├── .gitignore
├── src
    ├── config.js
    ├── cache
    │   ├── redis.js
    │   ├── index.js
    │   └── stats.js
    ├── index.js
    ├── utils
    │   └── helpers.js
    ├── pages
    │   ├── status.js
    │   ├── admin.js
    │   └── docs.js
    ├── handlers
    │   ├── proxy.js
    │   └── api.js
    └── db
    │   └── supabase.js
├── package.json
├── wrangler.toml
├── LICENSE
├── wrangler.toml.example
├── eslint.config.js
├── CLAUDE.md
├── README.md
└── schema.sql


/.gitignore:
--------------------------------------------------------------------------------
 1 | # 环境变量
 2 | .env
 3 | .dev.vars
 4 | 
 5 | # Wrangler
 6 | .wrangler/
 7 | wrangler.toml.local
 8 | wrangler.toml.backup
 9 | 
10 | # 构建产物
11 | anyrouter.js
12 | _worker.js
13 | 
14 | # Node
15 | node_modules/
16 | 
17 | # 编辑器
18 | .vscode/
19 | .idea/
20 | *.swp
21 | *.swo
22 | *~
23 | 
24 | # 操作系统
25 | .DS_Store
26 | Thumbs.db
27 | 
28 | # 日志
29 | *.log
30 | npm-debug.log*
31 | 


--------------------------------------------------------------------------------
/src/config.js:
--------------------------------------------------------------------------------
 1 | // ============ 配置常量 ============
 2 | 
 3 | // 构建时间（部署时自动替换）
 4 | export const BUILD_TIME = '__BUILD_TIME__'
 5 | 
 6 | // 本地配置（如果没有数据库，使用此配置作为 fallback）
 7 | export const FALLBACK_CONFIG = {}
 8 | 
 9 | // 缓存配置
10 | export const CONFIG_CACHE_TTL_MS = 10 * 60 * 1000 // 10 分钟（内存缓存）
11 | export const REDIS_CACHE_TTL_SECONDS = 5 * 60 // 5 分钟（Redis 缓存）
12 | export const KV_CACHE_TTL_SECONDS = 5 * 60 // 5 分钟（KV 缓存，备用）
13 | export const CACHE_KEY = 'anyrouter:api_configs'
14 | 
15 | // 默认管理员密码
16 | export const DEFAULT_ADMIN_PASSWORD = '123456'
17 | 


--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "anyrouter",
 3 |   "version": "1.0.0",
 4 |   "type": "module",
 5 |   "description": "Lightweight API Proxy Service for Cloudflare Workers",
 6 |   "scripts": {
 7 |     "build": "node build.js",
 8 |     "dev": "wrangler dev",
 9 |     "deploy": "npm run build && wrangler deploy",
10 |     "lint": "eslint src/",
11 |     "lint:fix": "eslint src/ --fix"
12 |   },
13 |   "devDependencies": {
14 |     "@eslint/js": "^9.39.1",
15 |     "esbuild": "^0.27.0",
16 |     "eslint": "^9.39.1",
17 |     "globals": "^16.5.0",
18 |     "wrangler": "^4.48.0"
19 |   },
20 |   "keywords": [
21 |     "cloudflare",
22 |     "workers",
23 |     "api",
24 |     "proxy"
25 |   ],
26 |   "license": "MIT"
27 | }
28 | 


--------------------------------------------------------------------------------
/wrangler.toml:
--------------------------------------------------------------------------------
 1 | # AnyRouter - Cloudflare Workers 配置
 2 | # 敏感信息请通过 Cloudflare Dashboard 或 wrangler secret 配置
 3 | 
 4 | name = "anyrouter"
 5 | main = "anyrouter.js"
 6 | compatibility_date = "2024-01-01"
 7 | 
 8 | # ============================================
 9 | # 环境变量说明
10 | # ============================================
11 | # 以下变量需要在 Cloudflare Dashboard -> Settings -> Variables and Secrets 中配置
12 | # 或使用 wrangler secret put <变量名> 命令设置
13 | #
14 | # 必须配置：
15 | #   ADMIN_PASSWORD - 管理面板登录密码
16 | #
17 | # 可选配置（密钥管理功能）：
18 | #   SUPABASE_URL - Supabase 项目 URL
19 | #   SUPABASE_KEY - Supabase anon/public key
20 | #
21 | # 可选配置（统计和缓存功能）：
22 | #   UPSTASH_REDIS_URL - Upstash Redis REST URL
23 | #   UPSTASH_REDIS_TOKEN - Upstash Redis REST Token
24 | 
25 | # ============================================
26 | # KV 缓存配置（可选）
27 | # ============================================
28 | # 创建 KV: npx wrangler kv:namespace create "CONFIG_CACHE"
29 | # [[kv_namespaces]]
30 | # binding = "CONFIG_KV"
31 | # id = "your-kv-namespace-id"
32 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2024
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/src/cache/redis.js:
--------------------------------------------------------------------------------
 1 | // ============ Upstash Redis REST API 客户端 ============
 2 | 
 3 | /**
 4 |  * Upstash Redis REST API 客户端
 5 |  * 使用 HTTP REST API，无需 TCP 连接，适合 Serverless
 6 |  */
 7 | export class RedisClient {
 8 |   constructor(url, token) {
 9 |     this.baseUrl = url
10 |     this.token = token
11 |   }
12 | 
13 |   async request(command) {
14 |     const response = await fetch(`${this.baseUrl}`, {
15 |       method: 'POST',
16 |       headers: {
17 |         Authorization: `Bearer ${this.token}`,
18 |         'Content-Type': 'application/json',
19 |       },
20 |       body: JSON.stringify(command),
21 |     })
22 |     const data = await response.json()
23 |     if (data.error) throw new Error(data.error)
24 |     return data.result
25 |   }
26 | 
27 |   async get(key) {
28 |     return this.request(['GET', key])
29 |   }
30 | 
31 |   async set(key, value, ttlSeconds) {
32 |     if (ttlSeconds) {
33 |       return this.request(['SET', key, value, 'EX', ttlSeconds])
34 |     }
35 |     return this.request(['SET', key, value])
36 |   }
37 | 
38 |   async del(key) {
39 |     return this.request(['DEL', key])
40 |   }
41 | }
42 | 
43 | /**
44 |  * 获取 Redis 客户端实例
45 |  */
46 | export function getRedisClient(env) {
47 |   if (!env.UPSTASH_REDIS_URL || !env.UPSTASH_REDIS_TOKEN) {
48 |     return null
49 |   }
50 |   return new RedisClient(env.UPSTASH_REDIS_URL, env.UPSTASH_REDIS_TOKEN)
51 | }
52 | 


--------------------------------------------------------------------------------
/wrangler.toml.example:
--------------------------------------------------------------------------------
 1 | # AnyRouter - Cloudflare Workers 配置示例
 2 | # 复制此文件为 wrangler.toml 并填入你的配置
 3 | 
 4 | name = "anyrouter"
 5 | main = "anyrouter.js"
 6 | compatibility_date = "2024-01-01"
 7 | 
 8 | # ============================================
 9 | # 环境变量配置
10 | # ============================================
11 | [vars]
12 | # 管理面板密码（必须修改！）
13 | ADMIN_PASSWORD = "your-secure-password-here"
14 | 
15 | # Supabase 配置（可选，如需密钥管理功能）
16 | # 获取方式：https://supabase.com -> 创建项目 -> Settings -> API
17 | SUPABASE_URL = "https://xxx.supabase.co"
18 | SUPABASE_KEY = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
19 | 
20 | # Upstash Redis 配置（可选，如需统计和缓存）
21 | # 获取方式：https://upstash.com -> 创建 Redis 数据库 -> REST API
22 | # 注意：使用 HTTPS URL，不是 redis:// 协议
23 | UPSTASH_REDIS_URL = "https://xxx.upstash.io"
24 | UPSTASH_REDIS_TOKEN = "AXxxxx..."
25 | 
26 | # ============================================
27 | # KV 缓存配置（可选，用于高并发场景）
28 | # ============================================
29 | # 创建 KV namespace: npx wrangler kv:namespace create "CONFIG_CACHE"
30 | # 然后将返回的 id 填入下方
31 | # [[kv_namespaces]]
32 | # binding = "CONFIG_KV"
33 | # id = "your-kv-namespace-id"
34 | 
35 | # ============================================
36 | # 使用 Secrets 替代明文配置（推荐生产环境）
37 | # ============================================
38 | # 使用 wrangler secret 设置敏感信息：
39 | # npx wrangler secret put SUPABASE_URL
40 | # npx wrangler secret put SUPABASE_KEY
41 | # npx wrangler secret put ADMIN_PASSWORD
42 | # npx wrangler secret put UPSTASH_REDIS_URL
43 | # npx wrangler secret put UPSTASH_REDIS_TOKEN
44 | 


--------------------------------------------------------------------------------
/src/index.js:
--------------------------------------------------------------------------------
 1 | // ============ AnyRouter 主入口 ============
 2 | 
 3 | import { handleCORS } from './utils/helpers.js'
 4 | import { handleApiRequest } from './handlers/api.js'
 5 | import { handleProxyRequest } from './handlers/proxy.js'
 6 | import { getStatusHtml } from './pages/status.js'
 7 | import { getAdminHtml } from './pages/admin.js'
 8 | import { getDocsHtml } from './pages/docs.js'
 9 | 
10 | export default {
11 |   async fetch(request, env, ctx) {
12 |     return handleRequest(request, env, ctx)
13 |   },
14 | }
15 | 
16 | async function handleRequest(request, env, ctx) {
17 |   const url = new URL(request.url)
18 | 
19 |   // 处理 CORS 预检请求
20 |   if (request.method === 'OPTIONS') {
21 |     return handleCORS()
22 |   }
23 | 
24 |   // 管理页面路由
25 |   if (url.pathname === '/admin') {
26 |     return new Response(getAdminHtml(), {
27 |       headers: { 'Content-Type': 'text/html; charset=utf-8' },
28 |     })
29 |   }
30 | 
31 |   // 公开文档页面（无需鉴权）
32 |   if (url.pathname === '/docs') {
33 |     return new Response(getDocsHtml(), {
34 |       headers: { 'Content-Type': 'text/html; charset=utf-8' },
35 |     })
36 |   }
37 | 
38 |   // API 路由
39 |   if (url.pathname.startsWith('/api/')) {
40 |     return handleApiRequest(request, env, url)
41 |   }
42 | 
43 |   // 根路径返回状态页面
44 |   if (request.method === 'GET' && url.pathname === '/') {
45 |     return new Response(getStatusHtml(), {
46 |       headers: { 'Content-Type': 'text/html; charset=utf-8' },
47 |     })
48 |   }
49 | 
50 |   // 代理请求处理（传递 ctx 用于 waitUntil）
51 |   return handleProxyRequest(request, env, url, ctx)
52 | }
53 | 


--------------------------------------------------------------------------------
/eslint.config.js:
--------------------------------------------------------------------------------
 1 | import js from '@eslint/js'
 2 | import globals from 'globals'
 3 | 
 4 | export default [
 5 |   js.configs.recommended,
 6 |   {
 7 |     languageOptions: {
 8 |       ecmaVersion: 2022,
 9 |       sourceType: 'module',
10 |       globals: {
11 |         ...globals.browser,
12 |         ...globals.es2021,
13 |         // Cloudflare Workers globals
14 |         fetch: 'readonly',
15 |         Request: 'readonly',
16 |         Response: 'readonly',
17 |         Headers: 'readonly',
18 |         URL: 'readonly',
19 |         URLSearchParams: 'readonly',
20 |         crypto: 'readonly',
21 |         TextEncoder: 'readonly',
22 |         TextDecoder: 'readonly',
23 |         console: 'readonly',
24 |         // jQuery (for admin page)
25 |         $: 'readonly',
26 |         jQuery: 'readonly',
27 |       },
28 |     },
29 |     rules: {
30 |       // 基础规则
31 |       'no-unused-vars': ['warn', { argsIgnorePattern: '^_' }],
32 |       'no-console': 'off',
33 |       'prefer-const': 'error',
34 |       'no-var': 'error',
35 | 
36 |       // 代码风格
37 |       semi: ['error', 'never'],
38 |       quotes: ['error', 'single', { avoidEscape: true }],
39 |       'comma-dangle': ['error', 'only-multiline'],
40 |       indent: ['error', 2, { SwitchCase: 1 }],
41 | 
42 |       // 最佳实践
43 |       eqeqeq: ['error', 'always', { null: 'ignore' }],
44 |       curly: ['error', 'multi-line'],
45 |       'no-throw-literal': 'error',
46 |     },
47 |   },
48 |   {
49 |     // pages 目录是 HTML 模板，放宽规则
50 |     files: ['src/pages/**/*.js'],
51 |     rules: {
52 |       'no-useless-escape': 'off',
53 |       indent: 'off',
54 |       quotes: 'off',
55 |     },
56 |   },
57 |   {
58 |     ignores: [
59 |       'node_modules/',
60 |       'anyrouter.js',
61 |       '_worker.js',
62 |       '.wrangler/',
63 |     ],
64 |   },
65 | ]
66 | 


--------------------------------------------------------------------------------
/CLAUDE.md:
--------------------------------------------------------------------------------
 1 | # AnyRouter - 项目说明
 2 | 
 3 | ## 项目概述
 4 | 
 5 | AnyRouter 是一个运行在 Cloudflare Workers 上的通用 API 代理服务，支持 OpenAI、Anthropic、Google、Azure、Groq 等任意 HTTP API 的统一转发。
 6 | 
 7 | ## 技术栈
 8 | 
 9 | - **运行时**: Cloudflare Workers (ES Module)
10 | - **构建工具**: esbuild
11 | - **数据库**: Supabase (PostgreSQL) - 可选
12 | - **缓存**: Upstash Redis - 可选
13 | - **前端**: 原生 HTML + Tailwind CSS + jQuery
14 | 
15 | ## 项目结构
16 | 
17 | ```
18 | src/
19 | ├── index.js          # 入口文件，路由分发
20 | ├── config.js         # 配置常量（缓存TTL等）
21 | ├── handlers/
22 | │   ├── proxy.js      # 代理请求处理（核心逻辑）
23 | │   └── api.js        # 管理 API 接口
24 | ├── pages/
25 | │   ├── admin.js      # 管理面板 HTML
26 | │   ├── docs.js       # 文档页面 HTML
27 | │   └── status.js     # 状态页面 HTML
28 | ├── cache/
29 | │   ├── index.js      # 缓存管理（内存/Redis/KV）
30 | │   ├── redis.js      # Upstash Redis REST 客户端
31 | │   └── stats.js      # 统计和黑名单（Redis）
32 | ├── db/
33 | │   └── supabase.js   # 数据库操作
34 | └── utils/
35 |     └── helpers.js    # 工具函数
36 | ```
37 | 
38 | ## 构建和部署
39 | 
40 | ```bash
41 | # 安装依赖
42 | npm install
43 | 
44 | # 构建（生成 anyrouter.js 和 _worker.js）
45 | npm run build
46 | 
47 | # 本地开发
48 | cp wrangler.toml.example wrangler.toml.local
49 | # 编辑 wrangler.toml.local 填入环境变量
50 | npx wrangler dev -c wrangler.toml.local
51 | 
52 | # 部署
53 | npx wrangler deploy
54 | ```
55 | 
56 | ## 环境变量
57 | 
58 | | 变量 | 必须 | 说明 |
59 | |------|------|------|
60 | | `ADMIN_PASSWORD` | ✅ | 管理面板登录密码 |
61 | | `SUPABASE_URL` | ❌ | Supabase 项目 URL |
62 | | `SUPABASE_KEY` | ❌ | Supabase anon key |
63 | | `UPSTASH_REDIS_URL` | ❌ | Upstash Redis REST URL |
64 | | `UPSTASH_REDIS_TOKEN` | ❌ | Upstash Redis Token |
65 | 
66 | ## 三种认证模式
67 | 
68 | 1. **SK 别名模式**（推荐）: `Bearer sk-ar-xxxxxxxx`
69 | 2. **Key ID 模式**: `Bearer https://api.openai.com:a3x9k2`
70 | 3. **直传模式**: `Bearer https://api.openai.com:sk-xxx...`
71 | 
72 | ## 路由
73 | 
74 | | 路由 | 说明 |
75 | |------|------|
76 | | `/` | 状态页 |
77 | | `/docs` | 使用文档 |
78 | | `/admin` | 管理面板 |
79 | | `/api/*` | 管理 API |
80 | | `/*` | 代理请求 |
81 | 
82 | ## 关键文件说明
83 | 
84 | - `wrangler.toml` - 部署配置（无敏感信息，可提交）
85 | - `wrangler.toml.example` - 本地开发配置模板
86 | - `wrangler.toml.local` - 本地开发配置（被 gitignore）
87 | - `schema.sql` - Supabase 数据库初始化脚本
88 | - `build.js` - esbuild 构建脚本
89 | 
90 | ## 开发注意事项
91 | 
92 | 1. 代码修改后需要运行 `npm run build` 重新构建
93 | 2. 敏感信息不要写入 `wrangler.toml`，通过 Dashboard 配置
94 | 3. Redis 和 Supabase 都是可选的，不配置时使用直传模式
95 | 4. 前端页面在 `src/pages/` 目录，是纯 HTML 字符串模板
96 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # AnyRouter
  2 | 
  3 | 通用 API 代理服务，支持 OpenAI、Anthropic、Google、Azure、Groq 等任意 HTTP API 的统一转发。
  4 | 
  5 | ## 特性
  6 | 
  7 | - **通用代理** - 支持任意 HTTP/HTTPS API
  8 | - **三种认证模式** - SK 别名 / Key ID / 直传 Token
  9 | - **统计与监控** - 请求统计、IP 排行、黑名单管理
 10 | - **边缘加速** - 基于 Cloudflare 全球网络
 11 | 
 12 | ## 部署
 13 | 
 14 | ### 方式一：一键部署（推荐）
 15 | 
 16 | [![Deploy to Cloudflare Workers](https://deploy.workers.cloudflare.com/button)](https://deploy.workers.cloudflare.com/?url=https://github.com/dext7r/anyrouter)
 17 | 
 18 | ### 方式二：GitHub 关联部署
 19 | 
 20 | 1. Fork 本仓库到你的 GitHub 账号
 21 | 2. 登录 [Cloudflare Dashboard](https://dash.cloudflare.com) → Workers & Pages → Create
 22 | 3. 选择 **Workers** → Import from GitHub → 选择你 Fork 的仓库
 23 | 4. 使用默认配置，点击部署
 24 | 5. 部署后进入 Settings → Variables and Secrets，添加环境变量
 25 | 
 26 | ### 方式三：命令行部署
 27 | 
 28 | ```bash
 29 | git clone https://github.com/dext7r/anyrouter.git
 30 | cd anyrouter
 31 | npm install
 32 | 
 33 | # 本地开发：复制示例配置并填入你的配置
 34 | cp wrangler.toml.example wrangler.toml.local
 35 | # 编辑 wrangler.toml.local 填入环境变量
 36 | npx wrangler dev -c wrangler.toml.local
 37 | 
 38 | # 部署到 Cloudflare
 39 | npm run build
 40 | npx wrangler deploy
 41 | # 然后在 Dashboard 配置环境变量
 42 | ```
 43 | 
 44 | ### 方式四：GitHub Actions
 45 | 
 46 | ```yaml
 47 | name: Deploy
 48 | on:
 49 |   push:
 50 |     branches: [main]
 51 | jobs:
 52 |   deploy:
 53 |     runs-on: ubuntu-latest
 54 |     steps:
 55 |       - uses: actions/checkout@v4
 56 |       - uses: actions/setup-node@v4
 57 |         with:
 58 |           node-version: '20'
 59 |       - run: npm install && npm run build
 60 |       - run: npx wrangler deploy
 61 |         env:
 62 |           CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
 63 |           CLOUDFLARE_ACCOUNT_ID: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}
 64 | ```
 65 | 
 66 | ## 环境变量
 67 | 
 68 | | 变量 | 必须 | 说明 |
 69 | |------|------|------|
 70 | | `ADMIN_PASSWORD` | ✅ | 管理面板登录密码 |
 71 | | `SUPABASE_URL` | ❌ | Supabase 项目 URL |
 72 | | `SUPABASE_KEY` | ❌ | Supabase anon key |
 73 | | `UPSTASH_REDIS_URL` | ❌ | Upstash Redis REST URL |
 74 | | `UPSTASH_REDIS_TOKEN` | ❌ | Upstash Redis Token |
 75 | 
 76 | > 不配置 Supabase/Redis 也可使用直传模式
 77 | 
 78 | ## 使用
 79 | 
 80 | ```bash
 81 | # SK 别名模式（推荐）
 82 | curl -H "Authorization: Bearer sk-ar-xxxxxxxx" https://your-proxy/v1/chat/completions
 83 | 
 84 | # Key ID 模式
 85 | curl -H "Authorization: Bearer https://api.openai.com:a3x9k2" https://your-proxy/v1/chat/completions
 86 | 
 87 | # 直传模式
 88 | curl -H "Authorization: Bearer https://api.openai.com:sk-xxx" https://your-proxy/v1/chat/completions
 89 | ```
 90 | 
 91 | ## 路由
 92 | 
 93 | | 路由 | 说明 |
 94 | |------|------|
 95 | | `/` | 状态页 |
 96 | | `/docs` | 完整文档 |
 97 | | `/admin` | 管理面板 |
 98 | | `/*` | 代理请求 |
 99 | 
100 | ## License
101 | 
102 | MIT
103 | 


--------------------------------------------------------------------------------
/src/utils/helpers.js:
--------------------------------------------------------------------------------
  1 | // ============ 工具函数 ============
  2 | 
  3 | import { DEFAULT_ADMIN_PASSWORD } from '../config.js'
  4 | 
  5 | /**
  6 |  * 获取管理员密码（优先使用环境变量，否则使用默认值）
  7 |  */
  8 | export function getAdminPassword(env) {
  9 |   return env.ADMIN_PASSWORD || DEFAULT_ADMIN_PASSWORD
 10 | }
 11 | 
 12 | /**
 13 |  * 验证管理员密码
 14 |  */
 15 | export function verifyAdmin(request, env) {
 16 |   const authHeader = request.headers.get('Authorization')
 17 |   if (!authHeader || !authHeader.startsWith('Bearer ')) {
 18 |     return false
 19 |   }
 20 | 
 21 |   const token = authHeader.substring(7).trim()
 22 |   return token === getAdminPassword(env).trim()
 23 | }
 24 | 
 25 | /**
 26 |  * 校验 URL 是否有效
 27 |  * @param {string} apiUrl
 28 |  * @returns {boolean}
 29 |  */
 30 | export function isValidUrl(apiUrl) {
 31 |   if (typeof apiUrl !== 'string' || apiUrl.length === 0) {
 32 |     return false
 33 |   }
 34 | 
 35 |   try {
 36 |     const parsed = new URL(apiUrl)
 37 |     return parsed.protocol === 'http:' || parsed.protocol === 'https:'
 38 |   } catch {
 39 |     return false
 40 |   }
 41 | }
 42 | 
 43 | /**
 44 |  * 校验 token 是否符合要求
 45 |  * @param {string} token
 46 |  * @returns {boolean}
 47 |  */
 48 | export function isValidToken(token) {
 49 |   // 允许字母、数字、常见特殊字符（_-./=+ 等），排除空格和危险字符
 50 |   return (
 51 |     typeof token === 'string' &&
 52 |     token.length > 0 &&
 53 |     token.length <= 1000 &&
 54 |     !/[\s\0\n\r]/.test(token)
 55 |   )
 56 | }
 57 | 
 58 | /**
 59 |  * 校验配置请求体
 60 |  * @param {any} body
 61 |  * @param {{ partial?: boolean }} [options]
 62 |  * @returns {{ valid: boolean, error?: string }}
 63 |  */
 64 | export function validateConfigPayload(body, options = {}) {
 65 |   const { partial = false } = options
 66 | 
 67 |   if (!body || typeof body !== 'object') {
 68 |     return { valid: false, error: 'Invalid payload' }
 69 |   }
 70 | 
 71 |   if (!partial || 'api_url' in body) {
 72 |     if (!isValidUrl(body.api_url)) {
 73 |       return { valid: false, error: 'api_url is required and must be a valid URL' }
 74 |     }
 75 |   }
 76 | 
 77 |   if (!partial || 'token' in body) {
 78 |     if (!isValidToken(body.token)) {
 79 |       return { valid: false, error: 'token is required and must not contain special characters' }
 80 |     }
 81 |   }
 82 | 
 83 |   if ('enabled' in body && typeof body.enabled !== 'boolean') {
 84 |     return { valid: false, error: 'enabled must be a boolean' }
 85 |   }
 86 | 
 87 |   if ('remark' in body) {
 88 |     if (body.remark !== null && typeof body.remark !== 'string') {
 89 |       return { valid: false, error: 'remark must be a string or null' }
 90 |     }
 91 |     if (body.remark && body.remark.length > 255) {
 92 |       return { valid: false, error: 'remark must be 255 characters or less' }
 93 |     }
 94 |   }
 95 | 
 96 |   if (partial && !('api_url' in body || 'token' in body || 'enabled' in body || 'remark' in body)) {
 97 |     return { valid: false, error: 'No fields provided for update' }
 98 |   }
 99 | 
100 |   return { valid: true }
101 | }
102 | 
103 | /**
104 |  * 判断配置中是否存在启用的 key
105 |  * @param {Record<string, any>} config
106 |  * @param {string} [apiUrl]
107 |  * @returns {boolean}
108 |  */
109 | export function hasEnabledKey(config, apiUrl) {
110 |   if (!config || Object.keys(config).length === 0) {
111 |     return false
112 |   }
113 | 
114 |   if (apiUrl) {
115 |     const apiConfig = config[apiUrl]
116 |     return Boolean(apiConfig && apiConfig.keys && apiConfig.keys.some((key) => key.enabled))
117 |   }
118 | 
119 |   return Object.values(config).some(
120 |     (item) => item.keys && item.keys.some((key) => key.enabled)
121 |   )
122 | }
123 | 
124 | /**
125 |  * 返回 JSON 响应
126 |  */
127 | export function jsonResponse(data, status = 200) {
128 |   return new Response(JSON.stringify(data), {
129 |     status,
130 |     headers: {
131 |       'Content-Type': 'application/json',
132 |       'Access-Control-Allow-Origin': '*',
133 |     },
134 |   })
135 | }
136 | 
137 | /**
138 |  * 处理 CORS
139 |  */
140 | export function handleCORS() {
141 |   return new Response(null, {
142 |     headers: {
143 |       'Access-Control-Allow-Origin': '*',
144 |       'Access-Control-Allow-Methods': 'GET, POST, PATCH, DELETE, OPTIONS',
145 |       'Access-Control-Allow-Headers': 'Content-Type, Authorization',
146 |     },
147 |   })
148 | }
149 | 


--------------------------------------------------------------------------------
/src/cache/index.js:
--------------------------------------------------------------------------------
  1 | // ============ 缓存管理 ============
  2 | 
  3 | import { CONFIG_CACHE_TTL_MS, CACHE_KEY } from '../config.js'
  4 | import { getRedisClient } from './redis.js'
  5 | 
  6 | // 内存缓存
  7 | let configCache = { value: null, expiresAt: 0 }
  8 | 
  9 | /**
 10 |  * 获取内存缓存的配置
 11 |  * @returns {Record<string, any>|null} 缓存的配置或 null（已过期）
 12 |  */
 13 | export function getCachedConfig() {
 14 |   if (configCache.value && configCache.expiresAt > Date.now()) {
 15 |     return configCache.value
 16 |   }
 17 |   return null
 18 | }
 19 | 
 20 | /**
 21 |  * 写入内存缓存
 22 |  * @param {Record<string, any>} config 配置对象
 23 |  */
 24 | export function setConfigCache(config) {
 25 |   configCache = {
 26 |     value: config,
 27 |     expiresAt: Date.now() + CONFIG_CACHE_TTL_MS,
 28 |   }
 29 | }
 30 | 
 31 | /**
 32 |  * 使内存缓存失效
 33 |  */
 34 | export function invalidateConfigCache() {
 35 |   configCache = { value: null, expiresAt: 0 }
 36 | }
 37 | 
 38 | /**
 39 |  * 使所有缓存失效（内存 + Redis + KV）
 40 |  * @param {object} env - 环境变量
 41 |  */
 42 | export async function invalidateAllCache(env) {
 43 |   configCache = { value: null, expiresAt: 0 }
 44 | 
 45 |   // 清除 Redis 缓存
 46 |   const redis = getRedisClient(env)
 47 |   if (redis) {
 48 |     try {
 49 |       await redis.del(CACHE_KEY)
 50 |     } catch {
 51 |       // 忽略错误
 52 |     }
 53 |   }
 54 | 
 55 |   // 清除 KV 缓存（备用）
 56 |   if (env && env.CONFIG_KV) {
 57 |     try {
 58 |       await env.CONFIG_KV.delete(CACHE_KEY)
 59 |     } catch {
 60 |       // 忽略错误
 61 |     }
 62 |   }
 63 | }
 64 | 
 65 | /**
 66 |  * 预热缓存：强制从数据库加载并写入所有缓存层
 67 |  * @param {object} env - 环境变量
 68 |  * @returns {Promise<{success: boolean, cached: string[], error?: string}>}
 69 |  */
 70 | export async function warmupCache(env) {
 71 |   const result = { success: false, cached: [], keysCount: 0 }
 72 | 
 73 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
 74 |     return { ...result, error: 'Database not configured' }
 75 |   }
 76 | 
 77 |   try {
 78 |     // 1. 从数据库获取最新数据
 79 |     let response = await fetch(
 80 |       `${env.SUPABASE_URL}/rest/v1/api_configs?select=*&deleted_at=is.null&order=created_at.desc`,
 81 |       {
 82 |         headers: {
 83 |           apikey: env.SUPABASE_KEY,
 84 |           Authorization: `Bearer ${env.SUPABASE_KEY}`,
 85 |         },
 86 |       }
 87 |     )
 88 | 
 89 |     if (!response.ok) {
 90 |       response = await fetch(
 91 |         `${env.SUPABASE_URL}/rest/v1/api_configs?select=*&order=created_at.desc`,
 92 |         {
 93 |           headers: {
 94 |             apikey: env.SUPABASE_KEY,
 95 |             Authorization: `Bearer ${env.SUPABASE_KEY}`,
 96 |           },
 97 |         }
 98 |       )
 99 |     }
100 | 
101 |     if (!response.ok) {
102 |       return { ...result, error: `Database query failed: HTTP ${response.status}` }
103 |     }
104 | 
105 |     const data = await response.json()
106 |     const config = {}
107 | 
108 |     data.forEach((item) => {
109 |       if (!config[item.api_url]) {
110 |         config[item.api_url] = { keys: [] }
111 |       }
112 |       config[item.api_url].keys.push({
113 |         id: item.id,
114 |         key_id: item.key_id,
115 |         token: item.token,
116 |         enabled: item.enabled,
117 |         remark: item.remark || '',
118 |         created_at: item.created_at,
119 |         updated_at: item.updated_at,
120 |       })
121 |     })
122 | 
123 |     result.keysCount = data.length
124 | 
125 |     // 2. 写入内存缓存
126 |     setConfigCache(config)
127 |     result.cached.push('memory')
128 | 
129 |     // 3. 写入 Redis 缓存
130 |     const redis = getRedisClient(env)
131 |     if (redis) {
132 |       try {
133 |         const { REDIS_CACHE_TTL_SECONDS } = await import('../config.js')
134 |         await redis.set(CACHE_KEY, JSON.stringify(config), REDIS_CACHE_TTL_SECONDS)
135 |         result.cached.push('redis')
136 |       } catch (e) {
137 |         result.redisError = e.message
138 |       }
139 |     }
140 | 
141 |     // 4. 写入 KV 缓存
142 |     if (env.CONFIG_KV) {
143 |       try {
144 |         const { KV_CACHE_TTL_SECONDS } = await import('../config.js')
145 |         await env.CONFIG_KV.put(CACHE_KEY, JSON.stringify(config), {
146 |           expirationTtl: KV_CACHE_TTL_SECONDS,
147 |         })
148 |         result.cached.push('kv')
149 |       } catch (e) {
150 |         result.kvError = e.message
151 |       }
152 |     }
153 | 
154 |     result.success = true
155 |     return result
156 |   } catch (error) {
157 |     return { ...result, error: error.message }
158 |   }
159 | }
160 | 


