jlintw/llmbackend
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

4. [API 详细说明](#4-api-详细说明)

Browse source 
- [4.1 认证 API](#41-认证-api)
     - [4.1.1 获取访问令牌](#411-获取访问令牌)
   - [4.2 客户用户 API](#42-客户用户-api)
     - [4.2.1 发送提示词请求](#421-发送提示词请求)
   - [4.3 管理员 API](#43-管理员-api)
     - [4.3.1 LLM 提供商管理](#431-llm-提供商管理)
       - [4.3.1.1 新增 LLM 提供商](#4311-新增-llm-提供商)
       - [4.3.1.2 修改 LLM 提供商](#4312-修改-llm-提供商)
       - [4.3.1.3 删除 LLM 提供商](#4313-删除-llm-提供商)
       - [4.3.1.4 获取 LLM 提供商列表](#4314-获取-llm-提供商列表)
This commit is contained in:
Jethro Lin 2024-12-04 12:01:56 +08:00
parent 9cebfec5b0
commit c44c25d86f
9 changed files with 933 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

142
app/Http/Controllers/Api/Admin/AuthController.php
View file

@ -1 +1,143 @@
<?php
declare(strict_types=1);
namespace App\Http\Controllers\Api\Admin;
use App\Http\Controllers\Controller;
use App\Models\Admin;
use App\Services\LogService;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Log;
use Illuminate\Validation\ValidationException;
class AuthController extends Controller
{
public function __construct(
private readonly LogService $logService
) {}
public function login(Request $request): JsonResponse
{
try {
$validated = $request->validate([
'username' => 'required|string',
'password' => 'required|string',
]);
if (!Auth::guard('admin')->attempt($validated)) {
return response()->json([
'error' => 'invalid_credentials',
'message' => '用户名或密码错误。',
], 401);
}
/** @var Admin $admin */
$admin = Auth::guard('admin')->user();
$this->logService->logOperation(
'admin',
$admin->id,
'Admin logged in'
);
return response()->json([
'id' => $admin->id,
'username' => $admin->username,
'email' => $admin->email,
'role' => $admin->role,
]);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
Log::error('Error during admin login', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
public function logout(Request $request): JsonResponse
{
/** @var Admin $admin */
$admin = Auth::guard('admin')->user();
Auth::guard('admin')->logout();
$request->session()->invalidate();
$request->session()->regenerateToken();
$this->logService->logOperation(
'admin',
$admin->id,
'Admin logged out'
);
return response()->json([
'message' => '已成功退出登录。',
]);
}
public function changePassword(Request $request): JsonResponse
{
try {
$validated = $request->validate([
'current_password' => 'required|string',
'new_password' => 'required|string|min:8|confirmed',
]);
/** @var Admin $admin */
$admin = Auth::guard('admin')->user();
if (!Hash::check($validated['current_password'], $admin->password)) {
return response()->json([
'error' => 'invalid_password',
'message' => '当前密码错误。',
], 422);
}
$admin->update([
'password' => Hash::make($validated['new_password']),
]);
$this->logService->logOperation(
'admin',
$admin->id,
'Changed password'
);
return response()->json([
'message' => '密码已成功修改。',
]);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
Log::error('Error changing admin password', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
}

