Fixed: #223

fix(registry): add `MiniMax-M2` model to registry definitions
Merge pull request #222 from router-for-me/api
2026-02-02 12:30:50 +08:00 · 2025-11-08 00:10:51 +08:00 · 2025-11-07 22:41:12 +08:00 · 2025-11-07 22:40:45 +08:00 · 2025-11-07 19:15:54 +08:00 · 2025-11-07 19:04:54 +08:00
18 changed files with 348 additions and 3231 deletions
--- a/.github/FUNDING.yml
+++ b/.github/FUNDING.yml
@@ -0,0 +1 @@
+github: [router-for-me]
--- a/.github/workflows/pr-path-guard.yml
+++ b/.github/workflows/pr-path-guard.yml
@@ -0,0 +1,28 @@
+name: translator-path-guard
+
+on:
+  pull_request:
+    types:
+      - opened
+      - synchronize
+      - reopened
+
+jobs:
+  ensure-no-translator-changes:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Detect internal/translator changes
+        id: changed-files
+        uses: tj-actions/changed-files@v45
+        with:
+          files: |
+            internal/translator/**
+      - name: Fail when restricted paths change
+        if: steps.changed-files.outputs.any_changed == 'true'
+        run: |
+          echo "Changes under internal/translator are not allowed in pull requests."
+          echo "You need to create an issue for our maintenance team to make the necessary changes."
+          exit 1
--- a/MANAGEMENT_API.md
+++ b/MANAGEMENT_API.md
@@ -1,753 +0,0 @@
-# Management API
-
-Base path: `http://localhost:8317/v0/management`
-
-This API manages the CLI Proxy API’s runtime configuration and authentication files. All changes are persisted to the YAML config file and hot‑reloaded by the service.
-
-Note: The following options cannot be modified via API and must be set in the config file (restart if needed):
- `allow-remote-management`
- `remote-management-key` (if plaintext is detected at startup, it is automatically bcrypt‑hashed and written back to the config)
-
-## Authentication
-
- All requests (including localhost) must provide a valid management key.
- Remote access requires enabling remote management in the config: `allow-remote-management: true`.
- Provide the management key (in plaintext) via either:
-  - `Authorization: Bearer <plaintext-key>`
-  - `X-Management-Key: <plaintext-key>`
-
-Additional notes:
- If `remote-management.secret-key` is empty, the entire Management API is disabled (all `/v0/management` routes return 404).
- For remote IPs, 5 consecutive authentication failures trigger a temporary ban (~30 minutes) before further attempts are allowed.
-
-If a plaintext key is detected in the config at startup, it will be bcrypt‑hashed and written back to the config file automatically.
-
-## Request/Response Conventions
-
- Content-Type: `application/json` (unless otherwise noted).
- Boolean/int/string updates: request body is `{ "value": <type> }`.
- Array PUT: either a raw array (e.g. `["a","b"]`) or `{ "items": [ ... ] }`.
- Array PATCH: supports `{ "old": "k1", "new": "k2" }` or `{ "index": 0, "value": "k2" }`.
- Object-array PATCH: supports matching by index or by key field (specified per endpoint).
-
-## Endpoints
-
-### Usage Statistics
- GET `/usage` — Retrieve aggregated in-memory request metrics
-  - Response:
-    ```json
-    {
-      "usage": {
-        "total_requests": 24,
-        "success_count": 22,
-        "failure_count": 2,
-        "total_tokens": 13890,
-        "requests_by_day": {
-          "2024-05-20": 12
-        },
-        "requests_by_hour": {
-          "09": 4,
-          "18": 8
-        },
-        "tokens_by_day": {
-          "2024-05-20": 9876
-        },
-        "tokens_by_hour": {
-          "09": 1234,
-          "18": 865
-        },
-        "apis": {
-          "POST /v1/chat/completions": {
-            "total_requests": 12,
-            "total_tokens": 9021,
-            "models": {
-              "gpt-4o-mini": {
-                "total_requests": 8,
-                "total_tokens": 7123,
-                "details": [
-                  {
-                    "timestamp": "2024-05-20T09:15:04.123456Z",
-                    "tokens": {
-                      "input_tokens": 523,
-                      "output_tokens": 308,
-                      "reasoning_tokens": 0,
-                      "cached_tokens": 0,
-                      "total_tokens": 831
-                    }
-                  }
-                ]
-              }
-            }
-          }
-        }
-      }
-    }
-    ```
-  - Notes:
-    - Statistics are recalculated for every request that reports token usage; data resets when the server restarts.
-    - Hourly counters fold all days into the same hour bucket (`00`–`23`).
-
-### Config
- GET `/config` — Get the full config
-    - Request:
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/config
-      ```
-    - Response:
-      ```json
-      {"debug":true,"proxy-url":"","api-keys":["1...5","JS...W"],"quota-exceeded":{"switch-project":true,"switch-preview-model":true},"gemini-api-key":[{"api-key":"AI...01","base-url":"https://generativelanguage.googleapis.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""},{"api-key":"AI...02","proxy-url":"socks5://proxy.example.com:1080"}],"request-log":true,"request-retry":3,"claude-api-key":[{"api-key":"cr...56","base-url":"https://example.com/api","proxy-url":"socks5://proxy.example.com:1080","models":[{"name":"claude-3-5-sonnet-20241022","alias":"claude-sonnet-latest"}]},{"api-key":"cr...e3","base-url":"http://example.com:3000/api","proxy-url":""},{"api-key":"sk-...q2","base-url":"https://example.com","proxy-url":""}],"codex-api-key":[{"api-key":"sk...01","base-url":"https://example/v1","proxy-url":""}],"openai-compatibility":[{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk...01","proxy-url":""}],"models":[{"name":"moonshotai/kimi-k2:free","alias":"kimi-k2"}]},{"name":"iflow","base-url":"https://apis.iflow.cn/v1","api-key-entries":[{"api-key":"sk...7e","proxy-url":"socks5://proxy.example.com:1080"}],"models":[{"name":"deepseek-v3.1","alias":"deepseek-v3.1"},{"name":"glm-4.5","alias":"glm-4.5"},{"name":"kimi-k2","alias":"kimi-k2"}]}]}
-      ```
-
-### Debug
- GET `/debug` — Get the current debug state
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/debug
-    ```
-  - Response:
-    ```json
-    { "debug": false }
-    ```
- PUT/PATCH `/debug` — Set debug (boolean)
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/debug
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Force GPT-5 Codex
- GET `/force-gpt-5-codex` — Get current flag
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/force-gpt-5-codex
-    ```
-  - Response:
-    ```json
-    { "gpt-5-codex": false }
-    ```
- PUT/PATCH `/force-gpt-5-codex` — Set boolean
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/force-gpt-5-codex
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Proxy Server URL
- GET `/proxy-url` — Get the proxy URL string
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/proxy-url
-    ```
-  - Response:
-    ```json
-    { "proxy-url": "socks5://user:pass@127.0.0.1:1080/" }
-    ```
- PUT/PATCH `/proxy-url` — Set the proxy URL string
-  - Request (PUT):
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":"socks5://user:pass@127.0.0.1:1080/"}' \
-      http://localhost:8317/v0/management/proxy-url
-    ```
-  - Request (PATCH):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":"http://127.0.0.1:8080"}' \
-      http://localhost:8317/v0/management/proxy-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/proxy-url` — Clear the proxy URL
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE http://localhost:8317/v0/management/proxy-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Quota Exceeded Behavior
- GET `/quota-exceeded/switch-project`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/quota-exceeded/switch-project
-    ```
-  - Response:
-    ```json
-    { "switch-project": true }
-    ```
- PUT/PATCH `/quota-exceeded/switch-project` — Boolean
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":false}' \
-      http://localhost:8317/v0/management/quota-exceeded/switch-project
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- GET `/quota-exceeded/switch-preview-model`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/quota-exceeded/switch-preview-model
-    ```
-  - Response:
-    ```json
-    { "switch-preview-model": true }
-    ```
- PUT/PATCH `/quota-exceeded/switch-preview-model` — Boolean
-  - Request:
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/quota-exceeded/switch-preview-model
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### API Keys (proxy service auth)
-These endpoints update the inline `config-api-key` provider inside the `auth.providers` section of the configuration. Legacy top-level `api-keys` remain in sync automatically.
- GET `/api-keys` — Return the full list
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/api-keys
-    ```
-  - Response:
-    ```json
-    { "api-keys": ["k1","k2","k3"] }
-    ```
- PUT `/api-keys` — Replace the full list
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '["k1","k2","k3"]' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/api-keys` — Modify one item (`old/new` or `index/value`)
-  - Request (by old/new):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"old":"k2","new":"k2b"}' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - Request (by index/value):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":"k1b"}' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/api-keys` — Delete one (`?value=` or `?index=`)
-  - Request (by value):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/api-keys?value=k1'
-    ```
-  - Request (by index):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/api-keys?index=0'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Gemini API Key
- GET `/gemini-api-key`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - Response:
-    ```json
-    {
-      "gemini-api-key": [
-        {"api-key":"AIzaSy...01","base-url":"https://generativelanguage.googleapis.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""},
-        {"api-key":"AIzaSy...02","proxy-url":"socks5://proxy.example.com:1080"}
-      ]
-    }
-    ```
- PUT `/gemini-api-key`
-  - Request (array form):
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '[{"api-key":"AIzaSy-1","headers":{"X-Custom-Header":"vendor-value"}},{"api-key":"AIzaSy-2","base-url":"https://custom.example.com"}]' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/gemini-api-key`
-  - Request (update by index):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":{"api-key":"AIzaSy-1","base-url":"https://custom.example.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""}}' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - Request (update by api-key match):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"match":"AIzaSy-1","value":{"api-key":"AIzaSy-1","headers":{"X-Custom-Header":"custom-value"},"proxy-url":"socks5://proxy.example.com:1080"}}' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/gemini-api-key`
-  - Request (by api-key):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE \
-      'http://localhost:8317/v0/management/gemini-api-key?api-key=AIzaSy-1'
-    ```
-  - Request (by index):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE \
-      'http://localhost:8317/v0/management/gemini-api-key?index=0'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Generative Language API Key (Legacy Alias)
- GET `/generative-language-api-key`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - Response:
-    ```json
-    { "generative-language-api-key": ["AIzaSy...01","AIzaSy...02"] }
-    ```
- PUT `/generative-language-api-key`
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '["AIzaSy-1","AIzaSy-2"]' \
-      http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/generative-language-api-key`
-  - Request:
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"old":"AIzaSy-1","new":"AIzaSy-1b"}' \
-      http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/generative-language-api-key`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/generative-language-api-key?value=AIzaSy-2'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- Notes:
-  - This endpoint mirrors the key-only view of `gemini-api-key`.
-
-### Codex API KEY (object array)
- GET `/codex-api-key` — List all
-    - Request:
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/codex-api-key
-      ```
-    - Response:
-      ```json
-      { "codex-api-key": [ { "api-key": "sk-a", "base-url": "", "proxy-url": "" } ] }
-      ```
- PUT `/codex-api-key` — Replace the list
-    - Request:
-      ```bash
-      curl -X PUT -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '[{"api-key":"sk-a","proxy-url":"socks5://proxy.example.com:1080"},{"api-key":"sk-b","base-url":"https://c.example.com","proxy-url":""}]' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - Response:
-      ```json
-      { "status": "ok" }
-      ```
- PATCH `/codex-api-key` — Modify one (by `index` or `match`)
-    - Request (by index):
-      ```bash
-      curl -X PATCH -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"index":1,"value":{"api-key":"sk-b2","base-url":"https://c.example.com","proxy-url":""}}' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - Request (by match):
-      ```bash
-      curl -X PATCH -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"match":"sk-a","value":{"api-key":"sk-a","base-url":"","proxy-url":"socks5://proxy.example.com:1080"}}' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - Response:
-      ```json
-      { "status": "ok" }
-      ```
- DELETE `/codex-api-key` — Delete one (`?api-key=` or `?index=`)
-    - Request (by api-key):
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/codex-api-key?api-key=sk-b2'
-      ```
-    - Request (by index):
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/codex-api-key?index=0'
-      ```
-    - Response:
-      ```json
-      { "status": "ok" }
-      ```
-
-### Request Retry Count
- GET `/request-retry` — Get integer
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/request-retry
-    ```
-  - Response:
-    ```json
-    { "request-retry": 3 }
-    ```
- PUT/PATCH `/request-retry` — Set integer
-  - Request:
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":5}' \
-      http://localhost:8317/v0/management/request-retry
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Request Log
- GET `/request-log` — Get boolean
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/request-log
-    ```
-  - Response:
-    ```json
-    { "request-log": false }
-    ```
- PUT/PATCH `/request-log` — Set boolean
-  - Request:
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/request-log
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Claude API KEY (object array)
- GET `/claude-api-key` — List all
-    - Request:
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/claude-api-key
-      ```
-    - Response:
-      ```json
-      { "claude-api-key": [ { "api-key": "sk-a", "base-url": "", "proxy-url": "" } ] }
-      ```
- PUT `/claude-api-key` — Replace the list
-    - Request:
-      ```bash
-      curl -X PUT -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '[{"api-key":"sk-a","proxy-url":"socks5://proxy.example.com:1080"},{"api-key":"sk-b","base-url":"https://c.example.com","proxy-url":""}]' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/claude-api-key` — Modify one (by `index` or `match`)
-  - Request (by index):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"index":1,"value":{"api-key":"sk-b2","base-url":"https://c.example.com","proxy-url":""}}' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - Request (by match):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"match":"sk-a","value":{"api-key":"sk-a","base-url":"","proxy-url":"socks5://proxy.example.com:1080"}}' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/claude-api-key` — Delete one (`?api-key=` or `?index=`)
-  - Request (by api-key):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/claude-api-key?api-key=sk-b2'
-    ```
-  - Request (by index):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/claude-api-key?index=0'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### OpenAI Compatibility Providers (object array)
- GET `/openai-compatibility` — List all
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - Response:
-    ```json
-    { "openai-compatibility": [ { "name": "openrouter", "base-url": "https://openrouter.ai/api/v1", "api-key-entries": [ { "api-key": "sk", "proxy-url": "" } ], "models": [] } ] }
-    ```
- PUT `/openai-compatibility` — Replace the list
-  - Request:
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '[{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[{"name":"m","alias":"a"}]}]' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/openai-compatibility` — Modify one (by `index` or `name`)
-  - Request (by name):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"name":"openrouter","value":{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[]}}' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - Request (by index):
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[]}}' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-  - Notes:
-    - Legacy `api-keys` input remains accepted; keys are migrated into `api-key-entries` automatically so the legacy field will eventually remain empty in responses.
- DELETE `/openai-compatibility` — Delete (`?name=` or `?index=`)
-  - Request (by name):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/openai-compatibility?name=openrouter'
-    ```
-  - Request (by index):
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/openai-compatibility?index=0'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
-### Auth File Management
-
-Manage JSON token files under `auth-dir`: list, download, upload, delete.
-
- GET `/auth-files` — List
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/auth-files
-    ```
-  - Response:
-    ```json
-    { "files": [ { "name": "acc1.json", "size": 1234, "modtime": "2025-08-30T12:34:56Z", "type": "google" } ] }
-    ```
-
- GET `/auth-files/download?name=<file.json>` — Download a single file
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -OJ 'http://localhost:8317/v0/management/auth-files/download?name=acc1.json'
-    ```
-
- POST `/auth-files` — Upload
-  - Request (multipart):
-    ```bash
-    curl -X POST -F 'file=@/path/to/acc1.json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/auth-files
-    ```
-  - Request (raw JSON):
-    ```bash
-    curl -X POST -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d @/path/to/acc1.json \
-      'http://localhost:8317/v0/management/auth-files?name=acc1.json'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
- DELETE `/auth-files?name=<file.json>` — Delete a single file
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/auth-files?name=acc1.json'
-    ```
-  - Response:
-    ```json
-    { "status": "ok" }
-    ```
-
- DELETE `/auth-files?all=true` — Delete all `.json` files under `auth-dir`
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/auth-files?all=true'
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "deleted": 3 }
-    ```
-
-### Login/OAuth URLs
-
-These endpoints initiate provider login flows and return a URL to open in a browser. Tokens are saved under `auths/` once the flow completes.
-
- GET `/anthropic-auth-url` — Start Anthropic (Claude) login
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/anthropic-auth-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/codex-auth-url` — Start Codex login
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/codex-auth-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/gemini-cli-auth-url` — Start Google (Gemini CLI) login
-  - Query params:
-    - `project_id` (optional): Google Cloud project ID.
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      'http://localhost:8317/v0/management/gemini-cli-auth-url?project_id=<PROJECT_ID>'
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/qwen-auth-url` — Start Qwen login (device flow)
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/qwen-auth-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/iflow-auth-url` — Start iFlow login
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/iflow-auth-url
-    ```
-  - Response:
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/get-auth-status?state=<state>` — Poll OAuth flow status
-  - Request:
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      'http://localhost:8317/v0/management/get-auth-status?state=<STATE_FROM_AUTH_URL>'
-    ```
-  - Response examples:
-    ```json
-    { "status": "wait" }
-    { "status": "ok" }
-    { "status": "error", "error": "Authentication failed" }
-    ```
-
-## Error Responses
-
-Generic error format:
- 400 Bad Request: `{ "error": "invalid body" }`
- 401 Unauthorized: `{ "error": "missing management key" }` or `{ "error": "invalid management key" }`
- 403 Forbidden: `{ "error": "remote management disabled" }`
- 404 Not Found: `{ "error": "item not found" }` or `{ "error": "file not found" }`
- 500 Internal Server Error: `{ "error": "failed to save config: ..." }`
-
-## Notes
-
- Changes are written back to the YAML config file and hot‑reloaded by the file watcher and clients.
- `allow-remote-management` and `remote-management-key` cannot be changed via the API; configure them in the config file.
--- a/MANAGEMENT_API_CN.md
+++ b/MANAGEMENT_API_CN.md
@@ -1,753 +0,0 @@
-# 管理 API
-
-基础路径：`http://localhost:8317/v0/management`
-
-该 API 用于管理 CLI Proxy API 的运行时配置与认证文件。所有变更会持久化写入 YAML 配置文件，并由服务自动热重载。
-
-注意：以下选项不能通过 API 修改，需在配置文件中设置（如有必要可重启）：
- `allow-remote-management`
- `remote-management-key`（若在启动时检测到明文，会自动进行 bcrypt 加密并写回配置）
-
-## 认证
-
- 所有请求（包括本地访问）都必须提供有效的管理密钥.
- 远程访问需要在配置文件中开启远程访问： `allow-remote-management: true`
- 通过以下任意方式提供管理密钥（明文）：
-  - `Authorization: Bearer <plaintext-key>`
-  - `X-Management-Key: <plaintext-key>`
-
-若在启动时检测到配置中的管理密钥为明文，会自动使用 bcrypt 加密并回写到配置文件中。
-
-其它说明：
- 若 `remote-management.secret-key` 为空，则管理 API 整体被禁用（所有 `/v0/management` 路由均返回 404）。
- 对于远程 IP，连续 5 次认证失败会触发临时封禁（约 30 分钟）。
-
-## 请求/响应约定
-
- Content-Type：`application/json`（除非另有说明）。
- 布尔/整数/字符串更新：请求体为 `{ "value": <type> }`。
- 数组 PUT：既可使用原始数组（如 `["a","b"]`），也可使用 `{ "items": [ ... ] }`。
- 数组 PATCH：支持 `{ "old": "k1", "new": "k2" }` 或 `{ "index": 0, "value": "k2" }`。
- 对象数组 PATCH：支持按索引或按关键字段匹配（各端点中单独说明）。
-
-## 端点说明
-
-### Usage（请求统计）
- GET `/usage` — 获取内存中的请求统计
-  - 响应：
-    ```json
-    {
-      "usage": {
-        "total_requests": 24,
-        "success_count": 22,
-        "failure_count": 2,
-        "total_tokens": 13890,
-        "requests_by_day": {
-          "2024-05-20": 12
-        },
-        "requests_by_hour": {
-          "09": 4,
-          "18": 8
-        },
-        "tokens_by_day": {
-          "2024-05-20": 9876
-        },
-        "tokens_by_hour": {
-          "09": 1234,
-          "18": 865
-        },
-        "apis": {
-          "POST /v1/chat/completions": {
-            "total_requests": 12,
-            "total_tokens": 9021,
-            "models": {
-              "gpt-4o-mini": {
-                "total_requests": 8,
-                "total_tokens": 7123,
-                "details": [
-                  {
-                    "timestamp": "2024-05-20T09:15:04.123456Z",
-                    "tokens": {
-                      "input_tokens": 523,
-                      "output_tokens": 308,
-                      "reasoning_tokens": 0,
-                      "cached_tokens": 0,
-                      "total_tokens": 831
-                    }
-                  }
-                ]
-              }
-            }
-          }
-        }
-      }
-    }
-    ```
-  - 说明：
-    - 仅统计带有 token 使用信息的请求，服务重启后数据会被清空。
-    - 小时维度会将所有日期折叠到 `00`–`23` 的统一小时桶中。
-
-### Config
- GET `/config` — 获取完整的配置
-    - 请求:
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/config
-      ```
-    - 响应:
-      ```json
-      {"debug":true,"proxy-url":"","api-keys":["1...5","JS...W"],"quota-exceeded":{"switch-project":true,"switch-preview-model":true},"gemini-api-key":[{"api-key":"AI...01","base-url":"https://generativelanguage.googleapis.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""},{"api-key":"AI...02","proxy-url":"socks5://proxy.example.com:1080"}],"request-log":true,"request-retry":3,"claude-api-key":[{"api-key":"cr...56","base-url":"https://example.com/api","proxy-url":"socks5://proxy.example.com:1080","models":[{"name":"claude-3-5-sonnet-20241022","alias":"claude-sonnet-latest"}]},{"api-key":"cr...e3","base-url":"http://example.com:3000/api","proxy-url":""},{"api-key":"sk-...q2","base-url":"https://example.com","proxy-url":""}],"codex-api-key":[{"api-key":"sk...01","base-url":"https://example/v1","proxy-url":""}],"openai-compatibility":[{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk...01","proxy-url":""}],"models":[{"name":"moonshotai/kimi-k2:free","alias":"kimi-k2"}]},{"name":"iflow","base-url":"https://apis.iflow.cn/v1","api-key-entries":[{"api-key":"sk...7e","proxy-url":"socks5://proxy.example.com:1080"}],"models":[{"name":"deepseek-v3.1","alias":"deepseek-v3.1"},{"name":"glm-4.5","alias":"glm-4.5"},{"name":"kimi-k2","alias":"kimi-k2"}]}]}
-      ```
-
-### Debug
- GET `/debug` — 获取当前 debug 状态
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/debug
-    ```
-  - 响应：
-    ```json
-    { "debug": false }
-    ```
- PUT/PATCH `/debug` — 设置 debug（布尔值）
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/debug
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### 强制 GPT-5 Codex
- GET `/force-gpt-5-codex` — 获取当前标志
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/force-gpt-5-codex
-    ```
-  - 响应：
-    ```json
-    { "gpt-5-codex": false }
-    ```
- PUT/PATCH `/force-gpt-5-codex` — 设置布尔值
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/force-gpt-5-codex
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### 代理服务器 URL
- GET `/proxy-url` — 获取代理 URL 字符串
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/proxy-url
-    ```
-  - 响应：
-    ```json
-    { "proxy-url": "socks5://user:pass@127.0.0.1:1080/" }
-    ```
- PUT/PATCH `/proxy-url` — 设置代理 URL 字符串
-  - 请求（PUT）：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":"socks5://user:pass@127.0.0.1:1080/"}' \
-      http://localhost:8317/v0/management/proxy-url
-    ```
-  - 请求（PATCH）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":"http://127.0.0.1:8080"}' \
-      http://localhost:8317/v0/management/proxy-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/proxy-url` — 清空代理 URL
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE http://localhost:8317/v0/management/proxy-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### 超出配额行为
- GET `/quota-exceeded/switch-project`
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/quota-exceeded/switch-project
-    ```
-  - 响应：
-    ```json
-    { "switch-project": true }
-    ```
- PUT/PATCH `/quota-exceeded/switch-project` — 布尔值
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":false}' \
-      http://localhost:8317/v0/management/quota-exceeded/switch-project
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- GET `/quota-exceeded/switch-preview-model`
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/quota-exceeded/switch-preview-model
-    ```
-  - 响应：
-    ```json
-    { "switch-preview-model": true }
-    ```
- PUT/PATCH `/quota-exceeded/switch-preview-model` — 布尔值
-  - 请求：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/quota-exceeded/switch-preview-model
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### API Keys（代理服务认证）