--------------------------------------------------------------------------------
/src/pages/status.js:
--------------------------------------------------------------------------------
  1 | // ============ 状态页面 HTML ============
  2 | 
  3 | import { BUILD_TIME } from '../config.js'
  4 | 
  5 | /**
  6 |  * 生成状态页面 HTML
  7 |  */
  8 | export function getStatusHtml() {
  9 |   const buildTimeFormatted = new Date(BUILD_TIME)
 10 |     .toLocaleString('zh-CN', { timeZone: 'Asia/Shanghai' })
 11 | 
 12 |   return `<!DOCTYPE html>
 13 | <html lang="zh-CN">
 14 | <head>
 15 |   <meta charset="UTF-8">
 16 |   <meta name="viewport" content="width=device-width, initial-scale=1.0">
 17 |   <title>AnyRouter - API Proxy Service</title>
 18 |   <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" rel="stylesheet">
 19 |   <style>
 20 |     * { margin: 0; padding: 0; box-sizing: border-box; }
 21 |     body {
 22 |       font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, sans-serif;
 23 |       min-height: 100vh;
 24 |       background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
 25 |       display: flex;
 26 |       flex-direction: column;
 27 |       align-items: center;
 28 |       justify-content: center;
 29 |       padding: 20px;
 30 |     }
 31 |     .card {
 32 |       background: rgba(255,255,255,0.95);
 33 |       backdrop-filter: blur(10px);
 34 |       border-radius: 24px;
 35 |       box-shadow: 0 25px 50px -12px rgba(0,0,0,0.25);
 36 |       padding: 48px;
 37 |       max-width: 520px;
 38 |       width: 100%;
 39 |       text-align: center;
 40 |     }
 41 |     .logo {
 42 |       width: 80px;
 43 |       height: 80px;
 44 |       background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
 45 |       border-radius: 20px;
 46 |       display: flex;
 47 |       align-items: center;
 48 |       justify-content: center;
 49 |       margin: 0 auto 24px;
 50 |       box-shadow: 0 10px 30px rgba(102, 126, 234, 0.4);
 51 |     }
 52 |     .logo i { font-size: 36px; color: white; }
 53 |     h1 {
 54 |       font-size: 32px;
 55 |       font-weight: 700;
 56 |       color: #1a1a2e;
 57 |       margin-bottom: 8px;
 58 |     }
 59 |     .tagline {
 60 |       color: #666;
 61 |       font-size: 16px;
 62 |       margin-bottom: 24px;
 63 |     }
 64 |     .status {
 65 |       display: inline-flex;
 66 |       align-items: center;
 67 |       gap: 8px;
 68 |       background: linear-gradient(135deg, #10b981 0%, #059669 100%);
 69 |       color: white;
 70 |       padding: 10px 24px;
 71 |       border-radius: 50px;
 72 |       font-weight: 600;
 73 |       font-size: 14px;
 74 |       margin-bottom: 32px;
 75 |       box-shadow: 0 4px 15px rgba(16, 185, 129, 0.4);
 76 |     }
 77 |     .status i { animation: pulse 2s infinite; }
 78 |     @keyframes pulse {
 79 |       0%, 100% { opacity: 1; }
 80 |       50% { opacity: 0.5; }
 81 |     }
 82 |     .features {
 83 |       display: grid;
 84 |       grid-template-columns: repeat(2, 1fr);
 85 |       gap: 16px;
 86 |       margin-bottom: 32px;
 87 |       text-align: left;
 88 |     }
 89 |     .feature {
 90 |       display: flex;
 91 |       align-items: center;
 92 |       gap: 10px;
 93 |       padding: 12px;
 94 |       background: #f8f9ff;
 95 |       border-radius: 12px;
 96 |     }
 97 |     .feature i {
 98 |       width: 32px;
 99 |       height: 32px;
100 |       display: flex;
101 |       align-items: center;
102 |       justify-content: center;
103 |       background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
104 |       color: white;
105 |       border-radius: 8px;
106 |       font-size: 14px;
107 |     }
108 |     .feature span { font-size: 13px; color: #444; font-weight: 500; }
109 |     .buttons {
110 |       display: flex;
111 |       gap: 12px;
112 |       justify-content: center;
113 |       flex-wrap: wrap;
114 |     }
115 |     .btn {
116 |       display: inline-flex;
117 |       align-items: center;
118 |       gap: 8px;
119 |       padding: 14px 28px;
120 |       border-radius: 12px;
121 |       font-weight: 600;
122 |       font-size: 15px;
123 |       text-decoration: none;
124 |       transition: all 0.3s ease;
125 |     }
126 |     .btn-primary {
127 |       background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
128 |       color: white;
129 |       box-shadow: 0 4px 15px rgba(102, 126, 234, 0.4);
130 |     }
131 |     .btn-primary:hover {
132 |       transform: translateY(-2px);
133 |       box-shadow: 0 8px 25px rgba(102, 126, 234, 0.5);
134 |     }
135 |     .btn-secondary {
136 |       background: #f0f0f0;
137 |       color: #333;
138 |     }
139 |     .btn-secondary:hover {
140 |       background: #e0e0e0;
141 |       transform: translateY(-2px);
142 |     }
143 |     .footer {
144 |       margin-top: 24px;
145 |       color: rgba(255,255,255,0.8);
146 |       font-size: 14px;
147 |     }
148 |     .footer a {
149 |       color: white;
150 |       text-decoration: none;
151 |       font-weight: 600;
152 |     }
153 |     .footer a:hover { text-decoration: underline; }
154 |   </style>
155 | </head>
156 | <body>
157 |   <div class="card">
158 |     <div class="logo"><i class="fas fa-route"></i></div>
159 |     <h1>AnyRouter</h1>
160 |     <p class="tagline">轻量级 API 代理服务</p>
161 |     <div class="status"><i class="fas fa-circle"></i> 服务运行中</div>
162 |     <div class="features">
163 |       <div class="feature"><i class="fas fa-globe"></i><span>多端点代理</span></div>
164 |       <div class="feature"><i class="fas fa-key"></i><span>Token 管理</span></div>
165 |       <div class="feature"><i class="fas fa-shield-alt"></i><span>安全转发</span></div>
166 |       <div class="feature"><i class="fas fa-bolt"></i><span>边缘加速</span></div>
167 |     </div>
168 |     <div class="buttons">
169 |       <a href="/docs" class="btn btn-primary"><i class="fas fa-book"></i>使用文档</a>
170 |       <a href="/admin" class="btn btn-secondary"><i class="fas fa-cog"></i>管理面板</a>
171 |       <a href="https://github.com/dext7r/anyrouter" target="_blank" class="btn btn-secondary"><i class="fab fa-github"></i>GitHub</a>
172 |     </div>
173 |   </div>
174 |   <div class="footer">
175 |     <div>Powered by <a href="https://workers.cloudflare.com" target="_blank">Cloudflare Workers</a></div>
176 |     <div style="margin-top: 8px; font-size: 12px; opacity: 0.7;">
177 |       <i class="fas fa-clock"></i> 部署时间: ${buildTimeFormatted}
178 |     </div>
179 |   </div>
180 | </body>
181 | </html>`
182 | }
183 | 


--------------------------------------------------------------------------------
/schema.sql:
--------------------------------------------------------------------------------
  1 | -- AnyRouter 数据库初始化脚本
  2 | -- 在 Supabase SQL Editor 中一次性执行此脚本
  3 | --
  4 | -- 使用说明：
  5 | -- 1. 登录 Supabase Dashboard
  6 | -- 2. 进入 SQL Editor
  7 | -- 3. 复制粘贴此脚本并执行
  8 | 
  9 | -- ============================================
 10 | -- 1. 创建随机 ID 生成函数
 11 | -- ============================================
 12 | CREATE OR REPLACE FUNCTION public.generate_key_id(length INTEGER DEFAULT 6)
 13 | RETURNS TEXT AS $$
 14 | DECLARE
 15 |   chars TEXT := 'abcdefghijklmnopqrstuvwxyz0123456789';
 16 |   result TEXT := '';
 17 |   i INTEGER;
 18 | BEGIN
 19 |   FOR i IN 1..length LOOP
 20 |     result := result || substr(chars, floor(random() * length(chars) + 1)::INTEGER, 1);
 21 |   END LOOP;
 22 |   RETURN result;
 23 | END;
 24 | $$ LANGUAGE plpgsql;
 25 | 
 26 | -- ============================================
 27 | -- 2. 创建表
 28 | -- ============================================
 29 | CREATE TABLE IF NOT EXISTS public.api_configs (
 30 |   id BIGSERIAL PRIMARY KEY,
 31 |   key_id VARCHAR(6) UNIQUE NOT NULL DEFAULT public.generate_key_id(6),
 32 |   sk_alias VARCHAR(50) UNIQUE DEFAULT NULL,
 33 |   api_url TEXT NOT NULL,
 34 |   token TEXT NOT NULL,
 35 |   enabled BOOLEAN NOT NULL DEFAULT true,
 36 |   remark VARCHAR(255) DEFAULT NULL,
 37 |   expires_at TIMESTAMP WITH TIME ZONE DEFAULT NULL,
 38 |   deleted_at TIMESTAMP WITH TIME ZONE DEFAULT NULL,
 39 |   created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
 40 |   updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW()
 41 | );
 42 | 
 43 | -- 如果表已存在但没有 remark 列，添加它
 44 | DO $$
 45 | BEGIN
 46 |   IF NOT EXISTS (
 47 |     SELECT 1 FROM information_schema.columns
 48 |     WHERE table_schema = 'public'
 49 |     AND table_name = 'api_configs'
 50 |     AND column_name = 'remark'
 51 |   ) THEN
 52 |     ALTER TABLE public.api_configs
 53 |     ADD COLUMN remark VARCHAR(255) DEFAULT NULL;
 54 |   END IF;
 55 | END $$;
 56 | 
 57 | -- 如果表已存在但没有 deleted_at 列，添加它（软删除支持）
 58 | DO $$
 59 | BEGIN
 60 |   IF NOT EXISTS (
 61 |     SELECT 1 FROM information_schema.columns
 62 |     WHERE table_schema = 'public'
 63 |     AND table_name = 'api_configs'
 64 |     AND column_name = 'deleted_at'
 65 |   ) THEN
 66 |     ALTER TABLE public.api_configs
 67 |     ADD COLUMN deleted_at TIMESTAMP WITH TIME ZONE DEFAULT NULL;
 68 |   END IF;
 69 | END $$;
 70 | 
 71 | -- 如果表已存在但没有 key_id 列，添加它
 72 | DO $$
 73 | BEGIN
 74 |   IF NOT EXISTS (
 75 |     SELECT 1 FROM information_schema.columns
 76 |     WHERE table_schema = 'public'
 77 |     AND table_name = 'api_configs'
 78 |     AND column_name = 'key_id'
 79 |   ) THEN
 80 |     ALTER TABLE public.api_configs
 81 |     ADD COLUMN key_id VARCHAR(6) UNIQUE;
 82 | 
 83 |     -- 为已有记录生成 key_id
 84 |     UPDATE public.api_configs
 85 |     SET key_id = public.generate_key_id(6)
 86 |     WHERE key_id IS NULL;
 87 | 
 88 |     -- 设置 NOT NULL 约束
 89 |     ALTER TABLE public.api_configs
 90 |     ALTER COLUMN key_id SET NOT NULL;
 91 | 
 92 |     -- 设置默认值
 93 |     ALTER TABLE public.api_configs
 94 |     ALTER COLUMN key_id SET DEFAULT public.generate_key_id(6);
 95 |   END IF;
 96 | END $$;
 97 | 
 98 | -- 如果表已存在但没有 sk_alias 列，添加它（SK 别名支持）
 99 | DO $$
100 | BEGIN
101 |   IF NOT EXISTS (
102 |     SELECT 1 FROM information_schema.columns
103 |     WHERE table_schema = 'public'
104 |     AND table_name = 'api_configs'
105 |     AND column_name = 'sk_alias'
106 |   ) THEN
107 |     ALTER TABLE public.api_configs
108 |     ADD COLUMN sk_alias VARCHAR(50) UNIQUE DEFAULT NULL;
109 |   END IF;
110 | END $$;
111 | 
112 | -- 如果表已存在但没有 expires_at 列，添加它（有效期支持）
113 | DO $$
114 | BEGIN
115 |   IF NOT EXISTS (
116 |     SELECT 1 FROM information_schema.columns
117 |     WHERE table_schema = 'public'
118 |     AND table_name = 'api_configs'
119 |     AND column_name = 'expires_at'
120 |   ) THEN
121 |     ALTER TABLE public.api_configs
122 |     ADD COLUMN expires_at TIMESTAMP WITH TIME ZONE DEFAULT NULL;
123 |   END IF;
124 | END $$;
125 | 
126 | -- ============================================
127 | -- 3. 创建索引（加速查询）
128 | -- ============================================
129 | CREATE INDEX IF NOT EXISTS idx_api_configs_key_id ON public.api_configs(key_id);
130 | CREATE INDEX IF NOT EXISTS idx_api_configs_sk_alias ON public.api_configs(sk_alias) WHERE sk_alias IS NOT NULL;
131 | CREATE INDEX IF NOT EXISTS idx_api_configs_api_url ON public.api_configs(api_url);
132 | CREATE INDEX IF NOT EXISTS idx_api_configs_enabled ON public.api_configs(enabled);
133 | CREATE INDEX IF NOT EXISTS idx_api_configs_created_at ON public.api_configs(created_at DESC);
134 | CREATE INDEX IF NOT EXISTS idx_api_configs_deleted_at ON public.api_configs(deleted_at) WHERE deleted_at IS NULL;
135 | 
136 | -- ============================================
137 | -- 4. 启用行级安全 (RLS)
138 | -- ============================================
139 | ALTER TABLE public.api_configs ENABLE ROW LEVEL SECURITY;
140 | 
141 | -- 删除已存在的策略（避免重复执行报错）
142 | DROP POLICY IF EXISTS "Allow all access with service role" ON public.api_configs;
143 | 
144 | -- 创建策略：允许所有已认证的请求访问
145 | CREATE POLICY "Allow all access with service role"
146 |   ON public.api_configs
147 |   FOR ALL
148 |   TO authenticated, anon
149 |   USING (true)
150 |   WITH CHECK (true);
151 | 
152 | -- ============================================
153 | -- 5. 创建更新时间触发器
154 | -- ============================================
155 | CREATE OR REPLACE FUNCTION public.update_updated_at_column()
156 | RETURNS TRIGGER AS $$
157 | BEGIN
158 |   NEW.updated_at = NOW();
159 |   RETURN NEW;
160 | END;
161 | $$ LANGUAGE plpgsql;
162 | 
163 | DROP TRIGGER IF EXISTS update_api_configs_updated_at ON public.api_configs;
164 | 
165 | CREATE TRIGGER update_api_configs_updated_at
166 |   BEFORE UPDATE ON public.api_configs
167 |   FOR EACH ROW
168 |   EXECUTE FUNCTION public.update_updated_at_column();
169 | 
170 | -- ============================================
171 | -- 6. 添加注释
172 | -- ============================================
173 | COMMENT ON TABLE public.api_configs IS 'API 代理配置表';
174 | COMMENT ON COLUMN public.api_configs.id IS '自增主键（内部使用）';
175 | COMMENT ON COLUMN public.api_configs.key_id IS '6位随机 ID（用于 API 调用）';
176 | COMMENT ON COLUMN public.api_configs.sk_alias IS 'SK 别名（格式：sk-ar-xxx，用于简化认证）';
177 | COMMENT ON COLUMN public.api_configs.api_url IS '目标 API 地址';
178 | COMMENT ON COLUMN public.api_configs.token IS 'API Token';
179 | COMMENT ON COLUMN public.api_configs.enabled IS '是否启用';
180 | COMMENT ON COLUMN public.api_configs.remark IS '备注说明';
181 | COMMENT ON COLUMN public.api_configs.expires_at IS '过期时间（NULL表示永不过期）';
182 | COMMENT ON COLUMN public.api_configs.deleted_at IS '软删除时间（NULL表示未删除）';
183 | COMMENT ON COLUMN public.api_configs.created_at IS '创建时间';
184 | COMMENT ON COLUMN public.api_configs.updated_at IS '更新时间';
185 | 
186 | -- ============================================
187 | -- 7. 授权
188 | -- ============================================
189 | GRANT ALL ON public.api_configs TO anon;
190 | GRANT ALL ON public.api_configs TO authenticated;
191 | GRANT USAGE, SELECT ON SEQUENCE public.api_configs_id_seq TO anon;
192 | GRANT USAGE, SELECT ON SEQUENCE public.api_configs_id_seq TO authenticated;
193 | 
194 | -- ============================================
195 | -- 完成！
196 | -- ============================================
197 | -- key_id 格式：6位小写字母+数字，如 "a3x9k2"
198 | -- sk_alias 格式：sk-ar-[32位随机字符]，如 "sk-ar-abcDEF123..."
199 | --
200 | -- 使用方式：
201 | -- 1. SK 别名模式：Authorization: Bearer sk-ar-xxxxxxxx...
202 | -- 2. Key ID 模式：Authorization: Bearer https://api.openai.com:a3x9k2
203 | -- 3. 直传模式：  Authorization: Bearer https://api.openai.com:sk-xxx...
204 | 


--------------------------------------------------------------------------------
/src/handlers/proxy.js:
--------------------------------------------------------------------------------
  1 | // ============ 代理请求处理 ============
  2 | 
  3 | import { jsonResponse } from '../utils/helpers.js'
  4 | import { getConfigFromDB, findBySkAlias } from '../db/supabase.js'
  5 | import { recordRequest, isIpBlocked } from '../cache/stats.js'
  6 | 
  7 | /**
  8 |  * 生成友好的错误响应
  9 |  */
 10 | function errorResponse(code, message, hint) {
 11 |   return jsonResponse({
 12 |     error: {
 13 |       code,
 14 |       message,
 15 |       hint,
 16 |       contact: '如有疑问请联系管理员',
 17 |     }
 18 |   }, code === 'UNAUTHORIZED' ? 401 :
 19 |     code === 'BAD_REQUEST' ? 400 :
 20 |       code === 'NOT_FOUND' ? 404 :
 21 |         code === 'FORBIDDEN' ? 403 :
 22 |           code === 'SERVICE_ERROR' ? 503 : 500)
 23 | }
 24 | 
 25 | /**
 26 |  * 处理代理请求
 27 |  * 支持两种格式:
 28 |  * 1. Authorization: Bearer https://api.example.com:123 (按 ID 查找 token)
 29 |  * 2. Authorization: Bearer https://api.example.com:sk-xxx (直接使用 token)
 30 |  * @param {Request} request
 31 |  * @param {object} env
 32 |  * @param {URL} url
 33 |  * @param {ExecutionContext} ctx - Cloudflare Workers 执行上下文，用于 waitUntil
 34 |  */
 35 | export async function handleProxyRequest(request, env, url, ctx) {
 36 |   // 获取客户端 IP
 37 |   const clientIp = request.headers.get('CF-Connecting-IP') ||
 38 |                    request.headers.get('X-Forwarded-For')?.split(',')[0]?.trim() ||
 39 |                    'unknown'
 40 | 
 41 |   // 检查 IP 黑名单
 42 |   const blockCheck = await isIpBlocked(env, clientIp)
 43 |   if (blockCheck.blocked) {
 44 |     return jsonResponse({
 45 |       error: {
 46 |         code: 'IP_BLOCKED',
 47 |         message: 'IP 已被封禁',
 48 |         reason: blockCheck.reason,
 49 |         ip: clientIp,
 50 |         contact: '如有疑问请联系管理员',
 51 |       }
 52 |     }, 403)
 53 |   }
 54 | 
 55 |   const authHeader = request.headers.get('Authorization')
 56 |   if (!authHeader || !authHeader.startsWith('Bearer ')) {
 57 |     return errorResponse(
 58 |       'UNAUTHORIZED',
 59 |       '缺少授权信息',
 60 |       '请在 Authorization header 中提供 Bearer token，格式: Bearer <API_URL>:<Key ID> 或 Bearer sk-ar-xxx'
 61 |     )
 62 |   }
 63 | 
 64 |   const authValue = authHeader.substring(7).trim() // 去掉 "Bearer " 前缀
 65 | 
 66 |   // 获取配置
 67 |   const config = await getConfigFromDB(env)
 68 | 
 69 |   let tokenToUse
 70 |   let targetApiUrl
 71 |   let usedKeyId = null
 72 | 
 73 |   // 检查是否是 SK 别名模式 (sk-ar-xxx)
 74 |   if (authValue.startsWith('sk-ar-')) {
 75 |     const found = findBySkAlias(config, authValue)
 76 |     if (!found) {
 77 |       return errorResponse(
 78 |         'NOT_FOUND',
 79 |         'SK 别名不存在',
 80 |         `找不到 SK 别名 "${authValue}"，请检查是否输入正确或联系管理员获取有效的 SK`
 81 |       )
 82 |     }
 83 | 
 84 |     if (!found.key.enabled) {
 85 |       return errorResponse(
 86 |         'FORBIDDEN',
 87 |         'SK 已被禁用',
 88 |         '此 SK 别名当前处于禁用状态，请联系管理员启用'
 89 |       )
 90 |     }
 91 | 
 92 |     // 检查是否过期
 93 |     if (found.key.expires_at && new Date(found.key.expires_at) < new Date()) {
 94 |       return errorResponse(
 95 |         'FORBIDDEN',
 96 |         'SK 已过期',
 97 |         `此 SK 别名已于 ${found.key.expires_at} 过期，请联系管理员续期或获取新的 SK`
 98 |       )
 99 |     }
100 | 
101 |     tokenToUse = found.key.token
102 |     targetApiUrl = found.apiUrl
103 |     usedKeyId = found.key.key_id
104 |   } else {
105 |     // 原有格式: <api_url>:<key>
106 |     // 需要从最后一个冒号分割，因为 URL 中可能包含端口号 (https://api.example.com:8080:key)
107 |     const lastColonIndex = authValue.lastIndexOf(':')
108 |     if (lastColonIndex === -1 || lastColonIndex < 8) {
109 |       // 没有冒号，或者冒号在 https:// 中
110 |       return errorResponse(
111 |         'BAD_REQUEST',
112 |         '授权格式错误',
113 |         '正确格式: <API_URL>:<Key ID> 或 sk-ar-xxx，例如 https://api.openai.com:a3x9k2'
114 |       )
115 |     }
116 | 
117 |     targetApiUrl = authValue.substring(0, lastColonIndex)
118 |     const keyPart = authValue.substring(lastColonIndex + 1)
119 | 
120 |     // 验证 API URL 格式
121 |     if (!targetApiUrl.startsWith('http://') && !targetApiUrl.startsWith('https://')) {
122 |       return errorResponse(
123 |         'BAD_REQUEST',
124 |         'API URL 格式无效',
125 |         'URL 必须以 http:// 或 https:// 开头'
126 |       )
127 |     }
128 | 
129 |     if (!keyPart) {
130 |       return errorResponse(
131 |         'BAD_REQUEST',
132 |         '缺少 Key ID 或 Token',
133 |         '请在 URL 后面加上冒号和 Key ID（6位）或完整 Token'
134 |       )
135 |     }
136 | 
137 |     // 判断是 key_id (6位字母数字) 还是直接 token
138 |     const isKeyId = /^[a-z0-9]{6}$/.test(keyPart)
139 | 
140 |     if (isKeyId) {
141 |       // 按 key_id 查找 token
142 |       const keyId = keyPart
143 |       usedKeyId = keyId
144 | 
145 |       // 检查该 API URL 是否在配置中
146 |       if (!config[targetApiUrl]) {
147 |         return errorResponse(
148 |           'NOT_FOUND',
149 |           'API 地址未配置',
150 |           `目标 API "${targetApiUrl}" 尚未在系统中注册，请联系管理员添加配置`
151 |         )
152 |       }
153 | 
154 |       // 在该 URL 的 keys 中查找指定 key_id
155 |       const keyConfig = config[targetApiUrl].keys.find(k => k.key_id === keyId)
156 |       if (!keyConfig) {
157 |         return errorResponse(
158 |           'NOT_FOUND',
159 |           'Key ID 不存在',
160 |           `找不到 Key ID "${keyId}"，请检查是否输入正确或联系管理员获取有效的 Key ID`
161 |         )
162 |       }
163 | 
164 |       if (!keyConfig.enabled) {
165 |         return errorResponse(
166 |           'FORBIDDEN',
167 |           'Key 已被禁用',
168 |           `Key ID "${keyId}" 当前处于禁用状态，请联系管理员启用或获取新的 Key ID`
169 |         )
170 |       }
171 | 
172 |       // 检查是否过期
173 |       if (keyConfig.expires_at && new Date(keyConfig.expires_at) < new Date()) {
174 |         return errorResponse(
175 |           'FORBIDDEN',
176 |           'Key 已过期',
177 |           `Key ID "${keyId}" 已于 ${keyConfig.expires_at} 过期，请联系管理员续期或获取新的 Key ID`
178 |         )
179 |       }
180 | 
181 |       tokenToUse = keyConfig.token
182 |     } else {
183 |       // 直接使用传入的 token
184 |       tokenToUse = keyPart
185 |     }
186 |   }
187 | 
188 |   // 设置目标主机和协议
189 |   const targetUrl = new URL(targetApiUrl)
190 | 
191 |   // 检查是否在尝试反代自身（禁止循环代理）
192 |   const selfHostname = url.hostname.toLowerCase()
193 |   const targetHostname = targetUrl.hostname.toLowerCase()
194 |   if (targetHostname === selfHostname ||
195 |       targetHostname.endsWith('.' + selfHostname) ||
196 |       selfHostname.endsWith('.' + targetHostname)) {
197 |     return errorResponse(
198 |       'FORBIDDEN',
199 |       '禁止反代自身',
200 |       '不允许将请求代理到代理服务自身的域名，这会造成循环请求'
201 |     )
202 |   }
203 | 
204 |   url.protocol = targetUrl.protocol
205 |   url.hostname = targetUrl.hostname
206 |   url.port = targetUrl.port || ''
207 | 
208 |   // 获取原始请求头
209 |   const headers = new Headers(request.headers)
210 | 
211 |   // 设置 Authorization header
212 |   headers.set('authorization', 'Bearer ' + tokenToUse)
213 | 
214 |   const modifiedRequest = new Request(url.toString(), {
215 |     headers: headers,
216 |     method: request.method,
217 |     body: request.body,
218 |     redirect: 'follow',
219 |   })
220 | 
221 |   try {
222 |     const response = await fetch(modifiedRequest)
223 |     const modifiedResponse = new Response(response.body, response)
224 | 
225 |     // 添加允许跨域访问的响应头
226 |     modifiedResponse.headers.set('Access-Control-Allow-Origin', '*')
227 | 
228 |     // SSE 流式响应优化：禁用缓冲和压缩，确保实时传输
229 |     const contentType = response.headers.get('content-type') || ''
230 |     const isStreaming = contentType.includes('text/event-stream') ||
231 |                         contentType.includes('stream') ||
232 |                         request.headers.get('accept')?.includes('text/event-stream')
233 |     if (isStreaming) {
234 |       modifiedResponse.headers.set('Cache-Control', 'no-cache, no-store, no-transform, must-revalidate')
235 |       modifiedResponse.headers.set('X-Accel-Buffering', 'no')
236 |       modifiedResponse.headers.set('Connection', 'keep-alive')
237 |       modifiedResponse.headers.set('Content-Encoding', 'identity')
238 |       // 删除可能导致缓冲的 headers
239 |       modifiedResponse.headers.delete('Content-Length')
240 |     }
241 | 
242 |     // 记录请求统计（使用 waitUntil 确保在响应后完成）
243 |     if (ctx && ctx.waitUntil) {
244 |       ctx.waitUntil(recordRequest(env, {
245 |         apiUrl: targetApiUrl,
246 |         keyId: usedKeyId,
247 |         success: response.ok,
248 |         ip: clientIp,
249 |       }))
250 |     }
251 | 
252 |     return modifiedResponse
253 |   } catch (error) {
254 |     // 记录失败请求
255 |     if (ctx && ctx.waitUntil) {
256 |       ctx.waitUntil(recordRequest(env, {
257 |         apiUrl: targetApiUrl,
258 |         keyId: usedKeyId,
259 |         success: false,
260 |         ip: clientIp,
261 |       }))
262 |     }
263 | 
264 |     console.error('Proxy request error:', error)
265 |     return errorResponse(
266 |       'SERVICE_ERROR',
267 |       '代理请求失败',
268 |       `无法连接到目标 API "${targetApiUrl}"，可能是网络问题或目标服务不可用，请稍后重试`
269 |     )
270 |   }
271 | }
272 | 


