docs: update docs about insecure skip verify

Author: 0xJacky

api/openai/openai.go

@@ -1,18 +1,18 @@
 package openai
 
 import (
-    "context"
-    "crypto/tls"
-    "fmt"
-    "github.com/0xJacky/Nginx-UI/api"
-    "github.com/0xJacky/Nginx-UI/internal/chatbot"
-    "github.com/0xJacky/Nginx-UI/settings"
-    "github.com/gin-gonic/gin"
-    "github.com/pkg/errors"
-    "github.com/sashabaranov/go-openai"
-    "io"
-    "net/http"
-    "net/url"
+	"context"
+	"crypto/tls"
+	"fmt"
+	"github.com/0xJacky/Nginx-UI/api"
+	"github.com/0xJacky/Nginx-UI/internal/chatbot"
+	"github.com/0xJacky/Nginx-UI/settings"
+	"github.com/gin-gonic/gin"
+	"github.com/pkg/errors"
+	"github.com/sashabaranov/go-openai"
+	"io"
+	"net/http"
+	"net/url"
 )
 
 const ChatGPTInitPrompt = `You are a assistant who can help users write and optimise the configurations of Nginx,
@@ -22,111 +22,111 @@ Later the language environment depends on the user message.
 The first reply should involve the key information of the file and ask user what can you help them.`
 
