Spaces:

ASEM12345
/

anti_api

Running

App Files Files Community

liuw15 commited on Dec 5, 2025

Commit

d244d35

1 Parent(s): 89083cb

增加一个简易的前端方便管理，增加dockerfile和docker-compose.yml

Browse files

Files changed (17) hide show

.dockerignore +15 -0
.env.example +4 -0
.github/workflows/docker-publish.yml +55 -0
.gitignore +1 -1
Dockerfile +21 -0
TOKEN_API.md +172 -0
docker-compose.yml +14 -0
package-lock.json +134 -1
package.json +2 -1
public/app.js +465 -0
public/index.html +112 -0
public/style.css +165 -0
src/auth/jwt.js +27 -0
src/auth/token_manager.js +94 -0
src/config/config.js +10 -0
src/routes/admin.js +214 -0
src/server/index.js +10 -2

.dockerignore ADDED Viewed

	@@ -0,0 +1,15 @@

+node_modules
+npm-debug.log
+.git
+.gitignore
+README.md
+.env
+.nyc_output
+coverage
+.DS_Store
+data
+public/images/*.jpg
+public/images/*.png
+public/images/*.gif
+public/images/*.webp
+test

.env.example CHANGED Viewed

@@ -27,5 +27,9 @@ TIMEOUT=180000
 # PROXY=http://127.0.0.1:7897
 SKIP_PROJECT_ID_FETCH=false  # 跳过从API获取projectId，直接随机生成（适用于Pro订阅账号）
 # 系统提示词
 SYSTEM_INSTRUCTION=你是聊天机器人，名字叫萌萌，如同名字这般，你的性格是软软糯糯萌萌哒的，专门为用户提供聊天和情绪价值，协助进行小说创作或者角色扮演

 # PROXY=http://127.0.0.1:7897
 SKIP_PROJECT_ID_FETCH=false  # 跳过从API获取projectId，直接随机生成（适用于Pro订阅账号）
+# 管理员认证
+ADMIN_USERNAME=admin
+ADMIN_PASSWORD=admin123
 # 系统提示词
 SYSTEM_INSTRUCTION=你是聊天机器人，名字叫萌萌，如同名字这般，你的性格是软软糯糯萌萌哒的，专门为用户提供聊天和情绪价值，协助进行小说创作或者角色扮演

.github/workflows/docker-publish.yml ADDED Viewed

	@@ -0,0 +1,55 @@

+name: Docker Build and Push
+on:
+  push:
+    branches: [ main, master ]
+    tags: [ 'v*' ]
+  pull_request:
+    branches: [ main, master ]
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Log in to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=branch
+            type=ref,event=pr
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=raw,value=latest,enable={{is_default_branch}}
+      - name: Build and push
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max

.gitignore CHANGED Viewed

@@ -19,4 +19,4 @@ Thumbs.db
 data/
 test/*.png
 test/*.jpeg
-public/

 data/
 test/*.png
 test/*.jpeg
+public/images

Dockerfile ADDED Viewed

	@@ -0,0 +1,21 @@

+FROM node:18-alpine
+WORKDIR /app
+# 复制 package.json 和 package-lock.json
+COPY package*.json ./
+# 安装依赖
+RUN npm ci --only=production
+# 复制源代码
+COPY . .
+# 创建数据和图片目录
+RUN mkdir -p data public/images
+# 暴露端口
+EXPOSE 8045
+# 启动应用
+CMD ["npm", "start"]

TOKEN_API.md ADDED Viewed

	@@ -0,0 +1,172 @@

+# Token 管理 API 文档
+## 概述
+提供对本地 Token 凭证的完整管理功能，支持增删改查和热重载。所有操作都会自动更新内存中的 Token 池。
+## 认证
+所有 API 请求需要在请求头中包含 API Key：
+```
+Authorization: Bearer sk-text  // 配置内文件配置
+```
+## 接口列表
+### 1. 获取 Token 列表
+**请求**
+```bash
+GET /v1/tokens
+```
+**响应**
+```json
+{
+  "success": true,
+  "data": [
+    {
+      "refresh_token": "1//xxx",
+      "access_token_suffix": "...abc12345",
+      "expires_in": 3599,
+      "timestamp": 1234567890000,
+      "enable": true,
+      "projectId": "project-123"
+    }
+  ]
+}
+```
+### 2. 添加新 Token
+**请求**
+```bash
+POST /v1/tokens
+Content-Type: application/json
+{
+  "access_token": "ya29.xxx",
+  "refresh_token": "1//xxx",
+  "expires_in": 3599
+}
+```
+**响应**
+```json
+{
+  "success": true,
+  "message": "Token添加成功"
+}
+```
+### 3. 更新 Token
+**请求**
+```bash
+PUT /v1/tokens/{refresh_token}
+Content-Type: application/json
+{
+  "enable": false,
+  "access_token": "new_token"
+}
+```
+**响应**
+```json
+{
+  "success": true,
+  "message": "Token更新成功"
+}
+```
+### 4. 删除 Token
+**请求**
+```bash
+DELETE /v1/tokens/{refresh_token}
+```
+**响应**
+```json
+{
+  "success": true,
+  "message": "Token删除成功"
+}
+```
+### 5. 热重载 Token
+**请求**
+```bash
+POST /v1/tokens/reload
+```
+**响应**
+```json
+{
+  "success": true,
+  "message": "Token已热重载"
+}
+```
+## 使用示例
+### 查看当前 Token 状态
+```bash
+curl http://localhost:8045/v1/tokens \
+  -H "Authorization: Bearer sk-text"
+```
+### 添加新账号
+```bash
+curl -X POST http://localhost:8045/v1/tokens \
+  -H "Authorization: Bearer sk-text" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "access_token": "ya29.a0ARrdaM...",
+    "refresh_token": "1//0GWI4...",
+    "expires_in": 3599
+  }'
+```
+### 禁用某个账号
+```bash
+curl -X PUT http://localhost:8045/v1/tokens/1//0GWI4... \
+  -H "Authorization: Bearer sk-text" \
+  -H "Content-Type: application/json" \
+  -d '{"enable": false}'
+```
+### 删除账号
+```bash
+curl -X DELETE http://localhost:8045/v1/tokens/1//0GWI4... \
+  -H "Authorization: Bearer sk-text"
+```
+### 重新加载配置
+```bash
+curl -X POST http://localhost:8045/v1/tokens/reload \
+  -H "Authorization: Bearer sk-text"
+```
+## 注意事项
+1. **refresh_token** 作为唯一标识符，不可重复
+2. 所有操作会立即生效，无需重启服务
+3. 删除操作不可恢复，请谨慎使用
+4. Token 过期会自动刷新，无需手动维护
+5. 禁用的 Token 不会参与轮换，但仍保存在文件中
+## 错误码
+- `400` - 请求参数错误
+- `401` - API Key 验证失败
+- `500` - 服务器内部错误
+## 安全建议
+- 定期备份 `data/accounts.json` 文件
+- 不要在日志中暴露完整的 Token 信息
+- 建议使用 HTTPS 部署生产环境

docker-compose.yml ADDED Viewed

	@@ -0,0 +1,14 @@

+version: '3.8'
+services:
+  antigravity2api:
+    build: .
+    ports:
+      - "8045:8045"
+    env_file:
+      - .env
+    volumes:
+      - ./data:/app/data
+      - ./public/images:/app/public/images
+      - ./.env:/app/.env
+    restart: unless-stopped

package-lock.json CHANGED Viewed

@@ -11,7 +11,8 @@
       "dependencies": {
         "axios": "^1.13.2",
         "dotenv": "^17.2.3",
-        "express": "^5.1.0"
       },
       "engines": {
         "node": ">=18.0.0"
@@ -67,6 +68,12 @@
         "node": ">=18"
       }
     },
     "node_modules/bytes": {
       "version": "3.1.2",
       "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz",
@@ -218,6 +225,15 @@
         "node": ">= 0.4"
       }
     },
     "node_modules/ee-first": {
       "version": "1.1.1",
       "resolved": "https://registry.npmjs.org/ee-first/-/ee-first-1.1.1.tgz",
@@ -582,6 +598,91 @@
       "integrity": "sha512-hvpoI6korhJMnej285dSg6nu1+e6uxs7zG3BYAm5byqDsgJNWwxzM6z6iZiAgQR4TJ30JmBTOwqZUw3WlyH3AQ==",
       "license": "MIT"
     },
     "node_modules/math-intrinsics": {
       "version": "1.1.0",
       "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
@@ -790,12 +891,44 @@
         "node": ">= 18"
       }
     },
     "node_modules/safer-buffer": {
       "version": "2.1.2",
       "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz",
       "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==",
       "license": "MIT"
     },
     "node_modules/send": {
       "version": "1.2.0",
       "resolved": "https://registry.npmjs.org/send/-/send-1.2.0.tgz",

