Acasă Explorează Ajutor
Autentificare
AI
/
claude-code-hub
oglindă de https://github.com/ding113/claude-code-hub.git
2
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Ramură: fix/provider-clone-deep-copy
Ramuri Etichete
claude-code-hub
/
docs
/
prd-claude-code-hub-2025-11-29.md

prd-claude-code-hub-2025-11-29.md 41 KB
Permalink Istoric Crud

Product Requirements Document: claude-code-hub

Date: 2025-11-29 Author: ding Version: 1.0 Project Type: web-app Project Level: 4 Status: Draft

Document Overview

This Product Requirements Document (PRD) defines the functional and non-functional requirements for Claude Code Hub. It serves as the source of truth for what will be built and provides traceability from requirements through implementation.

Related Documents:

  • Product Brief: docs/product-brief-claude-code-hub-2025-11-29.md

Executive Summary

Claude Code Hub is an intelligent AI API proxy platform designed for agile development teams, AI-driven development teams, startups, and small-medium software companies. It provides observable, highly available AI coding infrastructure with multi-provider auto-switching, circuit breaker, seamless retry, complete logging, and billing management - ideal for team collaboration and shared usage scenarios.

Product Goals

Business Objectives

  • Establish CCH as the recognized open-source AI Coding proxy platform
  • Grow community awareness and adoption
  • Build a community willing to use and contribute to CCH
  • Sustainable development through sponsorship model
  • Expand product line (server + client versions in future)

Success Metrics

  • Community recognition and adoption
  • Users willing to use CCH
  • Contributors willing to help maintain CCH
  • Growing awareness in the AI Coding tool ecosystem
  • KOL recommendations in developer community

Functional Requirements

Functional Requirements (FRs) define what the system does - specific features and behaviors.

Each requirement includes:

  • ID: Unique identifier (FR-001, FR-002, etc.)
  • Priority: Must Have / Should Have / Could Have / Won't Have (MoSCoW)
  • Description: What the system should do
  • Acceptance Criteria: How to verify it's complete
  • Implementation Status: ✅ IMPLEMENTED | ⚠️ PARTIAL | ❌ NOT_IMPLEMENTED

Implementation Progress Summary

Status Count Percentage
✅ IMPLEMENTED 24 65%
⚠️ PARTIAL 10 27%
❌ NOT_IMPLEMENTED 3 8%
Total 37 100%

Last Updated: 2025-11-29

Core Proxy Engine

FR-001: Multi-Provider Management ✅ IMPLEMENTED

Priority: Must Have

Description: System shall support CRUD operations for upstream AI API providers, allowing administrators to add, configure, update, enable/disable, and remove providers.

Acceptance Criteria:

  • Admin can create a new provider with name, URL, API key, and type
  • Admin can update provider configuration (weight, priority, limits, etc.)
  • Admin can enable/disable a provider without deleting it
  • Admin can soft-delete a provider (preserving historical data)
  • Provider list displays all configured providers with status

Dependencies: None

FR-002: Provider Type Support ✅ IMPLEMENTED

Priority: Must Have

Description: System shall support multiple provider types with appropriate protocol handling:

  • claude - Standard Anthropic API
  • claude-auth - Claude relay services (Bearer auth only)
  • codex - OpenAI Codex/Response API
  • gemini - Google Gemini API
  • gemini-cli - Gemini CLI format
  • openai-compatible - OpenAI-compatible APIs

Acceptance Criteria:

  • Each provider type has correct authentication handling
  • Each provider type uses appropriate request/response format
  • Provider type can be selected during provider creation
  • System routes requests to correct protocol handler based on type

Dependencies: FR-001

FR-003: Intelligent Provider Selection ✅ IMPLEMENTED

Priority: Must Have

Description: System shall automatically select the optimal provider for each request based on:

  • Provider weight (0-100, higher = more traffic)
  • Provider priority (lower number = higher priority, used for failover)
  • Provider availability (enabled, not circuit-broken)
  • Cost multiplier (for budget optimization)
  • Group tags (for logical grouping)

Acceptance Criteria:

  • Weighted random selection respects configured weights
  • Higher priority providers are preferred when available
  • Disabled providers are excluded from selection
  • Circuit-broken providers are excluded until recovery
  • Selection algorithm is deterministic for same session (stickiness)

Dependencies: FR-001, FR-005

FR-004: Circuit Breaker ✅ IMPLEMENTED

Priority: Must Have

Description: System shall implement per-provider circuit breaker pattern to prevent cascading failures:

  • CLOSED state: Normal operation
  • OPEN state: Requests fail fast, provider excluded
  • HALF-OPEN state: Limited traffic to test recovery

Acceptance Criteria:

  • Circuit opens after configurable failure threshold (default: 5 failures)
  • Circuit remains open for configurable duration (default: 60s)
  • Half-open state allows configurable success threshold before closing
  • Each provider has independent circuit breaker
  • Circuit state is visible in admin dashboard
  • Circuit breaker config is per-provider customizable

Dependencies: FR-001

FR-005: Session Stickiness ✅ IMPLEMENTED

Priority: Must Have

Description: System shall maintain session stickiness to route consecutive requests from the same conversation to the same provider, improving cache hit rates and reducing costs.

