Головна сторінка Огляд Довідка
Увійти
tuonq
/
ChatAI
1
0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Дерево: 9876a1aeca
Гілки Теги
ChatAI
/
app
/
api
/
auth.ts

auth.ts 2.2 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. import { NextRequest } from "next/server";
    2. 

  2. import { getServerSideConfig } from "../config/server";
    3. 

  3. import md5 from "spark-md5";
    4. 

  4. import { ACCESS_CODE_PREFIX } from "../constant";
    5. 

  5. 

  6. function getIP(req: NextRequest) {
    7. 

  7.   let ip = req.ip ?? req.headers.get("x-real-ip");
    8. 

  8.   const forwardedFor = req.headers.get("x-forwarded-for");
    9. 

  9. 

  10.   if (!ip && forwardedFor) {
    11. 

  11.     ip = forwardedFor.split(",").at(0) ?? "";
    12. 

  12.   }
    13. 

  13. 

  14.   return ip;
    15. 

  15. }
    16. 

  16. 

  17. function parseApiKey(bearToken: string) {
    18. 

  18.   const token = bearToken.trim().replaceAll("Bearer ", "").trim();
    19. 

  19.   const isOpenAiKey = !token.startsWith(ACCESS_CODE_PREFIX);
    20. 

  20. 

  21.   return {
    22. 

  22.     accessCode: isOpenAiKey ? "" : token.slice(ACCESS_CODE_PREFIX.length),
    23. 

  23.     apiKey: isOpenAiKey ? token : "",
    24. 

  24.   };
    25. 

  25. }
    26. 

  26. 

  27. export function auth(req: NextRequest) {
    28. 

  28.   const authToken = req.headers.get("Authorization") ?? "";
    29. 

  29. 

  30.   // check if it is openai api key or user token
    31. 

  31.   const { accessCode, apiKey } = parseApiKey(authToken);
    32. 

  32. 

  33.   const hashedCode = md5.hash(accessCode ?? "").trim();
    34. 

  34. 

  35.   const serverConfig = getServerSideConfig();
    36. 

  36.   console.log("[Auth] allowed hashed codes: ", [...serverConfig.codes]);
    37. 

  37.   console.log("[Auth] got access code:", accessCode);
    38. 

  38.   console.log("[Auth] hashed access code:", hashedCode);
    39. 

  39.   console.log("[User IP] ", getIP(req));
    40. 

  40.   console.log("[Time] ", new Date().toLocaleString());
    41. 

  41. 

  42.   if (serverConfig.needCode && !serverConfig.codes.has(hashedCode) && !apiKey) {
    43. 

  43.     return {
    44. 

  44.       error: true,
    45. 

  45.       msg: !accessCode ? "empty access code" : "wrong access code",
    46. 

  46.     };
    47. 

  47.   }
    48. 

  48. 

  49.   if (serverConfig.hideUserApiKey && !!apiKey) {
    50. 

  50.     return {
    51. 

  51.       error: true,
    52. 

  52.       msg: "you are not allowed to access openai with your own api key",
    53. 

  53.     };
    54. 

  54.   }
    55. 

  55. 

  56.   // if user does not provide an api key, inject system api key
    57. 

  57.   if (!apiKey) {
    58. 

  58.     const serverApiKey = serverConfig.isAzure
    59. 

  59.       ? serverConfig.azureApiKey
    60. 

  60.       : serverConfig.apiKey;
    61. 

  61. 

  62.     if (serverApiKey) {
    63. 

  63.       console.log("[Auth] use system api key");
    64. 

  64.       req.headers.set(
    65. 

  65.         "Authorization",
    66. 

  66.         `${serverConfig.isAzure ? "" : "Bearer "}${serverApiKey}`,
    67. 

  67.       );
    68. 

  68.     } else {
    69. 

  69.       console.log("[Auth] admin did not provide an api key");
    70. 

  70.     }
    71. 

  71.   } else {
    72. 

  72.     console.log("[Auth] use user api key");
    73. 

  73.   }
    74. 

  74. 

  75.   return {
    76. 

  76.     error: false,
    77. 

  77.   };
    78. 

  78. }
    79.