-这些接口会更新配置中 `auth.providers` 内置的 `config-api-key` 提供方，旧版顶层 `api-keys` 会自动保持同步。
- GET `/api-keys` — 返回完整列表
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/api-keys
-    ```
-  - 响应：
-    ```json
-    { "api-keys": ["k1","k2","k3"] }
-    ```
- PUT `/api-keys` — 完整改写列表
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '["k1","k2","k3"]' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/api-keys` — 修改其中一个（`old/new` 或 `index/value`）
-  - 请求（按 old/new）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"old":"k2","new":"k2b"}' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - 请求（按 index/value）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":"k1b"}' \
-      http://localhost:8317/v0/management/api-keys
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/api-keys` — 删除其中一个（`?value=` 或 `?index=`）
-  - 请求（按值删除）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/api-keys?value=k1'
-    ```
-  - 请求（按索引删除）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/api-keys?index=0'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### Gemini API Key
- GET `/gemini-api-key`
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - 响应：
-    ```json
-    {
-      "gemini-api-key": [
-        {"api-key":"AIzaSy...01","base-url":"https://generativelanguage.googleapis.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""},
-        {"api-key":"AIzaSy...02","proxy-url":"socks5://proxy.example.com:1080"}
-      ]
-    }
-    ```
- PUT `/gemini-api-key`
-  - 请求（数组形式）：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '[{"api-key":"AIzaSy-1","headers":{"X-Custom-Header":"vendor-value"}},{"api-key":"AIzaSy-2","base-url":"https://custom.example.com"}]' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/gemini-api-key`
-  - 请求（按索引更新）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":{"api-key":"AIzaSy-1","base-url":"https://custom.example.com","headers":{"X-Custom-Header":"custom-value"},"proxy-url":""}}' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - 请求（按 api-key 匹配更新）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"match":"AIzaSy-1","value":{"api-key":"AIzaSy-1","headers":{"X-Custom-Header":"custom-value"},"proxy-url":"socks5://proxy.example.com:1080"}}' \
-      http://localhost:8317/v0/management/gemini-api-key
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/gemini-api-key`
-  - 请求（按 api-key 删除）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE \
-      'http://localhost:8317/v0/management/gemini-api-key?api-key=AIzaSy-1'
-    ```
-  - 请求（按索引删除）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE \
-      'http://localhost:8317/v0/management/gemini-api-key?index=0'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### Generative Language API Key（兼容接口）
- GET `/generative-language-api-key`
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - 响应：
-    ```json
-    { "generative-language-api-key": ["AIzaSy...01","AIzaSy...02"] }
-    ```
- PUT `/generative-language-api-key`
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '["AIzaSy-1","AIzaSy-2"]' \
-      http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/generative-language-api-key`
-  - 请求：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"old":"AIzaSy-1","new":"AIzaSy-1b"}' \
-      http://localhost:8317/v0/management/generative-language-api-key
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/generative-language-api-key`
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/generative-language-api-key?value=AIzaSy-2'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- 说明：
-  - 该接口只读写纯字符串列表，实际上会映射到 `gemini-api-key`。
-
-### Codex API KEY（对象数组）
- GET `/codex-api-key` — 列出全部
-    - 请求：
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/codex-api-key
-      ```
-    - 响应：
-      ```json
-      { "codex-api-key": [ { "api-key": "sk-a", "base-url": "", "proxy-url": "" } ] }
-      ```
- PUT `/codex-api-key` — 完整改写列表
-    - 请求：
-      ```bash
-      curl -X PUT -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '[{"api-key":"sk-a","proxy-url":"socks5://proxy.example.com:1080"},{"api-key":"sk-b","base-url":"https://c.example.com","proxy-url":""}]' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - 响应：
-      ```json
-      { "status": "ok" }
-      ```
- PATCH `/codex-api-key` — 修改其中一个（按 `index` 或 `match`）
-    - 请求（按索引）：
-      ```bash
-      curl -X PATCH -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"index":1,"value":{"api-key":"sk-b2","base-url":"https://c.example.com","proxy-url":""}}' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - 请求（按匹配）：
-      ```bash
-      curl -X PATCH -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"match":"sk-a","value":{"api-key":"sk-a","base-url":"","proxy-url":"socks5://proxy.example.com:1080"}}' \
-        http://localhost:8317/v0/management/codex-api-key
-      ```
-    - 响应：
-      ```json
-      { "status": "ok" }
-      ```
- DELETE `/codex-api-key` — 删除其中一个（`?api-key=` 或 `?index=`）
-    - 请求（按 api-key）：
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/codex-api-key?api-key=sk-b2'
-      ```
-    - 请求（按索引）：
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/codex-api-key?index=0'
-      ```
-    - 响应：
-      ```json
-      { "status": "ok" }
-      ```
-
-### 请求重试次数
- GET `/request-retry` — 获取整数
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/request-retry
-    ```
-  - 响应：
-    ```json
-    { "request-retry": 3 }
-    ```
- PUT/PATCH `/request-retry` — 设置整数
-  - 请求：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":5}' \
-      http://localhost:8317/v0/management/request-retry
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### 请求日志开关
- GET `/request-log` — 获取布尔值
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/request-log
-    ```
-  - 响应：
-    ```json
-    { "request-log": false }
-    ```
- PUT/PATCH `/request-log` — 设置布尔值
-  - 请求：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"value":true}' \
-      http://localhost:8317/v0/management/request-log
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### Claude API KEY（对象数组）
- GET `/claude-api-key` — 列出全部
-    - 请求：
-      ```bash
-      curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/claude-api-key
-      ```
-    - 响应：
-      ```json
-      { "claude-api-key": [ { "api-key": "sk-a", "base-url": "", "proxy-url": "" } ] }
-      ```
- PUT `/claude-api-key` — 完整改写列表
-    - 请求：
-      ```bash
-      curl -X PUT -H 'Content-Type: application/json' \
-      -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '[{"api-key":"sk-a","proxy-url":"socks5://proxy.example.com:1080"},{"api-key":"sk-b","base-url":"https://c.example.com","proxy-url":""}]' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/claude-api-key` — 修改其中一个（按 `index` 或 `match`）
-  - 请求（按索引）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"index":1,"value":{"api-key":"sk-b2","base-url":"https://c.example.com","proxy-url":""}}' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - 请求（按匹配）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-        -d '{"match":"sk-a","value":{"api-key":"sk-a","base-url":"","proxy-url":"socks5://proxy.example.com:1080"}}' \
-        http://localhost:8317/v0/management/claude-api-key
-      ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- DELETE `/claude-api-key` — 删除其中一个（`?api-key=` 或 `?index=`）
-  - 请求（按 api-key）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/claude-api-key?api-key=sk-b2'
-    ```
-  - 请求（按索引）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/claude-api-key?index=0'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### OpenAI 兼容提供商（对象数组）
- GET `/openai-compatibility` — 列出全部
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - 响应：
-    ```json
-    { "openai-compatibility": [ { "name": "openrouter", "base-url": "https://openrouter.ai/api/v1", "api-key-entries": [ { "api-key": "sk", "proxy-url": "" } ], "models": [] } ] }
-    ```
- PUT `/openai-compatibility` — 完整改写列表
-  - 请求：
-    ```bash
-    curl -X PUT -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '[{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[{"name":"m","alias":"a"}]}]' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
- PATCH `/openai-compatibility` — 修改其中一个（按 `index` 或 `name`）
-  - 请求（按名称）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"name":"openrouter","value":{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[]}}' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - 请求（按索引）：
-    ```bash
-    curl -X PATCH -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d '{"index":0,"value":{"name":"openrouter","base-url":"https://openrouter.ai/api/v1","api-key-entries":[{"api-key":"sk","proxy-url":""}],"models":[]}}' \
-      http://localhost:8317/v0/management/openai-compatibility
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-  - 说明：
-    - 仍可提交遗留的 `api-keys` 字段，但所有密钥会自动迁移到 `api-key-entries` 中，返回结果中的 `api-keys` 会逐步留空。
- DELETE `/openai-compatibility` — 删除（`?name=` 或 `?index=`）
-  - 请求（按名称）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/openai-compatibility?name=openrouter'
-    ```
-  - 请求（按索引）：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/openai-compatibility?index=0'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
-### 认证文件管理
-
-管理 `auth-dir` 下的 JSON 令牌文件：列出、下载、上传、删除。
-
- GET `/auth-files` — 列表
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' http://localhost:8317/v0/management/auth-files
-    ```
-  - 响应：
-    ```json
-    { "files": [ { "name": "acc1.json", "size": 1234, "modtime": "2025-08-30T12:34:56Z", "type": "google" } ] }
-    ```
-
- GET `/auth-files/download?name=<file.json>` — 下载单个文件
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -OJ 'http://localhost:8317/v0/management/auth-files/download?name=acc1.json'
-    ```
-
- POST `/auth-files` — 上传
-  - 请求（multipart）：
-    ```bash
-    curl -X POST -F 'file=@/path/to/acc1.json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/auth-files
-    ```
-  - 请求（原始 JSON）：
-    ```bash
-    curl -X POST -H 'Content-Type: application/json' \
-    -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      -d @/path/to/acc1.json \
-      'http://localhost:8317/v0/management/auth-files?name=acc1.json'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
- DELETE `/auth-files?name=<file.json>` — 删除单个文件
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/auth-files?name=acc1.json'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok" }
-    ```
-
- DELETE `/auth-files?all=true` — 删除 `auth-dir` 下所有 `.json` 文件
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' -X DELETE 'http://localhost:8317/v0/management/auth-files?all=true'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "deleted": 3 }
-    ```
-
-### 登录/授权 URL
-
-以下端点用于发起各提供商的登录流程，并返回需要在浏览器中打开的 URL。流程完成后，令牌会保存到 `auths/` 目录。
-
- GET `/anthropic-auth-url` — 开始 Anthropic（Claude）登录
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/anthropic-auth-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/codex-auth-url` — 开始 Codex 登录
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/codex-auth-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/gemini-cli-auth-url` — 开始 Google（Gemini CLI）登录
-  - 查询参数：
-    - `project_id`（可选）：Google Cloud 项目 ID。
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      'http://localhost:8317/v0/management/gemini-cli-auth-url?project_id=<PROJECT_ID>'
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/qwen-auth-url` — 开始 Qwen 登录（设备授权流程）
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/qwen-auth-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/iflow-auth-url` — 开始 iFlow 登录
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      http://localhost:8317/v0/management/iflow-auth-url
-    ```
-  - 响应：
-    ```json
-    { "status": "ok", "url": "https://..." }
-    ```
-
- GET `/get-auth-status?state=<state>` — 轮询 OAuth 流程状态
-  - 请求：
-    ```bash
-    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
-      'http://localhost:8317/v0/management/get-auth-status?state=<STATE_FROM_AUTH_URL>'
-    ```
-  - 响应示例：
-    ```json
-    { "status": "wait" }
-    { "status": "ok" }
-    { "status": "error", "error": "Authentication failed" }
-    ```
-
-## 错误响应
-
-通用错误格式：
- 400 Bad Request: `{ "error": "invalid body" }`
- 401 Unauthorized: `{ "error": "missing management key" }` 或 `{ "error": "invalid management key" }`
- 403 Forbidden: `{ "error": "remote management disabled" }`
- 404 Not Found: `{ "error": "item not found" }` 或 `{ "error": "file not found" }`
- 500 Internal Server Error: `{ "error": "failed to save config: ..." }`
-
-## 说明
-
- 变更会写回 YAML 配置文件，并由文件监控器热重载配置与客户端。
- `allow-remote-management` 与 `remote-management-key` 不能通过 API 修改，需在配置文件中设置。
--- a/README.md
+++ b/README.md
@@ -8,9 +8,17 @@ It now also supports OpenAI Codex (GPT models) and Claude Code via OAuth.

 So you can use local or multi-account CLI access with OpenAI(include Responses)/Gemini/Claude-compatible clients and SDKs.

-Chinese providers have now been added: [Qwen Code](https://github.com/QwenLM/qwen-code), [iFlow](https://iflow.cn/).
+## Sponsor

-## Features
+[![z.ai](https://assets.router-for.me/english.png)](https://z.ai/subscribe?ic=8JVLJQFSKB)
+
+This project is sponsored by Z.ai, supporting us with their GLM CODING PLAN.
+
+GLM CODING PLAN is a subscription service designed for AI coding, starting at just $3/month. It provides access to their flagship GLM-4.6 model across 10+ popular AI coding tools (Claude Code, Cline, Roo Code, etc.), offering developers top-tier, fast, and stable coding experiences.
+
+Get 10% OFF GLM CODING PLAN：https://z.ai/subscribe?ic=8JVLJQFSKB
+
+## Overview

 - OpenAI/Gemini/Claude compatible API endpoints for CLI models
 - OpenAI Codex support (GPT models) via OAuth login
@@ -32,807 +40,13 @@ Chinese providers have now been added: [Qwen Code](https://github.com/QwenLM/qwe
 - OpenAI-compatible upstream providers via config (e.g., OpenRouter)
 - Reusable Go SDK for embedding the proxy (see `docs/sdk-usage.md`)

-## Installation
+## Getting Started

-### Prerequisites
-
- Go 1.24 or higher
- A Google account with access to Gemini CLI models (optional)
- An OpenAI account for Codex/GPT access (optional)
- An Anthropic account for Claude Code access (optional)
- A Qwen Chat account for Qwen Code access (optional)
- An iFlow account for iFlow access (optional)
-
-### Building from Source
-
-1. Clone the repository:
-   ```bash
-   git clone https://github.com/luispater/CLIProxyAPI.git
-   cd CLIProxyAPI
-   ```
-
-2. Build the application:
-   
-   Linux, macOS:
-   ```bash
-   go build -o cli-proxy-api ./cmd/server
-   ```
-   Windows: 
-   ```bash
-   go build -o cli-proxy-api.exe ./cmd/server
-   ```
-
-### Installation via Homebrew
-
-```bash
-brew install cliproxyapi
-brew services start cliproxyapi
-```
-
-### Installation via CLIProxyAPI Linux Installer
-
-```bash
-curl -fsSL https://raw.githubusercontent.com/brokechubb/cliproxyapi-installer/refs/heads/master/cliproxyapi-installer | bash
-```
-
-Thanks to [brokechubb](https://github.com/brokechubb) for building the Linux installer!
-
-## Usage
-
-### GUI Client & Official WebUI
-
-#### [EasyCLI](https://github.com/router-for-me/EasyCLI)
-
-A cross-platform desktop GUI client for CLIProxyAPI. 
-
-#### [Cli-Proxy-API-Management-Center](https://github.com/router-for-me/Cli-Proxy-API-Management-Center)
-
-A web-based management center for CLIProxyAPI.  
-
-Set `remote-management.disable-control-panel` to `true` if you prefer to host the management UI elsewhere; the server will skip downloading `management.html` and `/management.html` will return 404.
-
-You can set the `MANAGEMENT_STATIC_PATH` environment variable to choose the directory where `management.html` is stored.
-
-### Authentication
-
-You can authenticate for Gemini, OpenAI, Claude, Qwen, and/or iFlow. All can coexist in the same `auth-dir` and will be load balanced.
-
- Gemini (Google):
-  ```bash
-  ./cli-proxy-api --login
-  ```
-  If you are an existing Gemini Code user, you may need to specify a project ID:
-  ```bash
-  ./cli-proxy-api --login --project_id <your_project_id>
-  ```
-  The local OAuth callback uses port `8085`.
-
-  Options: add `--no-browser` to print the login URL instead of opening a browser. The local OAuth callback uses port `8085`.
-
- OpenAI (Codex/GPT via OAuth):
-  ```bash
-  ./cli-proxy-api --codex-login
-  ```
-  Options: add `--no-browser` to print the login URL instead of opening a browser. The local OAuth callback uses port `1455`.
-
- Claude (Anthropic via OAuth):
-  ```bash
-  ./cli-proxy-api --claude-login
-  ```
-  Options: add `--no-browser` to print the login URL instead of opening a browser. The local OAuth callback uses port `54545`.
-
- Qwen (Qwen Chat via OAuth):
-  ```bash
-  ./cli-proxy-api --qwen-login
-  ```
-  Options: add `--no-browser` to print the login URL instead of opening a browser. Use the Qwen Chat's OAuth device flow.
-
- iFlow (iFlow via OAuth):
-  ```bash
-  ./cli-proxy-api --iflow-login
-  ```
-  Options: add `--no-browser` to print the login URL instead of opening a browser. The local OAuth callback uses port `11451`.
-
-
-### Starting the Server
-
-Once authenticated, start the server:
-
-```bash
-./cli-proxy-api
-```
-
-By default, the server runs on port 8317.
-
-### API Endpoints
-
-#### List Models
-
-```
-GET http://localhost:8317/v1/models
-```
-
-#### Chat Completions
-
-```
-POST http://localhost:8317/v1/chat/completions
-```
-
-Request body example:
-
-```json
-{
-  "model": "gemini-2.5-pro",
-  "messages": [
-    {
-      "role": "user",
-      "content": "Hello, how are you?"
-    }
-  ],
-  "stream": true
-}
-```
-
-Notes:
- Use a `gemini-*` model for Gemini (e.g., "gemini-2.5-pro"), a `gpt-*` model for OpenAI (e.g., "gpt-5"), a `claude-*` model for Claude (e.g., "claude-3-5-sonnet-20241022"), a `qwen-*` model for Qwen (e.g., "qwen3-coder-plus"), or an iFlow-supported model (e.g., "tstars2.0", "deepseek-v3.1", "kimi-k2", etc.). The proxy will route to the correct provider automatically.
-
-#### Claude Messages (SSE-compatible)
-
-```
-POST http://localhost:8317/v1/messages
-```
-
-### Using with OpenAI Libraries
-
-You can use this proxy with any OpenAI-compatible library by setting the base URL to your local server:
-
-#### Python (with OpenAI library)
-
-```python
-from openai import OpenAI
-
-client = OpenAI(
-    api_key="dummy",  # Not used but required
-    base_url="http://localhost:8317/v1"
-)
-
-# Gemini example
-gemini = client.chat.completions.create(
-    model="gemini-2.5-pro",
-    messages=[{"role": "user", "content": "Hello, how are you?"}]
-)
-
-# Codex/GPT example
-gpt = client.chat.completions.create(
-    model="gpt-5",
-    messages=[{"role": "user", "content": "Summarize this project in one sentence."}]
-)
-
-# Claude example (using messages endpoint)
-import requests
-claude_response = requests.post(
-    "http://localhost:8317/v1/messages",
-    json={
-        "model": "claude-3-5-sonnet-20241022",
-        "messages": [{"role": "user", "content": "Summarize this project in one sentence."}],
-        "max_tokens": 1000
-    }
-)
-
-print(gemini.choices[0].message.content)
-print(gpt.choices[0].message.content)
-print(claude_response.json())
-```
-
-#### JavaScript/TypeScript
-
-```javascript
-import OpenAI from 'openai';
-
-const openai = new OpenAI({
-  apiKey: 'dummy', // Not used but required
-  baseURL: 'http://localhost:8317/v1',
-});
-
-// Gemini
-const gemini = await openai.chat.completions.create({
-  model: 'gemini-2.5-pro',
-  messages: [{ role: 'user', content: 'Hello, how are you?' }],
-});
-
-// Codex/GPT
-const gpt = await openai.chat.completions.create({
-  model: 'gpt-5',
-  messages: [{ role: 'user', content: 'Summarize this project in one sentence.' }],
-});
-
-// Claude example (using messages endpoint)
-const claudeResponse = await fetch('http://localhost:8317/v1/messages', {
-  method: 'POST',
-  headers: { 'Content-Type': 'application/json' },
-  body: JSON.stringify({
-    model: 'claude-3-5-sonnet-20241022',
-    messages: [{ role: 'user', content: 'Summarize this project in one sentence.' }],
-    max_tokens: 1000
-  })
-});
-
-console.log(gemini.choices[0].message.content);
-console.log(gpt.choices[0].message.content);
-console.log(await claudeResponse.json());
-```
-
-## Supported Models
-
- gemini-2.5-pro
- gemini-2.5-flash
- gemini-2.5-flash-lite
- gemini-2.5-flash-image
- gemini-2.5-flash-image-preview
- gemini-pro-latest
- gemini-flash-latest
- gemini-flash-lite-latest
- gpt-5
- gpt-5-codex
- claude-opus-4-1-20250805
- claude-opus-4-20250514
- claude-sonnet-4-20250514
- claude-sonnet-4-5-20250929
- claude-haiku-4-5-20251001
- claude-3-7-sonnet-20250219
- claude-3-5-haiku-20241022
- qwen3-coder-plus
- qwen3-coder-flash
- qwen3-max
- qwen3-vl-plus
- deepseek-v3.2
- deepseek-v3.1
- deepseek-r1
- deepseek-v3
- kimi-k2
- glm-4.6
- tstars2.0
- And other iFlow-supported models
- Gemini models auto-switch to preview variants when needed
-
-## Configuration
-
-The server uses a YAML configuration file (`config.yaml`) located in the project root directory by default. You can specify a different configuration file path using the `--config` flag:
-
-```bash
-./cli-proxy-api --config /path/to/your/config.yaml
-```
-
-### Configuration Options
-
-| Parameter                               | Type     | Default            | Description                                                                                                                                                                               |
-|-----------------------------------------|----------|--------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| `port`                                  | integer  | 8317               | The port number on which the server will listen.                                                                                                                                          |
-| `auth-dir`                              | string   | "~/.cli-proxy-api" | Directory where authentication tokens are stored. Supports using `~` for the home directory. If you use Windows, please set the directory like this: `C:/cli-proxy-api/`                  |
-| `proxy-url`                             | string   | ""                 | Proxy URL. Supports socks5/http/https protocols. Example: socks5://user:pass@192.168.1.1:1080/                                                                                            |
-| `request-retry`                         | integer  | 0                  | Number of times to retry a request. Retries will occur if the HTTP response code is 403, 408, 500, 502, 503, or 504.                                                                      |
-| `remote-management.allow-remote`        | boolean  | false              | Whether to allow remote (non-localhost) access to the management API. If false, only localhost can access. A management key is still required for localhost.                              |
-| `remote-management.secret-key`          | string   | ""                 | Management key. If a plaintext value is provided, it will be hashed on startup using bcrypt and persisted back to the config file. If empty, the entire management API is disabled (404). |
-| `remote-management.disable-control-panel` | boolean  | false              | When true, skip downloading `management.html` and return 404 for `/management.html`, effectively disabling the bundled management UI.                                                        |
-| `quota-exceeded`                        | object   | {}                 | Configuration for handling quota exceeded.                                                                                                                                                |
-| `quota-exceeded.switch-project`         | boolean  | true               | Whether to automatically switch to another project when a quota is exceeded.                                                                                                              |
-| `quota-exceeded.switch-preview-model`   | boolean  | true               | Whether to automatically switch to a preview model when a quota is exceeded.                                                                                                              |
-| `debug`                                 | boolean  | false              | Enable debug mode for verbose logging.                                                                                                                                                    |
-| `logging-to-file`                       | boolean  | true               | Write application logs to rotating files instead of stdout. Set to `false` to log to stdout/stderr.                                                                                      |
-| `usage-statistics-enabled`              | boolean  | true               | Enable in-memory usage aggregation for management APIs. Disable to drop all collected usage metrics.                                                                                    |
-| `api-keys`                              | string[] | []                 | Legacy shorthand for inline API keys. Values are mirrored into the `config-api-key` provider for backwards compatibility.                                                                 |
-| `gemini-api-key`                        | object[] | []                 | Gemini API key entries with optional per-key `base-url` and `proxy-url` overrides.                                                                                                       |
-| `gemini-api-key.*.api-key`              | string   | ""                 | Gemini API key.                                                                                                                                                                          |
-| `gemini-api-key.*.base-url`             | string   | ""                 | Optional Gemini API endpoint override.                                                                                                                                                   |
-| `gemini-api-key.*.headers`              | object   | {}                 | Optional extra HTTP headers sent to the overridden Gemini endpoint only.                                                                                                                 |
-| `gemini-api-key.*.proxy-url`            | string   | ""                 | Optional per-key proxy override for the Gemini API key.                                                                                                                                  |
-| `generative-language-api-key`           | string[] | []                 | (Legacy alias) View-only list mirrored from `gemini-api-key`. Writes through the legacy management endpoint update the underlying Gemini entries.          |
-| `codex-api-key`                                    | object   | {}                 | List of Codex API keys.                                                                                                                                                                   |
-| `codex-api-key.api-key`                            | string   | ""                 | Codex API key.                                                                                                                                                                            |
-| `codex-api-key.base-url`                           | string   | ""                 | Custom Codex API endpoint, if you use a third-party API endpoint.                                                                                                                         |
