Merge pull request #83 from WJQSERVER-STUDIO/main

Sync to v2 Branch
Merge pull request #82 from WJQSERVER-STUDIO/dev
2025-03-30 17:42:52 +08:00 · 2025-03-30 17:41:36 +08:00 · 2025-03-30 17:37:38 +08:00 · 2025-03-30 17:27:26 +08:00 · 2025-03-30 17:22:34 +08:00 · 2025-03-29 12:45:17 +08:00
49 changed files with 1315 additions and 2246 deletions
--- a/.github/ISSUE_TEMPLATE/features_request.md
+++ b/.github/ISSUE_TEMPLATE/features_request.md
@@ -2,7 +2,7 @@
 name: Features request
 about: 提出新功能建议
 title: "[Features]"
-labels: 改进
+labels: enhancement
 assignees: ''
 ---
--- a/.github/workflows/auto-assign.yml
+++ b/.github/workflows/auto-assign.yml
@@ -15,5 +15,5 @@ jobs:
      uses: pozil/auto-assign-issue@v1
      with:
          repo-token: ${{ secrets.AUTO_ASSIGN }}
-          assignees: WJQSERVER, satomitouka
+          assignees: WJQSERVER, satomitoka
          numOfAssignee: 2
--- a/.github/workflows/build-dev.yml
+++ b/.github/workflows/build-dev.yml
@@ -59,11 +59,13 @@ jobs:
          else
            echo "DEV-VERSION file not found!" && exit 1
          fi
      - name: 拉取前端
        run: |
          sudo git clone https://github.com/WJQSERVER-STUDIO/GHPrxoy-Frontend.git pages
          sudo rm -rf pages/.git/
      - name: 安装 Go
        uses: actions/setup-go@v3
        with:
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -13,8 +13,6 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
        with: 
          ref: main
      - name: 加载版本号
        run: |
          if [ -f VERSION ]; then
@@ -51,8 +49,6 @@ jobs:
    steps:
      - uses: actions/checkout@v3
        with:
          ref: main
      - name: 加载版本号
        run: |
          if [ -f VERSION ]; then
@@ -60,6 +56,7 @@ jobs:
          else
            echo "VERSION file not found!" && exit 1
          fi
      - name: 拉取前端
        run: |
          sudo git clone https://github.com/WJQSERVER-STUDIO/GHPrxoy-Frontend.git pages
@@ -111,8 +108,6 @@ jobs:
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          ref: main
      - name: Load VERSION
        run: |
          if [ -f VERSION ]; then
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,172 +1,5 @@
 # 更新日志
 3.2.2 - 2025-04-29
 ---
 - ADD: 实验性的raw Header处置, 用于应对Github对zh-CN的限制
 - FIX: 修正Header部分的一些处理问题
 - REVERT: 为`git clone`部分回滚 3.1.0中的 "使用`bodystream`进行req方向的body复制, 而不是使用额外的`buffer reader`" 修改
 25w33b - 2025-04-29
 ---
 - REVERT: 为`git clone`部分回滚 3.1.0中的 "使用`bodystream`进行req方向的body复制, 而不是使用额外的`buffer reader`" 修改
 25w33a - 2025-04-29
 ---
 - ADD: 实验性的raw Header处置, 用于应对Github对zh-CN的限制
 - FIX: 修正Header部分的一些处理问题
 3.2.1 - 2025-04-29
 ---
 - FIX: 修复在`HertZ`路由匹配器下`matcher`键值不一致的问题
 25w32a - 2025-04-29
 ---
 - PRE-RELEASE: 此版本是v3.2.1预发布版本,请勿在生产环境中使用;
 - FIX: 修复在`HertZ`路由匹配器下`matcher`键值不一致的问题
 3.2.0 - 2025-04-27
 ---
 - CHANGE: 加入`ghcr`和`dockerhub`反代功能
 - FIX: 修复在`HertZ`路由匹配器下与用户名相关功能异常的问题
 25w31a - 2025-04-27
 ---
 - PRE-RELEASE: 此版本是v3.2.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 加入`ghcr`和`dockerhub`反代功能
 - FIX: 修复在`HertZ`路由匹配器下与用户名相关功能异常的问题
 3.1.0 - 2025-04-24
 ---
 - CHANGE: 对标准url使用`HertZ`路由匹配器, 而不是自制匹配器, 以提升效率
 - CHANGE: 使用`bodystream`进行req方向的body复制, 而不是使用额外的`buffer reader`
 - CHANGE: 使用`HertZ`的`requestContext`传递matcher参数, 而不是`25w30a`中的ctx
 - CHANGE: 改进`rate`模块, 避免并发竞争问题
 - CHANGE: 将大部分状态码返回改为新的`html/tmpl`方式处理
 - CHANGE: 修改部分log等级
 - FIX:    修正默认配置的填充错误
 - CHANGE: 使用go `html/tmpl`处理状态码页面, 同时实现错误信息显示
 - CHANGE: 改进handle, 复用共同部分
 - CHANGE: 细化url匹配的返回码处理
 - CHANGE: 增加404界面
 25w30e - 2025-04-24
 ---
 - PRE-RELEASE: 此版本是v3.1.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进`rate`模块, 避免并发竞争问题
 - CHANGE: 将大部分状态码返回改为新的`html/tmpl`方式处理
 - CHANGE: 修改部分log等级
 - FIX: 修正默认配置的填充错误
 25w30d - 2025-04-22
 ---
 - PRE-RELEASE: 此版本是v3.1.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 使用go `html/tmpl`处理状态码页面, 同时实现错误信息显示
 25w30c - 2025-04-21
 ---
 - PRE-RELEASE: 此版本是v3.1.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进handle, 复用共同部分
 - CHANGE: 细化url匹配的返回码处理
 - CHANGE: 增加404界面
 25w30b - 2025-04-21
 ---
 - PRE-RELEASE: 此版本是v3.1.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 使用`bodystream`进行req方向的body复制, 而不是使用额外的`buffer reader`
 - CHANGE: 使用`HertZ`的`requestContext`传递matcher参数, 而不是`25w30a`中的标准ctx
 25w30a - 2025-04-19
 ---
 - PRE-RELEASE: 此版本是v3.1.0预发布版本,请勿在生产环境中使用;
 - CHANGE: 对标准url使用`HertZ`路由匹配器, 而不是自制匹配器
 3.0.3 - 2025-04-19
 ---
 - CHANGE: 增加移除部分header的处置, 避免向服务端/客户端透露过多信息
 - FIX: 修正非预期的header操作行为
 - CHANGE: 合并header相关逻辑, 避免多次操作
 - CHANGE: 对editor模式下的input进行处置, 增加隐式关闭处理
 - CHANGE: 增加`netlib`配置项
 25w29b - 2025-04-19
 ---
 - PRE-RELEASE: 此版本是v3.0.3预发布版本,请勿在生产环境中使用;
 - CHANGE: 增加`netlib`配置项
 25w29a - 2025-04-17
 ---
 - PRE-RELEASE: 此版本是v3.0.3预发布版本,请勿在生产环境中使用;
 - CHANGE: 增加移除部分header的处置, 避免向服务端/客户端透露过多信息
 - FIX: 修正非预期的header操作行为
 - CHANGE: 合并header相关逻辑, 避免多次操作
 - CHANGE: 对editor模式下的input进行处置, 增加隐式关闭处理
 3.0.2 - 2025-04-15
 ---
 - CHANGE: 避免重复的re编译操作
 - CHANGE: 去除不必要的请求
 - CHANGE: 改进`httpc`相关配置
 - CHANGE: 更新`httpc` 0.4.0
 - CHANGE: 为不遵守`RFC 2616`, `RFC 9112`的客户端带来兼容性改进
 25w28b - 2025-04-15
 ---
 - PRE-RELEASE: 此版本是v3.0.2预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进resp关闭
 - CHANGE: 避免重复的re编译操作
 25w28a - 2025-04-14
 ---
 - PRE-RELEASE: 此版本是预发布版本,请勿在生产环境中使用;
 - CHANGE: 去除不必要的请求
 - CHANGE: 改进`httpc`相关配置
 - CHANGE: 合入test版本修改
 25w28t-2 - 2025-04-11
 ---
 - TEST: 测试验证版本
 - CHANGE: 为不遵守`RFC 2616`, `RFC 9112`的客户端带来兼容性改进
 25w28t-1 - 2025-04-11
 ---
 - TEST: 测试验证版本
 - CHANGE: 更新httpc 0.4.0
 3.0.1 - 2025-04-08
 ---
 - CHANGE: 加入`memLimit`指示gc
 - CHANGE: 加入`hlog`输出路径配置
 - CHANGE: 修正H2C配置问题
 25w27a - 2025-04-07
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 加入`memLimit`指示gc
 - CHANGE: 加入`hlog`输出路径配置
 - CHANGE: 修正H2C配置问题
 3.0.0 - 2025-04-04
 ---
 - RELEASE: Next Gen; 下一个起点; 
 - CHANGE: 使用HertZ框架重构, 提升性能
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
 - CHANGE: 加入`Mino`主题对接选项
 - FIX: 修正部分日志输出问题
 - CHANGE: 移除gin残留
 - CHANGE: 移除无用传入参数, 调整代码结构
 - CHANGE: 改进cli
 - CHANGE: 改进`脚本嵌套加速处理器`
 - CHANGE&FIX: 使用`c.SetBodyStream`方式, 修正此前`chunked`传输中存在的诸多问题, 参看[HertZ Issues #1309](https://github.com/cloudwego/hertz/issues/1309)
 - PORT: 从v2移植`matcher`相关改进
 - CHANGE: 增加默认配置生成
 - CHANGE: 优化前端资源加载
 - CHANGE: 将`cfg`flag改为`c`以符合`POSIX`规范
 - CHANGE: 为`smart-git`添加`no-cache`标头
 25w26a - 2025-04-03
 ---
 - PRE-RELEASE: 此版本是v3的预发布版本,请勿在生产环境中使用;
 2.6.3 - 2025-03-30
 ---
 - FIX: 修正一些`git clone`行为异常
@@ -286,7 +119,7 @@ e3.0.1 - 2025-03-21
 e3.0.0 - 2025-03-19
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
- RELEASE: Next Gen; 下一个起点; 
+- RELEASE: Next Gen; 下一个起点; v3会与v2.4.0及以上版本保证兼容关系, 可平顺升级;
 - CHANGE: 使用HertZ框架重构, 提升性能
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
 - CHANGE: 加入`Mino`主题对接选项
@@ -296,7 +129,7 @@ e3.0.0 - 2025-03-19
 25w20b - 2025-03-19
 ---
- PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; 
+- PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; v3.0.0会与v2.4.0及以上保证兼容关系, 可平顺升级;
 - CHANGE: 加入`Mino`主题对接选项
 - FIX: 修正部分日志输出问题
 - CHANGE: 移除gin残留
@@ -304,7 +137,7 @@ e3.0.0 - 2025-03-19
 25w20a - 2025-03-18
 ---
- PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; 
+- PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; v3.0.0会与v2.4.0及以上保证兼容关系, 可平顺升级;
 - CHANGE: 使用HertZ重构
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
--- a/2
+++ b/2
@@ -1 +1 @@
-25w33b
+25w25a
--- a/README.md
+++ b/README.md
@@ -1,42 +1,53 @@
 # GHProxy
 ![GitHub Release](https://img.shields.io/github/v/release/WJQSERVER-STUDIO/ghproxy?display_name=tag&style=flat)
 ![pull](https://img.shields.io/docker/pulls/wjqserver/ghproxy.svg)
 ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/wjqserver/ghproxy/latest)
 ![GitHub go.mod Go version](https://img.shields.io/github/go-mod/go-version/WJQSERVER-STUDIO/ghproxy)
 [![Go Report Card](https://goreportcard.com/badge/github.com/WJQSERVER-STUDIO/ghproxy)](https://goreportcard.com/report/github.com/WJQSERVER-STUDIO/ghproxy)
-
+使用Go实现的GHProxy,用于加速部分地区Github仓库的拉取,支持速率限制,用户鉴权,支持Docker部署
 支持 Git clone、raw、releases的 Github 加速项目, 支持自托管的同时带来卓越的性能与极低的资源占用(Golang和HertZ带来的优势), 同时支持多种额外功能
 ## 项目说明
 ### 项目特点
 - ⚡ **基于 Go 语言实现，跨平台的同时提供高并发性能**
 - 🌐 **使用字节旗下的 [HertZ](https://github.com/cloudwego/hertz) 作为 Web 框架**
 - 📡 **使用 [Touka-HTTPC](https://github.com/satomitouka/touka-httpc) 作为 HTTP 客户端**
 - 📥 **支持 Git clone、raw、releases 等文件拉取**
 - 🎨 **支持多个前端主题**
 - 🚫 **支持自定义黑名单/白名单**
 - 🗄️ **支持 Git Clone 缓存（配合 [Smart-Git](https://github.com/WJQSERVER-STUDIO/smart-git)）**
 - 🐳 **支持 Docker 部署**
 - 🐳 **支持自托管**
 - ⚡ **支持速率限制**
 - 🔒 **支持用户鉴权**
 - 🐚 **支持 shell 脚本多层嵌套加速**
 ### 项目相关
 [DEMO](https://ghproxy.1888866.xyz)
 [TG讨论群组](https://t.me/ghproxy_go)
-[相关文章](https://blog.wjqserver.com/categories/my-program/)
+[版本更新介绍](https://blog.wjqserver.com/categories/my-program/)
-[项目文档](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/menu.md)
+## 项目说明
-### 使用示例
+### 项目特点
 - 基于Go语言实现,支持多平台
 - 使用[Gin](https://github.com/gin-gonic/gin)作为Web框架
 - 使用[Touka-HTTPC](https://github.com/satomitouka/touka-httpc)作为HTTP客户端
 - 支持Git clone,raw,realeases等文件拉取
 - 支持多个前端主题
 - 支持自定义黑名单/白名单
 - 支持Git Clone缓存(配合组件)
 - 支持Docker部署
 - 支持速率限制
 - 支持用户鉴权
 - 支持shell脚本嵌套加速
 - 基于[WJQSERVER-STUDIO/golang-temp](https://github.com/WJQSERVER-STUDIO/golang-temp)模板构建,具有标准化的日志记录与构建流程
 ### 项目开发过程
 **本项目是[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的重构版本,实现了原项目原定功能的同时,进一步优化了性能**
 关于此项目的详细开发过程,请参看Commit记录与[CHANGELOG.md](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/CHANGELOG.md)
 - v2.4.1 对路径匹配进行优化
 - v2.0.0 对`proxy`核心模块进行了重构,大幅优化内存占用
 - v1.0.0 迁移至本仓库,并再次重构内容实现
 - v0.2.0 重构项目实现
 ### LICENSE
 本项目使用WJQserver Studio License 2.0 [WJQserver Studio License 2.0](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)
 在v2.3.0之前, 本项目使用WJQserver Studio License 1.2
 在v1.0.0版本之前,本项目继承于[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的APACHE2.0 LICENSE VERSION
 ## 使用示例
 ```
 # 下载文件
@@ -50,8 +61,6 @@ git clone https://ghproxy.1888866.xyz/https://github.com/WJQSERVER-STUDIO/ghprox
 ## 部署说明
 可参考文章: https://blog.wjqserver.com/post/ghproxy-deploy-with-smart-git/
 ### Docker部署
 - Docker-cli
@@ -80,30 +89,107 @@ wget -O install-dev.sh https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghprox
 ## 配置说明
-参看[项目文档](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/config.md)
+### 外部配置文件
 本项目采用`config.toml`作为外部配置,默认配置如下
 使用Docker部署时,慎重修改`config.toml`,以免造成不必要的麻烦
 ```toml
 [server]
 host = "0.0.0.0"  # 监听地址
 port = 8080  # 监听端口
 sizeLimit = 125 # 125MB
 H2C = true # 是否开启H2C传输 
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ; 除以上特殊情况, 会将值直接传入
 [httpc]
 mode = "auto" # "auto" or "advanced" HTTP客户端模式 自动/高级模式
 maxIdleConns = 100 # only for advanced mode 仅用于高级模式
 maxIdleConnsPerHost = 60 # only for advanced mode 仅用于高级模式
 maxConnsPerHost = 0 # only for advanced mode 仅用于高级模式
 [gitclone]
 mode = "bypass" # bypass / cache 运行模式, cache模式依赖smart-git
 smartGitAddr = "http://127.0.0.1:8080" # smart-git组件地址
 ForceH2C = false # 强制使用H2C连接
 [shell]
 editor = false # 脚本嵌套加速
 [pages]
 mode = "internal" # "internal" or "external" 内部/外部 前端 默认内部
 theme = "bootstrap" # "bootstrap" or "nebula" 内置主题
 staticPath = "/data/www"  # 静态页面文件路径
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log" # 日志文件路径
 maxLogSize = 5 # MB 日志文件最大大小
 level = "info"  # 日志级别 dump, debug, info, warn, error, none
 [auth]
 authMethod = "parameters" # 鉴权方式,支持parameters,header
 authToken = "token"  # 用户鉴权Token
 enabled = false  # 是否开启用户鉴权
 ForceAllowApi = false # 在不开启Header鉴权的情况下允许api代理
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"  # 黑名单文件路径
 enabled = false  # 是否开启黑名单
 [whitelist]
 enabled = false  # 是否开启白名单
 whitelistFile = "/data/ghproxy/config/whitelist.json"  # 白名单文件路径
 [rateLimit]
 enabled = false  # 是否开启速率限制
 rateMethod = "total" # "ip" or "total" 速率限制方式
 ratePerMinute = 180  # 每分钟限制请求数量
 burst = 5  # 突发请求数量
 [outbound]
 enabled = false # 是否使用自定义代理出站
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890" 支持Socks5/HTTP(S)出站传输
 ```
 ### 黑名单配置
 黑名单配置位于config/blacklist.json,格式如下:
 ```json
 {
    "blacklist": [
      "test/test1",
      "example/repo2",
      "another/*"
      "another"
    ]
  }
 ```
 ### 白名单配置
 白名单配置位于config/whitelist.json,格式如下:
 ```json
 {
    "whitelist": [
      "test/test1",
      "example/repo2",
      "another/*"
      "another"
    ]
  }
 ```
 ### 前端页面
-参看[GHProxy-Frontend](https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend)
+#### Bootstrap主题
 ![ghproxy-demo.png](https://webp.wjqserver.com/ghproxy/1.8.1-light.png)
 ![ghproxy-demo-dark.png](https://webp.wjqserver.com/ghproxy/1.8.1-dark.png)
-## 项目简史
+#### Nebula主题
-
+![nebula-dark-v2.3.0.png](https://webp.wjqserver.com/ghproxy/nebula-dark.png)
-**本项目是[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的重构版本,实现了原项目原定功能的同时,进一步优化了性能**
+![nebula-light-v2.3.0.png](https://webp.wjqserver.com/ghproxy/nebula-light.png)
 关于此项目的详细开发过程,请参看Commit记录与[CHANGELOG.md](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/CHANGELOG.md)
 - v3.0.0 迁移到HertZ框架, 进一步提升效率
 - v2.4.1 对路径匹配进行优化
 - v2.0.0 对`proxy`核心模块进行了重构,大幅优化内存占用
 - v1.0.0 迁移至本仓库,并再次重构内容实现
 - v0.2.0 重构项目实现
 ## LICENSE
 本项目使用WJQserver Studio License 2.0 [WJQserver Studio License 2.0](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)
 在v2.3.0之前, 本项目使用WJQserver Studio License 1.2
 在v1.0.0版本之前,本项目继承于[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的APACHE2.0 LICENSE VERSION
 ## 赞助
--- a/SECURITY.MD
+++ b/SECURITY.MD
@@ -6,9 +6,9 @@
 | 版本 | 是否支持 |
 | --- | --- |
-| v3.x.x | :white_check_mark: 当前最新版本序列 |
+| v3.x.x | :white_check_mark: 接受issue, 实验性 |
-| v2.x.x | :x: 这些版本已结束生命周期,不受支持 |
+| v2.x.x | :white_check_mark: 受支持, 正在维护 |
-| v1.x.x | :x: 这些版本已结束生命周期,不受支持 |
+| v1.x.x | :x: 这些版本已结束生命周期,不再受支持 |
 | 25w*a/b/c... | :warning: 此为PRE-RELEASE版本,用于开发与测试,可能存在未知的问题 |
 | 24w*a/b/c... | :warning: 此为PRE-RELEASE版本,用于开发与测试,可能存在未知的问题 生命周期已完全结束 |
 | v0.x.x | :x: 这些版本不再受支持 |
@@ -17,9 +17,9 @@
 本项目为开源项目,开发者不对使用本项目造成的任何损失或问题承担责任。用户需自行评估并承担使用本项目的风险。
-使用本项目,请遵循 **[WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0)](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)** 协议。
+使用本项目,请遵循 **[WSL (WJQSERVER-STUDIO LICENSE)](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)** 协议。
-本项目所有文件均受到 WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0) 协议保护,任何人不得在任何情况下以非 WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0) 协议内规定的方式使用,复制,修改,编译,发布,分发,再许可,或者出售本项目的任何部分。
+本项目所有文件均受到 WSL (WJQSERVER-STUDIO LICENSE) 协议保护,任何人不得在任何情况下以非 WSL (WJQSERVER-STUDIO LICENSE) 协议内规定的方式使用,复制,修改,编译,发布,分发,再许可,或者出售本项目的任何部分。
 ## 报告漏洞
--- a/2
+++ b/2
@@ -1 +1 @@
-3.2.2
+2.6.3
--- a/api/api.go
+++ b/api/api.go
@@ -1,13 +1,16 @@
 package api
 import (
-	"context"
+	"encoding/json"
 	"ghproxy/config"
 	"ghproxy/middleware/nocache"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
-	"github.com/cloudwego/hertz/pkg/app/server"
+)
 var (
 	router *gin.Engine
 	cfg    *config.Config
 )
 var (
@@ -19,110 +22,119 @@ var (
 	logError   = logger.LogError
 )
-func InitHandleRouter(cfg *config.Config, r *server.Hertz, version string) {
+func NoCacheMiddleware() gin.HandlerFunc {
-	apiRouter := r.Group("/api", nocache.NoCacheMiddleware())
+	return func(c *gin.Context) {
-	{
+		// 设置禁止缓存的响应头
-		apiRouter.GET("/size_limit", func(ctx context.Context, c *app.RequestContext) {
+		c.Header("Cache-Control", "no-store, no-cache, must-revalidate")
-			SizeLimitHandler(cfg, c, ctx)
+		c.Header("Pragma", "no-cache")
-		})
+		c.Header("Expires", "0")
-		apiRouter.GET("/whitelist/status", func(ctx context.Context, c *app.RequestContext) {
+		c.Next() // 继续处理请求
-			WhiteListStatusHandler(cfg, c, ctx)
+	}
-		})
+}
 		apiRouter.GET("/blacklist/status", func(ctx context.Context, c *app.RequestContext) {
 			BlackListStatusHandler(cfg, c, ctx)
 		})
 		apiRouter.GET("/cors/status", func(ctx context.Context, c *app.RequestContext) {
 			CorsStatusHandler(cfg, c, ctx)
 		})
 		apiRouter.GET("/healthcheck", func(ctx context.Context, c *app.RequestContext) {
 			HealthcheckHandler(c, ctx)
 		})
 		apiRouter.GET("/version", func(ctx context.Context, c *app.RequestContext) {
 			VersionHandler(c, ctx, version)
 		})
 		apiRouter.GET("/rate_limit/status", func(ctx context.Context, c *app.RequestContext) {
 			RateLimitStatusHandler(cfg, c, ctx)
 		})
 		apiRouter.GET("/rate_limit/limit", func(ctx context.Context, c *app.RequestContext) {
 			RateLimitLimitHandler(cfg, c, ctx)
 		})
 		apiRouter.GET("/smartgit/status", func(ctx context.Context, c *app.RequestContext) {
 			SmartGitStatusHandler(cfg, c, ctx)
 		})
 func InitHandleRouter(cfg *config.Config, router *gin.Engine, version string) {
 	apiRouter := router.Group("api", NoCacheMiddleware())
 	{
 		apiRouter.GET("/size_limit", func(c *gin.Context) {
 			SizeLimitHandler(cfg, c)
 		})
 		apiRouter.GET("/whitelist/status", func(c *gin.Context) {
 			WhiteListStatusHandler(c, cfg)
 		})
 		apiRouter.GET("/blacklist/status", func(c *gin.Context) {
 			BlackListStatusHandler(c, cfg)
 		})
 		apiRouter.GET("/cors/status", func(c *gin.Context) {
 			CorsStatusHandler(c, cfg)
 		})
 		apiRouter.GET("/healthcheck", func(c *gin.Context) {
 			HealthcheckHandler(c)
 		})
 		apiRouter.GET("/version", func(c *gin.Context) {
 			VersionHandler(c, version)
 		})
 		apiRouter.GET("/rate_limit/status", func(c *gin.Context) {
