mirror of
https://github.com/router-for-me/CLIProxyAPI.git
synced 2026-02-02 04:20:50 +08:00
9299897e04
Migrates the AMP module to a new unified routing system, replacing the fallback handler with a router-based approach. This change introduces a `ModelRoutingWrapper` that handles model extraction, routing decisions, and proxying based on provider availability and model mappings. It provides a more flexible and maintainable routing mechanism by centralizing routing logic. The changes include: - Introducing new `routing` package with core routing logic. - Creating characterization tests to capture existing behavior. - Implementing model extraction and rewriting. - Updating AMP module routes to utilize the new routing wrapper. - Deprecating `FallbackHandler` in favor of the new `ModelRoutingWrapper`.
372 lines
14 KiB
Go
372 lines
14 KiB
Go
package amp
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"net"
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/internal/config"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/internal/logging"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/internal/routing"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/sdk/api/handlers"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/sdk/api/handlers/claude"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/sdk/api/handlers/gemini"
|
|
"github.com/router-for-me/CLIProxyAPI/v6/sdk/api/handlers/openai"
|
|
log "github.com/sirupsen/logrus"
|
|
)
|
|
|
|
// clientAPIKeyContextKey is the context key used to pass the client API key
|
|
// from gin.Context to the request context for SecretSource lookup.
|
|
type clientAPIKeyContextKey struct{}
|
|
|
|
// clientAPIKeyMiddleware injects the authenticated client API key from gin.Context["apiKey"]
|
|
// into the request context so that SecretSource can look it up for per-client upstream routing.
|
|
func clientAPIKeyMiddleware() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
// Extract the client API key from gin context (set by AuthMiddleware)
|
|
if apiKey, exists := c.Get("apiKey"); exists {
|
|
if keyStr, ok := apiKey.(string); ok && keyStr != "" {
|
|
// Inject into request context for SecretSource.Get(ctx) to read
|
|
ctx := context.WithValue(c.Request.Context(), clientAPIKeyContextKey{}, keyStr)
|
|
c.Request = c.Request.WithContext(ctx)
|
|
}
|
|
}
|
|
c.Next()
|
|
}
|
|
}
|
|
|
|
// getClientAPIKeyFromContext retrieves the client API key from request context.
|
|
// Returns empty string if not present.
|
|
func getClientAPIKeyFromContext(ctx context.Context) string {
|
|
if val := ctx.Value(clientAPIKeyContextKey{}); val != nil {
|
|
if keyStr, ok := val.(string); ok {
|
|
return keyStr
|
|
}
|
|
}
|
|
return ""
|
|
}
|
|
|
|
// localhostOnlyMiddleware returns a middleware that dynamically checks the module's
|
|
// localhost restriction setting. This allows hot-reload of the restriction without restarting.
|
|
func (m *AmpModule) localhostOnlyMiddleware() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
// Check current setting (hot-reloadable)
|
|
if !m.IsRestrictedToLocalhost() {
|
|
c.Next()
|
|
return
|
|
}
|
|
|
|
// Use actual TCP connection address (RemoteAddr) to prevent header spoofing
|
|
// This cannot be forged by X-Forwarded-For or other client-controlled headers
|
|
remoteAddr := c.Request.RemoteAddr
|
|
|
|
// RemoteAddr format is "IP:port" or "[IPv6]:port", extract just the IP
|
|
host, _, err := net.SplitHostPort(remoteAddr)
|
|
if err != nil {
|
|
// Try parsing as raw IP (shouldn't happen with standard HTTP, but be defensive)
|
|
host = remoteAddr
|
|
}
|
|
|
|
// Parse the IP to handle both IPv4 and IPv6
|
|
ip := net.ParseIP(host)
|
|
if ip == nil {
|
|
log.Warnf("amp management: invalid RemoteAddr %s, denying access", remoteAddr)
|
|
c.AbortWithStatusJSON(403, gin.H{
|
|
"error": "Access denied: management routes restricted to localhost",
|
|
})
|
|
return
|
|
}
|
|
|
|
// Check if IP is loopback (127.0.0.1 or ::1)
|
|
if !ip.IsLoopback() {
|
|
log.Warnf("amp management: non-localhost connection from %s attempted access, denying", remoteAddr)
|
|
c.AbortWithStatusJSON(403, gin.H{
|
|
"error": "Access denied: management routes restricted to localhost",
|
|
})
|
|
return
|
|
}
|
|
|
|
c.Next()
|
|
}
|
|
}
|
|
|
|
// noCORSMiddleware disables CORS for management routes to prevent browser-based attacks.
|
|
// This overwrites any global CORS headers set by the server.