-| `codex-api-key.proxy-url`                          | string   | ""                 | Proxy URL for this specific API key. Overrides the global proxy-url setting. Supports socks5/http/https protocols.                                                                        |
-| `claude-api-key`                                   | object   | {}                 | List of Claude API keys.                                                                                                                                                                  |
-| `claude-api-key.api-key`                           | string   | ""                 | Claude API key.                                                                                                                                                                           |
-| `claude-api-key.base-url`                          | string   | ""                 | Custom Claude API endpoint, if you use a third-party API endpoint.                                                                                                                        |
-| `claude-api-key.proxy-url`                         | string   | ""                 | Proxy URL for this specific API key. Overrides the global proxy-url setting. Supports socks5/http/https protocols.                                                                        |
-| `claude-api-key.models`                            | object[] | []                 | Model alias entries for this key.                                                                                                                                                         |
-| `claude-api-key.models.*.name`                     | string   | ""                 | Upstream Claude model name invoked against the API.                                                                                                                                       |
-| `claude-api-key.models.*.alias`                    | string   | ""                 | Client-facing alias that maps to the upstream model name.                                                                                                                                 |
-| `openai-compatibility`                             | object[] | []                 | Upstream OpenAI-compatible providers configuration (name, base-url, api-keys, models).                                                                                                    |
-| `openai-compatibility.*.name`                      | string   | ""                 | The name of the provider. It will be used in the user agent and other places.                                                                                                             |
-| `openai-compatibility.*.base-url`                  | string   | ""                 | The base URL of the provider.                                                                                                                                                             |
-| `openai-compatibility.*.api-keys`                  | string[] | []                 | (Deprecated) The API keys for the provider. Use api-key-entries instead for per-key proxy support.                                                                                        |
-| `openai-compatibility.*.api-key-entries`           | object[] | []                 | API key entries with optional per-key proxy configuration. Preferred over api-keys.                                                                                                        |
-| `openai-compatibility.*.api-key-entries.*.api-key` | string   | ""                 | The API key for this entry.                                                                                                                                                               |
-| `openai-compatibility.*.api-key-entries.*.proxy-url` | string | ""                 | Proxy URL for this specific API key. Overrides the global proxy-url setting. Supports socks5/http/https protocols.                                                                      |
-| `openai-compatibility.*.models`                    | object[] | []                 | Model alias definitions routing client aliases to upstream names.                                                                                                                         |
-| `openai-compatibility.*.models.*.name`             | string   | ""                 | Upstream model name invoked against the provider.                                                                                                                                         |
-| `openai-compatibility.*.models.*.alias`            | string   | ""                 | Client alias routed to the upstream model.                                                                                                                                                |
-
-When `claude-api-key.models` is specified, only the provided aliases are registered in the model registry (mirroring OpenAI compatibility behaviour), and the default Claude catalog is suppressed for that credential.
-
-### Example Configuration File
-
-```yaml
-# Server port
-port: 8317
-
-# Management API settings
-remote-management:
-  # Whether to allow remote (non-localhost) management access.
-  # When false, only localhost can access management endpoints (a key is still required).
-  allow-remote: false
-
-  # Management key. If a plaintext value is provided here, it will be hashed on startup.
-  # All management requests (even from localhost) require this key.
-  # Leave empty to disable the Management API entirely (404 for all /v0/management routes).
-  secret-key: ""
-
-  # Disable the bundled management control panel asset download and HTTP route when true.
-  disable-control-panel: false
-
-# Authentication directory (supports ~ for home directory). If you use Windows, please set the directory like this: `C:/cli-proxy-api/`
-auth-dir: "~/.cli-proxy-api"
-
-# API keys for authentication
-api-keys:
-  - "your-api-key-1"
-  - "your-api-key-2"
-
-# Enable debug logging
-debug: false
-
-# When true, write application logs to rotating files instead of stdout
-logging-to-file: true
-
-# When false, disable in-memory usage statistics aggregation
-usage-statistics-enabled: true
-
-# Proxy URL. Supports socks5/http/https protocols. Example: socks5://user:pass@192.168.1.1:1080/
-proxy-url: ""
-
-# Number of times to retry a request. Retries will occur if the HTTP response code is 403, 408, 500, 502, 503, or 504.
-request-retry: 3
-
-# Quota exceeded behavior
-quota-exceeded:
-   switch-project: true # Whether to automatically switch to another project when a quota is exceeded
-   switch-preview-model: true # Whether to automatically switch to a preview model when a quota is exceeded
-
-# Gemini API keys
-gemini-api-key:
-  - api-key: "AIzaSy...01"
-    base-url: "https://generativelanguage.googleapis.com"
-    headers:
-      X-Custom-Header: "custom-value"
-    proxy-url: "socks5://proxy.example.com:1080"
-  - api-key: "AIzaSy...02"
-
-# Codex API keys
-codex-api-key:
-  - api-key: "sk-atSM..."
-    base-url: "https://www.example.com" # use the custom codex API endpoint
-    proxy-url: "socks5://proxy.example.com:1080" # optional: per-key proxy override
-
-# Claude API keys
-claude-api-key:
-  - api-key: "sk-atSM..." # use the official claude API key, no need to set the base url
-  - api-key: "sk-atSM..."
-    base-url: "https://www.example.com" # use the custom claude API endpoint
-    proxy-url: "socks5://proxy.example.com:1080" # optional: per-key proxy override
-
-# OpenAI compatibility providers
-openai-compatibility:
-  - name: "openrouter" # The name of the provider; it will be used in the user agent and other places.
-    base-url: "https://openrouter.ai/api/v1" # The base URL of the provider.
-    # New format with per-key proxy support (recommended):
-    api-key-entries:
-      - api-key: "sk-or-v1-...b780"
-        proxy-url: "socks5://proxy.example.com:1080" # optional: per-key proxy override
-      - api-key: "sk-or-v1-...b781" # without proxy-url
-    # Legacy format (still supported, but cannot specify proxy per key):
-    # api-keys:
-    #   - "sk-or-v1-...b780"
-    #   - "sk-or-v1-...b781"
-    models: # The models supported by the provider. Or you can use a format such as openrouter://moonshotai/kimi-k2:free to request undefined models
-      - name: "moonshotai/kimi-k2:free" # The actual model name.
-        alias: "kimi-k2" # The alias used in the API.
-```
-
-### Git-backed Configuration and Token Store
-
-The application can be configured to use a Git repository as a backend for storing both the `config.yaml` file and the authentication tokens from the `auth-dir`. This allows for centralized management and versioning of your configuration.
-
-To enable this feature, set the `GITSTORE_GIT_URL` environment variable to the URL of your Git repository.
-
-**Environment Variables**
-
-| Variable                | Required | Default                   | Description                                                                                             |
-|-------------------------|----------|---------------------------|---------------------------------------------------------------------------------------------------------|
-| `MANAGEMENT_PASSWORD`   | Yes      |                           | The password for management webui.                                                                      |
-| `GITSTORE_GIT_URL`      | Yes      |                           | The HTTPS URL of the Git repository to use.                                                             |
-| `GITSTORE_LOCAL_PATH`   | No       | Current working directory | The local path where the Git repository will be cloned. Inside Docker, this defaults to `/CLIProxyAPI`. |
-| `GITSTORE_GIT_USERNAME` | No       |                           | The username for Git authentication.                                                                    |
-| `GITSTORE_GIT_TOKEN`    | No       |                           | The personal access token (or password) for Git authentication.                                         |
-
-**How it Works**
-
-1.  **Cloning:** On startup, the application clones the remote Git repository to the `GITSTORE_LOCAL_PATH`.
-2.  **Configuration:** It then looks for a `config.yaml` inside a `config` directory within the cloned repository.
-3.  **Bootstrapping:** If `config/config.yaml` does not exist in the repository, the application will copy the local `config.example.yaml` to that location, commit, and push it to the remote repository as an initial configuration. You must have `config.example.yaml` available.
-4.  **Token Sync:** The `auth-dir` is also managed within this repository. Any changes to authentication tokens (e.g., through a new login) are automatically committed and pushed to the remote Git repository.
-
-### PostgreSQL-backed Configuration and Token Store
-
-You can also persist configuration and authentication data in PostgreSQL when running CLIProxyAPI in hosted environments that favor managed databases over local files.
-
-**Environment Variables**
-
-| Variable              | Required | Default               | Description                                                                                                   |
-|-----------------------|----------|-----------------------|---------------------------------------------------------------------------------------------------------------|
-| `MANAGEMENT_PASSWORD` | Yes      |                       | Password for the management web UI (required when remote management is enabled).                              |
-| `PGSTORE_DSN`         | Yes      |                       | PostgreSQL connection string (e.g. `postgresql://user:pass@host:5432/db`).                                     |
-| `PGSTORE_SCHEMA`      | No       | public                | Schema where the tables will be created. Leave empty to use the default schema.                                |
-| `PGSTORE_LOCAL_PATH`  | No       | Current working directory  | Root directory for the local mirror; the server writes to `<value>/pgstore`. If unset and CWD is unavailable, `/tmp/pgstore` is used. |
-
-**How it Works**
-
-1.  **Initialization:** On startup the server connects via `PGSTORE_DSN`, ensures the schema exists, and creates the `config_store` / `auth_store` tables when missing.
-2.  **Local Mirror:** A writable cache at `<PGSTORE_LOCAL_PATH or CWD>/pgstore` mirrors `config/config.yaml` and `auths/` so the rest of the application can reuse the existing file-based logic.
-3.  **Bootstrapping:** If no configuration row exists, `config.example.yaml` seeds the database using the fixed identifier `config`.
-4.  **Token Sync:** Changes flow both ways—file updates are written to PostgreSQL and database records are mirrored back to disk so watchers and management APIs continue to operate.
-
-### Object Storage-backed Configuration and Token Store
-
-An S3-compatible object storage service can host configuration and authentication records.
-
-**Environment Variables**
-
-| Variable                 | Required | Default                        | Description                                                                                                              |
-|--------------------------|----------|--------------------------------|--------------------------------------------------------------------------------------------------------------------------|
-| `MANAGEMENT_PASSWORD`    | Yes      |                                | Password for the management web UI (required when remote management is enabled).                                        |
-| `OBJECTSTORE_ENDPOINT`   | Yes      |                                | Object storage endpoint. Include `http://` or `https://` to force the protocol (omitted scheme → HTTPS).                |
-| `OBJECTSTORE_BUCKET`     | Yes      |                                | Bucket that stores `config/config.yaml` and `auths/*.json`.                                                             |
-| `OBJECTSTORE_ACCESS_KEY` | Yes      |                                | Access key ID for the object storage account.                                                                           |
-| `OBJECTSTORE_SECRET_KEY` | Yes      |                                | Secret key for the object storage account.                                                                              |
-| `OBJECTSTORE_LOCAL_PATH` | No       | Current working directory      | Root directory for the local mirror; the server writes to `<value>/objectstore`. If unset, defaults to current CWD.     |
-
-**How it Works**
-
-1. **Startup:** The endpoint is parsed (respecting any scheme prefix), a MinIO-compatible client is created in path-style mode, and the bucket is created when missing.
-2. **Local Mirror:** A writable cache at `<OBJECTSTORE_LOCAL_PATH or CWD>/objectstore` mirrors `config/config.yaml` and `auths/`.
-3. **Bootstrapping:** When `config/config.yaml` is absent in the bucket, the server copies `config.example.yaml`, uploads it, and uses it as the initial configuration.
-4. **Sync:** Changes to configuration or auth files are uploaded to the bucket, and remote updates are mirrored back to disk, keeping watchers and management APIs in sync.
-
-### OpenAI Compatibility Providers
-
-Configure upstream OpenAI-compatible providers (e.g., OpenRouter) via `openai-compatibility`.
-
- name: provider identifier used internally
- base-url: provider base URL
- api-key-entries: list of API key entries with optional per-key proxy configuration (recommended)
- api-keys: (deprecated) simple list of API keys without proxy support
- models: list of mappings from upstream model `name` to local `alias`
-
-Example with per-key proxy support:
-
-```yaml
-openai-compatibility:
-  - name: "openrouter"
-    base-url: "https://openrouter.ai/api/v1"
-    api-key-entries:
-      - api-key: "sk-or-v1-...b780"
-        proxy-url: "socks5://proxy.example.com:1080"
-      - api-key: "sk-or-v1-...b781"
-    models:
-      - name: "moonshotai/kimi-k2:free"
-        alias: "kimi-k2"
-```
-
-Usage: 
-
-Call OpenAI's endpoint `/v1/chat/completions` with `model` set to the alias (e.g., `kimi-k2`). The proxy routes to the configured provider/model automatically.
-
-And you can always use Gemini CLI with `CODE_ASSIST_ENDPOINT` set to `http://127.0.0.1:8317` for these OpenAI-compatible provider's models.
-
-### AI Studio Instructions
-
-You can use this service (CLIProxyAPI) as a backend for [this AI Studio App](https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL). Follow the steps below to configure it:
-
-1.  **Start the CLIProxyAPI Service**: Ensure your CLIProxyAPI instance is running, either locally or remotely.
-2.  **Access the AI Studio App**: Log in to your Google account in your browser, then open the following link:
-    - [https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL](https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL)
-
-#### Connection Configuration
-
-By default, the AI Studio App attempts to connect to a local CLIProxyAPI instance at `ws://127.0.0.1:8317`.
-
-   **Connecting to a Remote Service**:
-    If you need to connect to a remotely deployed CLIProxyAPI, modify the `config.ts` file in the AI Studio App to update the `WEBSOCKET_PROXY_URL` value.
-    -   Use the `wss://` protocol if your remote service has SSL enabled.
-    -   Use the `ws://` protocol if SSL is not enabled.
-
-#### Authentication Configuration
-
-By default, WebSocket connections to CLIProxyAPI do not require authentication.
-
-   **Enable Authentication on the CLIProxyAPI Server**:
-    In your `config.yaml` file, set `ws_auth` to `true`.
-   **Configure Authentication on the AI Studio Client**:
-    In the `config.ts` file of the AI Studio App, set the `JWT_TOKEN` value to your authentication token.
-
-### Authentication Directory
-
-The `auth-dir` parameter specifies where authentication tokens are stored. When you run the login command, the application will create JSON files in this directory containing the authentication tokens for your Google accounts. Multiple accounts can be used for load balancing.
-
-### Gemini API Configuration
-
-Use the `gemini-api-key` parameter to configure Gemini API keys. Each entry accepts optional `base-url`, `headers`, and `proxy-url` values; headers are only attached to requests sent to the overridden Gemini endpoint and are never forwarded to proxy servers. The legacy `generative-language-api-key` endpoint exposes a mirrored, key-only view for backwards compatibility—writes through that endpoint update the Gemini list but drop any per-key overrides, and the legacy field is no longer persisted in `config.yaml`.
-
-## Hot Reloading
-
-The server watches the config file and the `auth-dir` for changes and reloads clients and settings automatically. You can add or remove Gemini/OpenAI token JSON files while the server is running; no restart is required.
-
-## Gemini CLI with multiple account load balancing
-
-Start CLI Proxy API server, and then set the `CODE_ASSIST_ENDPOINT` environment variable to the URL of the CLI Proxy API server.
-
-```bash
-export CODE_ASSIST_ENDPOINT="http://127.0.0.1:8317"
-```
-
-The server will relay the `loadCodeAssist`, `onboardUser`, and `countTokens` requests. And automatically load balance the text generation requests between the multiple accounts.
-
-> [!NOTE]  
-> This feature only allows local access because there is currently no way to authenticate the requests.   
-> 127.0.0.1 is hardcoded for load balancing.
-
-## Claude Code with multiple account load balancing
-
-Start CLI Proxy API server, and then set the `ANTHROPIC_BASE_URL`, `ANTHROPIC_AUTH_TOKEN`, `ANTHROPIC_DEFAULT_OPUS_MODEL`, `ANTHROPIC_DEFAULT_SONNET_MODEL`, `ANTHROPIC_DEFAULT_HAIKU_MODEL` (or `ANTHROPIC_MODEL`, `ANTHROPIC_SMALL_FAST_MODEL` for version 1.x.x) environment variables.
-
-Using Gemini models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gemini-2.5-pro
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gemini-2.5-flash
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gemini-2.5-flash-lite
-# version 1.x.x
-export ANTHROPIC_MODEL=gemini-2.5-pro
-export ANTHROPIC_SMALL_FAST_MODEL=gemini-2.5-flash
-```
-
-Using OpenAI GPT 5 models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gpt-5-high
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gpt-5-medium
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gpt-5-minimal
-# version 1.x.x
-export ANTHROPIC_MODEL=gpt-5
-export ANTHROPIC_SMALL_FAST_MODEL=gpt-5-minimal
-```
-
-Using OpenAI GPT 5 Codex models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gpt-5-codex-high
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gpt-5-codex-medium
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gpt-5-codex-low
-# version 1.x.x
-export ANTHROPIC_MODEL=gpt-5-codex
-export ANTHROPIC_SMALL_FAST_MODEL=gpt-5-codex-low
-```
-
-Using Claude models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=claude-opus-4-1-20250805
-export ANTHROPIC_DEFAULT_SONNET_MODEL=claude-sonnet-4-5-20250929
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=claude-3-5-haiku-20241022
-# version 1.x.x
-export ANTHROPIC_MODEL=claude-sonnet-4-20250514
-export ANTHROPIC_SMALL_FAST_MODEL=claude-3-5-haiku-20241022
-```
-
-Using Qwen models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_SONNET_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=qwen3-coder-flash
-# version 1.x.x
-export ANTHROPIC_MODEL=qwen3-coder-plus
-export ANTHROPIC_SMALL_FAST_MODEL=qwen3-coder-flash
-```
-
-Using iFlow models:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# version 2.x.x
-export ANTHROPIC_DEFAULT_OPUS_MODEL=qwen3-max
-export ANTHROPIC_DEFAULT_SONNET_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=qwen3-235b-a22b-instruct
-# version 1.x.x
-export ANTHROPIC_MODEL=qwen3-max
-export ANTHROPIC_SMALL_FAST_MODEL=qwen3-235b-a22b-instruct
-```
-
-## Codex with multiple account load balancing
-
-Start CLI Proxy API server, and then edit the `~/.codex/config.toml` and `~/.codex/auth.json` files.
-
-config.toml:
-```toml
-model_provider = "cliproxyapi"
-model = "gpt-5-codex" # Or gpt-5, you can also use any of the models that we support.
-model_reasoning_effort = "high"
-
-[model_providers.cliproxyapi]
-name = "cliproxyapi"
-base_url = "http://127.0.0.1:8317/v1"
-wire_api = "responses"
-```
-
-auth.json:
-```json
-{
-  "OPENAI_API_KEY": "sk-dummy"
-}
-```
-
-## Run with Docker
-
-Run the following command to login (Gemini OAuth on port 8085): 
-
-```bash
-docker run --rm -p 8085:8085 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --login
-```
-
-Run the following command to login (OpenAI OAuth on port 1455):
-
-```bash
-docker run --rm -p 1455:1455 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --codex-login
-```
-
-Run the following command to logi (Claude OAuth on port 54545):
-
-```bash
-docker run -rm -p 54545:54545 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --claude-login
-```
-
-Run the following command to login (Qwen OAuth):
-
-```bash
-docker run -it -rm -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --qwen-login
-```
-
-Run the following command to login (iFlow OAuth on port 11451):
-
-```bash
-docker run --rm -p 11451:11451 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --iflow-login
-```
-
-Run the following command to start the server:
-
-```bash
-docker run --rm -p 8317:8317 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest
-```
-
-> [!NOTE]
-> To use the Git-backed configuration store with Docker, you can pass the `GITSTORE_*` environment variables using the `-e` flag. For example:
->
-> ```bash
-> docker run --rm -p 8317:8317 \
->   -e GITSTORE_GIT_URL="https://github.com/your/config-repo.git" \
->   -e GITSTORE_GIT_TOKEN="your_personal_access_token" \
->   -v /path/to/your/git-store:/CLIProxyAPI/remote \
->   eceasy/cli-proxy-api:latest
-> ```
-> In this case, you may not need to mount `config.yaml` or `auth-dir` directly, as they will be managed by the Git store inside the container at the `GITSTORE_LOCAL_PATH` (which defaults to `/CLIProxyAPI` and we are setting it to `/CLIProxyAPI/remote` in this example).
-
-## Run with Docker Compose
-
-1.  Clone the repository and navigate into the directory:
-    ```bash
-    git clone https://github.com/luispater/CLIProxyAPI.git
-    cd CLIProxyAPI
-    ```
-
-2.  Prepare the configuration file:
-    Create a `config.yaml` file by copying the example and customize it to your needs.
-    ```bash
-    cp config.example.yaml config.yaml
-    ```
-    *(Note for Windows users: You can use `copy config.example.yaml config.yaml` in CMD or PowerShell.)*
-
-    To use the Git-backed configuration store, you can add the `GITSTORE_*` environment variables to your `docker-compose.yml` file under the `cli-proxy-api` service definition. For example:
-    ```yaml
-    services:
-      cli-proxy-api:
-        image: eceasy/cli-proxy-api:latest
-        container_name: cli-proxy-api
-        ports:
-          - "8317:8317"
-          - "8085:8085"
-          - "1455:1455"
-          - "54545:54545"
-          - "11451:11451"
-        environment:
-          - GITSTORE_GIT_URL=https://github.com/your/config-repo.git
-          - GITSTORE_GIT_TOKEN=your_personal_access_token
-        volumes:
-          - ./git-store:/CLIProxyAPI/remote # GITSTORE_LOCAL_PATH
-        restart: unless-stopped
-    ```
-    When using the Git store, you may not need to mount `config.yaml` or `auth-dir` directly.
-
-3.  Start the service:
-    -   **For most users (recommended):**
-        Run the following command to start the service using the pre-built image from Docker Hub. The service will run in the background.
-        ```bash
-        docker compose up -d
-        ```
-    -   **For advanced users:**
-        If you have modified the source code and need to build a new image, use the interactive helper scripts:
-        -   For Windows (PowerShell):
-            ```powershell
-            .\docker-build.ps1
-            ```
-        -   For Linux/macOS:
-            ```bash
-            bash docker-build.sh
-            ```
-        The script will prompt you to choose how to run the application:
-        - **Option 1: Run using Pre-built Image (Recommended)**: Pulls the latest official image from the registry and starts the container. This is the easiest way to get started.
-        - **Option 2: Build from Source and Run (For Developers)**: Builds the image from the local source code, tags it as `cli-proxy-api:local`, and then starts the container. This is useful if you are making changes to the source code.
-
-4. To authenticate with providers, run the login command inside the container:
-    - **Gemini**: 
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --login
-    ```
-    - **OpenAI (Codex)**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --codex-login
-    ```
-    - **Claude**: 
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --claude-login
-    ```
-    - **Qwen**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --qwen-login
-    ```
-    - **iFlow**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --iflow-login
-    ```
-
-5.  To view the server logs:
-    ```bash
-    docker compose logs -f
-    ```
-
-6.  To stop the application:
-    ```bash
-    docker compose down
-    ```
+CLIProxyAPI Guides: [https://help.router-for.me/](https://help.router-for.me/)