       "dependencies": {
         "axios": "^1.13.2",
         "dotenv": "^17.2.3",
+        "express": "^5.1.0",
+        "jsonwebtoken": "^9.0.2"
       },
       "engines": {
         "node": ">=18.0.0"
         "node": ">=18"
       }
     },
+    "node_modules/buffer-equal-constant-time": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/buffer-equal-constant-time/-/buffer-equal-constant-time-1.0.1.tgz",
+      "integrity": "sha512-zRpUiDwd/xk6ADqPMATG8vc9VPrkck7T07OIx0gnjmJAnHnTVXNQG3vfvWNuiZIkwu9KrKdA1iJKfsfTVxE6NA==",
+      "license": "BSD-3-Clause"
+    },
     "node_modules/bytes": {
       "version": "3.1.2",
       "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz",
         "node": ">= 0.4"
       }
     },
+    "node_modules/ecdsa-sig-formatter": {
+      "version": "1.0.11",
+      "resolved": "https://registry.npmjs.org/ecdsa-sig-formatter/-/ecdsa-sig-formatter-1.0.11.tgz",
+      "integrity": "sha512-nagl3RYrbNv6kQkeJIpt6NJZy8twLB/2vtz6yN9Z4vRKHN4/QZJIEbqohALSgwKdnksuY3k5Addp5lg8sVoVcQ==",
+      "license": "Apache-2.0",
+      "dependencies": {
+        "safe-buffer": "^5.0.1"
+      }
+    },
     "node_modules/ee-first": {
       "version": "1.1.1",
       "resolved": "https://registry.npmjs.org/ee-first/-/ee-first-1.1.1.tgz",
       "integrity": "sha512-hvpoI6korhJMnej285dSg6nu1+e6uxs7zG3BYAm5byqDsgJNWwxzM6z6iZiAgQR4TJ30JmBTOwqZUw3WlyH3AQ==",
       "license": "MIT"
     },
+    "node_modules/jsonwebtoken": {
+      "version": "9.0.3",
+      "resolved": "https://registry.npmjs.org/jsonwebtoken/-/jsonwebtoken-9.0.3.tgz",
+      "integrity": "sha512-MT/xP0CrubFRNLNKvxJ2BYfy53Zkm++5bX9dtuPbqAeQpTVe0MQTFhao8+Cp//EmJp244xt6Drw/GVEGCUj40g==",
+      "license": "MIT",
+      "dependencies": {
+        "jws": "^4.0.1",
+        "lodash.includes": "^4.3.0",
+        "lodash.isboolean": "^3.0.3",
+        "lodash.isinteger": "^4.0.4",
+        "lodash.isnumber": "^3.0.3",
+        "lodash.isplainobject": "^4.0.6",
+        "lodash.isstring": "^4.0.1",
+        "lodash.once": "^4.0.0",
+        "ms": "^2.1.1",
+        "semver": "^7.5.4"
+      },
+      "engines": {
+        "node": ">=12",
+        "npm": ">=6"
+      }
+    },
+    "node_modules/jwa": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/jwa/-/jwa-2.0.1.tgz",
+      "integrity": "sha512-hRF04fqJIP8Abbkq5NKGN0Bbr3JxlQ+qhZufXVr0DvujKy93ZCbXZMHDL4EOtodSbCWxOqR8MS1tXA5hwqCXDg==",
+      "license": "MIT",
+      "dependencies": {
+        "buffer-equal-constant-time": "^1.0.1",
+        "ecdsa-sig-formatter": "1.0.11",
+        "safe-buffer": "^5.0.1"
+      }
+    },
+    "node_modules/jws": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/jws/-/jws-4.0.1.tgz",
+      "integrity": "sha512-EKI/M/yqPncGUUh44xz0PxSidXFr/+r0pA70+gIYhjv+et7yxM+s29Y+VGDkovRofQem0fs7Uvf4+YmAdyRduA==",
+      "license": "MIT",
+      "dependencies": {
+        "jwa": "^2.0.1",
+        "safe-buffer": "^5.0.1"
+      }
+    },
+    "node_modules/lodash.includes": {
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/lodash.includes/-/lodash.includes-4.3.0.tgz",
+      "integrity": "sha512-W3Bx6mdkRTGtlJISOvVD/lbqjTlPPUDTMnlXZFnVwi9NKJ6tiAk6LVdlhZMm17VZisqhKcgzpO5Wz91PCt5b0w==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.isboolean": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/lodash.isboolean/-/lodash.isboolean-3.0.3.tgz",
+      "integrity": "sha512-Bz5mupy2SVbPHURB98VAcw+aHh4vRV5IPNhILUCsOzRmsTmSQ17jIuqopAentWoehktxGd9e/hbIXq980/1QJg==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.isinteger": {
+      "version": "4.0.4",
+      "resolved": "https://registry.npmjs.org/lodash.isinteger/-/lodash.isinteger-4.0.4.tgz",
+      "integrity": "sha512-DBwtEWN2caHQ9/imiNeEA5ys1JoRtRfY3d7V9wkqtbycnAmTvRRmbHKDV4a0EYc678/dia0jrte4tjYwVBaZUA==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.isnumber": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/lodash.isnumber/-/lodash.isnumber-3.0.3.tgz",
+      "integrity": "sha512-QYqzpfwO3/CWf3XP+Z+tkQsfaLL/EnUlXWVkIk5FUPc4sBdTehEqZONuyRt2P67PXAk+NXmTBcc97zw9t1FQrw==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.isplainobject": {
+      "version": "4.0.6",
+      "resolved": "https://registry.npmjs.org/lodash.isplainobject/-/lodash.isplainobject-4.0.6.tgz",
+      "integrity": "sha512-oSXzaWypCMHkPC3NvBEaPHf0KsA5mvPrOPgQWDsbg8n7orZ290M0BmC/jgRZ4vcJ6DTAhjrsSYgdsW/F+MFOBA==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.isstring": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/lodash.isstring/-/lodash.isstring-4.0.1.tgz",
+      "integrity": "sha512-0wJxfxH1wgO3GrbuP+dTTk7op+6L41QCXbGINEmD+ny/G/eCqGzxyCsh7159S+mgDDcoarnBw6PC1PS5+wUGgw==",
+      "license": "MIT"
+    },
+    "node_modules/lodash.once": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/lodash.once/-/lodash.once-4.1.1.tgz",
+      "integrity": "sha512-Sb487aTOCr9drQVL8pIxOzVhafOjZN9UU54hiN8PU3uAiSV7lx1yYNpbNmex2PK6dSJoNTSJUUswT651yww3Mg==",
+      "license": "MIT"
+    },
     "node_modules/math-intrinsics": {
       "version": "1.1.0",
       "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
         "node": ">= 18"
       }
     },
+    "node_modules/safe-buffer": {
+      "version": "5.2.1",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.2.1.tgz",
+      "integrity": "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "MIT"
+    },
     "node_modules/safer-buffer": {
       "version": "2.1.2",
       "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz",
       "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==",
       "license": "MIT"
     },
+    "node_modules/semver": {
+      "version": "7.7.3",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.3.tgz",
+      "integrity": "sha512-SdsKMrI9TdgjdweUSR9MweHA4EJ8YxHn8DFaDisvhVlUOe4BF1tLD7GAj0lIqWVl+dPb/rExr0Btby5loQm20Q==",
+      "license": "ISC",
+      "bin": {
+        "semver": "bin/semver.js"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
     "node_modules/send": {
       "version": "1.2.0",
       "resolved": "https://registry.npmjs.org/send/-/send-1.2.0.tgz",

package.json CHANGED Viewed

@@ -21,7 +21,8 @@
   "dependencies": {
     "axios": "^1.13.2",
     "dotenv": "^17.2.3",
-    "express": "^5.1.0"
   },
   "engines": {
     "node": ">=18.0.0"

