@lobehub/chat 1.105.0 → 1.105.2

package/src/server/modules/AgentRuntime/index.test.ts

@@ -1,7 +1,7 @@
 // @vitest-environment node
 import { describe, expect, it, vi } from 'vitest';
 
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import {
   LobeAnthropicAI,
   LobeAzureOpenAI,
@@ -67,7 +67,10 @@ vi.mock('@/config/llm', () => ({
 describe('initAgentRuntimeWithUserPayload method', () => {
   describe('should initialize with options correctly', () => {
     it('OpenAI provider: with apikey and endpoint', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-openai-key', baseURL: 'user-endpoint' };
+      const jwtPayload: ClientSecretPayload = {
+        apiKey: 'user-openai-key',
+        baseURL: 'user-endpoint',
+      };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
@@ -75,7 +78,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Azure AI provider: with apikey, endpoint and apiversion', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-azure-key',
         baseURL: 'user-azure-endpoint',
         azureApiVersion: '2024-06-01',
@@ -87,35 +90,35 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('ZhiPu AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'zhipu.user-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'zhipu.user-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.ZhiPu, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeZhipuAI);
     });
 
     it('Google provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-google-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-google-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Google, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeGoogleAI);
     });
 
     it('Moonshot AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-moonshot-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-moonshot-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Moonshot, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMoonshotAI);
     });
 
     it('Qwen AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-qwen-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-qwen-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeQwenAI);
     });
 
     it('Bedrock AI provider: with apikey, awsAccessKeyId, awsSecretAccessKey, awsRegion', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-bedrock-key',
         awsAccessKeyId: 'user-aws-id',
         awsSecretAccessKey: 'user-aws-secret',
@@ -127,7 +130,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Ollama provider: with endpoint', async () => {
-      const jwtPayload: JWTPayload = { baseURL: 'http://user-ollama-url' };
+      const jwtPayload: ClientSecretPayload = { baseURL: 'http://user-ollama-url' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Ollama, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOllamaAI);
@@ -135,49 +138,49 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Perplexity AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-perplexity-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-perplexity-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Perplexity, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobePerplexityAI);
     });
 
     it('Anthropic AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-anthropic-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-anthropic-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Anthropic, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeAnthropicAI);
     });
 
     it('Minimax AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-minimax-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-minimax-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Minimax, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMinimaxAI);
     });
 
     it('Mistral AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-mistral-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-mistral-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Mistral, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMistralAI);
     });
 
     it('OpenRouter AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-openrouter-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-openrouter-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenRouter, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenRouterAI);
     });
 
     it('DeepSeek AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-deepseek-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-deepseek-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.DeepSeek, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeDeepSeekAI);
     });
 
     it('Together AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-togetherai-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-togetherai-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.TogetherAI, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeTogetherAI);
@@ -205,7 +208,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Unknown Provider: with apikey and endpoint, should initialize to OpenAi', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-unknown-key',
         baseURL: 'user-unknown-endpoint',
       };
@@ -218,13 +221,13 @@ describe('initAgentRuntimeWithUserPayload method', () => {
 
   describe('should initialize without some options', () => {
     it('OpenAI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
     });
 
     it('Azure AI Provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         azureApiVersion: 'test-azure-api-version',
       };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Azure, jwtPayload);
@@ -233,7 +236,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('ZhiPu AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.ZhiPu, jwtPayload);
 
       // 假设 LobeZhipuAI 是 ZhiPu 提供者的实现类
@@ -248,7 +251,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Moonshot AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Moonshot, jwtPayload);
 
       // 假设 LobeMoonshotAI 是 Moonshot 提供者的实现类
@@ -256,7 +259,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Qwen AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类
@@ -264,7 +267,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Qwen AI provider: without endpoint', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-qwen-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-qwen-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类
@@ -356,7 +359,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     it('OpenAI provider: without apikey with OPENAI_PROXY_URL', async () => {
       process.env.OPENAI_PROXY_URL = 'https://proxy.example.com/v1';
 
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
       // 应返回 OPENAI_PROXY_URL
@@ -366,7 +369,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     it('Qwen AI provider: without apiKey and endpoint with OPENAI_PROXY_URL', async () => {
       process.env.OPENAI_PROXY_URL = 'https://proxy.example.com/v1';
 
