merge: 合并远程分支并修复代码冲突

合并了远程分支 cb72262 的功能更新，同时保留了 ESLint 修复： **冲突解决详情：** 1. AccountTableFilters.vue - ✅ 保留 emit 模式修复（避免 vue/no-mutating-props 错误） - ✅ 添加第三个筛选器 type（账户类型） - ✅ 新增 antigravity 平台和 inactive 状态选项 2. UserBalanceModal.vue - ✅ 保留 console.error 错误日志 - ✅ 添加输入验证（金额校验、余额不足检查） - ✅ 使用 appStore.showError 向用户显示友好错误 3. AccountsView.vue - ✅ 保留所有 console.error 错误日志（避免 no-empty 错误） - ✅ 使用新 API：clearRateLimit 和 setSchedulable 4. UsageView.vue - ✅ 添加 console.error 错误日志 - ✅ 添加图表功能（模型分布、使用趋势） - ✅ 添加粒度选择（按天/按小时） - ✅ 保留 XLSX 动态导入优化 **测试结果：** - ✅ Go tests: PASS - ✅ golangci-lint: 0 issues - ✅ ESLint: 0 errors - ✅ TypeScript: PASS 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-06 12:50:51 +08:00
parent 4790aced15 cb72262ad8
commit 17ae51c0a0
121 changed files with 4244 additions and 3233 deletions
--- a/deploy/.env.example
+++ b/deploy/.env.example
@@ -54,7 +54,10 @@ ADMIN_PASSWORD=
 # -----------------------------------------------------------------------------
 # JWT Configuration
 # -----------------------------------------------------------------------------
-# Leave empty to auto-generate (recommended)
+# IMPORTANT: Set a fixed JWT_SECRET to prevent login sessions from being
+# invalidated after container restarts. If left empty, a random secret will
+# be generated on each startup, causing all users to be logged out.
+# Generate a secure secret: openssl rand -hex 32
 JWT_SECRET=
 JWT_EXPIRE_HOUR=24

--- a/deploy/config.example.yaml
+++ b/deploy/config.example.yaml
@@ -97,7 +97,7 @@ security:
    enabled: true
    # Default CSP policy (override if you host assets on other domains)
    # 默认 CSP 策略（如果静态资源托管在其他域名，请自行覆盖）
-    policy: "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https:; frame-ancestors 'none'; base-uri 'self'; form-action 'self'"
+    policy: "default-src 'self'; script-src 'self' https://challenges.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https:; frame-src https://challenges.cloudflare.com; frame-ancestors 'none'; base-uri 'self'; form-action 'self'"
  proxy_probe:
    # Allow skipping TLS verification for proxy probe (debug only)
    # 允许代理探测时跳过 TLS 证书验证（仅用于调试）
--- a/deploy/docker-compose.yml
+++ b/deploy/docker-compose.yml
@@ -72,7 +72,10 @@ services:
      # =======================================================================
      # JWT Configuration
      # =======================================================================
-      # Leave empty to auto-generate (recommended)
+      # IMPORTANT: Set a fixed JWT_SECRET to prevent login sessions from being
+      # invalidated after container restarts. If left empty, a random secret
+      # will be generated on each startup.
+      # Generate a secure secret: openssl rand -hex 32
      - JWT_SECRET=${JWT_SECRET:-}
      - JWT_EXPIRE_HOUR=${JWT_EXPIRE_HOUR:-24}