 			RateLimitStatusHandler(c, cfg)
 		})
 		apiRouter.GET("/rate_limit/limit", func(c *gin.Context) {
 			RateLimitLimitHandler(c, cfg)
 		})
 		apiRouter.GET("/smartgit/status", func(c *gin.Context) {
 			SmartGitStatusHandler(c, cfg)
 		})
 	}
 	logInfo("API router Init success")
 }
-func SizeLimitHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func SizeLimitHandler(cfg *config.Config, c *gin.Context) {
 	sizeLimit := cfg.Server.SizeLimit
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"MaxResponseBodySize": sizeLimit,
-	}))
+	})
 }
-func WhiteListStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func WhiteListStatusHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"Whitelist": cfg.Whitelist.Enabled,
-	}))
+	})
 }
-func BlackListStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func BlackListStatusHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"Blacklist": cfg.Blacklist.Enabled,
-	}))
+	})
 }
-func CorsStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func CorsStatusHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"Cors": cfg.Server.Cors,
-	}))
+	})
 }
-func HealthcheckHandler(c *app.RequestContext, ctx context.Context) {
+func HealthcheckHandler(c *gin.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"Status": "OK",
-	}))
+	})
 }
-func VersionHandler(c *app.RequestContext, ctx context.Context, version string) {
+func VersionHandler(c *gin.Context, version string) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"Version": version,
-	}))
+	})
 }
-func RateLimitStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func RateLimitStatusHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"RateLimit": cfg.RateLimit.Enabled,
-	}))
+	})
 }
-func RateLimitLimitHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func RateLimitLimitHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"RatePerMinute": cfg.RateLimit.RatePerMinute,
-	}))
+	})
 }
-func SmartGitStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
+func SmartGitStatusHandler(c *gin.Context, cfg *config.Config) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
-	c.Response.Header.Set("Content-Type", "application/json")
+	c.Writer.Header().Set("Content-Type", "application/json")
-	c.JSON(200, (map[string]interface{}{
+	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
 		"enabled": cfg.GitClone.Mode == "cache",
-	}))
+	})
 }
--- a/auth/auth-header.go
+++ b/auth/auth-header.go
@@ -4,27 +4,21 @@ import (
 	"fmt"
 	"ghproxy/config"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
-func AuthHeaderHandler(c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
+func AuthHeaderHandler(c *gin.Context, cfg *config.Config) (isValid bool, err error) {
 	if !cfg.Auth.Enabled {
 		return true, nil
 	}
 	// 获取"GH-Auth"的值
-	var authToken string
+	authToken := c.GetHeader("GH-Auth")
-	if cfg.Auth.Key != "" {
+	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.Request.Method, c.Request.Host, c.Request.URL.Path, c.Request.Proto, c.Request.RemoteAddr, authToken)
 		authToken = string(c.GetHeader(cfg.Auth.Key))
 	} else {
 		authToken = string(c.GetHeader("GH-Auth"))
 	}
 	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), authToken)
 	if authToken == "" {
 		return false, fmt.Errorf("Auth token not found")
 	}
-	isValid = authToken == cfg.Auth.Token
+	isValid = authToken == cfg.Auth.AuthToken
 	if !isValid {
 		return false, fmt.Errorf("Auth token incorrect")
 	}
--- a/auth/auth-parameters.go
+++ b/auth/auth-parameters.go
@@ -4,28 +4,22 @@ import (
 	"fmt"
 	"ghproxy/config"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
-func AuthParametersHandler(c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
+func AuthParametersHandler(c *gin.Context, cfg *config.Config) (isValid bool, err error) {
 	if !cfg.Auth.Enabled {
 		return true, nil
 	}
-	var authToken string
+	authToken := c.Query("auth_token")
-	if cfg.Auth.Key != "" {
+	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto, authToken)
 		authToken = c.Query(cfg.Auth.Key)
 	} else {
 		authToken = c.Query("auth_token")
 	}
 	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), authToken)
 	if authToken == "" {
 		return false, fmt.Errorf("Auth token not found")
 	}
-	isValid = authToken == cfg.Auth.Token
+	isValid = authToken == cfg.Auth.AuthToken
 	if !isValid {
 		return false, fmt.Errorf("Auth token invalid")
 	}
--- a/auth/auth.go
+++ b/auth/auth.go
@@ -5,7 +5,7 @@ import (
 	"ghproxy/config"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
 var (
@@ -35,18 +35,18 @@ func Init(cfg *config.Config) {
 	logDebug("Auth Init")
 }
-func AuthHandler(c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
+func AuthHandler(c *gin.Context, cfg *config.Config) (isValid bool, err error) {
-	if cfg.Auth.Method == "parameters" {
+	if cfg.Auth.AuthMethod == "parameters" {
 		isValid, err = AuthParametersHandler(c, cfg)
 		return isValid, err
-	} else if cfg.Auth.Method == "header" {
+	} else if cfg.Auth.AuthMethod == "header" {
 		isValid, err = AuthHeaderHandler(c, cfg)
 		return isValid, err
-	} else if cfg.Auth.Method == "" {
+	} else if cfg.Auth.AuthMethod == "" {
 		logError("Auth method not set")
 		return true, nil
 	} else {
-		logError("Auth method not supported %s", cfg.Auth.Method)
+		logError("Auth method not supported")
-		return false, fmt.Errorf("%s", fmt.Sprintf("Auth method %s not supported", cfg.Auth.Method))
+		return false, fmt.Errorf(fmt.Sprintf("Auth method %s not supported", cfg.Auth.AuthMethod))
 	}
 }
--- a/config/config.go
+++ b/config/config.go
@@ -1,8 +1,6 @@
 package config
 import (
 	"os"
 	"github.com/BurntSushi/toml"
 )
@@ -18,27 +16,20 @@ type Config struct {
 	Whitelist WhitelistConfig
 	RateLimit RateLimitConfig
 	Outbound  OutboundConfig
 	Docker    DockerConfig
 }
 /*
 [server]
-host = "0.0.0.0"
+host = "0.0.0.0"  # 监听地址
-port = 8080
+port = 8080  # 监听端口
-netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
+sizeLimit = 125 # 125MB
-sizeLimit = 125 # MB
+H2C = true # 是否开启H2C传输
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 */
 type ServerConfig struct {
 	Port      int    `toml:"port"`
 	Host      string `toml:"host"`
 	NetLib    string `toml:"netlib"`
 	SizeLimit int    `toml:"sizeLimit"`
 	MemLimit  int64  `toml:"memLimit"`
 	H2C       bool   `toml:"H2C"`
 	Cors      string `toml:"cors"`
 	Debug     bool   `toml:"debug"`
@@ -50,14 +41,12 @@ mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 useCustomRawHeaders = false
 */
 type HttpcConfig struct {
 	Mode                string `toml:"mode"`
 	MaxIdleConns        int    `toml:"maxIdleConns"`
 	MaxIdleConnsPerHost int    `toml:"maxIdleConnsPerHost"`
 	MaxConnsPerHost     int    `toml:"maxConnsPerHost"`
 	UseCustomRawHeaders bool   `toml:"useCustomRawHeaders"`
 }
 /*
@@ -98,23 +87,20 @@ type LogConfig struct {
 	LogFilePath string `toml:"logFilePath"`
 	MaxLogSize  int    `toml:"maxLogSize"`
 	Level       string `toml:"level"`
 	HertZLogPath string `toml:"hertzLogPath"`
 }
 /*
 [auth]
-Method = "parameters" # "header" or "parameters"
+authMethod = "parameters" # "header" or "parameters"
-Key = ""
+authToken = "token"
 Token = "token"
 enabled = false
 passThrough = false
 ForceAllowApi = true
 */
 type AuthConfig struct {
 	Enabled       bool   `toml:"enabled"`
-	Method        string `toml:"method"`
+	AuthMethod    string `toml:"authMethod"`
-	Key           string `toml:"key"`
+	AuthToken     string `toml:"authToken"`
 	Token         string `toml:"token"`
 	PassThrough   bool   `toml:"passThrough"`
 	ForceAllowApi bool   `toml:"ForceAllowApi"`
 }
@@ -146,120 +132,11 @@ type OutboundConfig struct {
 	Url     string `toml:"url"`
 }
 /*
 [docker]
 enabled = false
 target = "ghcr" # ghcr/dockerhub
 */
 type DockerConfig struct {
 	Enabled bool   `toml:"enabled"`
 	Target  string `toml:"target"`
 }
 // LoadConfig 从 TOML 配置文件加载配置
 func LoadConfig(filePath string) (*Config, error) {
 	if !FileExists(filePath) {
 		// 楔入配置文件
 		err := DefaultConfig().WriteConfig(filePath)
 		if err != nil {
 			return nil, err
 		}
 		return DefaultConfig(), nil
 	}
 	var config Config
 	if _, err := toml.DecodeFile(filePath, &config); err != nil {
 		return nil, err
 	}
 	return &config, nil
 }
 // 写入配置文件
 func (c *Config) WriteConfig(filePath string) error {
 	file, err := os.Create(filePath)
 	if err != nil {
 		return err
 	}
 	defer file.Close()
 	encoder := toml.NewEncoder(file)
 	return encoder.Encode(c)
 }
 // 检测文件是否存在
 func FileExists(filename string) bool {
 	_, err := os.Stat(filename)
 	return !os.IsNotExist(err)
 }
 // 默认配置结构体
 func DefaultConfig() *Config {
 	return &Config{
 		Server: ServerConfig{
 			Port:      8080,
 			Host:      "0.0.0.0",
 			NetLib:    "netpoll",
 			SizeLimit: 125,
 			MemLimit:  0,
 			H2C:       true,
 			Cors:      "*",
 			Debug:     false,
 		},
 		Httpc: HttpcConfig{
 			Mode:                "auto",
 			MaxIdleConns:        100,
 			MaxIdleConnsPerHost: 60,
 			MaxConnsPerHost:     0,
 		},
 		GitClone: GitCloneConfig{
 			Mode:         "bypass",
 			SmartGitAddr: "http://127.0.0.1:8080",
 			ForceH2C:     false,
 		},
 		Shell: ShellConfig{
 			Editor:     false,
 			RewriteAPI: false,
 		},
 		Pages: PagesConfig{
 			Mode:      "internal",
 			Theme:     "bootstrap",
 			StaticDir: "/data/www",
 		},
 		Log: LogConfig{
 			LogFilePath:  "/data/ghproxy/log/ghproxy.log",
 			MaxLogSize:   10,
 			Level:        "info",
 			HertZLogPath: "/data/ghproxy/log/hertz.log",
 		},
 		Auth: AuthConfig{
 			Enabled:       false,
 			Method:        "parameters",
 			Key:           "",
 			Token:         "token",
 			PassThrough:   false,
 			ForceAllowApi: false,
 		},
 		Blacklist: BlacklistConfig{
 			Enabled:       false,
 			BlacklistFile: "/data/ghproxy/config/blacklist.json",
 		},
 		Whitelist: WhitelistConfig{
 			Enabled:       false,
 			WhitelistFile: "/data/ghproxy/config/whitelist.json",
 		},
 		RateLimit: RateLimitConfig{
 			Enabled:       false,
 			RateMethod:    "total",
 			RatePerMinute: 100,
 			Burst:         10,
 		},
 		Outbound: OutboundConfig{
 			Enabled: false,
 			Url:     "socks5://127.0.0.1:1080",
 		},
 		Docker: DockerConfig{
 			Enabled: false,
 			Target:  "ghcr",
 		},
 	}
 }
--- a/config/config.toml
+++ b/config/config.toml
@@ -1,9 +1,7 @@
 [server]
 host = "0.0.0.0" 
 port = 8080 
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
@@ -13,7 +11,6 @@ mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 useCustomRawHeaders = false
 [gitclone]
 mode = "bypass" # bypass / cache
@@ -33,12 +30,10 @@ staticDir = "/data/www"
 logFilePath = "/data/ghproxy/log/ghproxy.log" 
 maxLogSize = 5 # MB
 level = "info" # dump, debug, info, warn, error, none
 hertzLogPath = "/data/ghproxy/log/hertz.log"
 [auth]
-method = "parameters" # "header" or "parameters"
+authMethod = "parameters" # "header" or "parameters"
-token = "token"
+authToken = "token"
 key = ""
 enabled = false
 passThrough = false
 ForceAllowApi = false
@@ -60,7 +55,3 @@ burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
 [docker]
 enabled = false
 target = "ghcr" # ghcr/dockerhub
--- a/deploy/config.toml
+++ b/deploy/config.toml
@@ -1,9 +1,7 @@
 [server]
 host = "127.0.0.1" 
 port = 8080 
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
@@ -21,7 +19,6 @@ ForceH2C = false
 [shell]
 editor = false
 rewriteAPI = false
 [pages]
 mode = "internal" # "internal" or "external"
@@ -32,7 +29,6 @@ staticDir = "/usr/local/ghproxy/pages"
 logFilePath = "/usr/local/ghproxy/log/ghproxy.log" 
 maxLogSize = 5 # MB
 level = "info" # dump, debug, info, warn, error, none
 hertzLogPath = "/usr/local/ghproxy/log/hertz.log" 
 [auth]
 authMethod = "parameters" # "header" or "parameters"
@@ -58,7 +54,3 @@ burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
 [docker]
 enabled = false
 target = "ghcr" # ghcr/dockerhub
--- a/deploy/ghproxy.service
+++ b/deploy/ghproxy.service
@@ -3,7 +3,7 @@ Description=Github Proxy Service
 After=network.target
 [Service]
-ExecStart=/bin/bash -c '/usr/local/ghproxy/ghproxy -c /usr/local/ghproxy/config/config.toml > /usr/local/ghproxy/log/run.log 2>&1'
+ExecStart=/bin/bash -c '/usr/local/ghproxy/ghproxy -cfg /usr/local/ghproxy/config/config.toml > /usr/local/ghproxy/log/run.log 2>&1'
 WorkingDirectory=/usr/local/ghproxy
 Restart=always
 User=root
--- a/deploy/install-dev.sh
+++ b/deploy/install-dev.sh
@@ -123,7 +123,7 @@ Description=Github Proxy Service
 After=network.target
 [Service]
-ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -c $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
+ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -cfg $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
--- a/deploy/install.sh
+++ b/deploy/install.sh
@@ -123,7 +123,7 @@ Description=Github Proxy Service
 After=network.target
 [Service]
-ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -c $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
+ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -cfg $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
--- a/docker/compose/docker-compose.yml
+++ b/docker/compose/docker-compose.yml
@@ -4,7 +4,8 @@ services:
        image: 'wjqserver/ghproxy:latest'
        restart: always
        volumes:
-            - './ghproxy/log:/data/ghproxy/log'
+            - './ghproxy/log/run:/data/ghproxy/log'
            - './ghproxy/log/caddy:/data/caddy/log'
            - './ghproxy/config:/data/ghproxy/config'
        ports:
            - '7210:8080'
--- a/docker/dockerfile/dev/Dockerfile
+++ b/docker/dockerfile/dev/Dockerfile
@@ -3,7 +3,6 @@ FROM alpine:latest AS builder
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG APPLICATION=ghproxy
 ARG BRANCH=dev
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
@@ -17,35 +16,32 @@ RUN mkdir -p /data/${APPLICATION}/log
 RUN apk add --no-cache curl wget tar
 # 后端
-RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/DEV-VERSION) && \
+RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/dev/DEV-VERSION) && \
    wget -O /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz https://github.com/${USER}/${REPO}/releases/download/$VERSION/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz && \
    tar -zxvf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz -C /data/${APPLICATION} && \
    rm -rf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz
 RUN wget -O /usr/local/bin/init.sh https://raw.githubusercontent.com/${USER}/${REPO}/dev/docker/dockerfile/dev/init.sh
 # 拉取配置
-RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/config.toml
+#RUN wget -O /data/caddy/Caddyfile https://raw.githubusercontent.com/${USER}/${REPO}/dev/caddyfile/dev/Caddyfile
-RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/blacklist.json
+RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/dev/config/config.toml
-RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/whitelist.json
+RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/dev/config/blacklist.json
 RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/dev/config/whitelist.json
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
 FROM alpine:latest
 RUN apk add --no-cache curl
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=v3
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
 COPY --from=builder /data/www /data/www
 COPY --from=builder /data/${APPLICATION} /data/${APPLICATION}
 COPY --from=builder /usr/local/bin/init.sh /usr/local/bin/init.sh
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
-CMD ["/data/ghproxy/ghproxy"]
+CMD ["/usr/local/bin/init.sh"]
--- a/docker/dockerfile/dev/init.sh
+++ b/docker/dockerfile/dev/init.sh
@@ -0,0 +1,17 @@
 #!/bin/sh
 APPLICATION=ghproxy
 if [ ! -f /data/${APPLICATION}/config/blacklist.json ]; then
    cp /data/${APPLICATION}/blacklist.json /data/${APPLICATION}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/whitelist.json ]; then
    cp /data/${APPLICATION}/whitelist.json /data/${APPLICATION}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/config.toml ]; then
    cp /data/${APPLICATION}/config.toml /data/${APPLICATION}/config/config.toml
 fi
 /data/${APPLICATION}/${APPLICATION} -cfg /data/${APPLICATION}/config/config.toml > /data/${APPLICATION}/log/run.log 2>&1 
--- a/docker/dockerfile/release/Dockerfile
+++ b/docker/dockerfile/release/Dockerfile
@@ -2,7 +2,6 @@ FROM alpine:latest AS builder
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=main
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
@@ -17,37 +16,34 @@ RUN mkdir -p /data/${APPLICATION}/log
 RUN apk add --no-cache curl wget tar
 # 后端
-RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/VERSION) && \
+RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/main/VERSION) && \
    wget -O /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz https://github.com/${USER}/${REPO}/releases/download/$VERSION/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz && \
    tar -zxvf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz -C /data/${APPLICATION} && \
    rm -rf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz
 RUN wget -O /usr/local/bin/init.sh https://raw.githubusercontent.com/${USER}/${REPO}/main/docker/dockerfile/release/init.sh
 # 拉取配置
-RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/config.toml
+#RUN wget -O /data/caddy/Caddyfile https://raw.githubusercontent.com/${USER}/${REPO}/main/caddyfile/release/Caddyfile
-RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/blacklist.json
+RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/main/config/config.toml
-RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/whitelist.json
+RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/blacklist.json
 RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/whitelist.json
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
 FROM alpine:latest
 RUN apk add --no-cache curl
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=v3
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
 COPY --from=builder /data/www /data/www
 #COPY --from=builder /data/caddy /data/caddy
 COPY --from=builder /data/${APPLICATION} /data/${APPLICATION}
 COPY --from=builder /usr/local/bin/init.sh /usr/local/bin/init.sh
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
-CMD ["/data/ghproxy/ghproxy"]
+CMD ["/usr/local/bin/init.sh"]
--- a/docker/dockerfile/release/init.sh
+++ b/docker/dockerfile/release/init.sh
@@ -0,0 +1,17 @@
 #!/bin/sh
 APPLICATION=ghproxy
 if [ ! -f /data/${APPLICATION}/config/blacklist.json ]; then
    cp /data/${APPLICATION}/blacklist.json /data/${APPLICATION}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/whitelist.json ]; then
    cp /data/${APPLICATION}/whitelist.json /data/${APPLICATION}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/config.toml ]; then
    cp /data/${APPLICATION}/config.toml /data/${APPLICATION}/config/config.toml
 fi
 /data/${APPLICATION}/${APPLICATION} -cfg /data/${APPLICATION}/config/config.toml > /data/${APPLICATION}/log/run.log 2>&1 
--- a/docs/config.md
+++ b/docs/config.md
@@ -1,367 +0,0 @@
 # ghproxy 用户配置文档
 `ghproxy` 的配置主要通过修改 `config` 目录下的 `config.toml`、`blacklist.json` 和 `whitelist.json` 文件来实现。本文档将详细介绍这些配置文件的作用以及用户可以自定义的配置选项。
 ## `config.toml` - 主配置文件
 `config.toml` 是 `ghproxy` 的主配置文件，采用 TOML 格式。您可以通过修改此文件来定制 `ghproxy` 的各项功能，例如服务器端口、连接设置、Git 克隆模式、日志级别、认证方式、黑白名单以及限速策略等。
 以下是 `config.toml` 文件的详细配置项说明：
 ```toml name=config/config.toml
 [server]
 host = "0.0.0.0"
 port = 8080
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 [httpc]
 mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 useCustomRawHeaders = false
 [gitclone]
 mode = "bypass" # bypass / cache
 smartGitAddr = "http://127.0.0.1:8080"
 ForceH2C = false
 [shell]
 editor = false
 rewriteAPI = false
 [pages]
 mode = "internal" # "internal" or "external"
 theme = "bootstrap" # "bootstrap" or "nebula"
 staticDir = "/data/www"
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log"
 maxLogSize = 5 # MB
 level = "info" # dump, debug, info, warn, error, none
 hertzLogPath = "/data/ghproxy/log/hertz.log"
 [auth]
 method = "parameters" # "header" or "parameters"
 token = "token"
 key = ""
 enabled = false
 passThrough = false
 ForceAllowApi = false
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"
 enabled = false
 [whitelist]
 enabled = false
 whitelistFile = "/data/ghproxy/config/whitelist.json"
 [rateLimit]
 enabled = false
 rateMethod = "total" # "ip" or "total"
 ratePerMinute = 180
 burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
 [docker]
 enabled = false
 target = "ghcr" # ghcr/dockerhub
 ```
 ### 配置项详细说明
 *   **`[server]` - 服务器配置**
    *   `host`:  监听地址。
        *   类型: 字符串 (`string`)
        *   默认值: `"0.0.0.0"` (监听所有)
        *   说明:  设置 `ghproxy` 监听的网络地址。通常设置为 `"0.0.0.0"` 以监听所有可用的网络接口。
    *   `port`:  监听端口。
        *   类型: 整数 (`int`)
        *   默认值: `8080`
        *   说明:  设置 `ghproxy` 监听的端口号。
    *   `netlib`: 底层网络库。
        *   类型: 字符串 (`string`)
        *   默认值: `""` (HertZ默认处置)
        *   说明: `"std"` `"standard"` `"net/http"` `"net"` 均会被设置为go标准库`net/http`, 设置为`"netpoll"`或`""`会由`HertZ`默认逻辑处理
    *   `sizeLimit`: 请求体大小限制。
        *   类型: 整数 (`int`)
        *   默认值: `125` (MB)
        *   说明:  限制允许接收的请求体最大大小，单位为 MB。用于防止过大的请求导致服务压力过大。
    *   `memLimit`:  `runtime`内存限制
        *   类型: 整数 (`int64`)
        *   默认值: `0` (不传入)
        *   说明: 给`runtime`的指标, 让gc行为更高效
    *   `H2C`:  是否启用 H2C (HTTP/2 Cleartext) 传输。
        *   类型: 布尔值 (`bool`)
        *   默认值: `true` (启用)
        *   说明:  启用后，允许客户端使用 HTTP/2 协议进行无加密传输，提升性能。
    *   `cors`:  CORS (跨域资源共享) 设置。
        *   类型: 字符串 (`string`)
        *   默认值: `"*"` (允许所有来源)
        *   可选值:
            *   `""` 或`"*"`: 允许所有来源跨域访问。
            *   `"nil"`:  禁用 CORS。
            *   具体的域名:  例如 `"https://example.com"`，只允许来自指定域名的跨域请求。
        *   说明:  配置 CORS 策略，用于控制哪些域名可以跨域访问 `ghproxy` 服务。
    *   `debug`:  是否启用调试模式。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 会输出更详细的日志信息，用于开发和调试。
 *   **`[httpc]` - HTTP 客户端配置**
    *   `mode`:  HTTP 客户端模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"auto"` (自动模式)
        *   可选值:
            *   `"auto"`:  自动模式，使用默认的 HTTP 客户端配置，适用于大多数场景。
            *   `"advanced"`: 高级模式，允许自定义连接池参数，可以更精细地控制 HTTP 客户端的行为。
        *   说明:  选择 HTTP 客户端的运行模式。
    *   `maxIdleConns`:  最大空闲连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `100`
        *   说明:  设置 HTTP 客户端连接池中保持的最大空闲连接数。
    *   `maxIdleConnsPerHost`:  每个主机最大空闲连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `60`
        *   说明:  设置 HTTP 客户端连接池中，每个主机允许保持的最大空闲连接数。
    *   `maxConnsPerHost`:  每个主机最大连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `0` (不限制)
        *   说明:  设置 HTTP 客户端连接池中，每个主机允许建立的最大连接数。设置为 `0` 表示不限制。
    *   `useCustomRawHeaders`: 使用预定义header避免github waf对应zh-CN的封锁
        *   类型: 布尔值(`bool`)
        *   默认值: `false`(停用)
        *   说明: 启用后, 拉取raw文件会使用程序预定义的固定headers, 而不是原先的复制行为
 *   **`[gitclone]` - Git 克隆配置**
    *   `mode`:  Git 克隆模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"bypass"` (绕过模式)
        *   可选值:
            *   `"bypass"`:  绕过模式，直接克隆 GitHub 仓库，不使用任何缓存加速。
            *   `"cache"`:  缓存模式，使用智能 Git 服务加速克隆，需要配置 `smartGitAddr`。
        *   说明:  选择 Git 克隆的模式。
    *   `smartGitAddr`:  智能 Git 服务地址 (仅在缓存模式下生效)。
        *   类型: 字符串 (`string`)
        *   默认值: `"http://127.0.0.1:8080"`
        *   说明:  当 `mode` 设置为 `"cache"` 时，需要配置智能 Git 服务的地址，用于加速 Git 克隆。
    *   `ForceH2C`:  是否强制使用 H2C 连接到智能 Git 服务。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不强制)
        *   说明:  如果智能 Git 服务支持 H2C，可以设置为 `true` 以强制使用 H2C 连接，提升性能。
 *   **`[shell]` - Shell 嵌套加速功能配置**
    *   `editor`:  是否启用编辑(嵌套加速)功能。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后, 会修改`.sh`文件内容以实现嵌套加速
    *   `rewriteAPI`:  是否重写 API 地址。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 会重写脚本内的Github API地址。
 *   **`[pages]` - Pages 服务配置**
    *   `mode`:  Pages 服务模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"internal"` (内置 Pages 服务)
        *   可选值:
            *   `"internal"`:  使用 `ghproxy` 内置的 Pages 服务。
            *   `"external"`:  使用外部 Pages 位置。
        *   说明:  选择 Pages 服务的运行模式。
    *   `theme`:  Pages 主题。
        *   类型: 字符串 (`string`)
        *   默认值: `"bootstrap"`
        *   可选值: 参看[GHProxy项目前端仓库](https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend)
        *   说明:  设置内置 Pages 服务使用的主题。
    *   `staticDir`:  静态文件目录。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/www"`
        *   说明:  指定外置 Pages 服务使用的静态文件目录。
 *   **`[log]` - 日志配置**
    *   `logFilePath`:  日志文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/log/ghproxy.log"`
        *   说明:  设置 `ghproxy` 日志文件的存储路径。
    *   `maxLogSize`:  最大日志文件大小。
        *   类型: 整数 (`int`)
        *   默认值: `5` (MB)
        *   说明:  设置单个日志文件的最大大小，单位为 MB。当日志文件大小超过此限制时，会进行日志轮转。
    *   `level`:  日志级别。
        *   类型: 字符串 (`string`)
        *   默认值: `"info"`
        *   可选值: `"dump"`, `"debug"`, `"info"`, `"warn"`, `"error"`, `"none"`
        *   说明:  设置日志输出的级别。级别越高，输出的日志信息越少。
            *   `"dump"`:  输出所有日志，包括最详细的调试信息。
            *   `"debug"`:  输出调试信息、信息、警告和错误日志。
            *   `"info"`:   输出信息、警告和错误日志。
            *   `"warn"`:   输出警告和错误日志。
            *   `"error"`:  仅输出错误日志。
            *   `"none"`:   禁用所有日志输出。
    *   `hertzLogPath`:  `HertZ`日志文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/log/hertz.log"`
        *   说明:  设置 `HertZ` 日志文件的存储路径。
 *   **`[auth]` - 认证配置**
    *   `enabled`:  是否启用认证。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，需要提供正确的认证信息才能访问 `ghproxy` 服务。
    *   `method`:  认证方法。
        *   类型: 字符串 (`string`)
        *   默认值: `"parameters"` (URL 参数)
        *   可选值: `"header"` 或 `"parameters"`
            *   `"header"`:  通过请求头 `GH-Auth` 或自定义请求头 (通过 `key` 配置) 传递认证 Token。
            *   `"parameters"`: 通过 URL 参数 `auth_token` 或自定义 URL 参数名 (通过 `Key` 配置) 传递认证 Token。
        *   说明:  选择认证信息传递的方式。
    *   `key`:  自定义认证 Key。
        *   类型: 字符串 (`string`)
        *   默认值: `""` (空字符串，使用默认的 `GH-Auth` 请求头或 `auth_token` URL 参数名)
        *   说明:  可以自定义认证时使用的请求头名称或 URL 参数名。如果为空，则使用默认的 `GH-Auth` 请求头或 `auth_token` URL 参数名。
    *   `token`:  认证 Token。
        *   类型: 字符串 (`string`)
        *   默认值: `"token"`
        *   说明:  设置认证时需要提供的 Token 值。
    *   `passThrough`:  是否认证参数透穿到Github。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不允许)
        *   说明:  如果设置为 `true`，相关参数会被透穿到Github。
    *   `ForceAllowApi`:  是否强制允许 API 访问。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不强制允许)
        *   说明:  如果设置为 `true`，则强制允许对 GitHub API 的访问，即使未启用认证或认证失败。
 *   **`[blacklist]` - 黑名单配置**
    *   `enabled`:  是否启用黑名单。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将根据 `blacklist.json` 文件中的规则阻止对特定用户或仓库的访问。
    *   `blacklistFile`:  黑名单文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/config/blacklist.json"`
        *   说明:  指定黑名单配置文件的路径。
 *   **`[whitelist]` - 白名单配置**
    *   `enabled`:  是否启用白名单。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将只允许访问 `whitelist.json` 文件中规则指定的用户或仓库。白名单的优先级高于黑名单。
    *   `whitelistFile`:  白名单文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/config/whitelist.json"`
        *   说明:  指定白名单配置文件的路径。
 *   **`[rateLimit]` - 限速配置**
    *   `enabled`:  是否启用限速。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将根据配置的策略限制请求速率，防止服务被滥用。
    *   `rateMethod`:  限速方法。
        *   类型: 字符串 (`string`)
        *   默认值: `"total"` (全局限速)
        *   可选值: `"ip"` 或 `"total"`
            *   `"ip"`:  基于客户端 IP 地址进行限速，每个 IP 地址都有独立的速率限制。
            *   `"total"`: 全局限速，所有客户端共享同一个速率限制。
        *   说明:  选择限速的策略。
    *   `ratePerMinute`:  每分钟允许的请求数。
        *   类型: 整数 (`int`)
        *   默认值: `180`
        *   说明:  设置每分钟允许通过的最大请求数。
    *   `burst`:  突发请求数。
        *   类型: 整数 (`int`)
        *   默认值: `5`
        *   说明:  允许在短时间内超过 `ratePerMinute` 的突发请求数。
 *   **`[outbound]` - 出站代理配置**
    *   `enabled`:  是否启用出站代理。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将通过配置的代理服务器转发所有出站请求。
    *   `url`:  出站代理 URL。
        *   类型: 字符串 (`string`)
        *   默认值: `"socks5://127.0.0.1:1080"`
        *   支持协议: `socks5://` 和 `http://`
        *   说明:  设置出站代理服务器的 URL。支持 SOCKS5 和 HTTP 代理协议。
 *   **`[docker]` - Docker 镜像代理配置**
    *   `enabled`: 是否启用 Docker 镜像代理功能。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明: 当设置为 `true` 时，`ghproxy` 将尝试代理 Docker 镜像的下载请求，以加速从 GitHub Container Registry (GHCR) 或 Docker Hub 下载镜像。
    *   `target`: 代理的目标 Docker 注册表。
        *   类型: 字符串 (`string`)
        *   默认值: `"ghcr"` (代理 GHCR)
        *   可选值: `"ghcr"` 或 `"dockerhub"`
        *   说明: 指定要代理的 Docker 注册表。
            *   `"ghcr"`: 代理 GitHub Container Registry (ghcr.io)。
            *   `"dockerhub"`: 代理 Docker Hub (docker.io)。
 ## `blacklist.json` - 黑名单配置
 `blacklist.json` 文件用于配置黑名单规则，阻止对特定用户或仓库的访问。
 ```json name=config/blacklist.json
 {
  "blacklist": [
    "eviluser",
    "spamuser/bad-repo",
    "malwareuser/*"
  ]
 }
 ```
 ### 黑名单规则说明
 *   `blacklist`:  一个 JSON 数组，包含黑名单规则，每条规则为一个字符串。
    *   **用户名**: 例如 `"eviluser"`，阻止所有名为 `eviluser` 的用户的访问。
    *   **仓库名**: 例如 `"spamuser/bad-repo"`，阻止访问 `spamuser` 用户下的 `bad-repo` 仓库。
    *   **通配符**: 例如 `"malwareuser/*"`，使用 `*` 通配符，阻止访问 `malwareuser` 用户下的所有仓库。
    *   **缩略写法**: 例如 `"example"`, 等同于 `"example/*"`， 允许访问 `example` 用户下的所有仓库。
 ## `whitelist.json` - 白名单配置
 `whitelist.json` 文件用于配置白名单规则，只允许访问白名单中指定的用户或仓库。白名单的优先级高于黑名单，如果一个请求同时匹配黑名单和白名单，则白名单生效，请求将被允许。
 ```json name=config/whitelist.json
 {
  "whitelist": [
    "white/list",
    "white/test1",
    "example/*",
    "example"
  ]
 }
 ```
 ### 白名单规则说明
 *   `whitelist`:  一个 JSON 数组，包含白名单规则，每条规则为一个字符串。
    *   **仓库名**: 例如 `"white/list"`，允许访问 `white` 用户下的 `list` 仓库。
    *   **仓库名**: 例如 `"white/test1"`，允许访问 `white` 用户下的 `test1` 仓库。
    *   **通配符**: 例如 `"example/*"`，使用 `*` 通配符，允许访问 `example` 用户下的所有仓库。
    *   **缩略写法**: 例如 `"example"`, 等同于 `"example/*"`， 允许访问 `example` 用户下的所有仓库。
 ---
--- a/docs/flag.md
+++ b/docs/flag.md
@@ -1,24 +0,0 @@
 # Flag
 GHProxy接受以下flag传入
 ```bash
 root@root:/data/ghproxy$ ghproxy -h
  -c string
        config file path (default "/data/ghproxy/config/config.toml")
  -cfg value
        exit
  -h    show help message and exit
  -v    show version and exit
 ```
 - `-c`
    类型: `string`
    默认值: `/data/ghproxy/config/config.toml`
    示例: `ghproxy -c /data/ghproxy/demo.toml`
 - `-cfg`
    已弃用, 被`-c`替代
 - `-h`
    显示帮助信息
 - `-v`
    显示版本号
--- a/docs/menu.md
+++ b/docs/menu.md
@@ -1,17 +0,0 @@
 ## GHProxy 文档
 ### 配置文件
 https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/config.md
 ### Flag
 https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/flag.md
 ### 部署
 参看 https://blog.wjqserver.com/post/ghproxy-deploy-with-smart-git/
 ### 前端
 https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend
--- a/go.mod
+++ b/go.mod
@@ -1,40 +1,46 @@
 module ghproxy
-go 1.24.2
+go 1.24.1
 require (
 	github.com/BurntSushi/toml v1.5.0
 	github.com/WJQSERVER-STUDIO/go-utils/copyb v0.0.4
 	github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0
-	github.com/cloudwego/hertz v0.9.7
+	github.com/gin-gonic/gin v1.10.0
-	github.com/hertz-contrib/http2 v0.1.8
+	github.com/satomitouka/touka-httpc v0.3.3
-	github.com/satomitouka/touka-httpc v0.4.1
+	golang.org/x/net v0.38.0
 	golang.org/x/net v0.39.0
 	golang.org/x/time v0.11.0
 )
 require (
 	github.com/WJQSERVER-STUDIO/go-utils/copyb v0.0.4 // indirect
 	github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1 // indirect
 	github.com/bytedance/gopkg v0.1.2 // indirect
 	github.com/bytedance/sonic v1.13.2 // indirect
 	github.com/bytedance/sonic/loader v0.2.4 // indirect
 	github.com/cloudwego/base64x v0.1.5 // indirect
-	github.com/cloudwego/gopkg v0.1.4 // indirect
+	github.com/gabriel-vasile/mimetype v1.4.8 // indirect
-	github.com/cloudwego/netpoll v0.7.0 // indirect
+	github.com/gin-contrib/sse v1.0.0 // indirect
-	github.com/fsnotify/fsnotify v1.9.0 // indirect
+	github.com/go-playground/locales v0.14.1 // indirect
 	github.com/go-playground/universal-translator v0.18.1 // indirect
 	github.com/go-playground/validator/v10 v10.26.0 // indirect
 	github.com/goccy/go-json v0.10.5 // indirect
 	github.com/google/go-cmp v0.7.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
 	github.com/klauspost/cpuid/v2 v2.2.10 // indirect
-	github.com/nyaruka/phonenumbers v1.6.1 // indirect
+	github.com/kr/pretty v0.3.1 // indirect
-	github.com/tidwall/gjson v1.18.0 // indirect
+	github.com/leodido/go-urn v1.4.0 // indirect
-	github.com/tidwall/match v1.1.1 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
-	github.com/tidwall/pretty v1.2.1 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/pelletier/go-toml/v2 v2.2.3 // indirect
 	github.com/rogpeppe/go-internal v1.14.1 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
 	github.com/ugorji/go/codec v1.2.12 // indirect
 	github.com/valyala/bytebufferpool v1.0.0 // indirect
-	golang.org/x/arch v0.16.0 // indirect
+	golang.org/x/arch v0.15.0 // indirect
-	golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0 // indirect
+	golang.org/x/crypto v0.36.0 // indirect
-	golang.org/x/sys v0.32.0 // indirect
+	golang.org/x/sys v0.31.0 // indirect
-	golang.org/x/text v0.24.0 // indirect
+	golang.org/x/text v0.23.0 // indirect
 	google.golang.org/protobuf v1.36.6 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )
 //replace github.com/satomitouka/touka-httpc v0.4.1 => /data/github/satomitoka/touka-httpc
--- a/go.sum
+++ b/go.sum
@@ -6,11 +6,6 @@ github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1 h1:gJEQspQPB527Vp2FPcdOrynQEj3YY
 github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1/go.mod h1:j9Q+xnwpOfve7/uJnZ2izRQw6NNoXjvJHz7vUQAaLZE=
 github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0 h1:Uk4N7Sh4OPth3am3xVv17JlAm7tsna97ZLQRpQj7r5c=
 github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0/go.mod h1:mtxlnDdwsHcqDDpAQLa94nxbPFwNHSAHbBbIXQAA3po=
 github.com/bytedance/gopkg v0.1.1/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
 github.com/bytedance/gopkg v0.1.2 h1:8o2feYuxknDpN+O7kPwvSXfMEKfYvJYiA2K7aonoMEQ=
 github.com/bytedance/gopkg v0.1.2/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
 github.com/bytedance/mockey v1.2.12 h1:aeszOmGw8CPX8CRx1DZ/Glzb1yXvhjDh6jdFBNZjsU4=
 github.com/bytedance/mockey v1.2.12/go.mod h1:3ZA4MQasmqC87Tw0w7Ygdy7eHIc2xgpZ8Pona5rsYIk=
 github.com/bytedance/sonic v1.13.2 h1:8/H1FempDZqC4VqjptGo14QQlJx8VdZJegxs6wwfqpQ=
