Complete API key and group management polish

Author: DeliciousBuding

admin/handler.go

@@ -3281,6 +3281,10 @@ func (h *Handler) CreateAPIKey(c *gin.Context) {
 
 type updateAPIKeyReq struct {
 	Name            *string         `json:"name"`
+	QuotaLimit      json.RawMessage `json:"quota_limit"`
+	Quota           json.RawMessage `json:"quota"`
+	ExpiresAt       json.RawMessage `json:"expires_at"`
+	ExpiresInDays   *int            `json:"expires_in_days"`
 	AllowedGroupIDs json.RawMessage `json:"allowed_group_ids"`
 }
 
@@ -3302,6 +3306,16 @@ func (h *Handler) UpdateAPIKey(c *gin.Context) {
 		writeError(c, http.StatusBadRequest, err.Error())
 		return
 	}
+	quotaLimit, quotaLimitSet, err := parseOptionalAPIKeyQuota(req.QuotaLimit, req.Quota)
+	if err != nil {
+		writeError(c, http.StatusBadRequest, err.Error())
+		return
+	}
+	expiresAt, expiresAtSet, err := parseOptionalAPIKeyExpiration(req.ExpiresAt, req.ExpiresInDays)
+	if err != nil {
+		writeError(c, http.StatusBadRequest, err.Error())
+		return
+	}
 	ctx, cancel := context.WithTimeout(c.Request.Context(), 5*time.Second)
 	defer cancel()
 	row, err := h.db.GetAPIKeyByID(ctx, id)
@@ -3327,11 +3341,15 @@ func (h *Handler) UpdateAPIKey(c *gin.Context) {
 			writeError(c, http.StatusBadRequest, "名称包含非法字符")
 			return
 		}
-		if err := h.db.UpdateAPIKeyName(ctx, id, name); err != nil {
-			writeInternalError(c, err)
+		req.Name = &name
+	}
+	if quotaLimitSet {
+		if quotaLimit > 1000000000 {
+			writeError(c, http.StatusBadRequest, "额度限制不能超过 1000000000")
 			return
 		}
 	}
+	var allowedGroupValues []int64
 	if allowedGroupIDs.Set {
 		missing, err := h.db.VerifyAccountGroupIDs(ctx, allowedGroupIDs.Values)
 		if err != nil {
@@ -3346,19 +3364,71 @@ func (h *Handler) UpdateAPIKey(c *gin.Context) {
 			writeError(c, http.StatusBadRequest, "allowed_group_ids 包含不存在的分组 ID: "+strings.Join(values, ", "))
 			return
 		}
-		values := dedupeInt64(allowedGroupIDs.Values)
-		if err := h.db.UpdateAPIKeyAllowedGroupIDs(ctx, id, values); err != nil {
-			writeInternalError(c, err)
-			return
-		}
-		if h.store != nil {
-			h.store.SetAPIKeyAllowedGroups(id, values)
-		}
+		allowedGroupValues = dedupeInt64(allowedGroupIDs.Values)
+	}
+	update := database.APIKeyUpdate{
+		QuotaLimit:         quotaLimit,
+		QuotaLimitSet:      quotaLimitSet,
+		ExpiresAt:          expiresAt,
+		ExpiresAtSet:       expiresAtSet,
+		AllowedGroupIDs:    allowedGroupValues,
+		AllowedGroupIDsSet: allowedGroupIDs.Set,
+	}
+	if req.Name != nil {
+		update.Name = *req.Name
+		update.NameSet = true
+	}
+	if err := h.db.UpdateAPIKey(ctx, id, update); err != nil {
+		writeInternalError(c, err)
+		return
+	}
+	if allowedGroupIDs.Set && h.store != nil {
+		h.store.SetAPIKeyAllowedGroups(id, allowedGroupValues)
 	}
 	h.invalidateAPIKeyRuntimeCaches(ctx, row.Key)
 	writeMessage(c, http.StatusOK, "API Key 已更新")
 }
 