Acceptance Criteria:

  • Session ID extracted from request headers (x-session-id or similar)
  • Session-to-provider mapping cached in Redis (default TTL: 5 minutes)
  • Subsequent requests in same session route to same provider
  • Session breaks gracefully if provider becomes unavailable
  • Session details viewable in monitoring interface

Dependencies: FR-003

FR-006: Format Conversion ✅ IMPLEMENTED

Priority: Must Have

Description: System shall bidirectionally convert between different API formats:

  • Claude Messages API ↔ OpenAI Chat Completions API
  • Claude Messages API ↔ Codex Response API
  • Claude Messages API ↔ Gemini API

Acceptance Criteria:

  • Requests in any supported format are converted to provider's format
  • Responses from provider are converted back to client's expected format
  • Streaming responses maintain correct format throughout
  • Token counts are correctly mapped between formats
  • Special features (thinking, tools) are handled appropriately

Dependencies: FR-002

FR-007: Automatic Retry and Failover ✅ IMPLEMENTED

Priority: Must Have

Description: System shall automatically retry failed requests on alternative providers without user awareness.

Acceptance Criteria:

  • Transient errors trigger automatic retry on next available provider
  • Retry respects circuit breaker state
  • Maximum retry attempts configurable (default: 3)
  • Retry adds minimal latency (parallel provider selection)
  • Final failure returns clear error to client

Dependencies: FR-003, FR-004

User & Access Management

FR-008: User Management ✅ IMPLEMENTED

Priority: Must Have

Description: System shall support multi-tenant user management with per-user quotas and limits.

Acceptance Criteria:

  • Admin can create users with username and configuration
  • Each user has configurable rate limits (RPM, daily/weekly/monthly USD)
  • Users can be enabled/disabled
  • User usage statistics are tracked and viewable
  • Users are isolated from each other's data

Dependencies: None

FR-009: API Key Management ✅ IMPLEMENTED

Priority: Must Have

Description: System shall support API key creation and management with per-key limits.

Acceptance Criteria:

  • Users/admins can create multiple API keys
  • Each key has independent rate limits (can be stricter than user limits)
  • Keys can have expiration dates
  • Keys can be revoked without affecting other keys
  • Key usage is tracked separately
  • Keys are displayed masked in UI (show only last 4 chars)

Dependencies: FR-008

FR-010: Authentication ✅ IMPLEMENTED

Priority: Must Have

Description: System shall authenticate API requests using API keys and admin requests using admin token.

Acceptance Criteria:

  • Proxy endpoints require valid API key in Authorization header
  • Admin endpoints require valid admin token
  • Invalid credentials return 401 with clear message
  • Rate limiting applies per authenticated entity
  • Authentication is fast (< 10ms overhead)

Dependencies: FR-009

FR-011: Rate Limiting ✅ IMPLEMENTED

Priority: Must Have

Description: System shall enforce multi-dimensional rate limits:

  • Requests per minute (RPM)
  • Cost per 5 hours (USD)
  • Cost per day (USD)
  • Cost per week (USD)
  • Cost per month (USD)
  • Concurrent sessions

Acceptance Criteria:

  • Limits enforced at user level and key level (stricter wins)
  • Limits enforced at provider level
  • Rate limit exceeded returns 429 with retry-after header
  • Redis Lua scripts ensure atomic limit checking
  • Fail-open strategy when Redis unavailable
  • Daily reset supports fixed time or rolling window

Dependencies: FR-008, FR-009

FR-012: Concurrent Session Limiting ⚠️ PARTIAL

Priority: Should Have

Gap: Provider-level concurrent session limiting is implemented, but user-level enforcement is missing.

Description: System shall limit concurrent active sessions per user/provider to prevent resource exhaustion.

Acceptance Criteria:

  • Configurable concurrent session limit per provider
  • Configurable concurrent session limit per user
  • Excess sessions queued or rejected with clear message
  • Session count accurately tracked
  • Sessions properly released on completion/timeout

Dependencies: FR-005, FR-011

Monitoring & Analytics

FR-013: Request Logging ✅ IMPLEMENTED

Priority: Must Have

Description: System shall log all proxy requests with comprehensive metadata for debugging and analytics.

