wood/aimodels-prices
1
0
Fork 0
mirror of https://github.com/woodchen-ink/aimodels-prices.git synced 2025-07-18 13:41:59 +08:00
Code Issues Packages Projects Releases Wiki Activity
aimodels-prices/main.ts

1172 lines
44 KiB
TypeScript
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

/// <reference types="https://deno.land/x/types/deno.ns.d.ts" />
import { serve, crypto, base64Decode } from "./deps.ts";
// 声明 Deno 命名空间
declare namespace Deno {
interface Kv {
get(key: unknown[]): Promise<{ value: any }>;
set(key: unknown[], value: unknown, options?: { expireIn?: number }): Promise<void>;
delete(key: unknown[]): Promise<void>;
}
interface Env {
get(key: string): string | undefined;
}
const env: Env;
const exit: (code: number) => never;
const openKv: () => Promise<Kv>;
}
// 类型定义
interface Vendor {
id: number;
name: string;
icon: string;
}
interface VendorResponse {
data: {
[key: string]: Vendor;
};
}
interface Price {
id?: string;
model: string;
billing_type: 'tokens' | 'times';
channel_type: number;
currency: 'CNY' | 'USD';
input_price: number;
output_price: number;
input_ratio: number;
output_ratio: number;
price_source: string;
status: 'pending' | 'approved' | 'rejected';
created_by: string;
created_at: string;
reviewed_by?: string;
reviewed_at?: string;
}
// 声明全局变量
declare const vendors: { [key: string]: Vendor };
// 缓存供应商数据
let vendorsCache: VendorResponse | null = null;
let vendorsCacheTime: number = 0;
const CACHE_DURATION = 1000 * 60 * 5; // 5分钟缓存
// 初始化 KV 存储
let kv: Deno.Kv;
try {
kv = await Deno.openKv();
} catch (error) {
console.error('初始化 KV 存储失败:', error);
Deno.exit(1);
}
// 获取供应商数据
async function getVendors(): Promise<VendorResponse> {
const now = Date.now();
if (vendorsCache && (now - vendorsCacheTime) < CACHE_DURATION) {
return vendorsCache;
}
try {
const response = await fetch('https://oapi.czl.net/api/ownedby');
const data = await response.json() as VendorResponse;
vendorsCache = data;
vendorsCacheTime = now;
return data;
} catch (error) {
console.error('获取供应商数据失败:', error);
throw new Error('获取供应商数据失败');
}
}
// 计算倍率
function calculateRatio(price: number, currency: 'CNY' | 'USD'): number {
return currency === 'USD' ? price / 2 : price / 14;
}
// 修改验证价格数据函数
function validatePrice(data: any): string | null {
console.log('验证数据:', data); // 添加日志
if (!data.model || !data.billing_type || !data.channel_type ||
!data.currency || data.input_price === undefined || data.output_price === undefined ||
!data.price_source) {
return "所有字段都是必需的";
}
if (data.billing_type !== 'tokens' && data.billing_type !== 'times') {
return "计费类型必须是 tokens 或 times";
}
if (data.currency !== 'CNY' && data.currency !== 'USD') {
return "币种必须是 CNY 或 USD";
}
const channel_type = Number(data.channel_type);
const input_price = Number(data.input_price);
const output_price = Number(data.output_price);
if (isNaN(channel_type) || isNaN(input_price) || isNaN(output_price)) {
return "价格和供应商ID必须是数字";
}
if (channel_type < 0 || input_price < 0 || output_price < 0) {
return "价格和供应商ID不能为负数";
}
return null;
}
// 添加 Discourse SSO 配置
const DISCOURSE_URL = Deno.env.get('DISCOURSE_URL') || 'https://discourse.czl.net';
const DISCOURSE_SSO_SECRET = Deno.env.get('DISCOURSE_SSO_SECRET');
// 验证必需的环境变量
if (!DISCOURSE_SSO_SECRET) {
console.error('错误: 必须设置 DISCOURSE_SSO_SECRET 环境变量');
Deno.exit(1);
}
// 添加认证相关函数
async function verifyDiscourseSSO(request: Request): Promise<string | null> {