|
|
func noCORSMiddleware() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
// Remove CORS headers to prevent cross-origin access from browsers
|
|
c.Header("Access-Control-Allow-Origin", "")
|
|
c.Header("Access-Control-Allow-Methods", "")
|
|
c.Header("Access-Control-Allow-Headers", "")
|
|
c.Header("Access-Control-Allow-Credentials", "")
|
|
|
|
// For OPTIONS preflight, deny with 403
|
|
if c.Request.Method == "OPTIONS" {
|
|
c.AbortWithStatus(403)
|
|
return
|
|
}
|
|
|
|
c.Next()
|
|
}
|
|
}
|
|
|
|
// managementAvailabilityMiddleware short-circuits management routes when the upstream
|
|
// proxy is disabled, preventing noisy localhost warnings and accidental exposure.
|
|
func (m *AmpModule) managementAvailabilityMiddleware() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
if m.getProxy() == nil {
|
|
logging.SkipGinRequestLogging(c)
|
|
c.AbortWithStatusJSON(http.StatusServiceUnavailable, gin.H{
|
|
"error": "amp upstream proxy not available",
|
|
})
|
|
return
|
|
}
|
|
c.Next()
|
|
}
|
|
}
|
|
|
|
// wrapManagementAuth skips auth for selected management paths while keeping authentication elsewhere.
|
|
func wrapManagementAuth(auth gin.HandlerFunc, prefixes ...string) gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
path := c.Request.URL.Path
|
|
for _, prefix := range prefixes {
|
|
if strings.HasPrefix(path, prefix) && (len(path) == len(prefix) || path[len(prefix)] == '/') {
|
|
c.Next()
|
|
return
|
|
}
|
|
}
|
|
auth(c)
|
|
}
|
|
}
|
|
|
|
// registerManagementRoutes registers Amp management proxy routes
|
|
// These routes proxy through to the Amp control plane for OAuth, user management, etc.
|
|
// Uses dynamic middleware and proxy getter for hot-reload support.
|
|
// The auth middleware validates Authorization header against configured API keys.
|
|
func (m *AmpModule) registerManagementRoutes(engine *gin.Engine, baseHandler *handlers.BaseAPIHandler, auth gin.HandlerFunc) {
|
|
ampAPI := engine.Group("/api")
|
|
|
|
// Always disable CORS for management routes to prevent browser-based attacks
|
|
ampAPI.Use(m.managementAvailabilityMiddleware(), noCORSMiddleware())
|
|
|
|
// Apply dynamic localhost-only restriction (hot-reloadable via m.IsRestrictedToLocalhost())
|
|
ampAPI.Use(m.localhostOnlyMiddleware())
|
|
|
|
// Apply authentication middleware - requires valid API key in Authorization header
|
|
var authWithBypass gin.HandlerFunc
|
|
if auth != nil {
|
|
ampAPI.Use(auth)
|
|
authWithBypass = wrapManagementAuth(auth, "/threads", "/auth", "/docs", "/settings")
|
|
}
|
|
|
|
// Inject client API key into request context for per-client upstream routing
|
|
ampAPI.Use(clientAPIKeyMiddleware())
|
|
|
|
// Dynamic proxy handler that uses m.getProxy() for hot-reload support
|
|
proxyHandler := func(c *gin.Context) {
|
|
// Swallow ErrAbortHandler panics from ReverseProxy copyResponse to avoid noisy stack traces
|
|
defer func() {
|
|
if rec := recover(); rec != nil {
|
|
if err, ok := rec.(error); ok && errors.Is(err, http.ErrAbortHandler) {
|
|
// Upstream already wrote the status (often 404) before the client/stream ended.
|
|
return
|
|
}
|
|
panic(rec)
|
|
}
|
|
}()
|
|
|
|
proxy := m.getProxy()
|
|
if proxy == nil {
|
|
c.JSON(503, gin.H{"error": "amp upstream proxy not available"})
|
|
return
|
|
}
|
|
proxy.ServeHTTP(c.Writer, c.Request)
|
|
}
|
|
|
|
// Management routes - these are proxied directly to Amp upstream
|
|
ampAPI.Any("/internal", proxyHandler)
|
|
ampAPI.Any("/internal/*path", proxyHandler)
|
|
ampAPI.Any("/user", proxyHandler)
|
|
ampAPI.Any("/user/*path", proxyHandler)
|
|
ampAPI.Any("/auth", proxyHandler)
|
|
ampAPI.Any("/auth/*path", proxyHandler)
|
|
ampAPI.Any("/meta", proxyHandler)
|
|
ampAPI.Any("/meta/*path", proxyHandler)
|
|
ampAPI.Any("/ads", proxyHandler)
|
|
ampAPI.Any("/telemetry", proxyHandler)
|
|
ampAPI.Any("/telemetry/*path", proxyHandler)
|
|
ampAPI.Any("/threads", proxyHandler)
|
|
ampAPI.Any("/threads/*path", proxyHandler)
|
|
ampAPI.Any("/otel", proxyHandler)
|
|
ampAPI.Any("/otel/*path", proxyHandler)
|
|
ampAPI.Any("/tab", proxyHandler)
|
|
ampAPI.Any("/tab/*path", proxyHandler)
|
|
|
|
// Root-level routes that AMP CLI expects without /api prefix
|
|
// These need the same security middleware as the /api/* routes (dynamic for hot-reload)
|
|
rootMiddleware := []gin.HandlerFunc{m.managementAvailabilityMiddleware(), noCORSMiddleware(), m.localhostOnlyMiddleware()}
|
|
if authWithBypass != nil {
|
|
rootMiddleware = append(rootMiddleware, authWithBypass)
|
|
}
|
|
// Add clientAPIKeyMiddleware after auth for per-client upstream routing
|
|
rootMiddleware = append(rootMiddleware, clientAPIKeyMiddleware())
|
|
engine.GET("/threads", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/threads/*path", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/docs", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/docs/*path", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/settings", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/settings/*path", append(rootMiddleware, proxyHandler)...)
