sub2api/deploy/docker-compose.yml

# =============================================================================
# TianShuAPI Docker Compose - 1Panel 环境配置
# =============================================================================
# 此配置文件适用于已有 1Panel 环境，复用现有 Redis
# =============================================================================

services:
  # ===========================================================================
  # TianShuAPI Application
  # ===========================================================================
  sub2api:
    # 方式1：使用官方镜像（快速部署）
    # image: weishaw/sub2api:latest

    # 方式2：从本地代码构建（二次开发）
    build:
      context: ../
      dockerfile: Dockerfile
      args:
        - BUILD_TAGS=embed
    image: sub2api:local
    container_name: sub2api
    restart: unless-stopped
    ulimits:
      nofile:
        soft: 100000
        hard: 100000
    ports:
      - "${BIND_HOST:-0.0.0.0}:${SERVER_PORT:-8080}:8080"
    volumes:
      - sub2api_data:/app/data
    environment:
      # Auto Setup
      - AUTO_SETUP=true

      # Server Configuration
      - SERVER_HOST=0.0.0.0
      - SERVER_PORT=8080
      - SERVER_MODE=${SERVER_MODE:-release}
      - RUN_MODE=${RUN_MODE:-standard}

      # Database Configuration
      - DATABASE_HOST=postgres
      - DATABASE_PORT=5432
      - DATABASE_USER=${POSTGRES_USER:-sub2api}
      - DATABASE_PASSWORD=${POSTGRES_PASSWORD:?POSTGRES_PASSWORD is required}
      - DATABASE_DBNAME=${POSTGRES_DB:-sub2api}
      - DATABASE_SSLMODE=disable
      - DATABASE_MAX_OPEN_CONNS=${DATABASE_MAX_OPEN_CONNS:-50}
      - DATABASE_MAX_IDLE_CONNS=${DATABASE_MAX_IDLE_CONNS:-10}
      - DATABASE_CONN_MAX_LIFETIME_MINUTES=${DATABASE_CONN_MAX_LIFETIME_MINUTES:-30}
      - DATABASE_CONN_MAX_IDLE_TIME_MINUTES=${DATABASE_CONN_MAX_IDLE_TIME_MINUTES:-5}

      # Redis Configuration - 使用外部 Redis
      - REDIS_HOST=${REDIS_HOST}
      - REDIS_PORT=${REDIS_PORT:-6379}
      - REDIS_PASSWORD=${REDIS_PASSWORD}
      - REDIS_DB=${REDIS_DB:-0}
      - REDIS_POOL_SIZE=${REDIS_POOL_SIZE:-1024}
      - REDIS_MIN_IDLE_CONNS=${REDIS_MIN_IDLE_CONNS:-10}
      - REDIS_ENABLE_TLS=${REDIS_ENABLE_TLS:-false}

      # Admin Account
      - ADMIN_EMAIL=${ADMIN_EMAIL:-admin@sub2api.local}
      - ADMIN_PASSWORD=${ADMIN_PASSWORD:-}

      # JWT Configuration
      - JWT_SECRET=${JWT_SECRET:-}
      - JWT_EXPIRE_HOUR=${JWT_EXPIRE_HOUR:-24}

      # =======================================================================
      # TOTP (2FA) Configuration
      # =======================================================================
      # IMPORTANT: Set a fixed encryption key for TOTP secrets. If left empty,
      # a random key will be generated on each startup, causing all existing
      # TOTP configurations to become invalid (users won't be able to login
      # with 2FA).
      # Generate a secure key: openssl rand -hex 32
      - TOTP_ENCRYPTION_KEY=${TOTP_ENCRYPTION_KEY:-}

      # =======================================================================
      # Timezone Configuration
      # This affects ALL time operations in the application:
      # - Database timestamps
      # - Usage statistics "today" boundary
      # - Subscription expiry times
      # - Log timestamps
      # Common values: Asia/Shanghai, America/New_York, Europe/London, UTC
      # =======================================================================
      - TZ=${TZ:-Asia/Shanghai}