const cookie = request.headers.get('cookie');
if (!cookie) return null;
const sessionMatch = cookie.match(/session=([^;]+)/);
if (!sessionMatch) return null;
const sessionId = sessionMatch[1];
const session = await kv.get(['sessions', sessionId]);
if (!session.value) return null;
return session.value.username;
}
// 修改 generateSSO 函数
async function generateSSO(returnUrl: string): Promise<string> {
const encoder = new TextEncoder();
const nonce = crypto.randomUUID();
const rawPayload = `nonce=${nonce}&return_sso_url=${encodeURIComponent(returnUrl)}`;
const base64Payload = btoa(rawPayload);
const key = await crypto.subtle.importKey(
"raw",
encoder.encode(DISCOURSE_SSO_SECRET),
{ name: "HMAC", hash: "SHA-256" },
false,
["sign"]
);
const signature = await crypto.subtle.sign(
"HMAC",
key,
encoder.encode(base64Payload)
);
const sig = Array.from(new Uint8Array(signature))
.map(b => b.toString(16).padStart(2, '0'))
.join('');
// 存储 nonce 用于验证回调
await kv.set(['sso_nonce', nonce], {
return_url: returnUrl,
created_at: new Date().toISOString()
}, { expireIn: 5 * 60 * 1000 }); // 5分钟过期
return `${DISCOURSE_URL}/session/sso_provider?sso=${encodeURIComponent(base64Payload)}&sig=${sig}`;
}
// HTML 页面
const html = `<!DOCTYPE html>
<html>
<head>
<title>AI Models Price API</title>
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css" rel="stylesheet">
<link href="https://cdn.jsdelivr.net/npm/@fortawesome/fontawesome-free@6.0.0/css/all.min.css" rel="stylesheet">
<link href="https://cdn.jsdelivr.net/npm/animate.css@4.1.1/animate.min.css" rel="stylesheet">
<style>
body {
font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
line-height: 1.6;
padding: 20px;
background-color: #f7f9fc;
color: #2c3e50;
}
.container {
max-width: 1200px;
margin: 0 auto;
}
.card {
background-color: white;
border-radius: 12px;
box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
margin-bottom: 20px;
}
.vendor-icon {
width: 24px;
height: 24px;
margin-right: 8px;
vertical-align: middle;
}
.badge {
font-size: 0.8em;
padding: 5px 10px;
color: white !important;
font-weight: 500;
}
.badge-tokens {
background-color: #4CAF50 !important;
}
.badge-times {
background-color: #2196F3 !important;
}
.badge-pending {
background-color: #FFC107 !important;
color: #000 !important;
}
.badge-approved {
background-color: #4CAF50 !important;
}
.badge-rejected {
background-color: #F44336 !important;
}
.table th {
white-space: nowrap;
}
.source-link {
max-width: 200px;
overflow: hidden;
text-overflow: ellipsis;
white-space: nowrap;
display: inline-block;
}
#loginStatus {
margin-bottom: 20px;
}
.animate__animated {
animation-duration: 0.5s;
}
.table-hover tbody tr:hover {
background-color: rgba(26, 115, 232, 0.05);
transition: background-color 0.2s ease;
}
.nav-tabs .nav-link {
border: none;
color: #666;
padding: 1rem 1.5rem;
font-weight: 500;
transition: all 0.2s ease;
}
.nav-tabs .nav-link.active {
color: #1a73e8;
border-bottom: 2px solid #1a73e8;
background: none;
}
.loading-spinner {
width: 3rem;
height: 3rem;
}
.toast {
position: fixed;
top: 20px;
right: 20px;
z-index: 1050;
}
.vendor-icon {
transition: transform 0.2s ease;
}
.vendor-icon:hover {
transform: scale(1.2);
}
.badge {
transition: all 0.2s ease;
}
.badge:hover {
transform: translateY(-1px);
box-shadow: 0 2px 4px rgba(0,0,0,0.1);
}
/* 添加状态说明 */
.status-legend {
margin-top: 1rem;
padding: 1rem;
background-color: #f8f9fa;
border-radius: 0.5rem;