|
|
|
|
engine.GET("/threads.rss", append(rootMiddleware, proxyHandler)...)
|
|
engine.GET("/news.rss", append(rootMiddleware, proxyHandler)...)
|
|
|
|
// Root-level auth routes for CLI login flow
|
|
// Amp uses multiple auth routes: /auth/cli-login, /auth/callback, /auth/sign-in, /auth/logout
|
|
// We proxy all /auth/* to support the complete OAuth flow
|
|
engine.Any("/auth", append(rootMiddleware, proxyHandler)...)
|
|
engine.Any("/auth/*path", append(rootMiddleware, proxyHandler)...)
|
|
|
|
// Google v1beta1 passthrough with OAuth fallback
|
|
// AMP CLI uses non-standard paths like /publishers/google/models/...
|
|
// We bridge these to our standard Gemini handler to enable local OAuth.
|
|
// If no local OAuth is available, falls back to ampcode.com proxy.
|
|
geminiHandlers := gemini.NewGeminiAPIHandler(baseHandler)
|
|
geminiBridge := createGeminiBridgeHandler(geminiHandlers.GeminiHandler)
|
|
|
|
// T-025: Migrated Gemini v1beta1 bridge to use ModelRoutingWrapper
|
|
// Create a dedicated routing wrapper for the Gemini bridge
|
|
geminiBridgeWrapper := m.createModelRoutingWrapper()
|
|
geminiV1Beta1Handler := geminiBridgeWrapper.Wrap(geminiBridge)
|
|
|
|
// Route POST model calls through Gemini bridge with ModelRoutingWrapper.
|
|
// ModelRoutingWrapper checks provider -> mapping -> proxy fallback automatically.
|
|
// All other methods (e.g., GET model listing) always proxy to upstream to preserve Amp CLI behavior.
|
|
ampAPI.Any("/provider/google/v1beta1/*path", func(c *gin.Context) {
|
|
if c.Request.Method == "POST" {
|
|
if path := c.Param("path"); strings.Contains(path, "/models/") {
|
|
// POST with /models/ path -> use Gemini bridge with unified routing wrapper
|
|
// ModelRoutingWrapper will check provider/mapping and proxy if needed
|
|
geminiV1Beta1Handler(c)
|
|
return
|
|
}
|
|
}
|
|
// Non-POST or no local provider available -> proxy upstream
|
|
proxyHandler(c)
|
|
})
|
|
}
|
|
|
|
// createModelRoutingWrapper creates a new ModelRoutingWrapper for unified routing.
|
|
// This is used for testing the new routing implementation (T-021 onwards).