--------------------------------------------------------------------------------
/src/handlers/api.js:
--------------------------------------------------------------------------------
  1 | // ============ API 路由处理 ============
  2 | 
  3 | import { verifyAdmin, validateConfigPayload, jsonResponse } from '../utils/helpers.js'
  4 | import {
  5 |   getConfigFromDB,
  6 |   saveConfigToDB,
  7 |   updateConfigInDB,
  8 |   deleteConfigFromDB,
  9 |   updateSkAlias,
 10 | } from '../db/supabase.js'
 11 | import { getStats, getLastUsedTimes, recordLogin, getLoginRecords, blockIp, unblockIp, getBlockedIps } from '../cache/stats.js'
 12 | import { getRedisClient } from '../cache/redis.js'
 13 | import { warmupCache } from '../cache/index.js'
 14 | 
 15 | /**
 16 |  * 处理 API 请求
 17 |  */
 18 | export async function handleApiRequest(request, env, url) {
 19 |   // 验证管理员权限
 20 |   if (!verifyAdmin(request, env)) {
 21 |     return jsonResponse({ error: 'Unauthorized' }, 401)
 22 |   }
 23 | 
 24 |   const path = url.pathname
 25 | 
 26 |   // GET /api/configs - 获取所有配置
 27 |   if (path === '/api/configs' && request.method === 'GET') {
 28 |     const config = await getConfigFromDB(env)
 29 |     const lastUsed = await getLastUsedTimes(env)
 30 |     return jsonResponse({ success: true, data: config, lastUsed })
 31 |   }
 32 | 
 33 |   // POST /api/configs - 添加新配置
 34 |   if (path === '/api/configs' && request.method === 'POST') {
 35 |     const body = await request.json()
 36 |     const validation = validateConfigPayload(body)
 37 |     if (!validation.valid) {
 38 |       return jsonResponse({ error: validation.error }, 400)
 39 |     }
 40 |     const result = await saveConfigToDB(
 41 |       env,
 42 |       body.api_url,
 43 |       body.token,
 44 |       body.enabled ?? true,
 45 |       body.remark || '',
 46 |       body.expires_at || null
 47 |     )
 48 |     return jsonResponse(result, result.success ? 200 : 400)
 49 |   }
 50 | 
 51 |   // PATCH /api/configs/:id - 更新配置
 52 |   if (path.match(/^\/api\/configs\/\d+$/) && request.method === 'PATCH') {
 53 |     const id = path.split('/').pop()
 54 |     const body = await request.json()
 55 |     const validation = validateConfigPayload(body, { partial: true })
 56 |     if (!validation.valid) {
 57 |       return jsonResponse({ error: validation.error }, 400)
 58 |     }
 59 |     const result = await updateConfigInDB(env, id, body)
 60 |     return jsonResponse(result, result.success ? 200 : 400)
 61 |   }
 62 | 
 63 |   // DELETE /api/configs/:id - 删除配置
 64 |   if (path.match(/^\/api\/configs\/\d+$/) && request.method === 'DELETE') {
 65 |     const id = path.split('/').pop()
 66 |     const result = await deleteConfigFromDB(env, id)
 67 |     return jsonResponse(result, result.success ? 200 : 400)
 68 |   }
 69 | 
 70 |   // POST /api/configs/:id/sk-alias - 生成或更新 SK 别名
 71 |   if (path.match(/^\/api\/configs\/\d+\/sk-alias$/) && request.method === 'POST') {
 72 |     const id = path.split('/')[3]
 73 |     const result = await updateSkAlias(env, id)
 74 |     return jsonResponse(result, result.success ? 200 : 400)
 75 |   }
 76 | 
 77 |   // DELETE /api/configs/:id/sk-alias - 删除 SK 别名
 78 |   if (path.match(/^\/api\/configs\/\d+\/sk-alias$/) && request.method === 'DELETE') {
 79 |     const id = path.split('/')[3]
 80 |     const result = await updateSkAlias(env, id, '')
 81 |     return jsonResponse(result, result.success ? 200 : 400)
 82 |   }
 83 | 
 84 |   // GET /api/status - 获取系统状态（存储模式、数据库连接）
 85 |   if (path === '/api/status' && request.method === 'GET') {
 86 |     const hasDbConfig = Boolean(env.SUPABASE_URL && env.SUPABASE_KEY)
 87 |     const result = {
 88 |       success: true,
 89 |       storage_mode: hasDbConfig ? 'database' : 'passthrough',
 90 |       database_configured: hasDbConfig,
 91 |       database_connected: false,
 92 |     }
 93 | 
 94 |     if (hasDbConfig) {
 95 |       // 测试数据库连接
 96 |       try {
 97 |         const response = await fetch(
 98 |           `${env.SUPABASE_URL}/rest/v1/api_configs?select=count&limit=1`,
 99 |           {
100 |             headers: {
101 |               apikey: env.SUPABASE_KEY,
102 |               Authorization: `Bearer ${env.SUPABASE_KEY}`,
103 |             },
104 |           }
105 |         )
106 |         result.database_connected = response.ok
107 |         if (!response.ok) {
108 |           result.database_error = `HTTP ${response.status}`
109 |         }
110 |       } catch (error) {
111 |         result.database_connected = false
112 |         result.database_error = error.message
113 |       }
114 |     }
115 | 
116 |     return jsonResponse(result)
117 |   }
118 | 
119 |   // POST /api/login - 记录登录（验证成功后前端调用）
120 |   if (path === '/api/login' && request.method === 'POST') {
121 |     await recordLogin(env, request)
122 |     return jsonResponse({ success: true })
123 |   }
124 | 
125 |   // GET /api/logins - 获取登录记录
126 |   if (path === '/api/logins' && request.method === 'GET') {
127 |     const limit = parseInt(url.searchParams.get('limit') || '20')
128 |     const records = await getLoginRecords(env, limit)
129 |     return jsonResponse({ success: true, data: records })
130 |   }
131 | 
132 |   // GET /api/stats - 获取请求统计数据
133 |   if (path === '/api/stats' && request.method === 'GET') {
134 |     const days = parseInt(url.searchParams.get('days') || '7')
135 |     const stats = await getStats(env, days)
136 |     return jsonResponse({ success: true, data: stats })
137 |   }
138 | 
139 |   // ============ IP 黑名单 API ============
140 | 
141 |   // GET /api/blacklist - 获取黑名单列表
142 |   if (path === '/api/blacklist' && request.method === 'GET') {
143 |     const blockedIps = await getBlockedIps(env)
144 |     return jsonResponse({ success: true, data: blockedIps })
145 |   }
146 | 
147 |   // POST /api/blacklist - 添加 IP 到黑名单
148 |   if (path === '/api/blacklist' && request.method === 'POST') {
149 |     const body = await request.json()
150 |     if (!body.ip) {
151 |       return jsonResponse({ error: 'IP address is required' }, 400)
152 |     }
153 |     const result = await blockIp(env, body.ip, body.reason || '手动封禁')
154 |     return jsonResponse(result, result.success ? 200 : 400)
155 |   }
156 | 
157 |   // DELETE /api/blacklist/:ip - 从黑名单移除 IP
158 |   if (path.startsWith('/api/blacklist/') && request.method === 'DELETE') {
159 |     const ip = decodeURIComponent(path.replace('/api/blacklist/', ''))
160 |     if (!ip) {
161 |       return jsonResponse({ error: 'IP address is required' }, 400)
162 |     }
163 |     const result = await unblockIp(env, ip)
164 |     return jsonResponse(result, result.success ? 200 : 400)
165 |   }
166 | 
167 |   // GET /api/redis/test - 测试 Redis 连接
168 |   if (path === '/api/redis/test' && request.method === 'GET') {
169 |     const redis = getRedisClient(env)
170 |     if (!redis) {
171 |       return jsonResponse({
172 |         success: false,
173 |         configured: false,
174 |         error: 'Redis not configured (missing UPSTASH_REDIS_URL or UPSTASH_REDIS_TOKEN)'
175 |       })
176 |     }
177 | 
178 |     try {
179 |       const testKey = 'anyrouter:test:ping'
180 |       const testValue = Date.now().toString()
181 | 
182 |       // 测试写入
183 |       await redis.set(testKey, testValue, 60)
184 | 
185 |       // 测试读取
186 |       const readValue = await redis.get(testKey)
187 | 
188 |       // 测试删除
189 |       await redis.del(testKey)
190 | 
191 |       return jsonResponse({
192 |         success: true,
193 |         configured: true,
194 |         connected: true,
195 |         latency_test: readValue === testValue ? 'passed' : 'failed',
196 |         message: 'Redis connection successful'
197 |       })
198 |     } catch (error) {
199 |       return jsonResponse({
200 |         success: false,
201 |         configured: true,
202 |         connected: false,
203 |         error: error.message
204 |       })
205 |     }
206 |   }
207 | 
208 |   // POST /api/cache/warmup - 预热缓存（从数据库加载到 Redis/KV/内存）
209 |   if (path === '/api/cache/warmup' && request.method === 'POST') {
210 |     const result = await warmupCache(env)
211 |     return jsonResponse(result, result.success ? 200 : 400)
212 |   }
213 | 
214 |   // POST /api/stats/test - 测试统计记录功能（直接写入 Redis）
215 |   if (path === '/api/stats/test' && request.method === 'POST') {
216 |     const redis = getRedisClient(env)
217 |     if (!redis) {
218 |       return jsonResponse({ success: false, error: 'Redis not configured' })
219 |     }
220 | 
221 |     const today = new Date().toISOString().split('T')[0]
222 |     const key = `anyrouter:stats:daily:${today}:total`
223 | 
224 |     try {
225 |       // 直接测试 INCR 命令
226 |       const result = await redis.request(['INCR', key])
227 |       // 设置过期时间
228 |       await redis.request(['EXPIRE', key, 604800])
229 |       return jsonResponse({
230 |         success: true,
231 |         message: '写入成功',
232 |         key: key,
233 |         newValue: result
234 |       })
235 |     } catch (error) {
236 |       return jsonResponse({ success: false, error: error.message, stack: error.stack })
237 |     }
238 |   }
239 | 
240 |   return jsonResponse({ error: 'Not found' }, 404)
241 | }
242 | 


--------------------------------------------------------------------------------
/src/db/supabase.js:
--------------------------------------------------------------------------------
  1 | // ============ Supabase 数据库操作 ============
  2 | 
  3 | import {
  4 |   FALLBACK_CONFIG,
  5 |   CACHE_KEY,
  6 |   REDIS_CACHE_TTL_SECONDS,
  7 |   KV_CACHE_TTL_SECONDS,
  8 | } from '../config.js'
  9 | import { getCachedConfig, setConfigCache, invalidateAllCache } from '../cache/index.js'
 10 | import { getRedisClient } from '../cache/redis.js'
 11 | 
 12 | // 包装函数：清除所有缓存（内存 + Redis + KV）
 13 | async function clearAllCache(env) {
 14 |   await invalidateAllCache(env)
 15 | }
 16 | 
 17 | /**
 18 |  * 从 Supabase 获取配置（支持多级缓存）
 19 |  * 缓存优先级：内存(10min) -> Redis(5min) -> KV(5min,备用) -> 数据库
 20 |  */
 21 | export async function getConfigFromDB(env) {
 22 |   // 1. 优先返回内存缓存（最快，~0ms）
 23 |   const memoryCached = getCachedConfig()
 24 |   if (memoryCached) {
 25 |     return memoryCached
 26 |   }
 27 | 
 28 |   // 2. 尝试从 Redis 缓存获取（推荐，~5-20ms）
 29 |   const redis = getRedisClient(env)
 30 |   if (redis) {
 31 |     try {
 32 |       const redisCached = await redis.get(CACHE_KEY)
 33 |       if (redisCached) {
 34 |         const parsed = JSON.parse(redisCached)
 35 |         setConfigCache(parsed)
 36 |         return parsed
 37 |       }
 38 |     } catch {
 39 |       // Redis 读取失败，继续
 40 |     }
 41 |   }
 42 | 
 43 |   // 3. 尝试从 KV 缓存获取（备用，~1-5ms）
 44 |   if (env.CONFIG_KV) {
 45 |     try {
 46 |       const kvCached = await env.CONFIG_KV.get(CACHE_KEY, { type: 'json' })
 47 |       if (kvCached) {
 48 |         setConfigCache(kvCached)
 49 |         return kvCached
 50 |       }
 51 |     } catch {
 52 |       // KV 读取失败，继续
 53 |     }
 54 |   }
 55 | 
 56 |   // 4. 无数据库配置时返回 fallback
 57 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
 58 |     setConfigCache(FALLBACK_CONFIG)
 59 |     return FALLBACK_CONFIG
 60 |   }
 61 | 
 62 |   // 5. 从数据库查询（最慢，~50-200ms）
 63 |   try {
 64 |     // 先尝试带软删除过滤的查询
 65 |     let response = await fetch(
 66 |       `${env.SUPABASE_URL}/rest/v1/api_configs?select=*&deleted_at=is.null&order=created_at.desc`,
 67 |       {
 68 |         headers: {
 69 |           apikey: env.SUPABASE_KEY,
 70 |           Authorization: `Bearer ${env.SUPABASE_KEY}`,
 71 |         },
 72 |       },
 73 |     )
 74 | 
 75 |     // 如果查询失败（可能是 deleted_at 列不存在），回退到不带过滤的查询
 76 |     if (!response.ok) {
 77 |       response = await fetch(
 78 |         `${env.SUPABASE_URL}/rest/v1/api_configs?select=*&order=created_at.desc`,
 79 |         {
 80 |           headers: {
 81 |             apikey: env.SUPABASE_KEY,
 82 |             Authorization: `Bearer ${env.SUPABASE_KEY}`,
 83 |           },
 84 |         },
 85 |       )
 86 |     }
 87 | 
 88 |     if (!response.ok) {
 89 |       setConfigCache(FALLBACK_CONFIG)
 90 |       return FALLBACK_CONFIG
 91 |     }
 92 | 
 93 |     const data = await response.json()
 94 |     const config = {}
 95 | 
 96 |     data.forEach((item) => {
 97 |       if (!config[item.api_url]) {
 98 |         config[item.api_url] = { keys: [] }
 99 |       }
100 |       config[item.api_url].keys.push({
101 |         id: item.id,
102 |         key_id: item.key_id,
103 |         sk_alias: item.sk_alias || null,
104 |         token: item.token,
105 |         enabled: item.enabled,
106 |         remark: item.remark || '',
107 |         expires_at: item.expires_at || null,
108 |         created_at: item.created_at,
109 |         updated_at: item.updated_at,
110 |       })
111 |     })
112 | 
113 |     const finalizedConfig = Object.keys(config).length > 0 ? config : FALLBACK_CONFIG
114 | 
115 |     // 写入内存缓存
116 |     setConfigCache(finalizedConfig)
117 | 
118 |     // 写入 Redis 缓存（异步，不阻塞响应）
119 |     if (redis) {
120 |       redis.set(CACHE_KEY, JSON.stringify(finalizedConfig), REDIS_CACHE_TTL_SECONDS)
121 |         .catch(() => {})
122 |     }
123 | 
124 |     // 写入 KV 缓存（备用，异步）
125 |     if (env.CONFIG_KV) {
126 |       env.CONFIG_KV.put(CACHE_KEY, JSON.stringify(finalizedConfig), {
127 |         expirationTtl: KV_CACHE_TTL_SECONDS,
128 |       }).catch(() => {})
129 |     }
130 | 
131 |     return finalizedConfig
132 |   } catch {
133 |     setConfigCache(FALLBACK_CONFIG)
134 |     return FALLBACK_CONFIG
135 |   }
136 | }
137 | 
138 | /**
139 |  * 保存配置到数据库
140 |  */
141 | export async function saveConfigToDB(env, apiUrl, token, enabled, remark = '', expiresAt = null) {
142 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
143 |     return { success: false, error: 'Database not configured' }
144 |   }
145 | 
146 |   try {
147 |     const response = await fetch(`${env.SUPABASE_URL}/rest/v1/api_configs`, {
148 |       method: 'POST',
149 |       headers: {
150 |         apikey: env.SUPABASE_KEY,
151 |         Authorization: `Bearer ${env.SUPABASE_KEY}`,
152 |         'Content-Type': 'application/json',
153 |         Prefer: 'return=representation',
154 |       },
155 |       body: JSON.stringify({
156 |         api_url: apiUrl,
157 |         token: token,
158 |         enabled: enabled,
159 |         remark: remark || null,
160 |         expires_at: expiresAt || null,
161 |       }),
162 |     })
163 | 
164 |     if (!response.ok) {
165 |       return { success: false, error: await response.text() }
166 |     }
167 | 
168 |     await clearAllCache(env)
169 |     return { success: true, data: await response.json() }
170 |   } catch (error) {
171 |     return { success: false, error: error.message }
172 |   }
173 | }
174 | 
175 | /**
176 |  * 更新配置
177 |  */
178 | export async function updateConfigInDB(env, id, updates) {
179 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
180 |     return { success: false, error: 'Database not configured' }
181 |   }
182 | 
183 |   try {
184 |     // 添加更新时间
185 |     const data = { ...updates, updated_at: new Date().toISOString() }
186 | 
187 |     const response = await fetch(
188 |       `${env.SUPABASE_URL}/rest/v1/api_configs?id=eq.${id}`,
189 |       {
190 |         method: 'PATCH',
191 |         headers: {
192 |           apikey: env.SUPABASE_KEY,
193 |           Authorization: `Bearer ${env.SUPABASE_KEY}`,
194 |           'Content-Type': 'application/json',
195 |         },
196 |         body: JSON.stringify(data),
197 |       }
198 |     )
199 | 
200 |     if (!response.ok) {
201 |       return { success: false, error: await response.text() }
202 |     }
203 | 
204 |     await clearAllCache(env)
205 |     return { success: true }
206 |   } catch (error) {
207 |     return { success: false, error: error.message }
208 |   }
209 | }
210 | 
211 | /**
212 |  * 软删除配置（设置 deleted_at 而非物理删除）
213 |  */
214 | export async function deleteConfigFromDB(env, id) {
215 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
216 |     return { success: false, error: 'Database not configured' }
217 |   }
218 | 
219 |   try {
220 |     const response = await fetch(
221 |       `${env.SUPABASE_URL}/rest/v1/api_configs?id=eq.${id}`,
222 |       {
223 |         method: 'PATCH',
224 |         headers: {
225 |           apikey: env.SUPABASE_KEY,
226 |           Authorization: `Bearer ${env.SUPABASE_KEY}`,
227 |           'Content-Type': 'application/json',
228 |         },
229 |         body: JSON.stringify({
230 |           deleted_at: new Date().toISOString(),
231 |         }),
232 |       }
233 |     )
234 | 
235 |     if (!response.ok) {
236 |       return { success: false, error: await response.text() }
237 |     }
238 | 
239 |     await clearAllCache(env)
240 |     return { success: true }
241 |   } catch (error) {
242 |     return { success: false, error: error.message }
243 |   }
244 | }
245 | 
246 | /**
247 |  * 生成 SK 别名
248 |  * 格式: sk-ar-[32位随机字符]
249 |  * 类似 OpenAI 的 sk-xxx 格式
250 |  */
251 | export function generateSkAlias() {
252 |   const chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789'
253 |   let result = 'sk-ar-'
254 |   for (let i = 0; i < 32; i++) {
255 |     result += chars.charAt(Math.floor(Math.random() * chars.length))
256 |   }
257 |   return result
258 | }
259 | 
260 | /**
261 |  * 更新配置的 SK 别名
262 |  * @param {object} env - 环境变量
263 |  * @param {number} id - 配置 ID
264 |  * @param {string|null} skAlias - SK 别名（null 表示生成新的）
265 |  */
266 | export async function updateSkAlias(env, id, skAlias = null) {
267 |   if (!env.SUPABASE_URL || !env.SUPABASE_KEY) {
268 |     return { success: false, error: 'Database not configured' }
269 |   }
270 | 
271 |   const newAlias = skAlias || generateSkAlias()
272 | 
273 |   try {
274 |     const response = await fetch(
275 |       `${env.SUPABASE_URL}/rest/v1/api_configs?id=eq.${id}`,
276 |       {
277 |         method: 'PATCH',
278 |         headers: {
279 |           apikey: env.SUPABASE_KEY,
280 |           Authorization: `Bearer ${env.SUPABASE_KEY}`,
281 |           'Content-Type': 'application/json',
282 |           Prefer: 'return=representation',
283 |         },
284 |         body: JSON.stringify({
285 |           sk_alias: newAlias,
286 |           updated_at: new Date().toISOString(),
287 |         }),
288 |       }
289 |     )
290 | 
291 |     if (!response.ok) {
292 |       return { success: false, error: await response.text() }
293 |     }
294 | 
295 |     await clearAllCache(env)
296 |     return { success: true, sk_alias: newAlias }
297 |   } catch (error) {
298 |     return { success: false, error: error.message }
299 |   }
300 | }
301 | 
302 | /**
303 |  * 通过 SK 别名查找配置
304 |  * @param {object} config - 配置对象
305 |  * @param {string} skAlias - SK 别名
306 |  * @returns {{ apiUrl: string, key: object } | null}
307 |  */
308 | export function findBySkAlias(config, skAlias) {
309 |   for (const [apiUrl, apiConfig] of Object.entries(config)) {
310 |     if (!apiConfig.keys) continue
311 |     const key = apiConfig.keys.find(k => k.sk_alias === skAlias)
312 |     if (key) {
313 |       return { apiUrl, key }
314 |     }
315 |   }
316 |   return null
317 | }
318 | 
319 | /**
320 |  * 从指定 URL 的配置中随机选择一个启用的 key
321 |  */
322 | export function getRandomEnabledKey(config, apiUrl) {
323 |   const apiConfig = config[apiUrl]
324 |   if (!apiConfig || !apiConfig.keys) {
325 |     return null
326 |   }
327 | 
328 |   // 过滤出所有启用的 keys
329 |   const enabledKeys = apiConfig.keys.filter((key) => key.enabled)
330 | 
331 |   if (enabledKeys.length === 0) {
332 |     return null
333 |   }
334 | 
335 |   // 随机选择一个启用的 key
336 |   const randomIndex = Math.floor(Math.random() * enabledKeys.length)
337 |   return enabledKeys[randomIndex].token
338 | }
339 | 


