@lobehub/lobehub 2.0.0-next.194 → 2.0.0-next.196

package/CHANGELOG.md

@@ -2,6 +2,56 @@
 
 # Changelog
 
+## [Version 2.0.0-next.196](https://github.com/lobehub/lobe-chat/compare/v2.0.0-next.195...v2.0.0-next.196)
+
+<sup>Released on **2026-01-03**</sup>
+
+#### ♻ Code Refactoring
+
+- **misc**: Refactor to remove access code.
+
+<br/>
+
+<details>
+<summary><kbd>Improvements and Fixes</kbd></summary>
+
+#### Code refactoring
+
+- **misc**: Refactor to remove access code, closes [#11120](https://github.com/lobehub/lobe-chat/issues/11120) ([0e9f98c](https://github.com/lobehub/lobe-chat/commit/0e9f98c))
+
+</details>
+
+<div align="right">
+
+[![](https://img.shields.io/badge/-BACK_TO_TOP-151515?style=flat-square)](#readme-top)
+
+</div>
+
+## [Version 2.0.0-next.195](https://github.com/lobehub/lobe-chat/compare/v2.0.0-next.194...v2.0.0-next.195)
+
+<sup>Released on **2026-01-03**</sup>
+
+#### 🐛 Bug Fixes
+
+- **misc**: Fix tool call message content missing.
+
+<br/>
+
+<details>
+<summary><kbd>Improvements and Fixes</kbd></summary>
+
+#### What's fixed
+
+- **misc**: Fix tool call message content missing, closes [#11116](https://github.com/lobehub/lobe-chat/issues/11116) ([885964e](https://github.com/lobehub/lobe-chat/commit/885964e))
+
+</details>
+
+<div align="right">
+
+[![](https://img.shields.io/badge/-BACK_TO_TOP-151515?style=flat-square)](#readme-top)
+
+</div>
+
 ## [Version 2.0.0-next.194](https://github.com/lobehub/lobe-chat/compare/v2.0.0-next.193...v2.0.0-next.194)
 
 <sup>Released on **2026-01-03**</sup>

package/changelog/v1.json

@@ -1,4 +1,22 @@
 [
+  {
+    "children": {
+      "improvements": [
+        "Refactor to remove access code."
+      ]
+    },
+    "date": "2026-01-03",
+    "version": "2.0.0-next.196"
+  },
+  {
+    "children": {
+      "fixes": [
+        "Fix tool call message content missing."
+      ]
+    },
+    "date": "2026-01-03",
+    "version": "2.0.0-next.195"
+  },
   {
     "children": {
       "improvements": [

package/locales/ar/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "الأسئلة الافتتاحية",
   "settingOpening.title": "إعدادات البداية",
   "settingPlugin.title": "قائمة المهارات",
-  "settingSystem.accessCode.desc": "تم تفعيل الوصول المشفر من قبل المسؤول",
-  "settingSystem.accessCode.placeholder": "أدخل كلمة مرور الوصول",
-  "settingSystem.accessCode.title": "كلمة مرور الوصول",
   "settingSystem.oauth.info.desc": "تم تسجيل الدخول",
   "settingSystem.oauth.info.title": "معلومات الحساب",
   "settingSystem.oauth.signin.action": "تسجيل الدخول",

package/locales/bg-BG/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Начални въпроси",
   "settingOpening.title": "Настройки за начало",
   "settingPlugin.title": "Списък с умения",
-  "settingSystem.accessCode.desc": "Достъпът с шифроване е активиран от администратора",
-  "settingSystem.accessCode.placeholder": "Въведете парола за достъп",
-  "settingSystem.accessCode.title": "Парола за достъп",
   "settingSystem.oauth.info.desc": "Вход изпълнен",
   "settingSystem.oauth.info.title": "Информация за акаунта",
   "settingSystem.oauth.signin.action": "Вход",