   "dependencies": {
     "axios": "^1.13.2",
     "dotenv": "^17.2.3",
+    "express": "^5.1.0",
+    "jsonwebtoken": "^9.0.2"
   },
   "engines": {
     "node": ">=18.0.0"

public/app.js ADDED Viewed

	@@ -0,0 +1,465 @@

+let authToken = localStorage.getItem('authToken');
+let oauthPort = null;
+const CLIENT_ID = '1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com';
+const SCOPES = [
+    'https://www.googleapis.com/auth/cloud-platform',
+    'https://www.googleapis.com/auth/userinfo.email',
+    'https://www.googleapis.com/auth/userinfo.profile',
+    'https://www.googleapis.com/auth/cclog',
+    'https://www.googleapis.com/auth/experimentsandconfigs'
+].join(' ');
+function showToast(message, type = 'info', title = '') {
+    const icons = { success: '✅', error: '❌', warning: '⚠️', info: 'ℹ️' };
+    const titles = { success: '成功', error: '错误', warning: '警告', info: '提示' };
+    const toast = document.createElement('div');
+    toast.className = `toast ${type}`;
+    toast.innerHTML = `
+        <div class="toast-icon">${icons[type]}</div>
+        <div class="toast-content">
+            <div class="toast-title">${title || titles[type]}</div>
+            <div class="toast-message">${message}</div>
+        </div>
+    `;
+    document.body.appendChild(toast);
+    setTimeout(() => {
+        toast.style.animation = 'slideOut 0.3s ease';
+        setTimeout(() => toast.remove(), 300);
+    }, 3000);
+}
+function showConfirm(message, title = '确认操作') {
+    return new Promise((resolve) => {
+        const modal = document.createElement('div');
+        modal.className = 'modal';
+        modal.innerHTML = `
+            <div class="modal-content">
+                <div class="modal-title">${title}</div>
+                <div class="modal-message">${message}</div>
+                <div class="modal-actions">
+                    <button class="btn btn-secondary" onclick="this.closest('.modal').remove(); window.modalResolve(false)">取消</button>
+                    <button class="btn btn-danger" onclick="this.closest('.modal').remove(); window.modalResolve(true)">确定</button>
+                </div>
+            </div>
+        `;
+        document.body.appendChild(modal);
+        modal.onclick = (e) => { if (e.target === modal) { modal.remove(); resolve(false); } };
+        window.modalResolve = resolve;
+    });
+}
+function showLoading(text = '处理中...') {
+    const overlay = document.createElement('div');
+    overlay.className = 'loading-overlay';
+    overlay.id = 'loadingOverlay';
+    overlay.innerHTML = `<div class="spinner"></div><div class="loading-text">${text}</div>`;
+    document.body.appendChild(overlay);
+}
+function hideLoading() {
+    const overlay = document.getElementById('loadingOverlay');
+    if (overlay) overlay.remove();
+}
+if (authToken) {
+    showMainContent();
+    loadTokens();
+    loadConfig();
+}
+document.getElementById('login').addEventListener('submit', async (e) => {
+    e.preventDefault();
+    const btn = e.target.querySelector('button[type="submit"]');
+    if (btn.disabled) return;
+    const username = document.getElementById('username').value;
+    const password = document.getElementById('password').value;
+    btn.disabled = true;
+    btn.classList.add('loading');
+    const originalText = btn.textContent;
+    btn.textContent = '登录中';
+    try {
+        const response = await fetch('/admin/login', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ username, password })
+        });
+        const data = await response.json();
+        if (data.success) {
+            authToken = data.token;
+            localStorage.setItem('authToken', authToken);
+            showToast('登录成功，欢迎回来！', 'success');
+            showMainContent();
+            loadTokens();
+        } else {
+            showToast(data.message || '用户名或密码错误', 'error');
+        }
+    } catch (error) {
+        showToast('登录失败: ' + error.message, 'error');
+    } finally {
+        btn.disabled = false;
+        btn.classList.remove('loading');
+        btn.textContent = originalText;
+    }
+});
+function showOAuthModal() {
+    showToast('点击后请在新窗口完成授权', 'info', '提示');
+    const modal = document.createElement('div');
+    modal.className = 'modal form-modal';
+    modal.innerHTML = `
+        <div class="modal-content">
+            <div class="modal-title">🔐 OAuth授权登录</div>
+            <div class="oauth-steps">
+                <p><strong>📝 授权流程：</strong></p>
+                <p>1️⃣ 点击下方按钮打开Google授权页面</p>
+                <p>2️⃣ 完成授权后，复制浏览器地址栏的完整URL</p>
+                <p>3️⃣ 粘贴URL到下方输入框并提交</p>
+            </div>
+            <button type="button" onclick="openOAuthWindow()" class="btn btn-success" style="width: 100%; margin-bottom: 16px;">🔐 打开授权页面</button>
+            <input type="text" id="modalCallbackUrl" placeholder="粘贴完整的回调URL (http://localhost:xxxxx/oauth-callback?code=...)">
+            <div class="modal-actions">
+                <button class="btn btn-secondary" onclick="this.closest('.modal').remove()">取消</button>
+                <button class="btn btn-success" onclick="processOAuthCallbackModal()">✅ 提交</button>
+            </div>
+        </div>
+    `;
+    document.body.appendChild(modal);
+    modal.onclick = (e) => { if (e.target === modal) modal.remove(); };
+}
+function showManualModal() {
+    const modal = document.createElement('div');
+    modal.className = 'modal form-modal';
+    modal.innerHTML = `
+        <div class="modal-content">
+            <div class="modal-title">✏️ 手动填入Token</div>
+            <div class="form-row">
+                <input type="text" id="modalAccessToken" placeholder="Access Token (必填)">
+                <input type="text" id="modalRefreshToken" placeholder="Refresh Token (必填)">
+                <input type="number" id="modalExpiresIn" placeholder="过期时间(秒)" value="3599">
+            </div>
+            <p style="font-size: 0.85rem; color: var(--text-light); margin-bottom: 16px;">💡 提示：过期时间默认3599秒(约1小时)</p>
+            <div class="modal-actions">
+                <button class="btn btn-secondary" onclick="this.closest('.modal').remove()">取消</button>
+                <button class="btn btn-success" onclick="addTokenFromModal()">✅ 添加</button>
+            </div>
+        </div>
+    `;
+    document.body.appendChild(modal);
+    modal.onclick = (e) => { if (e.target === modal) modal.remove(); };
+}
+function openOAuthWindow() {
+    oauthPort = Math.floor(Math.random() * 10000) + 50000;
+    const redirectUri = `http://localhost:${oauthPort}/oauth-callback`;
+    const authUrl = `https://accounts.google.com/o/oauth2/v2/auth?` +
+        `access_type=offline&client_id=${CLIENT_ID}&prompt=consent&` +
+        `redirect_uri=${encodeURIComponent(redirectUri)}&response_type=code&` +
+        `scope=${encodeURIComponent(SCOPES)}&state=${Date.now()}`;
+    window.open(authUrl, '_blank');
+}
+async function processOAuthCallbackModal() {
+    const modal = document.querySelector('.form-modal');
+    const callbackUrl = document.getElementById('modalCallbackUrl').value.trim();
+    if (!callbackUrl) {
+        showToast('请输入回调URL', 'warning');
+        return;
+    }
+    showLoading('正在处理授权...');
+    try {
+        const url = new URL(callbackUrl);
+        const code = url.searchParams.get('code');
+        const port = new URL(url.origin).port || (url.protocol === 'https:' ? 443 : 80);
+        if (!code) {
+            hideLoading();
+            showToast('URL中未找到授权码，请检查URL是否完整', 'error');
+            return;
+        }
+        const response = await fetch('/admin/oauth/exchange', {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${authToken}`
+            },
+            body: JSON.stringify({ code, port })
+        });
+        const result = await response.json();
+        if (result.success) {
+            const account = result.data;
+            const addResponse = await fetch('/admin/tokens', {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    'Authorization': `Bearer ${authToken}`
+                },
+                body: JSON.stringify(account)
+            });
+            const addResult = await addResponse.json();
+            hideLoading();
+            if (addResult.success) {
+                modal.remove();
+                showToast('Token添加成功！', 'success');
+                loadTokens();
+            } else {
+                showToast('Token添加失败: ' + addResult.message, 'error');
+            }
+        } else {