--------------------------------------------------------------------------------
/src/cache/stats.js:
--------------------------------------------------------------------------------
  1 | // ============ Redis 请求统计 & IP 黑名单 ============
  2 | 
  3 | import { getRedisClient } from './redis.js'
  4 | 
  5 | // 统计 Key 前缀
  6 | const STATS_PREFIX = 'anyrouter:stats'
  7 | const BLACKLIST_KEY = 'anyrouter:blacklist:ips'
  8 | 
  9 | // 统计采样配置
 10 | // STATS_SAMPLE_PERCENT: 采样百分比（1-100）
 11 | //   100 = 100% 每次请求都记录（默认，精确但 Redis 调用多）
 12 | //   10 = 10% 只记录 1/10 的请求（统计值会自动乘以 10 还原）
 13 | //   1 = 1% 只记录 1/100 的请求（大流量场景推荐）
 14 | const STATS_SAMPLE_PERCENT = 100
 15 | 
 16 | /**
 17 |  * 获取今日日期字符串 (YYYY-MM-DD)
 18 |  */
 19 | function getTodayKey() {
 20 |   return new Date().toISOString().split('T')[0]
 21 | }
 22 | 
 23 | /**
 24 |  * 获取当前小时字符串 (YYYY-MM-DD-HH)
 25 |  */
 26 | function getHourKey() {
 27 |   const now = new Date()
 28 |   return `${now.toISOString().split('T')[0]}-${now.getUTCHours().toString().padStart(2, '0')}`
 29 | }
 30 | 
 31 | /**
 32 |  * 记录请求统计（优化版：采样减少 Redis 调用）
 33 |  * @param {object} env - 环境变量
 34 |  * @param {object} data - 请求数据 { apiUrl, keyId, success, ip }
 35 |  */
 36 | export async function recordRequest(env, data) {
 37 |   const redis = getRedisClient(env)
 38 |   if (!redis) return
 39 | 
 40 |   // 采样判断：随机数 < 采样百分比 时才记录
 41 |   // 例如 STATS_SAMPLE_PERCENT=10 时，只有 10% 的请求会记录
 42 |   const shouldRecord = Math.random() * 100 < STATS_SAMPLE_PERCENT
 43 |   if (!shouldRecord) return
 44 | 
 45 |   // 倍率：用于还原真实统计值
 46 |   // 例如 10% 采样时，每次记录 +10 来估算真实总数
 47 |   const multiplier = Math.round(100 / STATS_SAMPLE_PERCENT)
 48 | 
 49 |   const { apiUrl, keyId, success, ip } = data
 50 |   const today = getTodayKey()
 51 |   const hour = getHourKey()
 52 | 
 53 |   try {
 54 |     // 基础统计（每次采样都记录）
 55 |     await redis.request(['INCRBY', `${STATS_PREFIX}:daily:${today}:total`, multiplier])
 56 |     await redis.request(['INCRBY', `${STATS_PREFIX}:daily:${today}:${success ? 'success' : 'error'}`, multiplier])
 57 |     await redis.request(['INCRBY', `${STATS_PREFIX}:hourly:${hour}:total`, multiplier])
 58 | 
 59 |     // URL 统计
 60 |     if (apiUrl) {
 61 |       await redis.request(['HINCRBY', `${STATS_PREFIX}:daily:${today}:urls`, apiUrl, multiplier])
 62 |     }
 63 | 
 64 |     // Key 统计
 65 |     if (keyId) {
 66 |       await redis.request(['HINCRBY', `${STATS_PREFIX}:daily:${today}:keys`, keyId, multiplier])
 67 |       await redis.request(['HSET', `${STATS_PREFIX}:lastused`, keyId, new Date().toISOString()])
 68 |     }
 69 | 
 70 |     // IP 统计
 71 |     if (ip && ip !== 'unknown') {
 72 |       await redis.request(['HINCRBY', `${STATS_PREFIX}:daily:${today}:ips`, ip, multiplier])
 73 |     }
 74 | 
 75 |     // 设置过期时间（7天）
 76 |     const ttl = 7 * 24 * 60 * 60
 77 |     await redis.request(['EXPIRE', `${STATS_PREFIX}:daily:${today}:total`, ttl])
 78 |     await redis.request(['EXPIRE', `${STATS_PREFIX}:hourly:${hour}:total`, ttl])
 79 |   } catch {
 80 |     // 统计失败不影响主流程
 81 |   }
 82 | }
 83 | 
 84 | /**
 85 |  * 获取统计数据
 86 |  * @param {object} env - 环境变量
 87 |  * @param {number} days - 查询天数（默认7天）
 88 |  */
 89 | export async function getStats(env, days = 7) {
 90 |   const redis = getRedisClient(env)
 91 |   if (!redis) {
 92 |     return { enabled: false, message: 'Redis not configured' }
 93 |   }
 94 | 
 95 |   try {
 96 |     const stats = {
 97 |       enabled: true,
 98 |       daily: [],
 99 |       hourly: [],
100 |       topUrls: {},
101 |       topKeys: {},
102 |       topIps: {},
103 |       summary: { total: 0, success: 0, error: 0 },
104 |     }
105 | 
106 |     // 获取最近 N 天的数据
107 |     const dates = []
108 |     for (let i = 0; i < days; i++) {
109 |       const d = new Date()
110 |       d.setDate(d.getDate() - i)
111 |       dates.push(d.toISOString().split('T')[0])
112 |     }
113 | 
114 |     // 查询每日数据
115 |     for (const date of dates) {
116 |       const total = await redis.get(`${STATS_PREFIX}:daily:${date}:total`) || 0
117 |       const success = await redis.get(`${STATS_PREFIX}:daily:${date}:success`) || 0
118 |       const error = await redis.get(`${STATS_PREFIX}:daily:${date}:error`) || 0
119 | 
120 |       stats.daily.push({
121 |         date,
122 |         total: parseInt(total),
123 |         success: parseInt(success),
124 |         error: parseInt(error),
125 |       })
126 | 
127 |       stats.summary.total += parseInt(total)
128 |       stats.summary.success += parseInt(success)
129 |       stats.summary.error += parseInt(error)
130 |     }
131 | 
132 |     // 获取今日 URL 使用排行
133 |     const today = getTodayKey()
134 |     const urlStats = await redis.request(['HGETALL', `${STATS_PREFIX}:daily:${today}:urls`])
135 |     if (urlStats && Array.isArray(urlStats)) {
136 |       for (let i = 0; i < urlStats.length; i += 2) {
137 |         stats.topUrls[urlStats[i]] = parseInt(urlStats[i + 1])
138 |       }
139 |     }
140 | 
141 |     // 获取今日 Key 使用排行
142 |     const keyStats = await redis.request(['HGETALL', `${STATS_PREFIX}:daily:${today}:keys`])
143 |     if (keyStats && Array.isArray(keyStats)) {
144 |       for (let i = 0; i < keyStats.length; i += 2) {
145 |         stats.topKeys[keyStats[i]] = parseInt(keyStats[i + 1])
146 |       }
147 |     }
148 | 
149 |     // 获取今日 IP 使用排行
150 |     const ipStats = await redis.request(['HGETALL', `${STATS_PREFIX}:daily:${today}:ips`])
151 |     if (ipStats && Array.isArray(ipStats)) {
152 |       for (let i = 0; i < ipStats.length; i += 2) {
153 |         stats.topIps[ipStats[i]] = parseInt(ipStats[i + 1])
154 |       }
155 |     }
156 | 
157 |     // 获取最近24小时数据
158 |     for (let i = 0; i < 24; i++) {
159 |       const d = new Date()
160 |       d.setHours(d.getHours() - i)
161 |       const hourKey = `${d.toISOString().split('T')[0]}-${d.getUTCHours().toString().padStart(2, '0')}`
162 |       const hourTotal = await redis.get(`${STATS_PREFIX}:hourly:${hourKey}:total`) || 0
163 |       stats.hourly.push({
164 |         hour: hourKey,
165 |         total: parseInt(hourTotal),
166 |       })
167 |     }
168 | 
169 |     stats.daily.reverse() // 按时间正序
170 |     stats.hourly.reverse()
171 | 
172 |     return stats
173 |   } catch (error) {
174 |     return { enabled: false, error: error.message }
175 |   }
176 | }
177 | 
178 | /**
179 |  * 获取所有 key 的最后使用时间
180 |  * @param {object} env - 环境变量
181 |  * @returns {Promise<Record<string, string>>} keyId -> ISO时间字符串
182 |  */
183 | export async function getLastUsedTimes(env) {
184 |   const redis = getRedisClient(env)
185 |   if (!redis) return {}
186 | 
187 |   try {
188 |     const result = await redis.request(['HGETALL', `${STATS_PREFIX}:lastused`])
189 |     if (!result || !Array.isArray(result)) return {}
190 | 
191 |     const lastUsed = {}
192 |     for (let i = 0; i < result.length; i += 2) {
193 |       lastUsed[result[i]] = result[i + 1]
194 |     }
195 |     return lastUsed
196 |   } catch {
197 |     return {}
198 |   }
199 | }
200 | 
201 | /**
202 |  * 记录管理员登录
203 |  * @param {object} env - 环境变量
204 |  * @param {Request} request - 请求对象（用于获取 IP）
205 |  */
206 | export async function recordLogin(env, request) {
207 |   const redis = getRedisClient(env)
208 |   if (!redis) return
209 | 
210 |   try {
211 |     // 获取客户端 IP（Cloudflare 提供）
212 |     const ip = request.headers.get('CF-Connecting-IP') ||
213 |                request.headers.get('X-Forwarded-For')?.split(',')[0]?.trim() ||
214 |                'unknown'
215 | 
216 |     const userAgent = request.headers.get('User-Agent') || 'unknown'
217 |     const now = new Date().toISOString()
218 | 
219 |     // 登录记录格式：时间|IP|UA
220 |     const record = JSON.stringify({ time: now, ip, ua: userAgent })
221 | 
222 |     // 使用 LPUSH 添加到列表头部，最多保留 50 条记录
223 |     await redis.request(['LPUSH', `${STATS_PREFIX}:logins`, record])
224 |     await redis.request(['LTRIM', `${STATS_PREFIX}:logins`, 0, 49])
225 |   } catch {
226 |     // 记录失败不影响登录
227 |   }
228 | }
229 | 
230 | /**
231 |  * 获取登录记录
232 |  * @param {object} env - 环境变量
233 |  * @param {number} limit - 获取记录数量（默认20条）
234 |  */
235 | export async function getLoginRecords(env, limit = 20) {
236 |   const redis = getRedisClient(env)
237 |   if (!redis) return []
238 | 
239 |   try {
240 |     const records = await redis.request(['LRANGE', `${STATS_PREFIX}:logins`, 0, limit - 1])
241 |     if (!records || !Array.isArray(records)) return []
242 | 
243 |     return records.map(r => {
244 |       try {
245 |         return JSON.parse(r)
246 |       } catch {
247 |         return null
248 |       }
249 |     }).filter(Boolean)
250 |   } catch {
251 |     return []
252 |   }
253 | }
254 | 
255 | // ============ IP 黑名单管理 ============
256 | 
257 | /**
258 |  * 检查 IP 是否在黑名单中
259 |  * @param {object} env - 环境变量
260 |  * @param {string} ip - IP 地址
261 |  * @returns {Promise<{blocked: boolean, reason?: string}>}
262 |  */
263 | export async function isIpBlocked(env, ip) {
264 |   const redis = getRedisClient(env)
265 |   if (!redis || !ip || ip === 'unknown') return { blocked: false }
266 | 
267 |   try {
268 |     const reason = await redis.request(['HGET', BLACKLIST_KEY, ip])
269 |     if (reason) {
270 |       return { blocked: true, reason: reason || '已被管理员封禁' }
271 |     }
272 |     return { blocked: false }
273 |   } catch {
274 |     return { blocked: false }
275 |   }
276 | }
277 | 
278 | /**
279 |  * 添加 IP 到黑名单
280 |  * @param {object} env - 环境变量
281 |  * @param {string} ip - IP 地址
282 |  * @param {string} reason - 封禁原因
283 |  */
284 | export async function blockIp(env, ip, reason = '手动封禁') {
285 |   const redis = getRedisClient(env)
286 |   if (!redis) return { success: false, error: 'Redis not configured' }
287 | 
288 |   try {
289 |     const record = JSON.stringify({
290 |       reason,
291 |       blocked_at: new Date().toISOString(),
292 |     })
293 |     await redis.request(['HSET', BLACKLIST_KEY, ip, record])
294 |     return { success: true }
295 |   } catch (error) {
296 |     return { success: false, error: error.message }
297 |   }
298 | }
299 | 
300 | /**
301 |  * 从黑名单移除 IP
302 |  * @param {object} env - 环境变量
303 |  * @param {string} ip - IP 地址
304 |  */
305 | export async function unblockIp(env, ip) {
306 |   const redis = getRedisClient(env)
307 |   if (!redis) return { success: false, error: 'Redis not configured' }
308 | 
309 |   try {
310 |     await redis.request(['HDEL', BLACKLIST_KEY, ip])
311 |     return { success: true }
312 |   } catch (error) {
313 |     return { success: false, error: error.message }
314 |   }
315 | }
316 | 
317 | /**
318 |  * 获取黑名单列表
319 |  * @param {object} env - 环境变量
320 |  */
321 | export async function getBlockedIps(env) {
322 |   const redis = getRedisClient(env)
323 |   if (!redis) return []
324 | 
325 |   try {
326 |     const result = await redis.request(['HGETALL', BLACKLIST_KEY])
327 |     if (!result || !Array.isArray(result)) return []
328 | 
329 |     const blockedIps = []
330 |     for (let i = 0; i < result.length; i += 2) {
331 |       const ip = result[i]
332 |       let info = { reason: '手动封禁', blocked_at: null }
333 |       try {
334 |         info = JSON.parse(result[i + 1])
335 |       } catch {
336 |         info.reason = result[i + 1] || '手动封禁'
337 |       }
338 |       blockedIps.push({ ip, ...info })
339 |     }
340 |     return blockedIps
341 |   } catch {
342 |     return []
343 |   }
344 | }
345 | 


