package binanceapi import ( "bytes" "context" "crypto/hmac" "crypto/sha256" "crypto/tls" "encoding/json" "fmt" "net" "net/http" "net/url" "strconv" "time" "github.com/c9s/requestgen" "github.com/pkg/errors" "github.com/sirupsen/logrus" "github.com/c9s/bbgo/pkg/types" ) const defaultHTTPTimeout = time.Second * 10 const RestBaseURL = "https://api.binance.com" const SandboxRestBaseURL = "https://testnet.binance.vision" const DebugRequestResponse = false var dialer = &net.Dialer{ Timeout: 30 * time.Second, KeepAlive: 30 * time.Second, } var defaultTransport = &http.Transport{ Proxy: http.ProxyFromEnvironment, DialContext: dialer.DialContext, MaxIdleConns: 100, MaxConnsPerHost: 100, MaxIdleConnsPerHost: 100, // TLSNextProto: make(map[string]func(string, *tls.Conn) http.RoundTripper), ExpectContinueTimeout: 0, ForceAttemptHTTP2: true, TLSClientConfig: &tls.Config{}, } var DefaultHttpClient = &http.Client{ Timeout: defaultHTTPTimeout, Transport: defaultTransport, } type RestClient struct { requestgen.BaseAPIClient Key, Secret string recvWindow int timeOffset int64 } func NewClient(baseURL string) *RestClient { if len(baseURL) == 0 { baseURL = RestBaseURL } u, err := url.Parse(baseURL) if err != nil { panic(err) } client := &RestClient{ BaseAPIClient: requestgen.BaseAPIClient{ BaseURL: u, HttpClient: DefaultHttpClient, }, } // client.AccountService = &AccountService{client: client} return client } func (c *RestClient) Auth(key, secret string) { c.Key = key // pragma: allowlist nextline secret c.Secret = secret } // NewRequest create new API request. Relative url can be provided in refURL. func (c *RestClient) NewRequest(ctx context.Context, method, refURL string, params url.Values, payload interface{}) (*http.Request, error) { rel, err := url.Parse(refURL) if err != nil { return nil, err } if params != nil { rel.RawQuery = params.Encode() } body, err := castPayload(payload) if err != nil { return nil, err } pathURL := c.BaseURL.ResolveReference(rel) return http.NewRequestWithContext(ctx, method, pathURL.String(), bytes.NewReader(body)) } func (c *RestClient) SetTimeOffsetFromServer(ctx context.Context) error { req, err := c.NewRequest(ctx, "GET", "/api/v3/time", nil, nil) if err != nil { return err } resp, err := c.SendRequest(req) if err != nil { return err } var a struct { ServerTime types.MillisecondTimestamp `json:"serverTime"` } err = resp.DecodeJSON(&a) if err != nil { return err } c.timeOffset = currentTimestamp() - a.ServerTime.Time().UnixMilli() return nil } func (c *RestClient) SendRequest(req *http.Request) (*requestgen.Response, error) { if DebugRequestResponse { logrus.Debugf("-> request: %+v", req) response, err := c.BaseAPIClient.SendRequest(req) logrus.Debugf("<- response: %s", string(response.Body)) return response, err } return c.BaseAPIClient.SendRequest(req) } // newAuthenticatedRequest creates new http request for authenticated routes. func (c *RestClient) NewAuthenticatedRequest(ctx context.Context, method, refURL string, params url.Values, payload interface{}) (*http.Request, error) { if len(c.Key) == 0 { return nil, errors.New("empty api key") } if len(c.Secret) == 0 { return nil, errors.New("empty api secret") } rel, err := url.Parse(refURL) if err != nil { return nil, err } if params == nil { params = url.Values{} } if c.recvWindow > 0 { params.Set("recvWindow", strconv.Itoa(c.recvWindow)) } params.Set("timestamp", strconv.FormatInt(currentTimestamp()-c.timeOffset, 10)) rawQuery := params.Encode() pathURL := c.BaseURL.ResolveReference(rel) body, err := castPayload(payload) if err != nil { return nil, err } toSign := rawQuery + string(body) signature := sign(c.Secret, toSign) // sv is the extra url parameters that we need to attach to the request sv := url.Values{} sv.Set("signature", signature) if rawQuery == "" { rawQuery = sv.Encode() } else { rawQuery = rawQuery + "&" + sv.Encode() } if rawQuery != "" { pathURL.RawQuery = rawQuery } req, err := http.NewRequestWithContext(ctx, method, pathURL.String(), bytes.NewReader(body)) if err != nil { return nil, err } // if our payload body is not an empty string if len(body) > 0 { req.Header.Set("Content-Type", "application/x-www-form-urlencoded") } req.Header.Add("Accept", "application/json") // Build authentication headers req.Header.Add("X-MBX-APIKEY", c.Key) return req, nil } // sign uses sha256 to sign the payload with the given secret func sign(secret, payload string) string { var sig = hmac.New(sha256.New, []byte(secret)) _, err := sig.Write([]byte(payload)) if err != nil { return "" } return fmt.Sprintf("%x", sig.Sum(nil)) } func currentTimestamp() int64 { return FormatTimestamp(time.Now()) } // FormatTimestamp formats a time into Unix timestamp in milliseconds, as requested by Binance. func FormatTimestamp(t time.Time) int64 { return t.UnixNano() / int64(time.Millisecond) } func castPayload(payload interface{}) ([]byte, error) { if payload != nil { switch v := payload.(type) { case string: return []byte(v), nil case []byte: return v, nil case map[string]interface{}: var params = url.Values{} for a, b := range v { params.Add(a, fmt.Sprintf("%v", b)) } return []byte(params.Encode()), nil default: body, err := json.Marshal(v) return body, err } } return nil, nil } type APIResponse struct { Code string `json:"code"` Message string `json:"msg"` Data json.RawMessage `json:"data"` }