@lobehub/chat 1.105.1 → 1.105.2

package/src/config/aiModels/wenxin.ts

@@ -1,4 +1,4 @@
-import { AIChatModelCard } from '@/types/aiModel';
+import { AIChatModelCard, AIImageModelCard } from '@/types/aiModel';
 
 const wenxinChatModels: AIChatModelCard[] = [
   {
@@ -564,6 +564,66 @@ const wenxinChatModels: AIChatModelCard[] = [
   },
 ];
 
-export const allModels = [...wenxinChatModels];
+const wenxinImageModels: AIImageModelCard[] = [
+  {
+    description:
+      '百度自研的iRAG（image based RAG），检索增强的文生图技术，将百度搜索的亿级图片资源跟强大的基础模型能力相结合，就可以生成各种超真实的图片，整体效果远远超过文生图原生系统，去掉了AI味儿，而且成本很低。iRAG具备无幻觉、超真实、立等可取等特点。',
+    displayName: 'ERNIE iRAG',
+    enabled: true,
+    id: 'irag-1.0',
+    parameters: {
+      prompt: {
+        default: '',
+      },
+      size: {
+        default: '1024x1024',
+        enum: ['768x768', '1024x1024', '1536x1536', '2048x2048', '1024x768', '2048x1536', '768x1024', '1536x2048', '1024x576', '2048x1152', '576x1024', '1152x2048'],
+      },
+    },
+    releasedAt: '2025-02-05',
+    type: 'image',
+  },
+  {
+    description:
+      '百度自研的ERNIE iRAG Edit图像编辑模型支持基于图片进行erase（消除对象）、repaint（重绘对象）、variation（生成变体）等操作。',
+    displayName: 'ERNIE iRAG Edit',
+    enabled: true,
+    id: 'ernie-irag-edit',
+    parameters: {
+      imageUrl: { default: null },
+      prompt: {
+        default: '',
+      },
+      size: {
+        default: '1024x1024',
+        enum: ['768x768', '1024x1024', '1536x1536', '2048x2048', '1024x768', '2048x1536', '768x1024', '1536x2048', '1024x576', '2048x1152', '576x1024', '1152x2048'],
+      },
+    },
+    releasedAt: '2025-04-17',
+    type: 'image',
+  },
+  {
+    description:
+      '具有120亿参数的修正流变换器，能够根据文本描述生成图像。',
+    displayName: 'FLUX.1-schnell',
+    enabled: true,
+    id: 'flux.1-schnell',
+    parameters: {
+      prompt: {
+        default: '',
+      },
+      seed: { default: null },
+      size: {
+        default: '1024x1024',
+        enum: ['768x768', '1024x1024', '1536x1536', '2048x2048', '1024x768', '2048x1536', '768x1024', '1536x2048', '1024x576', '2048x1152', '576x1024', '1152x2048'],
+      },
+      steps: { default: 25, max: 50, min: 1 },
+    },
+    releasedAt: '2025-03-27',
+    type: 'image',
+  },
+];
+
+export const allModels = [...wenxinChatModels, ...wenxinImageModels];
 
 export default allModels;

package/src/config/aiModels/xai.ts

@@ -1,4 +1,4 @@
-import { AIChatModelCard } from '@/types/aiModel';
+import { AIChatModelCard, AIImageModelCard } from '@/types/aiModel';
 
 // https://docs.x.ai/docs/models
 const xaiChatModels: AIChatModelCard[] = [
@@ -158,6 +158,23 @@ const xaiChatModels: AIChatModelCard[] = [
   },
 ];
 
