0a4641c24e
* feat(api-key): add IP whitelist/blacklist restriction and usage log IP tracking - Add IP restriction feature for API keys (whitelist/blacklist with CIDR support) - Add IP address logging to usage logs (admin-only visibility) - Remove billing_type column from usage logs UI (redundant) - Use generic "Access denied" error message for security Backend: - New ip package with IP/CIDR validation and matching utilities - Database migrations for ip_whitelist, ip_blacklist (api_keys) and ip_address (usage_logs) - Middleware IP restriction check after API key validation - Input validation for IP/CIDR patterns on create/update Frontend: - API key form with enable toggle for IP restriction - Shield icon indicator in table for keys with IP restriction - Removed billing_type filter and column from usage views * fix: update API contract tests for ip_whitelist/ip_blacklist fields Add ip_whitelist and ip_blacklist fields to expected JSON responses in API contract tests to match the new API key schema.
169 lines
4.1 KiB
Go
169 lines
4.1 KiB
Go
// Package schema 定义 Ent ORM 的数据库 schema。
|
||
package schema
|
||
|
||
import (
|
||
"time"
|
||
|
||
"entgo.io/ent"
|
||
"entgo.io/ent/dialect"
|
||
"entgo.io/ent/dialect/entsql"
|
||
"entgo.io/ent/schema"
|
||
"entgo.io/ent/schema/edge"
|
||
"entgo.io/ent/schema/field"
|
||
"entgo.io/ent/schema/index"
|
||
)
|
||
|
||
// UsageLog 定义使用日志实体的 schema。
|
||
//
|
||
// 使用日志记录每次 API 调用的详细信息,包括 token 使用量、成本计算等。
|
||
// 这是一个只追加的表,不支持更新和删除。
|
||
type UsageLog struct {
|
||
ent.Schema
|
||
}
|
||
|
||
// Annotations 返回 schema 的注解配置。
|
||
func (UsageLog) Annotations() []schema.Annotation {
|
||
return []schema.Annotation{
|
||
entsql.Annotation{Table: "usage_logs"},
|
||
}
|
||
}
|
||
|
||
// Fields 定义使用日志实体的所有字段。
|
||
func (UsageLog) Fields() []ent.Field {
|
||
return []ent.Field{
|
||
// 关联字段
|
||
field.Int64("user_id"),
|
||
field.Int64("api_key_id"),
|
||
field.Int64("account_id"),
|
||
field.String("request_id").
|
||
MaxLen(64).
|
||
NotEmpty(),
|
||
field.String("model").
|
||
MaxLen(100).
|
||
NotEmpty(),
|
||
field.Int64("group_id").
|
||
Optional().
|
||
Nillable(),
|
||
field.Int64("subscription_id").
|
||
Optional().
|
||
Nillable(),
|
||
|
||
// Token 计数字段
|
||
field.Int("input_tokens").
|
||
Default(0),
|
||
field.Int("output_tokens").
|
||
Default(0),
|
||
field.Int("cache_creation_tokens").
|
||
Default(0),
|
||
field.Int("cache_read_tokens").
|
||
Default(0),
|
||
field.Int("cache_creation_5m_tokens").
|
||
Default(0),
|
||
field.Int("cache_creation_1h_tokens").
|
||
Default(0),
|
||
|
||
// 成本字段
|
||
field.Float("input_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("output_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("cache_creation_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("cache_read_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("total_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("actual_cost").
|
||
Default(0).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(20,10)"}),
|
||
field.Float("rate_multiplier").
|
||
Default(1).
|
||
SchemaType(map[string]string{dialect.Postgres: "decimal(10,4)"}),
|
||
|
||
// 其他字段
|
||
field.Int8("billing_type").
|
||
Default(0),
|
||
field.Bool("stream").
|
||
Default(false),
|
||
field.Int("duration_ms").
|
||
Optional().
|
||
Nillable(),
|
||
field.Int("first_token_ms").
|
||
Optional().
|
||
Nillable(),
|
||
field.String("user_agent").
|
||
MaxLen(512).
|
||
Optional().
|
||
Nillable(),
|
||
field.String("ip_address").
|
||
MaxLen(45). // 支持 IPv6
|
||
Optional().
|
||
Nillable(),
|
||
|
||
// 图片生成字段(仅 gemini-3-pro-image 等图片模型使用)
|
||
field.Int("image_count").
|
||
Default(0),
|
||
field.String("image_size").
|
||
MaxLen(10).
|
||
Optional().
|
||
Nillable(),
|
||
|
||
// 时间戳(只有 created_at,日志不可修改)
|
||
field.Time("created_at").
|
||
Default(time.Now).
|
||
Immutable().
|
||
SchemaType(map[string]string{dialect.Postgres: "timestamptz"}),
|
||
}
|
||
}
|
||
|
||
// Edges 定义使用日志实体的关联关系。
|
||
func (UsageLog) Edges() []ent.Edge {
|
||
return []ent.Edge{
|
||
edge.From("user", User.Type).
|
||
Ref("usage_logs").
|
||
Field("user_id").
|
||
Required().
|
||
Unique(),
|
||
edge.From("api_key", APIKey.Type).
|
||
Ref("usage_logs").
|
||
Field("api_key_id").
|
||
Required().
|
||
Unique(),
|
||
edge.From("account", Account.Type).
|
||
Ref("usage_logs").
|
||
Field("account_id").
|
||
Required().
|
||
Unique(),
|
||
edge.From("group", Group.Type).
|
||
Ref("usage_logs").
|
||
Field("group_id").
|
||
Unique(),
|
||
edge.From("subscription", UserSubscription.Type).
|
||
Ref("usage_logs").
|
||
Field("subscription_id").
|
||
Unique(),
|
||
}
|
||
}
|
||
|
||
// Indexes 定义数据库索引,优化查询性能。
|
||
func (UsageLog) Indexes() []ent.Index {
|
||
return []ent.Index{
|
||
index.Fields("user_id"),
|
||
index.Fields("api_key_id"),
|
||
index.Fields("account_id"),
|
||
index.Fields("group_id"),
|
||
index.Fields("subscription_id"),
|
||
index.Fields("created_at"),
|
||
index.Fields("model"),
|
||
index.Fields("request_id"),
|
||
// 复合索引用于时间范围查询
|
||
index.Fields("user_id", "created_at"),
|
||
index.Fields("api_key_id", "created_at"),
|
||
}
|
||
}
|