 ## Management API

-see [MANAGEMENT_API.md](MANAGEMENT_API.md)
+see [MANAGEMENT_API.md](https://help.router-for.me/management/api)

 ## SDK Docs

--- a/README_CN.md
+++ b/README_CN.md
@@ -1,23 +1,3 @@
-# 写给所有中国网友的
-
-对于项目前期的确有很多用户使用上遇到各种各样的奇怪问题，大部分是因为配置或我说明文档不全导致的。
-
-对说明文档我已经尽可能的修补，有些重要的地方我甚至已经写到了打包的配置文件里。
-
-已经写在 README 中的功能，都是**可用**的，经过**验证**的，并且我自己**每天**都在使用的。
-
-可能在某些场景中使用上效果并不是很出色，但那基本上是模型和工具的原因，比如用 Claude Code 的时候，有的模型就无法正确使用工具，比如 Gemini，就在 Claude Code 和 Codex 的下使用的相当扭捏，有时能完成大部分工作，但有时候却只说不做。
-
-目前来说 Claude 和 GPT-5 是目前使用各种第三方CLI工具运用的最好的模型，我自己也是多个账号做均衡负载使用。
-
-实事求是的说，最初的几个版本我根本就没有中文文档，我至今所有文档也都是使用英文更新让后让 Gemini 翻译成中文的。但是无论如何都不会出现中文文档无法理解的问题。因为所有的中英文文档我都是再三校对，并且发现未及时更改的更新的地方都快速更新掉了。
-
-最后，烦请在发 Issue 之前请认真阅读这篇文档。
-
-另外中文需要交流的用户可以加 QQ 群：188637136
-
-或 Telegram 群：https://t.me/CLIProxyAPI
-
 # CLI 代理 API

 [English](README.md) | 中文
@@ -28,7 +8,15 @@

 您可以使用本地或多账户的CLI方式，通过任何与 OpenAI（包括Responses）/Gemini/Claude 兼容的客户端和SDK进行访问。

-现已新增国内提供商：[Qwen Code](https://github.com/QwenLM/qwen-code)、[iFlow](https://iflow.cn/)。
+## 赞助商
+
+[![bigmodel.cn](https://assets.router-for.me/chinese.png)](https://www.bigmodel.cn/claude-code?ic=RRVJPB5SII)
+
+本项目由 Z智谱 提供赞助, 他们通过 GLM CODING PLAN 对本项目提供技术支持。
+
+GLM CODING PLAN 是专为AI编码打造的订阅套餐，每月最低仅需20元，即可在十余款主流AI编码工具如 Claude Code、Cline、Roo Code 中畅享智谱旗舰模型GLM-4.6，为开发者提供顶尖的编码体验。
+
+智谱AI为本软件提供了特别优惠，使用以下链接购买可以享受九折优惠：https://www.bigmodel.cn/claude-code?ic=RRVJPB5SII

 ## 功能特性

@@ -52,799 +40,13 @@
 - 通过配置接入上游 OpenAI 兼容提供商（例如 OpenRouter）
 - 可复用的 Go SDK（见 `docs/sdk-usage_CN.md`）

