oadmin/sub2api
1
0
Fork 0
Code Issues Pull Requests 1 Actions 2 Packages Projects Releases Wiki Activity
Files
d7011163b8ae04ffbeb2357970b0d871b7af3959
sub2api/backend/internal/repository
History
yangjianbo d7011163b8 fix: 修复代码审核发现的安全和质量问题 
安全修复(P0):
- 移除硬编码的 OAuth client_secret(Antigravity、Gemini CLI),
  改为通过环境变量注入(ANTIGRAVITY_OAUTH_CLIENT_SECRET、
  GEMINI_CLI_OAUTH_CLIENT_SECRET)
- 新增 logredact.RedactText() 对非结构化文本做敏感信息脱敏,
  覆盖 GOCSPX-*/AIza* 令牌和常见 key=value 模式
- 日志中不再打印 org_uuid、account_uuid、email_address 等敏感值

安全修复(P1):
- URL 验证增强:新增 ValidateHTTPURL 统一入口,支持 allowlist 和
  私网地址阻断(localhost/内网 IP)
- 代理回退安全:代理初始化失败时默认阻止直连回退,防止 IP 泄露,
  可通过 security.proxy_fallback.allow_direct_on_error 显式开启
- Gemini OAuth 配置校验:client_id 与 client_secret 必须同时
  设置或同时留空

其他改进:
- 新增 tools/secret_scan.py 密钥扫描工具和 Makefile secret-scan 目标
- 更新所有 docker-compose 和部署配置,传递 OAuth secret 环境变量
- google_one OAuth 类型使用固定 redirectURI,与 code_assist 对齐