Acceptance Criteria:

  • Each request logged with: timestamp, user, key, provider, model, tokens, cost
  • Logs include request/response status and duration
  • Logs queryable by time range, user, provider, model
  • Log retention configurable
  • Sensitive data (API keys, content) excluded or masked

Dependencies: FR-010

FR-014: Real-Time Dashboard ✅ IMPLEMENTED

Priority: Should Have

Description: System shall provide real-time monitoring dashboard showing system health and activity.

Acceptance Criteria:

  • Dashboard shows active sessions count
  • Dashboard shows requests per second
  • Dashboard shows provider health status
  • Dashboard shows recent errors
  • Data updates in real-time (WebSocket or polling)
  • Dashboard accessible to admin users

Dependencies: FR-013

FR-015: Usage Statistics ⚠️ PARTIAL

Priority: Should Have

Gap: No export capability (CSV, JSON). Limited time range aggregations.

Description: System shall aggregate and display usage statistics at multiple granularities.

Acceptance Criteria:

  • Statistics available per user, per key, per provider, per model
  • Time-based aggregation: hourly, daily, weekly, monthly
  • Metrics include: request count, token count, cost (USD)
  • Export capability (CSV, JSON)
  • Historical data retained for configurable period

Dependencies: FR-013

FR-016: Active Session Monitoring ⚠️ PARTIAL

Priority: Should Have

Gap: No force-terminate capability for admin. No real-time token accumulation tracking during streaming.

Description: System shall display currently active sessions with details.

Acceptance Criteria:

  • List of active sessions with user, provider, start time, duration
  • Session can be force-terminated by admin
  • Session history viewable
  • Response stream preview available
  • Token accumulation visible during streaming

Dependencies: FR-005, FR-013

FR-017: Provider Health Status ✅ IMPLEMENTED

Priority: Should Have

Description: System shall display health status of each provider including circuit breaker state.

Acceptance Criteria:

  • Each provider shows: enabled/disabled, circuit state, recent error rate
  • Last successful/failed request timestamp visible
  • Connectivity test available (manual trigger)
  • Health history tracked
  • Alerts configurable for provider issues

Dependencies: FR-004

FR-018: Leaderboard ⚠️ PARTIAL

Priority: Could Have

Gap: Missing weekly/all-time time periods. No optional anonymization of usernames.

Description: System shall display usage leaderboard showing top users by various metrics.

Acceptance Criteria:

  • Leaderboard by request count
  • Leaderboard by token usage
  • Leaderboard by cost
  • Configurable time periods (today, week, month, all-time)
  • Optional anonymization of usernames

Dependencies: FR-015

Administration

FR-019: Admin Dashboard ✅ IMPLEMENTED

Priority: Must Have

Description: System shall provide comprehensive admin dashboard for system management.

Acceptance Criteria:

  • Dashboard requires admin authentication
  • Overview page shows system health summary
  • Navigation to all admin functions
  • Responsive design for mobile access
  • Internationalization support (i18n)

Dependencies: FR-010

FR-020: Error Rules Management ✅ IMPLEMENTED

Priority: Should Have

Description: System shall support configurable error classification rules for intelligent error handling.

Acceptance Criteria:

  • Admin can define error patterns (regex on response body/status)
  • Each rule specifies: should retry, should circuit break
  • Rules have priority ordering
  • Built-in rules for common errors
  • Rules can be enabled/disabled

Dependencies: FR-004, FR-007

FR-021: Sensitive Words Filtering ✅ IMPLEMENTED

Priority: Should Have

Description: System shall filter requests containing sensitive or prohibited content.

Acceptance Criteria:

  • Admin can define sensitive word/pattern list
  • Requests matching patterns are blocked with clear message
  • Regex patterns supported
  • Case-insensitive matching option
  • Audit log for blocked requests

Dependencies: FR-010

FR-022: Model Pricing Management ✅ IMPLEMENTED

Priority: Should Have

Description: System shall maintain model pricing data for accurate cost calculation.

Acceptance Criteria:

  • Pricing data for all supported models
  • Input/output token pricing separate
  • Manual price override capability
  • Sync with external pricing source (LiteLLM)
  • Historical pricing preserved

Dependencies: None

FR-023: Client Version Management ✅ IMPLEMENTED

Priority: Could Have

Description: System shall track and optionally enforce minimum client versions.

Acceptance Criteria:

  • Track client version from request headers
  • Define minimum required version
  • Warn or block outdated clients
  • Version statistics visible
  • Graceful handling of missing version

Dependencies: FR-010

FR-024: System Configuration ⚠️ PARTIAL

Priority: Should Have

Gap: No configuration versioning/history tracking.

