papa/klg-asutk-app
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
44b14cc4fd
klg-asutk-app/middleware.ts
Yuriy 44b14cc4fd feat: все AI-функции переведены на Anthropic Claude API 
- ai_service.py: единый AI-сервис (chat, chat_with_history, analyze_document)
- routes/ai.py: POST /api/v1/ai/chat (chat, summarize, extract_risks, classify, translate)
- config.py: ANTHROPIC_API_KEY, ANTHROPIC_MODEL
- requirements.txt: anthropic>=0.42.0
- api-client.ts: aiApi (chat, summarize, extractRisks)
- CSP: connect-src добавлен https://api.anthropic.com
- app/api/ai-chat: прокси на бэкенд /api/v1/ai/chat (Anthropic)
- legal_agents/llm_client.py: переведён на ai_service (Claude)
- AIAccessSettings: только Claude (Sonnet 4, 3 Sonnet, 3 Opus)
- k8s, .env.example: OPENAI → ANTHROPIC
- package.json: удалена зависимость openai
- Документация: OpenAI/GPT заменены на Claude/Anthropic

Провайдер: исключительно Anthropic Claude
Модель по умолчанию: claude-sonnet-4-20250514

Co-authored-by: Cursor <cursoragent@cursor.com>
2026-02-15 15:51:59 +03:00

67 lines
2.2 KiB
TypeScript
Raw Blame History

/**
* Next.js Middleware
*/
import { NextResponse } from 'next/server';
import type { NextRequest } from 'next/server';
const PUBLIC_API_ROUTES = ['/api/health', '/api/openapi'];
function isPublicRoute(pathname: string): boolean {
return PUBLIC_API_ROUTES.some(route => pathname.startsWith(route));
}
export function middleware(request: NextRequest) {
const pathname = request.nextUrl.pathname;
if (
pathname.startsWith('/_next/') ||
pathname.startsWith('/static/') ||
pathname.startsWith('/favicon.ico')
) {
return NextResponse.next();
}
const response = NextResponse.next();
if (!pathname.startsWith('/api') && !pathname.startsWith('/_next')) {
response.headers.set('X-Content-Type-Options', 'nosniff');
response.headers.set('X-Frame-Options', 'DENY');
response.headers.set('X-XSS-Protection', '1; mode=block');
response.headers.set('Referrer-Policy', 'strict-origin-when-cross-origin');
const isDev = process.env.NODE_ENV === 'development';
const scriptSrc = isDev ? "script-src 'self' 'unsafe-eval'" : "script-src 'self'";
const csp = [
"default-src 'self'",
scriptSrc,
"style-src 'self' 'unsafe-inline'",
"img-src 'self' data: https:",
"font-src 'self'",
"connect-src 'self' https://api.anthropic.com",
"frame-ancestors 'none'",
"base-uri 'self'",
"form-action 'self'",
].join('; ');
response.headers.set('Content-Security-Policy', csp);
}
// AUTH: в production требуется токен. Dev: ENABLE_DEV_AUTH + NEXT_PUBLIC_DEV_TOKEN на бэкенде
const isDev = process.env.NODE_ENV === 'development';
const skipAuth = isDev || process.env.NEXT_PUBLIC_USE_MOCK_DATA === 'true';
if (pathname.startsWith('/api') && !isPublicRoute(pathname) && !skipAuth) {
const authHeader = request.headers.get('authorization');
const cookieToken = request.cookies.get('auth-token')?.value;
if (!authHeader && !cookieToken) {
return NextResponse.json(
{ error: 'Unauthorized', message: 'Missing authentication token' },
{ status: 401 }
);
}
}
return response;
}
export const config = {
matcher: ['/api/:path*', '/(.*)'],
};
Reference in New Issue View Git Blame Copy Permalink