new-api

mirror of https://github.com/linux-do/new-api.git synced 2025-09-26 20:06:37 +08:00

Author	SHA1	Message	Date
ayuan	c7371f62bc	Update user.go 在函数中发现一个严重的安全问题： user.go：541-561UpdateSelf 代码使用了硬编码的魔法字符串来绕过密码验证，这可能被恶意利用。如果用户提交这个特殊字符串作为密码，验证器会认为密码有效，但实际上密码会被设置为空。"$I_LOVE_U"	2025-07-03 11:38:25 +08:00
ayuan	a2d95f62c4	Update github.go 在该函数中，有一行注释显示了一个严重错误：github.go：203-204GitHubBind 错误在第 204 行，代码从会话中检索用户 ID，但有一个带注释的第 203 行显示了原始（有问题的）实现：github.go：203// id := c.GetInt("id") // critical bug! 问题原始的 bug 代码会尝试从 Gin 上下文中获取用户 ID，但这将失败，因为：c.GetInt("id") 用户 ID 不会在此端点的 Gin 上下文中自动设置这可能会返回 0 或在尝试绑定 GitHub 帐户时导致 panic 然后，该函数将尝试更新 ID 为 0 的用户，而该 ID 不存在	2025-07-03 11:33:35 +08:00
wozulong	e0f780185a	Merge remote-tracking branch 'upstream/main'	2024-10-14 16:32:13 +08:00
wozulong	c47e1dc6fe	merge upstream Signed-off-by: wozulong <>	2024-10-14 16:31:22 +08:00
1808837298@qq.com	f599c65944	fix: 修复用户可选分组不能选择用户分组 (close #528 )	2024-10-14 16:22:22 +08:00
1808837298@qq.com	89ddf83b44	feat: 弃用旧的聊天配置	2024-10-12 21:09:59 +08:00
1808837298@qq.com	6a8a4bcf65	fix: playground group	2024-10-10 13:39:09 +08:00
1808837298@qq.com	e298f2e5a4	feat: playground token name	2024-10-10 13:34:29 +08:00
1808837298@qq.com	f9ba10f180	fix: playground max_tokens #512 #511	2024-09-27 20:18:53 +08:00
1808837298@qq.com	0cf53ac5ff	feat: Playground相关接口禁用AccessToken	2024-09-26 01:49:35 +08:00
1808837298@qq.com	9a4ca1e210	feat: playground	2024-09-26 00:59:09 +08:00
wozulong	27b8495698	upgrade stripe Signed-off-by: wozulong <>	2024-09-25 17:49:07 +08:00
1808837298@qq.com	9fe1f35fd1	fix: 第三方登录注销 #500	2024-09-25 17:15:59 +08:00
1808837298@qq.com	972ac1ee0f	fix: 第三方登录注销 #500	2024-09-25 17:13:28 +08:00
1808837298@qq.com	b58b1dc0ec	feat: 更新令牌生成算法	2024-09-25 16:31:25 +08:00
1808837298@qq.com	05d9aa61df	feat: 不自动生成系统访问令牌	2024-09-25 16:31:25 +08:00
1808837298@qq.com	221894d972	fix: error user role	2024-09-24 17:49:57 +08:00
wozulong	333849429b	merge upstream Signed-off-by: wozulong <>	2024-09-23 11:15:45 +08:00
1808837298@qq.com	ed972eef06	feat: pricing page support multi groups #487	2024-09-22 17:44:57 +08:00
CalciumIon	af7fecbfa7	fix: 使用令牌分组时 "/v1/models" 返回模型不正确 #481	2024-09-18 19:19:37 +08:00
CalciumIon	052bc2075b	feat: 令牌分组	2024-09-18 05:19:49 +08:00
CalciumIon	9032b5cfbf	fix: 初始令牌	2024-09-17 23:07:16 +08:00
CalciumIon	ed948c121a	Merge branch 'main' into g-main # Conflicts: # web/src/App.js	2024-09-17 22:50:59 +08:00
CalciumIon	a03cd15505	fix: '/v1/models' #474	2024-09-17 22:41:54 +08:00
CalciumIon	02f5137781	fix: '/v1/models' #474	2024-09-17 22:39:58 +08:00
CalciumIon	e6df0ed20c	fix: '/vi/models' #474	2024-09-17 22:36:20 +08:00
CalciumIon	f505afdc10	feat: 添加令牌ip白名单功能	2024-09-17 20:49:51 +08:00
wozulong	9b14c5da63	merge upstream Signed-off-by: wozulong <>	2024-09-15 17:30:59 +08:00
GuoRuqiang	6bbf1d4843	Merge branch 'Calcium-Ion:main' into main	2024-09-14 19:00:03 +08:00
CalciumIon	cb73889353	feat: support o1 channel test	2024-09-13 03:17:04 +08:00
wozulong	a60f209c85	optimized blocking issue during bulk log data deletion Signed-off-by: wozulong <>	2024-09-10 17:24:44 +08:00
wozulong	208bc5e794	merge upstream Signed-off-by: wozulong <>	2024-09-05 17:36:17 +08:00
GuoRuqiang	ecf2f7f212	Merge branch 'Calcium-Ion:main' into main	2024-08-28 21:44:54 +08:00
CalciumIon	01fd8b53a6	feat: 检测vertex渠道部署地区是否填写	2024-08-28 18:47:27 +08:00
CalciumIon	e60f200192	feat: 支持vertex ai渠道多个部署地区	2024-08-28 18:43:40 +08:00
GuoRuqiang	033359e93c	Merge branch 'Calcium-Ion:main' into main	2024-08-28 10:44:14 +08:00
CalciumIon	ac4262c542	feat: support vertex ai #377	2024-08-27 20:19:51 +08:00
wozulong	400b2b0ed0	merge upstream Signed-off-by: wozulong <>	2024-08-26 18:50:07 +08:00
Jin Weihan	716bf6f48a	增加环境变量GENERATE_DEFAULT_TOKEN 设置之后将生成初始令牌，默认关闭。	2024-08-24 18:44:37 +00:00
GuoRuqiang	2422eb2820	Merge branch 'Calcium-Ion:main' into main	2024-08-25 01:55:23 +08:00
CalciumIon	46e03683ce	fix: channel auto ban	2024-08-24 17:27:14 +08:00
GuoRuqiang	c97e2875b4	增加注册自动生成初始令牌。	2024-08-18 15:12:59 +00:00
wozulong	fefe5913e9	merge upstream Signed-off-by: wozulong <>	2024-08-15 22:30:28 +08:00
CalciumIon	8cd8cc29bc	fix: log page 'Cannot read properties of undefined (reading 'length')'	2024-08-14 22:43:57 +08:00
Nothing.	228104e848	Merge branch 'Calcium-Ion:main' into fix-log-page	2024-08-11 11:22:34 +08:00
OswinWu	a2af637e7f	fix: log分页问题	2024-08-11 11:21:34 +08:00
wozulong	1c371300ab	merge upstream Signed-off-by: wozulong <>	2024-08-06 15:54:28 +08:00
CalciumIon	a0a3807bd4	chore: epay	2024-08-04 03:12:24 +08:00
CalciumIon	5d0d268c97	fix: epay	2024-08-04 00:18:32 +08:00
CalciumIon	0123ad4d61	fix: 重试后request id不一致	2024-08-03 17:46:13 +08:00

1 2 3 4 5 ...

573 Commits