-export const allModels = [...xaiChatModels];
+const xaiImageModels: AIImageModelCard[] = [
+  {
+    description:
+      '我们最新的图像生成模型可以根据文本提示生成生动逼真的图像。它在营销、社交媒体和娱乐等领域的图像生成方面表现出色。',
+    displayName: 'Grok 2 Image 1212',
+    enabled: true,
+    id: 'grok-2-image-1212',
+    parameters: {
+      prompt: {
+        default: '',
+      },
+    },
+    releasedAt: '2024-12-12',
+    type: 'image',
+  },
+];
+
+export const allModels = [...xaiChatModels, ...xaiImageModels];
 
 export default allModels;

package/src/const/auth.ts

@@ -9,11 +9,10 @@ export const LOBE_CHAT_OIDC_AUTH_HEADER = 'Oidc-Auth';
 
 export const OAUTH_AUTHORIZED = 'X-oauth-authorized';
 
-export const JWT_SECRET_KEY = 'LobeHub · LobeChat';
-export const NON_HTTP_PREFIX = 'http_nosafe';
+export const SECRET_XOR_KEY = 'LobeHub · LobeHub';
 
 /* eslint-disable typescript-sort-keys/interface */
-export interface JWTPayload {
+export interface ClientSecretPayload {
   /**
    * password
    */

package/src/libs/model-runtime/ModelRuntime.test.ts

@@ -4,7 +4,7 @@ import { LangfuseGenerationClient, LangfuseTraceClient } from 'langfuse-core';
 import { beforeEach, describe, expect, it, vi } from 'vitest';
 
 import * as langfuseCfg from '@/config/langfuse';
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import { TraceNameMap } from '@/const/trace';
 import { AgentRuntime, ChatStreamPayload, LobeOpenAI, ModelProvider } from '@/libs/model-runtime';
 import { providerRuntimeMap } from '@/libs/model-runtime/runtimeMap';
@@ -51,7 +51,7 @@ const specialProviders = [
 const testRuntime = (providerId: string, payload?: any) => {
   describe(`${providerId} provider runtime`, () => {
     it('should initialize correctly', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-key', ...payload };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-key', ...payload };
       const runtime = await AgentRuntime.initializeWithProvider(providerId, jwtPayload);
 
       // @ts-ignore
@@ -66,7 +66,7 @@ const testRuntime = (providerId: string, payload?: any) => {
 
 let mockModelRuntime: AgentRuntime;
 beforeEach(async () => {
-  const jwtPayload: JWTPayload = { apiKey: 'user-openai-key', baseURL: 'user-endpoint' };
+  const jwtPayload: ClientSecretPayload = { apiKey: 'user-openai-key', baseURL: 'user-endpoint' };
   mockModelRuntime = await AgentRuntime.initializeWithProvider(ModelProvider.OpenAI, jwtPayload);
 });
 

package/src/libs/trpc/async/context.ts

@@ -1,14 +1,14 @@
 import debug from 'debug';
 import { NextRequest } from 'next/server';
 
-import { JWTPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
+import { ClientSecretPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
 import { LobeChatDatabase } from '@/database/type';
 import { KeyVaultsGateKeeper } from '@/server/modules/KeyVaultsEncrypt';
 
 const log = debug('lobe-async:context');
 
 export interface AsyncAuthContext {
-  jwtPayload: JWTPayload;
+  jwtPayload: ClientSecretPayload;
   secret: string;
   serverDB?: LobeChatDatabase;
   userId?: string | null;
@@ -19,7 +19,7 @@ export interface AsyncAuthContext {
  * This is useful for testing when we don't want to mock Next.js' request/response
  */
 export const createAsyncContextInner = async (params?: {
-  jwtPayload?: JWTPayload;
+  jwtPayload?: ClientSecretPayload;
   secret?: string;
   userId?: string | null;
 }): Promise<AsyncAuthContext> => ({

package/src/libs/trpc/edge/context.ts

@@ -1,13 +1,18 @@
 import { User } from 'next-auth';
 import { NextRequest } from 'next/server';
 