package/locales/de-DE/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Einstiegsfragen",
   "settingOpening.title": "Begrüßungseinstellungen",
   "settingPlugin.title": "Fähigkeitenliste",
-  "settingSystem.accessCode.desc": "Zugriff mit Verschlüsselung ist vom Administrator aktiviert",
-  "settingSystem.accessCode.placeholder": "Zugangspasswort eingeben",
-  "settingSystem.accessCode.title": "Zugangspasswort",
   "settingSystem.oauth.info.desc": "Angemeldet",
   "settingSystem.oauth.info.title": "Kontoinformationen",
   "settingSystem.oauth.signin.action": "Anmelden",

package/locales/en-US/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Opening Questions",
   "settingOpening.title": "Opening Settings",
   "settingPlugin.title": "Skill List",
-  "settingSystem.accessCode.desc": "Encryption access is enabled by the administrator",
-  "settingSystem.accessCode.placeholder": "Enter access password",
-  "settingSystem.accessCode.title": "Access Password",
   "settingSystem.oauth.info.desc": "Logged in",
   "settingSystem.oauth.info.title": "Account Information",
   "settingSystem.oauth.signin.action": "Sign In",

package/locales/es-ES/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Preguntas de Apertura",
   "settingOpening.title": "Configuración de Apertura",
   "settingPlugin.title": "Lista de Habilidades",
-  "settingSystem.accessCode.desc": "El administrador ha habilitado el acceso cifrado",
-  "settingSystem.accessCode.placeholder": "Introduce la contraseña de acceso",
-  "settingSystem.accessCode.title": "Contraseña de Acceso",
   "settingSystem.oauth.info.desc": "Sesión iniciada",
   "settingSystem.oauth.info.title": "Información de la Cuenta",
   "settingSystem.oauth.signin.action": "Iniciar Sesión",

package/locales/fa-IR/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "سؤالات آغازین",
   "settingOpening.title": "تنظیمات آغازین",
   "settingPlugin.title": "فهرست مهارت‌ها",
-  "settingSystem.accessCode.desc": "دسترسی رمزگذاری‌شده توسط مدیر فعال شده است",
-  "settingSystem.accessCode.placeholder": "رمز عبور دسترسی را وارد کنید",
-  "settingSystem.accessCode.title": "رمز عبور دسترسی",
   "settingSystem.oauth.info.desc": "وارد شده‌اید",
   "settingSystem.oauth.info.title": "اطلاعات حساب",
   "settingSystem.oauth.signin.action": "ورود",

package/locales/fr-FR/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Questions d’accueil",
   "settingOpening.title": "Paramètres d’accueil",
   "settingPlugin.title": "Liste des compétences",
-  "settingSystem.accessCode.desc": "L’accès chiffré est activé par l’administrateur",
-  "settingSystem.accessCode.placeholder": "Saisir le mot de passe d’accès",
-  "settingSystem.accessCode.title": "Mot de passe d’accès",
   "settingSystem.oauth.info.desc": "Connecté",
   "settingSystem.oauth.info.title": "Informations du compte",
   "settingSystem.oauth.signin.action": "Se connecter",

package/locales/it-IT/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Domande di Apertura",
   "settingOpening.title": "Impostazioni di Apertura",
   "settingPlugin.title": "Elenco Competenze",
-  "settingSystem.accessCode.desc": "L'accesso crittografato è abilitato dall'amministratore",
-  "settingSystem.accessCode.placeholder": "Inserisci la password di accesso",
-  "settingSystem.accessCode.title": "Password di Accesso",
   "settingSystem.oauth.info.desc": "Accesso effettuato",
   "settingSystem.oauth.info.title": "Informazioni Account",
   "settingSystem.oauth.signin.action": "Accedi",

