npm - @lobehub/lobehub - Versions diffs - 2.0.0-next.343 → 2.0.0-next.345 - Mend

@lobehub/lobehub 2.0.0-next.343 → 2.0.0-next.345

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (169) hide show

package/.cursor/rules/i18n.mdc +1 -1
package/.cursor/rules/modal-imperative.mdc +162 -0
package/.cursor/rules/rules-index.mdc +1 -0
package/.env.example +0 -14
package/.eslintrc.js +8 -1
package/CHANGELOG.md +66 -0
package/Dockerfile +3 -13
package/README.md +3 -5
package/README.zh-CN.md +3 -5
package/changelog/v1.json +24 -0
package/docs/self-hosting/advanced/auth/clerk-to-betterauth.mdx +11 -42
package/docs/self-hosting/advanced/auth/clerk-to-betterauth.zh-CN.mdx +10 -41
package/e2e/src/support/webServer.ts +2 -0
package/locales/ar/error.json +0 -4
package/locales/bg-BG/error.json +0 -4
package/locales/de-DE/error.json +0 -4
package/locales/en-US/error.json +0 -4
package/locales/es-ES/error.json +0 -4
package/locales/fa-IR/error.json +0 -4
package/locales/fr-FR/error.json +0 -4
package/locales/it-IT/error.json +0 -4
package/locales/ja-JP/error.json +0 -4
package/locales/ko-KR/error.json +0 -4
package/locales/nl-NL/error.json +0 -4
package/locales/pl-PL/error.json +0 -4
package/locales/pt-BR/error.json +0 -4
package/locales/ru-RU/error.json +0 -4
package/locales/tr-TR/error.json +0 -4
package/locales/vi-VN/error.json +0 -4
package/locales/zh-CN/error.json +0 -4
package/locales/zh-TW/error.json +0 -4
package/package.json +7 -9
package/packages/builtin-agents/package.json +2 -0
package/packages/builtin-agents/src/agents/agent-builder/index.ts +4 -2
package/packages/builtin-agents/src/agents/group-agent-builder/index.ts +4 -2
package/packages/builtin-agents/src/agents/page-agent/index.ts +5 -2
package/packages/builtin-tool-cloud-sandbox/src/ExecutionRuntime/index.ts +161 -12
package/packages/context-engine/src/engine/messages/MessagesEngine.ts +9 -9
package/packages/context-engine/src/providers/GroupContextInjector.ts +19 -33
package/packages/context-engine/src/providers/__tests__/GroupContextInjector.test.ts +79 -43
package/packages/context-engine/src/providers/__tests__/__snapshots__/GroupContextInjector.test.ts.snap +5 -15
package/packages/database/src/repositories/userMemory/__tests__/UserMemoryTopicRepository.test.ts +24 -3
package/packages/model-bank/src/modelProviders/comfyui.ts +0 -1
package/packages/model-bank/src/modelProviders/fal.ts +0 -1
package/packages/types/src/fetch.ts +1 -2
package/packages/utils/src/server/__tests__/auth.test.ts +0 -47
package/packages/utils/src/server/auth.ts +1 -9
package/scripts/_shared/checkDeprecatedClerkEnv.js +42 -0
package/scripts/changelogWorkflow/buildStaticChangelog.ts +2 -1
package/scripts/clerk-to-betterauth/_internal/types.ts +53 -20
package/scripts/clerk-to-betterauth/export-clerk-users-with-api.ts +43 -36
package/scripts/countEnWord.ts +1 -1
package/scripts/electronWorkflow/modifiers/appCode.mts +2 -131
package/scripts/i18nWorkflow/protectedPatterns.ts +1 -2
package/scripts/prebuild.mts +10 -8
package/scripts/serverLauncher/startServer.js +23 -5
package/src/app/(backend)/middleware/auth/index.test.ts +8 -4
package/src/app/(backend)/middleware/auth/index.ts +0 -15
package/src/app/(backend)/middleware/auth/utils.test.ts +0 -28