-import { JWTPayload, LOBE_CHAT_AUTH_HEADER, enableClerk, enableNextAuth } from '@/const/auth';
+import {
+  ClientSecretPayload,
+  LOBE_CHAT_AUTH_HEADER,
+  enableClerk,
+  enableNextAuth,
+} from '@/const/auth';
 import { ClerkAuth, IClerkAuth } from '@/libs/clerk-auth';
 
 export interface AuthContext {
   authorizationHeader?: string | null;
   clerkAuth?: IClerkAuth;
-  jwtPayload?: JWTPayload | null;
+  jwtPayload?: ClientSecretPayload | null;
   nextAuth?: User;
   userId?: string | null;
 }

package/src/libs/trpc/edge/middleware/jwtPayload.test.ts

@@ -5,7 +5,7 @@ import { beforeEach, describe, expect, it, vi } from 'vitest';
 import { createCallerFactory } from '@/libs/trpc/edge';
 import { AuthContext, createContextInner } from '@/libs/trpc/edge/context';
 import { edgeTrpc as trpc } from '@/libs/trpc/edge/init';
-import * as utils from '@/utils/server/jwt';
+import * as utils from '@/utils/server/xor';
 
 import { jwtPayloadChecker } from './jwtPayload';
 
@@ -40,7 +40,7 @@ describe('passwordChecker middleware', () => {
   it('should call next with jwtPayload in context if access code is correct', async () => {
     const jwtPayload = { accessCode: '123' };
 
-    vi.spyOn(utils, 'getJWTPayload').mockResolvedValue(jwtPayload);
+    vi.spyOn(utils, 'getXorPayload').mockResolvedValue(jwtPayload);
 
     ctx = await createContextInner({ authorizationHeader: 'Bearer token' });
     router = createCaller(ctx);
@@ -52,7 +52,7 @@ describe('passwordChecker middleware', () => {
 
   it('should call next with jwtPayload in context if no access codes are set', async () => {
     const jwtPayload = {};
-    vi.spyOn(utils, 'getJWTPayload').mockResolvedValue(jwtPayload);
+    vi.spyOn(utils, 'getXorPayload').mockResolvedValue(jwtPayload);
 
     ctx = await createContextInner({ authorizationHeader: 'Bearer token' });
     router = createCaller(ctx);
@@ -63,7 +63,7 @@ describe('passwordChecker middleware', () => {
   });
   it('should call next with jwtPayload in context if  access codes is undefined', async () => {
     const jwtPayload = {};
-    vi.spyOn(utils, 'getJWTPayload').mockResolvedValue(jwtPayload);
+    vi.spyOn(utils, 'getXorPayload').mockResolvedValue(jwtPayload);
 
     ctx = await createContextInner({ authorizationHeader: 'Bearer token' });
     router = createCaller(ctx);

package/src/libs/trpc/edge/middleware/jwtPayload.ts

@@ -1,6 +1,6 @@
 import { TRPCError } from '@trpc/server';
 
-import { getJWTPayload } from '@/utils/server/jwt';
+import { getXorPayload } from '@/utils/server/xor';
 
 import { edgeTrpc } from '../init';
 
@@ -9,7 +9,7 @@ export const jwtPayloadChecker = edgeTrpc.middleware(async (opts) => {
 
   if (!ctx.authorizationHeader) throw new TRPCError({ code: 'UNAUTHORIZED' });
 
-  const jwtPayload = await getJWTPayload(ctx.authorizationHeader);
+  const jwtPayload = getXorPayload(ctx.authorizationHeader);
 
   return opts.next({ ctx: { jwtPayload } });
 });

package/src/libs/trpc/lambda/context.ts

@@ -4,7 +4,7 @@ import { User } from 'next-auth';
 import { NextRequest } from 'next/server';
 
 import {
-  JWTPayload,
+  ClientSecretPayload,
   LOBE_CHAT_AUTH_HEADER,
   LOBE_CHAT_OIDC_AUTH_HEADER,
   enableClerk,
@@ -29,7 +29,7 @@ export interface OIDCAuth {
 export interface AuthContext {
   authorizationHeader?: string | null;
   clerkAuth?: IClerkAuth;
-  jwtPayload?: JWTPayload | null;
+  jwtPayload?: ClientSecretPayload | null;
   marketAccessToken?: string;
   nextAuth?: User;
   // Add OIDC authentication information

package/src/libs/trpc/lambda/middleware/keyVaults.ts

@@ -1,6 +1,6 @@
 import { TRPCError } from '@trpc/server';
 