+            hideLoading();
+            showToast('Token交换失败: ' + result.message, 'error');
+        }
+    } catch (error) {
+        hideLoading();
+        showToast('处理失败: ' + error.message, 'error');
+    }
+}
+async function addTokenFromModal() {
+    const modal = document.querySelector('.form-modal');
+    const accessToken = document.getElementById('modalAccessToken').value.trim();
+    const refreshToken = document.getElementById('modalRefreshToken').value.trim();
+    const expiresIn = parseInt(document.getElementById('modalExpiresIn').value);
+    if (!accessToken || !refreshToken) {
+        showToast('请填写完整的Token信息', 'warning');
+        return;
+    }
+    showLoading('正在添加Token...');
+    try {
+        const response = await fetch('/admin/tokens', {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${authToken}`
+            },
+            body: JSON.stringify({ access_token: accessToken, refresh_token: refreshToken, expires_in: expiresIn })
+        });
+        const data = await response.json();
+        hideLoading();
+        if (data.success) {
+            modal.remove();
+            showToast('Token添加成功！', 'success');
+            loadTokens();
+        } else {
+            showToast(data.message || '添加失败', 'error');
+        }
+    } catch (error) {
+        hideLoading();
+        showToast('添加失败: ' + error.message, 'error');
+    }
+}
+function showMainContent() {
+    document.getElementById('loginForm').classList.add('hidden');
+    document.getElementById('mainContent').classList.remove('hidden');
+}
+function switchTab(tab) {
+    document.querySelectorAll('.tab').forEach(t => t.classList.remove('active'));
+    event.target.classList.add('active');
+    if (tab === 'tokens') {
+        document.getElementById('tokensPage').classList.remove('hidden');
+        document.getElementById('settingsPage').classList.add('hidden');
+    } else if (tab === 'settings') {
+        document.getElementById('tokensPage').classList.add('hidden');
+        document.getElementById('settingsPage').classList.remove('hidden');
+        loadConfig();
+    }
+}
+async function logout() {
+    const confirmed = await showConfirm('确定要退出登录吗？', '退出确认');
+    if (!confirmed) return;
+    localStorage.removeItem('authToken');
+    authToken = null;
+    document.getElementById('loginForm').classList.remove('hidden');
+    document.getElementById('mainContent').classList.add('hidden');
+    showToast('已退出登录', 'info');
+}
+async function loadTokens() {
+    try {
+        const response = await fetch('/admin/tokens', {
+            headers: { 'Authorization': `Bearer ${authToken}` }
+        });
+        if (response.status === 401) {
+            logout();
+            return;
+        }
+        const data = await response.json();
+        if (data.success) {
+            renderTokens(data.data);
+        } else {
+            showToast('加载失败: ' + (data.message || '未知错误'), 'error');
+        }
+    } catch (error) {
+        showToast('加载Token失败: ' + error.message, 'error');
+    }
+}
+function renderTokens(tokens) {
+    document.getElementById('totalTokens').textContent = tokens.length;
+    document.getElementById('enabledTokens').textContent = tokens.filter(t => t.enable).length;
+    document.getElementById('disabledTokens').textContent = tokens.filter(t => !t.enable).length;
+    const tokenList = document.getElementById('tokenList');
+    if (tokens.length === 0) {
+        tokenList.innerHTML = `
+            <div class="empty-state">
+                <div class="empty-state-icon">📦</div>
+                <div class="empty-state-text">暂无Token</div>
+                <div class="empty-state-hint">点击上方按钮添加您的第一个Token</div>
+            </div>
+        `;
+        return;
+    }
+    tokenList.innerHTML = tokens.map(token => `
+        <div class="token-card">
+            <div class="token-header">
+                <span class="status ${token.enable ? 'enabled' : 'disabled'}">
+                    ${token.enable ? '✅ 启用' : '❌ 禁用'}
+                </span>
+                <span class="token-id">#${token.refresh_token.substring(0, 8)}</span>
+            </div>
+            <div class="token-info">
+                <div class="info-row">
+                    <span class="info-label">🎫 Access</span>
+                    <span class="info-value">${token.access_token_suffix}</span>
+                </div>
+                <div class="info-row">
+                    <span class="info-label">📦 Project</span>
+                    <span class="info-value">${token.projectId || 'N/A'}</span>
+                </div>
+                <div class="info-row">
+                    <span class="info-label">⏰ 过期</span>
+                    <span class="info-value">${new Date(token.timestamp + token.expires_in * 1000).toLocaleString('zh-CN', {month: '2-digit', day: '2-digit', hour: '2-digit', minute: '2-digit'})}</span>
+                </div>
+            </div>
+            <div class="token-actions">
+                <button class="btn ${token.enable ? 'btn-warning' : 'btn-success'}" onclick="toggleToken('${token.refresh_token}', ${!token.enable})">
+                    ${token.enable ? '⏸️ 禁用' : '▶️ 启用'}
+                </button>
+                <button class="btn btn-danger" onclick="deleteToken('${token.refresh_token}')">🗑️ 删除</button>
+            </div>
+        </div>
+    `).join('');
+}
+async function toggleToken(refreshToken, enable) {
+    const action = enable ? '启用' : '禁用';
+    const confirmed = await showConfirm(`确定要${action}这个Token吗？`, `${action}确认`);
+    if (!confirmed) return;
+    showLoading(`正在${action}Token...`);
+    try {
+        const response = await fetch(`/admin/tokens/${encodeURIComponent(refreshToken)}`, {
+            method: 'PUT',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${authToken}`
+            },
+            body: JSON.stringify({ enable })
+        });
+        const data = await response.json();
+        hideLoading();
+        if (data.success) {
+            showToast(`Token已${enable ? '启用' : '禁用'}`, 'success');
+            loadTokens();
+        } else {
+            showToast(data.message || '操作失败', 'error');
+        }
+    } catch (error) {
+        hideLoading();
+        showToast('操作失败: ' + error.message, 'error');
+    }
+}
+async function deleteToken(refreshToken) {
+    const confirmed = await showConfirm('删除后无法恢复，确定要删除这个Token吗？', '⚠️ 删除确认');
+    if (!confirmed) return;
+    showLoading('正在删除Token...');
+    try {
+        const response = await fetch(`/admin/tokens/${encodeURIComponent(refreshToken)}`, {
+            method: 'DELETE',
+            headers: { 'Authorization': `Bearer ${authToken}` }
+        });
+        const data = await response.json();
+        hideLoading();
+        if (data.success) {
+            showToast('Token已删除', 'success');
+            loadTokens();
+        } else {
+            showToast(data.message || '删除失败', 'error');
+        }
+    } catch (error) {
+        hideLoading();
+        showToast('删除失败: ' + error.message, 'error');
+    }
+}
+async function loadConfig() {
+    try {
+        const response = await fetch('/admin/config', {
+            headers: { 'Authorization': `Bearer ${authToken}` }
+        });
+        const data = await response.json();
+        if (data.success) {
+            const form = document.getElementById('configForm');
+            Object.entries(data.data).forEach(([key, value]) => {
+                const input = form.elements[key];
+                if (input) input.value = value || '';
+            });
+        }
+    } catch (error) {
+        showToast('加载配置失败: ' + error.message, 'error');
+    }
+}
+document.getElementById('configForm').addEventListener('submit', async (e) => {
+    e.preventDefault();
+    const formData = new FormData(e.target);
+    const config = Object.fromEntries(formData);
+    showLoading('正在保存配置...');
+    try {
+        const response = await fetch('/admin/config', {
+            method: 'PUT',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${authToken}`
+            },
+            body: JSON.stringify(config)
+        });
+        const data = await response.json();
+        hideLoading();
+        if (data.success) {
+            showToast(data.message, 'success');
+        } else {
+            showToast(data.message || '保存失败', 'error');
+        }
+    } catch (error) {
+        hideLoading();
+        showToast('保存失败: ' + error.message, 'error');
+    }
+});