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-09 09:58:13 +08:00
..
account_repo_integration_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
account_repo.go
Merge branch 'main' into test
2026-02-06 09:59:15 +08:00
aes_encryptor.go
merge upstream main
2026-02-02 22:13:50 +08:00
allowed_groups_contract_integration_test.go
announcement_read_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
announcement_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
api_key_cache_integration_test.go
api_key_cache_test.go
api_key_cache.go
merge upstream main
2026-02-02 22:13:50 +08:00
api_key_repo_integration_test.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
api_key_repo.go
merge: 合并 main 分支到 test,解决 config 和 modelWhitelist 冲突
2026-02-07 20:18:07 +08:00
billing_cache_integration_test.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
billing_cache_jitter_test.go
test: 完善自动化测试体系(7个模块,73个任务)
2026-02-08 12:05:39 +08:00
billing_cache_test.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
billing_cache.go
fix: 修复代码审核发现的10个问题(P0安全+P1数据一致性+P2性能优化)
2026-02-07 22:13:45 +08:00
claude_oauth_service_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
claude_oauth_service.go
merge upstream main
2026-02-02 22:13:50 +08:00
claude_usage_service_test.go
claude_usage_service.go
merge upstream main
2026-02-02 22:13:50 +08:00
concurrency_cache_benchmark_test.go
concurrency_cache_integration_test.go
concurrency_cache.go
fix: 修复代码审核发现的10个问题(P0安全+P1数据一致性+P2性能优化)
2026-02-07 22:13:45 +08:00
dashboard_aggregation_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
dashboard_cache_test.go
dashboard_cache.go
db_pool_test.go
db_pool.go
email_cache_integration_test.go
email_cache_test.go
email_cache.go
merge upstream main
2026-02-02 22:13:50 +08:00
ent.go
merge upstream main
2026-02-02 22:13:50 +08:00
error_passthrough_cache.go
feat: 新增全局错误透传规则功能
2026-02-05 21:52:54 +08:00
error_passthrough_repo.go
feat: 新增全局错误透传规则功能
2026-02-05 21:52:54 +08:00
error_translate.go
fixtures_integration_test.go
gateway_cache_integration_test.go
feat(antigravity): comprehensive enhancements - model mapping, rate limiting, scheduling & ops
2026-02-07 12:31:10 +08:00
gateway_cache_model_load_integration_test.go
feat(antigravity): comprehensive enhancements - model mapping, rate limiting, scheduling & ops
2026-02-07 12:31:10 +08:00
gateway_cache.go
feat(antigravity): comprehensive enhancements - model mapping, rate limiting, scheduling & ops
2026-02-07 12:31:10 +08:00
gateway_routing_integration_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
gemini_oauth_client.go
gemini_token_cache_integration_test.go
fix(认证): 修复 OAuth token 缓存失效与 401 处理
2026-01-14 15:55:44 +08:00
gemini_token_cache_test.go
fix(认证): 修复 OAuth token 缓存失效与 401 处理
2026-01-14 15:55:44 +08:00
gemini_token_cache.go
feat(网关): 引入 OpenAI/Claude OAuth token 缓存
2026-01-15 18:27:06 +08:00
geminicli_codeassist_client.go
fix(lint): 修复错误消息大写问题以符合 Go 惯例
2026-02-05 20:47:15 +08:00
github_release_service_test.go
github_release_service.go
fix: 修复代码审核发现的安全和质量问题
2026-02-09 09:58:13 +08:00
group_repo_integration_test.go
group_repo.go
merge: 合并 main 分支到 test,解决 config 和 modelWhitelist 冲突
2026-02-07 20:18:07 +08:00
http_upstream_benchmark_test.go
http_upstream_test.go
http_upstream.go
merge upstream main
2026-02-02 22:13:50 +08:00
identity_cache_integration_test.go
identity_cache_test.go
identity_cache.go
merge upstream main
2026-02-02 22:13:50 +08:00
inprocess_transport_test.go
integration_harness_test.go
migrations_runner.go
feat(scheduler): 引入调度快照缓存与 outbox 回放
2026-01-12 14:19:06 +08:00
migrations_schema_integration_test.go
openai_oauth_service_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
openai_oauth_service.go
merge upstream main
2026-02-02 22:13:50 +08:00
ops_repo_alerts.go
feat: merge dev
2026-01-15 15:14:44 +08:00
ops_repo_dashboard.go
feat(ops): 添加 count_tokens 错误过滤功能
2026-01-12 17:06:12 +08:00
ops_repo_histograms.go
ops_repo_latency_histogram_buckets_test.go
ops_repo_latency_histogram_buckets.go
ops_repo_metrics.go
feat(ops): add account switch metrics and trend
2026-01-23 19:39:48 +08:00
ops_repo_preagg.go
fix(网关): 修复账号选择中的调度器快照延迟问题
2026-01-13 22:49:26 -08:00
ops_repo_realtime_traffic.go
feat(ops): 新增实时流量数据层
2026-01-12 14:17:42 +08:00
ops_repo_request_details.go
ops_repo_trends.go
fix(ops): count failover kinds with suffix
2026-01-24 01:14:44 +08:00
ops_repo_window_stats.go
ops_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
pagination.go
pricing_service_test.go
pricing_service.go
promo_code_repo.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
proxy_latency_cache.go
feat: merge dev
2026-01-15 15:14:44 +08:00
proxy_probe_service_test.go
fix(proxy): 增加代理探测的多 URL 回退机制
2026-02-03 17:12:27 +08:00
proxy_probe_service.go
fix(proxy): 增加代理探测的多 URL 回退机制
2026-02-03 17:12:27 +08:00
proxy_repo_integration_test.go
proxy_repo.go
perf: batch fetch proxies for account export
2026-02-05 18:40:49 +08:00
redeem_cache_integration_test.go
redeem_cache_test.go
redeem_cache.go
redeem_code_repo_integration_test.go
redeem_code_repo.go
feat(admin): add user balance/concurrency history modal
2026-02-03 00:16:10 +08:00
redis_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
redis.go
merge upstream main
2026-02-02 22:13:50 +08:00
refresh_token_cache.go
feat(auth): 实现 Refresh Token 机制
2026-02-05 12:42:54 +08:00
req_client_pool_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
req_client_pool.go
merge upstream main
2026-02-02 22:13:50 +08:00
scheduler_cache.go
merge upstream main
2026-02-02 22:13:50 +08:00
scheduler_outbox_repo.go
fix(调度): 修复 outbox 空载写入并稳固回放测试
2026-01-12 15:46:55 +08:00
scheduler_snapshot_outbox_integration_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
session_limit_cache.go
fix: 修复管理页面活跃会话数始终显示为0的问题
2026-02-05 22:36:17 +08:00
setting_repo_integration_test.go
setting_repo.go
simple_mode_default_groups_integration_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
simple_mode_default_groups.go
merge upstream main
2026-02-02 22:13:50 +08:00
soft_delete_ent_integration_test.go
sora_account_repo.go
fix(sora): 修复流式重写与计费问题
2026-01-31 21:46:28 +08:00
sql_scan.go
temp_unsched_cache.go
timeout_counter_cache.go
totp_cache.go
merge upstream main
2026-02-02 22:13:50 +08:00
turnstile_service_test.go
turnstile_service.go
update_cache_integration_test.go
update_cache.go
usage_cleanup_repo_ent_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
usage_cleanup_repo_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
usage_cleanup_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
usage_log_repo_integration_test.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
usage_log_repo_unit_test.go
fix(audit): 第二批审计修复 — P0 生产 Bug、安全加固、性能优化、缓存一致性、代码质量
2026-02-07 19:46:42 +08:00
usage_log_repo.go
merge: 合并 main 分支到 test,解决 config 和 modelWhitelist 冲突
2026-02-07 20:18:07 +08:00
user_attribute_repo.go
user_group_rate_repo.go
feat: 支持用户专属分组倍率配置
2026-02-05 16:05:42 +08:00
user_repo_integration_test.go
user_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
user_subscription_repo_integration_test.go
merge upstream main
2026-02-02 22:13:50 +08:00
user_subscription_repo.go
merge upstream main
2026-02-02 22:13:50 +08:00
wire.go
fix: 修复代码审核发现的安全和质量问题
2026-02-09 09:58:13 +08:00