      # Gemini OAuth (可选)
      - GEMINI_OAUTH_CLIENT_ID=${GEMINI_OAUTH_CLIENT_ID:-}
      - GEMINI_OAUTH_CLIENT_SECRET=${GEMINI_OAUTH_CLIENT_SECRET:-}
      - GEMINI_OAUTH_SCOPES=${GEMINI_OAUTH_SCOPES:-}
      - GEMINI_QUOTA_POLICY=${GEMINI_QUOTA_POLICY:-}

      # Built-in OAuth client secrets (optional)
      # SECURITY: This repo does not embed third-party client_secret.
      - GEMINI_CLI_OAUTH_CLIENT_SECRET=${GEMINI_CLI_OAUTH_CLIENT_SECRET:-}
      - ANTIGRAVITY_OAUTH_CLIENT_SECRET=${ANTIGRAVITY_OAUTH_CLIENT_SECRET:-}

      # =======================================================================
      # Security Configuration (URL Allowlist)
      # =======================================================================
      # Enable URL allowlist validation (false to skip allowlist checks)
      - SECURITY_URL_ALLOWLIST_ENABLED=${SECURITY_URL_ALLOWLIST_ENABLED:-false}
      # Allow insecure HTTP URLs when allowlist is disabled (default: false, requires https)
      - SECURITY_URL_ALLOWLIST_ALLOW_INSECURE_HTTP=${SECURITY_URL_ALLOWLIST_ALLOW_INSECURE_HTTP:-false}
      # Allow private IP addresses for upstream/pricing/CRS (for internal deployments)
      - SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS=${SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS:-false}
      # Upstream hosts whitelist (comma-separated, only used when enabled=true)
      - SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS=${SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS:-}

      # =======================================================================
      # Update Configuration (在线更新配置)
      # =======================================================================
      # Proxy for accessing GitHub (online updates + pricing data)
      # Examples: http://host:port, socks5://host:port
      - UPDATE_PROXY_URL=${UPDATE_PROXY_URL:-}
    depends_on:
      postgres:
        condition: service_healthy
    extra_hosts:
      - "host.docker.internal:host-gateway"
    networks:
      - sub2api-network
      - 1panel-network
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:8080/health"]
      interval: 30s
      timeout: 10s
      retries: 3
      start_period: 30s

  # ===========================================================================
  # PostgreSQL Database
  # ===========================================================================
  postgres:
    image: postgres:18-alpine
    container_name: sub2api-postgres
    restart: unless-stopped
    ulimits:
      nofile:
        soft: 100000
        hard: 100000
    volumes:
      - postgres_data:/var/lib/postgresql/data
    environment:
      # postgres:18-alpine 默认 PGDATA=/var/lib/postgresql/18/docker（位于镜像声明的匿名卷 /var/lib/postgresql 内）。
      # 若不显式设置 PGDATA，则即使挂载了 postgres_data 到 /var/lib/postgresql/data，数据也不会落盘到该命名卷，
      # docker compose down/up 后会触发 initdb 重新初始化，导致用户/密码等数据丢失。
      - PGDATA=/var/lib/postgresql/data
      - POSTGRES_USER=${POSTGRES_USER:-sub2api}
      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD:?POSTGRES_PASSWORD is required}
      - POSTGRES_DB=${POSTGRES_DB:-sub2api}
      - TZ=${TZ:-Asia/Shanghai}
    networks:
      - sub2api-network
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-sub2api} -d ${POSTGRES_DB:-sub2api}"]
      interval: 10s
      timeout: 5s
      retries: 5
      start_period: 10s

# =============================================================================
# Volumes
# =============================================================================
volumes:
  sub2api_data:
    driver: local
  postgres_data:
    driver: local

