微服务中集成大模型调用的降级限流与优雅容灾实践一、概述随着AI大模型在企业级应用中的深度落地越来越多的微服务需要调用大模型API如GPT-4、通义千问、文心一言来完成智能问答、内容生成、代码分析等任务。然而大模型API具有高延迟通常1-10秒、高成本按Token计费、不稳定偶发超时/限流的特点。如果不对大模型调用做降级限流和容灾处理可能出现以下问题突发请求击穿大模型API配额导致服务不可用单个模型API故障引发上游服务雪崩大模型高延迟阻塞微服务线程池影响正常业务本文将从限流、熔断、降级、容灾切换四个维度给出微服务集成大模型调用的完整防护方案。二、核心原理2.1 大模型调用的风险模型风险类型表现影响范围API配额限流返回429 Too Many Requests单个模型调用方模型响应超时连接超时/读取超时调用线程阻塞模型API故障5xx错误或服务不可用所有调用方Token预算超支成本超出预期项目成本控制模型版本回退新版本效果变差业务质量2.2 多层防护架构客户端 → Gateway限流 → 业务服务 → 本地降级策略 → 大模型调用层 → 模型API ↓ ↓ 本地Cache ← → 多模型切换 ← → 重试/超时控制 ↓ 降级响应(默认值/Mock)各层级职责Gateway层全局QPS限流防止恶意流量业务服务层业务级别的限流和熔断按用户/场景隔离调用层超时控制、重试策略、多模型切换降级层本地Cache、Mock数据、默认响应三、实战配置3.1 依赖引入dependency groupIdorg.springframework.cloud/groupId artifactIdspring-cloud-starter-circuitbreaker-resilience4j/artifactId /dependency dependency groupIdio.github.resilience4j/groupId artifactIdresilience4j-ratelimiter/artifactId /dependency dependency groupIdorg.springframework.boot/groupId artifactIdspring-boot-starter-data-redis/artifactId /dependency dependency groupIdcom.github.ben-manes.caffeine/groupId artifactIdcaffeine/artifactId /dependency3.2 application.yml配置spring: ai: dashscope: api-key: ${DASHSCOPE_API_KEY} chat: options: model: qwen-max resilience4j: circuitbreaker: instances: llmService: sliding-window-size: 20 minimum-number-of-calls: 5 failure-rate-threshold: 40 wait-duration-in-open-state: 30s permitted-number-of-calls-in-half-open-state: 3 record-exceptions: - java.net.SocketTimeoutException - org.springframework.web.client.HttpServerErrorException ratelimiter: instances: llmService: limit-for-period: 50 limit-refresh-period: 1s timeout-duration: 500ms retry: instances: llmService: max-attempts: 3 wait-duration: 1s exponential-backoff-multiplier: 2 retry-exceptions: - java.net.SocketTimeoutException llm: models: primary: qwen-max fallback: qwen-plus emergency: qwen-turbo timeout: connect: 5000 read: 30000 write: 10000 rate-limit: user: quota-per-minute: 20 global: qps: 503.3 核心调用服务Service public class LLMService { private static final Logger log LoggerFactory.getLogger(LLMService.class); private final ListLLMClient modelClients; private final CacheString, String localCache; private final RateLimiter rateLimiter; private final CircuitBreaker circuitBreaker; private final Retry retry; public LLMService( ListLLMClient modelClients, CacheString, String localCache, RateLimiter rateLimiter, CircuitBreaker circuitBreaker, Retry retry) { this.modelClients modelClients; this.localCache localCache; this.rateLimiter rateLimiter; this.circuitBreaker circuitBreaker; this.retry retry; } public String chat(String userId, String prompt) { String cacheKey buildCacheKey(userId, prompt); String cached localCache.getIfPresent(cacheKey); if (cached ! null) { return cached; } if (!rateLimiter.acquirePermission()) { return fallbackResponse(userId, prompt, rate_limited); } SupplierString decorated Decorators.ofSupplier(() - { return callWithFallbackModel(userId, prompt); }).withCircuitBreaker(circuitBreaker) .withRetry(retry) .decorate(); try { String result decorated.get(); localCache.put(cacheKey, result); return result; } catch (Exception e) { log.error(LLM调用全部失败userId{}, userId, e); return fallbackResponse(userId, prompt, all_failed); } } private String callWithFallbackModel(String userId, String prompt) { for (int i 0; i modelClients.size(); i) { try { return modelClients.get(i).call(prompt); } catch (Exception e) { log.warn(模型{}调用失败切换到下一个, modelClients.get(i).getModelName(), e); if (i modelClients.size() - 1) { throw e; } } } throw new RuntimeException(所有模型调用失败); } private String fallbackResponse(String userId, String prompt, String