sub2api

Author	SHA1	Message	Date
win	2d2f677a64	chore: merge upstream Wei-Shaw/sub2api 至 v0.1.117 主要合并内容： - feat(channel-monitor): admin 渠道监控 MVP + 日聚合/模板/用户端卡片 - feat(available-channels): 新增"可用渠道"聚合视图与平台聚合 - feat(settings): 功能开关联动到配置页 - refactor(channel-monitor): 事件驱动调度器 / runner 生命周期 + 单测 - fix(openai/codex): 图像生成桥接修复、支付 webhook 未知单号处理 - misc: i18n/UI polish, typing tightening 冲突已手动解决，保留本地订制： - handler.Handlers / AdminHandlers 联合 windsurf + channel_monitor/available_channel 字段 - wire/wire_gen 清理步骤同时注册 WindsurfRefreshService 与 ChannelMonitorRunner - routes/admin 同时注册 windsurf 与 channel-monitor 路由 - service/wire 合并 Windsurf* 与 ChannelMonitor* 的 provider - frontend admin API barrel 取两侧并集 - 采纳上游对 migrationChecksumCompatibilityRule 字段的重命名（非订制代码）	2026-04-24 11:52:21 +08:00
win	2a4103298e	Merge remote-tracking branch 'origin/main' # Conflicts: # backend/cmd/server/wire_gen.go	2026-04-24 01:21:36 +08:00
erio	67518a59ac	revert: remove fork-only changes from release sync Revert payment/wechat, sora/claude-max cleanup, fork-only migrations, and cosmetic changes that were brought in by the release sync commit. Keep only channel-monitor related improvements: - PublicSettingsInjectionPayload named struct with drift test - ChannelMonitorRunner graceful shutdown in wire - image_output_price in SupportedModelChip - Simplified buildSelfNavItems in AppSidebar - Gateway WARN logs for 503 branches	2026-04-23 21:40:58 +08:00
erio	748a84d871	sync: bring over remaining release/custom-0.1.115 changes - Extract PublicSettingsInjectionPayload named struct with drift test - Add channel_monitor_default_interval_seconds to SSR injection - Add image_output_price to SupportedModelChip - Simplify AppSidebar buildSelfNavItems (admins see available channels) - Add gateway WARN logs for 503 no-available-accounts branches - Wire ChannelMonitorRunner into provideCleanup for graceful shutdown - Add migrations 130/131 (CC template userid fix + mimicry field cleanup) - Clean up fork-only features (sora, claude max simulation, client affinity) - Remove ~320 obsolete i18n keys - Add codexUsage utility, WechatServiceButton, BulkEditAccountModal - Tidy go.sum	2026-04-23 20:55:18 +08:00
win	21325afb33	feat(windsurf): 补全ops日志记录与endpoint派生，对齐其他平台 Some checks failed CI / test (push) Failing after 10s Details CI / frontend (push) Failing after 8s Details CI / golangci-lint (push) Failing after 5s Details Security Scan / backend-security (push) Failing after 5s Details Security Scan / frontend-security (push) Failing after 4s Details - windsurf_gateway_service: 添加上游延迟/TTFT/错误上下文记录 - endpoint: DeriveUpstreamEndpoint 添加 PlatformWindsurf 分支 - ops_error_logger: guessPlatformFromPath 添加 /windsurf/ 识别	2026-04-23 20:46:27 +08:00
james-6-23	dc5d42addc	feat(rpm): RPM 限流模块优化 P0: - rpm_override 嵌入 Auth Cache Snapshot，消除每请求 DB 查询 (snapshot v6→v7) - 429 RPM 响应返回 Retry-After 头（当前分钟剩余秒数） P1: - ClearAll 按钮直连 DELETE API，带 loading 防重复 - 新增 GET /admin/users/:id/rpm-status 管理员 RPM 用量查询端点优化: - checkRPM 从级联互斥改为并行取最严，user.rpm_limit 作为全局硬上限始终生效 - Override/Group 变更后自动失效 auth cache - fail-open 语义不变，Redis 故障不阻塞业务	2026-04-23 16:34:37 +08:00
win	ff7eab0392	Merge remote-tracking branch 'origin/main' # Conflicts: # backend/go.mod # backend/go.sum # backend/internal/repository/migrations_runner.go	2026-04-22 21:27:18 +08:00