-import { getJWTPayload } from '@/utils/server/jwt';
+import { getXorPayload } from '@/utils/server/xor';
 
 import { trpc } from '../init';
 
@@ -10,7 +10,7 @@ export const keyVaults = trpc.middleware(async (opts) => {
   if (!ctx.authorizationHeader) throw new TRPCError({ code: 'UNAUTHORIZED' });
 
   try {
-    const jwtPayload = await getJWTPayload(ctx.authorizationHeader);
+    const jwtPayload = getXorPayload(ctx.authorizationHeader);
 
     return opts.next({ ctx: { jwtPayload } });
   } catch (e) {

package/src/server/modules/AgentRuntime/index.test.ts

@@ -1,7 +1,7 @@
 // @vitest-environment node
 import { describe, expect, it, vi } from 'vitest';
 
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import {
   LobeAnthropicAI,
   LobeAzureOpenAI,
@@ -67,7 +67,10 @@ vi.mock('@/config/llm', () => ({
 describe('initAgentRuntimeWithUserPayload method', () => {
   describe('should initialize with options correctly', () => {
     it('OpenAI provider: with apikey and endpoint', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-openai-key', baseURL: 'user-endpoint' };
+      const jwtPayload: ClientSecretPayload = {
+        apiKey: 'user-openai-key',
+        baseURL: 'user-endpoint',
+      };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
@@ -75,7 +78,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Azure AI provider: with apikey, endpoint and apiversion', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-azure-key',
         baseURL: 'user-azure-endpoint',
         azureApiVersion: '2024-06-01',
@@ -87,35 +90,35 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('ZhiPu AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'zhipu.user-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'zhipu.user-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.ZhiPu, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeZhipuAI);
     });
 
     it('Google provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-google-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-google-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Google, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeGoogleAI);
     });
 
     it('Moonshot AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-moonshot-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-moonshot-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Moonshot, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMoonshotAI);
     });
 
     it('Qwen AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-qwen-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-qwen-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeQwenAI);
     });
 
     it('Bedrock AI provider: with apikey, awsAccessKeyId, awsSecretAccessKey, awsRegion', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-bedrock-key',
         awsAccessKeyId: 'user-aws-id',
         awsSecretAccessKey: 'user-aws-secret',
@@ -127,7 +130,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Ollama provider: with endpoint', async () => {
-      const jwtPayload: JWTPayload = { baseURL: 'http://user-ollama-url' };
+      const jwtPayload: ClientSecretPayload = { baseURL: 'http://user-ollama-url' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Ollama, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOllamaAI);
@@ -135,49 +138,49 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Perplexity AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-perplexity-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-perplexity-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Perplexity, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobePerplexityAI);
     });
 
     it('Anthropic AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-anthropic-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-anthropic-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Anthropic, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeAnthropicAI);
     });
 
     it('Minimax AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-minimax-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-minimax-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Minimax, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMinimaxAI);
     });
 
     it('Mistral AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-mistral-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-mistral-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Mistral, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeMistralAI);
     });
 
     it('OpenRouter AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-openrouter-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-openrouter-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenRouter, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenRouterAI);
     });
 
     it('DeepSeek AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-deepseek-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-deepseek-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.DeepSeek, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeDeepSeekAI);
     });
 