201
app/Http/Controllers/Api/Admin/ClientController.php
View file

@ -1 +1,202 @@
<?php
declare(strict_types=1);
namespace App\Http\Controllers\Api\Admin;
use App\Http\Controllers\Controller;
use App\Models\Client;
use App\Services\Auth\TokenService;
use App\Services\LogService;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Log;
use Illuminate\Validation\ValidationException;
class ClientController extends Controller
{
public function __construct(
private readonly LogService $logService,
private readonly TokenService $tokenService
) {}
public function index(Request $request): JsonResponse
{
$admin = $request->admin;
$query = $admin->isSuperAdmin() ? Client::query() : $admin->clients();
$clients = $query->with('llmProvider')->get();
return response()->json($clients);
}
public function store(Request $request): JsonResponse
{
try {
$validated = $request->validate([
'name' => 'required|string|max:100',
'llm_provider_id' => 'required|exists:llm_providers,id',
]);
DB::beginTransaction();
$client = Client::create($validated);
// Associate client with admin
$request->admin->clients()->attach($client->id);
$this->logService->logOperation(
'admin',
$request->admin->id,
"Created client: {$client->name}"
);
DB::commit();
return response()->json($client, 201);
} catch (ValidationException $e) {
DB::rollBack();
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
DB::rollBack();
Log::error('Error creating client', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
public function update(Request $request, int $id): JsonResponse
{
try {
$client = $this->getAuthorizedClient($request->admin, $id);
$validated = $request->validate([
'name' => 'required|string|max:100',
'llm_provider_id' => 'required|exists:llm_providers,id',
]);
$client->update($validated);
$this->logService->logOperation(
'admin',
$request->admin->id,
"Updated client: {$client->name}"
);
return response()->json($client);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
Log::error('Error updating client', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
public function destroy(Request $request, int $id): JsonResponse
{
try {
$client = $this->getAuthorizedClient($request->admin, $id);
$clientName = $client->name;
$client->delete();
$this->logService->logOperation(
'admin',
$request->admin->id,
"Deleted client: {$clientName}"
);
return response()->json([
'message' => '客户用户已删除。',
]);
} catch (\Exception $e) {
Log::error('Error deleting client', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
public function generateAuthToken(Request $request, int $id): JsonResponse
{
try {
$client = $this->getAuthorizedClient($request->admin, $id);
$validated = $request->validate([
'expires_in_days' => 'nullable|integer|min:1',
]);
$token = $this->tokenService->generateAuthToken(
$client,
$validated['expires_in_days'] ?? null
);
$this->logService->logOperation(
'admin',
$request->admin->id,
"Generated auth token for client: {$client->name}"
);
return response()->json([
'client_id' => $client->id,
'auth_token' => $token->token,
'created_at' => $token->created_at,
'expires_at' => $token->expires_at,
]);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
Log::error('Error generating auth token', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
private function getAuthorizedClient($admin, int $id): Client
{
$query = $admin->isSuperAdmin() ? Client::query() : $admin->clients();
$client = $query->findOrFail($id);
return $client;
}
}