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类

package/src/server/modules/AgentRuntime/index.ts

@@ -1,5 +1,5 @@
 import { getLLMConfig } from '@/config/llm';
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import { AgentRuntime, ModelProvider } from '@/libs/model-runtime';
 
 import apiKeyManager from './apiKeyManager';
@@ -14,7 +14,7 @@ export * from './trace';
  * @param payload - The JWT payload.
  * @returns The options object.
  */
-const getParamsFromPayload = (provider: string, payload: JWTPayload) => {
+const getParamsFromPayload = (provider: string, payload: ClientSecretPayload) => {
   const llmConfig = getLLMConfig() as Record<string, any>;
 
   switch (provider) {
@@ -115,7 +115,7 @@ const getParamsFromPayload = (provider: string, payload: JWTPayload) => {
  */
 export const initAgentRuntimeWithUserPayload = (
   provider: string,
-  payload: JWTPayload,
+  payload: ClientSecretPayload,
   params: any = {},
 ) => {
   return AgentRuntime.initializeWithProvider(provider, {

package/src/server/routers/async/caller.ts

@@ -3,7 +3,7 @@ import superjson from 'superjson';
 import urlJoin from 'url-join';
 
 import { serverDBEnv } from '@/config/db';
-import { JWTPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
+import { ClientSecretPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
 import { isDesktop } from '@/const/version';
 import { appEnv } from '@/envs/app';
 import { createAsyncCallerFactory } from '@/libs/trpc/async';
@@ -13,7 +13,7 @@ import { KeyVaultsGateKeeper } from '@/server/modules/KeyVaultsEncrypt';
 import { asyncRouter } from './index';
 import type { AsyncRouter } from './index';
 
-export const createAsyncServerClient = async (userId: string, payload: JWTPayload) => {
+export const createAsyncServerClient = async (userId: string, payload: ClientSecretPayload) => {
   const gateKeeper = await KeyVaultsGateKeeper.initWithEnvKey();
   const headers: Record<string, string> = {
     Authorization: `Bearer ${serverDBEnv.KEY_VAULTS_SECRET}`,

package/src/server/routers/lambda/market/index.ts

@@ -173,20 +173,6 @@ export const marketRouter = router({
       }
     }),
 
-  getMcpIdentifiers: marketProcedure.query(async ({ ctx }) => {
-    log('getMcpIdentifiers called');
-
-    try {
-      return await ctx.discoverService.getMcpIdentifiers();
-    } catch (error) {
-      log('Error fetching mcp identifiers: %O', error);
-      throw new TRPCError({
-        code: 'INTERNAL_SERVER_ERROR',
-        message: 'Failed to fetch mcp identifiers',
-      });
-    }
-  }),
-
   getMcpList: marketProcedure
     .input(
       z

package/src/server/routers/tools/search.test.ts

@@ -9,8 +9,8 @@ import { SEARCH_SEARXNG_NOT_CONFIG } from '@/types/tool/search';
 import { searchRouter } from './search';
 
 // Mock JWT verification
-vi.mock('@/utils/server/jwt', () => ({
-  getJWTPayload: vi.fn().mockResolvedValue({ userId: '1' }),
+vi.mock('@/utils/server/xor', () => ({
+  getXorPayload: vi.fn().mockReturnValue({ userId: '1' }),
 }));
 
 vi.mock('@lobechat/web-crawler', () => ({

package/src/server/services/chunk/index.ts

@@ -1,4 +1,4 @@
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import { AsyncTaskModel } from '@/database/models/asyncTask';
 import { FileModel } from '@/database/models/file';
 import { serverDB } from '@/database/server';
@@ -30,7 +30,7 @@ export class ChunkService {
     return this.chunkClient.chunkContent(params);
   }
 
-  async asyncEmbeddingFileChunks(fileId: string, payload: JWTPayload) {
+  async asyncEmbeddingFileChunks(fileId: string, payload: ClientSecretPayload) {
     const result = await this.fileModel.findById(fileId);
 
     if (!result) return;
@@ -66,7 +66,7 @@ export class ChunkService {
   /**
    * parse file to chunks with async task
    */
-  async asyncParseFileToChunks(fileId: string, payload: JWTPayload, skipExist?: boolean) {
+  async asyncParseFileToChunks(fileId: string, payload: ClientSecretPayload, skipExist?: boolean) {
     const result = await this.fileModel.findById(fileId);
 
     if (!result) return;

package/src/server/services/discover/index.ts

@@ -462,19 +462,6 @@ export class DiscoverService {
     return result;
   };
 