IanShaw027	6da08262d7	feat avatar compress uploads to 20kb	2026-04-21 08:53:59 +08:00
erio	20a4e41872	feat(monitor): admin channel monitor MVP with SSRF protection and batch aggregation 新增 admin「渠道监控」模块（参考 BingZi-233/check-cx），独立于现有 Channel 体系。 admin 配置 + 后台定时调用上游 LLM chat completions 健康检查 + 所有登录用户只读可见。后端： - ent: channel_monitor + channel_monitor_history（AES-256-GCM 加密 api_key） - service 按职责拆分：service/aggregator/validate/checker/runner/ssrf - provider strategy map 替代 switch（openai/anthropic/gemini） - repository batch 聚合（ListLatestForMonitorIDs + ComputeAvailabilityForMonitors）消除 N+1 - runner: ticker(5s) + pond worker pool(5) + inFlight 防并发 + TrySubmit 防雪崩 + 凌晨 3 点 cron 清理 30 天历史 - SSRF 防护：强制 https + 私网/loopback/云元数据 IP 拒绝（127/8、10/8、172.16/12、 192.168/16、169.254/16、100.64/10、::1、fc00::/7、fe80::/10）+ DialContext 在 socket 层防 DNS rebinding - API key sanitize：擦除 url.Error 与上游响应 body 中的 sk-/sk-ant-/AIza/JWT 模式 - APIKeyDecryptFailed 标志位 + 单 monitor 路径检测，避免空 key 调用上游 handler: - admin: CRUD + 手动触发 + 历史接口（api_key 脱敏） - user: 只读列表 + 状态详情（去除 api_key/endpoint） - ParseChannelMonitorID 共用 + dto.ChannelMonitorExtraModelStatus 共用前端： - 路由 /admin/channels/{pricing,monitor} + /monitor（用户只读） - AppSidebar 父项 expandOnly 支持 - ChannelMonitorView 拆为 8 个子组件 + ChannelStatusView 拆出 detail dialog - composables/useChannelMonitorFormat + constants/channelMonitor 共享 - i18n monitorCommon namespace 消除 admin/user 两 view 重复合规：所有文件符合 CLAUDE.md（Go ≤ 500 行 / Vue ≤ 300 行 / 函数 ≤ 30 行） CI: go build / gofmt / golangci-lint(0 issues) / make test-unit / pnpm build 全绿	2026-04-20 20:21:02 +08:00
win	b6e1c64c25	chore: merge upstream v0.1.113, keep Antigravity customizations Some checks failed CI / golangci-lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details Security Scan / backend-security (push) Failing after 7s Details Security Scan / frontend-security (push) Failing after 2s Details	2026-04-16 19:23:37 +08:00
erio	b32d1a2c9f	feat(notify): add balance low & account quota notification system - User balance low notification: email alert when balance drops below configurable threshold (user email + verified extra emails) - Account quota notification: broadcast email to admin-configured recipients when daily/weekly/total quota usage exceeds alert threshold - Admin settings: global enable/disable, default threshold, quota notification email list (Email Settings tab) - User profile: enable/disable, custom threshold, add/remove extra notification emails with verification code flow - Account quota: per-dimension alert toggle and threshold in quota control card - Trigger logic: first-crossing only (old >= threshold && new < threshold for balance; old < threshold && new >= threshold for quota), naturally prevents duplicate notifications without Redis dedup	2026-04-14 09:23:02 +08:00
win	ac7f95cbf9	chore: regenerate wire_gen.go and resolve payment service dependencies	2026-04-13 01:20:52 +08:00
win	32c98292e7	chore: merge upstream v0.1.111, keep Antigravity customizations # Conflicts: # backend/cmd/server/wire_gen.go # backend/go.mod # backend/internal/server/router.go # backend/internal/service/wire.go	2026-04-13 01:14:28 +08:00