-## 安装
+## 新手入门

-### 前置要求
-
- Go 1.24 或更高版本
- 有权访问 Gemini CLI 模型的 Google 账户（可选）
- 有权访问 OpenAI Codex/GPT 的 OpenAI 账户（可选）
- 有权访问 Claude Code 的 Anthropic 账户（可选）
- 有权访问 Qwen Code 的 Qwen Chat 账户（可选）
- 有权访问 iFlow 的 iFlow 账户（可选）
-
-### 从源码构建
-
-1. 克隆仓库：
-   ```bash
-   git clone https://github.com/luispater/CLIProxyAPI.git
-   cd CLIProxyAPI
-   ```
-
-2. 构建应用程序：
-   ```bash
-   go build -o cli-proxy-api ./cmd/server
-   ```
-
-### 通过 Homebrew 安装
-
-```bash
-brew install cliproxyapi
-brew services start cliproxyapi
-```
-
-### 通过 CLIProxyAPI Linux Installer 安装
-
-```bash
-curl -fsSL https://raw.githubusercontent.com/brokechubb/cliproxyapi-installer/refs/heads/master/cliproxyapi-installer | bash
-```
-
-感谢 [brokechubb](https://github.com/brokechubb) 构建了 Linux installer！
-
-## 使用方法
-
-### 图形客户端与官方 WebUI
-
-#### [EasyCLI](https://github.com/router-for-me/EasyCLI)
-
-CLIProxyAPI 的跨平台桌面图形客户端。
-
-#### [Cli-Proxy-API-Management-Center](https://github.com/router-for-me/Cli-Proxy-API-Management-Center)
-
-CLIProxyAPI 的基于 Web 的管理中心。
-
-如果希望自行托管管理页面，可在配置中将 `remote-management.disable-control-panel` 设为 `true`，服务器将停止下载 `management.html`，并让 `/management.html` 返回 404。
-
-可以通过设置环境变量 `MANAGEMENT_STATIC_PATH` 来指定 `management.html` 的存储目录。
-
-### 身份验证
-
-您可以分别为 Gemini、OpenAI、Claude、Qwen 和 iFlow 进行身份验证，它们可同时存在于同一个 `auth-dir` 中并参与负载均衡。
-
- Gemini（Google）：
-  ```bash
-  ./cli-proxy-api --login
-  ```
-  如果您是现有的 Gemini Code 用户，可能需要指定一个项目ID：
-  ```bash
-  ./cli-proxy-api --login --project_id <your_project_id>
-  ```
-  本地 OAuth 回调端口为 `8085`。
-
-  选项：加上 `--no-browser` 可打印登录地址而不自动打开浏览器。本地 OAuth 回调端口为 `8085`。
-
- OpenAI（Codex/GPT，OAuth）：
-  ```bash
-  ./cli-proxy-api --codex-login
-  ```
-  选项：加上 `--no-browser` 可打印登录地址而不自动打开浏览器。本地 OAuth 回调端口为 `1455`。
-
- Claude（Anthropic，OAuth）：
-  ```bash
-  ./cli-proxy-api --claude-login
-  ```
-  选项：加上 `--no-browser` 可打印登录地址而不自动打开浏览器。本地 OAuth 回调端口为 `54545`。
-
- Qwen（Qwen Chat，OAuth）：
-  ```bash
-  ./cli-proxy-api --qwen-login
-  ```
-  选项：加上 `--no-browser` 可打印登录地址而不自动打开浏览器。使用 Qwen Chat 的 OAuth 设备登录流程。
-
- iFlow（iFlow，OAuth）：
-  ```bash
-  ./cli-proxy-api --iflow-login
-  ```
-  选项：加上 `--no-browser` 可打印登录地址而不自动打开浏览器。本地 OAuth 回调端口为 `11451`。
-
-### 启动服务器
-
-身份验证完成后，启动服务器：
-
-```bash
-./cli-proxy-api
-```
-
-默认情况下，服务器在端口 8317 上运行。
-
-### API 端点
-
-#### 列出模型
-
-```
-GET http://localhost:8317/v1/models
-```
-
-#### 聊天补全
-
-```
-POST http://localhost:8317/v1/chat/completions
-```
-
-请求体示例：
-
-```json
-{
-  "model": "gemini-2.5-pro",
-  "messages": [
-    {
-      "role": "user",
-      "content": "你好，你好吗？"
-    }
-  ],
-  "stream": true
-}
-```
-
-说明：
- 使用 "gemini-*" 模型（例如 "gemini-2.5-pro"）来调用 Gemini，使用 "gpt-*" 模型（例如 "gpt-5"）来调用 OpenAI，使用 "claude-*" 模型（例如 "claude-3-5-sonnet-20241022"）来调用 Claude，使用 "qwen-*" 模型（例如 "qwen3-coder-plus"）来调用 Qwen，或者使用 iFlow 支持的模型（例如 "tstars2.0"、"deepseek-v3.1"、"kimi-k2" 等）来调用 iFlow。代理服务会自动将请求路由到相应的提供商。
-
-#### Claude 消息（SSE 兼容）
-
-```
-POST http://localhost:8317/v1/messages
-```
-
-### 与 OpenAI 库一起使用
-
-您可以通过将基础 URL 设置为本地服务器来将此代理与任何 OpenAI 兼容的库一起使用：
-
-#### Python（使用 OpenAI 库）
-
-```python
-from openai import OpenAI
-
-client = OpenAI(
-    api_key="dummy",  # 不使用但必需
-    base_url="http://localhost:8317/v1"
-)
-
-# Gemini 示例
-gemini = client.chat.completions.create(
-    model="gemini-2.5-pro",
-    messages=[{"role": "user", "content": "你好，你好吗？"}]
-)
-
-# Codex/GPT 示例
-gpt = client.chat.completions.create(
-    model="gpt-5",
-    messages=[{"role": "user", "content": "用一句话总结这个项目"}]
-)
-
-# Claude 示例（使用 messages 端点）
-import requests
-claude_response = requests.post(
-    "http://localhost:8317/v1/messages",
-    json={
-        "model": "claude-3-5-sonnet-20241022",
-        "messages": [{"role": "user", "content": "用一句话总结这个项目"}],
-        "max_tokens": 1000
-    }
-)
-
-print(gemini.choices[0].message.content)
-print(gpt.choices[0].message.content)
-print(claude_response.json())
-```
-
-#### JavaScript/TypeScript
-
-```javascript
-import OpenAI from 'openai';
-
-const openai = new OpenAI({
-  apiKey: 'dummy', // 不使用但必需
-  baseURL: 'http://localhost:8317/v1',
-});
-
-// Gemini
-const gemini = await openai.chat.completions.create({
-  model: 'gemini-2.5-pro',
-  messages: [{ role: 'user', content: '你好，你好吗？' }],
-});
-
-// Codex/GPT
-const gpt = await openai.chat.completions.create({
-  model: 'gpt-5',
-  messages: [{ role: 'user', content: '用一句话总结这个项目' }],
-});
-
-// Claude 示例（使用 messages 端点）
-const claudeResponse = await fetch('http://localhost:8317/v1/messages', {
-  method: 'POST',
-  headers: { 'Content-Type': 'application/json' },
-  body: JSON.stringify({
-    model: 'claude-3-5-sonnet-20241022',
-    messages: [{ role: 'user', content: '用一句话总结这个项目' }],
-    max_tokens: 1000
-  })
-});
-
-console.log(gemini.choices[0].message.content);
-console.log(gpt.choices[0].message.content);
-console.log(await claudeResponse.json());
-```
-
-## 支持的模型
-
- gemini-2.5-pro
- gemini-2.5-flash
- gemini-2.5-flash-lite
- gemini-2.5-flash-image
- gemini-2.5-flash-image-preview
- gemini-pro-latest
- gemini-flash-latest
- gemini-flash-lite-latest
- gpt-5
- gpt-5-codex
- claude-opus-4-1-20250805
- claude-opus-4-20250514
- claude-sonnet-4-20250514
- claude-sonnet-4-5-20250929
- claude-haiku-4-5-20251001
- claude-3-7-sonnet-20250219
- claude-3-5-haiku-20241022
- qwen3-coder-plus
- qwen3-coder-flash
- qwen3-max
- qwen3-vl-plus
- deepseek-v3.2
- deepseek-v3.1
- deepseek-r1
- deepseek-v3
- kimi-k2
- glm-4.6
- tstars2.0
- 以及其他 iFlow 支持的模型
- Gemini 模型在需要时自动切换到对应的 preview 版本
-
-## 配置
-
-服务器默认使用位于项目根目录的 YAML 配置文件（`config.yaml`）。您可以使用 `--config` 标志指定不同的配置文件路径：
-
-```bash
-  ./cli-proxy-api --config /path/to/your/config.yaml
-```
-
-### 配置选项
-
-| 参数                                      | 类型       | 默认值                | 描述                                                                  |
-|-----------------------------------------|----------|--------------------|---------------------------------------------------------------------|
-| `port`                                  | integer  | 8317               | 服务器将监听的端口号。                                                         |
-| `auth-dir`                              | string   | "~/.cli-proxy-api" | 存储身份验证令牌的目录。支持使用 `~` 来表示主目录。如果你使用Windows，建议设置成`C:/cli-proxy-api/`。  |
-| `proxy-url`                             | string   | ""                 | 代理URL。支持socks5/http/https协议。例如：socks5://user:pass@192.168.1.1:1080/ |
-| `request-retry`                         | integer  | 0                  | 请求重试次数。如果HTTP响应码为403、408、500、502、503或504，将会触发重试。                    |
-| `remote-management.allow-remote`        | boolean  | false              | 是否允许远程（非localhost）访问管理接口。为false时仅允许本地访问；本地访问同样需要管理密钥。               |
-| `remote-management.secret-key`          | string   | ""                 | 管理密钥。若配置为明文，启动时会自动进行bcrypt加密并写回配置文件。若为空，管理接口整体不可用（404）。             |
-| `remote-management.disable-control-panel` | boolean  | false              | 当为 true 时，不再下载 `management.html`，且 `/management.html` 会返回 404，从而禁用内置管理界面。             |
-| `quota-exceeded`                        | object   | {}                 | 用于处理配额超限的配置。                                                        |
-| `quota-exceeded.switch-project`         | boolean  | true               | 当配额超限时，是否自动切换到另一个项目。                                                |
-| `quota-exceeded.switch-preview-model`   | boolean  | true               | 当配额超限时，是否自动切换到预览模型。                                                 |
-| `debug`                                 | boolean  | false              | 启用调试模式以获取详细日志。                                                      |
-| `logging-to-file`                       | boolean  | true               | 是否将应用日志写入滚动文件；设为 false 时输出到 stdout/stderr。                           |
-| `usage-statistics-enabled`              | boolean  | true               | 是否启用内存中的使用统计；设为 false 时直接丢弃所有统计数据。                               |
-| `api-keys`                              | string[] | []                 | 兼容旧配置的简写，会自动同步到默认 `config-api-key` 提供方。                     |
-| `gemini-api-key`                        | object[] | []                 | Gemini API 密钥配置，支持为每个密钥设置可选的 `base-url` 与 `proxy-url`。         |
-| `gemini-api-key.*.api-key`              | string   | ""                 | Gemini API 密钥。                                                              |
-| `gemini-api-key.*.base-url`             | string   | ""                 | 可选的 Gemini API 端点覆盖地址。                                              |
-| `gemini-api-key.*.headers`              | object   | {}                 | 可选的额外 HTTP 头部，仅在访问覆盖后的 Gemini 端点时发送。                     |
-| `gemini-api-key.*.proxy-url`            | string   | ""                 | 可选的单独代理设置，会覆盖全局 `proxy-url`。                                   |
-| `generative-language-api-key`           | string[] | []                 | （兼容别名）旧管理接口返回的纯密钥列表。通过该接口写入会更新 `gemini-api-key`。 |
-| `codex-api-key`                                       | object   | {}                 | Codex API密钥列表。                                                      |
-| `codex-api-key.api-key`                               | string   | ""                 | Codex API密钥。                                                        |
-| `codex-api-key.base-url`                              | string   | ""                 | 自定义的Codex API端点                                                     |
-| `codex-api-key.proxy-url`                             | string   | ""                 | 针对该API密钥的代理URL。会覆盖全局proxy-url设置。支持socks5/http/https协议。                 |
-| `claude-api-key`                                      | object   | {}                 | Claude API密钥列表。                                                     |
-| `claude-api-key.api-key`                              | string   | ""                 | Claude API密钥。                                                       |
-| `claude-api-key.base-url`                             | string   | ""                 | 自定义的Claude API端点，如果您使用第三方的API端点。                                    |
-| `claude-api-key.proxy-url`                            | string   | ""                 | 针对该API密钥的代理URL。会覆盖全局proxy-url设置。支持socks5/http/https协议。                 |
-| `claude-api-key.models`                               | object[] | []                 | Model alias entries for this key.                                      |
-| `claude-api-key.models.*.name`                        | string   | ""                 | Upstream Claude model name invoked against the API.                    |
-| `claude-api-key.models.*.alias`                       | string   | ""                 | Client-facing alias that maps to the upstream model name.              |
-| `openai-compatibility`                                | object[] | []                 | 上游OpenAI兼容提供商的配置（名称、基础URL、API密钥、模型）。                                |
-| `openai-compatibility.*.name`                         | string   | ""                 | 提供商的名称。它将被用于用户代理（User Agent）和其他地方。                                  |
-| `openai-compatibility.*.base-url`                     | string   | ""                 | 提供商的基础URL。                                                          |
-| `openai-compatibility.*.api-keys`                     | string[] | []                 | (已弃用) 提供商的API密钥。建议改用api-key-entries以获得每密钥代理支持。                       |
-| `openai-compatibility.*.api-key-entries`              | object[] | []                 | API密钥条目，支持可选的每密钥代理配置。优先于api-keys。                                   |
-| `openai-compatibility.*.api-key-entries.*.api-key`    | string   | ""                 | 该条目的API密钥。                                                          |
-| `openai-compatibility.*.api-key-entries.*.proxy-url`  | string   | ""                 | 针对该API密钥的代理URL。会覆盖全局proxy-url设置。支持socks5/http/https协议。                 |
-| `openai-compatibility.*.models`                       | object[] | []                 | Model alias definitions routing client aliases to upstream names.      |
-| `openai-compatibility.*.models.*.name`                | string   | ""                 | Upstream model name invoked against the provider.                      |
-| `openai-compatibility.*.models.*.alias`               | string   | ""                 | Client alias routed to the upstream model.                             |
-
-When `claude-api-key.models` is provided, only the listed aliases are registered for that credential, and the default Claude model catalog is skipped.
-
-### 配置文件示例
-
-```yaml
-# 服务器端口
-port: 8317
-
-# 管理 API 设置
-remote-management:
-  # 是否允许远程（非localhost）访问管理接口。为false时仅允许本地访问（但本地访问同样需要管理密钥）。
-  allow-remote: false
-
-  # 管理密钥。若配置为明文，启动时会自动进行bcrypt加密并写回配置文件。
-  # 所有管理请求（包括本地）都需要该密钥。
-  # 若为空，/v0/management 整体处于 404（禁用）。
-  secret-key: ""
-
-  # 当设为 true 时，不下载管理面板文件，/management.html 将直接返回 404。
-  disable-control-panel: false
-
-# 身份验证目录（支持 ~ 表示主目录）。如果你使用Windows，建议设置成`C:/cli-proxy-api/`。
-auth-dir: "~/.cli-proxy-api"
-
-# 请求认证使用的API密钥
-api-keys:
-  - "your-api-key-1"
-  - "your-api-key-2"
-
-# 启用调试日志
-debug: false
-
-# 为 true 时将应用日志写入滚动文件而不是 stdout
-logging-to-file: true
-
-# 为 false 时禁用内存中的使用统计并直接丢弃所有数据
-usage-statistics-enabled: true
-
-# 代理URL。支持socks5/http/https协议。例如：socks5://user:pass@192.168.1.1:1080/
-proxy-url: ""
-
-# 请求重试次数。如果HTTP响应码为403、408、500、502、503或504，将会触发重试。
-request-retry: 3
-
-
-# 配额超限行为
-quota-exceeded:
-   switch-project: true # 当配额超限时是否自动切换到另一个项目
-   switch-preview-model: true # 当配额超限时是否自动切换到预览模型
-
-# Gemini API 密钥
-gemini-api-key:
-  - api-key: "AIzaSy...01"
-    base-url: "https://generativelanguage.googleapis.com"
-    headers:
-      X-Custom-Header: "custom-value"
-    proxy-url: "socks5://proxy.example.com:1080"
-  - api-key: "AIzaSy...02"
-
-# Codex API 密钥
-codex-api-key:
-  - api-key: "sk-atSM..."
-    base-url: "https://www.example.com" # 第三方 Codex API 中转服务端点
-    proxy-url: "socks5://proxy.example.com:1080" # 可选:针对该密钥的代理设置
-
-# Claude API 密钥
-claude-api-key:
-  - api-key: "sk-atSM..." # 如果使用官方 Claude API,无需设置 base-url
-  - api-key: "sk-atSM..."