322
app/Http/Controllers/Api/Admin/LlmProviderController.php
View file

@ -1 +1,323 @@
<?php
declare(strict_types=1);
namespace App\Http\Controllers\Api\Admin;
use App\Http\Controllers\Controller;
use App\Models\LlmProvider;
use App\Services\LogService;
use Illuminate\Database\Eloquent\ModelNotFoundException;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Log;
use Illuminate\Validation\ValidationException;
class LlmProviderController extends Controller
{
public function __construct(
private readonly LogService $logService
) {}
/**
* Get LLM provider list
*
* @param Request $request
* @return JsonResponse
*
* Query parameters:
* - page: int (optional) - Page number
* - per_page: int (optional) - Items per page
*
* Success response:
* {
* "data": [
* {
* "id": 1001,
* "name": "OpenAI",
* "service_name": "openai",
* "api_url": "https://api.openai.com/v1/chat/completions",
* "created_at": "2023-10-01T14:00:00Z"
* }
* ],
* "meta": {
* "current_page": 1,
* "per_page": 15,
* "total": 50,
* "total_pages": 4
* }
* }
*/
public function index(Request $request): JsonResponse
{
try {
$perPage = $request->input('per_page', 15);
$perPage = min(max($perPage, 1), 100); // 限制每页数量在 1-100 之间
$providers = LlmProvider::orderBy('created_at', 'desc')
->paginate($perPage);
return response()->json([
'data' => $providers->items(),
'meta' => [
'current_page' => $providers->currentPage(),
'per_page' => $providers->perPage(),
'total' => $providers->total(),
'total_pages' => $providers->lastPage(),
],
]);
} catch (\Exception $e) {
Log::error('Error fetching LLM providers', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
/**
* Create new LLM provider
*
* @param Request $request
* @return JsonResponse
*
* Request body:
* {
* "name": "string",
* "service_name": "string",
* "api_url": "string",
* "api_token": "string"
* }
*
* Success response (201):
* {
* "id": 1001,
* "name": "OpenAI",
* "service_name": "openai",
* "api_url": "https://api.openai.com/v1/chat/completions",
* "created_at": "2023-10-01T14:00:00Z"
* }
*
* Error response (422):
* {
* "error": "validation_error",
* "message": "请求参数验证失败。",
* "errors": {
* "name": ["提供商名称已存在。"],
* "api_url": ["API URL 格式不正确。"]
* }
* }
*/
public function store(Request $request): JsonResponse
{
try {
$validated = $request->validate([
'name' => [
'required',
'string',
'max:100',
'unique:llm_providers',
'regex:/^[\w\-\s]+$/u', // 只允许字母、数字、下划线、横线和空格
],
'service_name' => [
'required',
'string',
'max:100',
'regex:/^[\w\-]+$/u', // 只允许字母、数字、下划线和横线
],
'api_url' => [
'required',
'string',
'max:255',
'url',
'starts_with:https', // 强制使用 HTTPS
],
'api_token' => 'required|string|max:255',
], [
'name.regex' => '提供商名称只能包含字母、数字、下划线、横线和空<E5928C><E7A9BA>。',
'service_name.regex' => '服务名称只能包含字母、数字、下划线和横线。',
'api_url.starts_with' => 'API URL 必须使用 HTTPS 协议。',
]);
$provider = LlmProvider::create($validated);
$this->logService->logOperation(
'admin',
$request->admin->id,
"Created LLM provider: {$provider->name}"
);
return response()->json($provider, 201);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (\Exception $e) {
Log::error('Error creating LLM provider', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
/**
* Update LLM provider
*
* @param Request $request
* @param int $id
* @return JsonResponse
*
* Request body:
* {
* "name": "string",
* "service_name": "string",
* "api_url": "string",
* "api_token": "string"
* }
*
* Success response:
* {
* "id": 1001,
* "name": "OpenAI Updated",
* "service_name": "openai",
* "api_url": "https://api.openai.com/v1/chat/completions",
* "updated_at": "2023-10-02T14:00:00Z"
* }
*/
public function update(Request $request, int $id): JsonResponse
{
try {
$provider = LlmProvider::findOrFail($id);
$validated = $request->validate([
'name' => [
'required',
'string',
'max:100',
"unique:llm_providers,name,{$id}",
'regex:/^[\w\-\s]+$/u', // 只允许字母、数字、下划线、横线和空格
],
'service_name' => [
'required',
'string',
'max:100',
'regex:/^[\w\-]+$/u', // 只允许字母、数字、下划线和横线
],
'api_url' => [
'required',
'string',
'max:255',
'url',
'starts_with:https', // 强制使用 HTTPS
],
'api_token' => 'required|string|max:255',
], [
'name.regex' => '提供商名称只能包含字母、数字、下划线、横线和空格。',
'service_name.regex' => '服务名称只能包含字母、数字、下划线和横线。',
'api_url.starts_with' => 'API URL 必须使用 HTTPS 协议。',
]);
$provider->update($validated);
$this->logService->logOperation(
'admin',
$request->admin->id,
"Updated LLM provider: {$provider->name}"
);
return response()->json($provider);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'errors' => $e->errors(),
], 422);
} catch (ModelNotFoundException $e) {
return response()->json([
'error' => 'not_found',
'message' => 'LLM 提供商不存在。',
], 404);
} catch (\Exception $e) {
Log::error('Error updating LLM provider', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
/**
* Delete LLM provider
*
* @param Request $request
* @param int $id
* @return JsonResponse
*
* Success response:
* {
* "message": "提供商已删除。"
* }
*/
public function destroy(Request $request, int $id): JsonResponse
{
try {
$provider = LlmProvider::findOrFail($id);
// 检查是否有客户正在使用该提供商
if ($provider->clients()->exists()) {
return response()->json([
'error' => 'provider_in_use',
'message' => '该提供商正在被客户使用,无法删除。',
], 422);
}
$providerName = $provider->name;
$provider->delete();
$this->logService->logOperation(
'admin',
$request->admin->id,
"Deleted LLM provider: {$providerName}"
);
return response()->json([
'message' => '提供商已删除。',
]);
} catch (ModelNotFoundException $e) {
return response()->json([
'error' => 'not_found',
'message' => 'LLM 提供商不存在。',
], 404);
} catch (\Exception $e) {
Log::error('Error deleting LLM provider', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
'provider_id' => $id,
]);
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
}

