ai-zero-token 1.0.8 → 1.0.10

package/dist/server/app.js

@@ -1,10 +1,58 @@
 #!/usr/bin/env node
 import { randomUUID } from "node:crypto";
+import fs from "node:fs/promises";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
 import Fastify from "fastify";
 import cors from "@fastify/cors";
 import { z } from "zod";
 import { createGatewayContext } from "../core/context.js";
+import { requestText } from "../core/providers/http-client.js";
 import { renderAdminPage } from "./admin-page.js";
+const packageRoot = path.dirname(fileURLToPath(new URL("../../package.json", import.meta.url)));
+const adminUiDistDir = path.join(packageRoot, "admin-ui", "dist");
+const adminUiIndexPath = path.join(adminUiDistDir, "index.html");
+const assetContentTypes = {
+  ".css": "text/css; charset=utf-8",
+  ".gif": "image/gif",
+  ".html": "text/html; charset=utf-8",
+  ".ico": "image/x-icon",
+  ".jpg": "image/jpeg",
+  ".jpeg": "image/jpeg",
+  ".js": "text/javascript; charset=utf-8",
+  ".json": "application/json; charset=utf-8",
+  ".map": "application/json; charset=utf-8",
+  ".png": "image/png",
+  ".svg": "image/svg+xml",
+  ".webp": "image/webp"
+};
+async function pathExists(targetPath) {
+  try {
+    await fs.access(targetPath);
+    return true;
+  } catch {
+    return false;
+  }
+}
+function getContentType(filePath) {
+  return assetContentTypes[path.extname(filePath).toLowerCase()] ?? "application/octet-stream";
+}
+async function readAdminUiAsset(assetPath) {
+  const normalized = path.normalize(assetPath).replace(/^(\.\.(\/|\\|$))+/, "");
+  const filePath = path.resolve(adminUiDistDir, normalized);
+  const root = path.resolve(adminUiDistDir);
+  if (!filePath.startsWith(`${root}${path.sep}`)) {
+    return null;
+  }
+  try {
+    return {
+      body: await fs.readFile(filePath),
+      filePath
+    };
+  } catch {
+    return null;
+  }
+}
 const inputPartSchema = z.object({
   type: z.string().optional(),
   text: z.string().optional()
@@ -72,8 +120,18 @@ const settingsUpdateSchema = z.object({
     enabled: z.boolean(),
     url: z.string().optional(),
     noProxy: z.string().optional()
+  }).optional(),
+  autoSwitch: z.object({
+    enabled: z.boolean()
   }).optional()
 });
+const proxyTestSchema = z.object({
+  networkProxy: z.object({
+    enabled: z.boolean(),
+    url: z.string().optional(),
+    noProxy: z.string().optional()
+  })
+});
 const profileActionSchema = z.object({
   profileId: z.string().min(1)
 });
@@ -372,6 +430,7 @@ function serializeProfile(profile) {
     accountId: profile.accountId,
     email: profile.email,
     quota: profile.quota,
+    authStatus: profile.authStatus,
     expiresAt: profile.expires,
     accessTokenPreview: maskSecret(profile.access),
     refreshTokenPreview: maskSecret(profile.refresh)
@@ -384,6 +443,7 @@ function serializeManagedProfile(profile) {
     accountId: profile.accountId,
     email: profile.email,
     quota: profile.quota,
+    authStatus: profile.authStatus,
     expiresAt: profile.expiresAt,
     accessTokenPreview: profile.accessTokenPreview,
     refreshTokenPreview: profile.refreshTokenPreview,
@@ -405,6 +465,10 @@ function getErrorStatusCode(error) {
   if (typeof normalized.statusCode === "number") {
     return normalized.statusCode;
   }
+  const upstreamStatus = normalized.upstreamStatus;
+  if (upstreamStatus === 401 || upstreamStatus === 403) {
+    return upstreamStatus;
+  }
   const message = normalized.message;
   if (message.includes("\u7F3A\u5C11") || message.includes("\u683C\u5F0F\u9519\u8BEF") || message.includes("\u672A\u5185\u7F6E\u6A21\u578B") || message.includes("\u4E0D\u652F\u6301") || message.includes("\u6CA1\u6709\u63D0\u4F9B")) {
     return 400;
@@ -495,9 +559,28 @@ function createApp(params) {
     };
   }
   app.get("/", async (_request, reply) => {
+    if (await pathExists(adminUiIndexPath)) {
+      reply.header("Content-Type", "text/html; charset=utf-8");
+      return fs.readFile(adminUiIndexPath, "utf8");
+    }
     reply.header("Content-Type", "text/html; charset=utf-8");
     return renderAdminPage();
   });
+  app.get("/assets/*", async (request, reply) => {
+    const assetPath = request.params["*"];
+    const asset = await readAdminUiAsset(path.join("assets", assetPath));
+    if (!asset) {
+      reply.code(404);
+      return {
+        error: {
+          type: "not_found",
+          message: "asset not found"
+        }
+      };
+    }
+    reply.header("Content-Type", getContentType(asset.filePath));
+    return asset.body;
+  });
   app.get("/favicon.ico", async (_request, reply) => {
     reply.code(204);
     return "";
@@ -516,15 +599,18 @@ function createApp(params) {
     };
   });
   app.post("/_gateway/admin/runtime-refresh", async (request) => {
-    await Promise.all([
-      ctx.authService.syncActiveProfileQuota("openai-codex", {
+    const [quotaSync] = await Promise.all([
+      ctx.authService.syncAllProfileQuotas("openai-codex", {
         suppressErrors: true
       }),
       ctx.versionService.getVersionStatus({
         force: true
       })
     ]);
-    return buildAdminConfig(request);
+    return {
+      ...await buildAdminConfig(request),
+      quotaSync
+    };
   });
   app.get("/_gateway/admin/config", async (request) => buildAdminConfig(request));
   app.post("/_gateway/admin/login", async (request) => {
@@ -551,12 +637,27 @@ function createApp(params) {
     }
     await ctx.authService.activateProfile(parsed.data.profileId);
     await ctx.authService.syncActiveProfileQuota("openai-codex", {
-      suppressErrors: true
+      suppressErrors: true,
+      skipAutoSwitch: true
     });
     return buildAdminConfig(request);
   });
-  app.post("/_gateway/admin/profiles/sync-quota", async (request) => {
-    await ctx.authService.syncActiveProfileQuota("openai-codex");
+  app.post("/_gateway/admin/profiles/sync-quota", async (request, reply) => {
+    const parsed = profileActionSchema.partial().safeParse(request.body ?? {});
+    if (!parsed.success) {
+      reply.code(400);
+      return {
+        error: {
+          type: "validation_error",
+          message: parsed.error.issues[0]?.message ?? "\u8BF7\u6C42\u4F53\u683C\u5F0F\u9519\u8BEF"
+        }
+      };
+    }
+    if (parsed.data.profileId) {
+      await ctx.authService.syncProfileQuota(parsed.data.profileId, "openai-codex");
+    } else {
+      await ctx.authService.syncActiveProfileQuota("openai-codex");
+    }
     return buildAdminConfig(request);
   });
   app.post("/_gateway/admin/profiles/remove", async (request, reply) => {
@@ -649,8 +750,61 @@ function createApp(params) {
     if (parsed.data.networkProxy) {
       await ctx.configService.setNetworkProxy(parsed.data.networkProxy);
     }
+    if (parsed.data.autoSwitch) {
+      await ctx.configService.setAutoSwitch(parsed.data.autoSwitch);
+    }
     return buildAdminConfig(request);
   });
+  app.post("/_gateway/admin/settings/proxy-test", async (request, reply) => {
+    const parsed = proxyTestSchema.safeParse(request.body);
+    if (!parsed.success) {
+      reply.code(400);
+      return {
+        error: {
+          type: "validation_error",
+          message: parsed.error.issues[0]?.message ?? "\u8BF7\u6C42\u4F53\u683C\u5F0F\u9519\u8BEF"
+        }
+      };
+    }
+    const proxy = {
+      enabled: parsed.data.networkProxy.enabled,
+      url: parsed.data.networkProxy.url?.trim() ?? "",
+      noProxy: parsed.data.networkProxy.noProxy?.trim() || "localhost,127.0.0.1,::1"
+    };
+    if (proxy.enabled && !proxy.url) {
+      reply.code(400);
+      return {
+        error: {
+          type: "validation_error",
+          message: "\u542F\u7528\u4EE3\u7406\u65F6\u5FC5\u987B\u586B\u5199\u4EE3\u7406\u5730\u5740\u3002"
+        }
+      };
+    }
+    const startedAt = performance.now();
+    try {
+      const response = await requestText({
+        method: "GET",
+        url: "https://chatgpt.com/",
+        timeoutMs: 8e3,
+        proxyOverride: proxy
+      });
+      return {
+        ok: response.status >= 200 && response.status < 500,
+        status: response.status,
+        elapsedMs: Math.round(performance.now() - startedAt),
+        target: "https://chatgpt.com/",
+        transport: response.transport
+      };
+    } catch (error) {
+      reply.code(502);
+      return {
+        error: {
+          type: "proxy_test_failed",
+          message: error instanceof Error ? error.message : String(error)
+        }
+      };
+    }
+  });
   app.get("/v1/models", async () => ({
     object: "list",
     data: (await ctx.modelService.listModels()).map((model) => ({