package/src/app/(backend)/middleware/auth/utils.ts +2 -17
package/src/app/(backend)/webapi/chat/[provider]/route.test.ts +3 -51
package/src/app/(backend)/webapi/models/[provider]/route.test.ts +8 -4
package/src/app/[variants]/(auth)/next-auth/signin/AuthSignInBox.tsx +7 -6
package/src/app/[variants]/(auth)/signup/[[...signup]]/page.tsx +1 -16
package/src/app/[variants]/(main)/home/_layout/Body/Agent/List/index.tsx +1 -1
package/src/app/[variants]/(main)/home/features/InputArea/SkillInstallBanner.tsx +13 -13
package/src/app/[variants]/(main)/home/features/RecentPage/Item.tsx +2 -2
package/src/app/[variants]/(main)/settings/hooks/useCategory.tsx +3 -21
package/src/app/[variants]/(main)/settings/profile/features/AvatarRow.tsx +1 -2
package/src/app/[variants]/(main)/settings/security/index.tsx +1 -22
package/src/app/[variants]/(main)/settings/skill/features/KlavisSkillItem.tsx +12 -14
package/src/app/[variants]/(main)/settings/skill/features/LobehubSkillItem.tsx +8 -14
package/src/app/[variants]/(main)/settings/skill/index.tsx +7 -5
package/src/app/[variants]/(mobile)/me/(home)/__tests__/UserBanner.test.tsx +2 -35
package/src/app/[variants]/(mobile)/me/(home)/__tests__/useCategory.test.tsx +0 -20
package/src/app/[variants]/(mobile)/me/(home)/features/UserBanner.tsx +1 -2
package/src/app/[variants]/(mobile)/me/profile/features/Category.tsx +3 -13
package/src/app/[variants]/(mobile)/settings/_layout/Header.tsx +2 -3
package/src/app/[variants]/share/t/[id]/_layout/index.tsx +1 -1
package/src/app/[variants]/share/t/[id]/index.tsx +1 -1
package/src/app/robots.tsx +1 -1
package/src/envs/auth.ts +2 -27
package/src/envs/llm.ts +2 -2
package/src/features/AgentSetting/AgentPlugin/index.tsx +9 -12
package/src/features/ChatInput/ActionBar/Tools/index.tsx +7 -5
package/src/features/ChatMiniMap/utils.ts +1 -1
package/src/features/CommandMenu/SearchResults.tsx +1 -1
package/src/features/Conversation/ChatList/components/AutoScroll/DebugInspector.tsx +166 -0
package/src/features/Conversation/ChatList/components/AutoScroll/index.tsx +86 -0
package/src/features/Conversation/ChatList/components/VirtualizedList.tsx +11 -17
package/src/features/Conversation/Messages/AgentCouncil/components/AutoScrollShadow.tsx +25 -14
package/src/features/Conversation/Messages/AgentCouncil/components/CouncilMember.tsx +1 -1
package/src/features/IntegrationDetailModal/IntegrationDetailContent.tsx +305 -0
package/src/features/IntegrationDetailModal/index.tsx +21 -283
package/src/features/MCPPluginDetail/Deployment/index.tsx +1 -1
package/src/features/MCPPluginDetail/Schema/Prompts.tsx +1 -1
package/src/features/MCPPluginDetail/Schema/Tools.tsx +1 -1
package/src/features/ProfileEditor/AgentTool.tsx +14 -20
package/src/features/ResourceManager/components/Explorer/MasonryView/MasonryFileItem/NoteFileItem.tsx +1 -1
package/src/features/SkillStore/LobeHubList/index.tsx +50 -87
package/src/features/SkillStore/Search/index.tsx +1 -1
package/src/features/SkillStore/{Content.tsx → SkillStoreContent.tsx} +3 -8
package/src/features/SkillStore/index.tsx +15 -33
package/src/features/User/UserPanel/PanelContent.tsx +0 -8
package/src/features/User/__tests__/PanelContent.test.tsx +1 -35
package/src/features/User/__tests__/UserAvatar.test.tsx +30 -57
package/src/features/User/__tests__/useMenu.test.tsx +2 -43