package/locales/ja-JP/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "オープニング質問",
   "settingOpening.title": "オープニング設定",
   "settingPlugin.title": "スキルリスト",
-  "settingSystem.accessCode.desc": "管理者が暗号化アクセスを有効にしています",
-  "settingSystem.accessCode.placeholder": "アクセスコードを入力してください",
-  "settingSystem.accessCode.title": "アクセスコード",
   "settingSystem.oauth.info.desc": "ログイン済み",
   "settingSystem.oauth.info.title": "アカウント情報",
   "settingSystem.oauth.signin.action": "ログイン",

package/locales/ko-KR/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "오프닝 질문",
   "settingOpening.title": "오프닝 설정",
   "settingPlugin.title": "기능 목록",
-  "settingSystem.accessCode.desc": "관리자가 암호화된 액세스를 활성화했습니다",
-  "settingSystem.accessCode.placeholder": "액세스 암호를 입력하세요",
-  "settingSystem.accessCode.title": "액세스 암호",
   "settingSystem.oauth.info.desc": "로그인됨",
   "settingSystem.oauth.info.title": "계정 정보",
   "settingSystem.oauth.signin.action": "로그인",

package/locales/nl-NL/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Openingsvragen",
   "settingOpening.title": "Openingsinstellingen",
   "settingPlugin.title": "Vaardighedenlijst",
-  "settingSystem.accessCode.desc": "Versleutelde toegang is ingeschakeld door de beheerder",
-  "settingSystem.accessCode.placeholder": "Voer toegangswachtwoord in",
-  "settingSystem.accessCode.title": "Toegangswachtwoord",
   "settingSystem.oauth.info.desc": "Ingelogd",
   "settingSystem.oauth.info.title": "Accountinformatie",
   "settingSystem.oauth.signin.action": "Inloggen",

package/locales/pl-PL/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Pytania wprowadzające",
   "settingOpening.title": "Ustawienia powitania",
   "settingPlugin.title": "Lista umiejętności",
-  "settingSystem.accessCode.desc": "Dostęp szyfrowany został włączony przez administratora",
-  "settingSystem.accessCode.placeholder": "Wprowadź hasło dostępu",
-  "settingSystem.accessCode.title": "Hasło dostępu",
   "settingSystem.oauth.info.desc": "Zalogowano",
   "settingSystem.oauth.info.title": "Informacje o koncie",
   "settingSystem.oauth.signin.action": "Zaloguj się",

package/locales/pt-BR/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Perguntas de Abertura",
   "settingOpening.title": "Configurações de Abertura",
   "settingPlugin.title": "Lista de Habilidades",
-  "settingSystem.accessCode.desc": "O acesso criptografado foi ativado pelo administrador",
-  "settingSystem.accessCode.placeholder": "Digite a senha de acesso",
-  "settingSystem.accessCode.title": "Senha de Acesso",
   "settingSystem.oauth.info.desc": "Conectado",
   "settingSystem.oauth.info.title": "Informações da Conta",
   "settingSystem.oauth.signin.action": "Entrar",

package/locales/ru-RU/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Вводные вопросы",
   "settingOpening.title": "Настройки приветствия",
   "settingPlugin.title": "Список навыков",
-  "settingSystem.accessCode.desc": "Доступ по паролю включён администратором",
-  "settingSystem.accessCode.placeholder": "Введите пароль доступа",
-  "settingSystem.accessCode.title": "Пароль доступа",
   "settingSystem.oauth.info.desc": "Вы вошли в систему",
   "settingSystem.oauth.info.title": "Информация об аккаунте",
   "settingSystem.oauth.signin.action": "Войти",

package/locales/tr-TR/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Açılış Soruları",
   "settingOpening.title": "Açılış Ayarları",
   "settingPlugin.title": "Yetenek Listesi",
-  "settingSystem.accessCode.desc": "Şifreli erişim, yönetici tarafından etkinleştirilmiştir",
-  "settingSystem.accessCode.placeholder": "Erişim şifresini girin",
-  "settingSystem.accessCode.title": "Erişim Şifresi",
   "settingSystem.oauth.info.desc": "Giriş yapıldı",
   "settingSystem.oauth.info.title": "Hesap Bilgileri",
   "settingSystem.oauth.signin.action": "Giriş Yap",