# =============================================================================
# Networks
# =============================================================================
networks:
  sub2api-network:
    driver: bridge
  1panel-network:
    external: true
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								# =============================================================================
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								# TianShuAPI Docker Compose - 1Panel 环境配置
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								# =============================================================================
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								# 此配置文件适用于已有 1Panel 环境，复用现有 Redis
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								# =============================================================================
 								services:
 								  # ===========================================================================
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								  # TianShuAPI Application
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								  # ===========================================================================
 								  sub2api:
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								    # 方式1：使用官方镜像（快速部署）
 								    # image: weishaw/sub2api:latest
 								    # 方式2：从本地代码构建（二次开发）
 								    build:
 								      context: ../
 								      dockerfile: Dockerfile
 								      args:
 								        - BUILD_TAGS=embed
 								    image: sub2api:local
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    container_name: sub2api
 								    restart: unless-stopped
-												chore(配置): 提升容器文件描述符上限到10万

调整原因：
- 防止高并发下出现 "too many open files" 错误
- 统一测试与生产环境的 ulimits 配置

改动内容：
- 为 sub2api、postgres、redis 设置 nofile
- 软硬限制均为 100000

测试: 未运行

											
										
										
											2025-12-30 20:28:41 +08:00
+								    ulimits:
 								      nofile:
 								        soft: 100000
 								        hard: 100000
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    ports:
 								      - "${BIND_HOST:-0.0.0.0}:${SERVER_PORT:-8080}:8080"
 								    volumes:
 								      - sub2api_data:/app/data
 								    environment:
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      # Auto Setup
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      - AUTO_SETUP=true
 								      # Server Configuration
 								      - SERVER_HOST=0.0.0.0
 								      - SERVER_PORT=8080
 								      - SERVER_MODE=${SERVER_MODE:-release}
-												feat(全栈): 实现简易模式核心功能

**功能概述**：
实现简易模式(Simple Mode)，为个人用户和小团队提供简化的使用体验，隐藏复杂的分组、订阅、配额等概念。

**后端改动**：
1. 配置系统
   - 新增 run_mode 配置项（standard/simple）
   - 支持环境变量 RUN_MODE
   - 默认值为 standard

2. 数据库初始化
   - 自动创建3个默认分组：anthropic-default、openai-default、gemini-default
   - 默认分组配置：无并发限制、active状态、非独占
   - 幂等性保证：重复启动不会重复创建

3. 账号管理
   - 创建账号时自动绑定对应平台的默认分组
   - 如果未指定分组，自动查找并绑定默认分组

**前端改动**：
1. 状态管理
   - authStore 新增 isSimpleMode 计算属性
   - 从后端API获取并同步运行模式

2. UI隐藏
   - 侧边栏：隐藏分组管理、订阅管理、兑换码菜单
   - 账号管理页面：隐藏分组列
   - 创建/编辑账号对话框：隐藏分组选择器

3. 路由守卫
   - 限制访问分组、订阅、兑换码相关页面
   - 访问受限页面时自动重定向到仪表板

**配置示例**：
```yaml
run_mode: simple

run_mode: standard
```

**影响范围**：
- 后端：配置、数据库迁移、账号服务
- 前端：认证状态、路由、UI组件
- 部署：配置文件示例

**兼容性**：
- 简易模式和标准模式可无缝切换
- 不需要数据迁移
- 现有数据不受影响

											
										
										
											2025-12-29 03:17:25 +08:00
+								      - RUN_MODE=${RUN_MODE:-standard}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      # Database Configuration
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      - DATABASE_HOST=postgres
 								      - DATABASE_PORT=5432
 								      - DATABASE_USER=${POSTGRES_USER:-sub2api}
 								      - DATABASE_PASSWORD=${POSTGRES_PASSWORD:?POSTGRES_PASSWORD is required}
 								      - DATABASE_DBNAME=${POSTGRES_DB:-sub2api}
 								      - DATABASE_SSLMODE=disable
-												feat: 优化codex冷启动, 还有连接池数据库配置信息

											
										