--------------------------------------------------------------------------------
/src/pages/admin.js:
--------------------------------------------------------------------------------
  1 | // ============ 管理页面 HTML ============
  2 | 
  3 | /**
  4 |  * 生成管理页面 HTML
  5 |  */
  6 | export function getAdminHtml() {
  7 |   return `<!DOCTYPE html>
  8 | <html lang="zh-CN">
  9 | <head>
 10 |   <meta charset="UTF-8">
 11 |   <meta name="viewport" content="width=device-width, initial-scale=1.0">
 12 |   <title>API Proxy Admin</title>
 13 |   <script src="https://code.jquery.com/jquery-3.7.1.min.js"></script>
 14 |   <script src="https://cdn.tailwindcss.com"></script>
 15 |   <script src="https://cdn.jsdelivr.net/npm/chart.js"></script>
 16 |   <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" rel="stylesheet">
 17 |   <style>
 18 |     @import url('https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap');
 19 |     body { font-family: 'Inter', -apple-system, BlinkMacSystemFont, sans-serif; }
 20 |     .gradient-bg { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); }
 21 |     .glass-effect { background: rgba(255, 255, 255, 0.95); backdrop-filter: blur(10px); border: 1px solid rgba(255, 255, 255, 0.3); }
 22 |     .card-hover { transition: all 0.3s ease; }
 23 |     .card-hover:hover { transform: translateY(-2px); box-shadow: 0 20px 25px -5px rgba(0, 0, 0, 0.1); }
 24 |     .btn-primary { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); transition: all 0.3s ease; }
 25 |     .btn-primary:hover { transform: translateY(-2px); box-shadow: 0 10px 20px rgba(102, 126, 234, 0.4); }
 26 |     .animate-fade-in { animation: fadeIn 0.5s ease-in; }
 27 |     @keyframes fadeIn { from { opacity: 0; transform: translateY(20px); } to { opacity: 1; transform: translateY(0); } }
 28 |     .toast { position: fixed; top: 20px; right: 20px; padding: 16px 24px; border-radius: 12px; color: white; font-weight: 500; box-shadow: 0 10px 25px rgba(0,0,0,0.2); z-index: 9999; animation: slideIn 0.3s ease-out; }
 29 |     @keyframes slideIn { from { transform: translateX(400px); opacity: 0; } to { transform: translateX(0); opacity: 1; } }
 30 |     .toast-success { background: linear-gradient(135deg, #10b981 0%, #059669 100%); }
 31 |     .toast-error { background: linear-gradient(135deg, #ef4444 0%, #dc2626 100%); }
 32 |     .toast-info { background: linear-gradient(135deg, #3b82f6 0%, #2563eb 100%); }
 33 |     .mini-input { padding: 6px 10px !important; font-size: 13px !important; }
 34 |     .mini-btn { padding: 6px 12px !important; font-size: 12px !important; }
 35 |     .mini-table th, .mini-table td { padding: 8px 10px !important; font-size: 12px !important; }
 36 |     .mini-card { padding: 16px !important; }
 37 |     .remark-cell { max-width: 120px; overflow: hidden; text-overflow: ellipsis; white-space: nowrap; }
 38 |   </style>
 39 | </head>
 40 | <body class="gradient-bg min-h-screen">
 41 |   <div class="container mx-auto px-4 py-8 max-w-7xl">
 42 |     <!-- Login Form -->
 43 |     <div id="loginPanel" class="min-h-screen flex items-center justify-center animate-fade-in">
 44 |       <div class="glass-effect rounded-3xl shadow-2xl p-10 max-w-md w-full">
 45 |         <div class="text-center mb-8">
 46 |           <div class="inline-block p-4 bg-gradient-to-br from-purple-500 to-pink-500 rounded-full mb-4">
 47 |             <i class="fas fa-lock text-white text-3xl"></i>
 48 |           </div>
 49 |           <h2 class="text-3xl font-bold text-gray-800 mb-2">管理员登录</h2>
 50 |           <p class="text-gray-500">输入密码以访问管理面板</p>
 51 |         </div>
 52 |         <div class="space-y-5">
 53 |           <div class="relative">
 54 |             <i class="fas fa-key absolute left-4 top-4 text-gray-400"></i>
 55 |             <input type="password" id="passwordInput" placeholder="请输入管理员密码" class="w-full pl-12 pr-4 py-3 border-2 border-gray-200 rounded-xl focus:outline-none focus:border-purple-500 transition-all">
 56 |           </div>
 57 |           <button id="loginBtn" class="w-full py-3 btn-primary text-white rounded-xl font-semibold shadow-lg"><i class="fas fa-sign-in-alt mr-2"></i>登录</button>
 58 |           <div id="loginError" class="text-red-500 text-sm text-center hidden"></div>
 59 |         </div>
 60 |       </div>
 61 |     </div>
 62 | 
 63 |     <!-- Admin Panel -->
 64 |     <div id="adminPanel" class="hidden animate-fade-in">
 65 |       <!-- Header -->
 66 |       <div class="flex justify-between items-center mb-8">
 67 |         <div>
 68 |           <h1 class="text-4xl font-bold text-white mb-2"><i class="fas fa-rocket mr-3"></i>API Proxy 管理中心</h1>
 69 |           <p class="text-purple-100">管理你的 API 端点和密钥配置</p>
 70 |         </div>
 71 |         <div class="flex gap-3">
 72 |           <a href="/docs" class="glass-effect px-6 py-3 text-purple-700 rounded-xl hover:bg-white transition-all font-semibold shadow-lg"><i class="fas fa-book mr-2"></i>文档</a>
 73 |           <a href="https://github.com/dext7r/anyrouter" target="_blank" class="glass-effect px-6 py-3 text-purple-700 rounded-xl hover:bg-white transition-all font-semibold shadow-lg"><i class="fab fa-github mr-2"></i>GitHub</a>
 74 |           <button id="logoutBtn" class="glass-effect px-6 py-3 text-purple-700 rounded-xl hover:bg-white transition-all font-semibold shadow-lg"><i class="fas fa-sign-out-alt mr-2"></i>退出登录</button>
 75 |         </div>
 76 |       </div>
 77 | 
 78 |       <!-- Stats Cards -->
 79 |       <div id="statsCards" class="grid grid-cols-1 md:grid-cols-5 gap-4 mb-8">
 80 |         <div class="glass-effect rounded-2xl p-4 card-hover">
 81 |           <div class="flex items-center justify-between mb-2">
 82 |             <div>
 83 |               <p class="text-gray-500 text-xs font-medium mb-1">存储模式</p>
 84 |               <h3 id="storageMode" class="text-sm font-bold text-gray-800">检测中...</h3>
 85 |             </div>
 86 |             <div id="storageModeIcon" class="p-3 bg-gray-100 rounded-xl"><i class="fas fa-circle-notch fa-spin text-gray-400 text-xl"></i></div>
 87 |           </div>
 88 |           <div id="dbStatus" class="text-xs text-gray-500"><span id="dbStatusText">正在检测...</span></div>
 89 |         </div>
 90 |         <div class="glass-effect rounded-2xl p-4 card-hover">
 91 |           <div class="flex items-center justify-between mb-2">
 92 |             <div>
 93 |               <p class="text-gray-500 text-xs font-medium mb-1">Redis 缓存</p>
 94 |               <h3 id="redisStatus" class="text-sm font-bold text-gray-800">检测中...</h3>
 95 |             </div>
 96 |             <div id="redisIcon" class="p-3 bg-gray-100 rounded-xl"><i class="fas fa-circle-notch fa-spin text-gray-400 text-xl"></i></div>
 97 |           </div>
 98 |           <div id="redisStatusText" class="text-xs text-gray-500">正在检测...</div>
 99 |         </div>
100 |         <div class="glass-effect rounded-2xl p-4 card-hover">
101 |           <div class="flex items-center justify-between">
102 |             <div><p class="text-gray-500 text-xs font-medium mb-1">API 数量</p><h3 id="totalApis" class="text-2xl font-bold text-gray-800">0</h3></div>
103 |             <div class="p-4 bg-blue-100 rounded-xl"><i class="fas fa-server text-blue-600 text-2xl"></i></div>
104 |           </div>
105 |         </div>
106 |         <div class="glass-effect rounded-2xl p-6 card-hover">
107 |           <div class="flex items-center justify-between">
108 |             <div><p class="text-gray-500 text-sm font-medium mb-1">总密钥数</p><h3 id="totalKeys" class="text-3xl font-bold text-gray-800">0</h3></div>
109 |             <div class="p-4 bg-purple-100 rounded-xl"><i class="fas fa-key text-purple-600 text-2xl"></i></div>
110 |           </div>
111 |         </div>
112 |         <div class="glass-effect rounded-2xl p-6 card-hover">
113 |           <div class="flex items-center justify-between">
114 |             <div><p class="text-gray-500 text-sm font-medium mb-1">已启用</p><h3 id="enabledKeys" class="text-3xl font-bold text-green-600">0</h3></div>
115 |             <div class="p-4 bg-green-100 rounded-xl"><i class="fas fa-check-circle text-green-600 text-2xl"></i></div>
116 |           </div>
117 |         </div>
118 |       </div>
119 | 
120 |       <!-- Stats Charts -->
121 |       <div id="statsCharts" class="glass-effect rounded-2xl shadow-xl mb-6 overflow-hidden">
122 |         <div class="p-4 cursor-pointer flex items-center justify-between hover:bg-purple-50 transition-all" onclick="toggleStats()">
123 |           <h2 class="text-lg font-bold text-gray-800"><i class="fas fa-chart-line mr-2 text-purple-600"></i>请求统计</h2>
124 |           <div class="flex gap-2 items-center">
125 |             <span id="statsSummary" class="text-xs text-gray-500"></span>
126 |             <button id="refreshStatsBtn" class="mini-btn bg-purple-100 text-purple-700 rounded-lg hover:bg-purple-200" onclick="event.stopPropagation(); loadStats(true);"><i class="fas fa-sync-alt"></i></button>
127 |             <i id="statsToggle" class="fas fa-chevron-down text-purple-600 transition-transform"></i>
128 |           </div>
129 |         </div>
130 |         <div id="statsContent" class="hidden border-t border-purple-100">
131 |           <div class="p-4">
132 |             <!-- 空状态展示 -->
133 |             <div id="statsEmpty" class="hidden text-center py-8">
134 |               <div class="text-gray-300 mb-4"><i class="fas fa-chart-area text-6xl"></i></div>
135 |               <h3 class="text-lg font-medium text-gray-500 mb-2">暂无统计数据</h3>
136 |               <p id="statsEmptyText" class="text-sm text-gray-400">发送代理请求后将自动记录统计信息</p>
137 |             </div>
138 |             <!-- 图表内容 -->
139 |             <div id="statsChartsContent">
140 |               <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
141 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
142 |                   <h3 class="text-sm font-medium text-gray-600 mb-2">每日请求量（近7天）</h3>
143 |                   <canvas id="dailyChart" height="200"></canvas>
144 |                 </div>
145 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
146 |                   <h3 class="text-sm font-medium text-gray-600 mb-2">每小时请求量（近24小时）</h3>
147 |                   <canvas id="hourlyChart" height="200"></canvas>
148 |                 </div>
149 |               </div>
150 |               <div class="grid grid-cols-1 md:grid-cols-4 gap-4 mt-4">
151 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
152 |                   <h3 class="text-sm font-medium text-gray-600 mb-2">今日 API 使用排行</h3>
153 |                   <canvas id="urlPieChart" height="200"></canvas>
154 |                 </div>
155 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
156 |                   <h3 class="text-sm font-medium text-gray-600 mb-2">今日 Key 使用排行</h3>
157 |                   <div id="keyRankList" class="space-y-2 max-h-48 overflow-y-auto"></div>
158 |                 </div>
159 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
160 |                   <h3 class="text-sm font-medium text-gray-600 mb-2"><i class="fas fa-globe mr-1 text-blue-500"></i>今日 IP 排行</h3>
161 |                   <div id="ipRankList" class="space-y-1 max-h-36 overflow-y-auto text-xs"></div>
162 |                   <div class="mt-2 pt-2 border-t border-gray-100">
163 |                     <h4 class="text-xs font-medium text-red-600 mb-1"><i class="fas fa-ban mr-1"></i>黑名单 <span id="blacklistCount" class="bg-red-100 px-1 rounded">0</span></h4>
164 |                     <div id="blacklistContent" class="space-y-1 max-h-24 overflow-y-auto text-xs"></div>
165 |                   </div>
166 |                 </div>
167 |                 <div class="bg-white rounded-xl p-4 shadow-sm">
168 |                   <h3 class="text-sm font-medium text-gray-600 mb-2"><i class="fas fa-user-clock mr-1 text-purple-500"></i>登录记录</h3>
169 |                   <div id="loginRecordsList" class="space-y-1 max-h-48 overflow-y-auto text-xs"></div>
170 |                 </div>
171 |               </div>
172 |             </div>
173 |           </div>
174 |         </div>
175 |       </div>
176 | 
177 |       <!-- Add New Config Card -->
178 |       <div class="glass-effect rounded-2xl shadow-xl mini-card mb-6 card-hover">
179 |         <h2 class="text-lg font-bold text-gray-800 mb-4"><i class="fas fa-plus-circle mr-2 text-purple-600"></i>添加新配置</h2>
180 |         <div class="grid grid-cols-1 md:grid-cols-12 gap-3">
181 |           <div class="md:col-span-3">
182 |             <label class="block text-xs font-medium text-gray-600 mb-1">API URL</label>
183 |             <input type="text" id="newApiUrl" list="existingUrls" placeholder="https://api.example.com" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all">
184 |             <datalist id="existingUrls"></datalist>
185 |           </div>
186 |           <div class="md:col-span-3">
187 |             <label class="block text-xs font-medium text-gray-600 mb-1">Token</label>
188 |             <input type="text" id="newToken" placeholder="sk-xxxxxxxxxxxxxxxx" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all">
189 |           </div>
190 |           <div class="md:col-span-2">
191 |             <label class="block text-xs font-medium text-gray-600 mb-1">备注</label>
192 |             <input type="text" id="newRemark" placeholder="可选" maxlength="255" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all">
193 |           </div>
194 |           <div class="md:col-span-2">
195 |             <label class="block text-xs font-medium text-gray-600 mb-1">有效期</label>
196 |             <input type="datetime-local" id="newExpiresAt" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all" title="留空表示永不过期">
197 |           </div>
198 |           <div class="md:col-span-1">
199 |             <label class="block text-xs font-medium text-gray-600 mb-1">状态</label>
200 |             <select id="newEnabled" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all">
201 |               <option value="true">✓</option>
202 |               <option value="false">✗</option>
203 |             </select>
204 |           </div>
205 |           <div class="md:col-span-1 flex items-end">
206 |             <button id="addBtn" class="w-full mini-btn btn-primary text-white rounded-lg font-medium shadow"><i class="fas fa-plus"></i></button>
207 |           </div>
208 |         </div>
209 |       </div>
210 | 
211 |       <!-- Configs Table -->
212 |       <div class="glass-effect rounded-2xl shadow-xl mini-card">
213 |         <div class="flex justify-between items-center mb-3">
214 |           <h2 class="text-lg font-bold text-gray-800"><i class="fas fa-table mr-2 text-purple-600"></i>配置列表</h2>
215 |           <div class="flex gap-2">
216 |             <button onclick="copyAllTokens()" class="mini-btn bg-green-50 text-green-600 rounded-lg hover:bg-green-100 transition-all font-medium" title="批量复制"><i class="fas fa-copy"></i></button>
217 |             <select id="sortBy" class="mini-input bg-purple-50 text-purple-700 rounded-lg font-medium focus:outline-none border-0">
218 |               <option value="created_at">创建时间</option>
219 |               <option value="updated_at">更新时间</option>
220 |               <option value="api_url">API URL</option>
221 |               <option value="enabled">状态</option>
222 |             </select>
223 |             <button id="refreshBtn" class="mini-btn bg-purple-100 text-purple-700 rounded-lg hover:bg-purple-200 transition-all font-medium"><i class="fas fa-sync-alt"></i></button>
224 |           </div>
225 |         </div>
226 |         <div class="mb-3">
227 |           <input type="text" id="searchInput" placeholder="搜索 API URL、Token 或备注..." class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all" oninput="filterConfigs()">
228 |         </div>
229 |         <div class="overflow-x-auto">
230 |           <table id="configsTable" class="w-full mini-table">
231 |             <thead>
232 |               <tr class="border-b border-purple-200">
233 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">API URL</th>
234 |                 <th class="text-center py-2 px-2 font-medium text-gray-600 text-xs">ID</th>
235 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">SK 别名</th>
236 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">Token</th>
237 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">备注</th>
238 |                 <th class="text-center py-2 px-2 font-medium text-gray-600 text-xs">有效期</th>
239 |                 <th class="text-center py-2 px-2 font-medium text-gray-600 text-xs">状态</th>
240 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">创建时间</th>
241 |                 <th class="text-left py-2 px-2 font-medium text-gray-600 text-xs">最后请求</th>
242 |                 <th class="text-center py-2 px-2 font-medium text-gray-600 text-xs">操作</th>
243 |               </tr>
244 |             </thead>
245 |             <tbody id="configsTableBody">
246 |               <tr><td colspan="10" class="text-center text-gray-500 py-8"><i class="fas fa-spinner fa-spin text-2xl mb-2 text-purple-400"></i><p class="text-sm">加载中...</p></td></tr>
247 |             </tbody>
248 |           </table>
249 |         </div>
250 |         <div id="pagination"></div>
251 |       </div>
252 |     </div>
253 |   </div>
254 | 
255 |   <!-- 编辑 Modal -->
256 |   <div id="editModal" class="hidden fixed inset-0 bg-black bg-opacity-50 flex items-center justify-center z-50" style="backdrop-filter: blur(5px);">
257 |     <div class="glass-effect rounded-xl shadow-2xl p-5 max-w-md w-full mx-4 animate-fade-in">
258 |       <div class="flex justify-between items-center mb-4">
259 |         <h3 class="text-lg font-bold text-gray-800"><i class="fas fa-edit mr-2 text-purple-600"></i>编辑配置</h3>
260 |         <button onclick="closeEditModal()" class="text-gray-400 hover:text-gray-600"><i class="fas fa-times"></i></button>
261 |       </div>
262 |       <div class="space-y-3">
263 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">API URL</label><input type="text" id="editApiUrl" class="w-full mini-input border border-gray-200 rounded-lg bg-gray-50" readonly></div>
264 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">Token</label><input type="text" id="editToken" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all font-mono" placeholder="sk-xxxxxxxxxxxxxxxx"></div>
265 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">SK 别名</label><div class="flex gap-2"><input type="text" id="editSkAlias" class="flex-1 mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-orange-500 transition-all font-mono text-orange-700" placeholder="sk-ar-xxx（留空则无）" maxlength="50"><button type="button" id="genSkAliasBtn" class="mini-btn bg-orange-100 text-orange-600 rounded-lg hover:bg-orange-200" title="生成新别名"><i class="fas fa-sync-alt"></i></button></div><p class="text-xs text-gray-400 mt-1">可手动输入或点击按钮自动生成</p></div>
266 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">备注</label><input type="text" id="editRemark" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all" placeholder="可选备注说明" maxlength="255"></div>
267 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">有效期</label><input type="datetime-local" id="editExpiresAt" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all"><p class="text-xs text-gray-400 mt-1">留空表示永不过期</p></div>
268 |         <div><label class="block text-xs font-medium text-gray-600 mb-1">状态</label><select id="editEnabled" class="w-full mini-input border border-gray-200 rounded-lg focus:outline-none focus:border-purple-500 transition-all"><option value="true">启用</option><option value="false">禁用</option></select></div>
269 |       </div>
270 |       <div class="flex justify-end gap-2 mt-4">
271 |         <button onclick="closeEditModal()" class="mini-btn bg-gray-200 text-gray-700 rounded-lg hover:bg-gray-300 transition-all font-medium">取消</button>
272 |         <button id="saveEditBtn" class="mini-btn btn-primary text-white rounded-lg font-medium shadow"><i class="fas fa-save mr-1"></i>保存</button>
273 |       </div>
274 |     </div>
275 |   </div>
276 | 
277 |   <script>
278 |     let authToken = localStorage.getItem('authToken');
279 |     let currentConfigs = [];
280 |     let currentEditId = null;
281 |     let isDatabaseMode = false;
282 |     let currentPage = 1;
283 |     const pageSize = 10;
284 | 
285 |     $(document).ready(function() {
286 |       if (authToken) { showAdminPanel(); } else { showLoginPanel(); }
287 |       const proxyUrl = window.location.origin;
288 |       $('#proxyUrlExample').text(proxyUrl);
289 |       $('.proxy-url-placeholder').text(proxyUrl);
290 |     });
291 | 
292 |     $('#loginBtn').click(async function() {
293 |       const password = $('#passwordInput').val().trim();
294 |       if (!password) { showError('请输入密码'); return; }
295 |       const btn = $(this);
296 |       btn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin mr-2"></i>登录中...');
297 |       authToken = password;
298 |       localStorage.setItem('authToken', password);
299 |       await loadConfigs(true);
300 |       btn.prop('disabled', false).html('<i class="fas fa-sign-in-alt mr-2"></i>登录');
301 |     });
302 | 
303 |     $('#passwordInput').keypress(function(e) { if (e.which === 13) { $('#loginBtn').click(); } });
304 |     $('#logoutBtn').click(function() { authToken = null; localStorage.removeItem('authToken'); stopStatsAutoRefresh(); showLoginPanel(); showToast('已退出登录', 'info'); });
305 |     $('#refreshBtn').click(async function() {
306 |       const btn = $(this);
307 |       btn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin"></i>');
308 |       await loadConfigs();
309 |       btn.prop('disabled', false).html('<i class="fas fa-sync-alt"></i>');
310 |       showToast('配置已刷新', 'info');
311 |     });
312 | 
313 |     $('#addBtn').click(async function() {
314 |       const apiUrl = $('#newApiUrl').val().trim();
315 |       const token = $('#newToken').val().trim();
316 |       const remark = $('#newRemark').val().trim();
317 |       const expiresAtVal = $('#newExpiresAt').val();
318 |       const expiresAt = expiresAtVal ? new Date(expiresAtVal).toISOString() : null;
319 |       const enabled = $('#newEnabled').val() === 'true';
320 |       if (!apiUrl || !token) { showToast('请填写 API URL 和 Token', 'error'); return; }
321 |       const btn = $(this);
322 |       btn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin"></i>');
323 |       try {
324 |         const response = await fetch('/api/configs', { method: 'POST', headers: { 'Content-Type': 'application/json', 'Authorization': 'Bearer ' + authToken }, body: JSON.stringify({ api_url: apiUrl, token, enabled, remark, expires_at: expiresAt }) });
325 |         const result = await response.json();
326 |         if (result.success) { $('#newApiUrl').val(''); $('#newToken').val(''); $('#newRemark').val(''); $('#newExpiresAt').val(''); loadConfigs(); showToast('添加成功', 'success'); } else { showToast('添加失败: ' + result.error, 'error'); }
327 |       } catch (error) { showToast('请求失败: ' + error.message, 'error'); }
328 |       finally { btn.prop('disabled', false).html('<i class="fas fa-plus"></i>'); }
329 |     });
330 | 
331 |     let lastUsedTimes = {}; // key_id -> ISO时间字符串
332 |     let isLoadingConfigs = false;
333 | 
334 |     async function loadConfigs(isLoginAttempt = false) {
335 |       if (isLoadingConfigs) return;
336 |       isLoadingConfigs = true;
337 |       // 显示表格 loading 状态
338 |       if (!isLoginAttempt) {
339 |         $('#configsTableBody').html('<tr><td colspan="10" class="text-center text-gray-500 py-8"><i class="fas fa-spinner fa-spin text-2xl mb-2 text-purple-400"></i><p class="text-sm">加载中...</p></td></tr>');
340 |       }
341 |       try {
342 |         const response = await fetch('/api/configs', { headers: { 'Authorization': 'Bearer ' + authToken } });
343 |         if (response.status === 401) { showError('密码错误，请重新登录'); localStorage.removeItem('authToken'); showLoginPanel(); return; }
344 |         const result = await response.json();
345 |         if (result.success) {
346 |           if (isLoginAttempt) {
347 |             $('#loginPanel').addClass('hidden');
348 |             $('#adminPanel').removeClass('hidden');
349 |             checkSystemStatus();
350 |             // 记录登录
351 |             fetch('/api/login', { method: 'POST', headers: { 'Authorization': 'Bearer ' + authToken } }).catch(() => {});
352 |           }
353 |           lastUsedTimes = result.lastUsed || {};
354 |           renderConfigs(result.data);
355 |         }
356 |         else { showError('加载失败: ' + result.error); }
357 |       } catch (error) { showError('请求失败: ' + error.message); }
358 |       finally { isLoadingConfigs = false; }
359 |     }
360 | 
361 |     function renderConfigs(configs) {
362 |       const rows = [];
363 |       Object.entries(configs).forEach(([apiUrl, config]) => {
364 |         config.keys.forEach(key => { rows.push({ id: key.id, key_id: key.key_id, sk_alias: key.sk_alias || null, api_url: apiUrl, token: key.token, enabled: key.enabled, remark: key.remark || '', expires_at: key.expires_at || null, created_at: key.created_at, updated_at: key.updated_at }); });
365 |       });
366 |       currentConfigs = rows;
367 |       const uniqueApis = new Set(rows.map(r => r.api_url)).size;
368 |       const enabledCount = rows.filter(r => r.enabled).length;
369 |       $('#totalApis').text(uniqueApis);
370 |       $('#totalKeys').text(rows.length);
371 |       $('#enabledKeys').text(enabledCount);
372 |       updateUrlDatalist(rows);
373 |       sortConfigs();
374 |     }
375 | 
376 |     function updateUrlDatalist(rows) {
377 |       const uniqueUrls = [...new Set(rows.map(r => r.api_url))].sort();
378 |       const datalist = $('#existingUrls');
379 |       datalist.empty();
380 |       uniqueUrls.forEach(url => { const tokenCount = rows.filter(r => r.api_url === url).length; datalist.append('<option value="' + url + '">' + url + ' (' + tokenCount + ' 个 token)</option>'); });
381 |     }
382 | 
383 |     function sortConfigs() {
384 |       const sortBy = $('#sortBy').val();
385 |       let sorted = [...currentConfigs];
386 |       sorted.sort((a, b) => a.api_url.localeCompare(b.api_url));
387 |       sorted.sort((a, b) => {
388 |         if (sortBy === 'created_at' || sortBy === 'updated_at') { return new Date(b[sortBy]) - new Date(a[sortBy]); }
389 |         else if (sortBy === 'enabled') { return b.enabled - a.enabled; }
390 |         else if (sortBy === 'api_url') { return a.api_url.localeCompare(b.api_url); }
391 |         return 0;
392 |       });
393 |       renderTable(sorted);
394 |     }
395 | 
396 |     window.filterConfigs = function() {
397 |       const searchText = $('#searchInput').val().toLowerCase();
398 |       if (!searchText) { sortConfigs(); return; }
399 |       const filtered = currentConfigs.filter(row => row.api_url.toLowerCase().includes(searchText) || row.token.toLowerCase().includes(searchText) || maskToken(row.token).toLowerCase().includes(searchText) || (row.remark && row.remark.toLowerCase().includes(searchText)));
400 |       renderTable(filtered);
401 |     }
402 | 
403 |     window.copyAllTokens = function() {
404 |       if (currentConfigs.length === 0) { showToast('暂无配置', 'error'); return; }
405 |       const tokens = currentConfigs.filter(r => r.enabled).map(r => r.api_url + ': ' + r.token).join('\\n');
406 |       navigator.clipboard.writeText(tokens).then(() => { showToast('✓ 已复制 ' + currentConfigs.filter(r => r.enabled).length + ' 个已启用的 token', 'success'); }).catch(() => { showToast('复制失败', 'error'); });
407 |     }
408 | 
409 |     function renderTable(rows) {
410 |       if (rows.length === 0) {
411 |         const emptyMsg = isDatabaseMode ? '<p class="text-xs text-gray-400 mt-1">点击上方按钮添加第一个配置</p>' : '<p class="text-xs text-yellow-600 mt-1"><i class="fas fa-info-circle mr-1"></i>直传模式，无需配置</p>';
412 |         $('#configsTableBody').html('<tr><td colspan="10" class="text-center text-gray-500 py-8"><i class="fas ' + (isDatabaseMode ? 'fa-inbox' : 'fa-bolt') + ' text-3xl mb-2 ' + (isDatabaseMode ? 'text-gray-300' : 'text-yellow-300') + '"></i><p class="text-sm font-medium">' + (isDatabaseMode ? '暂无配置' : '直传模式') + '</p>' + emptyMsg + '</td></tr>');
413 |         $('#pagination').html('');
414 |         return;
415 |       }
416 |       const grouped = {};
417 |       rows.forEach(row => { if (!grouped[row.api_url]) { grouped[row.api_url] = []; } grouped[row.api_url].push(row); });
418 |       const apiUrls = Object.keys(grouped).sort();
419 |       const totalPages = Math.ceil(apiUrls.length / pageSize);
420 |       const startIdx = (currentPage - 1) * pageSize;
421 |       const pagedUrls = apiUrls.slice(startIdx, startIdx + pageSize);
422 |       let html = '';
423 |       pagedUrls.forEach((apiUrl, urlIdx) => {
424 |         const tokens = grouped[apiUrl];
425 |         const enabledCount = tokens.filter(t => t.enabled).length;
426 |         const urlId = 'url-' + urlIdx + '-' + startIdx;
427 |         // 默认折叠，箭头向右
428 |         html += '<tr class="bg-gradient-to-r from-purple-50 to-pink-50 border-b border-purple-200 cursor-pointer url-header-row" data-url-id="' + urlId + '"><td colspan="10" class="py-2 px-3"><div class="flex items-center justify-between"><div class="flex items-center gap-2"><i class="fas fa-chevron-right text-purple-600 text-xs transition-transform url-toggle" id="toggle-' + urlId + '"></i><a href="' + apiUrl + '" target="_blank" class="font-medium text-xs text-purple-700 hover:text-purple-900 hover:underline truncate max-w-xs" onclick="event.stopPropagation()" title="' + apiUrl + '">' + apiUrl + '</a><span class="px-2 py-0.5 bg-purple-200 text-purple-700 rounded-full text-xs">' + tokens.length + '</span><span class="px-2 py-0.5 ' + (enabledCount > 0 ? 'bg-green-200 text-green-700' : 'bg-gray-200 text-gray-500') + ' rounded-full text-xs">' + enabledCount + ' 启用</span></div><div class="flex items-center gap-1 action-buttons"><button class="px-2 py-1 bg-blue-100 text-blue-600 text-xs rounded hover:bg-blue-200 transition-all copy-url-btn" title="复制" data-url="' + encodeURIComponent(apiUrl) + '"><i class="fas fa-copy"></i></button>' + (isDatabaseMode ? '<button class="px-2 py-1 bg-green-100 text-green-600 text-xs rounded hover:bg-green-200 transition-all add-token-btn" title="添加" data-url="' + encodeURIComponent(apiUrl) + '"><i class="fas fa-plus"></i></button>' : '') + '</div></div></td></tr>';
429 |         tokens.forEach((row, tokenIdx) => {
430 |           const safeRemark = escapeHtml(row.remark);
431 |           const keyId = row.key_id || row.id;
432 |           const skAlias = row.sk_alias;
433 |           const skAliasHtml = skAlias
434 |             ? '<code class="text-xs font-mono bg-orange-100 px-1 py-0.5 rounded text-orange-700 cursor-pointer hover:bg-orange-200 sk-copy-btn" title="点击复制">' + skAlias.substring(0, 16) + '...</code><button class="ml-1 text-orange-500 hover:text-orange-700 gen-sk-btn" data-id="' + row.id + '" title="重新生成"><i class="fas fa-sync-alt text-xs"></i></button>'
435 |             : '<button class="text-xs bg-orange-50 text-orange-600 px-2 py-0.5 rounded hover:bg-orange-100 gen-sk-btn" data-id="' + row.id + '"><i class="fas fa-plus mr-1"></i>生成</button>';
436 |           // 有效期显示
437 |           const expiresHtml = formatExpiry(row.expires_at);
438 |           // 最后请求时间
439 |           const lastUsedTime = lastUsedTimes[keyId] ? formatDate(lastUsedTimes[keyId]) : '-';
440 |           // 默认隐藏 token-row