 func MakeChatCompletionRequest(c *gin.Context) {
-    var json struct {
-        Filepath string                         `json:"filepath"`
-        Messages []openai.ChatCompletionMessage `json:"messages"`
-    }
-
-    if !api.BindAndValid(c, &json) {
-        return
-    }
-
-    messages := []openai.ChatCompletionMessage{
-        {
-            Role:    openai.ChatMessageRoleSystem,
-            Content: ChatGPTInitPrompt,
-        },
-    }
-
-    messages = append(messages, json.Messages...)
-
-    if json.Filepath != "" {
-        messages = chatbot.ChatCompletionWithContext(json.Filepath, messages)
-    }
-
-    // SSE server
-    c.Writer.Header().Set("Content-Type", "text/event-stream; charset=utf-8")
-    c.Writer.Header().Set("Cache-Control", "no-cache")
-    c.Writer.Header().Set("Connection", "keep-alive")
-    c.Writer.Header().Set("Access-Control-Allow-Origin", "*")
-
-    config := openai.DefaultConfig(settings.OpenAISettings.Token)
-
-    if settings.OpenAISettings.Proxy != "" {
-        proxyUrl, err := url.Parse(settings.OpenAISettings.Proxy)
-        if err != nil {
-            c.Stream(func(w io.Writer) bool {
-                c.SSEvent("message", gin.H{
-                    "type":    "error",
-                    "content": err.Error(),
-                })
-                return false
-            })
-            return
-        }
-        transport := &http.Transport{
-            Proxy:           http.ProxyURL(proxyUrl),
-            TLSClientConfig: &tls.Config{InsecureSkipVerify: settings.ServerSettings.InsecureSkipVerify},
-        }
-        config.HTTPClient = &http.Client{
-            Transport: transport,
-        }
-    }
-
-    if settings.OpenAISettings.BaseUrl != "" {
-        config.BaseURL = settings.OpenAISettings.BaseUrl
-    }
-
-    openaiClient := openai.NewClientWithConfig(config)
-    ctx := context.Background()
-
-    req := openai.ChatCompletionRequest{
-        Model:    settings.OpenAISettings.Model,
-        Messages: messages,
-        Stream:   true,
-    }
-    stream, err := openaiClient.CreateChatCompletionStream(ctx, req)
-    if err != nil {
-        fmt.Printf("CompletionStream error: %v\n", err)
-        c.Stream(func(w io.Writer) bool {
-            c.SSEvent("message", gin.H{
-                "type":    "error",
-                "content": err.Error(),
-            })
-            return false
-        })
-        return
-    }
-    defer stream.Close()
-    msgChan := make(chan string)
-    go func() {
-        defer close(msgChan)
-        for {
-            response, err := stream.Recv()
-            if errors.Is(err, io.EOF) {
-                fmt.Println()
-                return
-            }
-
-            if err != nil {
-                fmt.Printf("Stream error: %v\n", err)
-                return
-            }
-
-            message := fmt.Sprintf("%s", response.Choices[0].Delta.Content)
-
-            msgChan <- message
-        }
-    }()
-
-    c.Stream(func(w io.Writer) bool {
-        if m, ok := <-msgChan; ok {
-            c.SSEvent("message", gin.H{
-                "type":    "message",
-                "content": m,
-            })
-            return true
-        }
-        return false
-    })
+	var json struct {
+		Filepath string                         `json:"filepath"`
+		Messages []openai.ChatCompletionMessage `json:"messages"`
+	}
+
+	if !api.BindAndValid(c, &json) {
+		return
+	}
+
+	messages := []openai.ChatCompletionMessage{
+		{
+			Role:    openai.ChatMessageRoleSystem,
+			Content: ChatGPTInitPrompt,
+		},
+	}
+
+	messages = append(messages, json.Messages...)
+
+	if json.Filepath != "" {
+		messages = chatbot.ChatCompletionWithContext(json.Filepath, messages)
+	}
+
+	// SSE server
+	c.Writer.Header().Set("Content-Type", "text/event-stream; charset=utf-8")
+	c.Writer.Header().Set("Cache-Control", "no-cache")
+	c.Writer.Header().Set("Connection", "keep-alive")
+	c.Writer.Header().Set("Access-Control-Allow-Origin", "*")
+
+	config := openai.DefaultConfig(settings.OpenAISettings.Token)
+
+	if settings.OpenAISettings.Proxy != "" {
+		proxyUrl, err := url.Parse(settings.OpenAISettings.Proxy)
+		if err != nil {
+			c.Stream(func(w io.Writer) bool {
+				c.SSEvent("message", gin.H{
+					"type":    "error",
+					"content": err.Error(),
+				})
+				return false
+			})
+			return
+		}
+		transport := &http.Transport{
+			Proxy:           http.ProxyURL(proxyUrl),
+			TLSClientConfig: &tls.Config{InsecureSkipVerify: settings.ServerSettings.InsecureSkipVerify},
+		}
+		config.HTTPClient = &http.Client{
+			Transport: transport,
+		}
+	}
+
+	if settings.OpenAISettings.BaseUrl != "" {
+		config.BaseURL = settings.OpenAISettings.BaseUrl
+	}
+
+	openaiClient := openai.NewClientWithConfig(config)
+	ctx := context.Background()
+
+	req := openai.ChatCompletionRequest{
+		Model:    settings.OpenAISettings.Model,
+		Messages: messages,
+		Stream:   true,
+	}
+	stream, err := openaiClient.CreateChatCompletionStream(ctx, req)
+	if err != nil {
+		fmt.Printf("CompletionStream error: %v\n", err)
+		c.Stream(func(w io.Writer) bool {
+			c.SSEvent("message", gin.H{
+				"type":    "error",
+				"content": err.Error(),
+			})
+			return false
+		})
+		return
+	}
+	defer stream.Close()
+	msgChan := make(chan string)
+	go func() {
+		defer close(msgChan)
+		for {
+			response, err := stream.Recv()
+			if errors.Is(err, io.EOF) {
+				fmt.Println()
+				return
+			}
+
+			if err != nil {
+				fmt.Printf("Stream error: %v\n", err)
+				return
+			}
+
+			message := fmt.Sprintf("%s", response.Choices[0].Delta.Content)
+
+			msgChan <- message
+		}
+	}()
+
+	c.Stream(func(w io.Writer) bool {
+		if m, ok := <-msgChan; ok {
+			c.SSEvent("message", gin.H{
+				"type":    "message",
+				"content": m,
+			})
+			return true
+		}
+		return false
+	})
 }

docs/guide/config-server.md

@@ -145,3 +145,10 @@ Nginx UI will not create a system initial acme user, this means you can't apply
 - Type: `string`
 
 Use this option to customize the name of local server to be displayed in the environment indicator.
+
+## InsecureSkipVerify
+
+- Version：`>= v2.0.0-beta.30`
+- Type: `bool`
+
+This option is used to skip the verification of the certificate of servers when Nginx UI sends requests to them.

docs/guide/env.md

@@ -3,24 +3,25 @@ Applicable for version v2.0.0-beta.23 and above.
 