 github.com/bytedance/sonic v1.13.2/go.mod h1:o68xyaF9u2gvVBuGHPlUVCy+ZfmNNO5ETf1+KgkJhz4=
 github.com/bytedance/sonic/loader v0.1.1/go.mod h1:ncP89zfokxS5LZrJxl5z0UJcsk4M4yY2JpfqGeCtNLU=
@@ -18,128 +13,98 @@ github.com/bytedance/sonic/loader v0.2.4 h1:ZWCw4stuXUsn1/+zQDqeE7JKP+QO47tz7QCN
 github.com/bytedance/sonic/loader v0.2.4/go.mod h1:N8A3vUdtUebEY2/VQC0MyhYeKUFosQU6FxH2JmUe6VI=
 github.com/cloudwego/base64x v0.1.5 h1:XPciSp1xaq2VCSt6lF0phncD4koWyULpl5bUxbfCyP4=
 github.com/cloudwego/base64x v0.1.5/go.mod h1:0zlkT4Wn5C6NdauXdJRhSKRlJvmclQ1hhJgA0rcu/8w=
 github.com/cloudwego/gopkg v0.1.4 h1:EoQiCG4sTonTPHxOGE0VlQs+sQR+Hsi2uN0qqwu8O50=
 github.com/cloudwego/gopkg v0.1.4/go.mod h1:FQuXsRWRsSqJLsMVd5SYzp8/Z1y5gXKnVvRrWUOsCMI=
 github.com/cloudwego/hertz v0.9.7 h1:tAVaiO+vTf+ZkQhvNhKbDJ0hmC4oJ7bzwDi1KhvhHy4=
 github.com/cloudwego/hertz v0.9.7/go.mod h1:t6d7NcoQxPmETvzPMMIVPHMn5C5QzpqIiFsaavoLJYQ=
 github.com/cloudwego/iasm v0.2.0/go.mod h1:8rXZaNYT2n95jn+zTI1sDr+IgcD2GVs0nlbbQPiEFhY=
-github.com/cloudwego/netpoll v0.7.0 h1:bDrxQaNfijRI1zyGgXHQoE/nYegL0nr+ijO1Norelc4=
+github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cloudwego/netpoll v0.7.0/go.mod h1:PI+YrmyS7cIr0+SD4seJz3Eo3ckkXdu2ZVKBLhURLNU=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
+github.com/gabriel-vasile/mimetype v1.4.8 h1:FfZ3gj38NjllZIeJAmMhr+qKL8Wu+nOoI3GqacKw1NM=
-github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/gabriel-vasile/mimetype v1.4.8/go.mod h1:ByKUIKGjh1ODkGM1asKUbQZOLGrPjydw3hYPU2YU9t8=
-github.com/fsnotify/fsnotify v1.9.0 h1:2Ml+OJNzbYCTzsxtv8vKSFD9PbJjmhYF14k/jKC7S9k=
+github.com/gin-contrib/sse v1.0.0 h1:y3bT1mUWUxDpW4JLQg/HnTqV4rozuW4tC9eFKTxYI9E=
-github.com/fsnotify/fsnotify v1.9.0/go.mod h1:8jBTzvmWwFyi3Pb8djgCCO5IBqzKJ/Jwo8TRcHyHii0=
+github.com/gin-contrib/sse v1.0.0/go.mod h1:zNuFdwarAygJBht0NTKiSi3jRf6RbqeILZ9Sp6Slhe0=
 github.com/gin-gonic/gin v1.10.0 h1:nTuyha1TYqgedzytsKYqna+DfLos46nTv2ygFy86HFU=
 github.com/gin-gonic/gin v1.10.0/go.mod h1:4PMNQiOhvDRa013RKVbsiNwoyezlm2rm0uX/T7kzp5Y=
 github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
 github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
 github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
 github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
 github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
 github.com/go-playground/validator/v10 v10.26.0 h1:SP05Nqhjcvz81uJaRfEV0YBSSSGMc/iMaVtFbr3Sw2k=
 github.com/go-playground/validator/v10 v10.26.0/go.mod h1:I5QpIEbmr8On7W0TktmJAumgzX4CA1XNl4ZmDuVHKKo=
 github.com/goccy/go-json v0.10.5 h1:Fq85nIqj+gXn/S5ahsiTlK3TmC85qgirsdTP/+DeaC4=
 github.com/goccy/go-json v0.10.5/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
 github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8=
 github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU=
-github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8=
+github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
+github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
-github.com/hertz-contrib/http2 v0.1.8 h1:kjfCGkUxJZHgfPsnRjx1FLJBG55KvtvSQD214guBQLw=
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/hertz-contrib/http2 v0.1.8/go.mod h1:m42hrl8fiTwE4p8c7JdRUZpkePEthvV89q3elL2GeD0=
 github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/klauspost/cpuid/v2 v2.2.10 h1:tBs3QSyvjDyFTq3uoc/9xFpCuOsJQFNPiAhYdw2skhE=
 github.com/klauspost/cpuid/v2 v2.2.10/go.mod h1:hqwkgyIinND0mEev00jJYCxPNVRVXFQeu1XKlok6oO0=
 github.com/knz/go-libedit v1.10.1/go.mod h1:MZTVkCWyz0oBc7JOWP3wNAzd002ZbM/5hgShxwh4x8M=
-github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/nyaruka/phonenumbers v1.6.1 h1:XAJcTdYow16VrVKfglznMpJZz8KMJoMjx/91sX+K940=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
-github.com/nyaruka/phonenumbers v1.6.1/go.mod h1:7gjs+Lchqm49adhAKB5cdcng5ZXgt6x7Jgvi0ZorUtU=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/leodido/go-urn v1.4.0 h1:WT9HwE9SGECu3lg4d/dIA+jxlljEa1/ffXKmRjqdmIQ=
 github.com/leodido/go-urn v1.4.0/go.mod h1:bvxc+MVxLKB4z00jd1z+Dvzr47oO32F/QSNjSBOlFxI=
 github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
 github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/pelletier/go-toml/v2 v2.2.3 h1:YmeHyLY8mFWbdkNWwpr+qIL2bEqT0o95WSdkNHvL12M=
 github.com/pelletier/go-toml/v2 v2.2.3/go.mod h1:MfCQTFTvCcUyyvvwm1+G6H/jORL20Xlb6rzQu9GuUkc=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/satomitouka/touka-httpc v0.4.1 h1:K1LJwSJJKRPkol6MPOEzc8bReAIUqxVuzdFfTAi/2AI=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
-github.com/satomitouka/touka-httpc v0.4.1/go.mod h1:E1JeXw81XclzvlqVvSio/GcDmvN8wWLPpbNRN42Uwfc=
+github.com/rogpeppe/go-internal v1.14.1 h1:UQB4HGPB6osV0SQTLymcB4TgvyWu6ZyliaW0tI/otEQ=
-github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
+github.com/rogpeppe/go-internal v1.14.1/go.mod h1:MaRKkUm5W0goXpeCfT7UZI6fk/L7L7so1lCWt35ZSgc=
-github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
+github.com/satomitouka/touka-httpc v0.3.3 h1:Th0uJ5do3oqqZgdUDtqD1SH11x8TcJmrwHMJQlEIKCg=
-github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
+github.com/satomitouka/touka-httpc v0.3.3/go.mod h1:sNXyW5XBufkwB9ZJ+PIlgN/6xiJ7aZV1fWGrXR0u3bA=
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
 github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/tidwall/gjson v1.18.0 h1:FIDeeyB800efLX89e5a8Y0BNH+LOngJyGrIWxG2FKQY=
 github.com/tidwall/gjson v1.18.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
 github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/tidwall/pretty v1.2.1 h1:qjsOFOWWQl+N3RsoF5/ssm1pHmJJwhjlSbZ51I6wMl4=
 github.com/tidwall/pretty v1.2.1/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 github.com/ugorji/go/codec v1.2.12 h1:9LC83zGrHhuUA9l16C9AHXAqEV/2wBQ4nkvumAE65EE=
 github.com/ugorji/go/codec v1.2.12/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
+golang.org/x/arch v0.15.0 h1:QtOrQd0bTUnhNVNndMpLHNWrDmYzZ2KDqSrEymqInZw=
-golang.org/x/arch v0.16.0 h1:foMtLTdyOmIniqWCHjY6+JxuC54XP1fDwx4N0ASyW+U=
+golang.org/x/arch v0.15.0/go.mod h1:JmwW7aLIoRUKgaTzhkiEFxvcEiQGyOg9BMonBJUS7EE=
-golang.org/x/arch v0.16.0/go.mod h1:JmwW7aLIoRUKgaTzhkiEFxvcEiQGyOg9BMonBJUS7EE=
+golang.org/x/crypto v0.36.0 h1:AnAEvhDddvBdpY+uR+MyHmuZzzNqXSe/GvuDeob5L34=
-golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.36.0/go.mod h1:Y4J0ReaxCR1IMaabaSMugxJES1EpwhBHhv2bDHklZvc=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/net v0.38.0 h1:vRMAPTMaeGqVhG5QyLJHqNDwecKTomGeqbnfZyKlBI8=
-golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
+golang.org/x/net v0.38.0/go.mod h1:ivrbrMbzFq5J41QOQh0siUuly180yBYtLp+CKbEaFx8=
-golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0 h1:R84qjqJb5nVJMxqWYb3np9L5ZsaDtB+a39EqjV0JSUM=
+golang.org/x/sys v0.31.0 h1:ioabZlmFYtWhL+TRYpcnNlLwhyxaM9kWTDEmfnprqik=
-golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0/go.mod h1:S9Xr4PYopiDyqSyp5NjCrhFrqg6A5zA2E/iPHPhqnS8=
+golang.org/x/sys v0.31.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
+golang.org/x/text v0.23.0 h1:D71I7dUrlY+VX0gQShAThNGHFxZ13dGLBHQLVl1mJlY=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/text v0.23.0/go.mod h1:/BLNzu4aZCJ1+kcD0DNRotWKage4q2rGVAg4o22unh4=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
 golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/net v0.39.0 h1:ZCu7HMWDxpXpaiKdhzIfaltL9Lp31x/3fCP11bc6/fY=
 golang.org/x/net v0.39.0/go.mod h1:X7NRbYVEA+ewNkCNyJ513WmMdQ3BineSwVtN2zD/d+E=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.32.0 h1:s77OFDvIQeibCmezSnk/q6iAfkdiQaJi4VzroCFrN20=
 golang.org/x/sys v0.32.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
 golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
 golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/text v0.24.0 h1:dd5Bzh4yt5KYA8f9CJHCP4FB4D51c2c6JvN37xJJkJ0=
 golang.org/x/text v0.24.0/go.mod h1:L8rBsPeo2pSS+xqN0d5u2ikmjtmoJbDBT1b7nHvFCdU=
 golang.org/x/time v0.11.0 h1:/bpjEDfN9tkoN/ryeYHnv5hcMlc8ncjMcM4XBk5NWV0=
 golang.org/x/time v0.11.0/go.mod h1:CDIdPxbZBQxdj6cxyCIdrNogrJKMJ7pr37NYpMcMDSg=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/protobuf v1.36.6 h1:z1NpPI8ku2WgiWnf+t9wTPsn6eP1L7ksHUlkfLvd9xY=
 google.golang.org/protobuf v1.36.6/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
--- a/init.sh
+++ b/init.sh
@@ -0,0 +1,18 @@
 #!/bin/bash
 APPLICATON=ghproxy
 if [ ! -f /data/${APPLICATON}/config/blacklist.json ]; then
    cp /data/${APPLICATON}/blacklist.json /data/${APPLICATON}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATON}/config/whitelist.json ]; then
    cp /data/${APPLICATON}/whitelist.json /data/${APPLICATON}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATON}/config/config.yaml ]; then
    cp /data/${APPLICATON}/config.yaml /data/${APPLICATON}/config/config.yaml
 fi
 /data/${APPLICATON}/${APPLICATON} > /data/${APPLICATON}/log/run.log 2>&1 
--- a/loggin/loggin.go
+++ b/loggin/loggin.go
@@ -0,0 +1,34 @@
 package loggin
 import (
 	"ghproxy/timing"
 	"time"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/gin-gonic/gin"
 )
 var (
 	logw       = logger.Logw
 	LogDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 // 日志中间件
 func Middleware() gin.HandlerFunc {
 	return func(c *gin.Context) {
 		// 处理请求
 		c.Next()
 		var timingResults time.Duration
 		// 获取计时结果
 		timingResults, _ = timing.Get(c)
 		// 记录日志 IP METHOD URL USERAGENT PROTOCOL STATUS TIMING
 		logInfo("%s %s %s %s %d %s ", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Writer.Status(), timingResults)
 	}
 }
--- a/main.go
+++ b/main.go
@@ -5,39 +5,34 @@ import (
 	"embed"
 	"flag"
 	"fmt"
 	"io"
 	"io/fs"
 	"net/http"
 	"os"
-	"runtime/debug"
+	"os/signal"
 	"syscall"
 	"time"
 	"ghproxy/api"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/middleware/loggin"
 	"ghproxy/middleware/timing"
 	"ghproxy/proxy"
 	"ghproxy/rate"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/hertz-contrib/http2/factory"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 	"github.com/cloudwego/hertz/pkg/app/middlewares/server/recovery"
 	"github.com/cloudwego/hertz/pkg/app/server"
 	"github.com/cloudwego/hertz/pkg/common/adaptor"
 	"github.com/cloudwego/hertz/pkg/common/hlog"
 	"github.com/cloudwego/hertz/pkg/network/standard"
 	_ "net/http/pprof"
 )
 var (
 	cfg         *config.Config
-	r           *server.Hertz
+	router      *gin.Engine
 	configfile  = "/data/ghproxy/config/config.toml"
 	hertZfile   *os.File
 	cfgfile     string
 	version     string
 	dev         string
 	runMode     string
 	limiter     *rate.RateLimiter
 	iplimiter   *rate.IPRateLimiter
@@ -60,19 +55,10 @@ var (
 )
 func readFlag() {
-	flag.StringVar(&cfgfile, "c", configfile, "config file path")
+	flag.StringVar(&cfgfile, "cfg", configfile, "config file path")
 	flag.Func("cfg", "exit", func(s string) error {
 		// 被弃用的flag, fail退出
 		fmt.Printf("\n")
 		fmt.Println("[ERROR] cfg flag is deprecated, please use -c instead")
 		fmt.Printf("\n")
 		flag.Usage()
 		os.Exit(2)
 		return nil
 	})
 	flag.BoolVar(&showVersion, "v", false, "show version and exit")   // 添加-v标志
 	flag.BoolVar(&showHelp, "h", false, "show help message and exit") // 添加-h标志
 	// 捕获未定义的 flag
 	flag.Usage = func() {
 		fmt.Fprintf(os.Stderr, "Usage of %s:\n", os.Args[0])
@@ -98,7 +84,7 @@ func readFlag() {
 			fmt.Fprintf(os.Stderr, "  %s\n", flag)
 		}
 		if len(invalidFlags) > 0 {
-			os.Exit(2)
+			os.Exit(2) // 使用非零状态码退出，表示有错误
 		}
 	}
@@ -124,48 +110,23 @@ func setupLogger(cfg *config.Config) {
 	err = logger.Init(cfg.Log.LogFilePath, cfg.Log.MaxLogSize)
 	if err != nil {
 		fmt.Printf("Failed to initialize logger: %v\n", err)
 		os.Exit(1)
 	}
 	err = logger.SetLogLevel(cfg.Log.Level)
 	if err != nil {
 		fmt.Printf("Logger Level Error: %v\n", err)
 		os.Exit(1)
 	}
 	fmt.Printf("Log Level: %s\n", cfg.Log.Level)
 	logDebug("Config File Path: ", cfgfile)
 	logDebug("Loaded config: %v\n", cfg)
-	logInfo("Logger Initialized Successfully")
+	logInfo("Init Completed")
 }
 func setupHertZLogger(cfg *config.Config) {
 	var err error
 	if cfg.Log.HertZLogPath != "" {
 		hertZfile, err = os.OpenFile(cfg.Log.HertZLogPath, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0644)
 		if err != nil {
 			hlog.SetOutput(os.Stdout)
 			logWarning("Failed to open hertz log file: %v", err)
 		} else {
 			hlog.SetOutput(hertZfile)
 		}
 		hlog.SetLevel(hlog.LevelInfo)
 	}
 }
 func setMemLimit(cfg *config.Config) {
 	if cfg.Server.MemLimit > 0 {
 		debug.SetMemoryLimit((cfg.Server.MemLimit) * 1024 * 1024)
 		logInfo("Set Memory Limit to %d MB", cfg.Server.MemLimit)
 	}
 }
 func loadlist(cfg *config.Config) {
 	auth.Init(cfg)
 }
-func setupApi(cfg *config.Config, r *server.Hertz, version string) {
+func setupApi(cfg *config.Config, router *gin.Engine, version string) {
-	api.InitHandleRouter(cfg, r, version)
+	api.InitHandleRouter(cfg, router, version)
 }
 func setupRateLimit(cfg *config.Config) {
@@ -210,28 +171,33 @@ func loadEmbeddedPages(cfg *config.Config) (fs.FS, fs.FS, error) {
 		return nil, nil, fmt.Errorf("failed to load embedded pages: %w", err)
 	}
 	// 初始化errPagesFs
 	errPagesInitErr := proxy.InitErrPagesFS(pagesFS)
 	if errPagesInitErr != nil {
 		logWarning("errPagesInitErr: %s", errPagesInitErr)
 	}
 	var assets fs.FS
 	assets, err = fs.Sub(pagesFS, "pages/assets")
 	if err != nil {
 		return nil, nil, fmt.Errorf("failed to load embedded assets: %w", err)
 	}
 	return pages, assets, nil
 }
 // setupPages 设置页面路由
-func setupPages(cfg *config.Config, r *server.Hertz) {
+func setupPages(cfg *config.Config, router *gin.Engine) {
 	switch cfg.Pages.Mode {
 	case "internal":
-		err := setInternalRoute(cfg, r)
+		// 加载嵌入式资源
 		pages, assets, err := loadEmbeddedPages(cfg)
 		if err != nil {
 			logError("Failed when processing internal pages: %s", err)
 			fmt.Println(err.Error())
 			return
 		}
 		// 设置嵌入式资源路由
 		router.GET("/", gin.WrapH(http.FileServer(http.FS(pages))))
 		router.GET("/favicon.ico", gin.WrapH(http.FileServer(http.FS(pages))))
 		router.GET("/script.js", gin.WrapH(http.FileServer(http.FS(pages))))
 		router.GET("/style.css", gin.WrapH(http.FileServer(http.FS(pages))))
 		router.GET("/bootstrap.min.css", gin.WrapH(http.FileServer(http.FS(assets))))
 		router.GET("/bootstrap.bundle.min.js", gin.WrapH(http.FileServer(http.FS(assets))))
 	case "external":
 		// 设置外部资源路径
 		indexPagePath := fmt.Sprintf("%s/index.html", cfg.Pages.StaticDir)
@@ -242,91 +208,36 @@ func setupPages(cfg *config.Config, r *server.Hertz) {
 		bootstrapBundlePath := fmt.Sprintf("%s/bootstrap.bundle.min.js", cfg.Pages.StaticDir)
 		// 设置外部资源路由
-		r.StaticFile("/", indexPagePath)
+		router.GET("/", func(c *gin.Context) {
-		r.StaticFile("/favicon.ico", faviconPath)
+			c.File(indexPagePath)
-		r.StaticFile("/script.js", javascriptsPath)
+			logInfo("IP:%s UA:%s METHOD:%s HTTPv:%s", c.ClientIP(), c.Request.UserAgent(), c.Request.Method, c.Request.Proto)
-		r.StaticFile("/style.css", stylesheetsPath)
+		})
-		r.StaticFile("/bootstrap.min.css", bootstrapPath)
+		router.StaticFile("/favicon.ico", faviconPath)
-		r.StaticFile("/bootstrap.bundle.min.js", bootstrapBundlePath)
+		router.StaticFile("/script.js", javascriptsPath)
 		router.StaticFile("/style.css", stylesheetsPath)
 		router.StaticFile("/bootstrap.min.css", bootstrapPath)
 		router.StaticFile("/bootstrap.bundle.min.js", bootstrapBundlePath)
 		//router.StaticFile("/bootstrap.min.css", bootstrapPath)
 	default:
 		// 处理无效的Pages Mode
 		logWarning("Invalid Pages Mode: %s, using default embedded theme", cfg.Pages.Mode)
 		err := setInternalRoute(cfg, r)
 		if err != nil {
 			logError("Failed when processing internal pages: %s", err)
 			fmt.Println(err.Error())
 			return
 		}
 	}
 }
 func setInternalRoute(cfg *config.Config, r *server.Hertz) error {
 		// 加载嵌入式资源
 		pages, assets, err := loadEmbeddedPages(cfg)
 		if err != nil {
 			logError("Failed when processing pages: %s", err)
-		return err
+			return
 		}
 		// 设置嵌入式资源路由
-	r.GET("/", func(ctx context.Context, c *app.RequestContext) {
+		router.GET("/", gin.WrapH(http.FileServer(http.FS(pages))))
-		staticServer := http.FileServer(http.FS(pages))
+		router.GET("/favicon.ico", gin.WrapH(http.FileServer(http.FS(pages))))
-		req, err := adaptor.GetCompatRequest(&c.Request)
+		router.GET("/script.js", gin.WrapH(http.FileServer(http.FS(pages))))
-		if err != nil {
+		router.GET("/style.css", gin.WrapH(http.FileServer(http.FS(pages))))
-			logError("%s", err)
+		router.GET("/bootstrap.min.css", gin.WrapH(http.FileServer(http.FS(assets))))
-			return
+		router.GET("/bootstrap.bundle.min.js", gin.WrapH(http.FileServer(http.FS(assets))))
 	}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/favicon.ico", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/script.js", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/style.css", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/bootstrap.min.css", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(assets))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/bootstrap.bundle.min.js", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(assets))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	return nil