package/locales/vi-VN/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "Câu Hỏi Mở Đầu",
   "settingOpening.title": "Cài Đặt Mở Đầu",
   "settingPlugin.title": "Danh Sách Kỹ Năng",
-  "settingSystem.accessCode.desc": "Mã truy cập được mã hóa do quản trị viên bật",
-  "settingSystem.accessCode.placeholder": "Nhập mật khẩu truy cập",
-  "settingSystem.accessCode.title": "Mật Khẩu Truy Cập",
   "settingSystem.oauth.info.desc": "Đã đăng nhập",
   "settingSystem.oauth.info.title": "Thông Tin Tài Khoản",
   "settingSystem.oauth.signin.action": "Đăng Nhập",

package/locales/zh-CN/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "开场问题",
   "settingOpening.title": "开场设置",
   "settingPlugin.title": "技能列表",
-  "settingSystem.accessCode.desc": "管理员已开启加密访问",
-  "settingSystem.accessCode.placeholder": "请输入访问密码",
-  "settingSystem.accessCode.title": "访问密码",
   "settingSystem.oauth.info.desc": "已登录",
   "settingSystem.oauth.info.title": "账户信息",
   "settingSystem.oauth.signin.action": "登录",

package/locales/zh-TW/setting.json

@@ -384,9 +384,6 @@
   "settingOpening.openingQuestions.title": "開場問題",
   "settingOpening.title": "開場設定",
   "settingPlugin.title": "插件列表",
-  "settingSystem.accessCode.desc": "管理員已開啟加密訪問",
-  "settingSystem.accessCode.placeholder": "請輸入訪問密碼",
-  "settingSystem.accessCode.title": "訪問密碼",
   "settingSystem.oauth.info.desc": "已登錄",
   "settingSystem.oauth.info.title": "帳戶資訊",
   "settingSystem.oauth.signin.action": "登錄",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lobehub/lobehub",
-  "version": "2.0.0-next.194",
+  "version": "2.0.0-next.196",
   "description": "LobeHub - an open-source,comprehensive AI Agent framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application.",
   "keywords": [
     "framework",

package/packages/const/src/fetch.ts

@@ -6,8 +6,6 @@ export const USE_AZURE_OPENAI = 'X-use-azure-openai';
 
 export const AZURE_OPENAI_API_VERSION = 'X-azure-openai-api-version';
 
-export const LOBE_CHAT_ACCESS_CODE = 'X-lobe-chat-access-code';
-
 export const OAUTH_AUTHORIZED = 'X-oauth-authorized';
 
 /**
@@ -16,7 +14,6 @@ export const OAUTH_AUTHORIZED = 'X-oauth-authorized';
 export const getOpenAIAuthFromRequest = (req: Request) => {
   const apiKey = req.headers.get(OPENAI_API_KEY_HEADER_KEY);
   const endpoint = req.headers.get(OPENAI_END_POINT);
-  const accessCode = req.headers.get(LOBE_CHAT_ACCESS_CODE);
   const useAzureStr = req.headers.get(USE_AZURE_OPENAI);
   const apiVersion = req.headers.get(AZURE_OPENAI_API_VERSION);
   const oauthAuthorizedStr = req.headers.get(OAUTH_AUTHORIZED);
@@ -25,5 +22,5 @@ export const getOpenAIAuthFromRequest = (req: Request) => {
   const oauthAuthorized = !!oauthAuthorizedStr;
   const useAzure = !!useAzureStr;
 
-  return { accessCode, apiKey, apiVersion, endpoint, oauthAuthorized, useAzure, userId };
+  return { apiKey, apiVersion, endpoint, oauthAuthorized, useAzure, userId };
 };

package/packages/database/src/models/user.ts

@@ -165,6 +165,14 @@ export class UserModel {
     return this.db.query.userSettings.findFirst({ where: eq(userSettings.id, this.userId) });
   };
 
