["hub.mode"]
+	verifyToken := params["hub.verify_token"]
+	challenge := params["hub.challenge"]
+
+	if mode != "subscribe" || verifyToken != p.verifyToken {
+		return &WebhookResponse{StatusCode: http.StatusForbidden}, nil
+	}
+
+	return &WebhookResponse{
+		StatusCode:  http.StatusOK,
+		ContentType: "text/plain",
+		Body:        []byte(challenge),
+	}, nil
+}
+
+// SetWebhook returns nil because WhatsApp webhooks are configured manually in
+// the Meta Developer Console. The caller displays the webhook URL to the user.
+func (p *WhatsAppChatProvider) SetWebhook(webhookUrl string) error {
+	return nil
+}

controllers/chat_webhook.go

@@ -23,6 +23,53 @@ import (
 	"github.com/the-open-agent/openagent/object"
 )
 
+// ChatWebhookVerify handles the HTTP GET challenge that some platforms (e.g. WhatsApp
+// Cloud API) send to verify webhook ownership before they start delivering events.
+// The URL format is: /api/chat-webhook/:pipeType/:pipeName
+// This endpoint does not require authentication.
+// @router /api/chat-webhook/:pipeType/:pipeName [get]
+func (c *ApiController) ChatWebhookVerify() {
+	pipeType := c.Ctx.Input.Param(":pipeType")
+	pipeName := c.Ctx.Input.Param(":pipeName")
+
+	pipe, err := object.GetPipeByName("admin", pipeName)
+	if err != nil {
+		c.Ctx.ResponseWriter.WriteHeader(http.StatusInternalServerError)
+		return
+	}
+	if pipe == nil || chat.NormalizeChatProviderType(pipe.Type) != pipeType {
+		c.Ctx.ResponseWriter.WriteHeader(http.StatusNotFound)
+		return
+	}
+
+	chatProviderObj, err := pipe.GetChatProvider(c.GetAcceptLanguage())
+	if err != nil {
+		c.Ctx.ResponseWriter.WriteHeader(http.StatusInternalServerError)
+		return
+	}
+
+	verifier, ok := chatProviderObj.(chat.WebhookVerifier)
+	if !ok {
+		c.Ctx.ResponseWriter.WriteHeader(http.StatusMethodNotAllowed)
+		return
+	}
+
+	params := map[string]string{}
+	for key, values := range c.Ctx.Request.URL.Query() {
+		if len(values) > 0 {
+			params[key] = values[0]
+		}
+	}
+
+	response, err := verifier.VerifyWebhook(params)
+	if err != nil {
+		c.Ctx.ResponseWriter.WriteHeader(http.StatusBadRequest)
+		return
+	}
+
+	writeChatWebhookResponse(c, response)
+}
+
 // ChatWebhook receives incoming updates from a chat pipe.
 // The URL format is: /api/chat-webhook/:pipeType/:pipeName
 // This endpoint does not require authentication because it is called by chat platform servers.

object/pipe.go

@@ -155,7 +155,7 @@ func (p *Pipe) GetId() string {
 }
 
 func (p *Pipe) GetChatProvider(lang string) (chat.ChatProvider, error) {
-	pProvider, err := chat.GetChatProvider(p.Type, p.Token, p.ProviderKey, lang)
+	pProvider, err := chat.GetChatProvider(p.Type, p.Token, p.ProviderKey, p.Name, lang)
 	if err != nil {
 		return nil, err
 	}

object/provider.go

@@ -376,7 +376,7 @@ func (p *Provider) GetSpeechToTextProvider(lang string) (stt.SpeechToTextProvide
 }
 
 func (p *Provider) GetChatProvider(lang string) (chat.ChatProvider, error) {
-	pProvider, err := chat.GetChatProvider(p.Type, p.ClientSecret, p.ProviderKey, lang)
+	pProvider, err := chat.GetChatProvider(p.Type, p.ClientSecret, p.ProviderKey, p.Name, lang)
 	if err != nil {
 		return nil, err
 	}

routers/router.go

@@ -91,7 +91,7 @@ func initAPI() {
 	beego.Router("/api/delete-pipe", &controllers.ApiController{}, "POST:DeletePipe")
 	beego.Router("/api/set-pipe-webhook", &controllers.ApiController{}, "POST:SetPipeWebhook")
 	beego.Router("/api/chat-test", &controllers.ApiController{}, "POST:ChatTest")
-	beego.Router("/api/chat-webhook/:pipeType/:pipeName", &controllers.ApiController{}, "POST:ChatWebhook")
+	beego.Router("/api/chat-webhook/:pipeType/:pipeName", &controllers.ApiController{}, "GET:ChatWebhookVerify;POST:ChatWebhook")
 