reason) { return {\content\:\服务繁忙请稍后再试\,\fallback\:true,\reason\:\ reason \}; } private String buildCacheKey(String userId, String prompt) { return userId : DigestUtils.md5DigestAsHex( prompt.getBytes(StandardCharsets.UTF_8)); } }四、高级实践4.1 多模型路由与自动切换Component public class ModelRouter { private final MapString, LLMClient modelClients; private final String primaryModel; private final String fallbackModel; private final String emergencyModel; private final AtomicReferenceString currentModel; private final AtomicInteger failureCount new AtomicInteger(0); private static final int FAILURE_THRESHOLD 5; public ModelRouter( ListLLMClient clients, Value(${llm.models.primary}) String primary, Value(${llm.models.fallback}) String fallback, Value(${llm.models.emergency}) String emergency) { this.modelClients clients.stream() .collect(Collectors.toMap(LLMClient::getModelName, c - c)); this.primaryModel primary; this.fallbackModel fallback; this.emergencyModel emergency; this.currentModel new AtomicReference(primary); } public String route(String prompt) { String model currentModel.get(); try { String result modelClients.get(model).call(prompt); failureCount.set(0); if (!model.equals(primaryModel)) { if (tryRecover()) { log.info(主模型已恢复切换回: {}, primaryModel); } } return result; } catch (Exception e) { int fails failureCount.incrementAndGet(); if (fails FAILURE_THRESHOLD) { switchToNext(model); } throw e; } } private void switchToNext(String failedModel) { if (failedModel.equals(primaryModel)) { currentModel.set(fallbackModel); log.warn(主模型熔断切换到: {}, fallbackModel); } else if (failedModel.equals(fallbackModel)) { currentModel.set(emergencyModel); log.warn(备用模型熔断切换到紧急模型: {}, emergencyModel); } } private boolean tryRecover() { try { modelClients.get(primaryModel).call(ping); currentModel.set(primaryModel); failureCount.set(0); return true; } catch (Exception e) { return false; } } }4.2 用户级配额控制Component public class UserQuotaManager { private final StringRedisTemplate redisTemplate; private static final String QUOTA_KEY_PREFIX llm:quota:user:; private static final int QUOTA_PER_MINUTE 20; private static final int QUOTA_WINDOW_SECONDS 60; public UserQuotaManager(StringRedisTemplate redisTemplate) { this.redisTemplate redisTemplate; } public boolean tryAcquire(String userId) { String key QUOTA_KEY_PREFIX userId; Long count redisTemplate.opsForValue().increment(key); if (count 1) { redisTemplate.expire(key, Duration.ofSeconds(QUOTA_WINDOW_SECONDS)); } return count QUOTA_PER_MINUTE; } public int getRemainingQuota(String userId) { String key QUOTA_KEY_PREFIX userId; String count redisTemplate.opsForValue().get(key); if (count null) { return QUOTA_PER_MINUTE; } return Math.max(0, QUOTA_PER_MINUTE - Integer.parseInt(count)); } public void resetQuota(String userId) { redisTemplate.delete(QUOTA_KEY_PREFIX userId); } }4.3 异步非阻塞调用使用Spring异步机制避免大模型高延迟阻塞业务线程Service public class AsyncLLMService { private final LLMService llmService; private final ExecutorService llmExecutor; private static final int CORE_POOL_SIZE 10; private static final int MAX_POOL_SIZE 20; private static final int QUEUE_CAPACITY 100; public AsyncLLMService(LLMService llmService) { this.llmService llmService; this.llmExecutor new ThreadPoolExecutor( CORE_POOL_SIZE, MAX_POOL_SIZE, 60, TimeUnit.SECONDS, new LinkedBlockingQueue(QUEUE_CAPACITY), new ThreadPoolExecutor.CallerRunsPolicy() ); } public CompletableFutureString chatAsync(String userId, String prompt) { return CompletableFuture.supplyAsync(() - { return llmService.chat(userId, prompt); }, llmExecutor).orTimeout(35, TimeUnit.SECONDS) .exceptionally(throwable - { log.error(异步LLM调用超时或失败, throwable); return {\content\:\请求超时\,\fallback\:true}; }); } PreDestroy public void shutdown() { llmExecutor.shutdown(); try { if (!llmExecutor.awaitTermination(5, TimeUnit.SECONDS)) { llmExecutor.shutdownNow(); } } catch (InterruptedException e) { llmExecutor.shutdownNow(); Thread.currentThread().interrupt(); } } }4.4 虚拟线程集成Java 21Configuration public class LLMVirtualThreadConfig { Bean public Executor llmVirtualThreadExecutor() { return Executors.newVirtualThreadPerTaskExecutor(); } } Service public class VirtualThreadLLMClient { private final RestClient restClient; private final Executor virtualThreadExecutor; public VirtualThreadLLMClient( RestClient.Builder restClientBuilder, Qualifier(llmVirtualThreadExecutor) Executor executor) { this.restClient restClientBuilder .baseUrl(https://dashscope.aliyuncs.com) .build(); this.virtualThreadExecutor executor; } public String call(String prompt) throws Exception { MapString, Object requestBody new HashMap(); requestBody.put(model, qwen-max); requestBody.put(input, Map.of(messages, List.of( Map.of(role, user, content, prompt) ))); return CompletableFuture.supplyAsync(() - { return restClient.post() .uri(/api/v1/services/aigc/text-generation/generation) .body(requestBody) .retrieve() .body(String.class); }, virtualThreadExecutor).get(30, TimeUnit.SECONDS); } }4.5 Sentinel降级规则Configuration public class SentinelLLMConfig { PostConstruct public void initLLMRules() { ListDegradeRule rules new ArrayList(); DegradeRule rule new DegradeRule(llm:chat) .setGrade(RuleConstant.DEGRADE_GRADE_RT) .setCount(15000) .setTimeWindow(30) .setMinRequestAmount(5) .setStatIntervalMs(10000); rules.add(rule); DegradeRule rule2 new DegradeRule(llm:chat) .setGrade(RuleConstant.DEGRADE_GRADE_EXCEPTION_RATIO) .setCount(0.3) .setTimeWindow(60) .setMinRequestAmount(10); rules.add(rule2); DegradeRuleManager.loadRules(rules); ListFlowRule flowRules new ArrayList(); FlowRule flowRule new FlowRule(llm:chat) .setCount(50) .setGrade(RuleConstant.FLOW_GRADE_QPS) .setControlBehavior(RuleConstant.CONTROL_BEHAVIOR_RATE_LIMITER) .setMaxQueueingTimeMs(500); flowRules.add(flowRule); FlowRuleManager.loadRules(flowRules); } SentinelResource(value llm:chat, fallback llmFallback, blockHandler llmBlockHandler) public String chatWithSentinel(String prompt) { return llmService.chat(sentinel, prompt); } public String llmFallback(String prompt, Throwable t) { return {\content\:\服务降级\,\reason\:\degrade\}; } public String llmBlockHandler(String prompt, BlockException e) { return {\content\:\请求被限流\,\reason\:\blocked\}; } }4.6 Mock数据联动降级Component public class AIGeneratedMockFallback { private final MockDataRepository mockDataRepo; private final MapString, String mockCache new ConcurrentHashMap(); public AIGeneratedMockFallback(MockDataRepository mockDataRepo) { this.mockDataRepo mockDataRepo; } PostConstruct public void preloadMockData() { ListMockDataItem items mockDataRepo.findAll(); for (MockDataItem item : items) { mockCache.put(item.getPromptHash(), item.getResponse()); } } public String getMockResponse(String prompt) { String hash DigestUtils.md5DigestAsHex( prompt.getBytes(StandardCharsets.UTF_8)); String exactMatch mockCache.get(hash); if (exactMatch ! null) { return exactMatch; } return findSimilarMock(prompt); } private String findSimilarMock(String prompt) { return mockCache.values().stream() .findAny() .orElse({\content\:\默认Mock响应\}); } }五、最佳实践实践要点说明推荐度多模型热备至少配置主模型备用模型紧急模型三级容灾⭐⭐⭐⭐⭐用户配额隔离按用户/租户设置调用配额防止单用户耗尽配额⭐⭐⭐⭐⭐结果缓存相同Prompt的结果缓存到Caffeine/Redis减少重复调用⭐⭐⭐⭐⭐异步非阻塞使用CompletableFuture或虚拟线程避免阻塞业务线程⭐⭐⭐⭐熔断自动恢复配置Half-Open状态定期探测模型是否恢复⭐⭐⭐⭐成本监控记录每次调用的Token消耗设置日预算上限⭐⭐⭐⭐Mock降级AI预生成Mock数据表模型不可用时返回Mock数据⭐⭐⭐六、总结微服务集成大模型调用不是简单的HTTP请求封装而是一个需要完备的降级限流和容灾体系保障的系统工程。本文从Resilience4j限流熔断、多模型路由切换、用户配额控制、异步非阻塞调用、Sentinel降级规则、Mock数据联动降级等多个维度给出了完整的防护方案。核心思想是永远假设大模型不可用——在系统设计层面做好最坏的打算通过多层防护和优雅降级确保大模型API的任何异常都不会影响核心业务的正常运行。当大模型可用时提供智能服务不可用时降级到Cache或Mock数据这才是生产级的AI集成方案。