-  getMcpIdentifiers = async (): Promise<IdentifiersResponse> => {
-    log('getMcpIdentifiers: fetching identifiers');
-    const result = await this.market.plugins.getPublishedIdentifiers({
-      cache: 'force-cache',
-      next: {
-        revalidate: CacheRevalidate.List,
-        tags: [CacheTag.Discover, CacheTag.MCP],
-      },
-    });
-    log('getMcpIdentifiers: returning %d identifiers', result.length);
-    return result;
-  };
-
   getMcpList = async (params: McpQueryParams = {}): Promise<McpListResponse> => {
     log('getMcpList: params=%O', params);
     const { locale } = params;

package/src/server/sitemap.test.ts

@@ -13,7 +13,6 @@ describe('Sitemap', () => {
       // Mock the page count methods to return specific values for testing
       vi.spyOn(sitemap, 'getPluginPageCount').mockResolvedValue(2);
       vi.spyOn(sitemap, 'getAssistantPageCount').mockResolvedValue(3);
-      vi.spyOn(sitemap, 'getMcpPageCount').mockResolvedValue(1);
       vi.spyOn(sitemap, 'getModelPageCount').mockResolvedValue(2);
 
       const index = await sitemap.getIndex();
@@ -31,7 +30,6 @@ describe('Sitemap', () => {
       expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/assistants-1.xml')}</loc>`);
       expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/assistants-2.xml')}</loc>`);
       expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/assistants-3.xml')}</loc>`);
-      expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/mcp-1.xml')}</loc>`);
       expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/models-1.xml')}</loc>`);
       expect(index).toContain(`<loc>${getCanonicalUrl('/sitemap/models-2.xml')}</loc>`);
 
@@ -218,46 +216,6 @@ describe('Sitemap', () => {
     });
   });
 
-  describe('getMcp', () => {
-    it('should return a valid mcp sitemap without pagination', async () => {
-      vi.spyOn(sitemap['discoverService'], 'getMcpIdentifiers').mockResolvedValue([
-        // @ts-ignore
-        { identifier: 'test-mcp', lastModified: '2023-01-01' },
-      ]);
-
-      const mcpSitemap = await sitemap.getMcp();
-      expect(mcpSitemap.length).toBe(15);
-      expect(mcpSitemap).toContainEqual(
-        expect.objectContaining({
-          url: getCanonicalUrl('/discover/mcp/test-mcp'),
-          lastModified: '2023-01-01T00:00:00.000Z',
-        }),
-      );
-      expect(mcpSitemap).toContainEqual(
-        expect.objectContaining({
-          url: getCanonicalUrl('/discover/mcp/test-mcp?hl=zh-CN'),
-          lastModified: '2023-01-01T00:00:00.000Z',
-        }),
-      );
-    });
-
-    it('should return a valid mcp sitemap with pagination', async () => {
-      const mockMcps = Array.from({ length: 80 }, (_, i) => ({
-        identifier: `test-mcp-${i}`,
-        lastModified: '2023-01-01',
-      }));
-
-      vi.spyOn(sitemap['discoverService'], 'getMcpIdentifiers').mockResolvedValue(
-        // @ts-ignore
-        mockMcps,
-      );
-
-      // Test first page (should have 80 items, all on first page)
-      const firstPageSitemap = await sitemap.getMcp(1);
-      expect(firstPageSitemap.length).toBe(80 * 15); // 80 items * 15 locales
-    });
-  });
-
   describe('getProviders', () => {
     it('should return a valid providers sitemap', async () => {
       vi.spyOn(sitemap['discoverService'], 'getProviderIdentifiers').mockResolvedValue([
@@ -303,16 +261,6 @@ describe('Sitemap', () => {
       expect(pageCount).toBe(3); // 250 items / 100 per page = ceil(2.5) = 3 pages
     });
 
-    it('should return correct mcp page count', async () => {
-      vi.spyOn(sitemap['discoverService'], 'getMcpIdentifiers').mockResolvedValue(
-        // @ts-ignore
-        Array.from({ length: 50 }, (_, i) => ({ identifier: `mcp-${i}` })),
-      );
-
-      const pageCount = await sitemap.getMcpPageCount();
-      expect(pageCount).toBe(1); // 50 items / 100 per page = 1 page
-    });
-
     it('should return correct model page count', async () => {
       vi.spyOn(sitemap['discoverService'], 'getModelIdentifiers').mockResolvedValue(
         // @ts-ignore

package/src/server/sitemap.ts

@@ -52,12 +52,6 @@ export class Sitemap {
     return Math.ceil(list.length / ITEMS_PER_PAGE);
   }
 
-  // 获取MCP总页数
-  async getMcpPageCount(): Promise<number> {
-    const list = await this.discoverService.getMcpIdentifiers();
-    return Math.ceil(list.length / ITEMS_PER_PAGE);
-  }
-
   // 获取模型总页数
   async getModelPageCount(): Promise<number> {
     const list = await this.discoverService.getModelIdentifiers();
@@ -171,10 +165,9 @@ export class Sitemap {
     );
 
     // 获取需要分页的类型的页数
-    const [pluginPages, assistantPages, mcpPages, modelPages] = await Promise.all([
+    const [pluginPages, assistantPages, modelPages] = await Promise.all([
       this.getPluginPageCount(),
       this.getAssistantPageCount(),
-      this.getMcpPageCount(),
       this.getModelPageCount(),
     ]);
 