package/src/layout/AuthProvider/index.tsx +0 -5
package/src/libs/next/config/define-config.ts +6 -0
package/src/libs/next/proxy/createRouteMatcher.test.ts +121 -0
package/src/libs/next/proxy/createRouteMatcher.ts +18 -0
package/src/libs/next/proxy/define-config.ts +4 -53
package/src/libs/next-auth/adapter/index.ts +1 -2
package/src/libs/oidc-provider/provider.test.ts +5 -316
package/src/libs/trpc/lambda/context.test.ts +0 -13
package/src/libs/trpc/lambda/context.ts +3 -22
package/src/libs/trpc/middleware/userAuth.ts +2 -4
package/src/libs/trusted-client/getSessionUser.ts +2 -17
package/src/locales/default/error.ts +0 -6
package/src/locales/default/index.ts +0 -2
package/src/proxy.ts +0 -1
package/src/server/routers/lambda/__tests__/user.test.ts +0 -71
package/src/server/routers/lambda/user.ts +6 -63
package/src/server/services/changelog/index.test.ts +3 -2
package/src/server/services/changelog/index.ts +1 -1
package/src/server/services/user/index.ts +0 -83
package/src/services/chat/index.ts +1 -2
package/src/services/chat/mecha/agentConfigResolver.test.ts +43 -0
package/src/services/chat/mecha/agentConfigResolver.ts +3 -1
package/src/store/chat/slices/aiChat/actions/__tests__/streamingExecutor.test.ts +58 -14
package/src/store/chat/slices/aiChat/actions/streamingExecutor.ts +10 -2
package/src/store/user/slices/auth/action.test.ts +1 -81
package/src/store/user/slices/auth/action.ts +3 -28
package/src/store/user/slices/auth/initialState.ts +1 -18
package/src/store/user/slices/auth/selectors.test.ts +2 -127
package/src/store/user/slices/auth/selectors.ts +1 -21
package/src/utils/errorResponse.ts +1 -4
package/src/utils/markdownToTxt.ts +20 -0
package/locales/ar/clerk.json +0 -545
package/locales/bg-BG/clerk.json +0 -545
package/locales/de-DE/clerk.json +0 -545
package/locales/en-US/clerk.json +0 -545
package/locales/es-ES/clerk.json +0 -545
package/locales/fa-IR/clerk.json +0 -545
package/locales/fr-FR/clerk.json +0 -545
package/locales/it-IT/clerk.json +0 -545
package/locales/ja-JP/clerk.json +0 -545
package/locales/ko-KR/clerk.json +0 -545
package/locales/nl-NL/clerk.json +0 -545
package/locales/pl-PL/clerk.json +0 -545
package/locales/pt-BR/clerk.json +0 -545
package/locales/ru-RU/clerk.json +0 -545
package/locales/tr-TR/clerk.json +0 -545
package/locales/vi-VN/clerk.json +0 -545
package/locales/zh-CN/clerk.json +0 -545
package/locales/zh-TW/clerk.json +0 -545
package/src/app/(backend)/api/webhooks/clerk/__tests__/fixtures/createUser.json +0 -73
package/src/app/(backend)/api/webhooks/clerk/route.ts +0 -95
package/src/app/(backend)/api/webhooks/clerk/validateRequest.ts +0 -22
package/src/app/[variants]/(auth)/login/[[...login]]/page.tsx +0 -27
package/src/app/[variants]/(main)/settings/security/features/ClerkProfile.tsx +0 -67
package/src/features/Conversation/ChatList/components/AutoScroll.tsx +0 -25
package/src/layout/AuthProvider/Clerk/UserUpdater.tsx +0 -40
package/src/layout/AuthProvider/Clerk/index.tsx +0 -54
package/src/layout/AuthProvider/Clerk/useAppearance.ts +0 -133
package/src/libs/clerk-auth/index.test.ts +0 -216
package/src/libs/clerk-auth/index.ts +0 -80
package/src/locales/default/clerk.ts +0 -677
package/src/server/services/user/index.test.ts +0 -220