+func parseOptionalAPIKeyQuota(quotaLimitRaw, quotaRaw json.RawMessage) (float64, bool, error) {
+	raw := quotaLimitRaw
+	if len(raw) == 0 {
+		raw = quotaRaw
+	}
+	if len(raw) == 0 {
+		return 0, false, nil
+	}
+	if bytes.Equal(bytes.TrimSpace(raw), []byte("null")) {
+		return 0, true, nil
+	}
+	var value float64
+	if err := json.Unmarshal(raw, &value); err != nil {
+		return 0, true, fmt.Errorf("额度限制必须是数字")
+	}
+	if value < 0 {
+		return 0, true, fmt.Errorf("额度限制不能小于 0")
+	}
+	return value, true, nil
+}
+
+func parseOptionalAPIKeyExpiration(raw json.RawMessage, expiresInDays *int) (sql.NullTime, bool, error) {
+	if expiresInDays != nil {
+		expiresAt, err := parseAPIKeyExpiresAt("", expiresInDays)
+		return expiresAt, true, err
+	}
+	if len(raw) == 0 {
+		return sql.NullTime{}, false, nil
+	}
+	if bytes.Equal(bytes.TrimSpace(raw), []byte("null")) {
+		return sql.NullTime{}, true, nil
+	}
+	var value string
+	if err := json.Unmarshal(raw, &value); err != nil {
+		return sql.NullTime{}, true, fmt.Errorf("过期时间格式无效")
+	}
+	expiresAt, err := parseAPIKeyExpiresAt(value, nil)
+	return expiresAt, true, err
+}
+
 func parseAPIKeyExpiresAt(raw string, expiresInDays *int) (sql.NullTime, error) {
 	if expiresInDays != nil {
 		if *expiresInDays < 0 {

admin/handler_test.go

@@ -12,8 +12,10 @@ import (
 	"path/filepath"
 	"strings"
 	"testing"
+	"time"
 
 	"github.com/codex2api/auth"
+	"github.com/codex2api/cache"
 	"github.com/codex2api/database"
 	"github.com/gin-gonic/gin"
 )
@@ -185,6 +187,124 @@ func TestCreateAPIKeyPersistsQuotaAndExpiration(t *testing.T) {
 	}
 }
 
