feat: introduce custom provider example and remove redundant debug logs

- Added `examples/custom-provider/main.go` showcasing custom executor and translator integration using the SDK. - Removed redundant debug logs from translator modules to enhance code cleanliness. - Updated SDK documentation with new usage and advanced examples. - Expanded the management API with new endpoints, including request logging and GPT-5 Codex features.
2026-02-02 04:20:50 +08:00 · 2025-09-22 03:37:53 +08:00
parent d5ad5fab87
commit f81898c906
54 changed files with 907 additions and 101 deletions
--- a/MANAGEMENT_API.md
+++ b/MANAGEMENT_API.md
@@ -16,6 +16,10 @@ Note: The following options cannot be modified via API and must be set in the co
  - `Authorization: Bearer <plaintext-key>`
  - `X-Management-Key: <plaintext-key>`

+Additional notes:
+- If `remote-management.secret-key` is empty, the entire Management API is disabled (all `/v0/management` routes return 404).
+- For remote IPs, 5 consecutive authentication failures trigger a temporary ban (~30 minutes) before further attempts are allowed.
+
 If a plaintext key is detected in the config at startup, it will be bcrypt‑hashed and written back to the config file automatically.

 ## Request/Response Conventions
@@ -62,6 +66,29 @@ If a plaintext key is detected in the config at startup, it will be bcrypt‑has
    { "status": "ok" }
    ```

+### Force GPT-5 Codex
+- GET `/force-gpt-5-codex` — Get current flag
+  - Request:
+    ```bash
+    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/force-gpt-5-codex
+    ```
+  - Response:
+    ```json
+    { "gpt-5-codex": false }
+    ```
+- PUT/PATCH `/force-gpt-5-codex` — Set boolean
+  - Request:
+    ```bash
+    curl -X PUT -H 'Content-Type: application/json' \
+    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
+      -d '{"value":true}' \
+      http://localhost:8317/v0/management/force-gpt-5-codex
+    ```
+  - Response:
+    ```json
+    { "status": "ok" }
+    ```
+
 ### Proxy Server URL
 - GET `/proxy-url` — Get the proxy URL string
  - Request:
@@ -322,6 +349,29 @@ If a plaintext key is detected in the config at startup, it will be bcrypt‑has
    { "status": "ok" }
    ```

+### Request Log
+- GET `/request-log` — Get boolean
+  - Request:
+    ```bash
+    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/request-log
+    ```
+  - Response:
+    ```json
+    { "request-log": false }
+    ```
+- PUT/PATCH `/request-log` — Set boolean
+  - Request:
+    ```bash
+    curl -X PATCH -H 'Content-Type: application/json' \
+    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
+      -d '{"value":true}' \
+      http://localhost:8317/v0/management/request-log
+    ```
+  - Response:
+    ```json
+    { "status": "ok" }
+    ```
+
 ### Allow Localhost Unauthenticated
 - GET `/allow-localhost-unauthenticated` — Get boolean
  - Request:
@@ -564,6 +614,19 @@ These endpoints initiate provider login flows and return a URL to open in a brow
    { "status": "ok", "url": "https://..." }
    ```

+- GET `/get-auth-status?state=<state>` — Poll OAuth flow status
+  - Request:
+    ```bash
+    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
+      'http://localhost:8317/v0/management/get-auth-status?state=<STATE_FROM_AUTH_URL>'
+    ```
+  - Response examples:
+    ```json
+    { "status": "wait" }
+    { "status": "ok" }
+    { "status": "error", "error": "Authentication failed" }
+    ```
+
 ## Error Responses

 Generic error format: