Skip to content

API-Documentation.md

Latest commit

 

History

History
756 lines (597 loc) · 13.6 KB

API-Documentation.md

File metadata and controls

756 lines (597 loc) · 13.6 KB

API Documentation | API文档

English | 中文

English

Authentication

All protected endpoints require JWT authentication. Include the token in the Authorization header:

Authorization: Bearer <your-jwt-token>

Base URL

Local Development: http://localhost:8080
Production: https://your-domain.com

API Endpoints

Authentication Endpoints

Get JWT Token

POST /go-api/external/service/auth/token

Obtain a JWT token for API access.

Request Body (form-data):

app_id: string (required) - Application ID
app_secret: string (required) - Application Secret

Response:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
    "expires_in": 604800
  }
}

cURL Example:

curl -X POST http://localhost:8080/go-api/external/service/auth/token \
  -d "app_id=your_app_id" \
  -d "app_secret=your_app_secret"
Create Application

POST /go-api/external/service/auth/app

Create a new application (requires authentication).

Headers:

Authorization: Bearer <your-jwt-token>
Content-Type: application/json

Request Body:

{
  "app_name": "My Application",
  "description": "Application description",
  "redirect_uri": "https://example.com/callback"
}

Response:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "app_id": "generated_app_id",
    "app_secret": "generated_app_secret"
  }
}

cURL Example:

curl -X POST http://localhost:8080/go-api/external/service/auth/app \
  -H "Authorization: Bearer your_jwt_token" \
  -H "Content-Type: application/json" \
  -d '{
    "app_name": "My Application",
    "description": "Application description",
    "redirect_uri": "https://example.com/callback"
  }'

Health Check Endpoints

External Health Check

GET /go-api/external/service/ping

Check external service health.

Response:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}
Internal Health Check

GET /go-api/internal/service/ping

Check internal service health.

Response:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

Response Format

All API responses follow this standard format:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    // Response data
  }
}
  • trace.id comes from the X-Trace-ID request header or is generated by the server.
  • trace.desc is usually an empty string and only includes error details in non-production debug scenarios.

Response Codes

Code Message Description
0 ok Success
-1 System is busy System error
400 Request parameter error Invalid parameters
500 fail Server error
10001 Unauthorized Authentication required
10002 Authorization has failed Invalid credentials
10003 Authorization failed Authorization error
10004 Application does not exist or account info error App not found
10005 Application already exists Duplicate app
10006 User does not exist User not found

Error Handling

Validation Errors

When request validation fails:

{
  "code": 400,
  "msg": "Request parameter error",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

Authentication Errors

When authentication fails:

{
  "code": 10001,
  "msg": "Unauthorized",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

Server Errors

When server encounters an error:

{
  "code": 500,
  "msg": "fail",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

Rate Limiting

API requests are rate-limited to prevent abuse:

  • Limit: 1000 requests per hour per IP
  • Headers: Rate limit information is returned in response headers
    • X-RateLimit-Limit: Request limit
    • X-RateLimit-Remaining: Remaining requests
    • X-RateLimit-Reset: Reset time (Unix timestamp)

Pagination

For endpoints that return lists, use pagination parameters:

Query Parameters:

page: int (default: 1) - Page number
size: int (default: 20, max: 100) - Items per page

Response Format:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "items": [...],
    "pagination": {
      "page": 1,
      "size": 20,
      "total": 100,
      "total_pages": 5
    }
  }
}

API Versioning

The API uses URL versioning:

  • Current version: v1 (default)
  • Future versions: /go-api/v2/...

Testing with Postman

Environment Variables

Set up these variables in Postman:

base_url: http://localhost:8080
jwt_token: (obtained from auth/token endpoint)

Collection Example

  1. Get Token

    • Method: POST
    • URL: {{base_url}}/go-api/external/service/auth/token
    • Body: form-data with app_id and app_secret

  2. Create App

    • Method: POST
    • URL: {{base_url}}/go-api/external/service/auth/app
    • Headers: Authorization: Bearer {{jwt_token}}
    • Body: JSON with app details

WebSocket Support

For real-time features, WebSocket connections are available:

Connection URL:

ws://localhost:8080/ws
wss://your-domain.com/ws (production)

Authentication:

Send JWT token as query parameter: ?token=your_jwt_token

SDK Examples

JavaScript/Node.js

const axios = require('axios');

class GoAPIClient {
  constructor(baseURL, appId, appSecret) {
    this.baseURL = baseURL;
    this.appId = appId;
    this.appSecret = appSecret;
    this.token = null;
  }

  async authenticate() {
    const response = await axios.post(`${this.baseURL}/go-api/external/service/auth/token`, 
      new URLSearchParams({
        app_id: this.appId,
        app_secret: this.appSecret
      })
    );
    
    if (response.data.code === 0) {
      this.token = response.data.data.token;
      return this.token;
    }
    throw new Error('Authentication failed');
  }

  async createApp(appData) {
    if (!this.token) {
      await this.authenticate();
    }

    const response = await axios.post(
      `${this.baseURL}/go-api/external/service/auth/app`,
      appData,
      {
        headers: {
          'Authorization': `Bearer ${this.token}`,
          'Content-Type': 'application/json'
        }
      }
    );

    return response.data;
  }
}

// Usage
const client = new GoAPIClient('http://localhost:8080', 'your_app_id', 'your_app_secret');