 	beego.Router("/api/get-servers", &controllers.ApiController{}, "GET:GetServers")
 	beego.Router("/api/get-server", &controllers.ApiController{}, "GET:GetServer")

web/src/PipeEditPage.js

@@ -213,6 +213,7 @@ class PipeEditPage extends React.Component {
                 {[
                   {id: "Telegram", name: "Telegram"},
                   {id: "Discord", name: "Discord"},
+                  {id: "WhatsApp", name: "WhatsApp"},
                 ].map((item, index) => (
                   <Option key={index} value={item.id}>
                     <img width={20} height={20} style={{marginBottom: "3px", marginRight: "10px"}}
@@ -234,10 +235,13 @@ class PipeEditPage extends React.Component {
             </Col>
           </Row>
 
-          {pipe.type === "Discord" && (
+          {(pipe.type === "Discord" || pipe.type === "WhatsApp") && (
             <Row style={{marginTop: "20px"}}>
               <Col style={{marginTop: "5px"}} span={Setting.isMobile() ? 22 : 2}>
-                {Setting.getLabel(i18next.t("provider:Public key"), i18next.t("provider:Public key - Tooltip"))}
+                {pipe.type === "WhatsApp"
+                  ? Setting.getLabel(i18next.t("pipe:Phone Number ID"), i18next.t("pipe:Phone Number ID - Tooltip"))
+                  : Setting.getLabel(i18next.t("provider:Public key"), i18next.t("provider:Public key - Tooltip"))
+                }
               </Col>
               <Col span={22}>
                 <Input.Password
@@ -249,6 +253,16 @@ class PipeEditPage extends React.Component {
             </Row>
           )}
 
+          {pipe.type === "WhatsApp" && (
+            <Row style={{marginTop: "20px"}}>
+              <Col span={22} offset={Setting.isMobile() ? 0 : 2}>
+                <span style={{color: "var(--ant-color-text-secondary)", fontSize: "13px"}}>
+                  {i18next.t("pipe:WhatsApp verify token hint")}&nbsp;<strong>{pipe.name}</strong>
+                </span>
+              </Col>
+            </Row>
+          )}
+
           <Row style={{marginTop: "20px"}}>
             <Col style={{marginTop: "5px"}} span={Setting.isMobile() ? 22 : 2}>
               {Setting.getLabel(i18next.t("provider:Domain"), i18next.t("provider:Domain - Tooltip"))}

web/src/PipeListPage.js

@@ -118,6 +118,7 @@ class PipeListPage extends BaseListPage {
         filters: [
           {text: "Telegram", value: "Telegram"},
           {text: "Discord", value: "Discord"},
+          {text: "WhatsApp", value: "WhatsApp"},
         ],
         sorter: (a, b) => a.type.localeCompare(b.type),
         render: (text, record) => (

web/src/Setting.js

@@ -1155,6 +1155,10 @@ export function getOtherProviderInfo() {
         logo: `${StaticBaseUrl}/img/social_discord.png`,
         url: "https://discord.com/",
       },
+      "WhatsApp": {
+        logo: `${StaticBaseUrl}/img/social_whatsapp.png`,
+        url: "https://www.whatsapp.com/",
+      },
     },
   };
 

web/src/locales/en/data.json

@@ -459,6 +459,19 @@
     "Reply to - Tooltip": "The ID of the message to which this message is replied",
     "Suggestions": "Suggestions"
   },
+  "pipe": {
+    "Chat ID": "Chat ID",
+    "Chat ID placeholder": "Enter the chat ID or phone number",
+    "Chat Test": "Chat Test",
+    "Edit Pipe": "Edit Pipe",
+    "Phone Number ID": "Phone Number ID",
+    "Phone Number ID - Tooltip": "The WhatsApp phone number ID from the Meta Developer Console.",
+    "Pipe Test": "Pipe Test",
+    "Send": "Send",
+    "Test message": "Test message",
+    "Test message placeholder": "Enter a test message",
+    "WhatsApp verify token hint": "Set the webhook verify token in Meta Developer Console to your pipe name:"
+  },
   "provider": {
     "AES key": "AES key",
     "AES key - Tooltip": "AES encryption key for secure communications",