微服务中集成大模型调用的降级限流与优雅容灾实践
发布时间:2026/6/2 0:47:52
微服务中集成大模型调用的降级限流与优雅容灾实践一、概述随着AI大模型在企业级应用中的深度落地越来越多的微服务需要调用大模型API如GPT-4、通义千问、文心一言来完成智能问答、内容生成、代码分析等任务。然而大模型API具有高延迟通常1-10秒、高成本按Token计费、不稳定偶发超时/限流的特点。如果不对大模型调用做降级限流和容灾处理可能出现以下问题突发请求击穿大模型API配额导致服务不可用单个模型API故障引发上游服务雪崩大模型高延迟阻塞微服务线程池影响正常业务本文将从限流、熔断、降级、容灾切换四个维度给出微服务集成大模型调用的完整防护方案。二、核心原理2.1 大模型调用的风险模型风险类型表现影响范围API配额限流返回429 Too Many Requests单个模型调用方模型响应超时连接超时/读取超时调用线程阻塞模型API故障5xx错误或服务不可用所有调用方Token预算超支成本超出预期项目成本控制模型版本回退新版本效果变差业务质量2.2 多层防护架构客户端 → Gateway限流 → 业务服务 → 本地降级策略 → 大模型调用层 → 模型API ↓ ↓ 本地Cache ← → 多模型切换 ← → 重试/超时控制 ↓ 降级响应(默认值/Mock)各层级职责Gateway层全局QPS限流防止恶意流量业务服务层业务级别的限流和熔断按用户/场景隔离调用层超时控制、重试策略、多模型切换降级层本地Cache、Mock数据、默认响应三、实战配置3.1 依赖引入dependency groupIdorg.springframework.cloud/groupId artifactIdspring-cloud-starter-circuitbreaker-resilience4j/artifactId /dependency dependency groupIdio.github.resilience4j/groupId artifactIdresilience4j-ratelimiter/artifactId /dependency dependency groupIdorg.springframework.boot/groupId artifactIdspring-boot-starter-data-redis/artifactId /dependency dependency groupIdcom.github.ben-manes.caffeine/groupId artifactIdcaffeine/artifactId /dependency3.2 application.yml配置spring: ai: dashscope: api-key: ${DASHSCOPE_API_KEY} chat: options: model: qwen-max resilience4j: circuitbreaker: instances: llmService: sliding-window-size: 20 minimum-number-of-calls: 5 failure-rate-threshold: 40 wait-duration-in-open-state: 30s permitted-number-of-calls-in-half-open-state: 3 record-exceptions: - java.net.SocketTimeoutException - org.springframework.web.client.HttpServerErrorException ratelimiter: instances: llmService: limit-for-period: 50 limit-refresh-period: 1s timeout-duration: 500ms retry: instances: llmService: max-attempts: 3 wait-duration: 1s exponential-backoff-multiplier: 2 retry-exceptions: - java.net.SocketTimeoutException llm: models: primary: qwen-max fallback: qwen-plus emergency: qwen-turbo timeout: connect: 5000 read: 30000 write: 10000 rate-limit: user: quota-per-minute: 20 global: qps: 503.3 核心调用服务Service public class LLMService { private static final Logger log LoggerFactory.getLogger(LLMService.class); private final ListLLMClient modelClients; private final CacheString, String localCache; private final RateLimiter rateLimiter; private final CircuitBreaker circuitBreaker; private final Retry retry; public LLMService( ListLLMClient modelClients, CacheString, String localCache, RateLimiter rateLimiter, CircuitBreaker circuitBreaker, Retry retry) { this.modelClients modelClients; this.localCache localCache; this.rateLimiter rateLimiter; this.circuitBreaker circuitBreaker; this.retry retry; } public String chat(String userId, String prompt) { String cacheKey buildCacheKey(userId, prompt); String cached localCache.getIfPresent(cacheKey); if (cached ! null) { return cached; } if (!rateLimiter.acquirePermission()) { return fallbackResponse(userId, prompt, rate_limited); } SupplierString decorated Decorators.ofSupplier(() - { return callWithFallbackModel(userId, prompt); }).withCircuitBreaker(circuitBreaker) .withRetry(retry) .decorate(); try { String result decorated.get(); localCache.put(cacheKey, result); return result; } catch (Exception e) { log.error(LLM调用全部失败userId{}, userId, e); return fallbackResponse(userId, prompt, all_failed); } } private String callWithFallbackModel(String