Description: System shall support runtime configuration without restart.

Acceptance Criteria:

  • Key settings configurable via admin UI
  • Configuration changes take effect immediately
  • Configuration versioning/history
  • Safe defaults for missing configuration
  • Environment variable overrides supported

Dependencies: FR-019

FR-025: Notification System ⚠️ PARTIAL

Priority: Could Have

Gap: Only admin alerts implemented. User-targeted notifications and read/unread state not implemented.

Description: System shall support in-app notifications for users.

Acceptance Criteria:

  • Admin can create system-wide notifications
  • Notifications can target specific users
  • Notifications have read/unread state
  • Notification history maintained
  • Optional email notification integration

Dependencies: FR-008

API & Integration

FR-026: Claude Messages API Compatibility ✅ IMPLEMENTED

Priority: Must Have

Description: System shall provide Claude Messages API-compatible endpoint.

Acceptance Criteria:

  • Endpoint at /v1/messages accepts Claude format
  • All Claude API features supported (streaming, tools, thinking)
  • Response format matches Claude API specification
  • Error responses match Claude API format
  • Headers properly forwarded/transformed

Dependencies: FR-006

FR-027: OpenAI Chat Completions Compatibility ✅ IMPLEMENTED

Priority: Must Have

Description: System shall provide OpenAI Chat Completions API-compatible endpoint.

Acceptance Criteria:

  • Endpoint at /v1/chat/completions accepts OpenAI format
  • Streaming SSE format matches OpenAI specification
  • Tool calling supported
  • Response format matches OpenAI API
  • Proper model name mapping

Dependencies: FR-006

FR-028: Codex Response API Compatibility ✅ IMPLEMENTED

Priority: Should Have

Description: System shall provide Codex Response API-compatible endpoint for CLI tools.

Acceptance Criteria:

  • Endpoint at /v1/responses accepts Codex format
  • Instructions field handling configurable (auto/force_official/keep_original)
  • Streaming format matches Codex CLI expectations
  • Proper error handling for CLI clients

Dependencies: FR-006

FR-029: OpenAPI Documentation ⚠️ PARTIAL

Priority: Should Have

Gap: Not all Server Actions are documented. Some endpoints missing from OpenAPI spec.

Description: System shall auto-generate OpenAPI documentation for all API endpoints.

Acceptance Criteria:

  • OpenAPI JSON available at /api/actions/openapi.json
  • Swagger UI at /api/actions/docs
  • Scalar UI at /api/actions/scalar
  • All Server Actions documented
  • Documentation auto-updates with code changes

Dependencies: None

FR-030: MCP Passthrough ⚠️ PARTIAL

Priority: Could Have

Gap: Infrastructure exists (mcpPassthrough field) but not wired up to actual request flow.

Description: System shall support MCP (Model Context Protocol) passthrough for enhanced capabilities.

Acceptance Criteria:

  • Configurable MCP passthrough per provider (none/minimax/glm/custom)
  • MCP URL auto-derived from provider URL if not specified
  • MCP requests properly routed
  • MCP responses integrated into main response
  • Error handling for MCP failures

Dependencies: FR-002

Advanced Provider Intelligence (Mid-term)

FR-031: Provider Balance/Quota Fetching ❌ NOT_IMPLEMENTED

Priority: Could Have

Description: System shall fetch and display real-time balance/quota information from providers.

Acceptance Criteria:

  • Periodic balance fetching for supported providers
  • Balance displayed in provider management UI
  • Low balance warnings
  • Balance history tracking
  • Manual refresh capability

Dependencies: FR-001

FR-032: Quota-Aware Scheduling ⚠️ PARTIAL

Priority: Could Have

Gap: Only exclusion of exhausted providers implemented. Deprioritization and smooth transition not implemented.

Description: System shall incorporate real-time quota data into provider selection.

Acceptance Criteria:

  • Providers with low quota deprioritized
  • Providers with exhausted quota excluded
  • Configurable quota thresholds
  • Smooth transition as quota depletes
  • Override capability for emergencies

Dependencies: FR-031, FR-003

FR-033: Model Redirects ⚠️ PARTIAL

Priority: Should Have

Gap: No bulk redirect import capability.

Description: System shall support per-provider model name mapping/redirects.

Acceptance Criteria:

  • Admin can define model redirects per provider
  • Redirect applied transparently to requests
  • Original model name logged for analytics
  • Redirect configuration via UI
  • Bulk redirect import capability

Dependencies: FR-001

FR-034: Proxy Support ✅ IMPLEMENTED

Priority: Should Have

Description: System shall support HTTP/HTTPS/SOCKS5 proxy for upstream connections.