+func TestUpdateAPIKeyPreservesOmittedFieldsAndUpdatesLimits(t *testing.T) {
+	gin.SetMode(gin.TestMode)
+
+	dbPath := filepath.Join(t.TempDir(), "codex2api.db")
+	db, err := database.New("sqlite", dbPath)
+	if err != nil {
+		t.Fatalf("database.New 返回错误: %v", err)
+	}
+	defer db.Close()
+
+	expiresAt := sql.NullTime{Time: time.Now().AddDate(0, 0, 3), Valid: true}
+	id, err := db.InsertAPIKeyWithOptions(context.Background(), database.APIKeyInput{
+		Name:       "Client A",
+		Key:        "sk-test-update-client-1234567890",
+		QuotaLimit: 0.25,
+		ExpiresAt:  expiresAt,
+	})
+	if err != nil {
+		t.Fatalf("InsertAPIKeyWithOptions 返回错误: %v", err)
+	}
+
+	handler := &Handler{db: db}
+	recorder := httptest.NewRecorder()
+	ctx, _ := gin.CreateTestContext(recorder)
+	ctx.Params = gin.Params{{Key: "id", Value: fmt.Sprintf("%d", id)}}
+	ctx.Request = httptest.NewRequest(http.MethodPatch, "/api/admin/keys/1", strings.NewReader(`{"name":"Client B"}`))
+	ctx.Request.Header.Set("Content-Type", "application/json")
+
+	handler.UpdateAPIKey(ctx)
+
+	if recorder.Code != http.StatusOK {
+		t.Fatalf("status = %d, want %d, body=%s", recorder.Code, http.StatusOK, recorder.Body.String())
+	}
+	row, err := db.GetAPIKeyByID(context.Background(), id)
+	if err != nil {
+		t.Fatalf("GetAPIKeyByID 返回错误: %v", err)
+	}
+	if row.Name != "Client B" || row.QuotaLimit != 0.25 || !row.ExpiresAt.Valid {
+		t.Fatalf("row = %#v, want renamed with quota/expiration preserved", row)
+	}
+
+	recorder = httptest.NewRecorder()
+	ctx, _ = gin.CreateTestContext(recorder)
+	ctx.Params = gin.Params{{Key: "id", Value: fmt.Sprintf("%d", id)}}
+	ctx.Request = httptest.NewRequest(http.MethodPatch, "/api/admin/keys/1", strings.NewReader(`{"quota_limit":0,"expires_at":null}`))
+	ctx.Request.Header.Set("Content-Type", "application/json")
+
+	handler.UpdateAPIKey(ctx)
+
+	if recorder.Code != http.StatusOK {
+		t.Fatalf("status = %d, want %d, body=%s", recorder.Code, http.StatusOK, recorder.Body.String())
+	}
+	row, err = db.GetAPIKeyByID(context.Background(), id)
+	if err != nil {
+		t.Fatalf("GetAPIKeyByID 返回错误: %v", err)
+	}
+	if row.Name != "Client B" || row.QuotaLimit != 0 || row.ExpiresAt.Valid {
+		t.Fatalf("row = %#v, want quota/expiration cleared with name preserved", row)
+	}
+}
+
+func TestUpdateAPIKeyRefreshesRuntimeStoreAndCache(t *testing.T) {
+	gin.SetMode(gin.TestMode)
+
+	dbPath := filepath.Join(t.TempDir(), "codex2api.db")
+	db, err := database.New("sqlite", dbPath)
+	if err != nil {
+		t.Fatalf("database.New 返回错误: %v", err)
+	}
+	defer db.Close()
+
+	ctx := context.Background()
+	groupID, err := db.CreateAccountGroup(ctx, "Team", "", "#2563eb", 0)
+	if err != nil {
+		t.Fatalf("CreateAccountGroup 返回错误: %v", err)
+	}
+	key := "sk-test-runtime-refresh-1234567890"
+	keyID, err := db.InsertAPIKey(ctx, "Client A", key)
+	if err != nil {
+		t.Fatalf("InsertAPIKey 返回错误: %v", err)
+	}
+	store := auth.NewStore(nil, nil, nil)
+	tc := cache.NewMemory(1)
+	handler := &Handler{db: db, store: store, cache: tc}
+	payload, err := json.Marshal(map[string]interface{}{
+		"id":         keyID,
+		"name":       "Client A",
+		"created_at": time.Now().UTC(),
+	})
+	if err != nil {
+		t.Fatalf("marshal runtime cache: %v", err)
+	}
+	if err := tc.SetRuntime(ctx, adminAPIKeyCacheNamespace, key, payload, time.Minute); err != nil {
+		t.Fatalf("SetRuntime api key: %v", err)
+	}
+
+	recorder := httptest.NewRecorder()
+	ginCtx, _ := gin.CreateTestContext(recorder)
+	ginCtx.Params = gin.Params{{Key: "id", Value: fmt.Sprintf("%d", keyID)}}
+	ginCtx.Request = httptest.NewRequest(http.MethodPatch, "/api/admin/keys/1", strings.NewReader(fmt.Sprintf(`{"allowed_group_ids":[%d]}`, groupID)))
+	ginCtx.Request.Header.Set("Content-Type", "application/json")
+
+	handler.UpdateAPIKey(ginCtx)
+
+	if recorder.Code != http.StatusOK {
+		t.Fatalf("status = %d, want %d, body=%s", recorder.Code, http.StatusOK, recorder.Body.String())
+	}
+	if got := store.GetAPIKeyAllowedGroups(keyID); len(got) != 1 || got[0] != groupID {
+		t.Fatalf("runtime store allowed groups = %v, want [%d]", got, groupID)
+	}
+	if _, ok, err := tc.GetRuntime(ctx, adminAPIKeyCacheNamespace, key); err != nil || ok {
+		t.Fatalf("runtime api key cache after update ok=%v err=%v, want miss", ok, err)
+	}
+	if _, ok, err := tc.GetRuntime(ctx, adminAPIKeyCountNamespace, "all"); err != nil || ok {
+		t.Fatalf("runtime api key count cache after update ok=%v err=%v, want miss", ok, err)
+	}
+}
+
 func TestGetAccountAuthJSONRejectsInvalidID(t *testing.T) {
 	gin.SetMode(gin.TestMode)
 

database/postgres.go

@@ -472,6 +472,11 @@ func (db *DB) migrate(ctx context.Context) error {
 		created_at  TIMESTAMPTZ DEFAULT NOW(),
 		updated_at  TIMESTAMPTZ DEFAULT NOW()
 	);
+	ALTER TABLE account_groups ADD COLUMN IF NOT EXISTS description TEXT DEFAULT '';
+	ALTER TABLE account_groups ADD COLUMN IF NOT EXISTS color VARCHAR(20) DEFAULT '';
+	ALTER TABLE account_groups ADD COLUMN IF NOT EXISTS sort_order INT DEFAULT 0;
+	ALTER TABLE account_groups ADD COLUMN IF NOT EXISTS created_at TIMESTAMPTZ DEFAULT NOW();
+	ALTER TABLE account_groups ADD COLUMN IF NOT EXISTS updated_at TIMESTAMPTZ DEFAULT NOW();
 
 	CREATE TABLE IF NOT EXISTS account_group_members (
 		account_id BIGINT NOT NULL,
@@ -796,6 +801,17 @@ type APIKeyInput struct {
 	AllowedGroupIDs []int64
 }
 
