Skip to content

Run saveUsageCost in background to fix slow proxy responses #4244

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
jurgenwerk wants to merge 4 commits into
base: main
Choose a base branch
from
+162 −53
Open

Run saveUsageCost in background to fix slow proxy responses #4244

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
26ab140
Run saveUsageCost in the background to avoid blocking proxy responses
jurgenwerk Mar 25, 2026
6c0caed
Chain per-user cost promises to prevent race conditions
jurgenwerk Mar 25, 2026
e0926a1
Validate costInUsd input in spendUsageCost
jurgenwerk Mar 25, 2026
e2efba5
Replace setTimeout with waitUntil polling in request-forward test
jurgenwerk Mar 25, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
36 changes: 36 additions & 0 deletions packages/billing/ai-billing.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,42 @@ export async function validateAICredits(
};
}

export async function spendUsageCost(
dbAdapter: DBAdapter,
matrixUserId: string,
costInUsd: number,
) {
try {
if (
typeof costInUsd !== 'number' ||
!Number.isFinite(costInUsd) ||
costInUsd < 0
) {
log.warn(
`Invalid costInUsd value: ${costInUsd} for user ${matrixUserId}, skipping`,
);
return;
}

let creditsConsumed = Math.round(costInUsd * CREDITS_PER_USD);
let user = await getUserByMatrixUserId(dbAdapter, matrixUserId);

if (!user) {
throw new Error(
`should not happen: user with matrix id ${matrixUserId} not found in the users table`,
);
}

await spendCredits(dbAdapter, user.id, creditsConsumed);
} catch (err) {
log.error(
`Failed to spend usage cost (matrixUserId: ${matrixUserId}, costInUsd: ${costInUsd}):`,
err,
);
Sentry.captureException(err);
}
Comment on lines +76 to +109
Copy link

Copilot AI Mar 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

costInUsd is taken directly from an external response and passed to spendUsageCost without validation. If it’s not a finite non-negative number (e.g. string/NaN/negative), creditsConsumed can become NaN/negative and spendCredits may silently skip charging. Add input validation (typeof number, Number.isFinite, costInUsd >= 0) and capture/log when invalid instead of attempting to spend.

Copilot uses AI. Check for mistakes.
}

export async function saveUsageCost(
dbAdapter: DBAdapter,
matrixUserId: string,
Expand Down
89 changes: 75 additions & 14 deletions packages/realm-server/handlers/handle-request-forward.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,10 @@ import * as Sentry from '@sentry/node';

const log = logger('request-forward');

// Track pending cost-saving promises per user so we can ensure the previous
// request's cost has been recorded before allowing a new one
const pendingCostPromises = new Map<string, Promise<void>>();

async function handleStreamingRequest(
ctxt: Koa.Context,
url: string,
Expand Down Expand Up @@ -61,13 +65,24 @@ async function handleStreamingRequest(
// Handle end of stream
if (data === '[DONE]') {
if (generationId) {
// Create a mock response object with the generation ID for the credit strategy
const mockResponse = { id: generationId };
await endpointConfig.creditStrategy.saveUsageCost(
dbAdapter,
matrixUserId,
mockResponse,
);
// Save cost in the background so we don't block the stream on OpenRouter's generation cost API.
// Chain per-user promises so costs are recorded sequentially.
const previousPromise =
pendingCostPromises.get(matrixUserId) ?? Promise.resolve();
const costPromise = previousPromise
.then(() =>
endpointConfig.creditStrategy.saveUsageCost(
dbAdapter,
matrixUserId,
{ id: generationId },
),
)
.finally(() => {
if (pendingCostPromises.get(matrixUserId) === costPromise) {
pendingCostPromises.delete(matrixUserId);
}
});
pendingCostPromises.set(matrixUserId, costPromise);
}
ctxt.res.write(`data: [DONE]\n\n`);
return 'stop';
Expand Down Expand Up @@ -328,7 +343,22 @@ export default function handleRequestForward({
return;
}

// 4. Check user has sufficient credits using credit strategy
// 4. Wait for any pending cost from a previous request to be recorded
const pendingCost = pendingCostPromises.get(matrixUserId);
if (pendingCost) {
try {
await pendingCost;
} catch (e) {
log.error('Error waiting for pending cost:', e);
await sendResponseForSystemError(
ctxt,
'There was an error saving your Boxel credits usage. Try again or contact support if the problem persists.',
);
return;
}
}
Comment on lines +346 to +359
Copy link

Copilot AI Mar 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Waiting for pendingCostPromises.get(matrixUserId) before validating credits can block the user for a long time (the OpenRouter polling path retries up to ~10 minutes) and can still miss in-flight requests because the pending promise is only stored at the end of a stream / after the non-streaming response returns. If the goal is to prevent users from starting a new request until debiting is complete, you likely need to register the pending promise at request start (or reserve credits up front) rather than after the fact, otherwise this gating is both user-visible and incomplete.