										
											2026-02-06 20:31:42 +08:00
+								      - DATABASE_MAX_OPEN_CONNS=${DATABASE_MAX_OPEN_CONNS:-50}
 								      - DATABASE_MAX_IDLE_CONNS=${DATABASE_MAX_IDLE_CONNS:-10}
 								      - DATABASE_CONN_MAX_LIFETIME_MINUTES=${DATABASE_CONN_MAX_LIFETIME_MINUTES:-30}
 								      - DATABASE_CONN_MAX_IDLE_TIME_MINUTES=${DATABASE_CONN_MAX_IDLE_TIME_MINUTES:-5}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      # Redis Configuration - 使用外部 Redis
 								      - REDIS_HOST=${REDIS_HOST}
 								      - REDIS_PORT=${REDIS_PORT:-6379}
 								      - REDIS_PASSWORD=${REDIS_PASSWORD}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      - REDIS_DB=${REDIS_DB:-0}
-												feat: 优化codex冷启动, 还有连接池数据库配置信息

											
										
										
											2026-02-06 20:31:42 +08:00
+								      - REDIS_POOL_SIZE=${REDIS_POOL_SIZE:-1024}
 								      - REDIS_MIN_IDLE_CONNS=${REDIS_MIN_IDLE_CONNS:-10}
-												feat: add support for using TLS to connect to Redis

											
										
										
											2026-01-31 00:53:39 +08:00
+								      - REDIS_ENABLE_TLS=${REDIS_ENABLE_TLS:-false}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      # Admin Account
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      - ADMIN_EMAIL=${ADMIN_EMAIL:-admin@sub2api.local}
 								      - ADMIN_PASSWORD=${ADMIN_PASSWORD:-}
 								      # JWT Configuration
 								      - JWT_SECRET=${JWT_SECRET:-}
 								      - JWT_EXPIRE_HOUR=${JWT_EXPIRE_HOUR:-24}
-												feat(auth): 实现 TOTP 双因素认证功能

新增功能：
- 支持 Google Authenticator 等应用进行 TOTP 二次验证
- 用户可在个人设置中启用/禁用 2FA
- 登录时支持 TOTP 验证流程
- 管理后台可全局开关 TOTP 功能

安全增强：
- TOTP 密钥使用 AES-256-GCM 加密存储
- 添加 TOTP_ENCRYPTION_KEY 配置项，必须手动配置才能启用功能
- 防止服务重启导致加密密钥变更使用户无法登录
- 验证失败次数限制，防止暴力破解

配置说明：
- Docker 部署：在 .env 中设置 TOTP_ENCRYPTION_KEY
- 非 Docker 部署：在 config.yaml 中设置 totp.encryption_key
- 生成密钥命令：openssl rand -hex 32

											
										
										
											2026-01-26 08:45:43 +08:00
+								      # =======================================================================
 								      # TOTP (2FA) Configuration
 								      # =======================================================================
 								      # IMPORTANT: Set a fixed encryption key for TOTP secrets. If left empty,
 								      # a random key will be generated on each startup, causing all existing
 								      # TOTP configurations to become invalid (users won't be able to login
 								      # with 2FA).
 								      # Generate a secure key: openssl rand -hex 32
 								      - TOTP_ENCRYPTION_KEY=${TOTP_ENCRYPTION_KEY:-}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      # =======================================================================
 								      # Timezone Configuration
 								      # This affects ALL time operations in the application:
 								      # - Database timestamps
 								      # - Usage statistics "today" boundary
 								      # - Subscription expiry times
 								      # - Log timestamps
 								      # Common values: Asia/Shanghai, America/New_York, Europe/London, UTC
 								      # =======================================================================
 								      - TZ=${TZ:-Asia/Shanghai}
-												docs(deploy): 更新部署配置和文档

- .env.example: 新增 Gemini OAuth 环境变量配置示例
- config.example.yaml: 新增 Gemini OAuth 配置示例
- README.md: 更新部署文档
- docker-compose.yml: 添加 Gemini OAuth 环境变量传递

											
										
										
											2025-12-25 21:25:16 -08:00
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      # Gemini OAuth (可选)
-												docs(deploy): 更新部署配置和文档

- .env.example: 新增 Gemini OAuth 环境变量配置示例
- config.example.yaml: 新增 Gemini OAuth 配置示例
- README.md: 更新部署文档
- docker-compose.yml: 添加 Gemini OAuth 环境变量传递

											
										