+type APIKeyUpdate struct {
+	Name               string
+	NameSet            bool
+	QuotaLimit         float64
+	QuotaLimitSet      bool
+	ExpiresAt          sql.NullTime
+	ExpiresAtSet       bool
+	AllowedGroupIDs    []int64
+	AllowedGroupIDsSet bool
+}
+
 const apiKeySelectColumns = `id, name, key, created_at, COALESCE(quota_limit, 0), COALESCE(quota_used, 0), expires_at, COALESCE(allowed_group_ids, '[]')`
 
 // ListAPIKeys 获取所有 API 密钥
@@ -893,6 +909,41 @@ func (db *DB) UpdateAPIKeyName(ctx context.Context, id int64, name string) error
 	return nil
 }
 
+// UpdateAPIKeyQuotaLimit updates the quota ceiling. A non-positive value clears the limit.
+func (db *DB) UpdateAPIKeyQuotaLimit(ctx context.Context, id int64, quotaLimit float64) error {
+	if quotaLimit < 0 {
+		quotaLimit = 0
+	}
+	res, err := db.conn.ExecContext(ctx, `UPDATE api_keys SET quota_limit = $1 WHERE id = $2`, quotaLimit, id)
+	if err != nil {
+		return err
+	}
+	affected, err := res.RowsAffected()
+	if err != nil {
+		return err
+	}
+	if affected == 0 {
+		return sql.ErrNoRows
+	}
+	return nil
+}
+
+// UpdateAPIKeyExpiresAt updates or clears the key expiration.
+func (db *DB) UpdateAPIKeyExpiresAt(ctx context.Context, id int64, expiresAt sql.NullTime) error {
+	res, err := db.conn.ExecContext(ctx, `UPDATE api_keys SET expires_at = $1 WHERE id = $2`, nullableTimeArg(expiresAt), id)
+	if err != nil {
+		return err
+	}
+	affected, err := res.RowsAffected()
+	if err != nil {
+		return err
+	}
+	if affected == 0 {
+		return sql.ErrNoRows
+	}
+	return nil
+}
+
 // UpdateAPIKeyAllowedGroups persists the allowed-group scope for an API key.
 // Empty slice clears the scope (key may schedule any account).
 func (db *DB) UpdateAPIKeyAllowedGroups(ctx context.Context, id int64, groupIDs []int64) error {
@@ -923,6 +974,64 @@ func (db *DB) UpdateAPIKeyAllowedGroupIDs(ctx context.Context, id int64, groupID
 	return db.UpdateAPIKeyAllowedGroups(ctx, id, groupIDs)
 }
 
+// UpdateAPIKey applies multiple editable fields in one transaction.
+// Omitted fields keep their existing values.
+func (db *DB) UpdateAPIKey(ctx context.Context, id int64, update APIKeyUpdate) error {
+	sets := make([]string, 0, 4)
+	args := make([]interface{}, 0, 5)
+	placeholder := func() string {
+		args = append(args, nil)
+		if db.isSQLite() {
+			return "?"
+		}
+		return fmt.Sprintf("$%d", len(args))
+	}
+	setArg := func(value interface{}) string {
+		ph := placeholder()
+		args[len(args)-1] = value
+		return ph
+	}
+	if update.NameSet {
+		sets = append(sets, "name = "+setArg(update.Name))
+	}
+	if update.QuotaLimitSet {
+		quotaLimit := update.QuotaLimit
+		if quotaLimit < 0 {
+			quotaLimit = 0
+		}
+		sets = append(sets, "quota_limit = "+setArg(quotaLimit))
+	}
+	if update.ExpiresAtSet {
+		sets = append(sets, "expires_at = "+setArg(nullableTimeArg(update.ExpiresAt)))
+	}
+	if update.AllowedGroupIDsSet {
+		payload := encodeInt64SliceJSON(update.AllowedGroupIDs)
+		ph := setArg(payload)
+		if db.isSQLite() {
+			sets = append(sets, "allowed_group_ids = "+ph)
+		} else {
+			sets = append(sets, "allowed_group_ids = "+ph+"::jsonb")
+		}
+	}
+	if len(sets) == 0 {
+		return nil
+	}
+	idPlaceholder := placeholder()
+	args[len(args)-1] = id
+	res, err := db.conn.ExecContext(ctx, "UPDATE api_keys SET "+strings.Join(sets, ", ")+" WHERE id = "+idPlaceholder, args...)
+	if err != nil {
+		return err
+	}
+	affected, err := res.RowsAffected()
+	if err != nil {
+		return err
+	}
+	if affected == 0 {
+		return sql.ErrNoRows
+	}
+	return nil
+}
+
 // ==================== System Settings ====================
 
 const DefaultSiteName = "CodexProxy"