package/docs/DESKTOP_RELEASE.md

@@ -0,0 +1,64 @@
+# AI Zero Token Desktop Release
+
+This project ships the desktop app with Electron. The desktop main process starts the existing local Fastify gateway and loads the React management UI served by that gateway.
+
+## Build Commands
+
+```bash
+npm run build
+```
+
+Builds:
+
+- `admin-ui/dist`: React management UI
+- `dist`: TypeScript gateway, CLI, and Electron main process
+
+```bash
+npm run desktop
+```
+
+Runs the desktop app locally.
+
+```bash
+npm run dist:dir
+```
+
+Creates an unpacked desktop app for the current platform in `release/`.
+
+```bash
+npm run dist:mac
+npm run dist:win
+```
+
+Creates macOS and Windows distributables. macOS builds should be produced on macOS. Windows builds are best produced on Windows CI or a runner with a complete Windows packaging environment.
+
+## Signing
+
+Unsigned builds are suitable for internal testing only. Public commercial distribution should use platform signing:
+
+- macOS: Apple Developer ID Application certificate and notarization.
+- Windows: Authenticode code-signing certificate.
+
+`electron-builder` reads the standard signing environment variables. Configure these in CI instead of committing credentials to the repository.
+
+## Release Artifacts
+
+The packaged output is written to:
+
+```text
+release/
+```
+
+The folder is intentionally ignored by git.
+
+## App Resources
+
+App icon files live in:
+
+```text
+build/icon.png
+build/icon.icns
+build/icon.ico
+```
+
+They are included in Electron packaging and npm packing.