Acceptance Criteria:

  • Per-provider proxy configuration
  • Support HTTP, HTTPS, and SOCKS5 protocols
  • Fallback to direct connection option
  • Proxy authentication supported
  • Proxy health verification

Dependencies: FR-001

FR-035: Provider Timeout Configuration ✅ IMPLEMENTED

Priority: Should Have

Description: System shall support per-provider timeout configuration.

Acceptance Criteria:

  • First byte timeout for streaming (default: 30s)
  • Idle timeout during streaming (default: 60s)
  • Request timeout for non-streaming (default: 120s)
  • Per-provider configuration
  • Graceful timeout handling with retry

Dependencies: FR-001

Platform Expansion (Long-term)

FR-036: Multi-Database Support ❌ NOT_IMPLEMENTED

Priority: Won't Have (this phase)

Description: System shall support multiple database backends: PostgreSQL, MySQL, SQLite.

Acceptance Criteria:

  • Database adapter abstraction layer
  • PostgreSQL support (current)
  • MySQL support
  • SQLite support for lightweight deployment
  • Migration tools for database switching

Dependencies: None

FR-037: Electron Client ❌ NOT_IMPLEMENTED

Priority: Won't Have (this phase)

Description: System shall provide desktop client application for lightweight local deployment.

Acceptance Criteria:

  • Cross-platform (Windows, macOS, Linux)
  • Local provider management
  • Sync with server deployment option
  • Tray icon with quick access
  • Auto-update capability

Dependencies: None

Non-Functional Requirements

Non-Functional Requirements (NFRs) define how the system performs - quality attributes and constraints.

NFR-001: Proxy Latency

Priority: Must Have

Description: Proxy shall add minimal latency overhead to API requests.

Acceptance Criteria:

  • Proxy overhead < 50ms for request processing (excluding upstream latency)
  • Streaming first byte overhead < 100ms
  • 95th percentile overhead < 100ms
  • No memory leaks during extended operation

Rationale: AI coding tools are latency-sensitive; excessive overhead degrades user experience.

NFR-002: Concurrent Capacity

Priority: Must Have

Description: System shall handle high concurrent session load.

Acceptance Criteria:

  • Support 100+ concurrent streaming sessions per instance
  • Horizontal scaling supported via stateless design
  • Redis handles distributed state
  • Graceful degradation under extreme load

Rationale: Team usage patterns create concurrent spikes during work hours.

NFR-003: Streaming Reliability

Priority: Must Have

Description: Streaming responses shall be reliable and efficient.

Acceptance Criteria:

  • SSE/streaming properly buffered and forwarded
  • No message loss during streaming
  • Backpressure handled correctly
  • Connection properly closed on completion/error
  • Memory efficient for long streams

Rationale: Streaming is the primary usage mode for AI coding tools.

NFR-004: Authentication Security

Priority: Must Have

Description: Authentication shall be secure and resistant to common attacks.

Acceptance Criteria:

  • API keys stored hashed (not plaintext)
  • Constant-time key comparison
  • Rate limiting on auth failures
  • Admin token stored securely
  • No key exposure in logs or errors

Rationale: API keys provide access to paid AI services; compromise has financial impact.

NFR-005: Data Protection

Priority: Must Have

Description: Sensitive data shall be protected in transit and at rest.

Acceptance Criteria:

  • HTTPS enforced for all endpoints
  • Provider API keys encrypted at rest
  • Request content not logged by default
  • Masked display of sensitive fields in UI
  • Secure credential handling in memory

Rationale: Platform handles sensitive API keys and potentially confidential code.

NFR-006: Content Filtering

Priority: Should Have

Description: System shall filter prohibited content effectively.

Acceptance Criteria:

  • Sensitive word filtering < 5ms overhead
  • Regex patterns compiled and cached
  • False positive rate minimized
  • Filter bypass attempts logged
  • Filter rules hot-reloadable

Rationale: Teams may need to enforce content policies for compliance.

NFR-007: High Availability

Priority: Must Have

Description: System shall maintain high availability through fault tolerance.

Acceptance Criteria:

  • Single provider failure doesn't affect service
  • Automatic failover < 1 second
  • Circuit breaker prevents cascade failures
  • Redis unavailability gracefully handled (fail-open)
  • Database connection pooling

Rationale: AI coding tools are critical for developer productivity; downtime is costly.

NFR-008: Horizontal Scalability

Priority: Should Have

Description: System shall scale horizontally to handle increased load.