 }
 func init() {
@@ -346,147 +257,130 @@ func init() {
 	}
 	loadConfig()
 	if cfg != nil { // 在setupLogger前添加空值检查
 	setupLogger(cfg)
 		setupHertZLogger(cfg)
 	InitReq(cfg)
 		setMemLimit(cfg)
 	loadlist(cfg)
 	setupRateLimit(cfg)
 	if cfg.Server.Debug {
 		dev = "true"
 		version = "dev"
 	}
 	if dev == "true" {
 		gin.SetMode(gin.DebugMode)
 		runMode = "dev"
 	} else {
 		gin.SetMode(gin.ReleaseMode)
 		runMode = "release"
 	}
-		if cfg.Server.Debug {
+	logDebug("Run Mode: %s", runMode)
-			version = "Dev" // 如果是Debug模式，版本设置为"Dev"
+
-		}
+	gin.LoggerWithWriter(io.Discard)
 	router = gin.New()
 	// 添加recovery中间件
 	router.Use(gin.Recovery())
 	// 添加log中间件
 	router.Use(loggin.Middleware())
 	// 添加计时中间件
 	router.Use(timing.Middleware())
 	if cfg.Server.H2C {
 		router.UseH2C = true
 	}
 	setupApi(cfg, router, version)
 	setupPages(cfg, router)
 	// 1. GitHub Releases/Archive - Use distinct path segments for type
 	router.GET("/github.com/:username/:repo/releases/*filepath", func(c *gin.Context) { // Distinct path for releases
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	router.GET("/github.com/:username/:repo/archive/*filepath", func(c *gin.Context) { // Distinct path for archive
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	// 2. GitHub Blob/Raw - Use distinct path segments for type
 	router.GET("/github.com/:username/:repo/blob/*filepath", func(c *gin.Context) { // Distinct path for blob
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	router.GET("/github.com/:username/:repo/raw/*filepath", func(c *gin.Context) { // Distinct path for raw
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	router.GET("/github.com/:username/:repo/info/*filepath", func(c *gin.Context) { // Distinct path for info
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	router.GET("/github.com/:username/:repo/git-upload-pack", func(c *gin.Context) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	// 4. Raw GitHubusercontent - Keep as is (assuming it's distinct enough)
 	router.GET("/raw.githubusercontent.com/:username/:repo/*filepath", func(c *gin.Context) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	// 5. Gist GitHubusercontent - Keep as is (assuming it's distinct enough)
 	router.GET("/gist.githubusercontent.com/:username/*filepath", func(c *gin.Context) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	// 6. GitHub API Repos - Keep as is (assuming it's distinct enough)
 	router.GET("/api.github.com/repos/:username/:repo/*filepath", func(c *gin.Context) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	router.NoRoute(func(c *gin.Context) {
 		logInfo(c.Request.URL.Path)
 		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
 	})
 	fmt.Printf("GHProxy Version: %s\n", version)
 	fmt.Printf("A Go Based High-Performance Github Proxy \n")
 	fmt.Printf("Made by WJQSERVER-STUDIO\n")
 }
 func main() {
 	if showVersion || showHelp {
 		return
 	}
 	logDebug("Run Mode: %s Netlib: %s", runMode, cfg.Server.NetLib)
-	if cfg == nil {
+	server := &http.Server{
-		fmt.Println("Config not loaded, exiting.")
+		Addr:    fmt.Sprintf("%s:%d", cfg.Server.Host, cfg.Server.Port),
-		return
+		Handler: router,
 	}
-	addr := fmt.Sprintf("%s:%d", cfg.Server.Host, cfg.Server.Port)
+	quit := make(chan os.Signal, 1)
-	if cfg.Server.NetLib == "std" || cfg.Server.NetLib == "standard" || cfg.Server.NetLib == "net" || cfg.Server.NetLib == "net/http" {
+	signal.Notify(quit, syscall.SIGINT, syscall.SIGTERM)
-		if cfg.Server.H2C {
+
-			r = server.New(
+	/*
-				server.WithH2C(true),
+		go func() {
-				server.WithHostPorts(addr),
+			err := router.Run(fmt.Sprintf("%s:%d", cfg.Server.Host, cfg.Server.Port))
-				server.WithTransport(standard.NewTransporter),
+			if err != nil {
-			)
+				logError("Failed to start server: %v\n", err)
 			r.AddProtocol("h2", factory.NewServerFactory())
 		} else {
 			r = server.New(
 				server.WithHostPorts(addr),
 				server.WithTransport(standard.NewTransporter),
 			)
 			}
-	} else if cfg.Server.NetLib == "netpoll" || cfg.Server.NetLib == "" {
+		}()
-		if cfg.Server.H2C {
+	*/
-			r = server.New(
+
-				server.WithH2C(true),
+	go func() {
-				server.WithHostPorts(addr),
+		if err := server.ListenAndServe(); err != nil && err != http.ErrServerClosed {
-			)
+			logError("Failed to start server: %v\n", err)
 			r.AddProtocol("h2", factory.NewServerFactory())
 		} else {
 			r = server.New(
 				server.WithHostPorts(addr),
 			)
 		}
 	} else {
 		logError("Invalid NetLib: %s", cfg.Server.NetLib)
 		fmt.Printf("Invalid NetLib: %s\n", cfg.Server.NetLib)
 			os.Exit(1)
 		}
 	r.Use(recovery.Recovery()) // Recovery中间件
 	r.Use(loggin.Middleware()) // log中间件
 	setupApi(cfg, r, version)
 	setupPages(cfg, r)
 	r.GET("/github.com/:user/:repo/releases/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "releases")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/github.com/:user/:repo/archive/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "releases")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/github.com/:user/:repo/blob/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "blob")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/github.com/:user/:repo/raw/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "raw")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/github.com/:user/:repo/info/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "clone")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/github.com/:user/:repo/git-upload-pack", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "clone")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/raw.githubusercontent.com/:user/:repo/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "raw")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/gist.githubusercontent.com/:user/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "gist")
 		proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.GET("/api.github.com/repos/:user/:repo/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		c.Set("matcher", "api")
 		proxy.RoutingHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	r.Any("/v2/*filepath", func(ctx context.Context, c *app.RequestContext) {
 		proxy.GhcrRouting(cfg)(ctx, c)
 	})
 	r.NoRoute(func(ctx context.Context, c *app.RequestContext) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	fmt.Printf("GHProxy Version: %s\n", version)
 	fmt.Printf("A Go Based High-Performance Github Proxy \n")
 	fmt.Printf("Made by WJQSERVER-STUDIO\n")
 	if cfg.Server.Debug {
 		go func() {
 			http.ListenAndServe("localhost:6060", nil)
 	}()
 	}
-	r.Spin()
+	<-quit
-	defer logger.Close()
+	ctx, cancel := context.WithTimeout(context.Background(), 3*time.Second)
-	defer func() {
+	if err := server.Shutdown(ctx); err != nil {
-		if hertZfile != nil {
+		logError("Server forced to shutdown: %v\n", err)
 			var err error
 			err = hertZfile.Close()
 			if err != nil {
 				logError("Failed to close hertz log file: %v", err)
 	}
-		}
+	defer cancel()
-	}()
+	logger.Close()
 	fmt.Println("Program Exit")
 }
--- a/middleware/loggin/loggin.go
+++ b/middleware/loggin/loggin.go
@@ -1,16 +1,16 @@
 package loggin
 import (
-	"context"
+	"ghproxy/middleware/timing"
 	"time"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
 var (
 	logw       = logger.Logw
-	logDump    = logger.LogDump
+	LogDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
@@ -18,15 +18,17 @@ var (
 )
 // 日志中间件
-func Middleware() app.HandlerFunc {
+func Middleware() gin.HandlerFunc {
-	return func(ctx context.Context, c *app.RequestContext) {
+	return func(c *gin.Context) {
-		startTime := time.Now()
+		// 处理请求
 		c.Next()
-		c.Next(ctx)
+		var timingResults time.Duration
-		endTime := time.Now()
+		// 获取计时结果
-		timingResults := endTime.Sub(startTime)
+		timingResults, _ = timing.Get(c)
-		logInfo("%s %s %s %s %s %d %v ", c.ClientIP(), c.Method(), c.Request.Header.GetProtocol(), string(c.Path()), c.Request.Header.UserAgent(), c.Response.StatusCode(), timingResults)
+		// 记录日志 IP METHOD URL USERAGENT PROTOCOL STATUS TIMING
 		logInfo("%s %s %s %s %d %s ", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Writer.Status(), timingResults)
 	}
 }
--- a/middleware/nocache/nocache.go
+++ b/middleware/nocache/nocache.go
@@ -1,17 +0,0 @@
 package nocache
 import (
 	"context"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func NoCacheMiddleware() app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		// 设置禁止缓存的响应头
 		c.Response.Header.Set("Cache-Control", "no-store, no-cache, must-revalidate")
 		c.Response.Header.Set("Pragma", "no-cache")
 		c.Response.Header.Set("Expires", "0")
 		c.Next(ctx) // 继续处理请求
 	}
 }
--- a/middleware/timing/timing.go
+++ b/middleware/timing/timing.go
@@ -0,0 +1,86 @@
 package timing
 import (
 	"sync"
 	"time"
 	"github.com/gin-gonic/gin"
 )
 // 阶段计时结构（固定数组优化）
 type timingData struct {
 	phases [8]struct { // 预分配8个阶段存储
 		name string
 		dur  time.Duration
 	}
 	count int
 	start time.Time
 }
 // 对象池（内存重用优化）
 var pool = sync.Pool{
 	New: func() interface{} {
 		return new(timingData)
 	},
 }
 // 中间件入口
 func Middleware() gin.HandlerFunc {
 	return func(c *gin.Context) {
 		// 从池中获取计时器
 		td := pool.Get().(*timingData)
 		td.start = time.Now()
 		td.count = 0
 		// 存储到上下文
 		c.Set("timing", td)
 		// 请求完成后回收对象
 		defer func() {
 			pool.Put(td)
 		}()
 		c.Next()
 	}
 }
 // 记录阶段耗时
 func Record(c *gin.Context, name string) {
 	if val, exists := c.Get("timing"); exists {
 		//td := val.(*timingData)
 		td, ok := val.(*timingData)
 		if !ok {
 			return
 		}
 		if td.count < len(td.phases) {
 			td.phases[td.count].name = name
 			td.phases[td.count].dur = time.Since(td.start) // 直接记录当前时间
 			td.count++
 		}
 	}
 }
 // 获取计时结果（日志输出用）
 func Get(c *gin.Context) (total time.Duration, phases []struct {
 	Name string
 	Dur  time.Duration
 }) {
 	if val, exists := c.Get("timing"); exists {
 		//td := val.(*timingData)
 		td, ok := val.(*timingData)
 		if !ok {
 			return
 		}
 		for i := 0; i < td.count; i++ {
 			phases = append(phases, struct {
 				Name string
 				Dur  time.Duration
 			}{
 				Name: td.phases[i].name,
 				Dur:  td.phases[i].dur,
 			})
 		}
 		total = time.Since(td.start)
 	}
 	return
 }
--- a/proxy/authpass.go
+++ b/proxy/authpass.go
@@ -4,21 +4,22 @@ import (
 	"ghproxy/config"
 	"net/http"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
-func AuthPassThrough(c *app.RequestContext, cfg *config.Config, req *http.Request) {
+func AuthPassThrough(c *gin.Context, cfg *config.Config, req *http.Request) {
 	if cfg.Auth.PassThrough {
 		token := c.Query("token")
 		if token != "" {
-			logDebug("%s %s %s %s %s Auth-PassThrough: token %s", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol(), token)
+			logDebug("%s %s %s %s %s Auth-PassThrough: token %s", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto, token)
-			switch cfg.Auth.Method {
+			switch cfg.Auth.AuthMethod {
 			case "parameters":
 				if !cfg.Auth.Enabled {
 					req.Header.Set("Authorization", "token "+token)
 				} else {
-					logWarning("%s %s %s %s %s Auth-Error: Conflict Auth Method", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol())
+					logWarning("%s %s %s %s %s Auth-Error: Conflict Auth Method", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
-					ErrorPage(c, NewErrorWithStatusLookup(500, "Conflict Auth Method"))
+					// 500 Internal Server Error
 					c.JSON(http.StatusInternalServerError, gin.H{"error": "Conflict Auth Method"})
 					return
 				}
 			case "header":
@@ -26,8 +27,9 @@ func AuthPassThrough(c *app.RequestContext, cfg *config.Config, req *http.Reques
 					req.Header.Set("Authorization", "token "+token)
 				}
 			default:
-				logWarning("%s %s %s %s %s Invalid Auth Method / Auth Method is not be set", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol())
+				logWarning("%s %s %s %s %s Invalid Auth Method / Auth Method is not be set", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
-				ErrorPage(c, NewErrorWithStatusLookup(500, "Invalid Auth Method / Auth Method is not be set"))
+				// 500 Internal Server Error
 				c.JSON(http.StatusInternalServerError, gin.H{"error": "Invalid Auth Method / Auth Method is not be set"})
 				return
 			}
 		}
--- a/proxy/chunkreq.go
+++ b/proxy/chunkreq.go
@@ -1,82 +1,109 @@
 package proxy
 import (
-	"context"
+	"bytes"
 	"fmt"
 	"ghproxy/config"
 	"io"
 	"net/http"
 	"strconv"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/WJQSERVER-STUDIO/go-utils/copyb"
 	"github.com/gin-gonic/gin"
 )
-func ChunkedProxyRequest(ctx context.Context, c *app.RequestContext, u string, cfg *config.Config, matcher string) {
+func ChunkedProxyRequest(c *gin.Context, u string, cfg *config.Config, matcher string) {
 	method := c.Request.Method
-	var (
+	// 发送HEAD请求, 预获取Content-Length
-		method []byte
+	headReq, err := client.NewRequest("HEAD", u, nil)
 		req    *http.Request
 		resp   *http.Response
 		err    error
 	)
 	method = c.Request.Method()
 	req, err = client.NewRequest(string(method), u, c.Request.BodyStream())
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 		return
 	}
 	setRequestHeaders(c, headReq)
 	removeWSHeader(headReq) // 删除Conection Upgrade头, 避免与HTTP/2冲突(检查是否存在Upgrade头)
 	AuthPassThrough(c, cfg, headReq)
-	setRequestHeaders(c, req, cfg, matcher)
+	headResp, err := client.Do(headReq)
 	AuthPassThrough(c, cfg, req)
 	resp, err = client.Do(req)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	//defer headResp.Body.Close()
 	defer func(Body io.ReadCloser) {
 		if err := Body.Close(); err != nil {
 			logError("Failed to close response body: %v", err)
 		}
 	}(headResp.Body)
 	contentLength := headResp.Header.Get("Content-Length")
 	sizelimit := cfg.Server.SizeLimit * 1024 * 1024
 	if contentLength != "" {
 		size, err := strconv.Atoi(contentLength)
 		if err == nil && size > sizelimit {
 			finalURL := headResp.Request.URL.String()
 			c.Redirect(http.StatusMovedPermanently, finalURL)
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto, finalURL, size)
 			return
 		}
 	}
 	body, err := readRequestBody(c)
 	if err != nil {
 		HandleError(c, err.Error())
 		return
 	}
 	bodyReader := bytes.NewBuffer(body)
 	req, err := client.NewRequest(method, u, bodyReader)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 		return
 	}
 	setRequestHeaders(c, req)
 	removeWSHeader(req) // 删除Conection Upgrade头, 避免与HTTP/2冲突(检查是否存在Upgrade头)
 	AuthPassThrough(c, cfg, req)
 	resp, err := client.Do(req)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	defer resp.Body.Close()
 	// 错误处理(404)
 	if resp.StatusCode == 404 {
-		ErrorPage(c, NewErrorWithStatusLookup(404, "Page Not Found (From Github)"))
+		c.String(http.StatusNotFound, "File Not Found")
 		return
 	}
 	var (
 		bodySize      int
 		contentLength string
 		sizelimit     int
 	)
 	sizelimit = cfg.Server.SizeLimit * 1024 * 1024
 	contentLength = resp.Header.Get("Content-Length")
 	if contentLength != "" {
-		var err error
+		size, err := strconv.Atoi(contentLength)
-		bodySize, err = strconv.Atoi(contentLength)
+		if err == nil && size > sizelimit {
-		if err != nil {
+			finalURL := resp.Request.URL.String()
-			logWarning("%s %s %s %s %s Content-Length header is not a valid integer: %v", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), err)
+			c.Redirect(http.StatusMovedPermanently, finalURL)
-			bodySize = -1
+			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto, finalURL, size)
 		}
 		if err == nil && bodySize > sizelimit {
 			var finalURL string
 			finalURL = resp.Request.URL.String()
 			err = resp.Body.Close()
 			if err != nil {
 				logError("Failed to close response body: %v", err)
 			}
 			c.Redirect(301, []byte(finalURL))
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), finalURL, bodySize)
 			return
 		}
 	}
 	// 复制响应头，排除需要移除的 header
 	for key, values := range resp.Header {
 		if _, shouldRemove := respHeadersToRemove[key]; !shouldRemove {
 		for _, value := range values {
 			c.Header(key, value)
 		}
 	}
 	headersToRemove := map[string]struct{}{
 		"Content-Security-Policy":   {},
 		"Referrer-Policy":           {},
 		"Strict-Transport-Security": {},
 	}
 	for header := range headersToRemove {
 		resp.Header.Del(header)
 	}
 	switch cfg.Server.Cors {
@@ -99,24 +126,23 @@ func ChunkedProxyRequest(ctx context.Context, c *app.RequestContext, u string, c
 			compress = "gzip"
 		}
-		logDebug("Use Shell Editor: %s %s %s %s %s", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol())
+		logInfo("Is Shell: %s %s %s %s %s", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 		c.Header("Content-Length", "")
-
+		_, err = processLinks(resp.Body, c.Writer, compress, c.Request.Host, cfg)
 		var reader io.Reader
 		reader, _, err = processLinks(resp.Body, compress, string(c.Request.Host()), cfg)
 		c.SetBodyStream(reader, -1)
 		if err != nil {
-			logError("%s %s %s %s %s Failed to copy response body: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol(), err)