Suggested change
// 4. Wait for any pending cost from a previous request to be recorded
const pendingCost = pendingCostPromises.get(matrixUserId);
if (pendingCost) {
try {
await pendingCost;
} catch (e) {
log.error('Error waiting for pending cost:', e);
await sendResponseForSystemError(
ctxt,
'There was an error saving your Boxel credits usage. Try again or contact support if the problem persists.',
);
return;
}
}
// 4. Previously, this handler waited for any pending cost from a previous
// request to be recorded by awaiting pendingCostPromises.get(matrixUserId).
// That behavior could block this request for a long time and still miss
// in-flight requests. We now proceed without blocking here and rely on the
// credit strategy to enforce limits.

Copilot uses AI. Check for mistakes.

// 5. Check user has sufficient credits using credit strategy
const creditValidation =
await destinationConfig.creditStrategy.validateCredits(
dbAdapter,
Expand Down Expand Up @@ -469,12 +499,43 @@ export default function handleRequestForward({

const responseData = await externalResponse.json();

// 6. Calculate and deduct credits using credit strategy
await destinationConfig.creditStrategy.saveUsageCost(
dbAdapter,
matrixUserId,
responseData,
);
// 6. Deduct credits in the background using the cost from the response,
// or fall back to saveUsageCost when the cost is not provided.
const costInUsd = responseData?.usage?.cost;
const previousPromise =
pendingCostPromises.get(matrixUserId) ?? Promise.resolve();
let costPromise: Promise<void>;

if (typeof costInUsd === 'number' && Number.isFinite(costInUsd) && costInUsd > 0) {
costPromise = previousPromise
.then(() =>
destinationConfig.creditStrategy.spendUsageCost(
dbAdapter,
matrixUserId,
costInUsd,
),
)
.finally(() => {
if (pendingCostPromises.get(matrixUserId) === costPromise) {
pendingCostPromises.delete(matrixUserId);
}
});
} else {
costPromise = previousPromise
.then(() =>
destinationConfig.creditStrategy.saveUsageCost(
dbAdapter,
matrixUserId,
responseData,
),
)
.finally(() => {
if (pendingCostPromises.get(matrixUserId) === costPromise) {
pendingCostPromises.delete(matrixUserId);
}
});
}
pendingCostPromises.set(matrixUserId, costPromise);

// 7. Return response
const response = new Response(JSON.stringify(responseData), {
Expand Down
22 changes: 22 additions & 0 deletions packages/realm-server/lib/credit-strategies.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@ import {
validateAICredits,
extractGenerationIdFromResponse,
saveUsageCost as saveUsageCostFromBilling,
spendUsageCost as spendUsageCostFromBilling,
} from '@cardstack/billing/ai-billing';

export interface CreditStrategy {
Expand All @@ -23,6 +24,11 @@ export interface CreditStrategy {
matrixUserId: string,
response: any,
): Promise<void>;
spendUsageCost(
dbAdapter: DBAdapter,
matrixUserId: string,
costInUsd: number,
): Promise<void>;
}

// Default AI Bot Credit Strategy (reused from AI bot)
Expand Down Expand Up @@ -62,6 +68,14 @@ export class OpenRouterCreditStrategy implements CreditStrategy {
);
}
}

async spendUsageCost(
dbAdapter: DBAdapter,
matrixUserId: string,
costInUsd: number,
): Promise<void> {
await spendUsageCostFromBilling(dbAdapter, matrixUserId, costInUsd);
}
}

// No Credit Strategy (for free endpoints)
Expand All @@ -82,6 +96,14 @@ export class NoCreditStrategy implements CreditStrategy {
): Promise<void> {
// No-op for no-credit strategy
}

async spendUsageCost(
_dbAdapter: DBAdapter,
_matrixUserId: string,
_costInUsd: number,
): Promise<void> {
// No-op for no-credit strategy
}
}