public/index.html ADDED Viewed

	@@ -0,0 +1,112 @@

+<!DOCTYPE html>
+<html lang="zh-CN">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no">
+    <title>Token 管理系统</title>
+    <link rel="stylesheet" href="style.css">
+</head>
+<body>
+    <div class="container">
+        <!-- 登录表单 -->
+        <div id="loginForm" class="login-form">
+            <h2>🔐 Token 管理系统</h2>
+            <form id="login">
+                <div class="form-group">
+                    <label>👤 用户名</label>
+                    <input type="text" id="username" required autocomplete="username">
+                </div>
+                <div class="form-group">
+                    <label>🔑 密码</label>
+                    <input type="password" id="password" required autocomplete="current-password">
+                </div>
+                <button type="submit">登录</button>
+            </form>
+        </div>
+        <!-- 主内容 -->
+        <div id="mainContent" class="main-content hidden">
+            <div class="header">
+                <div class="tabs">
+                    <button class="tab active" onclick="switchTab('tokens')">🎯 Token管理</button>
+                    <button class="tab" onclick="switchTab('settings')">⚙️ 设置</button>
+                </div>
+                <button onclick="logout()">🚪 退出</button>
+            </div>
+            <div class="content">
+                <!-- Token管理页面 -->
+                <div id="tokensPage">
+                <!-- 统计卡片 -->
+                <div class="stats">
+                    <div class="stat-card">
+                        <div class="stat-value" id="totalTokens">0</div>
+                        <div class="stat-label">总Token数</div>
+                    </div>
+                    <div class="stat-card" style="background: linear-gradient(135deg, var(--success), #059669);">
+                        <div class="stat-value" id="enabledTokens">0</div>
+                        <div class="stat-label">已启用</div>
+                    </div>
+                    <div class="stat-card" style="background: linear-gradient(135deg, var(--danger), #dc2626);">
+                        <div class="stat-value" id="disabledTokens">0</div>
+                        <div class="stat-label">已禁用</div>
+                    </div>
+                </div>
+                <!-- 添加Token按钮组 -->
+                <div class="add-form">
+                    <h3>➕ 添加新Token<span class="help-tip" title="支持OAuth登录或手动填入Token">?</span></h3>
+                    <div class="btn-group">
+                        <button type="button" onclick="showOAuthModal()" class="btn btn-success">🔐 OAuth登录</button>
+                        <button type="button" onclick="showManualModal()" class="btn btn-secondary">✏️ 手动填入</button>
+                        <button type="button" onclick="loadTokens()" class="btn btn-warning">🔄 刷新</button>
+                    </div>
+                </div>
+                <!-- Token网格 -->
+                <div id="tokenList" class="token-grid">
+                    <div class="empty-state">
+                        <div class="empty-state-icon">📦</div>
+                        <div class="empty-state-text">暂无Token</div>
+                        <div class="empty-state-hint">点击上方按钮添加您的第一个Token</div>
+                    </div>
+                </div>
+                </div>
+                <!-- 设置页面 -->
+                <div id="settingsPage" class="hidden">
+                    <h3>⚙️ 系统配置</h3>
+                    <form id="configForm" class="config-form">
+                        <div class="config-section">
+                            <h4>服务器配置</h4>
+                            <div class="form-group"><label>端口 PORT</label><input type="number" name="PORT"></div>
+                            <div class="form-group"><label>监听地址 HOST</label><input type="text" name="HOST"></div>
+                        </div>
+                        <div class="config-section">
+                            <h4>默认参数</h4>
+                            <div class="form-group"><label>温度 TEMPERATURE</label><input type="number" step="0.1" name="DEFAULT_TEMPERATURE"></div>
+                            <div class="form-group"><label>Top P</label><input type="number" step="0.01" name="DEFAULT_TOP_P"></div>
+                            <div class="form-group"><label>Top K</label><input type="number" name="DEFAULT_TOP_K"></div>
+                            <div class="form-group"><label>最大Token数</label><input type="number" name="DEFAULT_MAX_TOKENS"></div>
+                        </div>
+                        <div class="config-section">
+                            <h4>安全配置</h4>
+                            <div class="form-group"><label>API密钥</label><input type="text" name="API_KEY"></div>
+                            <div class="form-group"><label>最大请求大小</label><input type="text" name="MAX_REQUEST_SIZE"></div>
+                        </div>
+                        <div class="config-section">
+                            <h4>其他配置</h4>
+                            <div class="form-group"><label>超时时间(ms)</label><input type="number" name="TIMEOUT"></div>
+                            <div class="form-group"><label>代理地址</label><input type="text" name="PROXY" placeholder="http://127.0.0.1:7897"></div>
+                            <div class="form-group"><label>跳过ProjectId验证</label><select name="SKIP_PROJECT_ID_FETCH"><option value="false">否</option><option value="true">是</option></select></div>
+                            <div class="form-group"><label>系统提示词</label><textarea name="SYSTEM_INSTRUCTION" rows="3"></textarea></div>
+                        </div>
+                        <button type="submit" class="btn btn-success">💾 保存配置</button>
+                    </form>
+                </div>
+            </div>
+        </div>
+    </div>
+    <script src="app.js"></script>
+</body>
+</html>