erio	63d1860dc0	feat(payment): add complete payment system with multi-provider support Add a full payment and subscription system supporting EasyPay (Alipay/WeChat), Stripe, and direct Alipay/WeChat Pay providers with multi-instance load balancing.	2026-04-11 13:16:35 +08:00
win	721dc939a7	fix: Fix Go 1.26 compiler segfault by downgrading to Go 1.25 and fixing protobuf package structure - Downgrade Go from 1.26.2 to 1.25 (stable, avoids compiler crash on Alpine) - Reorganize protobuf generated files into language_server_pb/ subdirectory - Update go.mod and go.sum to match new Go version - Docker build now completes successfully and pushes to registry Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>	2026-04-10 22:40:58 +08:00
win	6160636ca6	feat: Complete Go→Node.js TLS/HTTP emulation for Claude API requests Implement comprehensive Claude Code client emulation to ensure all Go-originated requests are indistinguishable from Node.js clients at the TLS and HTTP levels. ## Core Changes ### 1. TLS Fingerprint Enhancements - Enable HTTP/2: Set ForceAttemptHTTP2=true in TLS transport to match Node.js 24.x behavior (HTTP/2 is preferred by modern Node.js) - ALPN Protocol Priority: Changed from ["http/1.1"] to ["h2", "http/1.1"] to advertise HTTP/2 preference, matching actual Node.js client capability ### 2. Request Header Validation & Cleaning (Monkey Patch) - Created new claudemask package for Node.js emulation validation - ValidateNodeEmulation(): Verify all required Node.js headers present - CleanRequest(): Fix any Go client indicators that slip through (Go User-Agent, etc) - Applied in buildUpstreamRequest() as final validation before sending to Claude API - Validates 8 required headers: User-Agent, X-Stainless-, anthropic-version ### 3. Comprehensive Testing - 8 unit tests covering validation and cleaning scenarios - Tests verify: valid requests pass, missing headers detected, Go client headers fixed - All tests passing ✓ ## Why This Works 1. TLS Level: HTTP/2 negotiation via ALPN matches real Claude Code behavior 2. HTTP Level: All X-Stainless headers properly injected (language, runtime, OS) 3. Fallback: CleanRequest() catches any missed emulation as safety net 4. Detection*: ValidateNodeEmulation() logs any inconsistencies for debugging ## Files Modified - internal/pkg/tlsfingerprint/dialer.go: ALPN protocol priority - internal/repository/http_upstream.go: Enable HTTP/2 - internal/service/gateway_service.go: Integrate validation/cleaning - internal/pkg/claudemask/mask.go: New validation module (8 functions) - internal/pkg/claudemask/mask_test.go: New test suite (8 tests) ## Result Go requests now sent to Claude API are 100% consistent with Node.js clients: - JA3/JA4 TLS fingerprints match - HTTP/2 ALPN negotiation correct - All identification headers present and consistent - Fallback cleaning ensures no Go client leakage Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>	2026-04-10 19:24:16 +08:00
shaw	7060596a30	fix: bump Go from 1.26.1 to 1.26.2 to resolve 6 stdlib CVEs Fixes GO-2026-4947, GO-2026-4946, GO-2026-4870, GO-2026-4869, GO-2026-4866, GO-2026-4865 in crypto/x509, crypto/tls, archive/tar, and html/template.	2026-04-08 16:17:15 +08:00