}
.status-legend .badge {
margin-right: 0.5rem;
}
.status-legend-item {
display: inline-block;
margin-right: 1.5rem;
}
</style>
</head>
<body>
<div class="container">
<nav class="navbar navbar-expand-lg navbar-light bg-white rounded shadow-sm mb-4">
<div class="container-fluid">
<a class="navbar-brand" href="#">
<i class="fas fa-robot text-primary me-2"></i>
AI Models Price
</a>
<div class="d-flex align-items-center">
<div id="loginStatus"></div>
</div>
</div>
</nav>
<div class="row">
<div class="col-12">
<ul class="nav nav-tabs mb-4">
<li class="nav-item">
<a class="nav-link active" href="#prices" data-bs-toggle="tab">
<i class="fas fa-table me-2"></i>价格列表
</a>
</li>
<li class="nav-item">
<a class="nav-link" href="#submit" data-bs-toggle="tab">
<i class="fas fa-plus-circle me-2"></i>提交价格
</a>
</li>
</ul>
<div class="tab-content">
<div class="tab-pane fade show active" id="prices">
<div class="card shadow-sm">
<div class="card-body">
<div class="table-responsive">
<table class="table table-hover align-middle">
<thead class="table-light">
<tr>
<th>模型名称</th>
<th>计费类型</th>
<th>供应商</th>
<th>币种</th>
<th>输入价格(M)</th>
<th>输出价格(M)</th>
<th>输入倍率</th>
<th>输出倍率</th>
<th>价格依据</th>
<th>状态</th>
<th>操作</th>
</tr>
</thead>
<tbody id="priceTable">
<tr>
<td colspan="11" class="text-center py-5">
<div class="spinner-border text-primary loading-spinner" role="status">
<span class="visually-hidden">加载中...</span>
</div>
</td>
</tr>
</tbody>
</table>
</div>
<!-- 添加状态说明 -->
<div class="status-legend">
<h6 class="mb-2">状态说明:</h6>
<div class="status-legend-item">
<span class="badge badge-pending">待审核</span>
新提交的价格记录
</div>
<div class="status-legend-item">
<span class="badge badge-approved">已通过</span>
管理员审核通过
</div>
<div class="status-legend-item">
<span class="badge badge-rejected">已拒绝</span>
管理员拒绝
</div>
</div>
</div>
</div>
</div>
<div class="tab-pane fade" id="submit">
<div class="card shadow-sm">
<div class="card-body">
<form id="newPriceForm" class="needs-validation" novalidate>
<div class="row">
<div class="col-md-6 mb-3">
<label class="form-label">模型名称</label>
<input type="text" class="form-control" name="model" required>
</div>
<div class="col-md-6 mb-3">
<label class="form-label">计费类型</label>
<select class="form-select" name="billing_type" required>
<option value="tokens">按量计费(tokens)</option>
<option value="times">按次计费(times)</option>
</select>
</div>
<div class="col-md-6 mb-3">
<label class="form-label">供应商</label>
<select class="form-select" name="channel_type" required>
<option value="">选择供应商...</option>
</select>
</div>
<div class="col-md-6 mb-3">
<label class="form-label">币种</label>
<select class="form-select" name="currency" required>
<option value="CNY">人民币</option>
<option value="USD">美元</option>
</select>
</div>
<div class="col-md-6 mb-3">
<label class="form-label">输入价格(M)</label>
<input type="number" class="form-control" name="input_price" step="0.0001" min="0" required>
</div>
<div class="col-md-6 mb-3">
<label class="form-label">输出价格(M)</label>
<input type="number" class="form-control" name="output_price" step="0.0001" min="0" required>
</div>
<div class="col-12 mb-3">
<label class="form-label">价格依据(官方文档链接)</label>
<input type="url" class="form-control" name="price_source" required>
</div>
</div>
<button type="submit" class="btn btn-primary">提交价格</button>
</form>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- Toast 提示 -->