Acceptance Criteria:

  • Stateless application design
  • Session state in Redis (shared)
  • Database connection pooling
  • No local file dependencies for runtime
  • Load balancer compatible

Rationale: Usage grows with team size; vertical scaling has limits.

NFR-009: Internationalization

Priority: Should Have

Description: Admin interface shall support multiple languages.

Acceptance Criteria:

  • i18n framework integrated (next-intl)
  • UI text externalized to message files
  • Language switching in UI
  • Date/number formatting localized
  • RTL layout support (future)

Rationale: Global developer community; English-only limits adoption.

NFR-010: Responsive Design

Priority: Should Have

Description: Admin interface shall work on various screen sizes.

Acceptance Criteria:

  • Desktop-first design (primary use case)
  • Tablet usable for monitoring
  • Mobile readable for critical alerts
  • No horizontal scroll on standard sizes
  • Touch-friendly interactive elements

Rationale: Admins may need to check status from various devices.

NFR-011: Code Quality

Priority: Must Have

Description: Codebase shall maintain high quality standards.

Acceptance Criteria:

  • TypeScript strict mode enabled
  • ESLint with strict ruleset
  • Prettier for consistent formatting
  • Type coverage > 95%
  • No any types without justification

Rationale: Open source project; code quality affects contributor experience.

NFR-012: API Documentation

Priority: Should Have

Description: APIs shall be well-documented and discoverable.

Acceptance Criteria:

  • OpenAPI 3.0 specification auto-generated
  • Interactive documentation (Swagger/Scalar)
  • All endpoints documented with examples
  • Error responses documented
  • Authentication documented

Rationale: Self-service adoption requires clear documentation.

Epics

Epics are logical groupings of related functionality that will be broken down into user stories during sprint planning (Phase 4).

Each epic maps to multiple functional requirements and will generate 2-10 stories.

EPIC-001: Core Proxy Engine

Description: Implement the foundational proxy functionality that routes requests to upstream providers with intelligent selection, failover, and format conversion.

Functional Requirements:

  • FR-001: Multi-Provider Management
  • FR-002: Provider Type Support
  • FR-003: Intelligent Provider Selection
  • FR-004: Circuit Breaker
  • FR-005: Session Stickiness
  • FR-006: Format Conversion
  • FR-007: Automatic Retry and Failover

Story Count Estimate: 8-10

Priority: Must Have

Business Value: This is the core value proposition of CCH - without this, there is no product. Enables seamless multi-provider experience with high availability.

EPIC-002: User & Access Management

Description: Implement multi-tenant user management with authentication, authorization, and rate limiting.

Functional Requirements:

  • FR-008: User Management
  • FR-009: API Key Management
  • FR-010: Authentication
  • FR-011: Rate Limiting
  • FR-012: Concurrent Session Limiting

Story Count Estimate: 6-8

Priority: Must Have

Business Value: Enables team usage model with per-user quotas, essential for cost control and fair resource allocation.

EPIC-003: Monitoring & Analytics

Description: Implement comprehensive monitoring, logging, and analytics for operational visibility.

Functional Requirements:

  • FR-013: Request Logging
  • FR-014: Real-Time Dashboard
  • FR-015: Usage Statistics
  • FR-016: Active Session Monitoring
  • FR-017: Provider Health Status
  • FR-018: Leaderboard

Story Count Estimate: 6-8

Priority: Should Have

Business Value: Provides observability into system operation, enables cost tracking, and helps identify issues before they impact users.

EPIC-004: Administration Console

Description: Implement admin dashboard with comprehensive system management capabilities.

Functional Requirements:

  • FR-019: Admin Dashboard
  • FR-020: Error Rules Management
  • FR-021: Sensitive Words Filtering
  • FR-022: Model Pricing Management
  • FR-023: Client Version Management
  • FR-024: System Configuration
  • FR-025: Notification System

Story Count Estimate: 7-9

Priority: Should Have

Business Value: Enables system administrators to manage CCH effectively without direct database access or code changes.

EPIC-005: API Compatibility Layer

Description: Implement API endpoints compatible with major AI coding tool formats.

Functional Requirements:

  • FR-026: Claude Messages API Compatibility
  • FR-027: OpenAI Chat Completions Compatibility
  • FR-028: Codex Response API Compatibility
  • FR-029: OpenAPI Documentation
  • FR-030: MCP Passthrough

Story Count Estimate: 5-7

Priority: Must Have

Business Value: Enables CCH to work with all major AI coding tools without client-side changes.

EPIC-006: Advanced Provider Intelligence

Description: Implement advanced provider management features for optimized scheduling and operations.