+  getUserPreference = async (): Promise<UserPreference | undefined> => {
+    const user = await this.db.query.users.findFirst({
+      columns: { preference: true },
+      where: eq(users.id, this.userId),
+    });
+    return user?.preference as UserPreference | undefined;
+  };
+
   getUserSettingsDefaultAgentConfig = async () => {
     const result = await this.db
       .select({ defaultAgent: userSettings.defaultAgent })

package/packages/database/src/repositories/aiInfra/index.test.ts

@@ -6,10 +6,10 @@ import type {
 } from '@lobechat/types';
 import { AiProviderModelListItem, EnabledAiModel } from 'model-bank';
 import { DEFAULT_MODEL_PROVIDER_LIST } from 'model-bank/modelProviders';
-import { beforeEach, describe, expect, it, vi } from 'vitest';
-
-import { clientDB, initializeDB } from '@/database/client/db';
+import { beforeAll, beforeEach, describe, expect, it, vi } from 'vitest';
 
+import { getTestDB } from '../../models/__tests__/_util';
+import { LobeChatDatabase } from '../../type';
 import { AiInfraRepos } from './index';
 
 const userId = 'test-user-id';
@@ -18,15 +18,18 @@ const mockProviderConfigs = {
   anthropic: { enabled: false },
 };
 
+let serverDB: LobeChatDatabase;
 let repo: AiInfraRepos;
 
-beforeEach(async () => {
-  await initializeDB();
-  vi.clearAllMocks();
-
-  repo = new AiInfraRepos(clientDB as any, userId, mockProviderConfigs);
+beforeAll(async () => {
+  serverDB = await getTestDB();
 }, 30000);
 
+beforeEach(() => {
+  vi.clearAllMocks();
+  repo = new AiInfraRepos(serverDB, userId, mockProviderConfigs);
+});
+
 describe('AiInfraRepos', () => {
   describe('getAiProviderList', () => {
     it('should merge builtin and user providers correctly', async () => {

package/packages/database/src/repositories/dataExporter/index.test.ts

@@ -1,7 +1,6 @@
-import { afterEach, beforeEach, describe, expect, it, vi } from 'vitest';
-
-import { clientDB, initializeDB } from '@/database/client/db';
+import { afterEach, beforeAll, beforeEach, describe, expect, it, vi } from 'vitest';
 
+import { getTestDB } from '../../models/__tests__/_util';
 import {
   agents,
   agentsKnowledgeBases,
@@ -21,7 +20,7 @@ import {
 import { LobeChatDatabase } from '../../type';
 import { DATA_EXPORT_CONFIG, DataExporterRepos } from './index';
 
-let db = clientDB as LobeChatDatabase;
+let db: LobeChatDatabase;
 
 // 设置测试数据
 describe('DataExporterRepos', () => {
@@ -38,7 +37,11 @@ describe('DataExporterRepos', () => {
   };
 
   // 设置测试环境
-  let userId: string = testIds.userId;
+  const userId: string = testIds.userId;
+
+  beforeAll(async () => {
+    db = await getTestDB();
+  }, 30000);
 
   const setupTestData = async () => {
     await db.transaction(async (trx) => {
@@ -152,10 +155,9 @@ describe('DataExporterRepos', () => {
   };
 
   beforeEach(async () => {
-    // 创建内存数据库
-    await initializeDB();
-
-    // 插入测试数据
+    // 清理并插入测试数据
+    await db.delete(users);
+    await db.delete(globalFiles);
     await setupTestData();
   }, 30000);
 

package/packages/database/src/repositories/tableViewer/index.test.ts

@@ -1,11 +1,10 @@
-import { beforeEach, describe, expect, it, vi } from 'vitest';
-
-import { clientDB, initializeDB } from '@/database/client/db';
+import { beforeAll, beforeEach, describe, expect, it, vi } from 'vitest';
 