package/src/libs/next/proxy/createRouteMatcher.test.ts ADDED Viewed

@@ -0,0 +1,121 @@
+import { type NextRequest } from 'next/server';
+import { describe, expect, it } from 'vitest';
+import { createRouteMatcher } from './createRouteMatcher';
+// Helper to create a mock NextRequest with a given pathname
+const createMockRequest = (pathname: string): NextRequest =>
+  ({
+    nextUrl: { pathname },
+  }) as NextRequest;
+describe('createRouteMatcher', () => {
+  describe('exact path matching', () => {
+    it('should match exact paths', () => {
+      const matcher = createRouteMatcher(['/signin', '/signup']);
+      expect(matcher(createMockRequest('/signin'))).toBe(true);
+      expect(matcher(createMockRequest('/signup'))).toBe(true);
+      expect(matcher(createMockRequest('/login'))).toBe(false);
+    });
+    it('should not match partial paths without wildcard', () => {
+      const matcher = createRouteMatcher(['/api']);
+      expect(matcher(createMockRequest('/api'))).toBe(true);
+      expect(matcher(createMockRequest('/api/users'))).toBe(false);
+      expect(matcher(createMockRequest('/api/'))).toBe(false);
+    });
+  });
+  describe('wildcard pattern matching', () => {
+    it('should match paths with (.*) wildcard', () => {
+      const matcher = createRouteMatcher(['/api/auth(.*)']);
+      expect(matcher(createMockRequest('/api/auth'))).toBe(true);
+      expect(matcher(createMockRequest('/api/auth/'))).toBe(true);
+      expect(matcher(createMockRequest('/api/auth/callback'))).toBe(true);
+      expect(matcher(createMockRequest('/api/auth/callback/google'))).toBe(true);
+      expect(matcher(createMockRequest('/api/other'))).toBe(false);
+    });
+    it('should match /share(.*) pattern for public share pages', () => {
+      const matcher = createRouteMatcher(['/share(.*)']);
+      expect(matcher(createMockRequest('/share'))).toBe(true);
+      expect(matcher(createMockRequest('/share/'))).toBe(true);
+      expect(matcher(createMockRequest('/share/abc123'))).toBe(true);
+      expect(matcher(createMockRequest('/share/t/abc123'))).toBe(true);
+      // Note: /shared also matches because (.*) matches 'd' - use /share/(.*) for strict matching
+      expect(matcher(createMockRequest('/shared'))).toBe(true);
+    });
+    it('should match /trpc(.*) pattern', () => {
+      const matcher = createRouteMatcher(['/trpc(.*)']);
+      expect(matcher(createMockRequest('/trpc'))).toBe(true);
+      expect(matcher(createMockRequest('/trpc/user.get'))).toBe(true);
+      expect(matcher(createMockRequest('/trpc/chat.create'))).toBe(true);
+    });
+    it('should match /next-auth/(.*) pattern', () => {
+      const matcher = createRouteMatcher(['/next-auth/(.*)']);
+      expect(matcher(createMockRequest('/next-auth/'))).toBe(true);
+      expect(matcher(createMockRequest('/next-auth/signin'))).toBe(true);
+      expect(matcher(createMockRequest('/next-auth/callback/github'))).toBe(true);
+      expect(matcher(createMockRequest('/next-auth'))).toBe(false); // no trailing slash or path
+    });
+  });
+  describe('multiple patterns', () => {
+    it('should match any of multiple patterns', () => {
+      const matcher = createRouteMatcher(['/api/auth(.*)', '/signin', '/share(.*)']);
+      expect(matcher(createMockRequest('/api/auth/callback'))).toBe(true);
+      expect(matcher(createMockRequest('/signin'))).toBe(true);
+      expect(matcher(createMockRequest('/share/abc'))).toBe(true);
+      expect(matcher(createMockRequest('/other'))).toBe(false);
+    });
+  });
+  describe('special regex characters', () => {
+    it('should escape special regex characters in patterns', () => {
+      const matcher = createRouteMatcher(['/api/v1.0/users']);
+      expect(matcher(createMockRequest('/api/v1.0/users'))).toBe(true);
+      expect(matcher(createMockRequest('/api/v1X0/users'))).toBe(false); // . should not match any char
+    });
+    it('should handle patterns with multiple special characters', () => {
+      const matcher = createRouteMatcher(['/oauth/consent/(.*)']);
+      expect(matcher(createMockRequest('/oauth/consent/'))).toBe(true);
+      expect(matcher(createMockRequest('/oauth/consent/abc123'))).toBe(true);
+      expect(matcher(createMockRequest('/oauth/consent'))).toBe(false);
+    });
+  });
+  describe('edge cases', () => {
+    it('should handle root path', () => {
+      const matcher = createRouteMatcher(['/']);
+      expect(matcher(createMockRequest('/'))).toBe(true);
+      expect(matcher(createMockRequest('/anything'))).toBe(false);
+    });
+    it('should handle empty patterns array', () => {
+      const matcher = createRouteMatcher([]);
+      expect(matcher(createMockRequest('/'))).toBe(false);
+      expect(matcher(createMockRequest('/any/path'))).toBe(false);
+    });
+    it('should be case sensitive', () => {
+      const matcher = createRouteMatcher(['/API/auth(.*)']);
+      expect(matcher(createMockRequest('/API/auth/callback'))).toBe(true);
+      expect(matcher(createMockRequest('/api/auth/callback'))).toBe(false);
+    });
+  });
+});