441 |           html += '<tr class="border-b border-gray-50 hover:bg-purple-50 transition-all token-row token-row-' + urlId + ' hidden"><td class="py-1.5 px-2 pl-6"><span class="text-gray-400 text-xs">#' + (tokenIdx + 1) + '</span></td><td class="py-1.5 px-2 text-center"><div class="flex items-center justify-center gap-1"><code class="text-xs font-mono bg-purple-100 px-1.5 py-0.5 rounded text-purple-700 cursor-pointer hover:bg-purple-200 id-copy-btn" title="点击复制">' + keyId + '</code><button class="p-0.5 text-xs bg-green-100 text-green-600 rounded hover:bg-green-200 full-key-copy-btn" data-url="' + encodeURIComponent(apiUrl) + '" data-keyid="' + keyId + '" title="复制完整Key"><i class="fas fa-link text-xs"></i></button></div></td><td class="py-1.5 px-2">' + skAliasHtml + '</td><td class="py-1.5 px-2"><code class="text-xs font-mono bg-gray-100 px-1.5 py-0.5 rounded text-gray-600 cursor-pointer hover:bg-gray-200 token-copy-btn" data-token="' + window.btoa(row.token) + '" title="点击复制">' + maskToken(row.token) + '</code></td><td class="py-1.5 px-2 remark-cell text-xs text-gray-500" title="' + safeRemark + '">' + (safeRemark || '-') + '</td><td class="py-1.5 px-2 text-center text-xs">' + expiresHtml + '</td><td class="py-1.5 px-2 text-center"><input type="checkbox" ' + (row.enabled ? 'checked' : '') + ' class="w-3 h-3 text-green-600 rounded status-checkbox" data-id="' + row.id + '"></td><td class="py-1.5 px-2 text-xs text-gray-400">' + formatDate(row.created_at) + '</td><td class="py-1.5 px-2 text-xs text-gray-400">' + lastUsedTime + '</td><td class="py-1.5 px-2 text-center"><button class="p-1 bg-blue-500 text-white text-xs rounded hover:bg-blue-600 edit-key-btn" data-id="' + row.id + '"><i class="fas fa-edit text-xs"></i></button> <button class="p-1 bg-red-500 text-white text-xs rounded hover:bg-red-600 delete-key-action-btn" data-id="' + row.id + '"><i class="fas fa-trash-alt text-xs"></i></button></td></tr>';
442 |         });
443 |       });
444 |       $('#configsTableBody').html(html);
445 |       renderPagination(totalPages, apiUrls.length);
446 |     }
447 | 
448 |     function renderPagination(totalPages, totalItems) {
449 |       if (totalPages <= 1) { $('#pagination').html(''); return; }
450 |       let pHtml = '<div class="flex items-center justify-between mt-3 pt-3 border-t border-gray-100"><div class="text-xs text-gray-400">' + totalItems + ' 个 API · ' + currentPage + '/' + totalPages + '</div><div class="flex gap-1">';
451 |       if (currentPage > 1) pHtml += '<button class="px-2 py-0.5 bg-purple-100 text-purple-600 rounded text-xs hover:bg-purple-200 page-btn" data-page="' + (currentPage - 1) + '"><i class="fas fa-chevron-left"></i></button>';
452 |       for (let i = Math.max(1, currentPage - 2); i <= Math.min(totalPages, currentPage + 2); i++) { pHtml += '<button class="px-2 py-0.5 ' + (i === currentPage ? 'bg-purple-600 text-white' : 'bg-purple-100 text-purple-600 hover:bg-purple-200') + ' rounded text-xs page-btn" data-page="' + i + '">' + i + '</button>'; }
453 |       if (currentPage < totalPages) pHtml += '<button class="px-2 py-0.5 bg-purple-100 text-purple-600 rounded text-xs hover:bg-purple-200 page-btn" data-page="' + (currentPage + 1) + '"><i class="fas fa-chevron-right"></i></button>';
454 |       pHtml += '</div></div>';
455 |       $('#pagination').html(pHtml);
456 |     }
457 | 
458 |     $(document).on('click', '.token-copy-btn', function() { const encodedToken = $(this).data('token'); if (encodedToken) { copyToken(window.atob(encodedToken)); } });
459 |     $(document).on('click', '.id-copy-btn', function() { const id = $(this).text(); navigator.clipboard.writeText(id).then(() => { showToast('ID ' + id + ' 已复制', 'success'); }); });
460 |     $(document).on('click', '.full-key-copy-btn', function() { const url = decodeURIComponent($(this).data('url')); const keyId = $(this).data('keyid'); const fullKey = url + ':' + keyId; navigator.clipboard.writeText(fullKey).then(() => { showToast('✓ 完整 Key 已复制', 'success'); }).catch(() => { const textarea = document.createElement('textarea'); textarea.value = fullKey; document.body.appendChild(textarea); textarea.select(); document.execCommand('copy'); document.body.removeChild(textarea); showToast('✓ 完整 Key 已复制', 'success'); }); });
461 |     // SK 别名复制
462 |     $(document).on('click', '.sk-copy-btn', function() { const row = currentConfigs.find(r => r.id == $(this).closest('tr').find('.status-checkbox').data('id')); if (row && row.sk_alias) { navigator.clipboard.writeText(row.sk_alias).then(() => { showToast('✓ SK 别名已复制', 'success'); }); } });
463 |     // 生成/重新生成 SK 别名
464 |     $(document).on('click', '.gen-sk-btn', async function(e) { e.stopPropagation(); const id = $(this).data('id'); const btn = $(this); btn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin"></i>'); try { const response = await fetch('/api/configs/' + id + '/sk-alias', { method: 'POST', headers: { 'Authorization': 'Bearer ' + authToken } }); const result = await response.json(); if (result.success) { showToast('✓ SK 别名已生成', 'success'); loadConfigs(); } else { showToast('生成失败: ' + result.error, 'error'); btn.prop('disabled', false).html('<i class="fas fa-plus mr-1"></i>生成'); } } catch (error) { showToast('请求失败: ' + error.message, 'error'); btn.prop('disabled', false).html('<i class="fas fa-plus mr-1"></i>生成'); } });
465 |     $(document).on('change', '.status-checkbox', function() { toggleKey($(this).data('id'), $(this).is(':checked')); });
466 |     $(document).on('click', '.edit-key-btn', function() { openEditModal($(this).data('id')); });
467 |     $(document).on('click', '.delete-key-action-btn', function() { deleteKey($(this).data('id')); });
468 |     $(document).on('click', '.copy-url-btn', function() { const proxyUrl = window.location.origin; navigator.clipboard.writeText(proxyUrl).then(() => { showToast('✓ 代理地址已复制: ' + proxyUrl, 'success'); }).catch(() => { const textarea = document.createElement('textarea'); textarea.value = proxyUrl; document.body.appendChild(textarea); textarea.select(); document.execCommand('copy'); document.body.removeChild(textarea); showToast('✓ 代理地址已复制', 'success'); }); });
469 |     $(document).on('click', '.add-token-btn', function() { const url = decodeURIComponent($(this).data('url')); $('#newApiUrl').val(url); $('html, body').animate({ scrollTop: $('#newApiUrl').offset().top - 100 }, 300, function() { $('#newToken').focus(); $('#newToken').addClass('ring-2 ring-purple-500'); setTimeout(() => $('#newToken').removeClass('ring-2 ring-purple-500'), 2000); }); showToast('已填充 URL，请输入 Token', 'info'); });
470 |     $(document).on('click', '.url-header-row', function(e) { if ($(e.target).closest('.action-buttons').length > 0) { return; } const urlId = $(this).data('url-id'); const toggle = $('#toggle-' + urlId); const rows = $('.token-row-' + urlId); if (toggle.hasClass('fa-chevron-down')) { toggle.removeClass('fa-chevron-down').addClass('fa-chevron-right'); rows.hide(); } else { toggle.removeClass('fa-chevron-right').addClass('fa-chevron-down'); rows.show(); } });
471 |     $(document).on('click', '.page-btn', function() { currentPage = parseInt($(this).data('page')); sortConfigs(); });
472 |     $('#sortBy').change(function() { sortConfigs(); });
473 | 
474 |     window.openEditModal = function(id) { const config = currentConfigs.find(c => c.id === id); if (!config) return; currentEditId = id; $('#editApiUrl').val(config.api_url); $('#editToken').val(config.token); $('#editSkAlias').val(config.sk_alias || ''); $('#editRemark').val(config.remark || ''); $('#editExpiresAt').val(config.expires_at ? toLocalDateTimeString(config.expires_at) : ''); $('#editEnabled').val(config.enabled.toString()); $('#editModal').removeClass('hidden'); };
475 |     window.closeEditModal = function() { $('#editModal').addClass('hidden'); currentEditId = null; };
476 | 
477 |     $('#saveEditBtn').click(async function() {
478 |       if (!currentEditId) return;
479 |       const token = $('#editToken').val().trim();
480 |       const skAlias = $('#editSkAlias').val().trim();
481 |       const remark = $('#editRemark').val().trim();
482 |       const expiresAtVal = $('#editExpiresAt').val();
483 |       const expiresAt = expiresAtVal ? new Date(expiresAtVal).toISOString() : null;
484 |       const enabled = $('#editEnabled').val() === 'true';
485 |       if (!token) { showToast('Token 不能为空', 'error'); return; }
486 |       if (skAlias && !skAlias.startsWith('sk-ar-')) { showToast('SK 别名必须以 sk-ar- 开头', 'error'); return; }
487 |       const btn = $(this);
488 |       btn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin"></i>');
489 |       try {
490 |         const response = await fetch('/api/configs/' + currentEditId, { method: 'PATCH', headers: { 'Content-Type': 'application/json', 'Authorization': 'Bearer ' + authToken }, body: JSON.stringify({ token, enabled, remark, expires_at: expiresAt, sk_alias: skAlias || null }) });
491 |         const result = await response.json();
492 |         if (result.success) { showToast('更新成功', 'success'); closeEditModal(); loadConfigs(); } else { showToast('更新失败: ' + result.error, 'error'); }
493 |       } catch (error) { showToast('请求失败: ' + error.message, 'error'); }
494 |       finally { btn.prop('disabled', false).html('<i class="fas fa-save mr-1"></i>保存'); }
495 |     });
496 | 
497 |     $('#editModal').click(function(e) { if (e.target === this) { closeEditModal(); } });
498 | 
499 |     // 模态框内生成 SK 别名按钮
500 |     $('#genSkAliasBtn').click(function() {
501 |       const chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
502 |       let result = 'sk-ar-';
503 |       for (let i = 0; i < 32; i++) { result += chars.charAt(Math.floor(Math.random() * chars.length)); }
504 |       $('#editSkAlias').val(result);
505 |       showToast('已生成新 SK 别名（保存后生效）', 'info');
506 |     });
507 | 
508 |     window.toggleKey = async function(id, enabled) {
509 |       try {
510 |         const response = await fetch('/api/configs/' + id, { method: 'PATCH', headers: { 'Content-Type': 'application/json', 'Authorization': 'Bearer ' + authToken }, body: JSON.stringify({ enabled }) });
511 |         const result = await response.json();
512 |         if (result.success) { showToast(enabled ? '已启用密钥' : '已禁用密钥', 'success'); loadConfigs(); } else { showToast('更新失败: ' + result.error, 'error'); loadConfigs(); }
513 |       } catch (error) { showToast('请求失败: ' + error.message, 'error'); }
514 |     };
515 | 
516 |     window.deleteKey = async function(id) {
517 |       if (!confirm('⚠️ 确定要删除此配置吗？')) { return; }
518 |       try {
519 |         const response = await fetch('/api/configs/' + id, { method: 'DELETE', headers: { 'Authorization': 'Bearer ' + authToken } });
520 |         const result = await response.json();
521 |         if (result.success) { loadConfigs(); showToast('配置已删除', 'success'); } else { showToast('删除失败: ' + result.error, 'error'); }
522 |       } catch (error) { showToast('请求失败: ' + error.message, 'error'); }
523 |     };
524 | 
525 |     function maskToken(token) { if (!token) return ''; if (token.length <= 10) return token; return token.substring(0, 8) + '...' + token.substring(token.length - 4); }
526 |     window.copyToken = function(token) { if (!token) { showToast('无效的 token', 'error'); return; } navigator.clipboard.writeText(token).then(() => { showToast('✓ Token 已复制到剪贴板', 'success'); }).catch(() => { const textarea = document.createElement('textarea'); textarea.value = token; document.body.appendChild(textarea); textarea.select(); document.execCommand('copy'); document.body.removeChild(textarea); showToast('✓ Token 已复制到剪贴板', 'success'); }); }
527 |     function formatDate(dateString) { if (!dateString) return '-'; const date = new Date(dateString); if (isNaN(date.getTime())) return '-'; const pad = (n) => n.toString().padStart(2, '0'); return date.getFullYear() + '-' + pad(date.getMonth() + 1) + '-' + pad(date.getDate()) + ' ' + pad(date.getHours()) + ':' + pad(date.getMinutes()) + ':' + pad(date.getSeconds()); }
528 |     function formatExpiry(expiresAt) { if (!expiresAt) return '<span class="text-green-600"><i class="fas fa-infinity"></i></span>'; const expDate = new Date(expiresAt); const now = new Date(); if (expDate < now) return '<span class="text-red-500" title="已过期"><i class="fas fa-times-circle"></i> 已过期</span>'; const diffDays = Math.ceil((expDate - now) / (1000 * 60 * 60 * 24)); if (diffDays <= 7) return '<span class="text-yellow-600" title="' + formatDate(expiresAt) + '"><i class="fas fa-exclamation-triangle"></i> ' + diffDays + '天</span>'; return '<span class="text-gray-500" title="' + formatDate(expiresAt) + '">' + diffDays + '天</span>'; }
529 |     function toLocalDateTimeString(isoString) { if (!isoString) return ''; const date = new Date(isoString); const pad = (n) => n.toString().padStart(2, '0'); return date.getFullYear() + '-' + pad(date.getMonth() + 1) + '-' + pad(date.getDate()) + 'T' + pad(date.getHours()) + ':' + pad(date.getMinutes()); }
530 |     function escapeHtml(str) { if (!str) return ''; return str.replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;').replace(/'/g, '&#039;'); }
531 |     function showLoginPanel() { $('#loginPanel').removeClass('hidden'); $('#adminPanel').addClass('hidden'); }
532 |     function showAdminPanel() { $('#loginPanel').addClass('hidden'); $('#adminPanel').removeClass('hidden'); checkSystemStatus(); testRedis(); loadConfigs(); loadStats(); loadBlacklist(); startStatsAutoRefresh(); }
533 | 
534 |     // 折叠/展开统计图表
535 |     window.toggleStats = function() {
536 |       const content = $('#statsContent');
537 |       const toggle = $('#statsToggle');
538 |       if (content.hasClass('hidden')) {
539 |         content.removeClass('hidden');
540 |         toggle.css('transform', 'rotate(180deg)');
541 |       } else {
542 |         content.addClass('hidden');
543 |         toggle.css('transform', 'rotate(0deg)');
544 |       }
545 |     };
546 | 
547 |     // ============ 统计图表 ============
548 |     let dailyChart = null;
549 |     let hourlyChart = null;
550 |     let urlPieChart = null;
551 |     let statsAutoRefreshTimer = null;
552 |     let isLoadingStats = false;
553 | 
554 |     async function loadStats(showToastMsg = false) {
555 |       if (isLoadingStats) return;
556 |       isLoadingStats = true;
557 | 
558 |       const empty = $('#statsEmpty');
559 |       const emptyText = $('#statsEmptyText');
560 |       const content = $('#statsChartsContent');
561 |       const summary = $('#statsSummary');
562 |       const refreshBtn = $('#refreshStatsBtn');
563 | 
564 |       // 显示 loading 状态
565 |       refreshBtn.prop('disabled', true).html('<i class="fas fa-spinner fa-spin"></i>');
566 |       summary.html('<i class="fas fa-spinner fa-spin text-purple-500"></i> 加载中...');
567 | 
568 |       try {
569 |         const response = await fetch('/api/stats?days=7', { headers: { 'Authorization': 'Bearer ' + authToken } });
570 |         const result = await response.json();
571 | 
572 |         if (result.success && result.data.enabled) {
573 |           // Redis 已配置
574 |           if (result.data.summary.total === 0) {
575 |             // 没有数据 - 显示空状态
576 |             empty.removeClass('hidden');
577 |             emptyText.text('发送代理请求后将自动记录统计信息');
578 |             content.addClass('hidden');
579 |             summary.text('暂无数据');
580 |           } else {
581 |             // 有数据 - 显示图表
582 |             empty.addClass('hidden');
583 |             content.removeClass('hidden');
584 |             summary.text('总计 ' + result.data.summary.total + ' 请求');
585 |             renderCharts(result.data);
586 |           }
587 |           if (showToastMsg) showToast('统计已刷新', 'info');
588 |           // 加载登录记录
589 |           loadLoginRecords();
590 |         } else {
591 |           // Redis 未配置 - 显示空状态 + 提示
592 |           empty.removeClass('hidden');
593 |           emptyText.html('<span class="text-red-400">Redis 未配置，请在 Cloudflare 设置环境变量</span>');
594 |           content.addClass('hidden');
595 |           summary.html('<span class="text-red-400">未启用</span>');
596 |         }
597 |       } catch (e) {
598 |         empty.removeClass('hidden');
599 |         emptyText.html('<span class="text-red-400">加载失败: ' + e.message + '</span>');
600 |         content.addClass('hidden');
601 |         summary.html('<span class="text-red-400">错误</span>');
602 |       } finally {
603 |         isLoadingStats = false;
604 |         refreshBtn.prop('disabled', false).html('<i class="fas fa-sync-alt"></i>');
605 |       }
606 |     }
607 | 
608 |     // 启动统计自动刷新（30秒）
609 |     function startStatsAutoRefresh() {
610 |       stopStatsAutoRefresh();
611 |       statsAutoRefreshTimer = setInterval(() => {
612 |         loadStats(false); // 自动刷新不显示 toast
613 |       }, 30000);
614 |     }
615 | 
616 |     function stopStatsAutoRefresh() {
617 |       if (statsAutoRefreshTimer) {
618 |         clearInterval(statsAutoRefreshTimer);
619 |         statsAutoRefreshTimer = null;
620 |       }
621 |     }
622 | 
623 |     // 加载登录记录
624 |     async function loadLoginRecords() {
625 |       try {
626 |         const response = await fetch('/api/logins?limit=10', { headers: { 'Authorization': 'Bearer ' + authToken } });
627 |         const result = await response.json();
628 |         if (result.success && result.data.length > 0) {
629 |           const html = result.data.map(r => {
630 |             const time = new Date(r.time);
631 |             const timeStr = time.toLocaleDateString('zh-CN') + ' ' + time.toLocaleTimeString('zh-CN');
632 |             return '<div class="flex justify-between items-center py-1 px-2 bg-gray-50 rounded"><span class="text-gray-600">' + timeStr + '</span><span class="text-purple-600 font-mono">' + r.ip + '</span></div>';
633 |           }).join('');
634 |           $('#loginRecordsList').html(html);
635 |         } else {
636 |           $('#loginRecordsList').html('<div class="text-gray-400 text-center py-4">暂无登录记录</div>');
637 |         }
638 |       } catch {
639 |         $('#loginRecordsList').html('<div class="text-red-400 text-center py-4">加载失败</div>');
640 |       }
641 |     }
642 | 
643 |     function renderEmptyCharts() {
644 |       const emptyData = {
645 |         daily: Array(7).fill(0).map((_, i) => {
646 |           const d = new Date(); d.setDate(d.getDate() - 6 + i);
647 |           return { date: d.toISOString().split('T')[0], total: 0, success: 0, error: 0 };
648 |         }),
649 |         hourly: Array(24).fill(0).map((_, i) => {
650 |           const d = new Date(); d.setHours(d.getHours() - 23 + i);
651 |           return { hour: d.getHours() + ':00', total: 0 };
652 |         }),
653 |         topUrls: {},
654 |         topKeys: {},
655 |         summary: { total: 0, success: 0, error: 0 }
656 |       };
657 |       renderCharts(emptyData);
658 |     }
659 | 
660 |     function renderCharts(data) {
661 |       // 更新摘要
662 |       $('#statsSummary').text('总计: ' + data.summary.total + ' 请求 | 成功: ' + data.summary.success + ' | 失败: ' + data.summary.error);
663 | 
664 |       // 每日图表
665 |       const dailyCtx = document.getElementById('dailyChart').getContext('2d');
666 |       if (dailyChart) dailyChart.destroy();
667 |       dailyChart = new Chart(dailyCtx, {
668 |         type: 'bar',
669 |         data: {
670 |           labels: data.daily.map(d => d.date.substring(5)),
671 |           datasets: [{
672 |             label: '成功',
673 |             data: data.daily.map(d => d.success),
674 |             backgroundColor: 'rgba(16, 185, 129, 0.8)',
675 |             borderRadius: 4,
676 |           }, {
677 |             label: '失败',
678 |             data: data.daily.map(d => d.error),
679 |             backgroundColor: 'rgba(239, 68, 68, 0.8)',
680 |             borderRadius: 4,
681 |           }]
682 |         },
683 |         options: { responsive: true, plugins: { legend: { position: 'bottom' } }, scales: { x: { stacked: true }, y: { stacked: true, beginAtZero: true } } }
684 |       });
685 | 
686 |       // 小时图表
687 |       const hourlyCtx = document.getElementById('hourlyChart').getContext('2d');
688 |       if (hourlyChart) hourlyChart.destroy();
689 |       hourlyChart = new Chart(hourlyCtx, {
690 |         type: 'line',
691 |         data: {
692 |           labels: data.hourly.map(h => h.hour.split('-').slice(2).join(':')),
693 |           datasets: [{ label: '请求量', data: data.hourly.map(h => h.total), borderColor: '#667eea', backgroundColor: 'rgba(102, 126, 234, 0.1)', fill: true, tension: 0.3 }]
694 |         },
695 |         options: { responsive: true, plugins: { legend: { display: false } }, scales: { y: { beginAtZero: true } } }
696 |       });
697 | 
698 |       // URL 饼图
699 |       const urlCtx = document.getElementById('urlPieChart').getContext('2d');
700 |       if (urlPieChart) urlPieChart.destroy();
701 |       const urlEntries = Object.entries(data.topUrls).sort((a, b) => b[1] - a[1]).slice(0, 5);
702 |       if (urlEntries.length > 0) {
703 |         urlPieChart = new Chart(urlCtx, {
704 |           type: 'doughnut',
705 |           data: {
706 |             labels: urlEntries.map(e => e[0].replace(/https?:\\/\\//, '').substring(0, 20)),
707 |             datasets: [{ data: urlEntries.map(e => e[1]), backgroundColor: ['#667eea', '#764ba2', '#10b981', '#f59e0b', '#ef4444'] }]
708 |           },
709 |           options: { responsive: true, plugins: { legend: { position: 'right', labels: { boxWidth: 12, font: { size: 10 } } } } }
710 |         });
711 |       }
712 | 
713 |       // Key 排行列表
714 |       const keyEntries = Object.entries(data.topKeys).sort((a, b) => b[1] - a[1]).slice(0, 10);
715 |       if (keyEntries.length > 0) {
716 |         $('#keyRankList').html(keyEntries.map((e, i) => '<div class=\"flex justify-between items-center py-1 px-2 bg-gray-50 rounded text-xs\"><span class=\"font-mono text-purple-600\">' + (i+1) + '. ' + e[0] + '</span><span class=\"text-gray-500\">' + e[1] + ' 次</span></div>').join(''));
717 |       } else {
718 |         $('#keyRankList').html('<div class=\"text-xs text-gray-400 text-center py-4\">暂无数据</div>');
719 |       }
720 | 
721 |       // IP 排行列表（带封禁按钮）
722 |       const ipEntries = Object.entries(data.topIps || {}).sort((a, b) => b[1] - a[1]).slice(0, 10);
723 |       if (ipEntries.length > 0) {
724 |         $('#ipRankList').html(ipEntries.map((e, i) => '<div class=\"flex justify-between items-center py-1 px-2 bg-gray-50 rounded\"><span class=\"font-mono text-blue-600\">' + (i+1) + '. ' + e[0] + '</span><div class=\"flex items-center gap-1\"><span class=\"text-gray-500\">' + e[1] + '</span><button class=\"text-red-400 hover:text-red-600 block-ip-btn\" data-ip=\"' + e[0] + '\" title=\"封禁\"><i class=\"fas fa-ban\"></i></button></div></div>').join(''));
725 |       } else {
726 |         $('#ipRankList').html('<div class=\"text-xs text-gray-400 text-center py-4\">暂无数据</div>');
727 |       }
728 |     }
729 | 
730 |     async function checkSystemStatus() {
731 |       try {
732 |         const response = await fetch('/api/status', { headers: { 'Authorization': 'Bearer ' + authToken } });
733 |         const result = await response.json();
734 |         if (result.success) { isDatabaseMode = result.database_configured && result.database_connected; updateStorageModeUI(result); }
735 |         else { updateStorageModeUI({ storage_mode: 'passthrough', database_configured: false, database_connected: false }); }
736 |       } catch (error) { updateStorageModeUI({ storage_mode: 'passthrough', database_configured: false, database_connected: false, database_error: error.message }); }
737 |     }
738 | 
739 |     async function testRedis() {
740 |       try {
741 |         const response = await fetch('/api/redis/test', { headers: { 'Authorization': 'Bearer ' + authToken } });
742 |         const result = await response.json();
743 |         updateRedisUI(result);
744 |       } catch (error) { updateRedisUI({ success: false, configured: false, error: error.message }); }
745 |     }
746 | 
747 |     function updateRedisUI(status) {
748 |       const statusText = $('#redisStatus');
749 |       const icon = $('#redisIcon');
750 |       const hint = $('#redisStatusText');
751 |       if (status.success && status.connected) {
752 |         statusText.text('已连接').removeClass('text-gray-800 text-yellow-600').addClass('text-green-600');
753 |         icon.removeClass('bg-gray-100 bg-yellow-100').addClass('bg-green-100').html('<i class="fas fa-bolt text-green-600 text-xl"></i>');
754 |         hint.html('<i class="fas fa-check-circle text-green-500 mr-1"></i>Redis 正常');
755 |       } else if (status.configured && !status.connected) {
756 |         statusText.text('连接失败').removeClass('text-gray-800 text-green-600').addClass('text-yellow-600');
757 |         icon.removeClass('bg-gray-100 bg-green-100').addClass('bg-yellow-100').html('<i class="fas fa-exclamation-triangle text-yellow-600 text-xl"></i>');
758 |         hint.html('<i class="fas fa-times-circle text-red-500 mr-1"></i>' + (status.error || '连接失败'));
759 |       } else {
760 |         statusText.text('未配置').removeClass('text-green-600 text-yellow-600').addClass('text-gray-800');
761 |         icon.removeClass('bg-green-100 bg-yellow-100').addClass('bg-gray-100').html('<i class="fas fa-bolt text-gray-400 text-xl"></i>');
762 |         hint.html('<i class="fas fa-info-circle text-blue-500 mr-1"></i>未配置 Redis');
763 |       }
764 |     }
765 | 
766 |     function updateStorageModeUI(status) {
767 |       const modeText = $('#storageMode');
768 |       const modeIcon = $('#storageModeIcon');
769 |       const dbStatusText = $('#dbStatusText');
770 |       if (status.database_configured && status.database_connected) {
771 |         modeText.text('数据库模式').removeClass('text-gray-800 text-yellow-600').addClass('text-green-600');
772 |         modeIcon.removeClass('bg-gray-100 bg-yellow-100').addClass('bg-green-100').html('<i class="fas fa-database text-green-600 text-2xl"></i>');
773 |         dbStatusText.html('<i class="fas fa-check-circle text-green-500 mr-1"></i>Supabase 已连接');
774 |         setDatabaseModeEnabled(true);
775 |       } else if (status.database_configured && !status.database_connected) {
776 |         modeText.text('数据库模式').removeClass('text-gray-800 text-green-600').addClass('text-yellow-600');
777 |         modeIcon.removeClass('bg-gray-100 bg-green-100').addClass('bg-yellow-100').html('<i class="fas fa-exclamation-triangle text-yellow-600 text-2xl"></i>');
778 |         dbStatusText.html('<i class="fas fa-times-circle text-red-500 mr-1"></i>连接失败: ' + (status.database_error || '未知错误'));
779 |         setDatabaseModeEnabled(false);
780 |       } else {
781 |         modeText.text('直传模式').removeClass('text-green-600 text-yellow-600').addClass('text-gray-800');
782 |         modeIcon.removeClass('bg-green-100 bg-yellow-100').addClass('bg-gray-100').html('<i class="fas fa-bolt text-gray-600 text-2xl"></i>');
783 |         dbStatusText.html('<i class="fas fa-info-circle text-blue-500 mr-1"></i>未配置数据库，仅支持直传 Token');
784 |         setDatabaseModeEnabled(false);
785 |       }
786 |     }
787 | 
788 |     function setDatabaseModeEnabled(enabled) {
789 |       isDatabaseMode = enabled;
790 |       const addBtn = $('#addBtn');
791 |       const addInputs = $('#newApiUrl, #newToken, #newEnabled');
792 |       if (enabled) { addBtn.prop('disabled', false).removeClass('opacity-50 cursor-not-allowed'); addInputs.prop('disabled', false).removeClass('bg-gray-100'); $('#addConfigNotice').remove(); }
793 |       else { addBtn.prop('disabled', true).addClass('opacity-50 cursor-not-allowed'); addInputs.prop('disabled', true).addClass('bg-gray-100'); if ($('#addConfigNotice').length === 0) { $('#addBtn').after('<p id="addConfigNotice" class="text-xs text-yellow-600 mt-2"><i class="fas fa-info-circle mr-1"></i>需要配置数据库才能添加 Token</p>'); } }
794 |     }
795 | 
796 |     function showError(msg) { $('#loginError').text(msg).removeClass('hidden'); setTimeout(() => $('#loginError').addClass('hidden'), 3000); }
797 |     function showToast(message, type = 'success') { const icons = { success: 'fa-check-circle', error: 'fa-exclamation-circle', info: 'fa-info-circle' }; const toast = $('<div class="toast toast-' + type + '"><i class="fas ' + icons[type] + ' mr-2"></i>' + message + '</div>'); $('body').append(toast); setTimeout(() => { toast.fadeOut(300, function() { $(this).remove(); }); }, 3000); }
798 | 
799 |     // ============ IP 黑名单管理 ============
800 |     $(document).on('click', '.block-ip-btn', async function() {
801 |       const ip = $(this).data('ip');
802 |       if (!ip) return;
803 |       const reason = prompt('请输入封禁原因（可选）:', '手动封禁');
804 |       if (reason === null) return; // 用户取消
805 |       try {
806 |         const response = await fetch('/api/blacklist', {
807 |           method: 'POST',
808 |           headers: { 'Content-Type': 'application/json', 'Authorization': 'Bearer ' + authToken },
809 |           body: JSON.stringify({ ip, reason: reason || '手动封禁' })
810 |         });
811 |         const result = await response.json();
812 |         if (result.success) {
813 |           showToast('IP ' + ip + ' 已封禁', 'success');
814 |           loadStats(false);
815 |         } else {
816 |           showToast('封禁失败: ' + result.error, 'error');
817 |         }
818 |       } catch (error) {
819 |         showToast('请求失败: ' + error.message, 'error');
820 |       }
821 |     });
822 | 
823 |     // 解封 IP
824 |     window.unblockIp = async function(ip) {
825 |       if (!confirm('确定要解封 IP ' + ip + ' 吗？')) return;
826 |       try {
827 |         const response = await fetch('/api/blacklist/' + encodeURIComponent(ip), {
828 |           method: 'DELETE',
829 |           headers: { 'Authorization': 'Bearer ' + authToken }
830 |         });
831 |         const result = await response.json();
832 |         if (result.success) {
833 |           showToast('IP ' + ip + ' 已解封', 'success');
834 |           loadBlacklist();
835 |         } else {
836 |           showToast('解封失败: ' + result.error, 'error');
837 |         }
838 |       } catch (error) {
839 |         showToast('请求失败: ' + error.message, 'error');
840 |       }
841 |     };
842 | 
843 |     // 加载黑名单
844 |     async function loadBlacklist() {
845 |       try {
846 |         const response = await fetch('/api/blacklist', { headers: { 'Authorization': 'Bearer ' + authToken } });
847 |         const result = await response.json();
848 |         if (result.success && result.data.length > 0) {
849 |           const html = result.data.map(r => {
850 |             const time = r.blocked_at ? new Date(r.blocked_at).toLocaleString('zh-CN') : '-';
851 |             return '<div class=\"flex justify-between items-center py-1 px-2 bg-red-50 rounded border border-red-200\"><div><span class=\"font-mono text-red-600\">' + r.ip + '</span><span class=\"text-xs text-gray-500 ml-2\">' + (r.reason || '') + '</span></div><div class=\"flex items-center gap-2\"><span class=\"text-xs text-gray-400\">' + time + '</span><button onclick=\"unblockIp(\\'' + r.ip + '\\')\" class=\"text-green-500 hover:text-green-700\" title=\"解封\"><i class=\"fas fa-unlock\"></i></button></div></div>';
852 |           }).join('');
853 |           $('#blacklistContent').html(html);
854 |           $('#blacklistCount').text(result.data.length);
855 |         } else {
856 |           $('#blacklistContent').html('<div class=\"text-xs text-gray-400 text-center py-4\">暂无封禁 IP</div>');
857 |           $('#blacklistCount').text('0');
858 |         }
859 |       } catch {
860 |         $('#blacklistContent').html('<div class=\"text-xs text-red-400 text-center py-4\">加载失败</div>');
861 |       }
862 |     }
863 |   </script>
864 | </body>
865 | </html>`
866 | }
867 | 


