Prisma/vite.config.ts at main · yeahhe365/Prisma · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160

import path from 'path';
import { Readable } from 'stream';
import { defineConfig, loadEnv } from 'vite';
import react from '@vitejs/plugin-react';
import tailwindcss from '@tailwindcss/vite';
import type { Connect } from 'vite';

// Allowed API hostnames to prevent SSRF
const ALLOWED_HOSTS = [
  'generativelanguage.googleapis.com',
  'api.openai.com',
  'api.deepseek.com',
  'api.anthropic.com',
  'api.groq.com',
  'api.mistral.ai',
  'open.bigmodel.cn',
  'dashscope.aliyuncs.com',
];

function customApiProxyMiddleware(): Connect.NextHandleFunction {
  return async (req, res, next) => {
    if (!req.url?.startsWith('/custom-api')) {
      return next();
    }

    const targetUrlHeader = req.headers['x-target-url'];
    const targetUrl = Array.isArray(targetUrlHeader) ? targetUrlHeader[0] : targetUrlHeader;

    if (!targetUrl) {
      console.error('[Custom Proxy] Missing X-Target-URL header');
      res.statusCode = 400;
      res.end(JSON.stringify({ error: 'Missing X-Target-URL header' }));
      return;
    }

    try {
      const url = new URL(targetUrl);

      if (!ALLOWED_HOSTS.includes(url.hostname)) {
        console.error(`[Custom Proxy] Blocked request to disallowed host: ${url.hostname}`);
        res.statusCode = 403;
        res.end(JSON.stringify({ error: 'Target host not allowed' }));
        return;
      }

      if (url.protocol !== 'https:' && url.protocol !== 'http:') {
        console.error(`[Custom Proxy] Blocked request with unsupported protocol: ${url.protocol}`);
        res.statusCode = 403;
        res.end(JSON.stringify({ error: 'Unsupported protocol' }));
        return;
      }

      // Clean up target base URL (remove trailing slash)
      let targetBase = targetUrl.trim();
      if (targetBase.endsWith('/')) {
        targetBase = targetBase.slice(0, -1);
      }

      // 2. Extract relative path (remove /custom-api prefix)
      let targetPath = req.url.replace(/^\/custom-api/, '');

      // 3. Ensure targetPath starts with /
      if (!targetPath.startsWith('/')) {
        targetPath = '/' + targetPath;
      }

      // Construct full URL
      const fullUrl = `${targetBase}${targetPath}`;

      console.log(`[Custom Proxy] ${req.method} ${req.url} -> ${fullUrl}`);

      // Collect request body
      const chunks: Buffer[] = [];
      for await (const chunk of req) {
        chunks.push(chunk as Buffer);
      }
      const body = Buffer.concat(chunks);

      // Forward headers
      const forwardHeaders: Record<string, string> = {};
      // Filter out headers that confuse the upstream server or are hop-by-hop
      const skipHeaders = ['host', 'connection', 'x-target-url', 'transfer-encoding', 'origin', 'referer'];

      for (const [key, value] of Object.entries(req.headers)) {
        if (!skipHeaders.includes(key.toLowerCase()) && value) {
          forwardHeaders[key] = Array.isArray(value) ? value[0] : value;
        }
      }

      // Explicitly set Host to the target host (crucial for some APIs like OpenAI/Vercel)
      forwardHeaders['host'] = url.hostname;
      forwardHeaders['accept-encoding'] = 'identity';

      const fetchOptions: RequestInit = {
        method: req.method,
        headers: forwardHeaders,
        body: ['GET', 'HEAD'].includes(req.method || '') ? undefined : body,
      };

      const response = await fetch(fullUrl, fetchOptions);

      // Forward response status and headers
      res.statusCode = response.status;
      response.headers.forEach((value, key) => {
        if (!['transfer-encoding', 'connection', 'content-encoding', 'content-length'].includes(key.toLowerCase())) {
          res.setHeader(key, value);
        }
      });

      // Stream the response body using Node.js pipeline for proper backpressure
      if (response.body) {
        Readable.fromWeb(response.body as any).pipe(res);
      } else {
        res.end();
      }

    } catch (error: unknown) {
      const message = error instanceof Error ? error.message : 'Unknown error';
      console.error('[Custom Proxy] Error:', message);
      res.statusCode = 502;
      res.end(JSON.stringify({ error: 'Proxy error', message }));
    }
  };
}

export default defineConfig(({ mode }) => {
    const env = loadEnv(mode, '.', '');

    return {
      server: {
        port: 3000,
        host: '0.0.0.0',
        proxy: {
          // Fallback proxies for specific known routes if not using custom-api
          '/openai/v1': {
            target: 'https://api.openai.com',
            changeOrigin: true,
            secure: true,
            rewrite: (path) => path.replace(/^\/openai\/v1/, '/v1'),
          },
        }
      },
      plugins: [
        react(),
        tailwindcss(),
        {
          name: 'custom-api-proxy',
          configureServer(server) {
            server.middlewares.use(customApiProxyMiddleware());
          },
        },
      ],
      resolve: {
        alias: {
          '@': path.resolve(__dirname, '.'),
        }
      }
    };
});