package/src/libs/next/proxy/createRouteMatcher.ts ADDED Viewed

@@ -0,0 +1,18 @@
+import { type NextRequest } from 'next/server';
+/**
+ * Creates a route matcher function that checks if a request path matches any of the given patterns
+ * @param patterns Array of route patterns - supports `(.*)` as wildcard
+ * @returns Function that returns true if the request matches any pattern
+ */
+export function createRouteMatcher(patterns: string[]) {
+  const regexPatterns = patterns.map((pattern) => {
+    // Escape all special regex chars (including parentheses), then restore (.*) to wildcard
+    const regexStr = pattern
+      .replaceAll(/[$()*+.?[\\\]^{|}]/g, '\\$&')
+      .replaceAll('\\(\\.\\*\\)', '.*');
+    return new RegExp(`^${regexStr}$`);
+  });
+  return (req: NextRequest) => regexPatterns.some((regex) => regex.test(req.nextUrl.pathname));
+}

package/src/libs/next/proxy/define-config.ts CHANGED Viewed

@@ -1,4 +1,3 @@
-import { clerkMiddleware, createRouteMatcher } from '@clerk/nextjs/server';
 import debug from 'debug';
 import { type NextRequest, NextResponse } from 'next/server';
 import { UAParser } from 'ua-parser-js';
@@ -14,10 +13,11 @@ import { type Locales } from '@/locales/resources';
 import { parseBrowserLanguage } from '@/utils/locale';
 import { RouteVariants } from '@/utils/server/routeVariants';
+import { createRouteMatcher } from './createRouteMatcher';
 // Create debug logger instances
 const logDefault = debug('middleware:default');
 const logNextAuth = debug('middleware:next-auth');
-const logClerk = debug('middleware:clerk');
 const logBetterAuth = debug('middleware:better-auth');
 // OIDC session pre-sync constant
@@ -171,11 +171,9 @@ export function defineConfig() {
     '/trpc(.*)',
     // next auth
     '/next-auth/(.*)',
-    // clerk
-    '/login',
-    '/signup',
     // better auth
     '/signin',
+    '/signup',
     '/verify-email',
     '/reset-password',
     // oauth
@@ -253,48 +251,6 @@ export function defineConfig() {
     return response;
   });
-  const clerkAuthMiddleware = clerkMiddleware(
-    async (auth, req) => {
-      logClerk('Clerk middleware processing request: %s %s', req.method, req.url);
-      // when enable auth protection, only public route is not protected, others are all protected
-      const isProtected = appEnv.ENABLE_AUTH_PROTECTION
-        ? !isPublicRoute(req)
-        : isProtectedRoute(req);
-      logClerk('Route protection status: %s, %s', req.url, isProtected ? 'protected' : 'public');
-      if (isProtected) {
-        logClerk('Protecting route: %s', req.url);
-        await auth.protect();
-      }
-      const response = defaultMiddleware(req);
-      const data = await auth();
-      logClerk('Clerk auth status: %O', {
-        isSignedIn: !!data.userId,
-        userId: data.userId,
-      });
-      // If OIDC is enabled and Clerk user is logged in, add OIDC session pre-sync header
-      if (authEnv.ENABLE_OIDC && data.userId) {
-        logClerk('OIDC session pre-sync: Setting %s = %s', OIDC_SESSION_HEADER, data.userId);
-        response.headers.set(OIDC_SESSION_HEADER, data.userId);
-      } else if (authEnv.ENABLE_OIDC) {
-        logClerk('No Clerk user detected, not setting OIDC session sync header');
-      }
-      return response;
-    },
-    {
-      // https://github.com/lobehub/lobe-chat/pull/3084
-      clockSkewInMs: 60 * 60 * 1000,
-      signInUrl: '/login',
-      signUpUrl: '/signup',
-    },
-  );
   const betterAuthMiddleware = async (req: NextRequest) => {
     logBetterAuth('BetterAuth middleware processing request: %s %s', req.method, req.url);
@@ -343,16 +299,11 @@ export function defineConfig() {
   logDefault('Middleware configuration: %O', {
     enableAuthProtection: appEnv.ENABLE_AUTH_PROTECTION,
     enableBetterAuth: authEnv.NEXT_PUBLIC_ENABLE_BETTER_AUTH,
-    enableClerk: authEnv.NEXT_PUBLIC_ENABLE_CLERK_AUTH,
     enableNextAuth: authEnv.NEXT_PUBLIC_ENABLE_NEXT_AUTH,
     enableOIDC: authEnv.ENABLE_OIDC,
   });
   return {
-    middleware: authEnv.NEXT_PUBLIC_ENABLE_CLERK_AUTH
-      ? clerkAuthMiddleware
-      : authEnv.NEXT_PUBLIC_ENABLE_NEXT_AUTH
-        ? nextAuthMiddleware
-        : betterAuthMiddleware,
+    middleware: authEnv.NEXT_PUBLIC_ENABLE_NEXT_AUTH ? nextAuthMiddleware : betterAuthMiddleware,
   };
 }