public/style.css ADDED Viewed

	@@ -0,0 +1,165 @@

+:root {
+    --primary: #6366f1;
+    --primary-dark: #4f46e5;
+    --success: #10b981;
+    --danger: #ef4444;
+    --warning: #f59e0b;
+    --info: #3b82f6;
+    --bg: #f8fafc;
+    --card: #ffffff;
+    --text: #1e293b;
+    --text-light: #64748b;
+    --border: #e2e8f0;
+    --shadow: 0 4px 6px -1px rgba(0,0,0,0.1), 0 2px 4px -1px rgba(0,0,0,0.06);
+}
+@media (prefers-color-scheme: dark) {
+    :root {
+        --bg: #0f172a;
+        --card: #1e293b;
+        --text: #f1f5f9;
+        --text-light: #94a3b8;
+        --border: #334155;
+    }
+}
+.toast { position: fixed; top: 20px; right: 20px; background: var(--card); border-radius: 12px; padding: 16px 20px; box-shadow: 0 10px 40px rgba(0,0,0,0.2); z-index: 9999; display: flex; align-items: center; gap: 12px; min-width: 280px; max-width: 400px; animation: slideIn 0.3s ease; border-left: 4px solid var(--primary); }
+.toast.success { border-left-color: var(--success); }
+.toast.error { border-left-color: var(--danger); }
+.toast.warning { border-left-color: var(--warning); }
+.toast.info { border-left-color: var(--info); }
+.toast-icon { font-size: 24px; flex-shrink: 0; }
+.toast-content { flex: 1; }
+.toast-title { font-weight: 600; margin-bottom: 4px; color: var(--text); }
+.toast-message { font-size: 14px; color: var(--text-light); }
+@keyframes slideIn { from { transform: translateX(400px); opacity: 0; } to { transform: translateX(0); opacity: 1; } }
+@keyframes slideOut { from { transform: translateX(0); opacity: 1; } to { transform: translateX(400px); opacity: 0; } }
+.modal { position: fixed; inset: 0; background: rgba(0,0,0,0.5); z-index: 9998; display: flex; align-items: center; justify-content: center; padding: 20px; animation: fadeIn 0.2s; }
+.modal-content { background: var(--card); border-radius: 16px; padding: 24px; max-width: 400px; width: 100%; box-shadow: 0 20px 60px rgba(0,0,0,0.3); animation: scaleIn 0.2s; }
+.modal-title { font-size: 20px; font-weight: 700; margin-bottom: 12px; color: var(--text); }
+.modal-message { color: var(--text-light); margin-bottom: 24px; line-height: 1.6; }
+.modal-actions { display: flex; gap: 12px; }
+.modal-actions button { flex: 1; }
+.form-modal .modal-content { max-width: 500px; }
+.form-modal input { margin-bottom: 12px; }
+.form-modal .form-row { display: flex; flex-direction: column; gap: 12px; margin-bottom: 16px; }
+.form-modal .oauth-steps { background: rgba(59,130,246,0.1); padding: 16px; border-radius: 8px; margin-bottom: 16px; border: 2px solid var(--info); }
+.form-modal .oauth-steps p { margin-bottom: 8px; font-size: 14px; }
+.form-modal .oauth-steps p:last-child { margin-bottom: 0; }
+@keyframes fadeIn { from { opacity: 0; } to { opacity: 1; } }
+@keyframes scaleIn { from { transform: scale(0.9); opacity: 0; } to { transform: scale(1); opacity: 1; } }
+.loading-overlay { position: fixed; inset: 0; background: rgba(0,0,0,0.7); z-index: 9999; display: flex; align-items: center; justify-content: center; flex-direction: column; gap: 16px; }
+.spinner { width: 48px; height: 48px; border: 4px solid rgba(255,255,255,0.2); border-top-color: white; border-radius: 50%; animation: spin 0.8s linear infinite; }
+.loading-text { color: white; font-size: 16px; font-weight: 500; }
+.help-tip { display: inline-flex; align-items: center; justify-content: center; width: 18px; height: 18px; border-radius: 50%; background: var(--info); color: white; font-size: 12px; font-weight: 600; cursor: help; margin-left: 6px; }
+.empty-state { text-align: center; padding: 60px 20px; color: var(--text-light); }
+.empty-state-icon { font-size: 64px; margin-bottom: 16px; opacity: 0.5; }
+.empty-state-text { font-size: 18px; font-weight: 500; margin-bottom: 8px; }
+.empty-state-hint { font-size: 14px; }
+* { margin: 0; padding: 0; box-sizing: border-box; }
+body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; background: var(--bg); color: var(--text); line-height: 1.6; transition: background 0.3s; min-height: 100vh; }
+.container { max-width: 1400px; margin: 0 auto; padding: 1rem; height: 100vh; display: flex; align-items: center; justify-content: center; }
+.login-form { background: var(--card); border-radius: 1.5rem; box-shadow: var(--shadow); max-width: 480px; width: 100%; padding: 3rem; }
+.login-form h2 { text-align: center; margin-bottom: 2.5rem; background: linear-gradient(135deg, var(--primary), var(--primary-dark)); -webkit-background-clip: text; -webkit-text-fill-color: transparent; background-clip: text; font-size: 2rem; font-weight: 700; }
+.form-group { margin-bottom: 1.5rem; }
+label { display: block; margin-bottom: 0.75rem; font-weight: 600; color: var(--text); font-size: 0.95rem; }
+input { width: 100%; min-height: 48px; padding: 0.875rem 1rem; border: 2px solid var(--border); border-radius: 0.75rem; font-size: 0.95rem; line-height: 1.5; background: var(--card); color: var(--text); transition: all 0.2s; text-indent: 0.25rem; -webkit-appearance: none; }
+input:focus { outline: none; border-color: var(--primary); box-shadow: 0 0 0 4px rgba(99,102,241,0.1); }
+input::placeholder { color: var(--text-light); opacity: 0.6; }
+button { width: 100%; min-height: 52px; padding: 1rem; background: linear-gradient(135deg, var(--primary), var(--primary-dark)); color: white; border: none; border-radius: 0.75rem; cursor: pointer; font-size: 1.05rem; font-weight: 600; letter-spacing: 0.5px; transition: all 0.2s; box-shadow: 0 4px 12px rgba(99,102,241,0.2); position: relative; }
+button:hover:not(:disabled) { transform: translateY(-2px); box-shadow: 0 8px 24px rgba(99,102,241,0.35); }
+button:active:not(:disabled) { transform: translateY(0); box-shadow: 0 2px 8px rgba(99,102,241,0.25); }
+button:disabled { opacity: 0.7; cursor: not-allowed; }
+button.loading::after { content: ''; position: absolute; width: 16px; height: 16px; margin-left: 10px; border: 2px solid rgba(255,255,255,0.3); border-top-color: white; border-radius: 50%; animation: spin 0.6s linear infinite; }
+@keyframes spin { to { transform: rotate(360deg); } }
+.main-content { background: var(--card); border-radius: 1.5rem; box-shadow: var(--shadow); width: 100%; max-width: 1400px; height: calc(100vh - 2rem); display: flex; flex-direction: column; }
+.header { display: flex; justify-content: space-between; align-items: center; padding: 1.5rem 2rem; border-bottom: 2px solid var(--border); flex-shrink: 0; }
+.header h1 { font-size: 1.75rem; background: linear-gradient(135deg, var(--primary), var(--primary-dark)); -webkit-background-clip: text; -webkit-text-fill-color: transparent; background-clip: text; font-weight: 700; }
+.header button { width: auto; padding: 0.625rem 1.5rem; font-size: 0.9rem; }
+.tabs { display: flex; gap: 0.5rem; }
+.tab { background: transparent; color: var(--text-light); border: none; padding: 0.625rem 1.25rem; border-radius: 0.5rem; cursor: pointer; font-weight: 600; transition: all 0.2s; }
+.tab:hover { background: var(--bg); color: var(--text); }
+.tab.active { background: linear-gradient(135deg, var(--primary), var(--primary-dark)); color: white; box-shadow: 0 2px 8px rgba(99,102,241,0.3); }
+.content { padding: 2rem; flex: 1; overflow-y: auto; }
+.content::-webkit-scrollbar { width: 8px; }
+.content::-webkit-scrollbar-track { background: var(--bg); border-radius: 4px; }
+.content::-webkit-scrollbar-thumb { background: var(--border); border-radius: 4px; }
+.content::-webkit-scrollbar-thumb:hover { background: var(--text-light); }
+.add-form { background: var(--bg); padding: 1.5rem; border-radius: 1rem; margin-bottom: 2rem; border: 2px solid var(--border); }
+.add-form h3 { margin-bottom: 1.25rem; font-size: 1.25rem; font-weight: 600; }
+.btn-group { display: flex; gap: 0.75rem; margin-bottom: 1.25rem; flex-wrap: wrap; }
+.btn-group .btn { width: auto; flex: 1; min-width: 140px; }
+.oauth-box { background: rgba(251,191,36,0.1); padding: 1.5rem; border-radius: 1rem; margin-bottom: 1.25rem; border: 2px solid var(--warning); }
+.oauth-box p { margin-bottom: 1rem; color: var(--text); font-size: 0.95rem; }
+.form-row { display: flex; gap: 0.75rem; margin-bottom: 1rem; flex-wrap: wrap; }
+.form-row input { flex: 1; min-width: 200px; }
+.token-grid { display: grid; grid-template-columns: repeat(auto-fill, minmax(380px, 1fr)); gap: 1.25rem; }
+.token-card { background: var(--bg); border: 2px solid var(--border); border-radius: 1rem; padding: 1.5rem; transition: all 0.3s; position: relative; overflow: hidden; }
+.token-card::before { content: ''; position: absolute; top: 0; left: 0; right: 0; height: 4px; background: linear-gradient(90deg, var(--primary), var(--primary-dark)); opacity: 0; transition: opacity 0.3s; }
+.token-card:hover { border-color: var(--primary); box-shadow: var(--shadow); transform: translateY(-2px); }
+.token-card:hover::before { opacity: 1; }
+.token-header { display: flex; justify-content: space-between; align-items: center; margin-bottom: 1rem; }
+.token-id { font-size: 0.75rem; color: var(--text-light); font-family: monospace; }
+.token-info { display: flex; flex-direction: column; gap: 0.75rem; margin-bottom: 1.25rem; }
+.info-row { display: flex; align-items: center; gap: 0.5rem; font-size: 0.875rem; }
+.info-label { color: var(--text-light); min-width: 80px; font-weight: 500; }
+.info-value { color: var(--text); font-family: monospace; font-size: 0.8rem; }
+.token-actions { display: grid; grid-template-columns: 1fr 1fr; gap: 0.5rem; }
+.btn { padding: 0.625rem 1rem; border: none; border-radius: 0.5rem; cursor: pointer; font-size: 0.875rem; font-weight: 600; transition: all 0.2s; white-space: nowrap; text-align: center; }
+.btn:hover { transform: translateY(-1px); }
+.btn-danger { background: var(--danger); color: white; }
+.btn-warning { background: var(--warning); color: white; }
+.btn-success { background: var(--success); color: white; }
+.btn-secondary { background: #6b7280; color: white; }
+.hidden { display: none; }
+.status { padding: 0.375rem 0.875rem; border-radius: 9999px; font-size: 0.75rem; font-weight: 600; display: inline-flex; align-items: center; gap: 0.25rem; }
+.status.enabled { background: rgba(16,185,129,0.15); color: var(--success); }
+.status.disabled { background: rgba(239,68,68,0.15); color: var(--danger); }
+.stats { display: flex; gap: 1.5rem; margin-bottom: 2rem; flex-wrap: wrap; }
+.stat-card { flex: 1; min-width: 150px; background: linear-gradient(135deg, var(--primary), var(--primary-dark)); padding: 1.25rem; border-radius: 1rem; color: white; }
+.stat-value { font-size: 2rem; font-weight: 700; margin-bottom: 0.25rem; }
+.stat-label { font-size: 0.875rem; opacity: 0.9; }
+.config-form { max-width: 800px; }
+.config-form h3 { margin-bottom: 1.5rem; font-size: 1.5rem; }
+.config-section { background: var(--bg); padding: 1.5rem; border-radius: 1rem; margin-bottom: 1.5rem; border: 2px solid var(--border); }
+.config-section h4 { margin-bottom: 1rem; color: var(--primary); font-size: 1.1rem; }
+.config-form .form-group { margin-bottom: 1rem; }
+.config-form label { display: block; margin-bottom: 0.5rem; font-weight: 600; font-size: 0.9rem; }
+.config-form input, .config-form select, .config-form textarea { width: 100%; padding: 0.75rem; border: 2px solid var(--border); border-radius: 0.5rem; background: var(--card); color: var(--text); font-size: 0.9rem; }
+.config-form textarea { resize: vertical; font-family: inherit; }
+.config-form button[type="submit"] { margin-top: 1rem; }
+@media (max-width: 768px) {
+    .container { padding: 0; height: 100vh; }
+    .login-form { margin: 1rem; padding: 2rem; border-radius: 1rem; }
+    .login-form h2 { font-size: 1.5rem; }
+    .main-content { height: 100vh; border-radius: 0; }
+    .header { padding: 1rem; flex-wrap: wrap; gap: 1rem; }
+    .header h1 { font-size: 1.25rem; }
+    .tabs { width: 100%; }
+    .tab { flex: 1; }
+    .content { padding: 1rem; }
+    .token-grid { grid-template-columns: 1fr; }
+    .form-row { flex-direction: column; }
+    .form-row input { min-width: 100%; }
+    .btn-group { flex-direction: column; }
+    .btn-group .btn { width: 100%; }
+    .stats { flex-direction: column; }
+    .toast { right: 10px; left: 10px; min-width: auto; max-width: none; }
+    .modal { padding: 10px; }
+}