Python

import requests
from urllib.parse import urlencode

class GoAPIClient:
    def __init__(self, base_url, app_id, app_secret):
        self.base_url = base_url
        self.app_id = app_id
        self.app_secret = app_secret
        self.token = None

    def authenticate(self):
        url = f"{self.base_url}/go-api/external/service/auth/token"
        data = {
            'app_id': self.app_id,
            'app_secret': self.app_secret
        }
        
        response = requests.post(url, data=data)
        result = response.json()
        
        if result['code'] == 0:
            self.token = result['data']['token']
            return self.token
        raise Exception('Authentication failed')

    def create_app(self, app_data):
        if not self.token:
            self.authenticate()

        url = f"{self.base_url}/go-api/external/service/auth/app"
        headers = {
            'Authorization': f'Bearer {self.token}',
            'Content-Type': 'application/json'
        }
        
        response = requests.post(url, json=app_data, headers=headers)
        return response.json()

# Usage
client = GoAPIClient('http://localhost:8080', 'your_app_id', 'your_app_secret')

中文

认证

所有受保护的端点都需要JWT认证。在Authorization头中包含令牌:

Authorization: Bearer <your-jwt-token>

基础URL

本地开发: http://localhost:8080
生产环境: https://your-domain.com

API端点

认证端点

获取JWT令牌

POST /go-api/external/service/auth/token

获取API访问的JWT令牌。

请求体 (form-data):

app_id: string (必需) - 应用ID
app_secret: string (必需) - 应用密钥

响应:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
    "expires_in": 604800
  }
}

cURL示例:

curl -X POST http://localhost:8080/go-api/external/service/auth/token \
  -d "app_id=your_app_id" \
  -d "app_secret=your_app_secret"
创建应用

POST /go-api/external/service/auth/app

创建新应用(需要认证)。

请求头:

Authorization: Bearer <your-jwt-token>
Content-Type: application/json

请求体:

{
  "app_name": "我的应用",
  "description": "应用描述",
  "redirect_uri": "https://example.com/callback"
}

响应:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "app_id": "generated_app_id",
    "app_secret": "generated_app_secret"
  }
}

健康检查端点

外部健康检查

GET /go-api/external/service/ping

检查外部服务健康状态。

响应:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}
内部健康检查

GET /go-api/internal/service/ping

检查内部服务健康状态。

响应:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

响应格式

所有API响应都遵循此标准格式:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    // 响应数据
  }
}
  • trace.id 来自请求头 X-Trace-ID,如果没有传入则由服务端自动生成。
  • trace.desc 通常为空字符串,只有在非生产环境且开启调试时才会返回错误详情。

响应代码

代码 消息 描述
0 ok 成功
-1 System is busy 系统错误
400 Request parameter error 参数无效
500 fail 服务器错误
10001 Unauthorized 需要认证
10002 Authorization has failed 认证失败
10003 Authorization failed 授权错误
10004 Application does not exist or account info error 应用不存在
10005 Application already exists 应用已存在
10006 User does not exist 用户不存在

错误处理

验证错误

当请求验证失败时:

{
  "code": 400,
  "msg": "Request parameter error",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

认证错误

当认证失败时:

{
  "code": 10001,
  "msg": "Unauthorized",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

服务器错误

当服务器遇到错误时:

{
  "code": 500,
  "msg": "fail",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": null
}

速率限制

API请求受到速率限制以防止滥用:

  • 限制: 每IP每小时1000个请求
  • 头部: 速率限制信息在响应头中返回
    • X-RateLimit-Limit: 请求限制
    • X-RateLimit-Remaining: 剩余请求数
    • X-RateLimit-Reset: 重置时间(Unix时间戳)

分页

对于返回列表的端点,使用分页参数:

查询参数:

page: int (默认: 1) - 页码
size: int (默认: 20, 最大: 100) - 每页项目数

响应格式:

{
  "code": 0,
  "msg": "ok",
  "trace": {
    "id": "afeade2f5957-tcdtjo-gdmaj",
    "desc": ""
  },
  "data": {
    "items": [...],
    "pagination": {
      "page": 1,
      "size": 20,
      "total": 100,
      "total_pages": 5
    }
  }
}

API版本控制

API使用URL版本控制:

  • 当前版本: v1(默认)
  • 未来版本: /go-api/v2/...

使用Postman测试

环境变量

在Postman中设置这些变量:

base_url: http://localhost:8080
jwt_token: (从auth/token端点获取)

SDK示例

JavaScript/Node.js

const axios = require('axios');

class GoAPIClient {
  constructor(baseURL, appId, appSecret) {
    this.baseURL = baseURL;
    this.appId = appId;
    this.appSecret = appSecret;
    this.token = null;
  }

  async authenticate() {
    const response = await axios.post(`${this.baseURL}/go-api/external/service/auth/token`, 
      new URLSearchParams({
        app_id: this.appId,
        app_secret: this.appSecret
      })
    );
    
    if (response.data.code === 0) {
      this.token = response.data.data.token;
      return this.token;
    }
    throw new Error('认证失败');
  }

  async createApp(appData) {
    if (!this.token) {
      await this.authenticate();
    }

    const response = await axios.post(
      `${this.baseURL}/go-api/external/service/auth/app`,
      appData,
      {
        headers: {
          'Authorization': `Bearer ${this.token}`,
          'Content-Type': 'application/json'
        }
      }
    );

    return response.data;
  }
}

// 使用方法
const client = new GoAPIClient('http://localhost:8080', 'your_app_id', 'your_app_secret');