package/src/libs/next-auth/adapter/index.ts CHANGED Viewed

@@ -23,8 +23,7 @@ interface BackendAdapterResponse {
 export const dateKeys = ['expires', 'emailVerified'];
 /**
- * @description LobeNextAuthDbAdapter is implemented to handle the database operations
- * for NextAuth, this function do the same things as `src/app/api/webhooks/clerk/route.ts`
+ * @description LobeNextAuthDbAdapter is implemented to handle the database operations for NextAuth
  * @returns {Adapter}
  */
 export function LobeNextAuthDbAdapter(): Adapter {

package/src/libs/oidc-provider/provider.test.ts CHANGED Viewed

@@ -6,7 +6,6 @@ import { afterEach, beforeEach, describe, expect, it, vi } from 'vitest';
 // Mock dependencies
 vi.mock('@/envs/auth', () => ({
   enableBetterAuth: false,
-  enableClerk: false,
   enableNextAuth: false,
 }));
@@ -38,280 +37,8 @@ describe('OIDC Provider - Market Client Integration', () => {
     vi.resetModules();
   });
-  describe('resolveClerkAccount', () => {
-    it('should return undefined when Clerk is disabled', async () => {
-      // Import with Clerk disabled
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: false,
-      }));
-      // Note: resolveClerkAccount is not exported, but we can test its behavior
-      // through the findAccount method with market client
-      // For now, we'll test the constants and basic setup
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-    });
-    it('should handle market client ID constant', () => {
-      // The MARKET_CLIENT_ID should match the client in config
-      expect(MARKET_CLIENT_ID).toBe('lobehub-market');
-    });
-  });
-  describe('resolveClerkAccount - with Clerk enabled', () => {
-    it('should resolve Clerk user with full profile', async () => {
-      const mockClerkUser = {
-        id: 'user_123',
-        fullName: 'John Doe',
-        firstName: 'John',
-        lastName: 'Doe',
-        username: 'johndoe',
-        imageUrl: 'https://example.com/avatar.jpg',
-        primaryEmailAddressId: 'email_1',
-        emailAddresses: [
-          {
-            id: 'email_1',
-            emailAddress: 'john@example.com',
-            verification: { status: 'verified' },
-          },
-        ],
-      };
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(mockClerkUser),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      // Import the provider module to access resolveClerkAccount behavior
-      const module = await import('./provider');
-      // Verify the module loads correctly
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should handle Clerk user with only username', async () => {
-      const mockClerkUser = {
-        id: 'user_123',
-        fullName: null,
-        firstName: null,
-        lastName: null,
-        username: 'johndoe',
-        imageUrl: null,
-        primaryEmailAddressId: 'email_1',
-        emailAddresses: [
-          {
-            id: 'email_1',
-            emailAddress: 'john@example.com',
-            verification: { status: 'verified' },
-          },
-        ],
-      };
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(mockClerkUser),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should handle Clerk user with firstName and lastName', async () => {
-      const mockClerkUser = {
-        id: 'user_123',
-        fullName: null,
-        firstName: 'John',
-        lastName: 'Doe',
-        username: null,
-        imageUrl: null,
-        primaryEmailAddressId: 'email_1',
-        emailAddresses: [
-          {
-            id: 'email_1',
-            emailAddress: 'john@example.com',
-            verification: { status: 'verified' },
-          },
-        ],
-      };
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(mockClerkUser),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should handle Clerk user not found', async () => {
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(null),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should handle Clerk API error', async () => {
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockRejectedValue(new Error('Clerk API error')),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should handle email without verification', async () => {
-      const mockClerkUser = {
-        id: 'user_123',
-        fullName: 'John Doe',
-        firstName: 'John',
-        lastName: 'Doe',
-        username: 'johndoe',
-        imageUrl: 'https://example.com/avatar.jpg',
-        primaryEmailAddressId: 'email_1',
-        emailAddresses: [
-          {
-            id: 'email_1',
-            emailAddress: 'john@example.com',
-            verification: null,
-          },