--------------------------------------------------------------------------------
/src/pages/docs.js:
--------------------------------------------------------------------------------
   1 | // ============ 公开文档页面 ============
   2 | 
   3 | /**
   4 |  * 生成文档页面 HTML（无需鉴权）
   5 |  */
   6 | export function getDocsHtml() {
   7 |   return `<!DOCTYPE html>
   8 | <html lang="zh-CN">
   9 | <head>
  10 |   <meta charset="UTF-8">
  11 |   <meta name="viewport" content="width=device-width, initial-scale=1.0">
  12 |   <title>AnyRouter - 通用 API 代理服务文档</title>
  13 |   <script src="https://cdn.tailwindcss.com"></script>
  14 |   <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" rel="stylesheet">
  15 |   <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/styles/github-dark.min.css">
  16 |   <script src="https://cdnjs.cloudflare.com/ajax/libs/highlight.js/11.9.0/highlight.min.js"></script>
  17 |   <style>
  18 |     @import url('https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap');
  19 |     body { font-family: 'Inter', -apple-system, BlinkMacSystemFont, sans-serif; }
  20 |     .gradient-bg { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); }
  21 |     .glass-effect { background: rgba(255, 255, 255, 0.95); backdrop-filter: blur(10px); }
  22 |     .code-block { background: #1e1e1e; border-radius: 8px; overflow-x: auto; }
  23 |     .code-block pre { margin: 0; padding: 16px; }
  24 |     .copy-btn { position: absolute; top: 8px; right: 8px; opacity: 0; transition: opacity 0.2s; }
  25 |     .code-block:hover .copy-btn { opacity: 1; }
  26 |     .toc-link { transition: all 0.2s; }
  27 |     .toc-link:hover { color: #667eea; transform: translateX(4px); }
  28 |     .toc-link.active { color: #667eea; font-weight: 600; border-left: 3px solid #667eea; padding-left: 12px; margin-left: -15px; }
  29 |     .section { scroll-margin-top: 80px; }
  30 |     html { scroll-behavior: smooth; }
  31 |     .api-card { transition: all 0.2s; }
  32 |     .api-card:hover { transform: translateY(-2px); box-shadow: 0 8px 25px rgba(0,0,0,0.1); }
  33 |     /* TOC 左右收起动画 */
  34 |     .toc-sidebar { transition: width 0.3s ease, opacity 0.3s ease, padding 0.3s ease; overflow: hidden; }
  35 |     .toc-sidebar.collapsed { width: 48px !important; }
  36 |     .toc-sidebar.collapsed .toc-content { opacity: 0; pointer-events: none; }
  37 |     .toc-sidebar .toc-content { transition: opacity 0.2s ease; }
  38 |     .toc-toggle-btn { transition: transform 0.3s ease; }
  39 |     .toc-sidebar.collapsed .toc-toggle-btn { transform: rotate(180deg); }
  40 |   </style>
  41 | </head>
  42 | <body class="bg-gray-50 min-h-screen">
  43 |   <!-- Header -->
  44 |   <header class="gradient-bg text-white py-16 px-4">
  45 |     <div class="container mx-auto max-w-5xl">
  46 |       <div class="flex items-center justify-between">
  47 |         <div>
  48 |           <h1 class="text-4xl font-bold mb-4"><i class="fas fa-rocket mr-3"></i>AnyRouter</h1>
  49 |           <p class="text-xl text-purple-100 mb-2">通用 API 代理服务</p>
  50 |           <p class="text-purple-200 mb-6">支持 OpenAI、Anthropic、Google、Azure、Groq 等任意 HTTP API 的统一转发</p>
  51 |           <div class="flex gap-3 flex-wrap">
  52 |             <a href="https://github.com/dext7r/anyrouter" target="_blank" class="inline-flex items-center px-4 py-2 bg-white/20 hover:bg-white/30 rounded-lg transition-all">
  53 |               <i class="fab fa-github mr-2"></i>GitHub
  54 |             </a>
  55 |             <a href="/admin" class="inline-flex items-center px-4 py-2 bg-white/20 hover:bg-white/30 rounded-lg transition-all">
  56 |               <i class="fas fa-cog mr-2"></i>管理面板
  57 |             </a>
  58 |             <a href="/" class="inline-flex items-center px-4 py-2 bg-white/20 hover:bg-white/30 rounded-lg transition-all">
  59 |               <i class="fas fa-home mr-2"></i>首页
  60 |             </a>
  61 |           </div>
  62 |         </div>
  63 |         <div class="hidden md:block text-right">
  64 |           <div class="text-6xl opacity-20"><i class="fas fa-cloud"></i></div>
  65 |         </div>
  66 |       </div>
  67 |     </div>
  68 |   </header>
  69 | 
  70 |   <div class="container mx-auto max-w-5xl px-4 py-8">
  71 |     <div class="flex gap-8">
  72 |       <!-- Sidebar TOC -->
  73 |       <aside id="tocSidebar" class="hidden lg:block w-56 shrink-0 toc-sidebar">
  74 |         <nav class="sticky top-8 glass-effect rounded-xl shadow-lg overflow-hidden">
  75 |           <div class="p-3 cursor-pointer hover:bg-purple-50 transition-all flex items-center justify-between" onclick="toggleTOC()">
  76 |             <h3 class="font-bold text-gray-800 toc-content whitespace-nowrap"><i class="fas fa-list mr-2 text-purple-600"></i>目录</h3>
  77 |             <i class="fas fa-chevron-left text-purple-600 toc-toggle-btn"></i>
  78 |           </div>
  79 |           <ul class="space-y-2 text-sm text-gray-600 px-4 pb-4 toc-content">
  80 |             <li><a href="#overview" class="toc-link block py-1">概述</a></li>
  81 |             <li><a href="#supported-apis" class="toc-link block py-1">支持的 API</a></li>
  82 |             <li><a href="#quick-start" class="toc-link block py-1">快速开始</a></li>
  83 |             <li><a href="#auth-format" class="toc-link block py-1">认证格式</a></li>
  84 |             <li><a href="#usage-modes" class="toc-link block py-1">使用模式</a></li>
  85 |             <li><a href="#examples" class="toc-link block py-1">代码示例</a></li>
  86 |             <li><a href="#sdk-config" class="toc-link block py-1">SDK 配置</a></li>
  87 |             <li><a href="#errors" class="toc-link block py-1">错误处理</a></li>
  88 |             <li><a href="#deployment" class="toc-link block py-1">部署指南</a></li>
  89 |             <li><a href="#faq" class="toc-link block py-1">常见问题</a></li>
  90 |           </ul>
  91 |         </nav>
  92 |       </aside>
  93 | 
  94 |       <!-- Main Content -->
  95 |       <main class="flex-1 min-w-0">
  96 |         <!-- Overview -->
  97 |         <section id="overview" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
  98 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-info-circle mr-2 text-purple-600"></i>概述</h2>
  99 |           <p class="text-gray-600 mb-4">AnyRouter 是一个运行在 Cloudflare Workers 上的<strong>通用 API 代理服务</strong>，可以转发任意 HTTP API 请求：</p>
 100 |           <ul class="space-y-2 text-gray-600">
 101 |             <li class="flex items-start"><i class="fas fa-check text-green-500 mt-1 mr-2"></i><strong>通用代理</strong>：支持任意 HTTP/HTTPS API，不限于 AI 服务</li>
 102 |             <li class="flex items-start"><i class="fas fa-check text-green-500 mt-1 mr-2"></i><strong>密钥管理</strong>：统一管理多个 API 密钥，通过短 ID 安全访问</li>
 103 |             <li class="flex items-start"><i class="fas fa-check text-green-500 mt-1 mr-2"></i><strong>直传模式</strong>：无需预先配置，直接传递 Token 即可使用</li>
 104 |             <li class="flex items-start"><i class="fas fa-check text-green-500 mt-1 mr-2"></i><strong>边缘加速</strong>：基于 Cloudflare 全球边缘网络，低延迟访问</li>
 105 |             <li class="flex items-start"><i class="fas fa-check text-green-500 mt-1 mr-2"></i><strong>请求统计</strong>：记录使用量，支持按 API 和 Key 统计</li>
 106 |           </ul>
 107 |         </section>
 108 | 
 109 |         <!-- Supported APIs -->
 110 |         <section id="supported-apis" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 111 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-plug mr-2 text-purple-600"></i>支持的 API</h2>
 112 |           <p class="text-gray-600 mb-4">AnyRouter 支持任意 HTTP API，以下是常用的 AI 服务示例：</p>
 113 | 
 114 |           <div class="grid grid-cols-2 md:grid-cols-3 lg:grid-cols-4 gap-3">
 115 |             <div class="api-card bg-gradient-to-br from-green-50 to-emerald-50 rounded-lg p-3 border border-green-200">
 116 |               <div class="flex items-center gap-2 mb-1">
 117 |                 <div class="w-8 h-8 bg-green-500 rounded-lg flex items-center justify-center">
 118 |                   <i class="fas fa-brain text-white text-sm"></i>
 119 |                 </div>
 120 |                 <span class="font-semibold text-green-800 text-sm">OpenAI</span>
 121 |               </div>
 122 |               <code class="text-xs text-green-600 break-all">api.openai.com</code>
 123 |             </div>
 124 | 
 125 |             <div class="api-card bg-gradient-to-br from-orange-50 to-amber-50 rounded-lg p-3 border border-orange-200">
 126 |               <div class="flex items-center gap-2 mb-1">
 127 |                 <div class="w-8 h-8 bg-orange-500 rounded-lg flex items-center justify-center">
 128 |                   <i class="fas fa-robot text-white text-sm"></i>
 129 |                 </div>
 130 |                 <span class="font-semibold text-orange-800 text-sm">Anthropic</span>
 131 |               </div>
 132 |               <code class="text-xs text-orange-600 break-all">api.anthropic.com</code>
 133 |             </div>
 134 | 
 135 |             <div class="api-card bg-gradient-to-br from-blue-50 to-indigo-50 rounded-lg p-3 border border-blue-200">
 136 |               <div class="flex items-center gap-2 mb-1">
 137 |                 <div class="w-8 h-8 bg-blue-500 rounded-lg flex items-center justify-center">
 138 |                   <i class="fab fa-google text-white text-sm"></i>
 139 |                 </div>
 140 |                 <span class="font-semibold text-blue-800 text-sm">Google AI</span>
 141 |               </div>
 142 |               <code class="text-xs text-blue-600 break-all">generativelanguage.googleapis.com</code>
 143 |             </div>
 144 | 
 145 |             <div class="api-card bg-gradient-to-br from-cyan-50 to-sky-50 rounded-lg p-3 border border-cyan-200">
 146 |               <div class="flex items-center gap-2 mb-1">
 147 |                 <div class="w-8 h-8 bg-cyan-500 rounded-lg flex items-center justify-center">
 148 |                   <i class="fab fa-microsoft text-white text-sm"></i>
 149 |                 </div>
 150 |                 <span class="font-semibold text-cyan-800 text-sm">Azure OpenAI</span>
 151 |               </div>
 152 |               <code class="text-xs text-cyan-600 break-all">xxx.openai.azure.com</code>
 153 |             </div>
 154 | 
 155 |             <div class="api-card bg-gradient-to-br from-purple-50 to-violet-50 rounded-lg p-3 border border-purple-200">
 156 |               <div class="flex items-center gap-2 mb-1">
 157 |                 <div class="w-8 h-8 bg-purple-500 rounded-lg flex items-center justify-center">
 158 |                   <i class="fas fa-bolt text-white text-sm"></i>
 159 |                 </div>
 160 |                 <span class="font-semibold text-purple-800 text-sm">Groq</span>
 161 |               </div>
 162 |               <code class="text-xs text-purple-600 break-all">api.groq.com</code>
 163 |             </div>
 164 | 
 165 |             <div class="api-card bg-gradient-to-br from-pink-50 to-rose-50 rounded-lg p-3 border border-pink-200">
 166 |               <div class="flex items-center gap-2 mb-1">
 167 |                 <div class="w-8 h-8 bg-pink-500 rounded-lg flex items-center justify-center">
 168 |                   <i class="fas fa-fire text-white text-sm"></i>
 169 |                 </div>
 170 |                 <span class="font-semibold text-pink-800 text-sm">Mistral</span>
 171 |               </div>
 172 |               <code class="text-xs text-pink-600 break-all">api.mistral.ai</code>
 173 |             </div>
 174 | 
 175 |             <div class="api-card bg-gradient-to-br from-yellow-50 to-amber-50 rounded-lg p-3 border border-yellow-200">
 176 |               <div class="flex items-center gap-2 mb-1">
 177 |                 <div class="w-8 h-8 bg-yellow-500 rounded-lg flex items-center justify-center">
 178 |                   <i class="fas fa-sun text-white text-sm"></i>
 179 |                 </div>
 180 |                 <span class="font-semibold text-yellow-800 text-sm">Cohere</span>
 181 |               </div>
 182 |               <code class="text-xs text-yellow-600 break-all">api.cohere.ai</code>
 183 |             </div>
 184 | 
 185 |             <div class="api-card bg-gradient-to-br from-gray-50 to-slate-50 rounded-lg p-3 border border-gray-200">
 186 |               <div class="flex items-center gap-2 mb-1">
 187 |                 <div class="w-8 h-8 bg-gray-500 rounded-lg flex items-center justify-center">
 188 |                   <i class="fas fa-ellipsis-h text-white text-sm"></i>
 189 |                 </div>
 190 |                 <span class="font-semibold text-gray-800 text-sm">更多...</span>
 191 |               </div>
 192 |               <code class="text-xs text-gray-600">任意 HTTP API</code>
 193 |             </div>
 194 |           </div>
 195 | 
 196 |           <div class="mt-4 bg-blue-50 border border-blue-200 rounded-lg p-4">
 197 |             <p class="text-sm text-blue-700"><i class="fas fa-info-circle mr-1"></i>只要是标准的 HTTP/HTTPS API，都可以通过 AnyRouter 代理访问，不限于上述服务。</p>
 198 |           </div>
 199 |         </section>
 200 | 
 201 |         <!-- Quick Start -->
 202 |         <section id="quick-start" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 203 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-bolt mr-2 text-purple-600"></i>快速开始</h2>
 204 |           <div class="space-y-4">
 205 |             <div>
 206 |               <h3 class="font-semibold text-gray-800 mb-2">1. 获取代理地址</h3>
 207 |               <p class="text-gray-600 mb-2">当前服务地址：</p>
 208 |               <div class="code-block relative">
 209 |                 <pre><code class="language-text" id="proxyUrl"></code></pre>
 210 |                 <button onclick="copyToClipboard('proxyUrl')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 211 |                   <i class="fas fa-copy"></i>
 212 |                 </button>
 213 |               </div>
 214 |             </div>
 215 |             <div>
 216 |               <h3 class="font-semibold text-gray-800 mb-2">2. 设置认证信息</h3>
 217 |               <p class="text-gray-600">在请求头中添加 <code class="bg-gray-100 px-2 py-1 rounded text-purple-600">Authorization</code> 字段，格式如下：</p>
 218 |             </div>
 219 |           </div>
 220 |         </section>
 221 | 
 222 |         <!-- Auth Format -->
 223 |         <section id="auth-format" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 224 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-key mr-2 text-purple-600"></i>认证格式</h2>
 225 |           <div class="code-block relative mb-4">
 226 |             <pre><code class="language-http">Authorization: Bearer &lt;目标API地址&gt;:&lt;Key ID 或 Token&gt;</code></pre>
 227 |           </div>
 228 |           <div class="bg-yellow-50 border border-yellow-200 rounded-lg p-4 mb-4">
 229 |             <h4 class="font-semibold text-yellow-800 mb-2"><i class="fas fa-lightbulb mr-1"></i>格式说明</h4>
 230 |             <ul class="text-sm text-yellow-700 space-y-1">
 231 |               <li>• <strong>目标API地址</strong>：完整的 API 地址，如 <code>https://api.openai.com</code></li>
 232 |               <li>• <strong>Key ID</strong>：6 位字母数字组合，用于从数据库查找对应的 Token</li>
 233 |               <li>• <strong>Token</strong>：直接传递完整的 API Token（直传模式）</li>
 234 |             </ul>
 235 |           </div>
 236 | 
 237 |           <h3 class="font-semibold text-gray-800 mb-2">各平台示例</h3>
 238 |           <div class="space-y-2 text-sm">
 239 |             <div class="flex items-center gap-2 p-2 bg-gray-50 rounded">
 240 |               <span class="w-20 text-gray-500">OpenAI:</span>
 241 |               <code class="text-green-600">Bearer https://api.openai.com:a3x9k2</code>
 242 |             </div>
 243 |             <div class="flex items-center gap-2 p-2 bg-gray-50 rounded">
 244 |               <span class="w-20 text-gray-500">Anthropic:</span>
 245 |               <code class="text-orange-600">Bearer https://api.anthropic.com:b4y8m1</code>
 246 |             </div>
 247 |             <div class="flex items-center gap-2 p-2 bg-gray-50 rounded">
 248 |               <span class="w-20 text-gray-500">Google AI:</span>
 249 |               <code class="text-blue-600">Bearer https://generativelanguage.googleapis.com:c5z2n3</code>
 250 |             </div>
 251 |             <div class="flex items-center gap-2 p-2 bg-gray-50 rounded">
 252 |               <span class="w-20 text-gray-500">Groq:</span>
 253 |               <code class="text-purple-600">Bearer https://api.groq.com:d6w4p5</code>
 254 |             </div>
 255 |           </div>
 256 |         </section>
 257 | 
 258 |         <!-- Usage Modes -->
 259 |         <section id="usage-modes" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 260 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-exchange-alt mr-2 text-purple-600"></i>使用模式</h2>
 261 | 
 262 |           <div class="grid md:grid-cols-3 gap-4">
 263 |             <!-- SK Alias Mode -->
 264 |             <div class="bg-gradient-to-br from-orange-50 to-amber-50 rounded-lg p-4 border-2 border-orange-300">
 265 |               <div class="flex items-center mb-3">
 266 |                 <span class="px-2 py-1 bg-orange-500 text-white text-xs rounded-full font-bold mr-2">最佳</span>
 267 |                 <h3 class="font-bold text-orange-800">SK 别名模式</h3>
 268 |               </div>
 269 |               <p class="text-sm text-orange-700 mb-3">使用类似 OpenAI 格式的 SK 别名，一键访问</p>
 270 |               <div class="code-block">
 271 |                 <pre><code class="language-text">Bearer sk-ar-xxxxxxxx...</code></pre>
 272 |               </div>
 273 |               <ul class="mt-3 text-xs text-orange-600 space-y-1">
 274 |                 <li><i class="fas fa-star mr-1"></i>类似原生 API Key 格式</li>
 275 |                 <li><i class="fas fa-shield-alt mr-1"></i>不暴露真实 Token</li>
 276 |                 <li><i class="fas fa-magic mr-1"></i>自动识别目标 API</li>
 277 |                 <li><i class="fas fa-sync mr-1"></i>可随时重新生成</li>
 278 |               </ul>
 279 |             </div>
 280 | 
 281 |             <!-- Key ID Mode -->
 282 |             <div class="bg-gradient-to-br from-blue-50 to-indigo-50 rounded-lg p-4 border border-blue-200">
 283 |               <div class="flex items-center mb-3">
 284 |                 <span class="px-2 py-1 bg-blue-500 text-white text-xs rounded-full font-bold mr-2">推荐</span>
 285 |                 <h3 class="font-bold text-blue-800">Key ID 模式</h3>
 286 |               </div>
 287 |               <p class="text-sm text-blue-700 mb-3">使用 6 位短 ID + URL 访问预配置的密钥</p>
 288 |               <div class="code-block">
 289 |                 <pre><code class="language-text">Bearer https://api.openai.com:a3x9k2</code></pre>
 290 |               </div>
 291 |               <ul class="mt-3 text-xs text-blue-600 space-y-1">
 292 |                 <li><i class="fas fa-shield-alt mr-1"></i>不暴露真实 Token</li>
 293 |                 <li><i class="fas fa-tachometer-alt mr-1"></i>支持使用统计</li>
 294 |                 <li><i class="fas fa-toggle-on mr-1"></i>可随时启用/禁用</li>
 295 |               </ul>
 296 |             </div>
 297 | 
 298 |             <!-- Direct Mode -->
 299 |             <div class="bg-gradient-to-br from-green-50 to-emerald-50 rounded-lg p-4 border border-green-200">
 300 |               <div class="flex items-center mb-3">
 301 |                 <span class="px-2 py-1 bg-green-500 text-white text-xs rounded-full font-bold mr-2">灵活</span>
 302 |                 <h3 class="font-bold text-green-800">直传模式</h3>
 303 |               </div>
 304 |               <p class="text-sm text-green-700 mb-3">直接在请求中传递 API Token</p>
 305 |               <div class="code-block">
 306 |                 <pre><code class="language-text">Bearer https://api.openai.com:sk-xxx...</code></pre>
 307 |               </div>
 308 |               <ul class="mt-3 text-xs text-green-600 space-y-1">
 309 |                 <li><i class="fas fa-bolt mr-1"></i>即用即走，无需配置</li>
 310 |                 <li><i class="fas fa-globe mr-1"></i>支持任意 API 地址</li>
 311 |                 <li><i class="fas fa-clock mr-1"></i>临时使用场景</li>
 312 |               </ul>
 313 |             </div>
 314 |           </div>
 315 | 
 316 |           <div class="mt-4 bg-purple-50 border border-purple-200 rounded-lg p-4">
 317 |             <h4 class="font-semibold text-purple-800 mb-2"><i class="fas fa-magic mr-1"></i>模式自动判断</h4>
 318 |             <p class="text-sm text-purple-700">系统会根据 Authorization 内容自动判断模式：</p>
 319 |             <ul class="text-sm text-purple-600 mt-2 space-y-1">
 320 |               <li>• <code>sk-ar-xxx</code> 开头 → SK 别名模式（自动匹配目标 API）</li>
 321 |               <li>• URL 后跟 6 位字母数字（如 <code>https://...:a3x9k2</code>）→ Key ID 模式</li>
 322 |               <li>• URL 后跟其他格式（如 <code>https://...:sk-xxx</code>）→ 直传模式</li>
 323 |             </ul>
 324 |           </div>
 325 | 
 326 |           <!-- SK Alias Details -->
 327 |           <div class="mt-4 bg-orange-50 border border-orange-200 rounded-lg p-4">
 328 |             <h4 class="font-semibold text-orange-800 mb-2"><i class="fas fa-key mr-1"></i>SK 别名详解</h4>
 329 |             <p class="text-sm text-orange-700 mb-3">SK 别名是 AnyRouter 独创的认证方式，格式类似各大平台的 API Key：</p>
 330 |             <div class="grid md:grid-cols-2 gap-3 text-sm">
 331 |               <div class="bg-white rounded p-3">
 332 |                 <div class="font-medium text-gray-700 mb-1">格式对比</div>
 333 |                 <ul class="text-xs text-gray-600 space-y-1">
 334 |                   <li>OpenAI: <code class="text-green-600">sk-proj-xxx</code></li>
 335 |                   <li>Anthropic: <code class="text-orange-600">sk-ant-xxx</code></li>
 336 |                   <li>AnyRouter: <code class="text-purple-600">sk-ar-xxx</code></li>
 337 |                 </ul>
 338 |               </div>
 339 |               <div class="bg-white rounded p-3">
 340 |                 <div class="font-medium text-gray-700 mb-1">使用方法</div>
 341 |                 <ol class="text-xs text-gray-600 space-y-1 list-decimal list-inside">
 342 |                   <li>在管理面板点击「生成」获取 SK 别名</li>
 343 |                   <li>直接用 <code>sk-ar-xxx</code> 作为 API Key</li>
 344 |                   <li>无需指定目标 API URL</li>
 345 |                 </ol>
 346 |               </div>
 347 |             </div>
 348 |           </div>
 349 |         </section>
 350 | 
 351 |         <!-- Code Examples -->
 352 |         <section id="examples" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 353 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-code mr-2 text-purple-600"></i>代码示例</h2>
 354 | 
 355 |           <!-- cURL -->
 356 |           <div class="mb-6">
 357 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-gray-500"></i>cURL - OpenAI</h3>
 358 |             <div class="code-block relative">
 359 |               <pre><code class="language-bash" id="curl-openai">curl -X POST '<span class="proxy-url"></span>/v1/chat/completions' \\
 360 |   -H 'Authorization: Bearer https://api.openai.com:a3x9k2' \\
 361 |   -H 'Content-Type: application/json' \\
 362 |   -d '{
 363 |     "model": "gpt-4",
 364 |     "messages": [{"role": "user", "content": "Hello!"}]
 365 |   }'</code></pre>
 366 |               <button onclick="copyCode('curl-openai')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 367 |                 <i class="fas fa-copy"></i>
 368 |               </button>
 369 |             </div>
 370 |           </div>
 371 | 
 372 |           <!-- cURL Anthropic -->
 373 |           <div class="mb-6">
 374 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-gray-500"></i>cURL - Anthropic</h3>
 375 |             <div class="code-block relative">
 376 |               <pre><code class="language-bash" id="curl-anthropic">curl -X POST '<span class="proxy-url"></span>/v1/messages' \\
 377 |   -H 'Authorization: Bearer https://api.anthropic.com:b4y8m1' \\
 378 |   -H 'Content-Type: application/json' \\
 379 |   -H 'anthropic-version: 2023-06-01' \\
 380 |   -d '{
 381 |     "model": "claude-sonnet-4-20250514",
 382 |     "max_tokens": 1024,
 383 |     "messages": [{"role": "user", "content": "Hello!"}]
 384 |   }'</code></pre>
 385 |               <button onclick="copyCode('curl-anthropic')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 386 |                 <i class="fas fa-copy"></i>
 387 |               </button>
 388 |             </div>
 389 |           </div>
 390 | 
 391 |           <!-- cURL Google -->
 392 |           <div class="mb-6">
 393 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-gray-500"></i>cURL - Google AI (Gemini)</h3>
 394 |             <div class="code-block relative">
 395 |               <pre><code class="language-bash" id="curl-google">curl -X POST '<span class="proxy-url"></span>/v1beta/models/gemini-pro:generateContent' \\
 396 |   -H 'Authorization: Bearer https://generativelanguage.googleapis.com:c5z2n3' \\
 397 |   -H 'Content-Type: application/json' \\
 398 |   -d '{
 399 |     "contents": [{"parts": [{"text": "Hello!"}]}]
 400 |   }'</code></pre>
 401 |               <button onclick="copyCode('curl-google')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 402 |                 <i class="fas fa-copy"></i>
 403 |               </button>
 404 |             </div>
 405 |           </div>
 406 | 
 407 |           <!-- Python OpenAI -->
 408 |           <div class="mb-6">
 409 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fab fa-python mr-2 text-blue-500"></i>Python - OpenAI SDK</h3>
 410 |             <div class="code-block relative">
 411 |               <pre><code class="language-python" id="python-openai">from openai import OpenAI
 412 | 
 413 | client = OpenAI(
 414 |     base_url='<span class="proxy-url"></span>/v1',
 415 |     api_key='https://api.openai.com:a3x9k2'
 416 | )
 417 | 
 418 | response = client.chat.completions.create(
 419 |     model="gpt-4",
 420 |     messages=[{"role": "user", "content": "Hello!"}]
 421 | )
 422 | print(response.choices[0].message.content)</code></pre>
 423 |               <button onclick="copyCode('python-openai')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 424 |                 <i class="fas fa-copy"></i>
 425 |               </button>
 426 |             </div>
 427 |           </div>
 428 | 
 429 |           <!-- Python Anthropic -->
 430 |           <div class="mb-6">
 431 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fab fa-python mr-2 text-blue-500"></i>Python - Anthropic SDK</h3>
 432 |             <div class="code-block relative">
 433 |               <pre><code class="language-python" id="python-anthropic">import anthropic
 434 | 
 435 | client = anthropic.Anthropic(
 436 |     base_url='<span class="proxy-url"></span>',
 437 |     api_key='https://api.anthropic.com:b4y8m1'
 438 | )
 439 | 
 440 | message = client.messages.create(
 441 |     model="claude-sonnet-4-20250514",
 442 |     max_tokens=1024,
 443 |     messages=[{"role": "user", "content": "Hello!"}]
 444 | )
 445 | print(message.content[0].text)</code></pre>
 446 |               <button onclick="copyCode('python-anthropic')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 447 |                 <i class="fas fa-copy"></i>
 448 |               </button>
 449 |             </div>
 450 |           </div>
 451 | 
 452 |           <!-- Python Groq -->
 453 |           <div class="mb-6">
 454 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fab fa-python mr-2 text-blue-500"></i>Python - Groq SDK</h3>
 455 |             <div class="code-block relative">
 456 |               <pre><code class="language-python" id="python-groq">from groq import Groq
 457 | 
 458 | client = Groq(
 459 |     base_url='<span class="proxy-url"></span>/openai/v1',
 460 |     api_key='https://api.groq.com:d6w4p5'
 461 | )
 462 | 
 463 | response = client.chat.completions.create(
 464 |     model="llama-3.1-70b-versatile",
 465 |     messages=[{"role": "user", "content": "Hello!"}]
 466 | )
 467 | print(response.choices[0].message.content)</code></pre>
 468 |               <button onclick="copyCode('python-groq')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 469 |                 <i class="fas fa-copy"></i>
 470 |               </button>
 471 |             </div>
 472 |           </div>
 473 | 
 474 |           <!-- JavaScript -->
 475 |           <div>
 476 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fab fa-js mr-2 text-yellow-500"></i>JavaScript - fetch</h3>
 477 |             <div class="code-block relative">
 478 |               <pre><code class="language-javascript" id="js-example">const response = await fetch('<span class="proxy-url"></span>/v1/chat/completions', {
 479 |   method: 'POST',
 480 |   headers: {
 481 |     'Authorization': 'Bearer https://api.openai.com:a3x9k2',
 482 |     'Content-Type': 'application/json'
 483 |   },
 484 |   body: JSON.stringify({
 485 |     model: 'gpt-4',
 486 |     messages: [{ role: 'user', content: 'Hello!' }]
 487 |   })
 488 | });
 489 | 
 490 | const data = await response.json();
 491 | console.log(data.choices[0].message.content);</code></pre>
 492 |               <button onclick="copyCode('js-example')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 493 |                 <i class="fas fa-copy"></i>
 494 |               </button>
 495 |             </div>
 496 |           </div>
 497 |         </section>
 498 | 
 499 |         <!-- SDK Config -->
 500 |         <section id="sdk-config" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 501 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-cogs mr-2 text-purple-600"></i>SDK / CLI 配置</h2>
 502 |           <p class="text-gray-600 mb-4">通过环境变量配置各种 SDK 和 CLI 工具使用本代理服务：</p>
 503 | 
 504 |           <!-- SK Alias Mode (Recommended) -->
 505 |           <div class="mb-6 p-4 bg-gradient-to-r from-orange-50 to-amber-50 border-2 border-orange-300 rounded-lg">
 506 |             <h3 class="font-semibold text-orange-800 mb-2"><i class="fas fa-star mr-2 text-orange-500"></i>SK 别名模式（推荐）</h3>
 507 |             <p class="text-sm text-orange-700 mb-3">使用 SK 别名最简洁，无需指定目标 API URL：</p>
 508 |             <div class="code-block relative mb-2">
 509 |               <pre><code class="language-bash" id="config-sk-alias"># Claude Code / Anthropic SDK
 510 | export ANTHROPIC_BASE_URL=<span class="proxy-url"></span>
 511 | export ANTHROPIC_AUTH_TOKEN=sk-ar-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
 512 | 
 513 | # OpenAI SDK
 514 | export OPENAI_BASE_URL=<span class="proxy-url"></span>/v1
 515 | export OPENAI_API_KEY=sk-ar-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx</code></pre>
 516 |               <button onclick="copyCode('config-sk-alias')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 517 |                 <i class="fas fa-copy"></i>
 518 |               </button>
 519 |             </div>
 520 |             <p class="text-xs text-orange-600"><i class="fas fa-info-circle mr-1"></i>在管理面板的配置列表中点击「生成」按钮获取你的 SK 别名</p>
 521 |           </div>
 522 | 
 523 |           <!-- Claude Code -->
 524 |           <div class="mb-6">
 525 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-orange-500"></i>Claude Code CLI（Key ID 模式）</h3>
 526 |             <div class="code-block relative mb-2">
 527 |               <pre><code class="language-bash" id="config-claude">export ANTHROPIC_BASE_URL=<span class="proxy-url"></span>
 528 | export ANTHROPIC_AUTH_TOKEN=https://api.anthropic.com:b4y8m1</code></pre>
 529 |               <button onclick="copyCode('config-claude')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 530 |                 <i class="fas fa-copy"></i>
 531 |               </button>
 532 |             </div>
 533 |           </div>
 534 | 
 535 |           <!-- OpenAI CLI -->
 536 |           <div class="mb-6">
 537 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-green-500"></i>OpenAI CLI / SDK（Key ID 模式）</h3>
 538 |             <div class="code-block relative mb-2">
 539 |               <pre><code class="language-bash" id="config-openai">export OPENAI_BASE_URL=<span class="proxy-url"></span>/v1
 540 | export OPENAI_API_KEY=https://api.openai.com:a3x9k2</code></pre>
 541 |               <button onclick="copyCode('config-openai')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 542 |                 <i class="fas fa-copy"></i>
 543 |               </button>
 544 |             </div>
 545 |           </div>
 546 | 
 547 |           <!-- Generic -->
 548 |           <div class="mb-4">
 549 |             <h3 class="font-semibold text-gray-800 mb-2"><i class="fas fa-terminal mr-2 text-purple-500"></i>通用配置模式</h3>
 550 |             <div class="code-block relative mb-2">
 551 |               <pre><code class="language-bash" id="config-generic"># SK 别名模式（最简洁）
 552 | export {SDK}_BASE_URL=<span class="proxy-url"></span>
 553 | export {SDK}_API_KEY=sk-ar-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
 554 | 
 555 | # Key ID 模式
 556 | export {SDK}_BASE_URL=<span class="proxy-url"></span>
 557 | export {SDK}_API_KEY=https://{目标API地址}:{KeyID}</code></pre>
 558 |               <button onclick="copyCode('config-generic')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 559 |                 <i class="fas fa-copy"></i>
 560 |               </button>
 561 |             </div>
 562 |           </div>
 563 | 
 564 |           <div class="bg-blue-50 border border-blue-200 rounded-lg p-4">
 565 |             <h4 class="font-semibold text-blue-800 mb-2"><i class="fas fa-info-circle mr-1"></i>配置说明</h4>
 566 |             <ul class="text-sm text-blue-700 space-y-1">
 567 |               <li>• <strong>SK 别名模式</strong>：最简洁，只需一个 <code>sk-ar-xxx</code> 即可，系统自动识别目标 API</li>
 568 |               <li>• <strong>Key ID 模式</strong>：需要指定 URL 和 6 位 Key ID，适合需要明确指定目标的场景</li>
 569 |               <li>• 环境变量可以添加到 <code>~/.bashrc</code>、<code>~/.zshrc</code> 或项目的 <code>.env</code> 文件</li>
 570 |             </ul>
 571 |           </div>
 572 |         </section>
 573 | 
 574 |         <!-- Errors -->
 575 |         <section id="errors" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 576 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-exclamation-triangle mr-2 text-purple-600"></i>错误处理</h2>
 577 |           <p class="text-gray-600 mb-4">当请求出错时，API 会返回结构化的错误信息：</p>
 578 | 
 579 |           <div class="code-block mb-4">
 580 |             <pre><code class="language-json">{
 581 |   "error": {
 582 |     "code": "NOT_FOUND",
 583 |     "message": "Key ID 不存在",
 584 |     "hint": "找不到 Key ID \\"abc123\\"，请检查是否输入正确",
 585 |     "contact": "如有疑问请联系管理员"
 586 |   }
 587 | }</code></pre>
 588 |           </div>
 589 | 
 590 |           <div class="overflow-x-auto">
 591 |             <table class="w-full text-sm">
 592 |               <thead>
 593 |                 <tr class="border-b border-gray-200">
 594 |                   <th class="text-left py-2 px-3 font-semibold text-gray-700">错误码</th>
 595 |                   <th class="text-left py-2 px-3 font-semibold text-gray-700">HTTP 状态</th>
 596 |                   <th class="text-left py-2 px-3 font-semibold text-gray-700">说明</th>
 597 |                 </tr>
 598 |               </thead>
 599 |               <tbody class="text-gray-600">
 600 |                 <tr class="border-b border-gray-100">
 601 |                   <td class="py-2 px-3"><code class="text-red-600">UNAUTHORIZED</code></td>
 602 |                   <td class="py-2 px-3">401</td>
 603 |                   <td class="py-2 px-3">缺少或无效的 Authorization header</td>
 604 |                 </tr>
 605 |                 <tr class="border-b border-gray-100">
 606 |                   <td class="py-2 px-3"><code class="text-red-600">BAD_REQUEST</code></td>