+			logError("%s %s %s %s %s Failed to copy response body: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 			ErrorPage(c, NewErrorWithStatusLookup(500, fmt.Sprintf("Failed to copy response body: %v", err)))
 			return
 		} else {
 			c.Writer.Flush() // 确保刷入
 		}
 	} else {
-		if contentLength != "" {
+		//_, err = io.CopyBuffer(c.Writer, resp.Body, nil)
-			c.SetBodyStream(resp.Body, bodySize)
+		_, err = copyb.Copy(c.Writer, resp.Body)
 		if err != nil {
 			logError("%s %s %s %s %s Failed to copy response body: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 			return
 		} else {
 			c.Writer.Flush() // 确保刷入
 		}
 		c.SetBodyStream(resp.Body, -1)
 	}
 }
--- a/proxy/docker.go
+++ b/proxy/docker.go
@@ -1,115 +0,0 @@
 package proxy
 import (
 	"context"
 	"fmt"
 	"ghproxy/config"
 	"net/http"
 	"strconv"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func GhcrRouting(cfg *config.Config) app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		if cfg.Docker.Enabled {
 			if cfg.Docker.Target == "ghcr" {
 				GhcrRequest(ctx, c, "https://ghcr.io"+string(c.Request.RequestURI()), cfg, "ghcr")
 			} else if cfg.Docker.Target == "dockerhub" {
 				GhcrRequest(ctx, c, "https://registry-1.docker.io"+string(c.Request.RequestURI()), cfg, "dockerhub")
 			} else {
 				ErrorPage(c, NewErrorWithStatusLookup(403, "Docker Target is not Allowed"))
 				return
 			}
 		} else {
 			ErrorPage(c, NewErrorWithStatusLookup(403, "Docker is not Allowed"))
 			return
 		}
 	}
 }
 func GhcrRequest(ctx context.Context, c *app.RequestContext, u string, cfg *config.Config, matcher string) {
 	var (
 		method []byte
 		req    *http.Request
 		resp   *http.Response
 		err    error
 	)
 	method = c.Request.Method()
 	rb := client.NewRequestBuilder(string(method), u)
 	rb.NoDefaultHeaders()
 	rb.SetBody(c.Request.BodyStream())
 	//req, err = client.NewRequest(string(method), u, c.Request.BodyStream())
 	req, err = rb.Build()
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 		return
 	}
 	c.Request.Header.VisitAll(func(key, value []byte) {
 		headerKey := string(key)
 		headerValue := string(value)
 		req.Header.Add(headerKey, headerValue)
 	})
 	resp, err = client.Do(req)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	// 错误处理(404)
 	if resp.StatusCode == 404 {
 		ErrorPage(c, NewErrorWithStatusLookup(404, "Page Not Found (From Github)"))
 		return
 	}
 	var (
 		bodySize      int
 		contentLength string
 		sizelimit     int
 	)
 	sizelimit = cfg.Server.SizeLimit * 1024 * 1024
 	contentLength = resp.Header.Get("Content-Length")
 	if contentLength != "" {
 		var err error
 		bodySize, err = strconv.Atoi(contentLength)
 		if err != nil {
 			logWarning("%s %s %s %s %s Content-Length header is not a valid integer: %v", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), err)
 			bodySize = -1
 		}
 		if err == nil && bodySize > sizelimit {
 			var finalURL string
 			finalURL = resp.Request.URL.String()
 			err = resp.Body.Close()
 			if err != nil {
 				logError("Failed to close response body: %v", err)
 			}
 			c.Redirect(301, []byte(finalURL))
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), finalURL, bodySize)
 			return
 		}
 	}
 	// 复制响应头，排除需要移除的 header
 	for key, values := range resp.Header {
 		for _, value := range values {
 			//c.Header(key, value)
 			c.Response.Header.Add(key, value)
 		}
 	}
 	c.Status(resp.StatusCode)
 	if contentLength != "" {
 		c.SetBodyStream(resp.Body, bodySize)
 		return
 	}
 	c.SetBodyStream(resp.Body, -1)
 }
--- a/proxy/error.go
+++ b/proxy/error.go
@@ -1,167 +0,0 @@
 package proxy
 import (
 	"bytes"
 	"fmt"
 	"html/template"
 	"io/fs"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 // 日志模块
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 func HandleError(c *app.RequestContext, message string) {
 	ErrorPage(c, NewErrorWithStatusLookup(500, message))
 	logError(message)
 }
 type GHProxyErrors struct {
 	StatusCode   int
 	StatusDesc   string
 	StatusText   string
 	HelpInfo     string
 	ErrorMessage string
 }
 var (
 	ErrInvalidURL = &GHProxyErrors{
 		StatusCode: 400,
 		StatusDesc: "Bad Request",
 		StatusText: "无效请求",
 		HelpInfo:   "请求的URL格式不正确，请检查后重试。",
 	}
 	ErrAuthHeaderUnavailable = &GHProxyErrors{
 		StatusCode: 401,
 		StatusDesc: "Unauthorized",
 		StatusText: "认证失败",
 		HelpInfo:   "缺少或无效的鉴权信息。",
 	}
 	ErrForbidden = &GHProxyErrors{
 		StatusCode: 403,
 		StatusDesc: "Forbidden",
 		StatusText: "权限不足",
 		HelpInfo:   "您没有权限访问此资源。",
 	}
 	ErrNotFound = &GHProxyErrors{
 		StatusCode: 404,
 		StatusDesc: "Not Found",
 		StatusText: "页面未找到",
 		HelpInfo:   "抱歉，您访问的页面不存在。",
 	}
 	ErrTooManyRequests = &GHProxyErrors{
 		StatusCode: 429,
 		StatusDesc: "Too Many Requests",
 		StatusText: "请求过于频繁",
 		HelpInfo:   "您的请求过于频繁，请稍后再试。",
 	}
 	ErrInternalServerError = &GHProxyErrors{
 		StatusCode: 500,
 		StatusDesc: "Internal Server Error",
 		StatusText: "服务器内部错误",
 		HelpInfo:   "服务器处理您的请求时发生错误，请稍后重试或联系管理员。",
 	}
 )
 var statusErrorMap map[int]*GHProxyErrors
 func init() {
 	statusErrorMap = map[int]*GHProxyErrors{
 		ErrInvalidURL.StatusCode:            ErrInvalidURL,
 		ErrAuthHeaderUnavailable.StatusCode: ErrAuthHeaderUnavailable,
 		ErrForbidden.StatusCode:             ErrForbidden,
 		ErrNotFound.StatusCode:              ErrNotFound,
 		ErrTooManyRequests.StatusCode:       ErrTooManyRequests,
 		ErrInternalServerError.StatusCode:   ErrInternalServerError,
 	}
 }
 func NewErrorWithStatusLookup(statusCode int, errMsg string) *GHProxyErrors {
 	baseErr, found := statusErrorMap[statusCode]
 	if found {
 		return &GHProxyErrors{
 			StatusCode:   baseErr.StatusCode,
 			StatusDesc:   baseErr.StatusDesc,
 			StatusText:   baseErr.StatusText,
 			HelpInfo:     baseErr.HelpInfo,
 			ErrorMessage: errMsg,
 		}
 	} else {
 		return &GHProxyErrors{
 			StatusCode:   statusCode,
 			ErrorMessage: errMsg,
 		}
 	}
 }
 var errPagesFs fs.FS
 func InitErrPagesFS(pages fs.FS) error {
 	var err error
 	errPagesFs, err = fs.Sub(pages, "pages/err")
 	if err != nil {
 		return err
 	}
 	return nil
 }
 type ErrorPageData struct {
 	StatusCode   int
 	StatusDesc   string
 	StatusText   string
 	HelpInfo     string
 	ErrorMessage string
 }
 func ErrPageUnwarper(errInfo *GHProxyErrors) ErrorPageData {
 	return ErrorPageData{
 		StatusCode:   errInfo.StatusCode,
 		StatusDesc:   errInfo.StatusDesc,
 		StatusText:   errInfo.StatusText,
 		HelpInfo:     errInfo.HelpInfo,
 		ErrorMessage: errInfo.ErrorMessage,
 	}
 }
 func ErrorPage(c *app.RequestContext, errInfo *GHProxyErrors) {
 	pageData, err := htmlTemplateRender(errPagesFs, ErrPageUnwarper(errInfo))
 	if err != nil {
 		c.JSON(errInfo.StatusCode, map[string]string{"error": errInfo.ErrorMessage})
 		logDebug("Error reading page.tmpl: %v", err)
 		return
 	}
 	c.Data(errInfo.StatusCode, "text/html; charset=utf-8", pageData)
 	return
 }
 func htmlTemplateRender(fsys fs.FS, data interface{}) ([]byte, error) {
 	tmplPath := "page.tmpl"
 	tmpl, err := template.ParseFS(fsys, tmplPath)
 	if err != nil {
 		return nil, fmt.Errorf("error parsing template: %w", err)
 	}
 	if tmpl == nil {
 		return nil, fmt.Errorf("template is nil")
 	}
 	// 创建一个 bytes.Buffer 用于存储渲染结果
 	var buf bytes.Buffer
 	err = tmpl.Execute(&buf, data)
 	if err != nil {
 		return nil, fmt.Errorf("error executing template: %w", err)
 	}
 	// 返回 buffer 的内容作为 []byte
 	return buf.Bytes(), nil
 }
--- a/proxy/gitreq.go
+++ b/proxy/gitreq.go
@@ -2,22 +2,21 @@ package proxy
 import (
 	"bytes"
 	"context"
 	"fmt"
 	"ghproxy/config"
 	"io"
 	"net/http"
 	"strconv"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/WJQSERVER-STUDIO/go-utils/copyb"
 	"github.com/gin-gonic/gin"
 )
-func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Config, mode string) {
+func GitReq(c *gin.Context, u string, cfg *config.Config, mode string, runMode string) {
-	method := string(c.Request.Method())
+	method := c.Request.Method
-
+	logInfo("%s %s %s %s %s", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 	bodyReader := bytes.NewBuffer(c.Request.Body())
 	//bodyReader := c.Request.BodyStream()
 	logDump("Url Before FMT:%s", u)
 	if cfg.GitClone.Mode == "cache" {
 		userPath, repoPath, remainingPath, queryParams, err := extractParts(u)
 		if err != nil {
@@ -26,24 +25,31 @@ func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Co
 		}
 		// 构建新url
 		u = cfg.GitClone.SmartGitAddr + userPath + repoPath + remainingPath + "?" + queryParams.Encode()
 		logDump("New Url After FMT:%s", u)
 	}
 	var (
 		resp *http.Response
 		err  error
 	)
-	if cfg.GitClone.Mode == "cache" {
+	body, err := readRequestBody(c)
-		rb := gitclient.NewRequestBuilder(method, u)
+	if err != nil {
-		rb.NoDefaultHeaders()
+		HandleError(c, err.Error())
-		rb.SetBody(bodyReader)
+		return
 	}
-		req, err := rb.Build()
+	bodyReader := bytes.NewBuffer(body)
 	// 创建请求
 	if cfg.GitClone.Mode == "cache" {
 		req, err := gitclient.NewRequest(method, u, bodyReader)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 			return
 		}
-
+		setRequestHeaders(c, req)
-		setRequestHeaders(c, req, cfg, "clone")
+		removeWSHeader(req)
 		AuthPassThrough(c, cfg, req)
 		resp, err = gitclient.Do(req)
@@ -52,17 +58,13 @@ func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Co
 			return
 		}
 	} else {
-		rb := client.NewRequestBuilder(string(c.Request.Method()), u)
+		req, err := client.NewRequest(method, u, bodyReader)
 		rb.NoDefaultHeaders()
 		rb.SetBody(bodyReader)
 		req, err := rb.Build()
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 			return
 		}
-
+		setRequestHeaders(c, req)
-		setRequestHeaders(c, req, cfg, "clone")
+		removeWSHeader(req)
 		AuthPassThrough(c, cfg, req)
 		resp, err = client.Do(req)
@@ -71,26 +73,32 @@ func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Co
 			return
 		}
 	}
 	//defer resp.Body.Close()
 	defer func(Body io.ReadCloser) {
 		if err := Body.Close(); err != nil {
 			logError("Failed to close response body: %v", err)
 		}
 	}(resp.Body)
 	// 记录返回结果信息
 	logDump("Resp Header: %v", resp.Header)
 	logDump("Resp Status: %v", resp.StatusCode)
 	contentLength := resp.Header.Get("Content-Length")
 	if contentLength != "" {
 		size, err := strconv.Atoi(contentLength)
 		sizelimit := cfg.Server.SizeLimit * 1024 * 1024
 		if err != nil {
 			logWarning("%s %s %s %s %s Content-Length header is not a valid integer: %v", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), err)
 		}
 		if err == nil && size > sizelimit {
-			finalURL := []byte(resp.Request.URL.String())
+			finalURL := resp.Request.URL.String()
 			c.Redirect(http.StatusMovedPermanently, finalURL)
-			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Method(), c.Path(), c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol(), finalURL, size)
+			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto, finalURL, size)
 			return
 		}
 	}
 	for key, values := range resp.Header {
 		for _, value := range values {
-			//c.Header(key, value)
+			c.Header(key, value)
 			c.Response.Header.Add(key, value)
 		}
 	}
@@ -116,11 +124,14 @@ func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Co
 	}
 	c.Status(resp.StatusCode)
-	if cfg.GitClone.Mode == "cache" {
+	_, err = copyb.Copy(c.Writer, resp.Body)
-		c.Response.Header.Set("Cache-Control", "no-store, no-cache, must-revalidate")
+
-		c.Response.Header.Set("Pragma", "no-cache")
+	if err != nil {
-		c.Response.Header.Set("Expires", "0")
+		logError("%s %s %s %s %s Failed to copy response body: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 		return
 	} else {
 		c.Writer.Flush() // 确保刷入
 	}
 	c.SetBodyStream(resp.Body, -1)
 }
--- a/proxy/handler.go
+++ b/proxy/handler.go
@@ -1,86 +1,133 @@
 package proxy
 import (
-	"context"
+	"errors"
 	"fmt"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/rate"
 	"net/http"
 	"regexp"
 	"strings"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
 var re = regexp.MustCompile(`^(http:|https:)?/?/?(.*)`) // 匹配http://或https://开头的路径
-func NoRouteHandler(cfg *config.Config, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter) app.HandlerFunc {
+func NoRouteHandler(cfg *config.Config, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter, runMode string) gin.HandlerFunc {
-	return func(ctx context.Context, c *app.RequestContext) {
+	return func(c *gin.Context) {
-		var shoudBreak bool
+		// 限制访问频率
-		shoudBreak = rateCheck(cfg, c, limiter, iplimiter)
+		if cfg.RateLimit.Enabled {
-		if shoudBreak {
+
 			var allowed bool
 			switch cfg.RateLimit.RateMethod {
 			case "ip":
 				allowed = iplimiter.Allow(c.ClientIP())
 			case "total":
 				allowed = limiter.Allow()
 			default:
 				logWarning("Invalid RateLimit Method")
 				return
 			}
-		var (
+			if !allowed {
-			rawPath string
+				c.JSON(http.StatusTooManyRequests, gin.H{"error": "Too Many Requests"})
-			matches []string
+				logWarning("%s %s %s %s %s 429-TooManyRequests", c.ClientIP(), c.Request.Method, c.Request.URL.RequestURI(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
-		)
+				return
 			}
 		}
-		rawPath = strings.TrimPrefix(string(c.Request.RequestURI()), "/") // 去掉前缀/
+		//rawPath := strings.TrimPrefix(c.Request.URL.Path, "/") // 去掉前缀/
-		matches = re.FindStringSubmatch(rawPath)                          // 匹配路径
+		rawPath := strings.TrimPrefix(c.Request.URL.RequestURI(), "/") // 去掉前缀/
 		matches := re.FindStringSubmatch(rawPath)                      // 匹配路径
 		logInfo("Matches: %v", matches)
 		// 匹配路径错误处理
 		if len(matches) < 3 {
-			logWarning("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Method(), c.Path(), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
+			errMsg := fmt.Sprintf("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto)
-			ErrorPage(c, NewErrorWithStatusLookup(400, fmt.Sprintf("Invalid URL Format: %s", c.Path())))
+			logWarning(errMsg)
 			c.String(http.StatusForbidden, "Invalid URL Format. Path: %s", rawPath)
 			return
 		}
 		// 制作url
 		rawPath = "https://" + matches[2]
-		var (
+		user, repo, matcher, err := Matcher(rawPath, cfg)
-			user    string
+		if err != nil {
-			repo    string
+			if errors.Is(err, ErrInvalidURL) {
-			matcher string
+				c.String(http.StatusForbidden, "Invalid URL Format. Path: %s", rawPath)
-		)
+				logWarning(err.Error())
 		var matcherErr *GHProxyErrors
 		user, repo, matcher, matcherErr = Matcher(rawPath, cfg)
 		if matcherErr != nil {
 			ErrorPage(c, matcherErr)
 				return
 			}
-
+			if errors.Is(err, ErrAuthHeaderUnavailable) {
-		logDump("%s %s %s %s %s Matched-Username: %s, Matched-Repo: %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), user, repo)
+				c.String(http.StatusForbidden, "AuthHeader Unavailable")
-		logDump("%s", c.Request.Header.Header())
+				logWarning(err.Error())
 		shoudBreak = listCheck(cfg, c, user, repo, rawPath)
 		if shoudBreak {
 				return
 			}
 		}
 		username := user
-		shoudBreak = authCheck(c, cfg, matcher, rawPath)
+		logInfo("%s %s %s %s %s Matched-Username: %s, Matched-Repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, username, repo)
-		if shoudBreak {
+		// dump log 记录详细信息 c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, full Header
 		logDump("%s %s %s %s %s %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, c.Request.Header)
 		repouser := fmt.Sprintf("%s/%s", username, repo)
 		// 白名单检查
 		if cfg.Whitelist.Enabled {
 			whitelist := auth.CheckWhitelist(username, repo)
 			if !whitelist {
 				logErrMsg := fmt.Sprintf("%s %s %s %s %s Whitelist Blocked repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, repouser)
 				errMsg := fmt.Sprintf("Whitelist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, gin.H{"error": errMsg})
 				logWarning(logErrMsg)
 				return
 			}
 		}
 		// 黑名单检查
 		if cfg.Blacklist.Enabled {
 			blacklist := auth.CheckBlacklist(username, repo)
 			if blacklist {
 				logErrMsg := fmt.Sprintf("%s %s %s %s %s Blacklist Blocked repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, repouser)
 				errMsg := fmt.Sprintf("Blacklist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, gin.H{"error": errMsg})
 				logWarning(logErrMsg)
 				return
 			}
 		}
 		// 若匹配api.github.com/repos/用户名/仓库名/路径, 则检查是否开启HeaderAuth
 		// 处理blob/raw路径
 		if matcher == "blob" {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}
-		logDebug("Matched: %v", matcher)
+		// 鉴权
 		var authcheck bool
 		authcheck, err = auth.AuthHandler(c, cfg)
 		if !authcheck {
 			c.AbortWithStatusJSON(401, gin.H{"error": "Unauthorized"})
 			logWarning("%s %s %s %s %s Auth-Error: %v", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 			return
 		}
 		// IP METHOD URL USERAGENT PROTO MATCHES
 		logDebug("%s %s %s %s %s Matches: %v", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, matches)
 		switch matcher {
 		case "releases", "blob", "raw", "gist", "api":
-			ChunkedProxyRequest(ctx, c, rawPath, cfg, matcher)
+			ChunkedProxyRequest(c, rawPath, cfg, matcher)
 		case "clone":
-			GitReq(ctx, c, rawPath, cfg, "git")
+			//ProxyRequest(c, rawPath, cfg, "git", runMode)
 			GitReq(c, rawPath, cfg, "git", runMode)
 		default:
-			ErrorPage(c, NewErrorWithStatusLookup(500, "Matched But Not Matched"))
+			c.String(http.StatusForbidden, "Invalid input.")
