fix import file size limit to 20mb

james-6-23 · james-6-23 · commit 18de86a945bc · 2026-05-15T05:35:31.000+08:00
diff --git a/admin/handler.go b/admin/handler.go
@@ -13,6 +13,7 @@ import (
 	"fmt"
 	"io"
 	"log"
+	"mime/multipart"
 	"net"
 	"net/http"
 	"reflect"
@@ -75,6 +76,8 @@ const (
 	adminAPIKeyCountNamespace     = "api-key-count"
 	adminUsageStatsCacheTTL       = 5 * time.Second
 	adminChartCacheTTL            = 10 * time.Second
+	importFileSizeLimitBytes      = 20 * 1024 * 1024
+	importFileSizeLimitLabel      = "20MB"
 )
 
 func (h *Handler) getRuntimeJSON(ctx context.Context, namespace, key string, dest interface{}) bool {
@@ -110,6 +113,13 @@ func (h *Handler) setRuntimeJSON(ctx context.Context, namespace, key string, val
 	}
 }
 
+func validateImportFileSize(fh *multipart.FileHeader) error {
+	if fh.Size > importFileSizeLimitBytes {
+		return fmt.Errorf("文件 %s 大小超过 %s", fh.Filename, importFileSizeLimitLabel)
+	}
+	return nil
+}
+
 func (h *Handler) deleteRuntimeCache(ctx context.Context, namespace, key string) {
 	if h == nil || h.cache == nil {
 		return
@@ -1832,8 +1842,8 @@ func readUploadedImportFiles(c *gin.Context) ([]uploadedImportFile, error) {
 
 	result := make([]uploadedImportFile, 0, len(files))
 	for _, fh := range files {
-		if fh.Size > 2*1024*1024 {
-			return nil, fmt.Errorf("文件 %s 大小超过 2MB", fh.Filename)
+		if err := validateImportFileSize(fh); err != nil {
+			return nil, err
 		}
 
 		f, err := fh.Open()
@@ -1905,8 +1915,8 @@ func (h *Handler) importAccountsJSON(c *gin.Context, proxyURL string) {
 	var allTokens []importToken
 
 	for _, fh := range files {
-		if fh.Size > 2*1024*1024 {
-			writeError(c, http.StatusBadRequest, fmt.Sprintf("文件 %s 大小超过 2MB", fh.Filename))
+		if err := validateImportFileSize(fh); err != nil {
+			writeError(c, http.StatusBadRequest, err.Error())
 			return
 		}
 
diff --git a/admin/import_json_test.go b/admin/import_json_test.go
@@ -298,6 +298,20 @@ func TestReadUploadedImportFilesReadsRepeatedFileFields(t *testing.T) {
 	}
 }
 
+func TestValidateImportFileSize(t *testing.T) {
+	if err := validateImportFileSize(&multipart.FileHeader{Filename: "ok.txt", Size: importFileSizeLimitBytes}); err != nil {
+		t.Fatalf("validateImportFileSize returned error for boundary size: %v", err)
+	}
+
+	err := validateImportFileSize(&multipart.FileHeader{Filename: "too-big.txt", Size: importFileSizeLimitBytes + 1})
+	if err == nil {
+		t.Fatal("expected oversized file error, got nil")
+	}
+	if got, want := err.Error(), "文件 too-big.txt 大小超过 20MB"; got != want {
+		t.Fatalf("error = %q, want %q", got, want)
+	}
+}
+
 func TestImportAccountsJSONReturnsExistingNoTokenMessageForUnsupportedJSON(t *testing.T) {
 	gin.SetMode(gin.TestMode)
 
diff --git a/docs/API.md b/docs/API.md
@@ -642,7 +642,7 @@ curl -X POST http://localhost:8080/api/admin/accounts/at \
 
 | 字段      | 类型   | 必填 | 说明                                      |
 | --------- | ------ | ---- | ----------------------------------------- |
-| file      | file   | 是   | 上传文件（最大 2MB，JSON 格式支持多文件） |
+| file      | file   | 是   | 上传文件（最大 20MB，JSON 格式支持多文件） |
 | format    | string | 否   | 文件格式：`txt`（默认）、`json`、`at_txt` |
 | proxy_url | string | 否   | 代理 URL                                  |
 
diff --git a/frontend/src/locales/en.json b/frontend/src/locales/en.json
@@ -1430,7 +1430,7 @@
     },
     "importAccounts": {
       "title": "Import Accounts (File Upload)",
-      "desc": "Batch import accounts via file upload. Supports three formats: txt (one RT per line), json (CLIProxyAPI credential export compatible), at_txt (one AT per line). Max file size 2MB."
+      "desc": "Batch import accounts via file upload. Supports three formats: txt (one RT per line), json (CLIProxyAPI credential export compatible), at_txt (one AT per line). Max file size 20MB."
     },
     "deleteAccount": {
       "title": "Delete Account",
diff --git a/frontend/src/locales/zh.json b/frontend/src/locales/zh.json
@@ -1430,7 +1430,7 @@
     },
     "importAccounts": {
       "title": "Import Accounts (File Upload)",
-      "desc": "通过文件上传批量导入账号。支持三种格式：txt（每行一个 RT）、json（兼容 CLIProxyAPI 凭证导出）、at_txt（每行一个 AT）。文件大小限制 2MB。"
+      "desc": "通过文件上传批量导入账号。支持三种格式：txt（每行一个 RT）、json（兼容 CLIProxyAPI 凭证导出）、at_txt（每行一个 AT）。文件大小限制 20MB。"
     },
     "deleteAccount": {
       "title": "Delete Account",
diff --git a/frontend/src/pages/docs/docsContent.ts b/frontend/src/pages/docs/docsContent.ts
@@ -441,8 +441,8 @@ export function buildAdminSpecs(
       title: copy(locale, "文件批量导入账号", "Bulk import accounts from file"),
       description: copy(
         locale,
-        "通过文件批量导入账号，支持 txt、CLIProxyAPI 导出的 json、以及每行一个 AT 的 at_txt，文件最大 2MB。",
-        "Bulk import accounts from file. Supports txt, CLIProxyAPI-exported json, and at_txt with one access token per line; max file size is 2MB.",
+        "通过文件批量导入账号，支持 txt、CLIProxyAPI 导出的 json、以及每行一个 AT 的 at_txt，文件最大 20MB。",
+        "Bulk import accounts from file. Supports txt, CLIProxyAPI-exported json, and at_txt with one access token per line; max file size is 20MB.",
       ),
       curl: `# TXT — one Refresh Token per line
 curl --request POST \\