Ethan0x0000	1b3e5c6ea6	chore(go): sync backend go.sum Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent) Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>	2026-03-21 01:21:48 +08:00
Ethan0x0000	bd9d2671d7	chore(deps): go mod tidy to remove stale indirect dependencies	2026-03-17 20:46:12 +08:00
Ethan0x0000	51547fa216	feat(db): add upstream_model column to usage_logs Add nullable VARCHAR(100) column to record the actual model sent to upstream providers when model mapping is applied. NULL means no mapping — the requested model was used as-is. Includes migration, concurrent index for aggregation queries, Ent schema regeneration, and migration README correction (forward-only runner, not goose).	2026-03-17 19:25:17 +08:00
Ylarod	11f7b83522	sub2api: add bedrock support	2026-03-13 17:00:16 +08:00
shaw	7079edc2d0	feat: announcement支持强制弹窗通知	2026-03-07 15:06:13 +08:00
shaw	0c9ba9e86c	fix(security): upgrade Go 1.25.7 to 1.26.1 to resolve 4 stdlib vulnerabilities GO-2026-4602 (os), GO-2026-4601 (net/url), GO-2026-4600 and GO-2026-4599 (crypto/x509). The crypto/x509 fixes are only available in go1.26.1+, not backported to go1.25.x.	2026-03-07 08:45:55 +08:00
erio	0d6c1c7790	feat: add independent load_factor field for scheduling load calculation	2026-03-06 05:07:10 +08:00
QTom	000e621eb6	feat(admin): 添加管理员直接修改用户 API Key 分组的功能 - 新增 PUT /api/v1/admin/api-keys/:id 端点，允许管理员修改任意用户 API Key 的分组绑定 - 跳过用户级权限校验但保留分组有效性验证，修改后触发认证缓存失效 - Service 层支持三态语义：nil=不修改，0=解绑，>0=绑定，<0=拒绝 - 指针值拷贝保证安全隔离，负数 groupID 返回 400 INVALID_GROUP_ID - 前端 UserApiKeysModal 新增可点击的分组选择下拉框，支持多 Key 并发更新 - 下拉支持视口翻转和滚动关闭，按钮有 disabled 和加载状态 - 覆盖：后端 20 个单元测试 (Service 11 + Handler 9) + 前端 16 个 E2E 测试 - golangci-lint 0 issues, make test-unit 全部通过	2026-02-28 20:18:14 +08:00
yangjianbo	bb664d9bbf	feat(sync): full code sync from release	2026-02-28 15:01:20 +08:00
huangenjun	3c619a8da5	refactor: 使用 go-sora2api SDK 替代自建 Sora 客户端使用 go-sora2api v1.1.0 SDK 替代原有 ~2000 行自建 HTTP/PoW/TLS 指纹代码， SDK 提供高并发性能优化（实例级 rand、PoW 缓冲区复用、context.Context 支持）。 - 新增 SoraSDKClient 适配器实现 SoraClient 接口 - 精简 sora_client.go 为仅保留接口和类型定义 - 更新 Wire 绑定使用 SoraSDKClient - 删除 SoraDirectClient、sora_curl_cffi_sidecar、sora_request_guard 等旧代码 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-25 10:15:38 +08:00
shaw	ded9b6c14e	fix: upgrade utls to v1.8.2 to resolve GO-2026-4512 vulnerability	2026-02-25 08:57:43 +08:00
yangjianbo	7be1195281	feat(api-key): 增加 API Key 上次使用时间并补齐测试	2026-02-22 22:07:17 +08:00
yangjianbo	33db7a0fb6	feat(gateway): 引入使用量记录有界 worker 池与自动扩缩容 - 新增 UsageRecordWorkerPool，支持有界队列、溢出降级策略与自动扩缩容 - 将 Gateway/OpenAI/Sora/Gemini 使用量记录改为提交到统一任务池执行 - 增加 usage_record 配置默认值与校验规则，并补充配置与任务提交相关测试 - 注入并托管 worker 池生命周期，服务退出时统一 StopAndWait Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-22 12:56:57 +08:00
yangjianbo	fff1d54858	feat(log): 落地统一日志底座与系统日志运维能力	2026-02-12 16:27:29 +08:00
yangjianbo	d367d1cde6	Merge branch 'main' into test-sora	2026-02-09 20:40:09 +08:00
erio	b889d5017b	refactor: replace Trie-based digest session store with flat cache	2026-02-09 07:02:12 +08:00