-			logError("Matched But Not Matched Path: %s rawPath: %s matcher: %s", c.Path(), rawPath, matcher)
+			fmt.Println("Invalid input.")
 			return
 		}
 	}
--- a/proxy/httpc.go
+++ b/proxy/httpc.go
@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"ghproxy/config"
 	"net/http"
 	"sync"
 	"time"
 	httpc "github.com/satomitouka/touka-httpc"
@@ -14,6 +15,7 @@ var BufferSize int = 32 * 1024 // 32KB
 var (
 	tr         *http.Transport
 	gittr      *http.Transport
 	BufferPool *sync.Pool
 	client     *httpc.Client
 	gitclient  *httpc.Client
 )
@@ -23,6 +25,13 @@ func InitReq(cfg *config.Config) {
 	if cfg.GitClone.Mode == "cache" {
 		initGitHTTPClient(cfg)
 	}
 	// 初始化固定大小的缓存池
 	BufferPool = &sync.Pool{
 		New: func() interface{} {
 			return make([]byte, BufferSize)
 		},
 	}
 }
 func initHTTPClient(cfg *config.Config) {
@@ -33,6 +42,7 @@ func initHTTPClient(cfg *config.Config) {
 	if cfg.Httpc.Mode == "auto" {
 		tr = &http.Transport{
 			//MaxIdleConns:    160,
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
@@ -54,6 +64,7 @@ func initHTTPClient(cfg *config.Config) {
 		logWarning("use Auto to Run HTTP Client")
 		fmt.Println("use Auto to Run HTTP Client")
 		tr = &http.Transport{
 			//MaxIdleConns:    160,
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
@@ -76,11 +87,23 @@ func initHTTPClient(cfg *config.Config) {
 func initGitHTTPClient(cfg *config.Config) {
 	var proTolcols = new(http.Protocols)
 	proTolcols.SetHTTP1(true)
 	proTolcols.SetHTTP2(true)
 	proTolcols.SetUnencryptedHTTP2(true)
 	if cfg.GitClone.ForceH2C {
 		proTolcols.SetHTTP1(false)
 		proTolcols.SetHTTP2(false)
 		proTolcols.SetUnencryptedHTTP2(true)
 	}
 	if cfg.Httpc.Mode == "auto" {
 		gittr = &http.Transport{
 			//MaxIdleConns:    160,
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
 			Protocols:       proTolcols,
 		}
 	} else if cfg.Httpc.Mode == "advanced" {
 		gittr = &http.Transport{
@@ -89,6 +112,7 @@ func initGitHTTPClient(cfg *config.Config) {
 			MaxIdleConnsPerHost: cfg.Httpc.MaxIdleConnsPerHost,
 			WriteBufferSize:     32 * 1024, // 32KB
 			ReadBufferSize:      32 * 1024, // 32KB
 			Protocols:           proTolcols,
 		}
 	} else {
 		// 错误的模式
@@ -106,39 +130,14 @@ func initGitHTTPClient(cfg *config.Config) {
 	if cfg.Outbound.Enabled {
 		initTransport(cfg, gittr)
 	}
-	if cfg.Server.Debug && cfg.GitClone.ForceH2C {
+	if cfg.Server.Debug {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithDumpLog(),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				ForceH2C: true,
 			}),
 		)
 	} else if !cfg.Server.Debug && cfg.GitClone.ForceH2C {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				ForceH2C: true,
 			}),
 		)
 	} else if cfg.Server.Debug && !cfg.GitClone.ForceH2C {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithDumpLog(),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				Http1:           true,
 				Http2:           true,
 				Http2_Cleartext: true,
 			}),
 		)
 	} else {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				Http1:           true,
 				Http2:           true,
 				Http2_Cleartext: true,
 			}),
 		)
 	}
 }
--- a/proxy/match.go
+++ b/proxy/match.go
@@ -11,12 +11,54 @@ import (
 	"strings"
 )
-func Matcher(rawPath string, cfg *config.Config) (string, string, string, *GHProxyErrors) {
+// 定义错误类型, error承载描述, 便于处理
 type MatcherErrors struct {
 	Code int
 	Msg  string
 	Err  error
 }
 var (
 	ErrInvalidURL = &MatcherErrors{
 		Code: 403,
 		Msg:  "Invalid URL Format",
 	}
 	ErrAuthHeaderUnavailable = &MatcherErrors{
 		Code: 403,
 		Msg:  "AuthHeader Unavailable",
 	}
 )
 func (e *MatcherErrors) Error() string {
 	if e.Err != nil {
 		return fmt.Sprintf("Code: %d, Msg: %s, Err: %s", e.Code, e.Msg, e.Err.Error())
 	}
 	return fmt.Sprintf("Code: %d, Msg: %s", e.Code, e.Msg)
 }
 func (e *MatcherErrors) Unwrap() error {
 	return e.Err
 }
 func Matcher(rawPath string, cfg *config.Config) (string, string, string, error) {
 	var (
 		user    string
 		repo    string
 		matcher string
 	)
 	// 匹配 "https://raw"开头的链接
 	if strings.HasPrefix(rawPath, "https://raw") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://")
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 3 {
 			return "", "", "", ErrInvalidURL
 		}
 		user = parts[1]
 		repo = parts[2]
 		matcher = "raw"
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://github.com") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://github.com")
@@ -27,8 +69,7 @@ func Matcher(rawPath string, cfg *config.Config) (string, string, string, *GHPro
 		// 取出user和repo和最后部分
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 2 {
-			errMsg := "Not enough parts in path after matching 'https://github.com*'"
+			return "", "", "", ErrInvalidURL
 			return "", "", "", NewErrorWithStatusLookup(400, errMsg)
 		}
 		user = parts[0]
 		repo = parts[1]
@@ -37,40 +78,22 @@ func Matcher(rawPath string, cfg *config.Config) (string, string, string, *GHPro
 			switch parts[2] {
 			case "releases", "archive":
 				matcher = "releases"
-			case "blob":
+			case "blob", "raw":
 				matcher = "blob"
 			case "raw":
 				matcher = "raw"
 			case "info", "git-upload-pack":
 				matcher = "clone"
 			default:
-				errMsg := "Url Matched 'https://github.com*', but didn't match the next matcher"
+				return "", "", "", ErrInvalidURL
 				return "", "", "", NewErrorWithStatusLookup(400, errMsg)
 			}
 		}
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://raw"开头的链接
 	if strings.HasPrefix(rawPath, "https://raw") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://")
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 3 {
 			errMsg := "URL after matched 'https://raw*' should have at least 4 parts (user/repo/branch/file)."
 			return "", "", "", NewErrorWithStatusLookup(400, errMsg)
 		}
 		user = parts[1]
 		repo = parts[2]
 		matcher = "raw"
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://gist"开头的链接
 	if strings.HasPrefix(rawPath, "https://gist") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://")
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 3 {
-			errMsg := "URL after matched 'https://gist*' should have at least 4 parts (user/gist_id)."
+			return "", "", "", ErrInvalidURL
 			return "", "", "", NewErrorWithStatusLookup(400, errMsg)
 		}
 		user = parts[1]
 		repo = ""
@@ -91,17 +114,13 @@ func Matcher(rawPath string, cfg *config.Config) (string, string, string, *GHPro
 			user = parts[1]
 		}
 		if !cfg.Auth.ForceAllowApi {
-			if cfg.Auth.Method != "header" || !cfg.Auth.Enabled {
+			if cfg.Auth.AuthMethod != "header" || !cfg.Auth.Enabled {
-				//return "", "", "", ErrAuthHeaderUnavailable
+				return "", "", "", ErrAuthHeaderUnavailable
 				errMsg := "AuthHeader Unavailable, Need to open header auth to enable api proxy"
 				return "", "", "", NewErrorWithStatusLookup(403, errMsg)
 			}
 		}
 		return user, repo, matcher, nil
 	}
-	//return "", "", "", ErrNotFound
+	return "", "", "", ErrInvalidURL
 	errMsg := "Didn't match any matcher"
 	return "", "", "", NewErrorWithStatusLookup(404, errMsg)
 }
 func EditorMatcher(rawPath string, cfg *config.Config) (bool, string, error) {
@@ -110,10 +129,12 @@ func EditorMatcher(rawPath string, cfg *config.Config) (bool, string, error) {
 	)
 	// 匹配 "https://github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://github.com") {
 		/*
 			remainingPath := strings.TrimPrefix(rawPath, "https://github.com")
 			if strings.HasPrefix(remainingPath, "/") {
 				remainingPath = strings.TrimPrefix(remainingPath, "/")
 			}
 		*/
 		return true, "", nil
 	}
 	// 匹配 "https://raw.githubusercontent.com"开头的链接
@@ -132,18 +153,24 @@ func EditorMatcher(rawPath string, cfg *config.Config) (bool, string, error) {
 	if strings.HasPrefix(rawPath, "https://gist.github.com") {
 		return true, matcher, nil
 	}
 	if cfg.Shell.RewriteAPI {
 	// 匹配 "https://api.github.com/"开头的链接
 	if cfg.Shell.RewriteAPI {
 		if strings.HasPrefix(rawPath, "https://api.github.com") {
 			matcher = "api"
 			return true, matcher, nil
 		}
 	}
-	return false, "", nil
+	return false, "", ErrInvalidURL
 }
 // 匹配文件扩展名是sh的rawPath
 func MatcherShell(rawPath string) bool {
 	/*
 		if strings.HasSuffix(rawPath, ".sh") {
 			return true
 		}
 		return false
 	*/
 	return strings.HasSuffix(rawPath, ".sh")
 }
@@ -186,6 +213,86 @@ func matchString(target string, stringsToMatch []string) bool {
 	return exists
 }
 // processLinks 处理链接并将结果写入输出流
 func processLinks(input io.Reader, output io.Writer, compress string, host string, cfg *config.Config) (written int64, err error) {
 	var reader *bufio.Reader
 	if compress == "gzip" {
 		// 解压gzip
 		gzipReader, err := gzip.NewReader(input)
 		if err != nil {
 			return 0, fmt.Errorf("gzip解压错误: %v", err)
 		}
 		defer gzipReader.Close()
 		reader = bufio.NewReader(gzipReader)
 	} else {
 		reader = bufio.NewReader(input)
 	}
 	var writer *bufio.Writer
 	var gzipWriter *gzip.Writer
 	// 根据是否gzip确定 writer 的创建
 	if compress == "gzip" {
 		gzipWriter = gzip.NewWriter(output)
 		writer = bufio.NewWriterSize(gzipWriter, 4096) //设置缓冲区大小
 	} else {
 		writer = bufio.NewWriterSize(output, 4096)
 	}
 	//确保writer关闭
 	defer func() {
 		var closeErr error // 局部变量，用于保存defer中可能发生的错误
 		if gzipWriter != nil {
 			if closeErr = gzipWriter.Close(); closeErr != nil {
 				logError("gzipWriter close failed %v", closeErr)
 				// 如果已经存在错误，则保留。否则，记录此错误。
 				if err == nil {
 					err = closeErr
 				}
 			}
 		}
 		if flushErr := writer.Flush(); flushErr != nil {
 			logError("writer flush failed %v", flushErr)
 			// 如果已经存在错误，则保留。否则，记录此错误。
 			if err == nil {
 				err = flushErr
 			}
 		}
 	}()
 	// 使用正则表达式匹配 http 和 https 链接
 	urlPattern := regexp.MustCompile(`https?://[^\s'"]+`)
 	for {
 		line, err := reader.ReadString('\n')
 		if err != nil {
 			if err == io.EOF {
 				break // 文件结束
 			}
 			return written, fmt.Errorf("读取行错误: %v", err) // 传递错误
 		}
 		// 替换所有匹配的 URL
 		modifiedLine := urlPattern.ReplaceAllStringFunc(line, func(originalURL string) string {
 			return modifyURL(originalURL, host, cfg)
 		})
 		n, werr := writer.WriteString(modifiedLine)
 		written += int64(n) // 更新写入的字节数
 		if werr != nil {
 			return written, fmt.Errorf("写入文件错误: %v", werr) // 传递错误
 		}
 	}
 	// 在返回之前，再刷新一次
 	if fErr := writer.Flush(); fErr != nil {
 		return written, fErr
 	}
 	return written, nil
 }
 // extractParts 从给定的 URL 中提取所需的部分
 func extractParts(rawURL string) (string, string, string, url.Values, error) {
 	// 解析 URL
@@ -217,120 +324,3 @@ func extractParts(rawURL string) (string, string, string, url.Values, error) {
 	return repoOwner, repoName, remainingPath, queryParams, nil
 }
 var urlPattern = regexp.MustCompile(`https?://[^\s'"]+`)
 // processLinks 处理链接，返回包含处理后数据的 io.Reader
 func processLinks(input io.ReadCloser, compress string, host string, cfg *config.Config) (readerOut io.Reader, written int64, err error) {
 	pipeReader, pipeWriter := io.Pipe() // 创建 io.Pipe
 	readerOut = pipeReader
 	go func() { // 在 Goroutine 中执行写入操作
 		defer func() {
 			if pipeWriter != nil { // 确保 pipeWriter 关闭，即使发生错误
 				if err != nil {
 					if closeErr := pipeWriter.CloseWithError(err); closeErr != nil { // 如果有错误，传递错误给 reader
 						logError("pipeWriter close with error failed: %v, original error: %v", closeErr, err)
 					}
 				} else {
 					if closeErr := pipeWriter.Close(); closeErr != nil { // 没有错误，正常关闭
 						logError("pipeWriter close failed: %v", closeErr)
 						if err == nil { // 如果之前没有错误，记录关闭错误
 							err = closeErr
 						}
 					}
 				}
 			}
 		}()
 		defer func() {
 			if err := input.Close(); err != nil {
 				logError("input close failed: %v", err)
 			}
 		}()
 		var bufReader *bufio.Reader
 		if compress == "gzip" {
 			// 解压gzip
 			gzipReader, gzipErr := gzip.NewReader(input)
 			if gzipErr != nil {
 				err = fmt.Errorf("gzip解压错误: %v", gzipErr)
 				return // Goroutine 中使用 return 返回错误
 			}
 			defer gzipReader.Close()
 			bufReader = bufio.NewReader(gzipReader)
 		} else {
 			bufReader = bufio.NewReader(input)
 		}
 		var bufWriter *bufio.Writer
 		var gzipWriter *gzip.Writer
 		// 根据是否gzip确定 writer 的创建
 		if compress == "gzip" {
 			gzipWriter = gzip.NewWriter(pipeWriter)           // 使用 pipeWriter
 			bufWriter = bufio.NewWriterSize(gzipWriter, 4096) //设置缓冲区大小
 		} else {
 			bufWriter = bufio.NewWriterSize(pipeWriter, 4096) // 使用 pipeWriter
 		}
 		//确保writer关闭
 		defer func() {
 			var closeErr error // 局部变量，用于保存defer中可能发生的错误
 			if gzipWriter != nil {
 				if closeErr = gzipWriter.Close(); closeErr != nil {
 					logError("gzipWriter close failed %v", closeErr)
 					// 如果已经存在错误，则保留。否则，记录此错误。
 					if err == nil {
 						err = closeErr
 					}
 				}
 			}
 			if flushErr := bufWriter.Flush(); flushErr != nil {
 				logError("writer flush failed %v", flushErr)
 				// 如果已经存在错误，则保留。否则，记录此错误。
 				if err == nil {
 					err = flushErr
 				}
 			}
 		}()
 		// 使用正则表达式匹配 http 和 https 链接
 		for {
 			line, readErr := bufReader.ReadString('\n')
 			if readErr != nil {
 				if readErr == io.EOF {
 					break // 文件结束
 				}
 				err = fmt.Errorf("读取行错误: %v", readErr) // 传递错误
 				return                                 // Goroutine 中使用 return 返回错误
 			}
 			// 替换所有匹配的 URL
 			modifiedLine := urlPattern.ReplaceAllStringFunc(line, func(originalURL string) string {
 				logDump("originalURL: %s", originalURL)
 				return modifyURL(originalURL, host, cfg) // 假设 modifyURL 函数已定义
 			})
 			n, writeErr := bufWriter.WriteString(modifiedLine)
 			written += int64(n) // 更新写入的字节数
 			if writeErr != nil {
 				err = fmt.Errorf("写入文件错误: %v", writeErr) // 传递错误
 				return                                   // Goroutine 中使用 return 返回错误
 			}
 		}
 		// 在返回之前，再刷新一次 (虽然 defer 中已经有 flush，但这里再加一次确保及时刷新)
 		if flushErr := bufWriter.Flush(); flushErr != nil {
 			if err == nil { // 避免覆盖之前的错误
 				err = flushErr
 			}
 			return // Goroutine 中使用 return 返回错误
 		}
 	}()
 	return readerOut, written, nil // 返回 reader 和 written，error 由 Goroutine 通过 pipeWriter.CloseWithError 传递
 }
--- a/proxy/proxy.go
+++ b/proxy/proxy.go
@@ -0,0 +1,36 @@
 package proxy
 import (
 	"fmt"
 	"io"
 	"net/http"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/gin-gonic/gin"
 )
 // 日志模块
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 // 读取请求体
 func readRequestBody(c *gin.Context) ([]byte, error) {
 	body, err := io.ReadAll(c.Request.Body)
 	if err != nil {
 		logError("failed to read request body: %v", err)
 		return nil, fmt.Errorf("failed to read request body: %v", err)