// Credit Strategy Factory
Expand Down
68 changes: 29 additions & 39 deletions packages/realm-server/tests/request-forward-test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ import {
insertPlan,
realmSecretSeed,
createVirtualNetwork,
waitUntil,
} from './helpers';
import { createJWT as createRealmServerJWT } from '../utils/jwt';
import {
Expand Down Expand Up @@ -134,34 +135,20 @@ module(basename(__filename), function () {
const originalFetch = global.fetch;
const mockFetch = sinon.stub(global, 'fetch');

// Mock OpenRouter response
// Mock OpenRouter response (includes usage.cost so credits can be
// deducted directly without polling the generation cost API)
const mockOpenRouterResponse = {
id: 'gen-test-123',
choices: [{ text: 'Test response from OpenRouter' }],
usage: { total_tokens: 150 },
usage: { total_tokens: 150, cost: 0.003 },
};

// Mock generation cost API response
const mockCostResponse = {
data: {
id: 'gen-test-123',
total_cost: 0.003,
total_tokens: 150,
model: 'openai/gpt-3.5-turbo',
},
};

// Set up fetch to return different responses based on URL
// Set up fetch to return OpenRouter response
mockFetch.callsFake(
async (input: string | URL | Request, _init?: RequestInit) => {
const url = typeof input === 'string' ? input : input.toString();

if (url.includes('/generation?id=')) {
return new Response(JSON.stringify(mockCostResponse), {
status: 200,
headers: { 'content-type': 'application/json' },
});
} else if (url.includes('/chat/completions')) {
if (url.includes('/chat/completions')) {
return new Response(JSON.stringify(mockOpenRouterResponse), {
status: 200,
headers: { 'content-type': 'application/json' },
Expand Down Expand Up @@ -207,36 +194,39 @@ module(basename(__filename), function () {

// Verify fetch was called correctly (allowing unrelated fetches)
const calls = mockFetch.getCalls();
const chatCallIndex = calls.findIndex((call) => {
const chatCall = calls.find((call) => {
const url = call.args[0];
const href = typeof url === 'string' ? url : url?.toString();
return Boolean(href && href.includes('/chat/completions'));
});
const generationCallIndex = calls.findIndex((call) => {
const url = call.args[0];
const href = typeof url === 'string' ? url : url?.toString();
return Boolean(href && href.includes('/generation?id='));
});

assert.true(chatCallIndex >= 0, 'Fetch should call chat completions');
assert.true(
generationCallIndex >= 0,
'Fetch should call generation cost API',
);
assert.true(
chatCallIndex < generationCallIndex,
'Generation cost should be fetched after chat completions',
);
assert.ok(chatCall, 'Fetch should call chat completions');

// Verify authorization header was set correctly
const firstCallHeaders = calls[chatCallIndex].args[1]
?.headers as Record<string, string>;
// Note: The actual authorization header will include the JWT token, not the API key
// The API key is added by the proxy handler, not the test
const chatCallHeaders = chatCall!.args[1]?.headers as Record<
string,
string
>;
assert.true(
firstCallHeaders?.Authorization?.startsWith('Bearer '),
chatCallHeaders?.Authorization?.startsWith('Bearer '),
'Should set authorization header',
);

// Verify credits were deducted (0.003 USD * 1000 = 3 credits)
const user = await getUserByMatrixUserId(
Comment on lines +215 to +216
Copy link

Copilot AI Mar 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The test uses a fixed setTimeout(..., 50) to wait for background credit deduction, which is prone to flakiness on slower CI / loaded machines. Prefer using the existing waitUntil helper to poll until the ledger reflects the expected value (with a reasonable timeout) rather than sleeping an arbitrary duration.

Copilot uses AI. Check for mistakes.
dbAdapter,
'@testuser:localhost',
);
await waitUntil(
async () => {
const credits = await sumUpCreditsLedger(dbAdapter, {
creditType: ['extra_credit', 'extra_credit_used'],
userId: user!.id,
});
return credits === 47;
},
{ timeoutMessage: 'Credits should be deducted (50 - 3 = 47)' },
);
} finally {
mockFetch.restore();
global.fetch = originalFetch;
Expand Down
Loading