bayma888	bac9e2bfd5	feat(admin): add drag-and-drop group sort order - Add `sort_order` field to groups table with migration - Add `PUT /api/v1/admin/groups/sort-order` API for batch update - Implement drag-and-drop UI using vue-draggable-plus - All queries now order groups by sort_order - Add i18n support (en/zh) for sort-related UI text - Update test stubs to satisfy new interface methods	2026-02-08 16:53:45 +08:00
yangjianbo	98f793155f	build(工具链): 升级 Go 到 1.25.7	2026-02-06 07:41:23 +08:00
shaw	2b192f7dca	feat: 支持用户专属分组倍率配置	2026-02-05 16:05:42 +08:00
Lemon	97a5c1ac1d	feat: add support for HTTP/2 Cleartext (h2c) connections	2026-02-04 21:40:25 +08:00
song	3ecadf4aad	chore: apply stashed changes	2026-02-02 22:20:08 +08:00
IanShaw027	3dfb62e996	merge: 合并main分支最新改动解决冲突： - backend/internal/config/config.go: 合并Ops和Dashboard配置 - backend/internal/server/api_contract_test.go: 合并handler初始化 - backend/internal/service/openai_gateway_service.go: 保留Ops错误追踪逻辑 - backend/internal/service/wire.go: 合并Ops和APIKeyAuth provider 主要合并内容： - Dashboard缓存和预聚合功能 - API Key认证缓存优化 - Codex转换支持 - 使用日志分区表	2026-01-11 23:15:01 +08:00
yangjianbo	9d0a4f3d68	perf(认证): 引入 API Key 认证缓存与轻量删除查询增加 L1/L2 缓存、负缓存与单飞回源使用 key+owner 轻量查询替代全量加载并清理旧接口补充缓存失效与余额更新测试，修复随机抖动 lint 测试: make test	2026-01-10 22:23:51 +08:00
IanShaw027	4b9e47cec9	feat(基础设施): 添加运维监控功能的基础配置和依赖 - 更新 .gitignore 排除临时文件 - 添加 ops 监控相关配置项到 config.yaml - 更新 Go 依赖包（go.mod/go.sum） - 扩展 config.go 支持 ops 监控配置 - 新增上下文键定义（ClientRequestID）	2026-01-09 20:51:41 +08:00
yangjianbo	3f0017d1f1	fix(安全): 修复依赖漏洞并强化安全扫描主要改动： - 固定 Go 1.25.5 与 CI 校验并更新扫描流程 - 升级 quic-go、x/crypto、req 等依赖并通过 govulncheck - 强化 JWT 校验、TLS 配置与 xlsx 动态加载 - 新增审计豁免清单与校验脚本	2026-01-06 11:36:38 +08:00
yangjianbo	7e758b24c4	chore(依赖): 同步 Go 模块依赖更新 go.mod/go.sum 的间接依赖记录包含 gorm/mysql 相关依赖项	2025-12-30 16:43:18 +08:00
yangjianbo	3d617de577	refactor(数据库): 迁移持久层到 Ent 并清理 GORM 将仓储层/基础设施改为 Ent + 原生 SQL 执行路径，并移除 AutoMigrate 与 GORM 依赖。重构内容包括： - 仓储层改用 Ent/SQL（含 usage_log/account 等复杂查询），统一错误映射 - 基础设施与 setup 初始化切换为 Ent + SQL migrations - 集成测试与 fixtures 迁移到 Ent 事务模型 - 清理遗留 GORM 模型/依赖，补充迁移与文档说明 - 增加根目录 Makefile 便于前后端编译测试： - go test -tags unit ./... - go test -tags integration ./...	2025-12-29 10:03:27 +08:00
noreply	cbfce49aa1	feat: Schedule batch update for account last_used_at Implement deferred batch update mechanism to reduce database load: - Add DeferredService for batching account last_used_at updates - Add TimingWheelService for efficient recurring task scheduling - Integrate with GatewayService and OpenAIGatewayService - Implement BatchUpdateLastUsed repository method using CASE...WHEN SQL - Fix golangci-lint error: Replace interface{} with any Benefits: - Reduces database writes by batching updates (10-second intervals) - Improves request throughput by deferring non-critical updates - Maintains accurate account usage tracking for scheduling	2025-12-28 09:49:54 +08:00
Forest	e5a77853b0	refactor: 调整项目结构为单向依赖	2025-12-26 16:45:40 +08:00
Forest	25a304c231	test: 增加 repository 测试	2025-12-25 16:01:17 +08:00
刀刀	9d30ceae8d	CC 400 返回具体错误信息 && 非 CC 请求时增加 system prompt (#26 ) * feat: http 400 返回具体错误 * 更新 workflows * 优化打包/docker 构建流程 * 400 是返回原始错误 - json 格式 * feat: 非 cc请求时补充 system * go mod tidy	2025-12-25 14:47:19 +08:00
Forest	e5aa676853	refactor(backend): 引入 Wire 重构服务启动与依赖组装	2025-12-18 22:07:17 +08:00
shaw	642842c29e	First commit	2025-12-18 13:50:39 +08:00

50 Commits