<div class="toast-container">
<div class="toast align-items-center text-white bg-success border-0" role="alert" aria-live="assertive" aria-atomic="true">
<div class="d-flex">
<div class="toast-body"></div>
<button type="button" class="btn-close btn-close-white me-2 m-auto" data-bs-dismiss="toast"></button>
</div>
</div>
</div>
</div>
<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js"></script>
<script>
let currentUser = null;
let vendors = null;
// 检查登录状态
async function checkLoginStatus() {
try {
const response = await fetch('/api/auth/status', {
credentials: 'include'
});
const data = await response.json();
currentUser = data.user;
updateLoginUI();
} catch (error) {
console.error('检查登录状态失败:', error);
showToast('检查登录状态失败', 'danger');
}
}
// 更新登录UI
function updateLoginUI() {
const loginStatus = document.getElementById('loginStatus');
const submitTab = document.querySelector('a[href="#submit"]');
if (currentUser) {
loginStatus.innerHTML = `
<span class="me-2">, ${currentUser}</span>
<button onclick="logout()" class="btn btn-outline-danger btn-sm">退</button>
`;
submitTab.style.display = 'block';
// 重新加载价格数据以更新操作列
loadPrices();
} else {
loginStatus.innerHTML = '<button onclick="login()" class="btn btn-primary btn-sm">通过 Discourse 登录</button>';
submitTab.style.display = 'none';
// 重新加载价格数据以隐藏操作列
loadPrices();
}
}
// 加载供应商数据
async function loadVendors() {
try {
const response = await fetch('https://oapi.czl.net/api/ownedby');
const data = await response.json();
vendors = data.data;
// 更新供应商选择框
const select = document.querySelector('select[name="channel_type"]');
Object.entries(vendors).forEach(([id, vendor]) => {
const option = document.createElement('option');
option.value = id;
option.textContent = vendor.name;
select.appendChild(option);
});
} catch (error) {
console.error('加载供应商数据失败:', error);
}
}
// 修改表格头部的渲染
function updateTableHeader() {
const thead = document.querySelector('table thead tr');
if (!thead) return;
const columns = [
{ title: '模型名称', always: true },
{ title: '计费类型', always: true },
{ title: '供应商', always: true },
{ title: '币种', always: true },
{ title: '输入价格(M)', always: true },
{ title: '输出价格(M)', always: true },
{ title: '输入倍率', always: true },
{ title: '输出倍率', always: true },
{ title: '价格依据', always: true },
{ title: '状态', always: true },
{ title: '操作', always: false }
];
thead.innerHTML = columns
.filter(col => col.always || (currentUser === 'wood'))
.map(col => `<th>${col.title}</th>`).join('');
}
// 修改加载价格数据函数
function loadPrices() {
const priceTable = document.getElementById('priceTable');
const tbody = priceTable?.querySelector('tbody');
if (!tbody) return;
tbody.innerHTML = '<tr><td colspan="11" class="text-center">加载中...</td></tr>';
fetch('/api/prices', {
credentials: 'include'
})
.then(response => {
if (!response.ok) {
throw new Error('HTTP error! status: ' + response.status);
}
return response.json();
})
.then(data => {
tbody.innerHTML = '';
if (!data || !Array.isArray(data)) {
tbody.innerHTML = '<tr><td colspan="11" class="text-center">加载失败</td></tr>';
return;
}
data.forEach(price => {
const tr = document.createElement('tr');
const safePrice = {
...price,
input_ratio: price.input_ratio || 1,
output_ratio: price.output_ratio || 1,
status: price.status || 'pending'
};
const vendorData = vendors[String(safePrice.channel_type)];
const currentUser = localStorage.getItem('username');
// 创建单元格
const modelCell = document.createElement('td');