-        ],
-      };
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(mockClerkUser),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-    it('should use first email when no primary email is set', async () => {
-      const mockClerkUser = {
-        id: 'user_123',
-        fullName: 'John Doe',
-        firstName: 'John',
-        lastName: 'Doe',
-        username: 'johndoe',
-        imageUrl: 'https://example.com/avatar.jpg',
-        primaryEmailAddressId: null,
-        emailAddresses: [
-          {
-            id: 'email_2',
-            emailAddress: 'john.first@example.com',
-            verification: { status: 'verified' },
-          },
-          {
-            id: 'email_3',
-            emailAddress: 'john.second@example.com',
-            verification: { status: 'verified' },
-          },
-        ],
-      };
-      const mockClerkClient = {
-        users: {
-          getUser: vi.fn().mockResolvedValue(mockClerkUser),
-        },
-      };
-      vi.doMock('@/const/auth', () => ({
-        enableClerk: true,
-      }));
-      vi.doMock('@clerk/nextjs/server', () => ({
-        clerkClient: vi.fn().mockResolvedValue(mockClerkClient),
-      }));
-      const module = await import('./provider');
-      expect(module.API_AUDIENCE).toBe('urn:lobehub:chat');
-      vi.doUnmock('@/const/auth');
-      vi.doUnmock('@clerk/nextjs/server');
-    });
-  });
   describe('Market Client Logic', () => {
     it('should identify market client correctly', () => {
-      // The market client should route to Clerk resolution
       expect(MARKET_CLIENT_ID).toBe('lobehub-market');
     });
@@ -445,32 +172,7 @@ describe('OIDC Provider - Market Client Integration', () => {
   });
   describe('Business Logic Scenarios', () => {
-    describe('Scenario 1: Market Client + Clerk Authentication', () => {
-      it('should route market client to Clerk when enableClerk is true', () => {
-        // Business: When user accesses from marketplace, use Clerk for SSO
-        const scenario = {
-          client: 'lobehub-market',
-          authProvider: 'Clerk',
-          useCase: 'Marketplace SSO - users login via Clerk on marketplace',
-        };
-        expect(scenario.client).toBe(MARKET_CLIENT_ID);
-        expect(scenario.authProvider).toBe('Clerk');
-      });
-      it('should return undefined for market client when Clerk is disabled', () => {
-        // Business: Market requires Clerk, if disabled, auth fails
-        const scenario = {
-          client: 'lobehub-market',
-          clerkEnabled: false,
-          expectedResult: 'undefined (auth fails)',
-        };
-        expect(scenario.expectedResult).toBe('undefined (auth fails)');
-      });
-    });
-    describe('Scenario 2: Desktop Client + Local Database', () => {
+    describe('Scenario 1: Desktop Client + Local Database', () => {
       it('should use local UserModel for desktop client', () => {
         // Business: Desktop app uses local database for user management
         const scenario = {
@@ -484,7 +186,7 @@ describe('OIDC Provider - Market Client Integration', () => {
       });
     });
-    describe('Scenario 3: Mobile Client + Local Database', () => {
+    describe('Scenario 2: Mobile Client + Local Database', () => {
       it('should use local UserModel for mobile client', () => {
         // Business: Mobile app uses local database for user management
         const scenario = {
@@ -498,22 +200,9 @@ describe('OIDC Provider - Market Client Integration', () => {
       });
     });
-    describe('Scenario 4: Claims Generation by Client Type', () => {
-      it('should generate Clerk-based claims for market client', () => {
-        // Business: Market users get profile/email from Clerk
-        const marketClaims = {
-          source: 'Clerk API',
-          fields: ['sub', 'name', 'picture', 'email', 'email_verified'],
-          nameResolution: 'fullName || firstName+lastName || username || id',
-        };
-        expect(marketClaims.source).toBe('Clerk API');
-        expect(marketClaims.fields).toContain('name');
-        expect(marketClaims.fields).toContain('email');
-      });
-      it('should generate database-based claims for non-market clients', () => {
-        // Business: Desktop/Mobile users get profile/email from local DB
+    describe('Scenario 3: Claims Generation', () => {
+      it('should generate database-based claims for clients', () => {
+        // Business: Users get profile/email from local DB
         const localClaims = {
           source: 'UserModel (PostgreSQL/PGLite)',
           fields: ['sub', 'name', 'picture', 'email', 'email_verified'],