 ## Server
 
-| Configuration Setting         | Environment Variable                  |
-| ----------------------------- | ------------------------------------- |
-| HttpPort                      | NGINX_UI_SERVER_HTTP_PORT             |
-| RunMode                       | NGINX_UI_SERVER_RUN_MODE              |
-| JwtSecret                     | NGINX_UI_SERVER_JWT_SECRET            |
-| HTTPChallengePort             | NGINX_UI_SERVER_HTTP_CHALLENGE_PORT   |
-| StartCmd                      | NGINX_UI_SERVER_START_CMD             |
-| Database                      | NGINX_UI_SERVER_DATABASE              |
-| CADir                         | NGINX_UI_SERVER_CA_DIR                |
-| GithubProxy                   | NGINX_UI_SERVER_GITHUB_PROXY          |
-| NodeSecret                    | NGINX_UI_SERVER_NODE_SECRET           |
-| Demo                          | NGINX_UI_SERVER_DEMO                  |
-| PageSize                      | NGINX_UI_SERVER_PAGE_SIZE             |
-| HttpHost                      | NGINX_UI_SERVER_HTTP_HOST             |
-| CertRenewalInterval           | NGINX_UI_SERVER_CERT_RENEWAL_INTERVAL |
-| RecursiveNameservers          | NGINX_UI_SERVER_RECURSIVE_NAMESERVERS |
-| SkipInstallation              | NGINX_UI_SERVER_SKIP_INSTALLATION     |
-| Name                          | NGINX_UI_SERVER_NAME                  |
+| Configuration Setting | Environment Variable                  |
+|-----------------------|---------------------------------------|
+| HttpPort              | NGINX_UI_SERVER_HTTP_PORT             |
+| RunMode               | NGINX_UI_SERVER_RUN_MODE              |
+| JwtSecret             | NGINX_UI_SERVER_JWT_SECRET            |
+| HTTPChallengePort     | NGINX_UI_SERVER_HTTP_CHALLENGE_PORT   |
+| StartCmd              | NGINX_UI_SERVER_START_CMD             |
+| Database              | NGINX_UI_SERVER_DATABASE              |
+| CADir                 | NGINX_UI_SERVER_CA_DIR                |
+| GithubProxy           | NGINX_UI_SERVER_GITHUB_PROXY          |
+| NodeSecret            | NGINX_UI_SERVER_NODE_SECRET           |
+| Demo                  | NGINX_UI_SERVER_DEMO                  |
+| PageSize              | NGINX_UI_SERVER_PAGE_SIZE             |
+| HttpHost              | NGINX_UI_SERVER_HTTP_HOST             |
+| CertRenewalInterval   | NGINX_UI_SERVER_CERT_RENEWAL_INTERVAL |
+| RecursiveNameservers  | NGINX_UI_SERVER_RECURSIVE_NAMESERVERS |
+| SkipInstallation      | NGINX_UI_SERVER_SKIP_INSTALLATION     |
+| Name                  | NGINX_UI_SERVER_NAME                  |
+| InsecureSkipVerify    | NGINX_UI_SERVER_INSECURE_SKIP_VERIFY  |
 