modelCell.textContent = safePrice.model;
const billingTypeCell = document.createElement('td');
const billingTypeBadge = document.createElement('span');
billingTypeBadge.className = `badge badge-${safePrice.billing_type}`;
billingTypeBadge.textContent = safePrice.billing_type === 'tokens' ? '按量计费' : '按次计费';
billingTypeCell.appendChild(billingTypeBadge);
const vendorCell = document.createElement('td');
if (vendorData) {
const vendorIcon = document.createElement('img');
vendorIcon.src = vendorData.icon;
vendorIcon.className = 'vendor-icon';
vendorIcon.alt = vendorData.name;
vendorIcon.onerror = () => { vendorIcon.style.display = 'none'; };
vendorCell.appendChild(vendorIcon);
vendorCell.appendChild(document.createTextNode(vendorData.name));
} else {
vendorCell.textContent = '未知供应商';
}
const currencyCell = document.createElement('td');
currencyCell.textContent = safePrice.currency;
const inputPriceCell = document.createElement('td');
inputPriceCell.textContent = String(safePrice.input_price);
const outputPriceCell = document.createElement('td');
outputPriceCell.textContent = String(safePrice.output_price);
const inputRatioCell = document.createElement('td');
inputRatioCell.textContent = safePrice.input_ratio.toFixed(4);
const outputRatioCell = document.createElement('td');
outputRatioCell.textContent = safePrice.output_ratio.toFixed(4);
const sourceCell = document.createElement('td');
const sourceLink = document.createElement('a');
sourceLink.href = safePrice.price_source;
sourceLink.className = 'source-link';
sourceLink.target = '_blank';
sourceLink.textContent = '查看来源';
sourceCell.appendChild(sourceLink);
const statusCell = document.createElement('td');
const statusBadge = document.createElement('span');
statusBadge.className = `badge badge-${safePrice.status}`;
statusBadge.textContent = getStatusText(safePrice.status);
statusCell.appendChild(statusBadge);
// 添加所有单元格
tr.appendChild(modelCell);
tr.appendChild(billingTypeCell);
tr.appendChild(vendorCell);
tr.appendChild(currencyCell);
tr.appendChild(inputPriceCell);
tr.appendChild(outputPriceCell);
tr.appendChild(inputRatioCell);
tr.appendChild(outputRatioCell);
tr.appendChild(sourceCell);
tr.appendChild(statusCell);
// 只有管理员才添加操作列
if (currentUser === 'wood' && safePrice.status === 'pending') {
const operationCell = document.createElement('td');
const approveButton = document.createElement('button');
approveButton.className = 'btn btn-success btn-sm';
approveButton.textContent = '通过';
approveButton.onclick = () => reviewPrice(safePrice.id || '', 'approved');
const rejectButton = document.createElement('button');
rejectButton.className = 'btn btn-danger btn-sm';
rejectButton.textContent = '拒绝';
rejectButton.onclick = () => reviewPrice(safePrice.id || '', 'rejected');
operationCell.appendChild(approveButton);
operationCell.appendChild(rejectButton);
tr.appendChild(operationCell);
}
tbody.appendChild(tr);
});
})
.catch(error => {
console.error('加载价格数据失败:', error);
tbody.innerHTML = '<tr><td colspan="11" class="text-center">加载失败: ' + error.message + '</tr>';
showToast('加载价格数据失败', 'danger');
});
}
// 修改提交新价格函数
document.getElementById('newPriceForm').onsubmit = async (e) => {
e.preventDefault();
const formData = new FormData(e.target);
const data = Object.fromEntries(formData.entries());
try {
const response = await fetch('/api/prices', {
method: 'POST',
credentials: 'include',