										
											2025-12-25 21:25:16 -08:00
+								      - GEMINI_OAUTH_CLIENT_ID=${GEMINI_OAUTH_CLIENT_ID:-}
 								      - GEMINI_OAUTH_CLIENT_SECRET=${GEMINI_OAUTH_CLIENT_SECRET:-}
 								      - GEMINI_OAUTH_SCOPES=${GEMINI_OAUTH_SCOPES:-}
-												feat(backend): implement gemini quota simulation and rate limiting

- feat: add local quota tracking for gemini tiers (Legacy/Pro/Ultra)
- feat: implement PreCheckUsage in RateLimitService
- feat: align gemini daily reset window with PST
- fix: sticky session fallback logic

											
										
										
											2026-01-01 04:22:39 +08:00
+								      - GEMINI_QUOTA_POLICY=${GEMINI_QUOTA_POLICY:-}
-												fix: 修复空content处理及更新Gemini使用指南链接

- 修复FilterThinkingBlocksForRetry对空content数组的处理
- docker-compose添加SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS配置
- 更新Gemini使用指南链接：检查归属地、修改归属地、激活Gemini Web

											
										
										
											2026-01-04 18:26:39 -08:00
-												fix: 修复代码审核发现的安全和质量问题

安全修复（P0）：
- 移除硬编码的 OAuth client_secret（Antigravity、Gemini CLI），
  改为通过环境变量注入（ANTIGRAVITY_OAUTH_CLIENT_SECRET、
  GEMINI_CLI_OAUTH_CLIENT_SECRET）
- 新增 logredact.RedactText() 对非结构化文本做敏感信息脱敏，
  覆盖 GOCSPX-*/AIza* 令牌和常见 key=value 模式
- 日志中不再打印 org_uuid、account_uuid、email_address 等敏感值

安全修复（P1）：
- URL 验证增强：新增 ValidateHTTPURL 统一入口，支持 allowlist 和
  私网地址阻断（localhost/内网 IP）
- 代理回退安全：代理初始化失败时默认阻止直连回退，防止 IP 泄露，
  可通过 security.proxy_fallback.allow_direct_on_error 显式开启
- Gemini OAuth 配置校验：client_id 与 client_secret 必须同时
  设置或同时留空

其他改进：
- 新增 tools/secret_scan.py 密钥扫描工具和 Makefile secret-scan 目标
- 更新所有 docker-compose 和部署配置，传递 OAuth secret 环境变量
- google_one OAuth 类型使用固定 redirectURI，与 code_assist 对齐

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-02-09 09:58:13 +08:00
+								      # Built-in OAuth client secrets (optional)
 								      # SECURITY: This repo does not embed third-party client_secret.
 								      - GEMINI_CLI_OAUTH_CLIENT_SECRET=${GEMINI_CLI_OAUTH_CLIENT_SECRET:-}
 								      - ANTIGRAVITY_OAUTH_CLIENT_SECRET=${ANTIGRAVITY_OAUTH_CLIENT_SECRET:-}
-												fix: 修复空content处理及更新Gemini使用指南链接

- 修复FilterThinkingBlocksForRetry对空content数组的处理
- docker-compose添加SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS配置
- 更新Gemini使用指南链接：检查归属地、修改归属地、激活Gemini Web

											
										
										
											2026-01-04 18:26:39 -08:00
+								      # =======================================================================
-												feat(crs-sync): improve error messages and add private IP allowlist support

## Changes

### 1. Enhanced Error Messages
- Modified CRS sync error handling to show detailed error messages
- Changed from generic "internal error" to "CRS sync failed: <details>"
- Helps diagnose connection issues with private CRS deployments

### 2. Security Configuration
- Added SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS environment variable
- Allows administrators to enable/disable private IP access for CRS sync
- Production default: false (secure)
- Test environment default: true (convenient for internal testing)

### 3. Flexible Configuration Support
- Added config.yaml mount support in both production and test environments
- Supports dual configuration methods:
  * config.yaml for detailed/complex configurations
  * Environment variables for quick overrides
- Priority: ENV vars > config.yaml > defaults

## Use Case
Enables CRS sync from internal deployments where CRS resolves to private IPs
(e.g., 10.x.x.x, 192.168.x.x) while maintaining security by default.