-    base-url: "https://www.example.com" # 第三方 Claude API 中转服务端点
-    proxy-url: "socks5://proxy.example.com:1080" # 可选:针对该密钥的代理设置
-
-# OpenAI 兼容提供商
-openai-compatibility:
-  - name: "openrouter" # 提供商的名称；它将被用于用户代理和其它地方。
-    base-url: "https://openrouter.ai/api/v1" # 提供商的基础URL。
-    # 新格式：支持每密钥代理配置(推荐):
-    api-key-entries:
-      - api-key: "sk-or-v1-...b780"
-        proxy-url: "socks5://proxy.example.com:1080" # 可选:针对该密钥的代理设置
-      - api-key: "sk-or-v1-...b781" # 不进行额外代理设置
-    # 旧格式(仍支持，但无法为每个密钥指定代理):
-    # api-keys:
-    #   - "sk-or-v1-...b780"
-    #   - "sk-or-v1-...b781"
-    models: # 提供商支持的模型。或者你可以使用类似 openrouter://moonshotai/kimi-k2:free 这样的格式来请求未在这里定义的模型
-      - name: "moonshotai/kimi-k2:free" # 实际的模型名称。
-        alias: "kimi-k2" # 在API中使用的别名。
-```
-
-### Git 支持的配置与令牌存储
-
-应用程序可配置为使用 Git 仓库作为后端，用于存储 `config.yaml` 配置文件和来自 `auth-dir` 目录的身份验证令牌。这允许对您的配置进行集中管理和版本控制。
-
-要启用此功能，请将 `GITSTORE_GIT_URL` 环境变量设置为您的 Git 仓库的 URL。
-
-**环境变量**
-
-| 变量                      | 必需 | 默认值    | 描述                                                 |
-|-------------------------|----|--------|----------------------------------------------------|
-| `MANAGEMENT_PASSWORD`   | 是  |        | 管理面板密码                                             |
-| `GITSTORE_GIT_URL`      | 是  |        | 要使用的 Git 仓库的 HTTPS URL。                            |
-| `GITSTORE_LOCAL_PATH`   | 否  | 当前工作目录 | 将克隆 Git 仓库的本地路径。在 Docker 内部，此路径默认为 `/CLIProxyAPI`。 |
-| `GITSTORE_GIT_USERNAME` | 否  |        | 用于 Git 身份验证的用户名。                                   |
-| `GITSTORE_GIT_TOKEN`    | 否  |        | 用于 Git 身份验证的个人访问令牌（或密码）。                           |
-
-**工作原理**
-
-1.  **克隆：** 启动时，应用程序会将远程 Git 仓库克隆到 `GITSTORE_LOCAL_PATH`。
-2.  **配置：** 然后，它会在克隆的仓库内的 `config` 目录中查找 `config.yaml` 文件。
-3.  **引导：** 如果仓库中不存在 `config/config.yaml`，应用程序会将本地的 `config.example.yaml` 复制到该位置，然后提交并推送到远程仓库作为初始配置。您必须确保 `config.example.yaml` 文件可用。
-4.  **令牌同步：** `auth-dir` 也在此仓库中管理。对身份验证令牌的任何更改（例如，通过新的登录）都会自动提交并推送到远程 Git 仓库。
-
-### PostgreSQL 支持的配置与令牌存储
-
-在托管环境中运行服务时，可以选择使用 PostgreSQL 来保存配置与令牌，借助托管数据库减轻本地文件管理压力。
-
-**环境变量**
-
-| 变量                      | 必需 | 默认值          | 描述                                                                 |
-|-------------------------|----|---------------|----------------------------------------------------------------------|
-| `MANAGEMENT_PASSWORD`   | 是  |               | 管理面板密码（启用远程管理时必需）。                                          |
-| `PGSTORE_DSN`           | 是  |               | PostgreSQL 连接串，例如 `postgresql://user:pass@host:5432/db`。       |
-| `PGSTORE_SCHEMA`        | 否  | public        | 创建表时使用的 schema；留空则使用默认 schema。                               |
-| `PGSTORE_LOCAL_PATH`    | 否  | 当前工作目录       | 本地镜像根目录，服务将在 `<值>/pgstore` 下写入缓存；若无法获取工作目录则退回 `/tmp/pgstore`。 |
-
-**工作原理**
-
-1.  **初始化：** 启动时通过 `PGSTORE_DSN` 连接数据库，确保 schema 存在，并在缺失时创建 `config_store` 与 `auth_store`。
-2.  **本地镜像：** 在 `<PGSTORE_LOCAL_PATH 或当前工作目录>/pgstore` 下建立可写缓存，复用 `config/config.yaml` 与 `auths/` 目录。
-3.  **引导：** 若数据库中无配置记录，会使用 `config.example.yaml` 初始化，并以固定标识 `config` 写入。
-4.  **令牌同步：** 配置与令牌的更改会写入 PostgreSQL，同时数据库中的内容也会反向同步至本地镜像，便于文件监听与管理接口继续工作。
-
-### 对象存储驱动的配置与令牌存储
-
-可以选择使用 S3 兼容的对象存储来托管配置与鉴权数据。
-
-**环境变量**
-
-| 变量                     | 是否必填 | 默认值             | 说明                                                                                                                     |
-|--------------------------|----------|--------------------|--------------------------------------------------------------------------------------------------------------------------|
-| `MANAGEMENT_PASSWORD`    | 是       |                    | 管理面板密码（启用远程管理时必需）。                                                                             |
-| `OBJECTSTORE_ENDPOINT`   | 是       |                    | 对象存储访问端点。可带 `http://` 或 `https://` 前缀指定协议（省略则默认 HTTPS）。                                      |
-| `OBJECTSTORE_BUCKET`     | 是       |                    | 用于存放 `config/config.yaml` 与 `auths/*.json` 的 Bucket 名称。                                                        |
-| `OBJECTSTORE_ACCESS_KEY` | 是       |                    | 对象存储账号的访问密钥 ID。                                                                                              |
-| `OBJECTSTORE_SECRET_KEY` | 是       |                    | 对象存储账号的访问密钥 Secret。                                                                                          |
-| `OBJECTSTORE_LOCAL_PATH` | 否       | 当前工作目录 (CWD) | 本地镜像根目录；服务会写入到 `<值>/objectstore`。                                                                         |
-
-**工作流程**
-
-1. **启动阶段：** 解析端点地址（识别协议前缀），创建 MinIO 兼容客户端并使用 Path-Style 模式，如 Bucket 不存在会自动创建。
-2. **本地镜像：** 在 `<OBJECTSTORE_LOCAL_PATH 或当前工作目录>/objectstore` 维护可写缓存，同步 `config/config.yaml` 与 `auths/`。
-3. **初始化：** 若 Bucket 中缺少配置文件，将以 `config.example.yaml` 为模板生成 `config/config.yaml` 并上传。
-4. **双向同步：** 本地变更会上传到对象存储，同时远端对象也会拉回到本地，保证文件监听、管理 API 与 CLI 命令行为一致。
-
-### OpenAI 兼容上游提供商
-
-通过 `openai-compatibility` 配置上游 OpenAI 兼容提供商（例如 OpenRouter）。
-
- name：内部识别名
- base-url：提供商基础地址
- api-key-entries：API密钥条目列表，支持可选的每密钥代理配置（推荐）
- api-keys：(已弃用) 简单的API密钥列表，不支持代理配置
- models：将上游模型 `name` 映射为本地可用 `alias`
-
-支持每密钥代理配置的示例：
-
-```yaml
-openai-compatibility:
-  - name: "openrouter"
-    base-url: "https://openrouter.ai/api/v1"
-    api-key-entries:
-      - api-key: "sk-or-v1-...b780"
-        proxy-url: "socks5://proxy.example.com:1080"
-      - api-key: "sk-or-v1-...b781"
-    models:
-      - name: "moonshotai/kimi-k2:free"
-        alias: "kimi-k2"
-```
-
-使用方式：在 `/v1/chat/completions` 中将 `model` 设为别名（如 `kimi-k2`），代理将自动路由到对应提供商与模型。
-
-并且，对于这些与OpenAI兼容的提供商模型，您始终可以通过将CODE_ASSIST_ENDPOINT设置为 http://127.0.0.1:8317 来使用Gemini CLI。
-
-### AI Studio 使用说明
-
-您可以将本服务 (CLIProxyAPI) 作为后端，配合 [这个 AI Studio 应用](https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL) 使用。请遵循以下步骤进行配置：
-
-1.  **启动 CLIProxyAPI 服务**：确保您的 CLIProxyAPI 实例正在本地或远程运行。
-2.  **访问 AI Studio 应用**：在浏览器中登录您的 Google 账户，然后打开以下链接：
-    - [https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL](https://aistudio.google.com/apps/drive/1CPW7FpWGsDZzkaYgYOyXQ_6FWgxieLmL)
-
-#### 连接配置
-
-默认情况下，AI Studio 应用会尝试连接到本地的 CLIProxyAPI (`ws://127.0.0.1:8317`)。
-
-   **连接到远程服务**：
-    如果您需要连接到远程部署的 CLIProxyAPI，请修改 AI Studio 应用中的 `config.ts` 文件，更新 `WEBSOCKET_PROXY_URL` 的值。
-    -   如果您的远程服务启用了 SSL，请使用 `wss://` 协议。
-    -   如果未启用 SSL，请使用 `ws://` 协议。
-
-#### 认证配置
-
-默认情况下，CLIProxyAPI 的 WebSocket 连接不要求认证。
-
-   **在 CLIProxyAPI 服务端启用认证**：
-    在您的 `config.yaml` 文件中，将 `ws_auth` 设置为 `true`。
-   **在 AI Studio 客户端配置认证**：
-    在 AI Studio 应用的 `config.ts` 文件中，设置 `JWT_TOKEN` 的值为您的认证令牌。
-
-### 身份验证目录
-
-`auth-dir` 参数指定身份验证令牌的存储位置。当您运行登录命令时，应用程序将在此目录中创建包含 Google 账户身份验证令牌的 JSON 文件。多个账户可用于轮询。
-
-### Gemini API 配置
-
-使用 `gemini-api-key` 参数来配置 Gemini API 密钥；每个条目都可以选择性地提供 `base-url`、`headers` 与 `proxy-url`。`headers` 仅会附加到访问覆盖后 Gemini 端点的请求，不会转发给代理服务器。旧的 `generative-language-api-key` 管理接口仍提供纯密钥视图以保持兼容——通过该接口写入会替换整个 Gemini 列表，并丢弃任何额外配置，同时该字段不再持久化到 `config.yaml`。
-
-## 热更新
-
-服务会监听配置文件与 `auth-dir` 目录的变化并自动重新加载客户端与配置。您可以在运行中新增/移除 Gemini/OpenAI 的令牌 JSON 文件，无需重启服务。
-
-## Gemini CLI 多账户负载均衡
-
-启动 CLI 代理 API 服务器，然后将 `CODE_ASSIST_ENDPOINT` 环境变量设置为 CLI 代理 API 服务器的 URL。
-
-```bash
-export CODE_ASSIST_ENDPOINT="http://127.0.0.1:8317"
-```
-
-服务器将中继 `loadCodeAssist`、`onboardUser` 和 `countTokens` 请求。并自动在多个账户之间轮询文本生成请求。
-
-> [!NOTE]  
-> 此功能仅允许本地访问，因为找不到一个可以验证请求的方法。
-> 所以只能强制只有 `127.0.0.1` 可以访问。
-
-## Claude Code 的使用方法
-
-启动 CLI Proxy API 服务器, 设置如下系统环境变量 `ANTHROPIC_BASE_URL`, `ANTHROPIC_AUTH_TOKEN`, `ANTHROPIC_DEFAULT_OPUS_MODEL`, `ANTHROPIC_DEFAULT_SONNET_MODEL`, `ANTHROPIC_DEFAULT_HAIKU_MODEL` (或 `ANTHROPIC_MODEL`, `ANTHROPIC_SMALL_FAST_MODEL` 对应 1.x.x 版本)
-
-使用 Gemini 模型：
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gemini-2.5-pro
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gemini-2.5-flash
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gemini-2.5-flash-lite
-# 1.x.x 版本
-export ANTHROPIC_MODEL=gemini-2.5-pro
-export ANTHROPIC_SMALL_FAST_MODEL=gemini-2.5-flash
-```
-
-使用 OpenAI GPT 5 模型：
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gpt-5-high
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gpt-5-medium
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gpt-5-minimal
-# 1.x.x 版本
-export ANTHROPIC_MODEL=gpt-5
-export ANTHROPIC_SMALL_FAST_MODEL=gpt-5-minimal
-```
-
-使用 OpenAI GPT 5 Codex 模型:
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=gpt-5-codex-high
-export ANTHROPIC_DEFAULT_SONNET_MODEL=gpt-5-codex-medium
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=gpt-5-codex-low
-# 1.x.x 版本
-export ANTHROPIC_MODEL=gpt-5-codex
-export ANTHROPIC_SMALL_FAST_MODEL=gpt-5-codex-low
-```
-
-使用 Claude 模型：
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=claude-opus-4-1-20250805
-export ANTHROPIC_DEFAULT_SONNET_MODEL=claude-sonnet-4-5-20250929
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=claude-3-5-haiku-20241022
-# 1.x.x 版本
-export ANTHROPIC_MODEL=claude-sonnet-4-20250514
-export ANTHROPIC_SMALL_FAST_MODEL=claude-3-5-haiku-20241022
-```
-
-使用 Qwen 模型：
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_SONNET_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=qwen3-coder-flash
-# 1.x.x 版本
-export ANTHROPIC_MODEL=qwen3-coder-plus
-export ANTHROPIC_SMALL_FAST_MODEL=qwen3-coder-flash
-```
-
-使用 iFlow 模型：
-```bash
-export ANTHROPIC_BASE_URL=http://127.0.0.1:8317
-export ANTHROPIC_AUTH_TOKEN=sk-dummy
-# 2.x.x 版本
-export ANTHROPIC_DEFAULT_OPUS_MODEL=qwen3-max
-export ANTHROPIC_DEFAULT_SONNET_MODEL=qwen3-coder-plus
-export ANTHROPIC_DEFAULT_HAIKU_MODEL=qwen3-235b-a22b-instruct
-# 1.x.x 版本
-export ANTHROPIC_MODEL=qwen3-max
-export ANTHROPIC_SMALL_FAST_MODEL=qwen3-235b-a22b-instruct
-```
-
-## Codex 多账户负载均衡
-
-启动 CLI Proxy API 服务器, 修改 `~/.codex/config.toml` 和 `~/.codex/auth.json` 文件。
-
-config.toml:
-```toml
-model_provider = "cliproxyapi"
-model = "gpt-5-codex" # 或者是gpt-5，你也可以使用任何我们支持的模型
-model_reasoning_effort = "high"
-
-[model_providers.cliproxyapi]
-name = "cliproxyapi"
-base_url = "http://127.0.0.1:8317/v1"
-wire_api = "responses"
-```
-
-auth.json:
-```json
-{
-  "OPENAI_API_KEY": "sk-dummy"
-}
-```
-
-## 使用 Docker 运行
-
-运行以下命令进行登录（Gemini OAuth，端口 8085）：
-
-```bash
-docker run --rm -p 8085:8085 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --login
-```
-
-运行以下命令进行登录（OpenAI OAuth，端口 1455）：
-
-```bash
-docker run --rm -p 1455:1455 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --codex-login
-```
-
-运行以下命令进行登录（Claude OAuth，端口 54545）：
-
-```bash
-docker run --rm -p 54545:54545 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --claude-login
-```
-
-运行以下命令进行登录（Qwen OAuth）：
-
-```bash
-docker run -it -rm -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --qwen-login
-```
-
-运行以下命令进行登录（iFlow OAuth，端口 11451）：
-
-```bash
-docker run --rm -p 11451:11451 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest /CLIProxyAPI/CLIProxyAPI --iflow-login
-```
-
-
-运行以下命令启动服务器：
-
-```bash
-docker run --rm -p 8317:8317 -v /path/to/your/config.yaml:/CLIProxyAPI/config.yaml -v /path/to/your/auth-dir:/root/.cli-proxy-api eceasy/cli-proxy-api:latest
-```
-
-> [!NOTE]
-> 要在 Docker 中使用 Git 支持的配置存储，您可以使用 `-e` 标志传递 `GITSTORE_*` 环境变量。例如：
->
-> ```bash
-> docker run --rm -p 8317:8317 \
->   -e GITSTORE_GIT_URL="https://github.com/your/config-repo.git" \
->   -e GITSTORE_GIT_TOKEN="your_personal_access_token" \
->   -v /path/to/your/git-store:/CLIProxyAPI/remote \
->   eceasy/cli-proxy-api:latest
-> ```
-> 在这种情况下，您可能不需要直接挂载 `config.yaml` 或 `auth-dir`，因为它们将由容器内的 Git 存储在 `GITSTORE_LOCAL_PATH`（默认为 `/CLIProxyAPI`，在此示例中我们将其设置为 `/CLIProxyAPI/remote`）进行管理。
-
-## 使用 Docker Compose 运行
-
-1.  克隆仓库并进入目录：
-    ```bash
-    git clone https://github.com/luispater/CLIProxyAPI.git
-    cd CLIProxyAPI
-    ```
-
-2.  准备配置文件：
-    通过复制示例文件来创建 `config.yaml` 文件，并根据您的需求进行自定义。
-    ```bash
-    cp config.example.yaml config.yaml
-    ```
-    *（Windows 用户请注意：您可以在 CMD 或 PowerShell 中使用 `copy config.example.yaml config.yaml`。）*
-
-    要在 Docker Compose 中使用 Git 支持的配置存储，您可以将 `GITSTORE_*` 环境变量添加到 `docker-compose.yml` 文件中的 `cli-proxy-api` 服务定义下。例如：
-    ```yaml
-    services:
-      cli-proxy-api:
-        image: eceasy/cli-proxy-api:latest
-        container_name: cli-proxy-api
-        ports:
-          - "8317:8317"
-          - "8085:8085"
-          - "1455:1455"
-          - "54545:54545"
-          - "11451:11451"
-        environment:
-          - GITSTORE_GIT_URL=https://github.com/your/config-repo.git
-          - GITSTORE_GIT_TOKEN=your_personal_access_token
-        volumes:
-          - ./git-store:/CLIProxyAPI/remote # GITSTORE_LOCAL_PATH
-        restart: unless-stopped
-    ```
-    在使用 Git 存储时，您可能不需要直接挂载 `config.yaml` 或 `auth-dir`。
-
-3.  启动服务：
-    -   **适用于大多数用户（推荐）：**
-        运行以下命令，使用 Docker Hub 上的预构建镜像启动服务。服务将在后台运行。
-        ```bash
-        docker compose up -d
-        ```
-    -   **适用于进阶用户：**
-        如果您修改了源代码并需要构建新镜像，请使用交互式辅助脚本：
-        -   对于 Windows (PowerShell):
-            ```powershell
-            .\docker-build.ps1
-            ```
-        -   对于 Linux/macOS:
-            ```bash
-            bash docker-build.sh
-            ```
-        脚本将提示您选择运行方式：
-        - **选项 1：使用预构建的镜像运行 (推荐)**：从镜像仓库拉取最新的官方镜像并启动容器。这是最简单的开始方式。
-        - **选项 2：从源码构建并运行 (适用于开发者)**：从本地源代码构建镜像，将其标记为 `cli-proxy-api:local`，然后启动容器。如果您需要修改源代码，此选项很有用。
-
-4. 要在容器内运行登录命令进行身份验证：
-    - **Gemini**: 
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --login
-    ```
-    - **OpenAI (Codex)**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --codex-login
-    ```
-    - **Claude**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --claude-login
-    ```
-    - **Qwen**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --qwen-login
-    ```
-    - **iFlow**:
-    ```bash
-    docker compose exec cli-proxy-api /CLIProxyAPI/CLIProxyAPI -no-browser --iflow-login
-    ```
-
-5.  查看服务器日志：
-    ```bash
-    docker compose logs -f
-    ```
-
-6.  停止应用程序：
-    ```bash
-    docker compose down
-    ```
+CLIProxyAPI 用户手册： [https://help.router-for.me/](https://help.router-for.me/cn/)