+import { getTestDB } from '../../models/__tests__/_util';
+import { LobeChatDatabase } from '../../type';
 import { TableViewerRepo } from './index';
 
 const userId = 'user-table-viewer';
-const repo = new TableViewerRepo(clientDB as any, userId);
 
 // Mock database execution
 const mockExecute = vi.fn();
@@ -13,20 +12,20 @@ const mockDB = {
   execute: mockExecute,
 };
 
-beforeEach(async () => {
-  await initializeDB();
-  vi.clearAllMocks();
+let serverDB: LobeChatDatabase;
+let repo: TableViewerRepo;
+
+beforeAll(async () => {
+  serverDB = await getTestDB();
+  repo = new TableViewerRepo(serverDB, userId);
 }, 30000);
 
+beforeEach(() => {
+  vi.clearAllMocks();
+});
+
 describe('TableViewerRepo', () => {
   describe('getAllTables', () => {
-    it('should return all tables with counts', async () => {
-      const result = await repo.getAllTables();
-
-      expect(result.length).toEqual(73);
-      expect(result[0]).toEqual({ name: 'accounts', count: 0, type: 'BASE TABLE' });
-    });
-
     it('should handle custom schema', async () => {
       const result = await repo.getAllTables('custom_schema');
       expect(result).toBeDefined();

package/packages/model-runtime/src/providers/zhipu/index.ts

@@ -29,7 +29,7 @@ export const params = {
               type: 'web_search',
               web_search: {
                 enable: true,
-                result_sequence: 'before', // 将搜索结果返回顺序更改为 before 适配最小化 OpenAIStream 改动
+                result_sequence: 'before', // Change search result return sequence to 'before' to minimize OpenAIStream modifications
                 search_engine: process.env.ZHIPU_SEARCH_ENGINE || 'search_std', // search_std, search_pro
                 search_result: true,
               },
@@ -69,16 +69,16 @@ export const params = {
       const readableStream =
         stream instanceof ReadableStream ? stream : convertIterableToStream(stream);
 
-      // GLM-4.5 系列模型在 tool_calls 中返回的 index 为 -1，需要在进入 OpenAIStream 之前修正
-      // 因为 OpenAIStream 内部会过滤掉 index < 0 的 tool_calls (openai.ts:58-60)
+      // GLM-4.5 series models return index -1 in tool_calls, needs to be fixed before entering OpenAIStream
+      // because OpenAIStream internally filters out tool_calls with index < 0 (openai.ts:58-60)
       const preprocessedStream = readableStream.pipeThrough(
         new TransformStream({
           transform(chunk, controller) {
-            // 处理原始的 OpenAI ChatCompletionChunk 格式
+            // Handle raw OpenAI ChatCompletionChunk format
             if (chunk.choices && chunk.choices[0]) {
               const choice = chunk.choices[0];
               if (choice.delta?.tool_calls && Array.isArray(choice.delta.tool_calls)) {
-                // 修正负数 index，将 -1 转换为基于数组位置的正数 index
+                // Fix negative index, convert -1 to positive index based on array position
                 const fixedToolCalls = choice.delta.tool_calls.map(
                   (toolCall: any, globalIndex: number) => ({
                     ...toolCall,
@@ -86,7 +86,7 @@ export const params = {
                   }),
                 );
 
-                // 创建修正后的 chunk
+                // Create fixed chunk
                 const fixedChunk = {
                   ...chunk,
                   choices: [

package/packages/types/src/auth.ts

@@ -1,9 +1,5 @@
 /* eslint-disable typescript-sort-keys/interface */
 export interface ClientSecretPayload {
-  /**
-   * password
-   */
-  accessCode?: string;
   /**
    * Represents the user's API key
    *

package/packages/utils/src/server/xor.test.ts

@@ -7,7 +7,6 @@ describe('getXorPayload', () => {
   it('should correctly decode XOR obfuscated payload with user data', () => {
     const originalPayload = {
       userId: '001362c3-48c5-4635-bd3b-837bfff58fc0',
-      accessCode: 'test-access-code',
       apiKey: 'test-api-key',
       baseURL: 'https://api.example.com',
     };
@@ -86,7 +85,7 @@ describe('getXorPayload', () => {
   it('should handle payload with undefined values', () => {
     const originalPayload = {
       userId: 'test-user',
-      accessCode: undefined,
+      baseURL: undefined,
       apiKey: 'test-key',
     };
 

package/src/app/(backend)/_deprecated/createBizOpenAI/auth.test.ts

@@ -1,53 +1,19 @@
 // @vitest-environment node
 import { checkAuth } from './auth';
 