headers: { 'Content-Type': 'application/json' },
body: JSON.stringify(data)
});
if (response.ok) {
showToast('提交成功,等待审核', 'success');
e.target.reset();
loadPrices();
} else {
const error = await response.json();
showToast(error.message || '提交失败', 'danger');
}
} catch (error) {
console.error('提交价格失败:', error);
showToast('提交失败', 'danger');
}
};
// 修改审核价格函数
async function reviewPrice(id, status) {
try {
const response = await fetch('/api/prices/' + id + '/review', {
method: 'POST',
credentials: 'include',
headers: { 'Content-Type': 'application/json' },
body: JSON.stringify({ status })
});
if (response.ok) {
showToast('审核成功', 'success');
loadPrices();
} else {
const error = await response.json();
showToast(error.message || '审核失败', 'danger');
}
} catch (error) {
console.error('审核价格失败:', error);
showToast('审核失败', 'danger');
}
}
// 初始化
async function init() {
await Promise.all([
checkLoginStatus(),
loadVendors()
]);
loadPrices();
}
// 添加 Toast 提示函数
function showToast(message, type = 'success') {
const toast = document.querySelector('.toast');
toast.className = `toast align-items-center text-white bg-${type} border-0`;
toast.querySelector('.toast-body').textContent = message;
const bsToast = new bootstrap.Toast(toast);
bsToast.show();
}
// 修改登录函数
function login() {
const returnUrl = window.location.origin + '/auth/callback';
window.location.href = '/api/auth/login?return_url=' + encodeURIComponent(returnUrl);
}
// 修改登出函数
async function logout() {
try {
await fetch('/api/auth/logout', {
method: 'POST',
credentials: 'include'
});
window.location.reload();
} catch (error) {
console.error('登出失败:', error);
showToast('登出失败', 'danger');
}
}
// 修改状态显示文本
function getStatusText(status) {
switch(status) {
case 'pending': return '待审核';
case 'approved': return '已通过';
case 'rejected': return '已拒绝';
default: return status;
}
}
init();
</script>
</body>
</html>`;
// 读取价格数据
async function readPrices(): Promise<Price[]> {
try {
const prices = await kv.get(["prices"]);
return prices.value || [];
} catch (error) {
console.error('读取价格数据失败:', error);
return [];
}
}
// 写入价格数据
async function writePrices(prices: Price[]): Promise<void> {
try {
await kv.set(["prices"], prices);
} catch (error) {
console.error('写入价格数据失败:', error);
throw new Error('写入价格数据失败');
}
}
// 修改验证函数
function validateData(data: any): string | null {
if (!data.model || !data.type || data.channel_type === undefined || data.input === undefined || data.output === undefined) {
return "所有字段都是必需的";
}
// 确保数字字段是数字类型
const channel_type = Number(data.channel_type);
const input = Number(data.input);
const output = Number(data.output);
if (isNaN(channel_type) || isNaN(input) || isNaN(output)) {
return "数字字段格式无效";
}
// 验证数字范围允许等于0
if (channel_type < 0 || input < 0 || output < 0) {
return "数字不能小于0";
}
return null;
}
// 修改处理函数
async function handler(req: Request): Promise<Response> {
const headers = {
"Access-Control-Allow-Origin": "https://aimodels-price.deno.dev",
"Access-Control-Allow-Methods": "GET, POST, OPTIONS, PUT, DELETE",
"Access-Control-Allow-Headers": "Content-Type, Cookie, Authorization",
"Access-Control-Allow-Credentials": "true",
"Access-Control-Max-Age": "86400"
};
const jsonHeaders = {
...headers,
"Content-Type": "application/json"
};
const htmlHeaders = {
...headers,
"Content-Type": "text/html; charset=utf-8"
};
try {
const url = new URL(req.url);
// 处理预检请求
if (req.method === "OPTIONS") {
return new Response(null, {
