Cyrene/backend/gateway/internal/config/config.go

package config

import (
	"os"
	"time"

	"github.com/golang-jwt/jwt/v5"
)

// Config 应用配置
type Config struct {
	Env  string
	Port string

	// 数据库
	PostgresHost string
	PostgresPort string
	PostgresUser string
	PostgresPass string
	PostgresDB   string

	// Redis
	RedisHost string
	RedisPort string
	RedisPass string

	// JWT
	JWTSecret      string
	JWTExpiryHours time.Duration

	// 管理员账户 (开发阶段使用)
	AdminUsername string
	AdminPassword string

	// 注册开关
	RegistrationEnabled bool

	// AI-Core 服务
	AICoreURL string

	// LLM (透传给AI-Core，Gateway可能也需要)
	LLMAPIURL  string
	LLMAPIKey  string
	LLMModel   string

	// WebSocket
	WSMaxConnections int

	// Webhook (第三方平台接入)
	WebhookAPIKey string
}

// Load 从环境变量加载配置
func Load() *Config {
	return &Config{
		Env:  getEnv("ENV", "development"),
		Port: getEnv("GATEWAY_PORT", "8080"),

		PostgresHost: getEnv("POSTGRES_HOST", "localhost"),
		PostgresPort: getEnv("POSTGRES_PORT", "5432"),
		PostgresUser: getEnv("POSTGRES_USER", "cyrene"),
		PostgresPass: getEnv("POSTGRES_PASSWORD", "change_me"),
		PostgresDB:   getEnv("POSTGRES_DB", "cyrene_ai"),

		RedisHost: getEnv("REDIS_HOST", "localhost"),
		RedisPort: getEnv("REDIS_PORT", "6379"),
		RedisPass: getEnv("REDIS_PASSWORD", ""),

		JWTSecret:      getEnv("JWT_SECRET", "change-me-in-production"),
		JWTExpiryHours: time.Duration(getEnvInt("JWT_EXPIRY_HOURS", 720)) * time.Hour,

		// 管理员账户 (开发阶段使用)
		AdminUsername: getEnv("ADMIN_USERNAME", "admin"),
		AdminPassword: getEnv("ADMIN_PASSWORD", "cyrene-dev-admin"),

		// 注册开关 (开发阶段默认关闭)
		RegistrationEnabled: getEnvBool("REGISTRATION_ENABLED", false),

		AICoreURL: getEnv("AI_CORE_URL", "http://localhost:8081"),

		LLMAPIURL: getEnv("LLM_API_URL", "https://api.openai.com/v1"),
		LLMAPIKey: getEnv("LLM_API_KEY", ""),
		LLMModel:  getEnv("LLM_MODEL", "gpt-4o"),

		WSMaxConnections: getEnvInt("WS_MAX_CONNECTIONS", 1000),

		WebhookAPIKey: getEnv("WEBHOOK_API_KEY", ""),
	}
}

// GenerateToken 生成JWT token
func (c *Config) GenerateToken(userID string) (string, error) {
	claims := jwt.MapClaims{
		"user_id": userID,
		"exp":     time.Now().Add(c.JWTExpiryHours).Unix(),
		"iat":     time.Now().Unix(),
	}
	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
	return token.SignedString([]byte(c.JWTSecret))
}

// ValidateToken 验证JWT token
func (c *Config) ValidateToken(tokenString string) (string, error) {
	token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
			return nil, jwt.ErrSignatureInvalid
		}
		return []byte(c.JWTSecret), nil
	})
	if err != nil {
		return "", err
	}

	claims, ok := token.Claims.(jwt.MapClaims)
	if !ok || !token.Valid {
		return "", jwt.ErrSignatureInvalid
	}

	userID, _ := claims["user_id"].(string)
	return userID, nil
}

func getEnv(key, fallback string) string {
	if v := os.Getenv(key); v != "" {
		return v
	}
	return fallback
}

func getEnvInt(key string, fallback int) int {
	v := os.Getenv(key)
	if v == "" {
		return fallback
	}
	var result int
	for _, c := range v {
		if c < '0' || c > '9' {
			return fallback
		}
		result = result*10 + int(c-'0')
	}
	return result
}

func getEnvBool(key string, fallback bool) bool {
	v := os.Getenv(key)
	if v == "" {
		return fallback
	}
	return v == "true" || v == "1" || v == "yes"
}