 607 |                   <td class="py-2 px-3">400</td>
 608 |                   <td class="py-2 px-3">请求格式错误</td>
 609 |                 </tr>
 610 |                 <tr class="border-b border-gray-100">
 611 |                   <td class="py-2 px-3"><code class="text-red-600">NOT_FOUND</code></td>
 612 |                   <td class="py-2 px-3">404</td>
 613 |                   <td class="py-2 px-3">API 地址未配置或 Key ID 不存在</td>
 614 |                 </tr>
 615 |                 <tr class="border-b border-gray-100">
 616 |                   <td class="py-2 px-3"><code class="text-red-600">FORBIDDEN</code></td>
 617 |                   <td class="py-2 px-3">403</td>
 618 |                   <td class="py-2 px-3">Key 已被禁用</td>
 619 |                 </tr>
 620 |                 <tr>
 621 |                   <td class="py-2 px-3"><code class="text-red-600">SERVICE_ERROR</code></td>
 622 |                   <td class="py-2 px-3">503</td>
 623 |                   <td class="py-2 px-3">无法连接到目标 API</td>
 624 |                 </tr>
 625 |               </tbody>
 626 |             </table>
 627 |           </div>
 628 |         </section>
 629 | 
 630 |         <!-- Deployment Guide -->
 631 |         <section id="deployment" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
 632 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-server mr-2 text-purple-600"></i>部署指南</h2>
 633 |           <p class="text-gray-600 mb-4">选择以下任一方式部署你的 AnyRouter 代理服务：</p>
 634 | 
 635 |           <!-- Deploy Methods Tabs -->
 636 |           <div class="mb-6">
 637 |             <div class="flex border-b border-gray-200 mb-4">
 638 |               <button onclick="showDeployTab('oneclick')" id="tab-oneclick" class="deploy-tab px-4 py-2 text-sm font-medium text-purple-600 border-b-2 border-purple-600">
 639 |                 <i class="fas fa-bolt mr-1"></i>一键部署
 640 |               </button>
 641 |               <button onclick="showDeployTab('github')" id="tab-github" class="deploy-tab px-4 py-2 text-sm font-medium text-gray-500 hover:text-purple-600">
 642 |                 <i class="fab fa-github mr-1"></i>GitHub 关联
 643 |               </button>
 644 |               <button onclick="showDeployTab('paste')" id="tab-paste" class="deploy-tab px-4 py-2 text-sm font-medium text-gray-500 hover:text-purple-600">
 645 |                 <i class="fas fa-paste mr-1"></i>复制粘贴
 646 |               </button>
 647 |               <button onclick="showDeployTab('cli')" id="tab-cli" class="deploy-tab px-4 py-2 text-sm font-medium text-gray-500 hover:text-purple-600">
 648 |                 <i class="fas fa-terminal mr-1"></i>命令行部署
 649 |               </button>
 650 |               <button onclick="showDeployTab('actions')" id="tab-actions" class="deploy-tab px-4 py-2 text-sm font-medium text-gray-500 hover:text-purple-600">
 651 |                 <i class="fas fa-cogs mr-1"></i>GitHub Actions
 652 |               </button>
 653 |             </div>
 654 | 
 655 |             <!-- One-Click Deploy -->
 656 |             <div id="deploy-oneclick" class="deploy-content">
 657 |               <div class="bg-gradient-to-r from-orange-50 to-amber-50 border border-orange-200 rounded-lg p-4 mb-4">
 658 |                 <h4 class="font-semibold text-orange-800 mb-2"><i class="fas fa-star mr-1"></i>最简单的方式</h4>
 659 |                 <p class="text-sm text-orange-700 mb-3">点击下方按钮，自动 Fork 并部署到你的 Cloudflare 账户：</p>
 660 |                 <a href="https://deploy.workers.cloudflare.com/?url=https://github.com/dext7r/anyrouter" target="_blank" class="inline-block">
 661 |                   <img src="https://deploy.workers.cloudflare.com/button" alt="Deploy to Cloudflare Workers" class="h-10">
 662 |                 </a>
 663 |               </div>
 664 |               <div class="text-sm text-gray-600">
 665 |                 <p class="mb-2"><strong>部署后配置环境变量：</strong></p>
 666 |                 <ol class="list-decimal list-inside space-y-1 text-gray-500">
 667 |                   <li>进入 Cloudflare Dashboard → Workers & Pages → 你的 Worker</li>
 668 |                   <li>点击 Settings → Variables and Secrets</li>
 669 |                   <li>添加 <code class="bg-gray-100 px-1 rounded">ADMIN_PASSWORD</code>、<code class="bg-gray-100 px-1 rounded">SUPABASE_URL</code> 等变量</li>
 670 |                 </ol>
 671 |               </div>
 672 |             </div>
 673 | 
 674 |             <!-- GitHub Integration -->
 675 |             <div id="deploy-github" class="deploy-content hidden">
 676 |               <div class="bg-blue-50 border border-blue-200 rounded-lg p-4 mb-4">
 677 |                 <h4 class="font-semibold text-blue-800 mb-2"><i class="fab fa-github mr-1"></i>关联 GitHub 仓库自动部署</h4>
 678 |                 <p class="text-sm text-blue-700">每次推送代码到 GitHub，Cloudflare 自动构建并部署</p>
 679 |               </div>
 680 |               <ol class="space-y-3 text-sm text-gray-600">
 681 |                 <li class="flex items-start">
 682 |                   <span class="font-bold text-purple-600 mr-2">1.</span>
 683 |                   <div>Fork <a href="https://github.com/dext7r/anyrouter" target="_blank" class="text-purple-600 hover:underline">dext7r/anyrouter</a> 到你的 GitHub 账号</div>
 684 |                 </li>
 685 |                 <li class="flex items-start">
 686 |                   <span class="font-bold text-purple-600 mr-2">2.</span>
 687 |                   <div>登录 <a href="https://dash.cloudflare.com" target="_blank" class="text-purple-600 hover:underline">Cloudflare Dashboard</a> → Workers & Pages → <strong>Create</strong></div>
 688 |                 </li>
 689 |                 <li class="flex items-start">
 690 |                   <span class="font-bold text-purple-600 mr-2">3.</span>
 691 |                   <div>选择 <strong>Workers</strong> → <strong>Import from GitHub</strong></div>
 692 |                 </li>
 693 |                 <li class="flex items-start">
 694 |                   <span class="font-bold text-purple-600 mr-2">4.</span>
 695 |                   <div>授权 GitHub 并选择你 Fork 的仓库</div>
 696 |                 </li>
 697 |                 <li class="flex items-start">
 698 |                   <span class="font-bold text-purple-600 mr-2">5.</span>
 699 |                   <div>使用默认配置，直接点击<strong>部署</strong>（仓库已包含 wrangler.toml）</div>
 700 |                 </li>
 701 |                 <li class="flex items-start">
 702 |                   <span class="font-bold text-purple-600 mr-2">6.</span>
 703 |                   <div>部署完成后，进入 Settings → Variables and Secrets 添加环境变量</div>
 704 |                 </li>
 705 |               </ol>
 706 |             </div>
 707 | 
 708 |             <!-- Paste Deploy -->
 709 |             <div id="deploy-paste" class="deploy-content hidden">
 710 |               <div class="bg-gradient-to-r from-green-50 to-emerald-50 border border-green-200 rounded-lg p-4 mb-4">
 711 |                 <h4 class="font-semibold text-green-800 mb-2"><i class="fas fa-paste mr-1"></i>直接复制代码部署</h4>
 712 |                 <p class="text-sm text-green-700">无需 Git，直接复制构建后的代码到 Cloudflare Workers</p>
 713 |               </div>
 714 |               <ol class="space-y-3 text-sm text-gray-600">
 715 |                 <li class="flex items-start">
 716 |                   <span class="font-bold text-purple-600 mr-2">1.</span>
 717 |                   <div>登录 <a href="https://dash.cloudflare.com" target="_blank" class="text-purple-600 hover:underline">Cloudflare Dashboard</a> → Workers & Pages → <strong>Create</strong></div>
 718 |                 </li>
 719 |                 <li class="flex items-start">
 720 |                   <span class="font-bold text-purple-600 mr-2">2.</span>
 721 |                   <div>选择 <strong>Workers</strong> → <strong>Create Worker</strong>（或 Hello World 模板）</div>
 722 |                 </li>
 723 |                 <li class="flex items-start">
 724 |                   <span class="font-bold text-purple-600 mr-2">3.</span>
 725 |                   <div>给 Worker 起名（如 <code class="bg-gray-100 px-1 rounded">anyrouter</code>），点击 <strong>Deploy</strong></div>
 726 |                 </li>
 727 |                 <li class="flex items-start">
 728 |                   <span class="font-bold text-purple-600 mr-2">4.</span>
 729 |                   <div>点击 <strong>Edit code</strong> 进入在线编辑器</div>
 730 |                 </li>
 731 |                 <li class="flex items-start">
 732 |                   <span class="font-bold text-purple-600 mr-2">5.</span>
 733 |                   <div>
 734 |                     <strong>删除</strong>默认代码，点击下方按钮一键复制代码：
 735 |                     <div class="mt-2 flex items-center gap-2 flex-wrap">
 736 |                       <button onclick="copyWorkerCode()" id="copyWorkerBtn" class="text-sm bg-gradient-to-r from-purple-600 to-pink-600 text-white px-4 py-2 rounded-lg hover:from-purple-700 hover:to-pink-700 transition-all shadow">
 737 |                         <i class="fas fa-copy mr-1"></i>一键复制 anyrouter.js
 738 |                       </button>
 739 |                       <a href="https://raw.githubusercontent.com/dext7r/anyrouter/main/anyrouter.js" target="_blank" class="text-xs text-purple-600 hover:underline"><i class="fas fa-external-link-alt mr-1"></i>或手动打开</a>
 740 |                     </div>
 741 |                     <p class="text-xs text-gray-400 mt-1" id="copyWorkerStatus"></p>
 742 |                   </div>
 743 |                 </li>
 744 |                 <li class="flex items-start">
 745 |                   <span class="font-bold text-purple-600 mr-2">6.</span>
 746 |                   <div>点击右上角 <strong>Deploy</strong> 按钮</div>
 747 |                 </li>
 748 |                 <li class="flex items-start">
 749 |                   <span class="font-bold text-purple-600 mr-2">7.</span>
 750 |                   <div>返回 Worker 设置，添加环境变量（见下方环境变量配置）</div>
 751 |                 </li>
 752 |               </ol>
 753 |               <div class="mt-4 bg-yellow-50 border border-yellow-200 rounded-lg p-3">
 754 |                 <p class="text-sm text-yellow-700"><i class="fas fa-lightbulb mr-1"></i><strong>提示</strong>：这种方式适合快速体验，但后续更新需要手动复制新代码。推荐使用 GitHub 关联方式实现自动更新。</p>
 755 |               </div>
 756 |             </div>
 757 | 
 758 |             <!-- CLI Deploy -->
 759 |             <div id="deploy-cli" class="deploy-content hidden">
 760 |               <div class="code-block relative mb-4">
 761 |                 <pre><code class="language-bash" id="deploy-clone"># 克隆仓库
 762 | git clone https://github.com/dext7r/anyrouter.git
 763 | cd anyrouter
 764 | npm install
 765 | 
 766 | # 本地开发（可选）
 767 | cp wrangler.toml.example wrangler.toml.local
 768 | # 编辑 wrangler.toml.local 填入环境变量
 769 | npx wrangler dev -c wrangler.toml.local
 770 | 
 771 | # 部署到 Cloudflare
 772 | npm run build
 773 | npx wrangler login  # 首次需要
 774 | npx wrangler deploy
 775 | # 部署后在 Dashboard 配置环境变量</code></pre>
 776 |                 <button onclick="copyCode('deploy-clone')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 777 |                   <i class="fas fa-copy"></i>
 778 |                 </button>
 779 |               </div>
 780 |             </div>
 781 | 
 782 |             <!-- GitHub Actions -->
 783 |             <div id="deploy-actions" class="deploy-content hidden">
 784 |               <div class="bg-green-50 border border-green-200 rounded-lg p-4 mb-4">
 785 |                 <h4 class="font-semibold text-green-800 mb-2"><i class="fas fa-robot mr-1"></i>自动化 CI/CD</h4>
 786 |                 <p class="text-sm text-green-700">推送到 main 分支时自动部署</p>
 787 |               </div>
 788 |               <p class="text-sm text-gray-600 mb-3">在仓库中创建 <code class="bg-gray-100 px-1 rounded">.github/workflows/deploy.yml</code>：</p>
 789 |               <div class="code-block relative mb-4">
 790 |                 <pre><code class="language-yaml" id="deploy-actions-code">name: Deploy to Cloudflare Workers
 791 | 
 792 | on:
 793 |   push:
 794 |     branches: [main]
 795 | 
 796 | jobs:
 797 |   deploy:
 798 |     runs-on: ubuntu-latest
 799 |     steps:
 800 |       - uses: actions/checkout@v4
 801 |       - uses: actions/setup-node@v4
 802 |         with:
 803 |           node-version: '20'
 804 |       - run: npm install
 805 |       - run: npm run build
 806 |       - run: npx wrangler deploy
 807 |         env:
 808 |           CLOUDFLARE_API_TOKEN: \$\{{ secrets.CLOUDFLARE_API_TOKEN }}
 809 |           CLOUDFLARE_ACCOUNT_ID: \$\{{ secrets.CLOUDFLARE_ACCOUNT_ID }}</code></pre>
 810 |                 <button onclick="copyCode('deploy-actions-code')" class="copy-btn px-2 py-1 bg-purple-600 text-white text-xs rounded hover:bg-purple-700">
 811 |                   <i class="fas fa-copy"></i>
 812 |                 </button>
 813 |               </div>
 814 |               <div class="text-sm text-gray-600">
 815 |                 <p class="mb-2"><strong>配置 GitHub Secrets：</strong></p>
 816 |                 <ol class="list-decimal list-inside space-y-1 text-gray-500">
 817 |                   <li>在 Cloudflare Dashboard → My Profile → API Tokens 创建 Token</li>
 818 |                   <li>权限选择：Account - Cloudflare Workers Scripts - Edit</li>
 819 |                   <li>在 GitHub 仓库 Settings → Secrets → Actions 添加：
 820 |                     <ul class="list-disc list-inside ml-4 mt-1">
 821 |                       <li><code class="bg-gray-100 px-1 rounded">CLOUDFLARE_API_TOKEN</code></li>
 822 |                       <li><code class="bg-gray-100 px-1 rounded">CLOUDFLARE_ACCOUNT_ID</code></li>
 823 |                     </ul>
 824 |                   </li>
 825 |                 </ol>
 826 |               </div>
 827 |             </div>
 828 |           </div>
 829 | 
 830 |           <!-- Prerequisites -->
 831 |           <div class="mb-6">
 832 |             <h3 class="font-semibold text-gray-800 mb-3 flex items-center">
 833 |               <i class="fas fa-clipboard-list mr-2 text-purple-600"></i>准备工作
 834 |             </h3>
 835 |             <div class="bg-gray-50 rounded-lg p-4 text-sm">
 836 |               <ul class="space-y-2 text-gray-600">
 837 |                 <li><i class="fas fa-check text-green-500 mr-2"></i>GitHub 账号（用于 Fork 代码仓库）</li>
 838 |                 <li><i class="fas fa-check text-green-500 mr-2"></i>Cloudflare 账号（<a href="https://dash.cloudflare.com/sign-up" target="_blank" class="text-purple-600 hover:underline">免费注册</a>）</li>
 839 |                 <li><i class="fas fa-check text-green-500 mr-2"></i>Supabase 账号（<a href="https://supabase.com" target="_blank" class="text-purple-600 hover:underline">免费注册</a>，可选，用于密钥管理）</li>
 840 |                 <li><i class="fas fa-check text-green-500 mr-2"></i>Upstash 账号（<a href="https://upstash.com" target="_blank" class="text-purple-600 hover:underline">免费注册</a>，可选，用于 Redis 缓存和统计）</li>
 841 |               </ul>
 842 |             </div>
 843 |           </div>
 844 | 
 845 |           <!-- Step 3: Supabase Setup -->
 846 |           <div class="mb-6">
 847 |             <h3 class="font-semibold text-gray-800 mb-3 flex items-center">
 848 |               <span class="w-6 h-6 bg-purple-600 text-white rounded-full flex items-center justify-center text-sm mr-2">3</span>
 849 |               配置 Supabase 数据库（可选）
 850 |             </h3>
 851 |             <div class="bg-green-50 border border-green-200 rounded-lg p-4 mb-3">
 852 |               <p class="text-sm text-green-700"><i class="fas fa-info-circle mr-1"></i>如果只需要直传模式，可跳过此步骤</p>
 853 |             </div>
 854 |             <ol class="space-y-3 text-sm text-gray-600">
 855 |               <li class="flex items-start">
 856 |                 <span class="font-bold text-purple-600 mr-2">a.</span>
 857 |                 登录 <a href="https://supabase.com" target="_blank" class="text-purple-600 hover:underline">Supabase</a> 并创建新项目
 858 |               </li>
 859 |               <li class="flex items-start">
 860 |                 <span class="font-bold text-purple-600 mr-2">b.</span>
 861 |                 进入 SQL Editor，执行数据库初始化脚本：
 862 |               </li>
 863 |             </ol>
 864 |             <div class="mt-3 border border-gray-200 rounded-lg overflow-hidden">
 865 |               <div class="flex items-center justify-between px-3 py-2 bg-gray-50 cursor-pointer hover:bg-gray-100 transition-all" onclick="toggleSchemaSQL()">
 866 |                 <div class="flex items-center gap-2">
 867 |                   <i id="schemaSqlToggle" class="fas fa-chevron-right text-purple-600 text-xs transition-transform"></i>
 868 |                   <span class="text-xs text-gray-600 font-medium"><i class="fas fa-database mr-1"></i>schema.sql - 从 GitHub 实时获取</span>
 869 |                 </div>
 870 |                 <div class="flex gap-2" onclick="event.stopPropagation()">
 871 |                   <a href="https://github.com/dext7r/anyrouter/blob/main/schema.sql" target="_blank" class="text-xs text-purple-600 hover:underline"><i class="fab fa-github mr-1"></i>查看源文件</a>
 872 |                   <button onclick="loadSchemaSQL()" class="text-xs bg-purple-100 text-purple-700 px-2 py-1 rounded hover:bg-purple-200"><i class="fas fa-sync-alt mr-1"></i>刷新</button>
 873 |                   <button onclick="copyCode('deploy-sql')" class="text-xs bg-purple-600 text-white px-2 py-1 rounded hover:bg-purple-700"><i class="fas fa-copy mr-1"></i>复制</button>
 874 |                 </div>
 875 |               </div>
 876 |               <div id="schemaSqlContent" class="hidden">
 877 |                 <div class="code-block relative rounded-none">
 878 |                   <pre style="max-height: 400px; overflow-y: auto;"><code class="language-sql" id="deploy-sql"><i class="fas fa-spinner fa-spin"></i> 正在从 GitHub 加载 schema.sql...</code></pre>
 879 |                 </div>
 880 |               </div>
 881 |               <p class="text-xs text-gray-500 px-3 py-2 bg-gray-50 border-t border-gray-200"><i class="fas fa-info-circle mr-1"></i>脚本包含：建表、索引、RLS 策略、触发器、迁移逻辑（支持已有表升级）</p>
 882 |             </div>
 883 |             <ol class="space-y-3 text-sm text-gray-600 mt-3" start="3">
 884 |               <li class="flex items-start">
 885 |                 <span class="font-bold text-purple-600 mr-2">c.</span>
 886 |                 进入 Settings → API，获取 <code class="bg-gray-100 px-1 rounded">Project URL</code> 和 <code class="bg-gray-100 px-1 rounded">anon/public key</code>
 887 |               </li>
 888 |             </ol>
 889 |           </div>
 890 | 
 891 |           <!-- Step 4: Upstash Setup -->
 892 |           <div class="mb-6">
 893 |             <h3 class="font-semibold text-gray-800 mb-3 flex items-center">
 894 |               <span class="w-6 h-6 bg-purple-600 text-white rounded-full flex items-center justify-center text-sm mr-2">4</span>
 895 |               配置 Upstash Redis（可选）
 896 |             </h3>
 897 |             <div class="bg-green-50 border border-green-200 rounded-lg p-4 mb-3">
 898 |               <p class="text-sm text-green-700"><i class="fas fa-info-circle mr-1"></i>如果不需要统计和缓存功能，可跳过此步骤</p>
 899 |             </div>
 900 |             <ol class="space-y-3 text-sm text-gray-600">
 901 |               <li class="flex items-start">
 902 |                 <span class="font-bold text-purple-600 mr-2">a.</span>
 903 |                 登录 <a href="https://upstash.com" target="_blank" class="text-purple-600 hover:underline">Upstash</a> 并创建 Redis 数据库
 904 |               </li>
 905 |               <li class="flex items-start">
 906 |                 <span class="font-bold text-purple-600 mr-2">b.</span>
 907 |                 选择离你最近的区域（如 US-East-1 或 AP-Northeast-1）
 908 |               </li>
 909 |               <li class="flex items-start">
 910 |                 <span class="font-bold text-purple-600 mr-2">c.</span>
 911 |                 在 REST API 标签页复制 <code class="bg-gray-100 px-1 rounded">UPSTASH_REDIS_REST_URL</code> 和 <code class="bg-gray-100 px-1 rounded">UPSTASH_REDIS_REST_TOKEN</code>
 912 |               </li>
 913 |             </ol>
 914 |           </div>
 915 | 
 916 |           <!-- Step 5: Environment Variables -->
 917 |           <div class="mb-6">
 918 |             <h3 class="font-semibold text-gray-800 mb-3 flex items-center">
 919 |               <span class="w-6 h-6 bg-purple-600 text-white rounded-full flex items-center justify-center text-sm mr-2">5</span>
 920 |               配置环境变量
 921 |             </h3>
 922 |             <p class="text-sm text-gray-600 mb-3">部署后在 Cloudflare Dashboard → Workers → 你的 Worker → Settings → Variables and Secrets 添加：</p>
 923 |             <div class="overflow-x-auto">
 924 |               <table class="w-full text-sm">
 925 |                 <thead>
 926 |                   <tr class="border-b border-gray-200">
 927 |                     <th class="text-left py-2 px-3 font-semibold text-gray-700">变量名</th>
 928 |                     <th class="text-left py-2 px-3 font-semibold text-gray-700">必须</th>
 929 |                     <th class="text-left py-2 px-3 font-semibold text-gray-700">说明</th>
 930 |                     <th class="text-left py-2 px-3 font-semibold text-gray-700">获取方式</th>
 931 |                   </tr>
 932 |                 </thead>
 933 |                 <tbody class="text-gray-600">
 934 |                   <tr class="border-b border-gray-100">
 935 |                     <td class="py-2 px-3"><code class="text-purple-600">ADMIN_PASSWORD</code></td>
 936 |                     <td class="py-2 px-3"><span class="text-green-600 font-bold">✓</span></td>
 937 |                     <td class="py-2 px-3">管理面板登录密码</td>
 938 |                     <td class="py-2 px-3 text-gray-400">自定义</td>
 939 |                   </tr>
 940 |                   <tr class="border-b border-gray-100">
 941 |                     <td class="py-2 px-3"><code class="text-purple-600">SUPABASE_URL</code></td>
 942 |                     <td class="py-2 px-3"><span class="text-gray-400">可选</span></td>
 943 |                     <td class="py-2 px-3">Supabase 项目 URL</td>
 944 |                     <td class="py-2 px-3 text-xs">Supabase → Settings → API → Project URL</td>
 945 |                   </tr>
 946 |                   <tr class="border-b border-gray-100">
 947 |                     <td class="py-2 px-3"><code class="text-purple-600">SUPABASE_KEY</code></td>
 948 |                     <td class="py-2 px-3"><span class="text-gray-400">可选</span></td>
 949 |                     <td class="py-2 px-3">Supabase anon key</td>
 950 |                     <td class="py-2 px-3 text-xs">Supabase → Settings → API → anon public</td>
 951 |                   </tr>
 952 |                   <tr class="border-b border-gray-100">
 953 |                     <td class="py-2 px-3"><code class="text-purple-600">UPSTASH_REDIS_URL</code></td>
 954 |                     <td class="py-2 px-3"><span class="text-gray-400">可选</span></td>
 955 |                     <td class="py-2 px-3">Upstash Redis REST URL</td>
 956 |                     <td class="py-2 px-3 text-xs">Upstash → Redis → REST API</td>
 957 |                   </tr>
 958 |                   <tr>
 959 |                     <td class="py-2 px-3"><code class="text-purple-600">UPSTASH_REDIS_TOKEN</code></td>
 960 |                     <td class="py-2 px-3"><span class="text-gray-400">可选</span></td>
 961 |                     <td class="py-2 px-3">Upstash Redis Token</td>
 962 |                     <td class="py-2 px-3 text-xs">Upstash → Redis → REST API</td>
 963 |                   </tr>
 964 |                 </tbody>
 965 |               </table>
 966 |             </div>
 967 |             <div class="mt-3 bg-blue-50 border border-blue-200 rounded-lg p-3">
 968 |               <p class="text-sm text-blue-700"><i class="fas fa-info-circle mr-1"></i>不配置 Supabase/Redis 也可使用直传模式</p>
 969 |             </div>
 970 |           </div>
 971 | 
 972 |           <!-- Step 6: Custom Domain -->
 973 |           <div class="mb-6">
 974 |             <h3 class="font-semibold text-gray-800 mb-3 flex items-center">
 975 |               <span class="w-6 h-6 bg-purple-600 text-white rounded-full flex items-center justify-center text-sm mr-2">6</span>
 976 |               配置自定义域名（可选）
 977 |             </h3>
 978 |             <ol class="space-y-3 text-sm text-gray-600">
 979 |               <li class="flex items-start">
 980 |                 <span class="font-bold text-purple-600 mr-2">a.</span>
 981 |                 登录 Cloudflare Dashboard，进入 Workers & Pages
 982 |               </li>
 983 |               <li class="flex items-start">
 984 |                 <span class="font-bold text-purple-600 mr-2">b.</span>
 985 |                 选择你的 Worker，点击 Settings → Triggers → Custom Domains
 986 |               </li>
 987 |               <li class="flex items-start">
 988 |                 <span class="font-bold text-purple-600 mr-2">c.</span>
 989 |                 添加你的域名（域名需要已添加到 Cloudflare）
 990 |               </li>
 991 |             </ol>
 992 |           </div>
 993 | 
 994 |           <!-- Deployment Checklist -->
 995 |           <div class="bg-purple-50 border border-purple-200 rounded-lg p-4">
 996 |             <h4 class="font-semibold text-purple-800 mb-2"><i class="fas fa-clipboard-check mr-1"></i>部署后检查清单</h4>
 997 |             <ul class="text-sm text-purple-700 space-y-1">
 998 |               <li><i class="fas fa-check-circle text-green-500 mr-1"></i>访问 <code>/</code> 查看状态页面</li>
 999 |               <li><i class="fas fa-check-circle text-green-500 mr-1"></i>访问 <code>/admin</code> 登录管理面板</li>
1000 |               <li><i class="fas fa-check-circle text-green-500 mr-1"></i>添加 API 配置并测试代理功能</li>
1001 |               <li><i class="fas fa-check-circle text-green-500 mr-1"></i>生成 SK 别名用于 SDK 配置</li>
1002 |             </ul>
1003 |           </div>
1004 |         </section>
1005 | 
1006 |         <!-- FAQ -->
1007 |         <section id="faq" class="section glass-effect rounded-xl p-6 shadow-lg mb-6">
1008 |           <h2 class="text-2xl font-bold text-gray-800 mb-4"><i class="fas fa-question-circle mr-2 text-purple-600"></i>常见问题</h2>
1009 | 
1010 |           <div class="space-y-4">
1011 |             <div class="border-b border-gray-100 pb-4">
1012 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 如何获取 Key ID？</h3>
1013 |               <p class="text-gray-600 text-sm">登录<a href="/admin" class="text-purple-600 hover:underline">管理面板</a>，添加 API 配置后系统会自动生成 6 位 Key ID。</p>
1014 |             </div>
1015 |             <div class="border-b border-gray-100 pb-4">
1016 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 支持哪些 API？</h3>
1017 |               <p class="text-gray-600 text-sm">支持<strong>任意 HTTP/HTTPS API</strong>，包括但不限于：OpenAI、Anthropic、Google AI、Azure OpenAI、Groq、Mistral、Cohere、HuggingFace 等。</p>
1018 |             </div>
1019 |             <div class="border-b border-gray-100 pb-4">
1020 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 数据安全吗？</h3>
1021 |               <p class="text-gray-600 text-sm">代理服务不会存储任何请求内容，仅转发请求。API Token 存储在数据库中，传输使用 HTTPS 加密。</p>
1022 |             </div>
1023 |             <div class="border-b border-gray-100 pb-4">
1024 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 如何自己部署？</h3>
1025 |               <p class="text-gray-600 text-sm">Fork <a href="https://github.com/dext7r/anyrouter" target="_blank" class="text-purple-600 hover:underline">GitHub 仓库</a>，配置 Cloudflare Workers 和 Supabase 数据库即可。详见仓库 README。</p>
1026 |             </div>
1027 |             <div class="border-b border-gray-100 pb-4">
1028 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 有请求限制吗？</h3>
1029 |               <p class="text-gray-600 text-sm">代理服务本身无限制，但会受到 Cloudflare Workers 免费版的限制（每日 10 万请求）和目标 API 的限制。</p>
1030 |             </div>
1031 |             <div>
1032 |               <h3 class="font-semibold text-gray-800 mb-2">Q: 为什么要用代理而不是直连？</h3>
1033 |               <p class="text-gray-600 text-sm">1) 统一管理多个 API 密钥；2) 避免在客户端暴露 Token；3) 利用 Cloudflare 边缘网络加速；4) 便于监控和统计使用量。</p>
1034 |             </div>
1035 |           </div>
1036 |         </section>
1037 | 
1038 |         <!-- Footer -->
1039 |         <footer class="text-center text-gray-500 text-sm py-8">
1040 |           <p>Made with <i class="fas fa-heart text-red-400"></i> by <a href="https://github.com/dext7r" target="_blank" class="text-purple-600 hover:underline">dext7r</a></p>
1041 |           <p class="mt-2">Powered by Cloudflare Workers</p>
1042 |         </footer>
1043 |       </main>
1044 |     </div>
1045 |   </div>
1046 | 
1047 |   <script>
1048 |     // 设置代理 URL
1049 |     const proxyUrl = window.location.origin;
1050 |     document.getElementById('proxyUrl').textContent = proxyUrl;
1051 |     document.querySelectorAll('.proxy-url').forEach(el => el.textContent = proxyUrl);
1052 | 
1053 |     // 从 GitHub 加载 schema.sql
1054 |     const SCHEMA_SQL_URL = 'https://raw.githubusercontent.com/dext7r/anyrouter/main/schema.sql';
1055 |     let schemaSQL = '';
1056 | 
1057 |     async function loadSchemaSQL() {
1058 |       const el = document.getElementById('deploy-sql');
1059 |       el.innerHTML = '<i class="fas fa-spinner fa-spin"></i> 正在从 GitHub 加载...';
1060 |       try {
1061 |         const response = await fetch(SCHEMA_SQL_URL);
1062 |         if (!response.ok) throw new Error('HTTP ' + response.status);
1063 |         schemaSQL = await response.text();
1064 |         el.textContent = schemaSQL;
1065 |         hljs.highlightElement(el);
1066 |         showToast('schema.sql 加载成功');
1067 |       } catch (e) {
1068 |         el.innerHTML = '-- 加载失败: ' + e.message + '\\n-- 请访问 GitHub 查看完整脚本:\\n-- https://github.com/dext7r/anyrouter/blob/main/schema.sql';
1069 |         console.error('Failed to load schema.sql:', e);
1070 |       }
1071 |     }
1072 | 
1073 |     // 页面加载时自动获取 schema.sql
1074 |     loadSchemaSQL();
1075 | 
1076 |     // 折叠/展开 schema.sql
1077 |     function toggleSchemaSQL() {
1078 |       const content = document.getElementById('schemaSqlContent');
1079 |       const toggle = document.getElementById('schemaSqlToggle');
1080 |       if (content.classList.contains('hidden')) {
1081 |         content.classList.remove('hidden');
1082 |         toggle.style.transform = 'rotate(90deg)';
1083 |       } else {
1084 |         content.classList.add('hidden');
1085 |         toggle.style.transform = 'rotate(0deg)';
1086 |       }
1087 |     }
1088 | 
1089 |     // 复制 Worker 代码
1090 |     const WORKER_JS_URL = 'https://raw.githubusercontent.com/dext7r/anyrouter/main/anyrouter.js';
1091 |     let workerCode = '';
1092 | 
1093 |     async function copyWorkerCode() {
1094 |       const btn = document.getElementById('copyWorkerBtn');
1095 |       const status = document.getElementById('copyWorkerStatus');
1096 |       const originalHTML = btn.innerHTML;
1097 | 
1098 |       btn.disabled = true;
1099 |       btn.innerHTML = '<i class="fas fa-spinner fa-spin mr-1"></i>正在获取...';
1100 |       status.textContent = '';
1101 | 
1102 |       try {
1103 |         // 如果已缓存则直接使用
1104 |         if (!workerCode) {
1105 |           const response = await fetch(WORKER_JS_URL);
1106 |           if (!response.ok) throw new Error('HTTP ' + response.status);
1107 |           workerCode = await response.text();
1108 |         }
1109 | 
1110 |         await navigator.clipboard.writeText(workerCode);
1111 |         btn.innerHTML = '<i class="fas fa-check mr-1"></i>已复制！';
1112 |         status.innerHTML = '<i class="fas fa-check-circle text-green-500 mr-1"></i>代码已复制到剪贴板，请粘贴到 Cloudflare 编辑器';
1113 |         showToast('Worker 代码已复制，请粘贴到 Cloudflare');
1114 | 
1115 |         setTimeout(() => {
1116 |           btn.innerHTML = originalHTML;
1117 |           btn.disabled = false;
1118 |         }, 3000);
1119 |       } catch (e) {
1120 |         btn.innerHTML = '<i class="fas fa-times mr-1"></i>复制失败';
1121 |         status.innerHTML = '<i class="fas fa-exclamation-circle text-red-500 mr-1"></i>获取失败: ' + e.message + '，请<a href="' + WORKER_JS_URL + '" target="_blank" class="text-purple-600 underline">手动打开</a>复制';
1122 |         console.error('Failed to copy worker code:', e);
1123 | 
1124 |         setTimeout(() => {
1125 |           btn.innerHTML = originalHTML;
1126 |           btn.disabled = false;
1127 |         }, 3000);
1128 |       }
1129 |     }
1130 | 
1131 |     // 代码高亮
1132 |     hljs.highlightAll();
1133 | 
1134 |     // 复制功能
1135 |     function copyToClipboard(elementId) {
1136 |       const text = document.getElementById(elementId).textContent;
1137 |       navigator.clipboard.writeText(text).then(() => {
1138 |         showToast('已复制到剪贴板');
1139 |       });
1140 |     }
1141 | 
1142 |     function copyCode(elementId) {
1143 |       const el = document.getElementById(elementId);
1144 |       let text = el.textContent;
1145 |       // 如果是 schema.sql 且已加载，使用缓存内容
1146 |       if (elementId === 'deploy-sql' && schemaSQL) {
1147 |         text = schemaSQL;
1148 |       } else {
1149 |         text = text.replace(/<span class="proxy-url"><\\/span>/g, proxyUrl);
1150 |       }
1151 |       navigator.clipboard.writeText(text).then(() => {
1152 |         showToast('代码已复制');
1153 |       });
1154 |     }
1155 | 
1156 |     function showToast(message) {
1157 |       const toast = document.createElement('div');
1158 |       toast.className = 'fixed bottom-4 right-4 px-4 py-2 bg-gray-800 text-white rounded-lg shadow-lg z-50';
1159 |       toast.innerHTML = '<i class="fas fa-check-circle mr-2"></i>' + message;
1160 |       document.body.appendChild(toast);
1161 |       setTimeout(() => toast.remove(), 2000);
1162 |     }
1163 | 
1164 |     // TOC 左右收起/展开
1165 |     function toggleTOC() {
1166 |       const sidebar = document.getElementById('tocSidebar');
1167 |       sidebar.classList.toggle('collapsed');
1168 |     }
1169 | 
1170 |     // 部署方式 Tab 切换
1171 |     function showDeployTab(tabName) {
1172 |       // 隐藏所有内容
1173 |       document.querySelectorAll('.deploy-content').forEach(el => el.classList.add('hidden'));
1174 |       // 重置所有 tab 样式
1175 |       document.querySelectorAll('.deploy-tab').forEach(el => {
1176 |         el.classList.remove('text-purple-600', 'border-b-2', 'border-purple-600');
1177 |         el.classList.add('text-gray-500');
1178 |       });
1179 |       // 显示选中内容
1180 |       document.getElementById('deploy-' + tabName).classList.remove('hidden');
1181 |       // 激活选中 tab
1182 |       const activeTab = document.getElementById('tab-' + tabName);
1183 |       activeTab.classList.remove('text-gray-500');
1184 |       activeTab.classList.add('text-purple-600', 'border-b-2', 'border-purple-600');
1185 |     }
1186 | 
1187 |     // TOC 高亮
1188 |     const sections = document.querySelectorAll('.section');
1189 |     const tocLinks = document.querySelectorAll('.toc-link');
1190 | 
1191 |     window.addEventListener('scroll', () => {
1192 |       let current = '';
1193 |       sections.forEach(section => {
1194 |         const sectionTop = section.offsetTop;
1195 |         if (scrollY >= sectionTop - 100) {
1196 |           current = section.getAttribute('id');
1197 |         }
1198 |       });
1199 | 
1200 |       tocLinks.forEach(link => {
1201 |         link.classList.remove('active');
1202 |         if (link.getAttribute('href') === '#' + current) {
1203 |           link.classList.add('active');
1204 |         }
1205 |       });
1206 |     });
1207 |   </script>
1208 | </body>
1209 | </html>`
1210 | }
1211 | 


--------------------------------------------------------------------------------