     it('Together AI provider: with apikey', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-togetherai-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-togetherai-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.TogetherAI, jwtPayload);
       expect(runtime).toBeInstanceOf(AgentRuntime);
       expect(runtime['_runtime']).toBeInstanceOf(LobeTogetherAI);
@@ -205,7 +208,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Unknown Provider: with apikey and endpoint, should initialize to OpenAi', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         apiKey: 'user-unknown-key',
         baseURL: 'user-unknown-endpoint',
       };
@@ -218,13 +221,13 @@ describe('initAgentRuntimeWithUserPayload method', () => {
 
   describe('should initialize without some options', () => {
     it('OpenAI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
     });
 
     it('Azure AI Provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {
+      const jwtPayload: ClientSecretPayload = {
         azureApiVersion: 'test-azure-api-version',
       };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Azure, jwtPayload);
@@ -233,7 +236,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('ZhiPu AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.ZhiPu, jwtPayload);
 
       // 假设 LobeZhipuAI 是 ZhiPu 提供者的实现类
@@ -248,7 +251,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Moonshot AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Moonshot, jwtPayload);
 
       // 假设 LobeMoonshotAI 是 Moonshot 提供者的实现类
@@ -256,7 +259,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Qwen AI provider: without apikey', async () => {
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类
@@ -264,7 +267,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     });
 
     it('Qwen AI provider: without endpoint', async () => {
-      const jwtPayload: JWTPayload = { apiKey: 'user-qwen-key' };
+      const jwtPayload: ClientSecretPayload = { apiKey: 'user-qwen-key' };
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类
@@ -356,7 +359,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     it('OpenAI provider: without apikey with OPENAI_PROXY_URL', async () => {
       process.env.OPENAI_PROXY_URL = 'https://proxy.example.com/v1';
 
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.OpenAI, jwtPayload);
       expect(runtime['_runtime']).toBeInstanceOf(LobeOpenAI);
       // 应返回 OPENAI_PROXY_URL
@@ -366,7 +369,7 @@ describe('initAgentRuntimeWithUserPayload method', () => {
     it('Qwen AI provider: without apiKey and endpoint with OPENAI_PROXY_URL', async () => {
       process.env.OPENAI_PROXY_URL = 'https://proxy.example.com/v1';
 
-      const jwtPayload: JWTPayload = {};
+      const jwtPayload: ClientSecretPayload = {};
       const runtime = await initAgentRuntimeWithUserPayload(ModelProvider.Qwen, jwtPayload);
 
       // 假设 LobeQwenAI 是 Qwen 提供者的实现类

package/src/server/modules/AgentRuntime/index.ts

@@ -1,5 +1,5 @@
 import { getLLMConfig } from '@/config/llm';
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import { AgentRuntime, ModelProvider } from '@/libs/model-runtime';
 
 import apiKeyManager from './apiKeyManager';
@@ -14,7 +14,7 @@ export * from './trace';
  * @param payload - The JWT payload.
  * @returns The options object.
  */
-const getParamsFromPayload = (provider: string, payload: JWTPayload) => {
+const getParamsFromPayload = (provider: string, payload: ClientSecretPayload) => {
   const llmConfig = getLLMConfig() as Record<string, any>;
 
   switch (provider) {
@@ -115,7 +115,7 @@ const getParamsFromPayload = (provider: string, payload: JWTPayload) => {
  */
 export const initAgentRuntimeWithUserPayload = (
   provider: string,
-  payload: JWTPayload,
+  payload: ClientSecretPayload,
   params: any = {},
 ) => {
   return AgentRuntime.initializeWithProvider(provider, {

package/src/server/routers/async/caller.ts

@@ -3,7 +3,7 @@ import superjson from 'superjson';
 import urlJoin from 'url-join';
 
 import { serverDBEnv } from '@/config/db';
-import { JWTPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
+import { ClientSecretPayload, LOBE_CHAT_AUTH_HEADER } from '@/const/auth';
 import { isDesktop } from '@/const/version';
 import { appEnv } from '@/envs/app';
 import { createAsyncCallerFactory } from '@/libs/trpc/async';
@@ -13,7 +13,7 @@ import { KeyVaultsGateKeeper } from '@/server/modules/KeyVaultsEncrypt';
 import { asyncRouter } from './index';
 import type { AsyncRouter } from './index';
 