src/auth/jwt.js ADDED Viewed

	@@ -0,0 +1,27 @@

+import jwt from 'jsonwebtoken';
+import config from '../config/config.js';
+export const generateToken = (payload) => {
+  return jwt.sign(payload, config.admin.jwtSecret, { expiresIn: '24h' });
+};
+export const verifyToken = (token) => {
+  return jwt.verify(token, config.admin.jwtSecret);
+};
+export const authMiddleware = (req, res, next) => {
+  const authHeader = req.headers.authorization;
+  const token = authHeader?.startsWith('Bearer ') ? authHeader.slice(7) : null;
+  if (!token) {
+    return res.status(401).json({ error: 'Token required' });
+  }
+  try {
+    const decoded = verifyToken(token);
+    req.user = decoded;
+    next();
+  } catch (error) {
+    return res.status(401).json({ error: 'Invalid token' });
+  }
+};

src/auth/token_manager.js CHANGED Viewed

@@ -189,6 +189,100 @@ class TokenManager {
       this.disableToken(found);
     }
   }
 }
 const tokenManager = new TokenManager();
 export default tokenManager;

       this.disableToken(found);
     }
   }
+  // API管理方法
+  async reload() {
+    await this.initialize();
+    log.info('Token已热重载');
+  }
+  addToken(tokenData) {
+    try {
+      const data = fs.readFileSync(this.filePath, 'utf8');
+      const allTokens = JSON.parse(data);
+      const newToken = {
+        access_token: tokenData.access_token,
+        refresh_token: tokenData.refresh_token,
+        expires_in: tokenData.expires_in || 3599,
+        timestamp: tokenData.timestamp || Date.now(),
+        enable: tokenData.enable !== undefined ? tokenData.enable : true
+      };
+      if (tokenData.projectId) {
+        newToken.projectId = tokenData.projectId;
+      }
+      allTokens.push(newToken);
+      fs.writeFileSync(this.filePath, JSON.stringify(allTokens, null, 2), 'utf8');
+      this.reload();
+      return { success: true, message: 'Token添加成功' };
+    } catch (error) {
+      log.error('添加Token失败:', error.message);
+      return { success: false, message: error.message };
+    }
+  }
+  updateToken(refreshToken, updates) {
+    try {
+      const data = fs.readFileSync(this.filePath, 'utf8');
+      const allTokens = JSON.parse(data);
+      const index = allTokens.findIndex(t => t.refresh_token === refreshToken);
+      if (index === -1) {
+        return { success: false, message: 'Token不存在' };
+      }
+      allTokens[index] = { ...allTokens[index], ...updates };
+      fs.writeFileSync(this.filePath, JSON.stringify(allTokens, null, 2), 'utf8');
+      this.reload();
+      return { success: true, message: 'Token更新成功' };
+    } catch (error) {
+      log.error('更新Token失败:', error.message);
+      return { success: false, message: error.message };
+    }
+  }
+  deleteToken(refreshToken) {
+    try {
+      const data = fs.readFileSync(this.filePath, 'utf8');
+      const allTokens = JSON.parse(data);
+      const filteredTokens = allTokens.filter(t => t.refresh_token !== refreshToken);
+      if (filteredTokens.length === allTokens.length) {
+        return { success: false, message: 'Token不存在' };
+      }
+      fs.writeFileSync(this.filePath, JSON.stringify(filteredTokens, null, 2), 'utf8');
+      this.reload();
+      return { success: true, message: 'Token删除成功' };
+    } catch (error) {
+      log.error('删除Token失败:', error.message);
+      return { success: false, message: error.message };
+    }
+  }
+  getTokenList() {
+    try {
+      const data = fs.readFileSync(this.filePath, 'utf8');
+      const allTokens = JSON.parse(data);
+      return allTokens.map(token => ({
+        refresh_token: token.refresh_token,
+        access_token_suffix: token.access_token ? `...${token.access_token.slice(-8)}` : 'N/A',
+        expires_in: token.expires_in,
+        timestamp: token.timestamp,
+        enable: token.enable !== false,
+        projectId: token.projectId || null
+      }));
+    } catch (error) {
+      log.error('获取Token列表失败:', error.message);
+      return [];
+    }
+  }
 }
 const tokenManager = new TokenManager();
 export default tokenManager;

src/config/config.js CHANGED Viewed

@@ -24,6 +24,11 @@ DEFAULT_MAX_TOKENS=8096
 MAX_REQUEST_SIZE=50mb
 API_KEY=sk-text
 # 其他配置
 USE_NATIVE_AXIOS=false
 TIMEOUT=180000
@@ -67,6 +72,11 @@ const config = {
     maxRequestSize: process.env.MAX_REQUEST_SIZE || '50mb',
     apiKey: process.env.API_KEY || null
   },
   useNativeAxios: process.env.USE_NATIVE_AXIOS !== 'false',
   timeout: parseInt(process.env.TIMEOUT) || 30000,
   proxy: process.env.PROXY || null,

 MAX_REQUEST_SIZE=50mb
 API_KEY=sk-text
+# 管理员认证
+ADMIN_USERNAME=admin
+ADMIN_PASSWORD=admin123
+JWT_SECRET=your-jwt-secret-key-change-this-in-production
 # 其他配置
 USE_NATIVE_AXIOS=false
 TIMEOUT=180000
     maxRequestSize: process.env.MAX_REQUEST_SIZE || '50mb',
     apiKey: process.env.API_KEY || null
   },
+  admin: {
+    username: process.env.ADMIN_USERNAME || 'admin',
+    password: process.env.ADMIN_PASSWORD || 'admin123',
+    jwtSecret: process.env.JWT_SECRET || 'your-jwt-secret-key-change-this-in-production'
+  },
   useNativeAxios: process.env.USE_NATIVE_AXIOS !== 'false',
   timeout: parseInt(process.env.TIMEOUT) || 30000,
   proxy: process.env.PROXY || null,