Functional Requirements:

  • FR-031: Provider Balance/Quota Fetching
  • FR-032: Quota-Aware Scheduling
  • FR-033: Model Redirects
  • FR-034: Proxy Support
  • FR-035: Provider Timeout Configuration

Story Count Estimate: 5-7

Priority: Could Have

Business Value: Enables more intelligent resource utilization and supports advanced deployment scenarios (proxied environments, custom providers).

EPIC-007: Platform Expansion

Description: Expand platform capabilities for broader deployment scenarios.

Functional Requirements:

  • FR-036: Multi-Database Support
  • FR-037: Electron Client

Story Count Estimate: 4-6

Priority: Won't Have (this phase)

Business Value: Enables lightweight deployment without PostgreSQL/Redis infrastructure and provides local-first option for individual developers.

User Stories (High-Level)

User stories follow the format: "As a [user type], I want [goal] so that [benefit]."

These are preliminary stories. Detailed stories will be created in Phase 4 (Implementation).

EPIC-001: Core Proxy Engine

  • As a developer, I want to connect my Claude Code CLI to CCH so that I can use AI assistance without managing provider configuration.
  • As a developer, I want my requests to automatically failover to backup providers so that I experience uninterrupted service.
  • As an admin, I want to add multiple providers with different weights so that I can distribute load according to my service agreements.
  • As a developer, I want session stickiness so that my conversation context is maintained and cache hits improve.

EPIC-002: User & Access Management

  • As an admin, I want to create API keys for team members so that each person has individual access with tracked usage.
  • As an admin, I want to set rate limits per user so that I can prevent any single user from exhausting our quota.
  • As a developer, I want to see my remaining quota so that I can plan my AI usage accordingly.

EPIC-003: Monitoring & Analytics

  • As an admin, I want to see real-time dashboard of active sessions so that I can monitor system health.
  • As an admin, I want to view usage reports by user and time period so that I can understand cost allocation.
  • As an admin, I want to see provider health status so that I can proactively address issues.

EPIC-004: Administration Console

  • As an admin, I want to configure error handling rules so that transient errors are automatically retried.
  • As an admin, I want to filter sensitive content so that our usage complies with company policies.
  • As an admin, I want to update model pricing so that cost calculations remain accurate.

EPIC-005: API Compatibility Layer

  • As a developer using Claude Code, I want to use standard Claude API endpoints so that I don't need special configuration.
  • As a developer using Codex CLI, I want to use Response API format so that my existing tooling works.
  • As a developer, I want to access API documentation so that I can integrate CCH into custom tools.

User Personas

Primary: Developer (Power User)

Profile:

  • Experienced software developer
  • Uses AI coding tools daily (Claude Code, Cursor, Copilot)
  • Comfortable with CLI tools and API configuration
  • Values reliability and low latency

Needs:

  • Seamless AI coding experience
  • High availability
  • Fast response times
  • Minimal configuration

Pain Points:

  • Provider outages disrupting workflow
  • Managing multiple API keys
  • Inconsistent behavior across providers

Primary: Team Administrator

Profile:

  • Tech lead or DevOps engineer
  • Responsible for team tooling
  • Manages budgets and access
  • Monitors usage and costs

Needs:

  • Centralized provider management
  • Usage visibility and cost tracking
  • Access control for team members
  • Easy deployment and maintenance

Pain Points:

  • No visibility into AI tool usage
  • Difficulty controlling costs
  • Complex multi-provider management

Secondary: New Developer

Profile:

  • Junior developer or intern
  • New to AI-assisted development
  • Less technical confidence
  • Needs guidance and simple setup

Needs:

  • One-click access to AI tools
  • No configuration required
  • Clear error messages
  • Stable experience

Pain Points:

  • Confusion about API setup
  • Fear of incurring high costs
  • Uncertainty about tool behavior

User Flows

Flow 1: Developer Connects to CCH

  1. Admin provides developer with API key
  2. Developer sets CCH URL as API endpoint in Claude Code
  3. Developer sets provided API key as authentication
  4. Claude Code connects through CCH transparently
  5. Developer uses AI coding as normal

Flow 2: Admin Adds New Provider

  1. Admin logs into CCH admin dashboard
  2. Admin navigates to Provider Management
  3. Admin clicks "Add Provider"
  4. Admin enters provider details (name, URL, API key, type)
  5. Admin configures weight, priority, limits
  6. Admin enables provider
  7. CCH begins routing traffic to new provider

Flow 3: Automatic Failover During Outage

  1. Developer sends request to CCH
  2. CCH routes to primary provider
  3. Primary provider returns error
  4. Circuit breaker records failure
  5. CCH automatically retries on secondary provider
  6. Secondary provider returns success
  7. Developer receives response (unaware of failover)
  8. After threshold, circuit breaker opens for primary
  9. Subsequent requests go directly to secondary