status: 204,
headers
});
}
// 认证状态检查
if (url.pathname === "/api/auth/status") {
try {
const username = await verifyDiscourseSSO(req);
return new Response(JSON.stringify({
authenticated: !!username,
user: username
}), { headers: jsonHeaders });
} catch (error) {
console.error('验证用户状态失败:', error);
return new Response(JSON.stringify({
error: "验证用户状态失败",
details: error.message
}), {
status: 500,
headers: jsonHeaders
});
}
}
// 登录处理
if (url.pathname === "/api/auth/login") {
const params = new URLSearchParams(url.search);
const returnUrl = params.get('return_url');
if (!returnUrl) {
return new Response(JSON.stringify({ error: "缺少 return_url 参数" }), {
status: 400,
headers: jsonHeaders
});
}
const ssoUrl = await generateSSO(returnUrl);
return new Response(null, {
status: 302,
headers: {
...headers,
"Location": ssoUrl
}
});
}
// SSO 回调处理
if (url.pathname === "/auth/callback") {
const params = new URLSearchParams(url.search);
const sso = params.get('sso');
const sig = params.get('sig');
if (!sso || !sig) {
return new Response("Invalid SSO parameters", {
status: 400,
headers: {
"Content-Type": "text/plain",
...headers
}
});
}
try {
// 验证签名
const key = await crypto.subtle.importKey(
"raw",
new TextEncoder().encode(DISCOURSE_SSO_SECRET),
{ name: "HMAC", hash: "SHA-256" },
false,
["sign"]
);
const signature = await crypto.subtle.sign(
"HMAC",
key,
new TextEncoder().encode(sso)
);
const expectedSig = Array.from(new Uint8Array(signature))
.map(b => b.toString(16).padStart(2, '0'))
.join('');
if (sig !== expectedSig) {
throw new Error('Invalid signature');
}
// 解码 payload
const payload = atob(sso);
const payloadParams = new URLSearchParams(payload);
// 验证 nonce
const nonce = payloadParams.get('nonce');
if (!nonce) {
throw new Error('Missing nonce');
}
const nonceData = await kv.get(['sso_nonce', nonce]);
if (!nonceData.value) {
throw new Error('Invalid or expired nonce');
}
// 删除已使用的 nonce
await kv.delete(['sso_nonce', nonce]);
const username = payloadParams.get('username');
if (!username) {
throw new Error('Missing username');
}
// 设置 session cookie
const sessionId = crypto.randomUUID();
await kv.set(['sessions', sessionId], {
username,
created_at: new Date().toISOString()
}, { expireIn: 24 * 60 * 60 * 1000 }); // 24小时过期
return new Response(null, {
status: 302,
headers: {
...headers,
"Location": "/",
"Set-Cookie": `session=${sessionId}; Path=/; HttpOnly; SameSite=Lax; Max-Age=86400`
}
});
} catch (error) {
console.error('SSO 回调处理失败:', error);
return new Response("SSO verification failed: " + error.message, {
status: 400,
headers: {
"Content-Type": "text/plain",
...headers
}
});
}
}
// 登出处理
if (url.pathname === "/api/auth/logout" && req.method === "POST") {
const cookie = req.headers.get('cookie');
if (cookie) {
const sessionMatch = cookie.match(/session=([^;]+)/);
if (sessionMatch) {
const sessionId = sessionMatch[1];
await kv.delete(['sessions', sessionId]);
}
}
return new Response(JSON.stringify({ success: true }), {
headers: {
...jsonHeaders,
"Set-Cookie": "session=; Path=/; HttpOnly; SameSite=Lax; Max-Age=0"
}
});
}
// 价格审核
if (url.pathname.match(/^\/api\/prices\/\d+\/review$/)) {
const username = await verifyDiscourseSSO(req);
if (!username || username !== 'wood') {
return new Response(JSON.stringify({ error: "未授权" }), {
status: 403,
headers: jsonHeaders
});
}
if (req.method === "POST") {
try {
const id = url.pathname.split('/')[3];