-describe('ACCESS_CODE', () => {
-  let auth = false;
-
-  beforeEach(() => {
-    auth = false;
-    process.env.ACCESS_CODE = undefined;
-    // Reset environment variables before each test case
-    vi.restoreAllMocks();
-  });
-
-  it('set multiple access codes', () => {
-    process.env.ACCESS_CODE = ',code1,code2,code3';
-    ({ auth } = checkAuth({ accessCode: 'code1' }));
-    expect(auth).toBe(true);
-    ({ auth } = checkAuth({ accessCode: 'code2' }));
-    expect(auth).toBe(true);
-    ({ auth } = checkAuth({ accessCode: 'code1,code2' }));
-    expect(auth).toBe(false);
-  });
-
-  it('set individual access code', () => {
-    process.env.ACCESS_CODE = 'code1';
-    ({ auth } = checkAuth({ accessCode: 'code1' }));
+describe('checkAuth', () => {
+  it('should pass with oauth authorized', () => {
+    const { auth } = checkAuth({ oauthAuthorized: true });
     expect(auth).toBe(true);
-    ({ auth } = checkAuth({ accessCode: 'code2' }));
-    expect(auth).toBe(false);
   });
 
-  it('no access code', () => {
-    delete process.env.ACCESS_CODE;
-    ({ auth } = checkAuth({ accessCode: 'code1' }));
-    expect(auth).toBe(true);
-    ({ auth } = checkAuth({}));
+  it('should pass with api key', () => {
+    const { auth } = checkAuth({ apiKey: 'test-api-key' });
     expect(auth).toBe(true);
   });
 
-  it('empty access code', () => {
-    process.env.ACCESS_CODE = '';
-    ({ auth } = checkAuth({ accessCode: 'code1' }));
-    expect(auth).toBe(true);
-    ({ auth } = checkAuth({}));
-    expect(auth).toBe(true);
-
-    process.env.ACCESS_CODE = ',,';
-    ({ auth } = checkAuth({ accessCode: 'code1' }));
-    expect(auth).toBe(true);
-    ({ auth } = checkAuth({}));
+  it('should pass with no params', () => {
+    const { auth } = checkAuth({});
     expect(auth).toBe(true);
   });
 });

package/src/app/(backend)/_deprecated/createBizOpenAI/auth.ts

@@ -1,32 +1,18 @@
-import { ChatErrorType } from '@lobechat/types';
-
-import { getAppConfig } from '@/envs/app';
-
 interface AuthConfig {
-  accessCode?: string | null;
   apiKey?: string | null;
   oauthAuthorized?: boolean;
 }
 
-export const checkAuth = ({ apiKey, accessCode, oauthAuthorized }: AuthConfig) => {
+export const checkAuth = ({ apiKey, oauthAuthorized }: AuthConfig) => {
   // If authorized by oauth
   if (oauthAuthorized) {
     return { auth: true };
   }
 
-  const { ACCESS_CODES } = getAppConfig();
-
   // if apiKey exist
   if (apiKey) {
     return { auth: true };
   }
 
-  // if accessCode doesn't exist
-  if (!ACCESS_CODES.length) return { auth: true };
-
-  if (!accessCode || !ACCESS_CODES.includes(accessCode)) {
-    return { auth: false, error: ChatErrorType.InvalidAccessCode };
-  }
-
   return { auth: true };
 };