 ## Nginx
 

docs/zh_CN/guide/config-server.md

@@ -132,3 +132,10 @@ Nginx UI 将不会创建系统初始的 acme 用户，这意味着您无法在
 - 类型：`string`
 
 使用此选项自定义本地服务器的名称，以在环境指示器中显示。
+
+## InsecureSkipVerify
+
+- 版本：`>= v2.0.0-beta.30`
+- 类型: `bool`
+
+此选项用于配置 Nginx UI 服务器在与其他服务器建立 TLS 连接时是否跳过证书验证。

docs/zh_CN/guide/env.md

@@ -3,24 +3,25 @@
 
 ## Server
 
-| Configuration Setting         | Environment Variable                  |
-| ----------------------------- | ------------------------------------- |
-| HttpPort                      | NGINX_UI_SERVER_HTTP_PORT             |
-| RunMode                       | NGINX_UI_SERVER_RUN_MODE              |
-| JwtSecret                     | NGINX_UI_SERVER_JWT_SECRET            |
-| HTTPChallengePort             | NGINX_UI_SERVER_HTTP_CHALLENGE_PORT   |
-| StartCmd                      | NGINX_UI_SERVER_START_CMD             |
-| Database                      | NGINX_UI_SERVER_DATABASE              |
-| CADir                         | NGINX_UI_SERVER_CA_DIR                |
-| GithubProxy                   | NGINX_UI_SERVER_GITHUB_PROXY          |
-| NodeSecret                    | NGINX_UI_SERVER_NODE_SECRET           |
-| Demo                          | NGINX_UI_SERVER_DEMO                  |
-| PageSize                      | NGINX_UI_SERVER_PAGE_SIZE             |
-| HttpHost                      | NGINX_UI_SERVER_HTTP_HOST             |
-| CertRenewalInterval           | NGINX_UI_SERVER_CERT_RENEWAL_INTERVAL |
-| RecursiveNameservers          | NGINX_UI_SERVER_RECURSIVE_NAMESERVERS |
-| SkipInstallation              | NGINX_UI_SERVER_SKIP_INSTALLATION     |
-| Name                          | NGINX_UI_SERVER_NAME                  |
+| Configuration Setting   | Environment Variable                  |
+|-------------------------| ------------------------------------- |
+| HttpPort                | NGINX_UI_SERVER_HTTP_PORT             |
+| RunMode                 | NGINX_UI_SERVER_RUN_MODE              |
+| JwtSecret               | NGINX_UI_SERVER_JWT_SECRET            |
+| HTTPChallengePort       | NGINX_UI_SERVER_HTTP_CHALLENGE_PORT   |
+| StartCmd                | NGINX_UI_SERVER_START_CMD             |
+| Database                | NGINX_UI_SERVER_DATABASE              |
+| CADir                   | NGINX_UI_SERVER_CA_DIR                |
+| GithubProxy             | NGINX_UI_SERVER_GITHUB_PROXY          |
+| NodeSecret              | NGINX_UI_SERVER_NODE_SECRET           |
+| Demo                    | NGINX_UI_SERVER_DEMO                  |
+| PageSize                | NGINX_UI_SERVER_PAGE_SIZE             |
+| HttpHost                | NGINX_UI_SERVER_HTTP_HOST             |
+| CertRenewalInterval     | NGINX_UI_SERVER_CERT_RENEWAL_INTERVAL |
+| RecursiveNameservers    | NGINX_UI_SERVER_RECURSIVE_NAMESERVERS |
+| SkipInstallation        | NGINX_UI_SERVER_SKIP_INSTALLATION     |
+| Name                    | NGINX_UI_SERVER_NAME                  |
+| InsecureSkipVerify      | NGINX_UI_SERVER_INSECURE_SKIP_VERIFY  |
 
 ## Nginx
 

docs/zh_TW/guide/config-server.md

@@ -133,3 +133,10 @@ Nginx UI 將不會創建系統初始的 acme 使用者，這意味著您無法
 - 類型：`string`
 
 使用此選項自定義本地伺服器的名稱，以在環境指示器中顯示。
+
+## InsecureSkipVerify
+
+- 版本：`>= v2.0.0-beta.30`
+- 類型: `bool`
+
+此選項用於配置 Nginx UI 伺服器在與其他伺服器建立 TLS 連接時是否跳過證書驗證。