## Files Modified
- backend/internal/handler/admin/account_handler.go
- deploy/docker-compose.yml
- deploy/docker-compose-test.yml

											
										
										
											2026-01-05 12:57:03 +08:00
+								      # Security Configuration (URL Allowlist)
-												fix: 修复空content处理及更新Gemini使用指南链接

- 修复FilterThinkingBlocksForRetry对空content数组的处理
- docker-compose添加SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS配置
- 更新Gemini使用指南链接：检查归属地、修改归属地、激活Gemini Web

											
										
										
											2026-01-04 18:26:39 -08:00
+								      # =======================================================================
-												fix(安全): 修复依赖漏洞并强化安全扫描

主要改动：
- 固定 Go 1.25.5 与 CI 校验并更新扫描流程
- 升级 quic-go、x/crypto、req 等依赖并通过 govulncheck
- 强化 JWT 校验、TLS 配置与 xlsx 动态加载
- 新增审计豁免清单与校验脚本

											
										
										
											2026-01-06 11:36:38 +08:00
+								      # Enable URL allowlist validation (false to skip allowlist checks)
 								      - SECURITY_URL_ALLOWLIST_ENABLED=${SECURITY_URL_ALLOWLIST_ENABLED:-false}
 								      # Allow insecure HTTP URLs when allowlist is disabled (default: false, requires https)
 								      - SECURITY_URL_ALLOWLIST_ALLOW_INSECURE_HTTP=${SECURITY_URL_ALLOWLIST_ALLOW_INSECURE_HTTP:-false}
 								      # Allow private IP addresses for upstream/pricing/CRS (for internal deployments)
-												feat(crs-sync): improve error messages and add private IP allowlist support

## Changes

### 1. Enhanced Error Messages
- Modified CRS sync error handling to show detailed error messages
- Changed from generic "internal error" to "CRS sync failed: <details>"
- Helps diagnose connection issues with private CRS deployments

### 2. Security Configuration
- Added SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS environment variable
- Allows administrators to enable/disable private IP access for CRS sync
- Production default: false (secure)
- Test environment default: true (convenient for internal testing)

### 3. Flexible Configuration Support
- Added config.yaml mount support in both production and test environments
- Supports dual configuration methods:
  * config.yaml for detailed/complex configurations
  * Environment variables for quick overrides
- Priority: ENV vars > config.yaml > defaults

## Use Case
Enables CRS sync from internal deployments where CRS resolves to private IPs
(e.g., 10.x.x.x, 192.168.x.x) while maintaining security by default.

## Files Modified
- backend/internal/handler/admin/account_handler.go
- deploy/docker-compose.yml
- deploy/docker-compose-test.yml

											
										
										
											2026-01-05 12:57:03 +08:00
+								      - SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS=${SECURITY_URL_ALLOWLIST_ALLOW_PRIVATE_HOSTS:-false}
-												fix(安全): 修复依赖漏洞并强化安全扫描

主要改动：
- 固定 Go 1.25.5 与 CI 校验并更新扫描流程
- 升级 quic-go、x/crypto、req 等依赖并通过 govulncheck
- 强化 JWT 校验、TLS 配置与 xlsx 动态加载
- 新增审计豁免清单与校验脚本

											
										
										
											2026-01-06 11:36:38 +08:00
+								      # Upstream hosts whitelist (comma-separated, only used when enabled=true)
 								      - SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS=${SECURITY_URL_ALLOWLIST_UPSTREAM_HOSTS:-}
-												feat(update): 添加在线更新和定价数据获取的代理支持

针对国内服务器访问 GitHub 困难的问题，为在线更新和定价数据获取功能添加代理支持。

主要变更：
- 新增 update.proxy_url 配置项，支持 http/https/socks5/socks5h 协议
- 修改 GitHubReleaseClient 和 PricingRemoteClient 支持代理配置
- 更新 Wire 依赖注入，通过 Provider 函数传递配置
- 更新 Docker 配置文件，支持通过 UPDATE_PROXY_URL 环境变量设置代理