 	}
 	defer c.Request.Body.Close()
 	return body, nil
 }
 func HandleError(c *gin.Context, message string) {
 	c.String(http.StatusInternalServerError, fmt.Sprintf("server error %v", message))
 	logError(message)
 }
--- a/proxy/reqheader.go
+++ b/proxy/reqheader.go
@@ -1,75 +1,50 @@
 package proxy
 import (
 	"ghproxy/config"
 	"net/http"
-	"github.com/cloudwego/hertz/pkg/app"
+	"github.com/gin-gonic/gin"
 )
-var (
+// 设置请求头
-	respHeadersToRemove = map[string]struct{}{
+func setRequestHeaders(c *gin.Context, req *http.Request) {
-		"Content-Security-Policy":   {},
+	for key, values := range c.Request.Header {
-		"Referrer-Policy":           {},
+		for _, value := range values {
 		"Strict-Transport-Security": {},
 		"X-Github-Request-Id":       {},
 		"X-Timer":                   {},
 		"X-Served-By":               {},
 		"X-Fastly-Request-Id":       {},
 	}
 	reqHeadersToRemove = map[string]struct{}{
 		"CF-IPCountry":     {},
 		"CF-RAY":           {},
 		"CF-Visitor":       {},
 		"CF-Connecting-IP": {},
 		"CF-EW-Via":        {},
 		"CDN-Loop":         {},
 		"Upgrade":          {},
 		"Connection":       {},
 	}
 	cloneHeadersToRemove = map[string]struct{}{
 		"CF-IPCountry":     {},
 		"CF-RAY":           {},
 		"CF-Visitor":       {},
 		"CF-Connecting-IP": {},
 		"CF-EW-Via":        {},
 		"CDN-Loop":         {},
 	}
 )
 // 预定义headers
 var (
 	defaultHeaders = map[string]string{
 		"Accept":            "*/*",
 		"Accept-Encoding":   "gzip",
 		"Transfer-Encoding": "chunked",
 		"User-Agent":        "GHProxy/1.0",
 	}
 )
 func setRequestHeaders(c *app.RequestContext, req *http.Request, cfg *config.Config, matcher string) {
 	if matcher == "raw" && cfg.Httpc.UseCustomRawHeaders {
 		// 使用预定义Header
 		for key, value := range defaultHeaders {
 			req.Header.Set(key, value)
 		}
 	} else if matcher == "clone" {
 		c.Request.Header.VisitAll(func(key, value []byte) {
 			headerKey := string(key)
 			headerValue := string(value)
 			if _, shouldRemove := cloneHeadersToRemove[headerKey]; !shouldRemove {
 				req.Header.Set(headerKey, headerValue)
 	}
-		})
+}
 func removeWSHeader(req *http.Request) {
 	req.Header.Del("Upgrade")
 	req.Header.Del("Connection")
 }
 /*
 func reWriteEncodeHeader(req *http.Request) {
 	if isGzipAccepted(req.Header) {
 		req.Header.Set("Content-Encoding", "gzip")
 		req.Header.Set("Accept-Encoding", "gzip")
 	} else {
-		c.Request.Header.VisitAll(func(key, value []byte) {
+		req.Header.Del("Content-Encoding")
-			headerKey := string(key)
+		req.Header.Del("Accept-Encoding")
 			headerValue := string(value)
 			if _, shouldRemove := reqHeadersToRemove[headerKey]; !shouldRemove {
 				req.Header.Set(headerKey, headerValue)
 	}
-		})
+
 }
 // isGzipAccepted 检查 Accept-Encoding 头部中是否包含 gzip
 func isGzipAccepted(header http.Header) bool {
 	// 获取 Accept-Encoding 的值
 	encodings := header["Accept-Encoding"]
 	for _, encoding := range encodings {
 		// 将 encoding 字符串拆分为多个编码
 		for _, enc := range strings.Split(encoding, ",") {
 			// 去除空格并检查是否为 gzip
 			if strings.TrimSpace(enc) == "gzip" {
 				return true
 			}
 		}
 	}
 	return false
 }
 */
--- a/proxy/routing.go
+++ b/proxy/routing.go
@@ -1,72 +0,0 @@
 package proxy
 import (
 	"context"
 	"ghproxy/config"
 	"ghproxy/rate"
 	"strings"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func RoutingHandler(cfg *config.Config, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter) app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		var shoudBreak bool
 		shoudBreak = rateCheck(cfg, c, limiter, iplimiter)
 		if shoudBreak {
 			return
 		}
 		var (
 			rawPath string
 		)
 		rawPath = strings.TrimPrefix(string(c.Request.RequestURI()), "/") // 去掉前缀/
 		var (
 			user    string
 			repo    string
 			matcher string
 		)
 		user = c.Param("user")
 		repo = c.Param("repo")
 		matcher = c.GetString("matcher")
 		logDump("%s %s %s %s %s Matched-Username: %s, Matched-Repo: %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), user, repo)
 		logDump("%s", c.Request.Header.Header())
 		shoudBreak = listCheck(cfg, c, user, repo, rawPath)
 		if shoudBreak {
 			return
 		}
 		shoudBreak = authCheck(c, cfg, matcher, rawPath)
 		if shoudBreak {
 			return
 		}
 		// 处理blob/raw路径
 		if matcher == "blob" {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}
 		// 为rawpath加入https:// 头
 		rawPath = "https://" + rawPath
 		logDebug("Matched: %v", matcher)
 		switch matcher {
 		case "releases", "blob", "raw", "gist", "api":
 			ChunkedProxyRequest(ctx, c, rawPath, cfg, matcher)
 		case "clone":
 			GitReq(ctx, c, rawPath, cfg, "git")
 		default:
 			ErrorPage(c, NewErrorWithStatusLookup(500, "Matched But Not Matched"))
 			logError("Matched But Not Matched Path: %s rawPath: %s matcher: %s", c.Path(), rawPath, matcher)
 			return
 		}
 	}
 }
--- a/proxy/utils.go
+++ b/proxy/utils.go
@@ -1,90 +0,0 @@
 package proxy
 import (
 	"fmt"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/rate"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func listCheck(cfg *config.Config, c *app.RequestContext, user string, repo string, rawPath string) bool {
 	// 白名单检查
 	if cfg.Whitelist.Enabled {
 		var whitelist bool
 		whitelist = auth.CheckWhitelist(user, repo)
 		if !whitelist {
 			ErrorPage(c, NewErrorWithStatusLookup(403, fmt.Sprintf("Whitelist Blocked repo: %s/%s", user, repo)))
 			logInfo("%s %s %s %s %s Whitelist Blocked repo: %s/%s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), user, repo)
 			return true
 		}
 	}
 	// 黑名单检查
 	if cfg.Blacklist.Enabled {
 		var blacklist bool
 		blacklist = auth.CheckBlacklist(user, repo)
 		if blacklist {
 			ErrorPage(c, NewErrorWithStatusLookup(403, fmt.Sprintf("Blacklist Blocked repo: %s/%s", user, repo)))
 			logInfo("%s %s %s %s %s Blacklist Blocked repo: %s/%s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), user, repo)
 			return true
 		}
 	}
 	return false
 }
 // 鉴权
 func authCheck(c *app.RequestContext, cfg *config.Config, matcher string, rawPath string) bool {
 	var err error
 	if matcher == "api" && !cfg.Auth.ForceAllowApi {
 		if cfg.Auth.Method != "header" || !cfg.Auth.Enabled {
 			ErrorPage(c, NewErrorWithStatusLookup(403, "Github API Req without AuthHeader is Not Allowed"))
 			logInfo("%s %s %s AuthHeader Unavailable", c.ClientIP(), c.Method(), rawPath)
 			return true
 		}
 	}
 	// 鉴权
 	if cfg.Auth.Enabled {
 		var authcheck bool
 		authcheck, err = auth.AuthHandler(c, cfg)
 		if !authcheck {
 			ErrorPage(c, NewErrorWithStatusLookup(401, fmt.Sprintf("Unauthorized: %v", err)))
 			logInfo("%s %s %s %s %s Auth-Error: %v", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), err)
 			return true
 		}
 	}
 	return false
 }
 func rateCheck(cfg *config.Config, c *app.RequestContext, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter) bool {
 	// 限制访问频率
 	if cfg.RateLimit.Enabled {
 		var allowed bool
 		switch cfg.RateLimit.RateMethod {
 		case "ip":
 			allowed = iplimiter.Allow(c.ClientIP())
 		case "total":
 			allowed = limiter.Allow()
 		default:
 			logWarning("Invalid RateLimit Method")
 			ErrorPage(c, NewErrorWithStatusLookup(500, "Invalid RateLimit Method"))
 			return true
 		}
 		if !allowed {
 			ErrorPage(c, NewErrorWithStatusLookup(429, fmt.Sprintf("Too Many Requests; Rate Limit is %d per minute", cfg.RateLimit.RatePerMinute)))
 			logInfo("%s %s %s %s %s 429-TooManyRequests", c.ClientIP(), c.Method(), c.Request.RequestURI(), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
 			return true
 		}
 	}
 	return false
 }
--- a/rate/rate.go
+++ b/rate/rate.go
@@ -1,107 +1,65 @@
 package rate
 import (
 	"sync"
 	"time"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"golang.org/x/time/rate"
 )
-// 日志模块
+// 日志输出
 var (
 	logw       = logger.Logw
-	logDump    = logger.LogDump
+	LogDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
-// RateLimiter 总体限流器
+// 总体限流器
 type RateLimiter struct {
 	limiter *rate.Limiter
 }
-// New 创建一个总体限流器
+// 基于IP的限流器
 type IPRateLimiter struct {
 	limiters map[string]*RateLimiter
 	limit    int
 	burst    int
 	duration time.Duration
 }
 func New(limit int, burst int, duration time.Duration) *RateLimiter {
 	if limit <= 0 {
 		limit = 1
 		logWarning("rate limit per minute must be positive, setting to 1")
 	}
 	if burst <= 0 {
 		burst = 1
 		logWarning("rate limit burst must be positive, setting to 1")
 	}
 	rateLimit := rate.Limit(float64(limit) / duration.Seconds())
 	return &RateLimiter{
-		limiter: rate.NewLimiter(rateLimit, burst),
+		limiter: rate.NewLimiter(rate.Limit(float64(limit)/duration.Seconds()), burst),
 	}
 }
 // Allow 检查是否允许请求通过
 func (rl *RateLimiter) Allow() bool {
 	return rl.limiter.Allow()
 }
-// IPRateLimiter 基于IP的限流器
+func NewIPRateLimiter(limit int, burst int, duration time.Duration) *IPRateLimiter {
 type IPRateLimiter struct {
 	limiters map[string]*RateLimiter // 用户级限流器 map
 	mu       sync.RWMutex            // 保护 limiters map
 	limit    int                     // 每 duration 时间段内允许的请求数
 	burst    int                     // 突发请求数
 	duration time.Duration           // 限流周期
 }
 // NewIPRateLimiter 创建一个基于IP的限流器
 func NewIPRateLimiter(ipLimit int, ipBurst int, duration time.Duration) *IPRateLimiter {
 	if ipLimit <= 0 {
 		ipLimit = 1
 		logWarning("IP rate limit per minute must be positive, setting to 1")
 	}
 	if ipBurst <= 0 {
 		ipBurst = 1
 		logWarning("IP rate limit burst must be positive, setting to 1")
 	}
 	logInfo("IP Rate Limiter initialized with limit: %d, burst: %d, duration: %v", ipLimit, ipBurst, duration)
 	return &IPRateLimiter{
 		limiters: make(map[string]*RateLimiter),
-		limit:    ipLimit,
+		limit:    limit,
-		burst:    ipBurst,
+		burst:    burst,
 		duration: duration,
 	}
 }
 // Allow 检查给定IP的请求是否允许通过
 func (rl *IPRateLimiter) Allow(ip string) bool {
 	if ip == "" {
-		logWarning("empty ip for rate limiting")
+		logWarning("empty ip")
 		return false
 	}
-	// 使用读锁快速查找
+	limiter, ok := rl.limiters[ip]
-	rl.mu.RLock()
+	if !ok {
-	limiter, found := rl.limiters[ip]
+		// 创建新的 RateLimiter 并存储
-	rl.mu.RUnlock()
+		limiter = New(rl.limit, rl.burst, rl.duration)
-
+		rl.limiters[ip] = limiter
-	if found {
+	}
 		return limiter.Allow()
 	}
 	// 未找到，获取写锁来创建和添加
 	rl.mu.Lock()
 	// 双重检查
 	limiter, found = rl.limiters[ip]
 	if !found {
 		newL := New(rl.limit, rl.burst, rl.duration)
 		rl.limiters[ip] = newL
 		limiter = newL
 	}
 	rl.mu.Unlock()
 	return limiter.Allow()
 }
--- a/timing/timing.go
+++ b/timing/timing.go
@@ -0,0 +1,86 @@
 package timing
 import (
 	"sync"
 	"time"
 	"github.com/gin-gonic/gin"
 )
 // 阶段计时结构（固定数组优化）
 type timingData struct {
 	phases [8]struct { // 预分配8个阶段存储
 		name string
 		dur  time.Duration
 	}
 	count int
 	start time.Time
 }
 // 对象池（内存重用优化）
 var pool = sync.Pool{
 	New: func() interface{} {
 		return new(timingData)
 	},
 }
 // 中间件入口
 func Middleware() gin.HandlerFunc {
 	return func(c *gin.Context) {
 		// 从池中获取计时器
 		td := pool.Get().(*timingData)
 		td.start = time.Now()
 		td.count = 0
 		// 存储到上下文
 		c.Set("timing", td)
 		// 请求完成后回收对象
 		defer func() {
 			pool.Put(td)
 		}()
 		c.Next()
 	}
 }
 // 记录阶段耗时
 func Record(c *gin.Context, name string) {
 	if val, exists := c.Get("timing"); exists {
 		//td := val.(*timingData)
 		td, ok := val.(*timingData)
 		if !ok {
 			return
 		}
 		if td.count < len(td.phases) {
 			td.phases[td.count].name = name
 			td.phases[td.count].dur = time.Since(td.start) // 直接记录当前时间
 			td.count++
 		}
 	}
 }
 // 获取计时结果（日志输出用）
 func Get(c *gin.Context) (total time.Duration, phases []struct {
 	Name string
 	Dur  time.Duration
 }) {
 	if val, exists := c.Get("timing"); exists {
 		//td := val.(*timingData)
 		td, ok := val.(*timingData)
 		if !ok {
 			return
 		}
 		for i := 0; i < td.count; i++ {
 			phases = append(phases, struct {
 				Name string
 				Dur  time.Duration
 			}{
 				Name: td.phases[i].name,
 				Dur:  td.phases[i].dur,
 			})
 		}
 		total = time.Since(td.start)
 	}
 	return
 }
Author	SHA1	Message	Date
WJQSERVER	36779f82f1	Merge pull request #83 from WJQSERVER-STUDIO/main Sync to v2 Branch	2025-03-30 17:42:52 +08:00
WJQSERVER	308da9daf5	Merge pull request #82 from WJQSERVER-STUDIO/dev 2.6.3	2025-03-30 17:41:36 +08:00
wjqserver	88519cc9b3	2.6.3	2025-03-30 17:37:38 +08:00
wjqserver	3364b1d885	25w25a	2025-03-30 17:27:26 +08:00
wjqserver	c3e42f2feb	[fix] remove reWriteEncodeHeader	2025-03-30 17:22:34 +08:00
WJQSERVER	a71ea410f1	Merge pull request #80 from WJQSERVER-STUDIO/dev Sync to v2 Branch	2025-03-29 12:45:17 +08:00
WJQSERVER	d65fe05336	Merge pull request #79 from WJQSERVER-STUDIO/dev 2.6.2 - 2025-03-29 --- - BACKPORT: 反向移植前端资源加载改进	2025-03-29 11:08:46 +08:00
wjqserver	8adc9c87f9	2.6.2	2025-03-29 11:02:54 +08:00
wjqserver	7e5092179e	optimize frontend load	2025-03-28 10:41:02 +08:00
WJQSERVER	f112e77818	Merge pull request #76 from WJQSERVER-STUDIO/dev 2.6.1	2025-03-28 08:20:29 +08:00
WJQSERVER	d46fa9c0ae	Merge pull request #77 from WJQSERVER-STUDIO/dev Sync to v2 Branch	2025-03-27 12:20:15 +08:00
wjqserver	8e5cfd1fac	2.6.1	2025-03-27 12:17:35 +08:00
wjqserver	1cc98ace75	update&sync changelog	2025-03-27 12:01:27 +08:00
wjqserver	b538ff2bd6	25w24a	2025-03-27 11:48:23 +08:00
wjqserver	f383518999	update&sync changelog	2025-03-27 11:47:44 +08:00
wjqserver	174bc14b97	update&sync changelog	2025-03-27 11:46:36 +08:00
wjqserver	15dfab722c	update & fix matcher	2025-03-27 11:24:29 +08:00
wjqserver	470d1d58fa	fix matcher issue	2025-03-27 11:20:39 +08:00
WJQSERVER	b80d25784a	Merge pull request #74 from satomitouka/dev-fix-editor Fix Match modifyURL	2025-03-25 23:49:15 +08:00
里見灯花	1efd9e26b2	Update match.go	2025-03-25 21:44:07 +08:00
wjqserver	4fa91b67cf	update match	2025-03-25 20:22:23 +08:00
wjqserver	ae234e64a8	update deps	2025-03-25 08:20:17 +08:00
wjqserver	87b9f47abc	add graceful shutdown	2025-03-25 08:20:08 +08:00
wjqserver	5685240b41	fix changelog	2025-03-22 21:26:48 +08:00
wjqserver	40f0e3ad06	fix flags wrong	2025-03-22 21:25:48 +08:00
wjqserver	ef783f33c2	[backport] some change form v3	2025-03-22 21:20:47 +08:00
wjqserver	c478409bf8	25w23a	2025-03-22 21:20:07 +08:00
wjqserver	a53e18cb0b	update repo info	2025-03-22 20:57:20 +08:00
wjqserver	0e7abf3411	[backport] add smart-git api	2025-03-22 20:56:57 +08:00
wjqserver	b5db6bcccc	[backport] better cli flags	2025-03-22 20:50:43 +08:00
wjqserver	c1ba935ca4	[backport] add multi theme support	2025-03-22 20:46:08 +08:00
wjqserver	3c247665fc	update	2025-03-22 20:18:30 +08:00