package/src/libs/trpc/lambda/context.test.ts CHANGED Viewed

@@ -8,7 +8,6 @@ describe('createContextInner', () => {
     expect(context).toMatchObject({
       authorizationHeader: undefined,
-      clerkAuth: undefined,
       marketAccessToken: undefined,
       nextAuth: undefined,
       oidcAuth: undefined,
@@ -59,18 +58,6 @@ describe('createContextInner', () => {
     expect(context.oidcAuth).toEqual(oidcAuth);
   });
-  it('should create context with Clerk auth data', async () => {
-    const clerkAuth = {
-      userId: 'clerk-user-id',
-      sessionId: 'session-id',
-      getToken: async () => 'clerk-token',
-    } as any;
-    const context = await createContextInner({ clerkAuth });
-    expect(context.clerkAuth).toBe(clerkAuth);
-  });
   it('should create context with NextAuth user data', async () => {
     const nextAuth = {
       id: 'next-auth-user-id',

package/src/libs/trpc/lambda/context.ts CHANGED Viewed

@@ -7,11 +7,10 @@ import { type NextRequest } from 'next/server';
 import {
   LOBE_CHAT_AUTH_HEADER,
   LOBE_CHAT_OIDC_AUTH_HEADER,
+  authEnv,
   enableBetterAuth,
-  enableClerk,
   enableNextAuth,
- authEnv } from '@/envs/auth';
-import { ClerkAuth, type IClerkAuth } from '@/libs/clerk-auth';
+} from '@/envs/auth';
 import { validateOIDCJWT } from '@/libs/oidc-provider/jwt';
 // Create context logger namespace
@@ -41,7 +40,6 @@ export interface OIDCAuth {
 export interface AuthContext {
   authorizationHeader?: string | null;
-  clerkAuth?: IClerkAuth;
   clientIp?: string | null;
   jwtPayload?: ClientSecretPayload | null;
   marketAccessToken?: string;
@@ -59,7 +57,6 @@ export interface AuthContext {
  */
 export const createContextInner = async (params?: {
   authorizationHeader?: string | null;
-  clerkAuth?: IClerkAuth;
   clientIp?: string | null;
   marketAccessToken?: string;
   nextAuth?: User;
@@ -72,7 +69,6 @@ export const createContextInner = async (params?: {
   return {
     authorizationHeader: params?.authorizationHeader,
-    clerkAuth: params?.clerkAuth,
     clientIp: params?.clientIp,
     marketAccessToken: params?.marketAccessToken,
     nextAuth: params?.nextAuth,
@@ -163,22 +159,7 @@ export const createLambdaContext = async (request: NextRequest): Promise<LambdaC
     }
   }
-  // If OIDC is not enabled or validation fails, try LobeChat custom Header and other authentication methods
-  if (enableClerk) {
-    log('Attempting Clerk authentication');
-    const clerkAuth = new ClerkAuth();
-    const result = clerkAuth.getAuthFromRequest(request);
-    auth = result.clerkAuth;
-    userId = result.userId;
-    log('Clerk authentication result, userId: %s', userId || 'not authenticated');
-    return createContextInner({
-      clerkAuth: auth,
-      ...commonContext,
-      userId,
-    });
-  }
+  // If OIDC is not enabled or validation fails, try other authentication methods
   if (enableBetterAuth) {
     log('Attempting Better Auth authentication');
     try {