@@ -193,11 +186,6 @@ export class Sitemap {
           ),
         ),
       ),
-      ...Array.from({ length: mcpPages }, (_, i) =>
-        this._generateSitemapLink(
-          getCanonicalUrl(SITEMAP_BASE_URL, isDev ? `mcp-${i + 1}` : `mcp-${i + 1}.xml`),
-        ),
-      ),
       ...Array.from({ length: modelPages }, (_, i) =>
         this._generateSitemapLink(
           getCanonicalUrl(SITEMAP_BASE_URL, isDev ? `models-${i + 1}` : `models-${i + 1}.xml`),
@@ -239,31 +227,6 @@ export class Sitemap {
     return flatten(sitmap);
   }
 
-  async getMcp(page?: number): Promise<MetadataRoute.Sitemap> {
-    const list = await this.discoverService.getMcpIdentifiers();
-
-    if (page !== undefined) {
-      const startIndex = (page - 1) * ITEMS_PER_PAGE;
-      const endIndex = startIndex + ITEMS_PER_PAGE;
-      const pageMcps = list.slice(startIndex, endIndex);
-
-      const sitmap = pageMcps.map((item) =>
-        this._genSitemap(urlJoin('/discover/mcp', item.identifier), {
-          lastModified: item?.lastModified || LAST_MODIFIED,
-        }),
-      );
-      return flatten(sitmap);
-    }
-
-    // 如果没有指定页数，返回所有（向后兼容）
-    const sitmap = list.map((item) =>
-      this._genSitemap(urlJoin('/discover/mcp', item.identifier), {
-        lastModified: item?.lastModified || LAST_MODIFIED,
-      }),
-    );
-    return flatten(sitmap);
-  }
-
   async getPlugins(page?: number): Promise<MetadataRoute.Sitemap> {
     const list = await this.discoverService.getPluginIdentifiers();
 

package/src/services/_auth.ts

@@ -1,4 +1,4 @@
-import { JWTPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
+import { ClientSecretPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
 import { isDeprecatedEdition } from '@/const/version';
 import { ModelProvider } from '@/libs/model-runtime';
 import { aiProviderSelectors, useAiInfraStore } from '@/store/aiInfra';
@@ -10,7 +10,7 @@ import {
   CloudflareKeyVault,
   OpenAICompatibleKeyVault,
 } from '@/types/user/settings';
-import { createJWT } from '@/utils/jwt';
+import { obfuscatePayloadWithXOR } from '@/utils/client/xor-obfuscation';
 
 export const getProviderAuthPayload = (
   provider: string,
@@ -80,7 +80,7 @@ const createAuthTokenWithPayload = async (payload = {}) => {
   const accessCode = keyVaultsConfigSelectors.password(useUserStore.getState());
   const userId = userProfileSelectors.userId(useUserStore.getState());
 
-  return createJWT<JWTPayload>({ accessCode, userId, ...payload });
+  return obfuscatePayloadWithXOR<ClientSecretPayload>({ accessCode, userId, ...payload });
 };
 
 interface AuthParams {

package/src/services/discover.ts

@@ -83,10 +83,6 @@ class DiscoverService {
     });
   };
 
-  getMcpIdentifiers = async (): Promise<IdentifiersResponse> => {
-    return lambdaClient.market.getMcpIdentifiers.query();
-  };
-
   getMcpList = async (params: McpQueryParams = {}): Promise<McpListResponse> => {
     const locale = globalHelpers.getCurrentLanguage();
     return lambdaClient.market.getMcpList.query({

package/src/store/discover/slices/mcp/action.ts

@@ -8,7 +8,6 @@ import { DiscoverStore } from '@/store/discover';
 import { globalHelpers } from '@/store/global/helpers';
 import {
   DiscoverMcpDetail,
-  IdentifiersResponse,
   McpListResponse,
   McpQueryParams,
 } from '@/types/discover';
@@ -20,7 +19,6 @@ export interface MCPAction {
   }) => SWRResponse<DiscoverMcpDetail>;
   useFetchMcpList: (params: McpQueryParams) => SWRResponse<McpListResponse>;
   useMcpCategories: (params: CategoryListQuery) => SWRResponse<CategoryItem[]>;
-  useMcpIdentifiers: () => SWRResponse<IdentifiersResponse>;
 }
 
 export const createMCPSlice: StateCreator<
@@ -61,10 +59,4 @@ export const createMCPSlice: StateCreator<
       },
     );
   },
-
-  useMcpIdentifiers: () => {
-    return useClientDataSWR('mcp-identifiers', async () => discoverService.getMcpIdentifiers(), {
-      revalidateOnFocus: false,
-    });
-  },
 });