38
app/Http/Controllers/Api/AuthController.php
View file

@ -5,6 +5,7 @@
namespace App\Http\Controllers\Api;
use App\Http\Controllers\Controller;
use App\Rules\ThrottleAuthToken;
use App\Services\Auth\TokenService;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
@ -17,11 +18,39 @@ public function __construct(
private readonly TokenService $tokenService
) {}
/**
* Get access token using auth token
*
* @param Request $request
* @return JsonResponse
*
* Request body:
* {
* "auth_token": "string"
* }
*
* Success response:
* {
* "access_token": "string",
* "expires_in": 3600
* }
*
* Error response:
* {
* "error": "error_code",
* "message": "错误描述"
* }
*/
public function getAccessToken(Request $request): JsonResponse
{
try {
$validated = $request->validate([
'auth_token' => 'required|string',
'auth_token' => [
'required',
'string',
'size:64',
new ThrottleAuthToken,
],
]);
$authToken = $this->tokenService->validateAuthToken($validated['auth_token']);
@ -33,14 +62,15 @@ public function getAccessToken(Request $request): JsonResponse
], 401);
}
$accessToken = $this->tokenService->generateAccessToken($authToken);
$result = $this->tokenService->generateAccessToken($authToken);
return response()->json($accessToken);
return response()->json($result);
} catch (ValidationException $e) {
return response()->json([
'error' => 'invalid_request',
'message' => '请求参数缺失。',
'message' => '请求参数缺失或格式错误。',
'details' => $e->errors(),
], 400);
} catch (\Exception $e) {
Log::error('Error generating access token', [

148
app/Http/Controllers/Api/LlmController.php
View file

@ -1 +1,149 @@
<?php
declare(strict_types=1);
namespace App\Http\Controllers\Api;
use App\Http\Controllers\Controller;
use App\Models\Client;
use App\Services\LogService;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Http;
use Illuminate\Support\Facades\Log;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Validation\ValidationException;
class LlmController extends Controller
{
private const REQUEST_TIMEOUT = 30; // 请求超时时间(秒)
private const MAX_ATTEMPTS = 60; // 每分钟最大请求次数
private const DECAY_MINUTES = 1; // 重置时间(分钟)
public function __construct(
private readonly LogService $logService
) {}
/**
* Send prompt request to LLM provider
*
* @param Request $request
* @return JsonResponse
*
* Request headers:
* - Content-Type: application/json
* - Authorization: Bearer {access_token}
*
* Request body:
* {
* "prompt": "string"
* }
*
* Success response:
* {
* "response": "LLM 提供商返回的响应内容"
* }
*
* Error response:
* {
* "error": "error_code",
* "message": "错误描述"
* }
*/
public function request(Request $request): JsonResponse
{
try {
$clientId = $request->get('client_id');
// 检查请求频率限制
$key = 'llm_request_' . $clientId;
if (RateLimiter::tooManyAttempts($key, self::MAX_ATTEMPTS)) {
$seconds = RateLimiter::availableIn($key);
return response()->json([
'error' => 'too_many_requests',
'message' => "请求过于频繁,请在 {$seconds} 秒后重试。",
], 429);
}
$validated = $request->validate([
'prompt' => 'required|string|max:4096',
]);
$client = Client::with('llmProvider')->findOrFail($clientId);
$provider = $client->llmProvider;
// Send request to LLM provider with timeout
$response = Http::timeout(self::REQUEST_TIMEOUT)
->withToken($provider->api_token)
->withHeaders([
'Content-Type' => 'application/json',
'Accept' => 'application/json',
])
->post($provider->api_url, [
'prompt' => $validated['prompt'],
]);
if (!$response->successful()) {
Log::error('LLM provider request failed', [
'status' => $response->status(),
'body' => $response->body(),
'provider' => $provider->name,
]);
throw new \Exception('LLM provider request failed: ' . $response->body());
}
// 记录成功的请求
RateLimiter::hit($key, self::DECAY_MINUTES * 60);
$this->logService->logOperation(
'client',
$client->id,
'Sent prompt to LLM provider: ' . $provider->name
);
return response()->json([
'response' => $response->json(),
]);
} catch (ValidationException $e) {
return response()->json([
'error' => 'validation_error',
'message' => '请求参数验证失败。',
'details' => $e->errors(),
], 422);
} catch (\Illuminate\Database\Eloquent\ModelNotFoundException $e) {
return response()->json([
'error' => 'not_found',
'message' => '客户用户不存在。',
], 404);
} catch (\Illuminate\Http\Client\ConnectionException $e) {
Log::error('LLM provider connection timeout', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
return response()->json([
'error' => 'provider_timeout',
'message' => 'LLM 提供商响应超时,请稍后重试。',
], 504);
} catch (\Exception $e) {
Log::error('Error processing LLM request', [
'error' => $e->getMessage(),
'trace' => $e->getTraceAsString(),
]);
if (str_contains($e->getMessage(), 'LLM provider request failed')) {
return response()->json([
'error' => 'provider_error',
'message' => 'LLM 提供商服务异常,请稍后重试。',
], 502);
}
return response()->json([
'error' => 'server_error',
'message' => '服务器内部错误。',
], 500);
}
}
}