 ## 管理 API 文档

-请参见 [MANAGEMENT_API_CN.md](MANAGEMENT_API_CN.md)
+请参见 [MANAGEMENT_API_CN.md](https://help.router-for.me/cn/management/api)

 ## SDK 文档

@@ -879,7 +81,14 @@ docker run --rm -p 8317:8317 -v /path/to/your/config.yaml:/CLIProxyAPI/config.ya
 > [!NOTE]  
 > 如果你开发了基于 CLIProxyAPI 的项目，请提交一个 PR（拉取请求）将其添加到此列表中。

-
 ## 许可证

 此项目根据 MIT 许可证授权 - 有关详细信息，请参阅 [LICENSE](LICENSE) 文件。
+
+## 写给所有中国网友的
+
+QQ 群：188637136
+
+或
+
+Telegram 群：https://t.me/CLIProxyAPI
--- a/internal/api/handlers/management/auth_files.go
+++ b/internal/api/handlers/management/auth_files.go
@@ -12,6 +12,7 @@ import (
 	"net/url"
 	"os"
 	"path/filepath"
+	"sort"
 	"strconv"
 	"strings"
 	"sync"
@@ -229,8 +230,32 @@ func (h *Handler) managementCallbackURL(path string) (string, error) {
 	return fmt.Sprintf("http://127.0.0.1:%d%s", h.cfg.Port, path), nil
 }

-// List auth files
 func (h *Handler) ListAuthFiles(c *gin.Context) {
+	if h == nil {
+		c.JSON(500, gin.H{"error": "handler not initialized"})
+		return
+	}
+	if h.authManager == nil {
+		h.listAuthFilesFromDisk(c)
+		return
+	}
+	auths := h.authManager.List()
+	files := make([]gin.H, 0, len(auths))
+	for _, auth := range auths {
+		if entry := h.buildAuthFileEntry(auth); entry != nil {
+			files = append(files, entry)
+		}
+	}
+	sort.Slice(files, func(i, j int) bool {
+		nameI, _ := files[i]["name"].(string)
+		nameJ, _ := files[j]["name"].(string)
+		return strings.ToLower(nameI) < strings.ToLower(nameJ)
+	})
+	c.JSON(200, gin.H{"files": files})
+}
+
+// List auth files from disk when the auth manager is unavailable.
+func (h *Handler) listAuthFilesFromDisk(c *gin.Context) {
 	entries, err := os.ReadDir(h.cfg.AuthDir)
 	if err != nil {
 		c.JSON(500, gin.H{"error": fmt.Sprintf("failed to read auth dir: %v", err)})
@@ -263,6 +288,103 @@ func (h *Handler) ListAuthFiles(c *gin.Context) {
 	c.JSON(200, gin.H{"files": files})
 }

+func (h *Handler) buildAuthFileEntry(auth *coreauth.Auth) gin.H {
+	if auth == nil {
+		return nil
+	}
+	runtimeOnly := isRuntimeOnlyAuth(auth)
+	path := strings.TrimSpace(authAttribute(auth, "path"))
+	if path == "" && !runtimeOnly {
+		return nil
+	}
+	name := strings.TrimSpace(auth.FileName)
+	if name == "" {
+		name = auth.ID
+	}
+	entry := gin.H{
+		"id":             auth.ID,
+		"name":           name,
+		"type":           strings.TrimSpace(auth.Provider),
+		"provider":       strings.TrimSpace(auth.Provider),
+		"label":          auth.Label,
+		"status":         auth.Status,
+		"status_message": auth.StatusMessage,
+		"disabled":       auth.Disabled,
+		"unavailable":    auth.Unavailable,
+		"runtime_only":   runtimeOnly,
+		"source":         "memory",
+		"size":           int64(0),
+	}
+	if email := authEmail(auth); email != "" {
+		entry["email"] = email
+	}
+	if accountType, account := auth.AccountInfo(); accountType != "" || account != "" {
+		if accountType != "" {
+			entry["account_type"] = accountType
+		}
+		if account != "" {
+			entry["account"] = account
+		}
+	}
+	if !auth.CreatedAt.IsZero() {
+		entry["created_at"] = auth.CreatedAt
+	}
+	if !auth.UpdatedAt.IsZero() {
+		entry["modtime"] = auth.UpdatedAt
+		entry["updated_at"] = auth.UpdatedAt
+	}
+	if !auth.LastRefreshedAt.IsZero() {
+		entry["last_refresh"] = auth.LastRefreshedAt
+	}
+	if path != "" {
+		entry["path"] = path
+		entry["source"] = "file"
+		if info, err := os.Stat(path); err == nil {
+			entry["size"] = info.Size()
+			entry["modtime"] = info.ModTime()
+		} else if os.IsNotExist(err) {
+			entry["source"] = "memory"
+		} else {
+			log.WithError(err).Warnf("failed to stat auth file %s", path)
+		}
+	}
+	return entry
+}
+
+func authEmail(auth *coreauth.Auth) string {
+	if auth == nil {
+		return ""
+	}
+	if auth.Metadata != nil {
+		if v, ok := auth.Metadata["email"].(string); ok {
+			return strings.TrimSpace(v)
+		}
+	}
+	if auth.Attributes != nil {
+		if v := strings.TrimSpace(auth.Attributes["email"]); v != "" {
+			return v
+		}
+		if v := strings.TrimSpace(auth.Attributes["account_email"]); v != "" {
+			return v
+		}
+	}
+	return ""
+}
+
+func authAttribute(auth *coreauth.Auth, key string) string {
+	if auth == nil || len(auth.Attributes) == 0 {
+		return ""
+	}
+	return auth.Attributes[key]
+}
+
+func isRuntimeOnlyAuth(auth *coreauth.Auth) bool {
+	if auth == nil || len(auth.Attributes) == 0 {
+		return false
+	}
+	return strings.EqualFold(strings.TrimSpace(auth.Attributes["runtime_only"]), "true")
+}
+
 // Download single auth file by name
 func (h *Handler) DownloadAuthFile(c *gin.Context) {
 	name := c.Query("name")
--- a/internal/registry/model_definitions.go
+++ b/internal/registry/model_definitions.go
@@ -116,36 +116,6 @@ func GeminiModels() []*ModelInfo {
 			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
 			Thinking:                   &ThinkingSupport{Min: 512, Max: 24576, ZeroAllowed: true, DynamicAllowed: true},
 		},
-		{
-			ID:                         "gemini-2.5-flash-image-preview",
-			Object:                     "model",
-			Created:                    time.Now().Unix(),
-			OwnedBy:                    "google",
-			Type:                       "gemini",
-			Name:                       "models/gemini-2.5-flash-image-preview",
-			Version:                    "2.5",
-			DisplayName:                "Gemini 2.5 Flash Image Preview",
-			Description:                "State-of-the-art image generation and editing model.",
-			InputTokenLimit:            1048576,
-			OutputTokenLimit:           8192,
-			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
-			// image models don't support thinkingConfig; leave Thinking nil
-		},
-		{
-			ID:                         "gemini-2.5-flash-image",
-			Object:                     "model",
-			Created:                    time.Now().Unix(),
-			OwnedBy:                    "google",
-			Type:                       "gemini",
-			Name:                       "models/gemini-2.5-flash-image",
-			Version:                    "2.5",
-			DisplayName:                "Gemini 2.5 Flash Image",
-			Description:                "State-of-the-art image generation and editing model.",
-			InputTokenLimit:            1048576,
-			OutputTokenLimit:           8192,
-			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
-			// image models don't support thinkingConfig; leave Thinking nil
-		},
 	}
 }

@@ -153,57 +123,111 @@ func GeminiModels() []*ModelInfo {
 func GetGeminiModels() []*ModelInfo { return GeminiModels() }

 // GetGeminiCLIModels returns the standard Gemini model definitions
-func GetGeminiCLIModels() []*ModelInfo { return GeminiModels() }
+func GetGeminiCLIModels() []*ModelInfo {
+	base := GeminiModels()
+	return append(base,
+		[]*ModelInfo{
+			{
+				ID:                         "gemini-3-pro-preview-11-2025",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-3-pro-preview-11-2025",
+				Version:                    "3",
+				DisplayName:                "Gemini 3 Pro Preview 11-2025",
+				Description:                "Latest preview of Gemini Pro",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           65536,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				Thinking:                   &ThinkingSupport{Min: 128, Max: 32768, ZeroAllowed: false, DynamicAllowed: true},
+			},
+		}...,
+	)
+}

 // GetAIStudioModels returns the Gemini model definitions for AI Studio integrations
 func GetAIStudioModels() []*ModelInfo {
 	base := GeminiModels()
+
 	return append(base,
-		&ModelInfo{
-			ID:                         "gemini-pro-latest",
-			Object:                     "model",
-			Created:                    time.Now().Unix(),
-			OwnedBy:                    "google",
-			Type:                       "gemini",
-			Name:                       "models/gemini-pro-latest",
-			Version:                    "2.5",
-			DisplayName:                "Gemini Pro Latest",
-			Description:                "Latest release of Gemini Pro",
-			InputTokenLimit:            1048576,
-			OutputTokenLimit:           65536,
-			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
-			Thinking:                   &ThinkingSupport{Min: 128, Max: 32768, ZeroAllowed: false, DynamicAllowed: true},
-		},
-		&ModelInfo{
-			ID:                         "gemini-flash-latest",
-			Object:                     "model",
-			Created:                    time.Now().Unix(),
-			OwnedBy:                    "google",
-			Type:                       "gemini",
-			Name:                       "models/gemini-flash-latest",
-			Version:                    "2.5",
-			DisplayName:                "Gemini Flash Latest",
-			Description:                "Latest release of Gemini Flash",
-			InputTokenLimit:            1048576,
-			OutputTokenLimit:           65536,
-			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
-			Thinking:                   &ThinkingSupport{Min: 0, Max: 24576, ZeroAllowed: true, DynamicAllowed: true},
-		},
-		&ModelInfo{
-			ID:                         "gemini-flash-lite-latest",
-			Object:                     "model",
-			Created:                    time.Now().Unix(),
-			OwnedBy:                    "google",
-			Type:                       "gemini",
-			Name:                       "models/gemini-flash-lite-latest",
-			Version:                    "2.5",
-			DisplayName:                "Gemini Flash-Lite Latest",
-			Description:                "Latest release of Gemini Flash-Lite",
-			InputTokenLimit:            1048576,
-			OutputTokenLimit:           65536,
-			SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
-			Thinking:                   &ThinkingSupport{Min: 512, Max: 24576, ZeroAllowed: true, DynamicAllowed: true},
-		},
+		[]*ModelInfo{
+			{
+				ID:                         "gemini-pro-latest",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-pro-latest",
+				Version:                    "2.5",
+				DisplayName:                "Gemini Pro Latest",
+				Description:                "Latest release of Gemini Pro",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           65536,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				Thinking:                   &ThinkingSupport{Min: 128, Max: 32768, ZeroAllowed: false, DynamicAllowed: true},
+			},
+			{
+				ID:                         "gemini-flash-latest",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-flash-latest",
+				Version:                    "2.5",
+				DisplayName:                "Gemini Flash Latest",
+				Description:                "Latest release of Gemini Flash",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           65536,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				Thinking:                   &ThinkingSupport{Min: 0, Max: 24576, ZeroAllowed: true, DynamicAllowed: true},
+			},
+			{
+				ID:                         "gemini-flash-lite-latest",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-flash-lite-latest",
+				Version:                    "2.5",
+				DisplayName:                "Gemini Flash-Lite Latest",
+				Description:                "Latest release of Gemini Flash-Lite",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           65536,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				Thinking:                   &ThinkingSupport{Min: 512, Max: 24576, ZeroAllowed: true, DynamicAllowed: true},
+			},
+			{
+				ID:                         "gemini-2.5-flash-image-preview",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-2.5-flash-image-preview",
+				Version:                    "2.5",
+				DisplayName:                "Gemini 2.5 Flash Image Preview",
+				Description:                "State-of-the-art image generation and editing model.",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           8192,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				// image models don't support thinkingConfig; leave Thinking nil
+			},
+			{
+				ID:                         "gemini-2.5-flash-image",
+				Object:                     "model",
+				Created:                    time.Now().Unix(),
+				OwnedBy:                    "google",
+				Type:                       "gemini",
+				Name:                       "models/gemini-2.5-flash-image",
+				Version:                    "2.5",
+				DisplayName:                "Gemini 2.5 Flash Image",
+				Description:                "State-of-the-art image generation and editing model.",
+				InputTokenLimit:            1048576,
+				OutputTokenLimit:           8192,
+				SupportedGenerationMethods: []string{"generateContent", "countTokens", "createCachedContent", "batchGenerateContent"},
+				// image models don't support thinkingConfig; leave Thinking nil
+			},
+		}...,
 	)
 }

@@ -414,6 +438,7 @@ func GetIFlowModels() []*ModelInfo {
 		{ID: "qwen3-235b-a22b-thinking-2507", DisplayName: "Qwen3-235B-A22B-Thinking", Description: "Qwen3 235B A22B Thinking (2507)"},
 		{ID: "qwen3-235b-a22b-instruct", DisplayName: "Qwen3-235B-A22B-Instruct", Description: "Qwen3 235B A22B Instruct"},
 		{ID: "qwen3-235b", DisplayName: "Qwen3-235B-A22B", Description: "Qwen3 235B A22B"},
+		{ID: "minimax-m2", DisplayName: "MiniMax-M2", Description: "MiniMax M2"},
 	}
 	models := make([]*ModelInfo, 0, len(entries))
 	for _, entry := range entries {
--- a/internal/runtime/executor/aistudio_executor.go
+++ b/internal/runtime/executor/aistudio_executor.go
@@ -196,6 +196,7 @@ func (e *AIStudioExecutor) CountTokens(ctx context.Context, auth *cliproxyauth.A

 	body.payload, _ = sjson.DeleteBytes(body.payload, "generationConfig")
 	body.payload, _ = sjson.DeleteBytes(body.payload, "tools")
+	body.payload, _ = sjson.DeleteBytes(body.payload, "safetySettings")

 	endpoint := e.buildEndpoint(req.Model, "countTokens", "")
 	wsReq := &wsrelay.HTTPRequest{
--- a/internal/runtime/executor/claude_executor.go
+++ b/internal/runtime/executor/claude_executor.go
@@ -532,13 +532,21 @@ func decodeResponseBody(body io.ReadCloser, contentEncoding string) (io.ReadClos
 func applyClaudeHeaders(r *http.Request, apiKey string, stream bool) {
 	r.Header.Set("Authorization", "Bearer "+apiKey)
 	r.Header.Set("Content-Type", "application/json")
-	r.Header.Set("Anthropic-Beta", "claude-code-20250219,oauth-2025-04-20,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14")

 	var ginHeaders http.Header
 	if ginCtx, ok := r.Context().Value("gin").(*gin.Context); ok && ginCtx != nil && ginCtx.Request != nil {
 		ginHeaders = ginCtx.Request.Header
 	}