-export const createAsyncServerClient = async (userId: string, payload: JWTPayload) => {
+export const createAsyncServerClient = async (userId: string, payload: ClientSecretPayload) => {
   const gateKeeper = await KeyVaultsGateKeeper.initWithEnvKey();
   const headers: Record<string, string> = {
     Authorization: `Bearer ${serverDBEnv.KEY_VAULTS_SECRET}`,

package/src/server/routers/lambda/market/index.ts

@@ -173,20 +173,6 @@ export const marketRouter = router({
       }
     }),
 
-  getMcpIdentifiers: marketProcedure.query(async ({ ctx }) => {
-    log('getMcpIdentifiers called');
-
-    try {
-      return await ctx.discoverService.getMcpIdentifiers();
-    } catch (error) {
-      log('Error fetching mcp identifiers: %O', error);
-      throw new TRPCError({
-        code: 'INTERNAL_SERVER_ERROR',
-        message: 'Failed to fetch mcp identifiers',
-      });
-    }
-  }),
-
   getMcpList: marketProcedure
     .input(
       z

package/src/server/routers/tools/search.test.ts

@@ -9,8 +9,8 @@ import { SEARCH_SEARXNG_NOT_CONFIG } from '@/types/tool/search';
 import { searchRouter } from './search';
 
 // Mock JWT verification
-vi.mock('@/utils/server/jwt', () => ({
-  getJWTPayload: vi.fn().mockResolvedValue({ userId: '1' }),
+vi.mock('@/utils/server/xor', () => ({
+  getXorPayload: vi.fn().mockReturnValue({ userId: '1' }),
 }));
 
 vi.mock('@lobechat/web-crawler', () => ({

package/src/server/services/chunk/index.ts

@@ -1,4 +1,4 @@
-import { JWTPayload } from '@/const/auth';
+import { ClientSecretPayload } from '@/const/auth';
 import { AsyncTaskModel } from '@/database/models/asyncTask';
 import { FileModel } from '@/database/models/file';
 import { serverDB } from '@/database/server';
@@ -30,7 +30,7 @@ export class ChunkService {
     return this.chunkClient.chunkContent(params);
   }
 
-  async asyncEmbeddingFileChunks(fileId: string, payload: JWTPayload) {
+  async asyncEmbeddingFileChunks(fileId: string, payload: ClientSecretPayload) {
     const result = await this.fileModel.findById(fileId);
 
     if (!result) return;
@@ -66,7 +66,7 @@ export class ChunkService {
   /**
    * parse file to chunks with async task
    */
-  async asyncParseFileToChunks(fileId: string, payload: JWTPayload, skipExist?: boolean) {
+  async asyncParseFileToChunks(fileId: string, payload: ClientSecretPayload, skipExist?: boolean) {
     const result = await this.fileModel.findById(fileId);
 
     if (!result) return;

package/src/server/services/discover/index.ts

@@ -462,19 +462,6 @@ export class DiscoverService {
     return result;
   };
 
-  getMcpIdentifiers = async (): Promise<IdentifiersResponse> => {
-    log('getMcpIdentifiers: fetching identifiers');
-    const result = await this.market.plugins.getPublishedIdentifiers({
-      cache: 'force-cache',
-      next: {
-        revalidate: CacheRevalidate.List,
-        tags: [CacheTag.Discover, CacheTag.MCP],
-      },
-    });
-    log('getMcpIdentifiers: returning %d identifiers', result.length);
-    return result;
-  };
-
   getMcpList = async (params: McpQueryParams = {}): Promise<McpListResponse> => {
     log('getMcpList: params=%O', params);
     const { locale } = params;