kgod/sub2api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 8 Wiki Activity

Compare commits

merge into: kgod/sub2api:main
Branches Tags
kgod/sub2api:main kgod/sub2api:release/v0.1.148 kgod/sub2api:release/v0.1.147 kgod/sub2api:fix/ci-binary-release kgod/sub2api:release/v0.1.146 kgod/sub2api:fix/gemini-token-cache-skip-on-expiry kgod/sub2api:release/v0.1.145 kgod/sub2api:fix/use-gitea-api-for-updates kgod/sub2api:release/v0.1.144 kgod/sub2api:feat/registration-abuse-prevention kgod/sub2api:release/v0.1.143 kgod/sub2api:fix/remove-default-update-proxy kgod/sub2api:release/v0.1.140
kgod/sub2api:v0.1.148 kgod/sub2api:v0.1.147 kgod/sub2api:v0.1.146 kgod/sub2api:v0.1.145 kgod/sub2api:v0.1.144 kgod/sub2api:v0.1.143 kgod/sub2api:v0.1.142 kgod/sub2api:v0.1.141 kgod/sub2api:v0.1.140
..
pull from: kgod/sub2api:release/v0.1.144
Branches Tags
kgod/sub2api:main kgod/sub2api:release/v0.1.148 kgod/sub2api:release/v0.1.147 kgod/sub2api:fix/ci-binary-release kgod/sub2api:release/v0.1.146 kgod/sub2api:fix/gemini-token-cache-skip-on-expiry kgod/sub2api:release/v0.1.145 kgod/sub2api:fix/use-gitea-api-for-updates kgod/sub2api:release/v0.1.144 kgod/sub2api:feat/registration-abuse-prevention kgod/sub2api:release/v0.1.143 kgod/sub2api:fix/remove-default-update-proxy kgod/sub2api:release/v0.1.140
kgod/sub2api:v0.1.148 kgod/sub2api:v0.1.147 kgod/sub2api:v0.1.146 kgod/sub2api:v0.1.145 kgod/sub2api:v0.1.144 kgod/sub2api:v0.1.143 kgod/sub2api:v0.1.142 kgod/sub2api:v0.1.141 kgod/sub2api:v0.1.140