29
app/Http/Middleware/AdminAuthenticate.php
View file

@ -1 +1,30 @@
<?php
declare(strict_types=1);
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Symfony\Component\HttpFoundation\Response;
class AdminAuthenticate
{
public function handle(Request $request, Closure $next): Response
{
if (!Auth::guard('admin')->check()) {
return response()->json([
'error' => 'unauthorized',
'message' => '未授权,请先登录。',
], 401);
}
$admin = Auth::guard('admin')->user();
// Add admin information to the request
$request->merge(['admin' => $admin]);
return $next($request);
}
}

2
app/Providers/AppServiceProvider.php
View file

@ -2,6 +2,7 @@
namespace App\Providers;
use App\Http\Middleware\AdminAuthenticate;
use App\Http\Middleware\ValidateAccessToken;
use Illuminate\Support\ServiceProvider;
use Illuminate\Support\Facades\Route;
@ -22,5 +23,6 @@ public function register(): void
public function boot(): void
{
Route::aliasMiddleware('auth.access_token', ValidateAccessToken::class);
Route::aliasMiddleware('auth.admin', AdminAuthenticate::class);
}
}

28
app/Rules/ThrottleAuthToken.php Normal file
View file

@ -0,0 +1,28 @@
<?php
declare(strict_types=1);
namespace App\Rules;
use Illuminate\Contracts\Validation\Rule;
use Illuminate\Support\Facades\RateLimiter;
use Closure;
class ThrottleAuthToken implements Rule
{
private const MAX_ATTEMPTS = 5; // 最大尝试次数
private const DECAY_MINUTES = 1; // 重置时间(分钟)
public function validate(string $attribute, mixed $value, Closure $fail): void
{
$key = 'auth_token_' . $value;
if (RateLimiter::tooManyAttempts($key, self::MAX_ATTEMPTS)) {
$seconds = RateLimiter::availableIn($key);
$fail("请求过于频繁,请在 {$seconds} 秒后重试。");
return;
}
RateLimiter::hit($key, self::DECAY_MINUTES * 60);
}
}

23
routes/api.php
View file

@ -1,6 +1,10 @@
<?php
use App\Http\Controllers\Api\Admin\AuthController as AdminAuthController;
use App\Http\Controllers\Api\Admin\ClientController;
use App\Http\Controllers\Api\Admin\LlmProviderController;
use App\Http\Controllers\Api\AuthController;
use App\Http\Controllers\Api\LlmController;
use Illuminate\Support\Facades\Route;
// Public routes
@ -8,5 +12,22 @@
// Protected routes (require access token)
Route::middleware('auth.access_token')->group(function () {
// Add protected routes here
Route::post('/llm/request', [LlmController::class, 'request']);
});
// Admin authentication routes
Route::prefix('admin')->group(function () {
Route::post('login', [AdminAuthController::class, 'login']);
Route::middleware('auth.admin')->group(function () {
Route::post('logout', [AdminAuthController::class, 'logout']);
Route::post('change-password', [AdminAuthController::class, 'changePassword']);
// LLM Provider management
Route::apiResource('llm-providers', LlmProviderController::class);
// Client management
Route::apiResource('clients', ClientController::class);
Route::post('clients/{id}/auth-token', [ClientController::class, 'generateAuthToken']);
});
});