+	if val := strings.TrimSpace(ginHeaders.Get("Anthropic-Beta")); val != "" {
+		if !strings.Contains(val, "oauth") {
+			val += ",oauth-2025-04-20"
+		}
+		r.Header.Set("Anthropic-Beta", val)
+	} else {
+		r.Header.Set("Anthropic-Beta", "claude-code-20250219,oauth-2025-04-20,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14")
+	}
+
 	misc.EnsureHeader(r.Header, ginHeaders, "Anthropic-Version", "2023-06-01")
 	misc.EnsureHeader(r.Header, ginHeaders, "Anthropic-Dangerous-Direct-Browser-Access", "true")
 	misc.EnsureHeader(r.Header, ginHeaders, "X-App", "cli")
--- a/internal/runtime/executor/codex_executor.go
+++ b/internal/runtime/executor/codex_executor.go
@@ -508,6 +508,11 @@ func (e *CodexExecutor) cacheHelper(ctx context.Context, from sdktranslator.Form
 				codexCacheMap[key] = cache
 			}
 		}
+	} else if from == "openai-response" {
+		promptCacheKey := gjson.GetBytes(req.Payload, "prompt_cache_key")
+		if promptCacheKey.Exists() {
+			cache.ID = promptCacheKey.String()
+		}
 	}

 	rawJSON, _ = sjson.SetBytes(rawJSON, "prompt_cache_key", cache.ID)
--- a/internal/runtime/executor/gemini_cli_executor.go
+++ b/internal/runtime/executor/gemini_cli_executor.go
@@ -418,6 +418,7 @@ func (e *GeminiCLIExecutor) CountTokens(ctx context.Context, auth *cliproxyauth.
 		}
 		payload = deleteJSONField(payload, "project")
 		payload = deleteJSONField(payload, "model")
+		payload = deleteJSONField(payload, "request.safetySettings")
 		payload = util.StripThinkingConfigIfUnsupported(req.Model, payload)
 		payload = fixGeminiCLIImageAspectRatio(attemptModel, payload)

@@ -633,11 +634,19 @@ func geminiCLIClientMetadata() string {
 func cliPreviewFallbackOrder(model string) []string {
 	switch model {
 	case "gemini-2.5-pro":
-		return []string{"gemini-2.5-pro-preview-05-06", "gemini-2.5-pro-preview-06-05"}
+		return []string{
+			// "gemini-2.5-pro-preview-05-06",
+			"gemini-2.5-pro-preview-06-05",
+		}
 	case "gemini-2.5-flash":
-		return []string{"gemini-2.5-flash-preview-04-17", "gemini-2.5-flash-preview-05-20"}
+		return []string{
+			// "gemini-2.5-flash-preview-04-17",
+			// "gemini-2.5-flash-preview-05-20",
+		}
 	case "gemini-2.5-flash-lite":
-		return []string{"gemini-2.5-flash-lite-preview-06-17"}
+		return []string{
+			// "gemini-2.5-flash-lite-preview-06-17",
+		}
 	default:
 		return nil
 	}
--- a/internal/runtime/executor/gemini_executor.go
+++ b/internal/runtime/executor/gemini_executor.go
@@ -294,6 +294,7 @@ func (e *GeminiExecutor) CountTokens(ctx context.Context, auth *cliproxyauth.Aut
 	respCtx := context.WithValue(ctx, "alt", opts.Alt)
 	translatedReq, _ = sjson.DeleteBytes(translatedReq, "tools")
 	translatedReq, _ = sjson.DeleteBytes(translatedReq, "generationConfig")
+	translatedReq, _ = sjson.DeleteBytes(translatedReq, "safetySettings")

 	baseURL := resolveGeminiBaseURL(auth)
 	url := fmt.Sprintf("%s/%s/models/%s:%s", baseURL, glAPIVersion, req.Model, "countTokens")
--- a/internal/translator/gemini-cli/claude/gemini-cli_claude_request.go
+++ b/internal/translator/gemini-cli/claude/gemini-cli_claude_request.go
@@ -99,7 +99,7 @@ func ConvertClaudeRequestToCLI(modelName string, inputRawJSON []byte, _ bool) []
 							if len(toolCallIDs) > 1 {
 								funcName = strings.Join(toolCallIDs[0:len(toolCallIDs)-1], "-")
 							}
-							responseData := contentResult.Get("content").String()
+							responseData := contentResult.Get("content").Raw
 							functionResponse := client.FunctionResponse{Name: funcName, Response: map[string]interface{}{"result": responseData}}
 							clientContent.Parts = append(clientContent.Parts, client.Part{FunctionResponse: &functionResponse})
 						}
@@ -127,6 +127,7 @@ func ConvertClaudeRequestToCLI(modelName string, inputRawJSON []byte, _ bool) []
 				inputSchema := inputSchemaResult.Raw
 				tool, _ := sjson.Delete(toolResult.Raw, "input_schema")
 				tool, _ = sjson.SetRaw(tool, "parametersJsonSchema", inputSchema)
+				tool, _ = sjson.Delete(tool, "strict")
 				var toolDeclaration any
 				if err := json.Unmarshal([]byte(tool), &toolDeclaration); err == nil {
 					tools[0].FunctionDeclarations = append(tools[0].FunctionDeclarations, toolDeclaration)
--- a/internal/translator/gemini-cli/openai/chat-completions/gemini-cli_openai_request.go
+++ b/internal/translator/gemini-cli/openai/chat-completions/gemini-cli_openai_request.go
@@ -65,17 +65,23 @@ func ConvertOpenAIRequestToGeminiCLI(modelName string, inputRawJSON []byte, _ bo
 		if tc := gjson.GetBytes(rawJSON, "extra_body.google.thinking_config"); tc.Exists() && tc.IsObject() {
 			var setBudget bool
 			var normalized int
-			if v := tc.Get("thinking_budget"); v.Exists() {
+
+			if v := tc.Get("thinkingBudget"); v.Exists() {
+				normalized = util.NormalizeThinkingBudget(modelName, int(v.Int()))
+				out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.thinkingBudget", normalized)
+				setBudget = true
+			} else if v := tc.Get("thinking_budget"); v.Exists() {
 				normalized = util.NormalizeThinkingBudget(modelName, int(v.Int()))
 				out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.thinkingBudget", normalized)
 				setBudget = true
 			}
-			if v := tc.Get("include_thoughts"); v.Exists() {
+
+			if v := tc.Get("includeThoughts"); v.Exists() {
 				out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.include_thoughts", v.Bool())
-			} else if setBudget {
-				if normalized != 0 {
-					out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.include_thoughts", true)
-				}
+			} else if v := tc.Get("include_thoughts"); v.Exists() {
+				out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.include_thoughts", v.Bool())
+			} else if setBudget && normalized != 0 {
+				out, _ = sjson.SetBytes(out, "request.generationConfig.thinkingConfig.include_thoughts", true)
 			}
 		}
 	}
@@ -149,11 +155,7 @@ func ConvertOpenAIRequestToGeminiCLI(modelName string, inputRawJSON []byte, _ bo
 				toolCallID := m.Get("tool_call_id").String()
 				if toolCallID != "" {
 					c := m.Get("content")
-					if c.Type == gjson.String {
-						toolResponses[toolCallID] = c.String()
-					} else if c.IsObject() && c.Get("type").String() == "text" {
-						toolResponses[toolCallID] = c.Get("text").String()
-					}
+					toolResponses[toolCallID] = c.Raw
 				}
 			}
 		}
@@ -254,7 +256,7 @@ func ConvertOpenAIRequestToGeminiCLI(modelName string, inputRawJSON []byte, _ bo
 								if resp == "" {
 									resp = "{}"
 								}
-								toolNode, _ = sjson.SetRawBytes(toolNode, "parts."+itoa(pp)+".functionResponse.response", []byte(`{"result":`+quoteIfNeeded(resp)+`}`))
+								toolNode, _ = sjson.SetBytes(toolNode, "parts."+itoa(pp)+".functionResponse.response.result", []byte(resp))
 								pp++
 							}
 						}
--- a/internal/translator/gemini/claude/gemini_claude_request.go
+++ b/internal/translator/gemini/claude/gemini_claude_request.go
@@ -92,7 +92,7 @@ func ConvertClaudeRequestToGemini(modelName string, inputRawJSON []byte, _ bool)
 							if len(toolCallIDs) > 1 {
 								funcName = strings.Join(toolCallIDs[0:len(toolCallIDs)-1], "-")
 							}
-							responseData := contentResult.Get("content").String()
+							responseData := contentResult.Get("content").Raw
 							functionResponse := client.FunctionResponse{Name: funcName, Response: map[string]interface{}{"result": responseData}}
 							clientContent.Parts = append(clientContent.Parts, client.Part{FunctionResponse: &functionResponse})
 						}
@@ -120,6 +120,7 @@ func ConvertClaudeRequestToGemini(modelName string, inputRawJSON []byte, _ bool)
 				inputSchema := inputSchemaResult.Raw
 				tool, _ := sjson.Delete(toolResult.Raw, "input_schema")
 				tool, _ = sjson.SetRaw(tool, "parametersJsonSchema", inputSchema)
+				tool, _ = sjson.Delete(tool, "strict")
 				var toolDeclaration any
 				if err := json.Unmarshal([]byte(tool), &toolDeclaration); err == nil {
 					tools[0].FunctionDeclarations = append(tools[0].FunctionDeclarations, toolDeclaration)
--- a/internal/translator/gemini/openai/chat-completions/gemini_openai_request.go
+++ b/internal/translator/gemini/openai/chat-completions/gemini_openai_request.go
@@ -65,18 +65,23 @@ func ConvertOpenAIRequestToGemini(modelName string, inputRawJSON []byte, _ bool)
 		if tc := gjson.GetBytes(rawJSON, "extra_body.google.thinking_config"); tc.Exists() && tc.IsObject() {
 			var setBudget bool
 			var normalized int
-			if v := tc.Get("thinking_budget"); v.Exists() {
-				// Normalize budget to model range
+
+			if v := tc.Get("thinkingBudget"); v.Exists() {
+				normalized = util.NormalizeThinkingBudget(modelName, int(v.Int()))
+				out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.thinkingBudget", normalized)
+				setBudget = true
+			} else if v := tc.Get("thinking_budget"); v.Exists() {
 				normalized = util.NormalizeThinkingBudget(modelName, int(v.Int()))
 				out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.thinkingBudget", normalized)
 				setBudget = true
 			}
-			if v := tc.Get("include_thoughts"); v.Exists() {
+
+			if v := tc.Get("includeThoughts"); v.Exists() {
 				out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.include_thoughts", v.Bool())
-			} else if setBudget {
-				if normalized != 0 {
-					out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.include_thoughts", true)
-				}
+			} else if v := tc.Get("include_thoughts"); v.Exists() {
+				out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.include_thoughts", v.Bool())
+			} else if setBudget && normalized != 0 {
+				out, _ = sjson.SetBytes(out, "generationConfig.thinkingConfig.include_thoughts", true)
 			}
 		}
 	}
@@ -150,14 +155,11 @@ func ConvertOpenAIRequestToGemini(modelName string, inputRawJSON []byte, _ bool)
 				toolCallID := m.Get("tool_call_id").String()
 				if toolCallID != "" {
 					c := m.Get("content")
-					if c.Type == gjson.String {
-						toolResponses[toolCallID] = c.String()
-					} else if c.IsObject() && c.Get("type").String() == "text" {
-						toolResponses[toolCallID] = c.Get("text").String()
-					}
+					toolResponses[toolCallID] = c.Raw
 				}
 			}
 		}
+		fmt.Printf("11111")

 		for i := 0; i < len(arr); i++ {
 			m := arr[i]
@@ -280,7 +282,7 @@ func ConvertOpenAIRequestToGemini(modelName string, inputRawJSON []byte, _ bool)
 								if resp == "" {
 									resp = "{}"
 								}
-								toolNode, _ = sjson.SetRawBytes(toolNode, "parts."+itoa(pp)+".functionResponse.response", []byte(`{"result":`+quoteIfNeeded(resp)+`}`))
+								toolNode, _ = sjson.SetBytes(toolNode, "parts."+itoa(pp)+".functionResponse.response.result", []byte(resp))
 								pp++
 							}
 						}
--- a/internal/translator/gemini/openai/responses/gemini_openai-responses_request.go
+++ b/internal/translator/gemini/openai/responses/gemini_openai-responses_request.go
@@ -143,17 +143,11 @@ func ConvertOpenAIResponsesRequestToGemini(modelName string, inputRawJSON []byte
 				}

 				functionResponse, _ = sjson.Set(functionResponse, "functionResponse.name", functionName)
-				// Also set response.name to align with docs/convert-2.md
-				functionResponse, _ = sjson.Set(functionResponse, "functionResponse.response.name", functionName)

 				// Parse output JSON string and set as response content
 				if output != "" {
 					outputResult := gjson.Parse(output)
-					if outputResult.IsObject() {
-						functionResponse, _ = sjson.SetRaw(functionResponse, "functionResponse.response.content", outputResult.String())
-					} else {
-						functionResponse, _ = sjson.Set(functionResponse, "functionResponse.response.content", output)
-					}
+					functionResponse, _ = sjson.Set(functionResponse, "functionResponse.response.result", outputResult.Raw)
 				}

 				functionContent, _ = sjson.SetRaw(functionContent, "parts.-1", functionResponse)
Author	SHA1	Message	Date
Luis Pater	a7d105bd69	Fixed: #223 fix(registry): add `MiniMax-M2` model to registry definitions	2025-11-08 00:10:51 +08:00
Luis Pater	b9eef45305	Merge pull request #222 from router-for-me/api Return auth info from memory	2025-11-07 22:41:12 +08:00
Luis Pater	c8f20a66a8	fix(executor): add logging and prompt cache key handling for OpenAI responses	2025-11-07 22:40:45 +08:00
hkfires	1f6a384c9a	fix(api): omit auth file entries lacking path unless runtime-only	2025-11-07 19:15:54 +08:00
hkfires	c9fc033cf5	feat(management): support in-memory auth listing with disk fallback	2025-11-07 19:04:54 +08:00
Luis Pater	32c964d310	Merge pull request #221 from router-for-me/gemini fix(translator): accept camelCase thinking config in OpenAI→Gemini	2025-11-07 17:00:07 +08:00
hkfires	d60040b222	fix(translator): accept camelCase thinking config in OpenAI→Gemini	2025-11-07 16:45:31 +08:00
Luis Pater	3ce1b4159b	fix(executor): remove outdated Gemini model previews from CLI fallback order	2025-11-07 10:30:22 +08:00
Luis Pater	7516ac4ce7	fix(registry): add `gemini-3-pro-preview-11-2025` model to Gemini CLI model definitions	2025-11-06 08:47:17 +08:00
Luis Pater	2a73d8c4a3	fix(translator): simplify tool response handling and adjust JSON schema updates in Gemini modules	2025-11-05 22:48:50 +08:00
Luis Pater	a318dff8b0	docs: add hyperlinks to sponsor images in README files (EN and CN)	2025-11-05 20:48:05 +08:00
Luis Pater	4a159d5bf5	docs: add hyperlinks to sponsor images in README files (EN and CN)	2025-11-05 20:46:58 +08:00
Luis Pater	734b040a48	fix(translator): remove `strict` field from Gemini Claude tool initialization	2025-11-05 20:22:26 +08:00
Luis Pater	10be026ace	fix(translator): remove `strict` field from Gemini Claude tool initialization	2025-11-05 18:14:58 +08:00
Luis Pater	848a620568	ci: add GitHub Action to block changes under `internal/translator` directory in PRs	2025-11-05 09:12:05 +08:00
Luis Pater	e18e288fda	fix(registry): Remove gemini-2.5-flash-image Gemini models from gemini cli and add gemini-2.5-flash-image preview to AIStudio These models were likely for internal preview or testing and are no longer relevant for public use.	2025-11-04 03:02:16 +08:00
Luis Pater	38cfbac8f0	fix(executor): adjust `Anthropic-Beta` header handling for consistent API requests	2025-11-03 20:49:01 +08:00
Luis Pater	5be4d22b9b	fix(executor): ensure consistent header application in Claude API requests	2025-11-03 17:57:20 +08:00
Luis Pater	64774a5786	fix(executor): remove `safetySettings` from payload in token counting request	2025-11-03 17:31:43 +08:00
Luis Pater	16b0a561d7	docs: remove MANAGEMENT_API documentation files (EN and CN) - Deleted `MANAGEMENT_API.md` and `MANAGEMENT_API_CN.md` as they are no longer necessary. - Streamlined project documentation by removing redundant API details already covered elsewhere.	2025-11-03 11:17:31 +08:00
Luis Pater	21dde0e352	docs: expand MANAGEMENT_API documentation with new endpoints and fields - Added detailed descriptions for new `/config.yaml` endpoints (GET/PUT). - Documented API responses, error codes, and enhancements for log management, usage statistics, and OAuth flows. - Updated examples and notes for better clarity across both EN and CN versions.	2025-11-03 09:59:54 +08:00
Luis Pater	b040a43b81	docs: minimalize and clean README content - Streamlined Chinese README by reducing redundancy and unnecessary sections. - Added a concise link to CLIProxyAPI user manual for detailed instructions. - Reorganized the original README with a simplified overview.	2025-11-03 09:27:18 +08:00
Luis Pater	bccefb2905	docs: minimalize and clean README content - Streamlined Chinese README by reducing redundancy and unnecessary sections. - Added a concise link to CLIProxyAPI user manual for detailed instructions. - Reorganized the original README with a simplified overview.	2025-11-03 09:22:31 +08:00
Luis Pater	b26ec8162d	docs: minimalize and clean README content - Streamlined Chinese README by reducing redundancy and unnecessary sections. - Added a concise link to CLIProxyAPI user manual for detailed instructions. - Reorganized the original README with a simplified overview.	2025-11-03 09:21:23 +08:00
Luis Pater	ee0a91f539	Update GitHub funding model with username	2025-11-03 08:57:08 +08:00
Luis Pater	89b0d53a09	fix(executor): remove `safetySettings` from payload for Gemini requests	2025-11-01 16:53:48 +08:00