1 Commits
main .. release/v0.1.144

Author SHA1 Message Date
kone 581935e249 chore: prepare v0.1.144 release
Release Image / image (push) Successful in 2m35s
Details
2026-06-06 04:07:37 +08:00
5 changed files with 13 additions and 41 deletions
Expand all files Collapse all files
.gitea/workflows/release-image.yml
+2 -29
View File
@@ -81,17 +81,6 @@ jobs:
docker push "$IMAGE_NAME:$VERSION" docker push "$IMAGE_NAME:$VERSION"
docker push "$IMAGE_NAME:latest" docker push "$IMAGE_NAME:latest"
- name: Build binary
run: |
set -eu
# Extract binary from the already-built image (no Go toolchain needed)
docker create --name extract_tmp "$IMAGE_NAME:$VERSION"
docker cp extract_tmp:/app/sub2api /tmp/sub2api
docker rm extract_tmp
cd /tmp
tar -czf "sub2api_linux_amd64.tar.gz" sub2api
sha256sum "sub2api_linux_amd64.tar.gz" > checksums.txt
- name: Create Gitea release - name: Create Gitea release
env: env:
RELEASE_TOKEN: ${{ secrets.RELEASE_TOKEN }} RELEASE_TOKEN: ${{ secrets.RELEASE_TOKEN }}
@@ -99,25 +88,9 @@ jobs:
set -eu set -eu
BODY="Docker image: ${IMAGE_NAME}:${VERSION}" BODY="Docker image: ${IMAGE_NAME}:${VERSION}"
PAYLOAD=$(printf '{"tag_name":"%s","target_commitish":"%s","name":"Sub2API %s","body":"%s","draft":false,"prerelease":false}' "$TAG" "$(git rev-parse HEAD)" "$VERSION" "$BODY") PAYLOAD=$(printf '{"tag_name":"%s","target_commitish":"%s","name":"Sub2API %s","body":"%s","draft":false,"prerelease":false}' "$TAG" "$(git rev-parse HEAD)" "$VERSION" "$BODY")
RELEASE_ID=$(curl -fsS \ curl -fsS \
-X POST \ -X POST \
-H "Authorization: token ${RELEASE_TOKEN}" \ -H "Authorization: token ${RELEASE_TOKEN}" \
-H "Content-Type: application/json" \ -H "Content-Type: application/json" \
-d "$PAYLOAD" \ -d "$PAYLOAD" \
"$GITEA_API_URL/repos/$GITEA_OWNER/$GITEA_REPO/releases" | grep -o '"id":[0-9]*' | head -1 | grep -o '[0-9]*') "$GITEA_API_URL/repos/$GITEA_OWNER/$GITEA_REPO/releases" || true
# Upload binary archive
curl -fsS \
-X POST \
-H "Authorization: token ${RELEASE_TOKEN}" \
-H "Content-Type: application/octet-stream" \
--data-binary @/tmp/sub2api_linux_amd64.tar.gz \
"$GITEA_API_URL/repos/$GITEA_OWNER/$GITEA_REPO/releases/${RELEASE_ID}/assets?name=sub2api_linux_amd64.tar.gz"
# Upload checksums
curl -fsS \
-X POST \
-H "Authorization: token ${RELEASE_TOKEN}" \
-H "Content-Type: text/plain" \
--data-binary @/tmp/checksums.txt \
"$GITEA_API_URL/repos/$GITEA_OWNER/$GITEA_REPO/releases/${RELEASE_ID}/assets?name=checksums.txt"
backend/cmd/server/VERSION
+1 -1
View File
@@ -1 +1 @@
0.1.140 0.1.144
backend/internal/repository/github_release_service.go
+3 -4
View File
@@ -76,14 +76,13 @@ func (c *githubReleaseClientError) FetchChecksumFile(ctx context.Context, url st
} }
func (c *githubReleaseClient) FetchLatestRelease(ctx context.Context, repo string) (*service.GitHubRelease, error) { func (c *githubReleaseClient) FetchLatestRelease(ctx context.Context, repo string) (*service.GitHubRelease, error) {
// 使用 Gitea API(兼容 GitHub Release API 格式) url := fmt.Sprintf("https://api.github.com/repos/%s/releases/latest", repo)
url := fmt.Sprintf("http://git.jianshixingqiu.com/api/v1/repos/%s/releases/latest", repo)
req, err := http.NewRequestWithContext(ctx, http.MethodGet, url, nil) req, err := http.NewRequestWithContext(ctx, http.MethodGet, url, nil)
if err != nil { if err != nil {
return nil, err return nil, err
} }
req.Header.Set("Accept", "application/json") req.Header.Set("Accept", "application/vnd.github.v3+json")
req.Header.Set("User-Agent", "Sub2API-Updater") req.Header.Set("User-Agent", "Sub2API-Updater")
resp, err := c.httpClient.Do(req) resp, err := c.httpClient.Do(req)
@@ -93,7 +92,7 @@ func (c *githubReleaseClient) FetchLatestRelease(ctx context.Context, repo strin
defer func() { _ = resp.Body.Close() }() defer func() { _ = resp.Body.Close() }()
if resp.StatusCode != http.StatusOK { if resp.StatusCode != http.StatusOK {
return nil, fmt.Errorf("Gitea API returned %d", resp.StatusCode) return nil, fmt.Errorf("GitHub API returned %d", resp.StatusCode)
} }
var release service.GitHubRelease var release service.GitHubRelease
backend/internal/service/gemini_token_provider.go
+4 -4
View File
@@ -62,16 +62,16 @@ func (p *GeminiTokenProvider) GetAccessToken(ctx context.Context, account *Accou
cacheKey := GeminiTokenCacheKey(account) cacheKey := GeminiTokenCacheKey(account)
// 1) Try cache first — skip if token is already expired or within refresh skew. // 1) Try cache first.
expiresAt := account.GetCredentialAsTime("expires_at") if p.tokenCache != nil {
needsRefresh := expiresAt == nil || time.Until(*expiresAt) <= geminiTokenRefreshSkew
if !needsRefresh && p.tokenCache != nil {
if token, err := p.tokenCache.GetAccessToken(ctx, cacheKey); err == nil && strings.TrimSpace(token) != "" { if token, err := p.tokenCache.GetAccessToken(ctx, cacheKey); err == nil && strings.TrimSpace(token) != "" {
return token, nil return token, nil
} }
} }
// 2) Refresh if needed (pre-expiry skew). // 2) Refresh if needed (pre-expiry skew).
expiresAt := account.GetCredentialAsTime("expires_at")
needsRefresh := expiresAt == nil || time.Until(*expiresAt) <= geminiTokenRefreshSkew
if needsRefresh && p.refreshAPI != nil && p.executor != nil { if needsRefresh && p.refreshAPI != nil && p.executor != nil {
result, err := p.refreshAPI.RefreshIfNeeded(ctx, account, p.executor, geminiTokenRefreshSkew) result, err := p.refreshAPI.RefreshIfNeeded(ctx, account, p.executor, geminiTokenRefreshSkew)
backend/internal/service/update_service.go
+3 -3
View File
@@ -22,11 +22,11 @@ import (
const ( const (
updateCacheKey = "update_check_cache" updateCacheKey = "update_check_cache"
updateCacheTTL = 1200 // 20 minutes updateCacheTTL = 1200 // 20 minutes
defaultGitHubRepo = "kgod/sub2api" defaultGitHubRepo = "man209111-cpu/sub2api"
// Security: allowed download domains for updates // Security: allowed download domains for updates
allowedDownloadHost = "git.jianshixingqiu.com" allowedDownloadHost = "github.com"
allowedAssetHost = "8.138.12.104" allowedAssetHost = "objects.githubusercontent.com"
// Security: max download size (500MB) // Security: max download size (500MB)
maxDownloadSize = 500 * 1024 * 1024 maxDownloadSize = 500 * 1024 * 1024