Dependencies

Internal Dependencies

  • Next.js 15 (App Router)
  • Hono (API framework)
  • Drizzle ORM (database access)
  • Redis (session state, rate limiting)
  • PostgreSQL (persistent storage)

External Dependencies

  • Anthropic Claude API
  • OpenAI API (for compatible providers)
  • Google Gemini API
  • Various third-party relay services
  • LiteLLM (pricing data sync)

Assumptions

  • Users understand what Claude Code or Codex is
  • Users already know about multiple AI providers
  • Users have a need for intelligent provider scheduling
  • Team administrators have Docker-capable servers for deployment
  • AI provider APIs will remain relatively stable
  • PostgreSQL and Redis are acceptable infrastructure requirements
  • Users prefer server-deployed solution over local tools

Out of Scope

  • Mobile app version
  • Building proprietary AI models
  • Providing AI model access for users (BYOP - Bring Your Own Provider model)
  • End-user billing/payment processing
  • AI model training or fine-tuning
  • Content caching (responses not cached)
  • Offline mode

Open Questions

  1. Provider Balance APIs: Which providers expose balance/quota APIs, and what are the authentication requirements?
  2. Electron Client Scope: Should client support full functionality or just subset for personal use?
  3. Database Abstraction: How much abstraction is needed for multi-database support while maintaining performance?
  4. Enterprise Features: Are there enterprise-specific requirements (SSO, SAML, LDAP) to consider?

Approval & Sign-off

Stakeholders

  • Maintainer(s) - High influence. Core development, roadmap decisions, community management
  • Sponsors - High influence. Funding sustainability, feature priority input
  • Community Contributors - Medium influence. Code contributions, bug reports, feature requests
  • Users - Medium influence. Adoption, feedback, issue reporting

Approval Status

  • Project Maintainer
  • Core Contributors
  • Community Review

Revision History

Version Date Author Changes
1.0 2025-11-29 ding Initial PRD

Next Steps

Phase 3: Architecture

Run /architecture to create system architecture based on these requirements.

The architecture will address:

  • All functional requirements (FRs)
  • All non-functional requirements (NFRs)
  • Technical stack decisions
  • Data models and APIs
  • System components

Phase 4: Sprint Planning

After architecture is complete, run /sprint-planning to:

  • Break epics into detailed user stories
  • Estimate story complexity
  • Plan sprint iterations
  • Begin implementation

This document was created using BMAD Method v6 - Phase 2 (Planning)

To continue: Run /workflow-status to see your progress and next recommended workflow.

Appendix A: Requirements Traceability Matrix

Epic ID Epic Name Functional Requirements Story Count (Est.)
EPIC-001 Core Proxy Engine FR-001, FR-002, FR-003, FR-004, FR-005, FR-006, FR-007 8-10
EPIC-002 User & Access Management FR-008, FR-009, FR-010, FR-011, FR-012 6-8
EPIC-003 Monitoring & Analytics FR-013, FR-014, FR-015, FR-016, FR-017, FR-018 6-8
EPIC-004 Administration Console FR-019, FR-020, FR-021, FR-022, FR-023, FR-024, FR-025 7-9
EPIC-005 API Compatibility Layer FR-026, FR-027, FR-028, FR-029, FR-030 5-7
EPIC-006 Advanced Provider Intelligence FR-031, FR-032, FR-033, FR-034, FR-035 5-7
EPIC-007 Platform Expansion FR-036, FR-037 4-6

Total Estimated Stories: 41-55

Appendix B: Prioritization Details

Functional Requirements by Priority

Priority Count Requirements
Must Have 16 FR-001 to FR-011, FR-013, FR-019, FR-026, FR-027
Should Have 14 FR-012, FR-014 to FR-017, FR-020 to FR-024, FR-028, FR-029, FR-033 to FR-035
Could Have 5 FR-018, FR-025, FR-030, FR-031, FR-032
Won't Have 2 FR-036, FR-037

Non-Functional Requirements by Priority

Priority Count Requirements
Must Have 7 NFR-001 to NFR-005, NFR-007, NFR-011
Should Have 5 NFR-006, NFR-008 to NFR-010, NFR-012

Implementation Priority Order

  1. Phase 1 (MVP): EPIC-001, EPIC-002, EPIC-005 (Must Have core)
  2. Phase 2 (Complete): EPIC-003, EPIC-004 (Should Have operations)
  3. Phase 3 (Enhanced): EPIC-006 (Could Have intelligence)
  4. Phase 4 (Expansion): EPIC-007 (Won't Have - future)