userId, String prompt) { for (int i 0; i modelClients.size(); i) { try { return modelClients.get(i).call(prompt); } catch (Exception e) { log.warn(模型{}调用失败切换到下一个, modelClients.get(i).getModelName(), e); if (i modelClients.size() - 1) { throw e; } } } throw new RuntimeException(所有模型调用失败); } private String fallbackResponse(String userId, String prompt, String reason) { return {\content\:\服务繁忙请稍后再试\,\fallback\:true,\reason\:\ reason \}; } private String buildCacheKey(String userId, String prompt) { return userId : DigestUtils.md5DigestAsHex( prompt.getBytes(StandardCharsets.UTF_8)); } }四、高级实践4.1 多模型路由与自动切换Component public class ModelRouter { private final MapString, LLMClient modelClients; private final String primaryModel; private final String fallbackModel; private final String emergencyModel; private final AtomicReferenceString currentModel; private final AtomicInteger failureCount new AtomicInteger(0); private static final int FAILURE_THRESHOLD 5; public ModelRouter( ListLLMClient clients, Value(${llm.models.primary}) String primary, Value(${llm.models.fallback}) String fallback, Value(${llm.models.emergency}) String emergency) { this.modelClients clients.stream() .collect(Collectors.toMap(LLMClient::getModelName, c - c)); this.primaryModel primary; this.fallbackModel fallback; this.emergencyModel emergency; this.currentModel new AtomicReference(primary); } public String route(String prompt) { String model currentModel.get(); try { String result modelClients.get(model).call(prompt); failureCount.set(0); if (!model.equals(primaryModel)) { if (tryRecover()) { log.info(主模型已恢复切换回: {}, primaryModel); } } return result; } catch (Exception e) { int fails failureCount.incrementAndGet(); if (fails FAILURE_THRESHOLD) { switchToNext(model); } throw e; } } private void switchToNext(String failedModel) { if (failedModel.equals(primaryModel)) { currentModel.set(fallbackModel); log.warn(主模型熔断切换到: {}, fallbackModel); } else if (failedModel.equals(fallbackModel)) { currentModel.set(emergencyModel); log.warn(备用模型熔断切换到紧急模型: {}, emergencyModel); } } private boolean tryRecover() { try { modelClients.get(primaryModel).call(ping); currentModel.set(primaryModel); failureCount.set(0); return true; } catch (Exception e) { return false; } } }4.2 用户级配额控制Component public class UserQuotaManager { private final StringRedisTemplate redisTemplate; private static final String QUOTA_KEY_PREFIX llm:quota:user:; private static final int QUOTA_PER_MINUTE 20; private static final int QUOTA_WINDOW_SECONDS 60; public UserQuotaManager(StringRedisTemplate redisTemplate) { this.redisTemplate redisTemplate; } public boolean tryAcquire(String userId) { String key QUOTA_KEY_PREFIX userId; Long count redisTemplate.opsForValue().increment(key); if (count 1) { redisTemplate.expire(key, Duration.ofSeconds(QUOTA_WINDOW_SECONDS)); } return count QUOTA_PER_MINUTE; } public int getRemainingQuota(String userId) { String key QUOTA_KEY_PREFIX userId; String count redisTemplate.opsForValue().get(key); if (count null) { return QUOTA_PER_MINUTE; } return Math.max(0, QUOTA_PER_MINUTE - Integer.parseInt(count)); } public void resetQuota(String userId) { redisTemplate.delete(QUOTA_KEY_PREFIX userId); } }4.3 异步非阻塞调用使用Spring异步机制避免大模型高延迟阻塞业务线程Service public class AsyncLLMService { private final LLMService llmService; private final ExecutorService llmExecutor; private static final int CORE_POOL_SIZE 10; private static final int MAX_POOL_SIZE 20; private static final int QUEUE_CAPACITY 100; public AsyncLLMService(LLMService llmService) { this.llmService llmService; this.llmExecutor new ThreadPoolExecutor( CORE_POOL_SIZE, MAX_POOL_SIZE, 