const { status } = await req.json();
if (status !== 'approved' && status !== 'rejected') {
throw new Error("无效的状态");
}
const prices = await readPrices();
const priceIndex = prices.findIndex(p => p.id === id);
if (priceIndex === -1) {
throw new Error("价格记录不存在");
}
prices[priceIndex].status = status;
prices[priceIndex].reviewed_by = username;
prices[priceIndex].reviewed_at = new Date().toISOString();
await writePrices(prices);
return new Response(JSON.stringify({ success: true }), {
headers: jsonHeaders
});
} catch (error) {
return new Response(JSON.stringify({
error: error.message || "审核失败"
}), {
status: 400,
headers: jsonHeaders
});
}
}
}
// 提交新价格
if (url.pathname === "/api/prices" && req.method === "POST") {
const username = await verifyDiscourseSSO(req);
if (!username) {
return new Response(JSON.stringify({ error: "请先登录" }), {
status: 401,
headers: jsonHeaders
});
}
try {
let rawData;
const contentType = req.headers.get("content-type") || "";
if (contentType.includes("application/json")) {
rawData = await req.json();
} else if (contentType.includes("application/x-www-form-urlencoded")) {
const formData = await req.formData();
rawData = {};
for (const [key, value] of formData.entries()) {
rawData[key] = value;
}
} else {
throw new Error("不支持的内容类型");
}
console.log('接收到的数据:', rawData); // 添加日志
// 处理数据
const newPrice: Price = {
model: String(rawData.model).trim(),
billing_type: rawData.billing_type as 'tokens' | 'times',
channel_type: Number(rawData.channel_type),
currency: rawData.currency as 'CNY' | 'USD',
input_price: Number(rawData.input_price),
output_price: Number(rawData.output_price),
input_ratio: calculateRatio(Number(rawData.input_price), rawData.currency as 'CNY' | 'USD'),
output_ratio: calculateRatio(Number(rawData.output_price), rawData.currency as 'CNY' | 'USD'),
price_source: String(rawData.price_source),
status: 'pending',
created_by: username,
created_at: new Date().toISOString()
};
console.log('处理后的数据:', newPrice); // 添加日志
// 验证数据
const error = validatePrice(newPrice);
if (error) {
return new Response(JSON.stringify({ error }), {
status: 400,
headers: jsonHeaders
});
}
// 读取现有数据
const prices = await readPrices();
// 生成唯一ID
newPrice.id = Date.now().toString();
// 添加新数据
prices.push(newPrice);
// 保存数据
await writePrices(prices);
return new Response(JSON.stringify({
success: true,
data: newPrice
}), {
headers: jsonHeaders
});
} catch (error) {
console.error("处理价格提交失败:", error);
return new Response(JSON.stringify({
error: error.message,
details: "数据处理失败,请检查输入格式"
}), {
status: 500,
headers: jsonHeaders
});
}
}
// 获取价格列表
if (url.pathname === "/api/prices" && req.method === "GET") {
try {
const prices = await readPrices();
return new Response(JSON.stringify(prices), {
headers: jsonHeaders
});
} catch (error) {
console.error('获取价格列表失败:', error);
return new Response(JSON.stringify({
error: "获取价格列表失败",
details: error.message
}), {
status: 500,
headers: jsonHeaders
});
}
}
// 提供静态页面
if (url.pathname === "/" || url.pathname === "/index.html") {
return new Response(html, {
headers: htmlHeaders
});
}
return new Response("Not Found", {
status: 404,
headers: {
...headers,
"Content-Type": "text/plain"
}
});
} catch (error) {
console.error('处理请求失败:', error);
return new Response(JSON.stringify({
error: "处理请求失败",
details: error.message
}), {
status: 500,
headers: jsonHeaders
});
}
}
// 启动服务器
serve(handler);
Reference in New Issue View Git Blame Copy Permalink