|
|
func (m *AmpModule) createModelRoutingWrapper() *routing.ModelRoutingWrapper {
|
|
// Create a registry - in production this would be populated with actual providers
|
|
registry := routing.NewRegistry()
|
|
|
|
// Create a minimal config with just AmpCode settings
|
|
// The Router only needs AmpCode.ModelMappings and OAuthModelAlias
|
|
cfg := &config.Config{
|
|
AmpCode: func() config.AmpCode {
|
|
if m.modelMapper != nil {
|
|
return config.AmpCode{
|
|
ModelMappings: m.modelMapper.GetMappingsAsConfig(),
|
|
}
|
|
}
|
|
return config.AmpCode{}
|
|
}(),
|
|
}
|
|
|
|
// Create router with registry and config
|
|
router := routing.NewRouter(registry, cfg)
|
|
|
|
// Create wrapper with proxy function
|
|
proxyFunc := func(c *gin.Context) {
|
|
proxy := m.getProxy()
|
|
if proxy != nil {
|
|
proxy.ServeHTTP(c.Writer, c.Request)
|
|
} else {
|
|
c.JSON(503, gin.H{"error": "amp upstream proxy not available"})
|
|
}
|
|
}
|
|
|
|
return routing.NewModelRoutingWrapper(router, nil, nil, proxyFunc)
|
|
}
|
|
|
|
// registerProviderAliases registers /api/provider/{provider}/... routes
|
|
// These allow Amp CLI to route requests like:
|
|
//
|
|
// /api/provider/openai/v1/chat/completions
|
|
// /api/provider/anthropic/v1/messages
|
|
// /api/provider/google/v1beta/models
|
|
func (m *AmpModule) registerProviderAliases(engine *gin.Engine, baseHandler *handlers.BaseAPIHandler, auth gin.HandlerFunc) {
|
|
// Create handler instances for different providers
|
|
openaiHandlers := openai.NewOpenAIAPIHandler(baseHandler)
|
|
geminiHandlers := gemini.NewGeminiAPIHandler(baseHandler)
|
|
claudeCodeHandlers := claude.NewClaudeCodeAPIHandler(baseHandler)
|
|
openaiResponsesHandlers := openai.NewOpenAIResponsesAPIHandler(baseHandler)
|
|
|
|
// Create unified routing wrapper (T-021 onwards)
|
|
// Replaces FallbackHandler with Router-based unified routing
|
|
routingWrapper := m.createModelRoutingWrapper()
|
|
|
|
// Provider-specific routes under /api/provider/:provider
|
|
ampProviders := engine.Group("/api/provider")
|
|
if auth != nil {
|
|
ampProviders.Use(auth)
|
|
}
|
|
// Inject client API key into request context for per-client upstream routing
|
|
ampProviders.Use(clientAPIKeyMiddleware())
|
|
|
|
provider := ampProviders.Group("/:provider")
|
|
|
|
// Dynamic models handler - routes to appropriate provider based on path parameter
|
|
ampModelsHandler := func(c *gin.Context) {
|
|
providerName := strings.ToLower(c.Param("provider"))
|
|
|
|
switch providerName {
|
|
case "anthropic":
|
|
claudeCodeHandlers.ClaudeModels(c)
|
|
case "google":
|
|
geminiHandlers.GeminiModels(c)
|
|
default:
|
|
// Default to OpenAI-compatible (works for openai, groq, cerebras, etc.)
|
|
openaiHandlers.OpenAIModels(c)
|
|
}
|
|
}
|
|
|
|
// Root-level routes (for providers that omit /v1, like groq/cerebras)
|
|
// T-022: Migrated all OpenAI routes to use ModelRoutingWrapper for unified routing
|
|
provider.GET("/models", ampModelsHandler) // Models endpoint doesn't need fallback (no body to check)
|
|
provider.POST("/chat/completions", routingWrapper.Wrap(openaiHandlers.ChatCompletions))
|
|
provider.POST("/completions", routingWrapper.Wrap(openaiHandlers.Completions))
|
|
provider.POST("/responses", routingWrapper.Wrap(openaiResponsesHandlers.Responses))
|
|
|
|
// /v1 routes (OpenAI/Claude-compatible endpoints)
|
|
v1Amp := provider.Group("/v1")
|
|
{
|
|
v1Amp.GET("/models", ampModelsHandler) // Models endpoint doesn't need fallback
|
|
|
|
// OpenAI-compatible endpoints with ModelRoutingWrapper
|
|
// T-021, T-022: Migrated to unified routing wrapper
|
|
v1Amp.POST("/chat/completions", routingWrapper.Wrap(openaiHandlers.ChatCompletions))
|
|
v1Amp.POST("/completions", routingWrapper.Wrap(openaiHandlers.Completions))
|
|
v1Amp.POST("/responses", routingWrapper.Wrap(openaiResponsesHandlers.Responses))
|
|
|
|
// Claude/Anthropic-compatible endpoints with ModelRoutingWrapper
|
|
// T-023: Migrated Claude routes to unified routing wrapper
|
|
v1Amp.POST("/messages", routingWrapper.Wrap(claudeCodeHandlers.ClaudeMessages))
|
|
v1Amp.POST("/messages/count_tokens", routingWrapper.Wrap(claudeCodeHandlers.ClaudeCountTokens))
|
|
}
|
|
|
|
// /v1beta routes (Gemini native API)
|
|
// Note: Gemini handler extracts model from URL path, so fallback logic needs special handling
|
|
// T-024: Migrated Gemini v1beta routes to unified routing wrapper
|
|
v1betaAmp := provider.Group("/v1beta")
|
|
{
|
|
v1betaAmp.GET("/models", geminiHandlers.GeminiModels)
|
|
v1betaAmp.POST("/models/*action", routingWrapper.Wrap(geminiHandlers.GeminiHandler))
|
|
v1betaAmp.GET("/models/*action", geminiHandlers.GeminiGetHandler)
|
|
}
|
|
}
|