配置示例：
  update:
    proxy_url: "http://127.0.0.1:7890"

Docker 环境变量：
  UPDATE_PROXY_URL=http://host.docker.internal:7890

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-06 15:55:36 +08:00
 								      # =======================================================================
 								      # Update Configuration (在线更新配置)
 								      # =======================================================================
 								      # Proxy for accessing GitHub (online updates + pricing data)
 								      # Examples: http://host:port, socks5://host:port
 								      - UPDATE_PROXY_URL=${UPDATE_PROXY_URL:-}
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    depends_on:
 								      postgres:
 								        condition: service_healthy
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								    extra_hosts:
 								      - "host.docker.internal:host-gateway"
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    networks:
 								      - sub2api-network
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+								      - 1panel-network
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    healthcheck:
 								      test: ["CMD", "curl", "-f", "http://localhost:8080/health"]
 								      interval: 30s
 								      timeout: 10s
 								      retries: 3
 								      start_period: 30s
 								  # ===========================================================================
 								  # PostgreSQL Database
 								  # ===========================================================================
 								  postgres:
-												chore: 更新docker的postgres版本为18

											
										
										
											2025-12-19 16:42:03 +08:00
+								    image: postgres:18-alpine
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    container_name: sub2api-postgres
 								    restart: unless-stopped
-												chore(配置): 提升容器文件描述符上限到10万

调整原因：
- 防止高并发下出现 "too many open files" 错误
- 统一测试与生产环境的 ulimits 配置

改动内容：
- 为 sub2api、postgres、redis 设置 nofile
- 软硬限制均为 100000

测试: 未运行

											
										
										
											2025-12-30 20:28:41 +08:00
+								    ulimits:
 								      nofile:
 								        soft: 100000
 								        hard: 100000
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								    volumes:
 								      - postgres_data:/var/lib/postgresql/data
 								    environment:
-												fix(deploy): 修复 Postgres 数据未持久化导致重启后无法登录

原因：postgres:18-alpine 默认 PGDATA 不在 /var/lib/postgresql/data，数据落到匿名卷，docker compose down/up 会触发 initdb 重新初始化。

修复：在 compose 中显式设置 PGDATA=/var/lib/postgresql/data，让数据落到 postgres_data 命名卷。

											
										
										
											2026-02-12 17:42:18 +08:00
+								      # postgres:18-alpine 默认 PGDATA=/var/lib/postgresql/18/docker（位于镜像声明的匿名卷 /var/lib/postgresql 内）。
 								      # 若不显式设置 PGDATA，则即使挂载了 postgres_data 到 /var/lib/postgresql/data，数据也不会落盘到该命名卷，
 								      # docker compose down/up 后会触发 initdb 重新初始化，导致用户/密码等数据丢失。
 								      - PGDATA=/var/lib/postgresql/data
-												First commit

											
										
										
											2025-12-18 13:50:39 +08:00
+								      - POSTGRES_USER=${POSTGRES_USER:-sub2api}
 								      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD:?POSTGRES_PASSWORD is required}
 								      - POSTGRES_DB=${POSTGRES_DB:-sub2api}
 								      - TZ=${TZ:-Asia/Shanghai}
 								    networks:
 								      - sub2api-network
 								    healthcheck:
 								      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-sub2api} -d ${POSTGRES_DB:-sub2api}"]
 								      interval: 10s
 								      timeout: 5s
 								      retries: 5
 								      start_period: 10s
 								# =============================================================================
 								# Volumes
 								# =============================================================================
 								volumes:
 								  sub2api_data:
 								    driver: local
 								  postgres_data:
 								    driver: local
 								# =============================================================================
 								# Networks
 								# =============================================================================
 								networks:
 								  sub2api-network:
 								    driver: bridge
-												chore: use 1panel docker-compose config as default

- Replace docker-compose.yml with docker-compose.1panel.yml content
- Better compatibility with 1Panel environment
- Simplify future updates and maintenance

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

											
										
										
											2026-01-26 10:32:46 +08:00
+panel-network:
 								    external: true