src/routes/admin.js ADDED Viewed

	@@ -0,0 +1,214 @@

+import express from 'express';
+import { generateToken, authMiddleware } from '../auth/jwt.js';
+import tokenManager from '../auth/token_manager.js';
+import config from '../config/config.js';
+import logger from '../utils/logger.js';
+import { generateProjectId } from '../utils/idGenerator.js';
+import axios from 'axios';
+import fs from 'fs';
+import path from 'path';
+import { fileURLToPath } from 'url';
+import dotenv from 'dotenv';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envPath = path.join(__dirname, '../../.env');
+const router = express.Router();
+// 登录接口
+router.post('/login', (req, res) => {
+  const { username, password } = req.body;
+  if (username === config.admin.username && password === config.admin.password) {
+    const token = generateToken({ username, role: 'admin' });
+    res.json({ success: true, token });
+  } else {
+    res.status(401).json({ success: false, message: '用户名或密码错误' });
+  }
+});
+// Token管理API - 需要JWT认证
+router.get('/tokens', authMiddleware, (req, res) => {
+  const tokens = tokenManager.getTokenList();
+  res.json({ success: true, data: tokens });
+});
+router.post('/tokens', authMiddleware, (req, res) => {
+  const { access_token, refresh_token, expires_in, timestamp, enable, projectId } = req.body;
+  if (!access_token || !refresh_token) {
+    return res.status(400).json({ success: false, message: 'access_token和refresh_token必填' });
+  }
+  const tokenData = { access_token, refresh_token, expires_in };
+  if (timestamp) tokenData.timestamp = timestamp;
+  if (enable !== undefined) tokenData.enable = enable;
+  if (projectId) tokenData.projectId = projectId;
+  const result = tokenManager.addToken(tokenData);
+  res.json(result);
+});
+router.put('/tokens/:refreshToken', authMiddleware, (req, res) => {
+  const { refreshToken } = req.params;
+  const updates = req.body;
+  const result = tokenManager.updateToken(refreshToken, updates);
+  res.json(result);
+});
+router.delete('/tokens/:refreshToken', authMiddleware, (req, res) => {
+  const { refreshToken } = req.params;
+  const result = tokenManager.deleteToken(refreshToken);
+  res.json(result);
+});
+router.post('/tokens/reload', authMiddleware, async (req, res) => {
+  try {
+    await tokenManager.reload();
+    res.json({ success: true, message: 'Token已热重载' });
+  } catch (error) {
+    logger.error('热重载失败:', error.message);
+    res.status(500).json({ success: false, message: error.message });
+  }
+});
+router.post('/oauth/exchange', authMiddleware, async (req, res) => {
+  const { code, port } = req.body;
+  if (!code || !port) {
+    return res.status(400).json({ success: false, message: 'code和port必填' });
+  }
+  const CLIENT_ID = '1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com';
+  const CLIENT_SECRET = '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';
+  try {
+    const postData = new URLSearchParams({
+      code,
+      client_id: CLIENT_ID,
+      client_secret: CLIENT_SECRET,
+      redirect_uri: `http://localhost:${port}/oauth-callback`,
+      grant_type: 'authorization_code'
+    });
+    const response = await fetch('https://oauth2.googleapis.com/token', {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
+      body: postData.toString()
+    });
+    const tokenData = await response.json();
+    if (!tokenData.access_token) {
+      return res.status(400).json({ success: false, message: 'Token交换失败' });
+    }
+    const account = {
+      access_token: tokenData.access_token,
+      refresh_token: tokenData.refresh_token,
+      expires_in: tokenData.expires_in,
+      timestamp: Date.now(),
+      enable: true
+    };
+    if (config.skipProjectIdFetch) {
+      account.projectId = generateProjectId();
+      logger.info('使用随机生成的projectId: ' + account.projectId);
+    } else {
+      try {
+        const projectResponse = await axios({
+          method: 'POST',
+          url: 'https://daily-cloudcode-pa.sandbox.googleapis.com/v1internal:loadCodeAssist',
+          headers: {
+            'Host': 'daily-cloudcode-pa.sandbox.googleapis.com',
+            'User-Agent': 'antigravity/1.11.9 windows/amd64',
+            'Authorization': `Bearer ${account.access_token}`,
+            'Content-Type': 'application/json',
+            'Accept-Encoding': 'gzip'
+          },
+          data: JSON.stringify({ metadata: { ideType: 'ANTIGRAVITY' } }),
+          timeout: config.timeout,
+          proxy: config.proxy ? (() => {
+            const proxyUrl = new URL(config.proxy);
+            return { protocol: proxyUrl.protocol.replace(':', ''), host: proxyUrl.hostname, port: parseInt(proxyUrl.port) };
+          })() : false
+        });
+        const projectId = projectResponse.data?.cloudaicompanionProject;
+        if (projectId === undefined) {
+          return res.status(400).json({ success: false, message: '该��号无资格使用（无法获取projectId）' });
+        }
+        account.projectId = projectId;
+        logger.info('账号验证通过，projectId: ' + projectId);
+      } catch (error) {
+        logger.error('验证账号资格失败:', error.message);
+        return res.status(500).json({ success: false, message: '验证账号资格失败: ' + error.message });
+      }
+    }
+    res.json({ success: true, data: account });
+  } catch (error) {
+    logger.error('Token交换失败:', error.message);
+    res.status(500).json({ success: false, message: error.message });
+  }
+});
+// 获取配置
+router.get('/config', authMiddleware, (req, res) => {
+  try {
+    const envContent = fs.readFileSync(envPath, 'utf8');
+    const configData = {};
+    envContent.split('\n').forEach(line => {
+      line = line.trim();
+      if (line && !line.startsWith('#')) {
+        const [key, ...valueParts] = line.split('=');
+        if (key) configData[key.trim()] = valueParts.join('=').trim();
+      }
+    });
+    res.json({ success: true, data: configData });
+  } catch (error) {
+    logger.error('读取配置失败:', error.message);
+    res.status(500).json({ success: false, message: error.message });
+  }
+});
+// 更新配置
+router.put('/config', authMiddleware, (req, res) => {
+  try {
+    const updates = req.body;
+    let envContent = fs.readFileSync(envPath, 'utf8');
+    Object.entries(updates).forEach(([key, value]) => {
+      const regex = new RegExp(`^${key}=.*$`, 'm');
+      if (regex.test(envContent)) {
+        envContent = envContent.replace(regex, `${key}=${value}`);
+      } else {
+        envContent += `\n${key}=${value}`;
+      }
+    });
+    fs.writeFileSync(envPath, envContent, 'utf8');
+    // 重新加载环境变量
+    dotenv.config({ override: true });
+    // 更新config对象
+    config.server.port = parseInt(process.env.PORT) || 8045;
+    config.server.host = process.env.HOST || '127.0.0.1';
+    config.defaults.temperature = parseFloat(process.env.DEFAULT_TEMPERATURE) || 1;
+    config.defaults.top_p = parseFloat(process.env.DEFAULT_TOP_P) || 0.85;
+    config.defaults.top_k = parseInt(process.env.DEFAULT_TOP_K) || 50;
+    config.defaults.max_tokens = parseInt(process.env.DEFAULT_MAX_TOKENS) || 8096;
+    config.security.apiKey = process.env.API_KEY || null;
+    config.timeout = parseInt(process.env.TIMEOUT) || 30000;
+    config.proxy = process.env.PROXY || null;
+    config.systemInstruction = process.env.SYSTEM_INSTRUCTION || '';
+    config.skipProjectIdFetch = process.env.SKIP_PROJECT_ID_FETCH === 'true';
+    logger.info('配置已更新并热重载');
+    res.json({ success: true, message: '配置已保存并生效（端口/HOST修改需重启）' });
+  } catch (error) {
+    logger.error('更新配置失败:', error.message);
+    res.status(500).json({ success: false, message: error.message });
+  }
+});
+export default router;

src/server/index.js CHANGED Viewed

@@ -6,6 +6,7 @@ import { generateRequestBody } from '../utils/utils.js';
 import logger from '../utils/logger.js';
 import config from '../config/config.js';
 import tokenManager from '../auth/token_manager.js';
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
@@ -48,8 +49,12 @@ const endStream = (res, id, created, model, finish_reason) => {
 app.use(express.json({ limit: config.security.maxRequestSize }));
-// 静态文件服务：提供图片访问
 app.use('/images', express.static(path.join(__dirname, '../../public/images')));
 app.use((err, req, res, next) => {
   if (err.type === 'entity.too.large') {
@@ -59,7 +64,8 @@ app.use((err, req, res, next) => {
 });
 app.use((req, res, next) => {
-  if (!req.path.startsWith('/images' || !req.path.startsWith('/favicon.ico'))) {
     const start = Date.now();
     res.on('finish', () => {
       logger.request(req.method, req.path, res.statusCode, Date.now() - start);
@@ -93,6 +99,8 @@ app.get('/v1/models', async (req, res) => {
   }
 });
 app.post('/v1/chat/completions', async (req, res) => {
   const { messages, model, stream = true, tools, ...params} = req.body;
   try {

 import logger from '../utils/logger.js';
 import config from '../config/config.js';
 import tokenManager from '../auth/token_manager.js';
+import adminRouter from '../routes/admin.js';
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
 app.use(express.json({ limit: config.security.maxRequestSize }));
+// 静态文件服务
 app.use('/images', express.static(path.join(__dirname, '../../public/images')));
+app.use(express.static(path.join(__dirname, '../../public')));
+// 管理路由
+app.use('/admin', adminRouter);
 app.use((err, req, res, next) => {
   if (err.type === 'entity.too.large') {
 });
 app.use((req, res, next) => {
+  const ignorePaths = ['/images', '/favicon.ico', '/.well-known'];
+  if (!ignorePaths.some(path => req.path.startsWith(path))) {
     const start = Date.now();
     res.on('finish', () => {
       logger.request(req.method, req.path, res.statusCode, Date.now() - start);
   }
 });
 app.post('/v1/chat/completions', async (req, res) => {
   const { messages, model, stream = true, tools, ...params} = req.body;
   try {