init

Author: KimmyXYC

KimmyXYC/go.mod

@@ -4,9 +4,9 @@ go 1.23
 
 require (
 	github.com/gin-gonic/gin v1.10.0
-	github.com/golang-jwt/jwt/v5 v5.2.1
+	github.com/golang-jwt/jwt/v5 v5.2.2
 	github.com/joho/godotenv v1.5.1
-	golang.org/x/crypto v0.26.0
+	golang.org/x/crypto v0.27.0
 	gorm.io/driver/postgres v1.5.9
 	gorm.io/gorm v1.25.11
 )

KimmyXYC/internal/db/db.go

@@ -12,8 +12,7 @@ import (
 // Connect opens a PostgreSQL connection using DATABASE_URL.
 func Connect(databaseURL string) (*gorm.DB, error) {
 	if databaseURL == "" {
-		// Provide a friendly default to help first run; it will still fail if DB not available.
-		databaseURL = "postgres://postgres:postgres@localhost:5432/aibackend?sslmode=disable"
+		return nil, fmt.Errorf("DATABASE_URL is required")
 	}
 	dsn := databaseURL
 	db, err := gorm.Open(postgres.Open(dsn), &gorm.Config{})

KimmyXYC/internal/provider/openai.go

@@ -43,9 +43,9 @@ func NewOpenAIProviderFromEnv() *OpenAIProvider {
 }
 
 type openAIChatRequest struct {
-	Model    string               `json:"model"`
-	Messages []openAIChatMessage  `json:"messages"`
-	Stream   bool                 `json:"stream"`
+	Model    string              `json:"model"`
+	Messages []openAIChatMessage `json:"messages"`
+	Stream   bool                `json:"stream"`
 }
 
 type openAIChatMessage struct {
@@ -54,18 +54,18 @@ type openAIChatMessage struct {
 }
 
 type openAIStreamChunk struct {
-	ID      string                   `json:"id"`
-	Object  string                   `json:"object"`
-	Created int64                    `json:"created"`
-	Model   string                   `json:"model"`
+	ID      string                    `json:"id"`
+	Object  string                    `json:"object"`
+	Created int64                     `json:"created"`
+	Model   string                    `json:"model"`
 	Choices []openAIStreamChunkChoice `json:"choices"`
 }
 
 type openAIStreamChunkChoice struct {
-	Index int                      `json:"index"`
-	Delta openAIStreamDelta        `json:"delta"`
+	Index int               `json:"index"`
+	Delta openAIStreamDelta `json:"delta"`
 	// finish_reason may be "stop" etc.
-	FinishReason *string           `json:"finish_reason"`
+	FinishReason *string `json:"finish_reason"`
 }
 
 type openAIStreamDelta struct {
@@ -125,7 +125,10 @@ func (p *OpenAIProvider) ChatCompletionStream(ctx context.Context, model string,
 		for {
 			select {
 			case <-ctx.Done():
-				ch <- StreamChunk{Err: ctx.Err()}
+				select {
+				case ch <- StreamChunk{Err: ctx.Err()}:
+				default:
+				}
 				return
 			default:
 			}

KimmyXYC/internal/services/chat_service.go

@@ -80,7 +80,12 @@ func (s *ChatService) SendMessage(ctx context.Context, userID uint, convID uint,
 	}
 	// Load recent messages for context
 	var msgs []models.Message
-	s.DB.Where("conversation_id = ?", conv.ID).Order("id desc").Limit(s.MaxTurns * 2).Find(&msgs)
+	if err := s.DB.Where("conversation_id = ?", conv.ID).
+		Order("id desc").
+		Limit(s.MaxTurns * 2).
+		Find(&msgs).Error; err != nil {
+		return conv.ID, "", err
+	}
 	// reverse to chronological
 	for i, j := 0, len(msgs)-1; i < j; i, j = i+1, j-1 {
 		msgs[i], msgs[j] = msgs[j], msgs[i]
@@ -118,5 +123,8 @@ func (s *ChatService) SendMessage(ctx context.Context, userID uint, convID uint,
 	if err := s.DB.Create(am).Error; err != nil {
 		return conv.ID, "", err
 	}
+	if err := s.DB.Model(conv).UpdateColumn("updated_at", time.Now()).Error; err != nil {
+		return conv.ID, "", err
+	}
 	return conv.ID, am.Content, nil
 }

KimmyXYC/pkg/auth/token.go

@@ -8,13 +8,12 @@ import (
 	"github.com/golang-jwt/jwt/v5"
 )
 
-var defaultSecret = []byte("dev-secret-change-me")
-
-func jwtSecret() []byte {
-	if s := os.Getenv("JWT_SECRET"); s != "" {
-		return []byte(s)
+func jwtSecret() ([]byte, error) {
+	s := os.Getenv("JWT_SECRET")
+	if s == "" {
+		return nil, errors.New("JWT_SECRET is not configured")
 	}
-	return defaultSecret
+	return []byte(s), nil
 }
 
 // Claims represents JWT claims for a user session.
@@ -36,14 +35,22 @@ func CreateToken(userID uint, email, role string, ttl time.Duration) (string, er
 			IssuedAt:  jwt.NewNumericDate(time.Now()),
 		},
 	}
+	key, err := jwtSecret()
+	if err != nil {
+		return "", err
+	}
 	t := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
-	return t.SignedString(jwtSecret())
+	return t.SignedString(key)
 }
 
 // ParseToken parses and validates a JWT, returning claims if valid.
 func ParseToken(token string) (*Claims, error) {
+	key, err := jwtSecret()
+	if err != nil {
+		return nil, err
+	}
 	tok, err := jwt.ParseWithClaims(token, &Claims{}, func(t *jwt.Token) (interface{}, error) {
-		return jwtSecret(), nil
+		return key, nil
 	})
 	if err != nil {
 		return nil, err

KimmyXYC/web/js/chat.js

@@ -68,7 +68,12 @@ export function initChatUI() {
         li.dataset.id = c.id;
         li.className = (c.id === currentConv) ? 'active' : '';
         const title = c.title || `对话 #${c.id}`;
-        li.innerHTML = `<div>${title}</div><small>${c.model || ''}</small>`;
+        const titleDiv = document.createElement('div');
+        titleDiv.textContent = title;
+        const modelSmall = document.createElement('small');
+        modelSmall.textContent = c.model || '';
+        li.appendChild(titleDiv);
+        li.appendChild(modelSmall);
         li.addEventListener('click', async () => {
           currentConv = c.id;
           document.querySelectorAll('#conv-list li').forEach(x => x.classList.remove('active'));