60, TimeUnit.SECONDS, new LinkedBlockingQueue(QUEUE_CAPACITY), new ThreadPoolExecutor.CallerRunsPolicy() ); } public CompletableFutureString chatAsync(String userId, String prompt) { return CompletableFuture.supplyAsync(() - { return llmService.chat(userId, prompt); }, llmExecutor).orTimeout(35, TimeUnit.SECONDS) .exceptionally(throwable - { log.error(异步LLM调用超时或失败, throwable); return {\content\:\请求超时\,\fallback\:true}; }); } PreDestroy public void shutdown() { llmExecutor.shutdown(); try { if (!llmExecutor.awaitTermination(5, TimeUnit.SECONDS)) { llmExecutor.shutdownNow(); } } catch (InterruptedException e) { llmExecutor.shutdownNow(); Thread.currentThread().interrupt(); } } }4.4 虚拟线程集成Java 21Configuration public class LLMVirtualThreadConfig { Bean public Executor llmVirtualThreadExecutor() { return Executors.newVirtualThreadPerTaskExecutor(); } } Service public class VirtualThreadLLMClient { private final RestClient restClient; private final Executor virtualThreadExecutor; public VirtualThreadLLMClient( RestClient.Builder restClientBuilder, Qualifier(llmVirtualThreadExecutor) Executor executor) { this.restClient restClientBuilder .baseUrl(https://dashscope.aliyuncs.com) .build(); this.virtualThreadExecutor executor; } public String call(String prompt) throws Exception { MapString, Object requestBody new HashMap(); requestBody.put(model, qwen-max); requestBody.put(input, Map.of(messages, List.of( Map.of(role, user, content, prompt) ))); return CompletableFuture.supplyAsync(() - { return restClient.post() .uri(/api/v1/services/aigc/text-generation/generation) .body(requestBody) .retrieve() .body(String.class); }, virtualThreadExecutor).get(30, TimeUnit.SECONDS); } }4.5 Sentinel降级规则Configuration public class SentinelLLMConfig { PostConstruct public void initLLMRules() { ListDegradeRule rules new ArrayList(); DegradeRule rule new DegradeRule(llm:chat) .setGrade(RuleConstant.DEGRADE_GRADE_RT) .setCount(15000) .setTimeWindow(30) .setMinRequestAmount(5) .setStatIntervalMs(10000); rules.add(rule); DegradeRule rule2 new DegradeRule(llm:chat) .setGrade(RuleConstant.DEGRADE_GRADE_EXCEPTION_RATIO) .setCount(0.3) .setTimeWindow(60) .setMinRequestAmount(10); rules.add(rule2); DegradeRuleManager.loadRules(rules); ListFlowRule flowRules new ArrayList(); FlowRule flowRule new FlowRule(llm:chat) .setCount(50) .setGrade(RuleConstant.FLOW_GRADE_QPS) .setControlBehavior(RuleConstant.CONTROL_BEHAVIOR_RATE_LIMITER) .setMaxQueueingTimeMs(500); flowRules.add(flowRule); FlowRuleManager.loadRules(flowRules); } SentinelResource(value llm:chat, fallback llmFallback, blockHandler llmBlockHandler) public String chatWithSentinel(String prompt) { return llmService.chat(sentinel, prompt); } public String llmFallback(String prompt, Throwable t) { return {\content\:\服务降级\,\reason\:\degrade\}; } public String llmBlockHandler(String prompt, BlockException e) { return {\content\:\请求被限流\,\reason\:\blocked\}; } }4.6 Mock数据联动降级Component public class AIGeneratedMockFallback { private final MockDataRepository mockDataRepo; private final MapString, String mockCache new ConcurrentHashMap(); public AIGeneratedMockFallback(MockDataRepository mockDataRepo) { this.mockDataRepo mockDataRepo; } PostConstruct public void preloadMockData() { ListMockDataItem items mockDataRepo.findAll(); for (MockDataItem item : items) { mockCache.put(item.getPromptHash(), item.getResponse()); } } public String getMockResponse(String prompt) { String hash DigestUtils.md5DigestAsHex( prompt.getBytes(StandardCharsets.UTF_8)); String exactMatch mockCache.get(hash); if (exactMatch ! null) { return exactMatch; } return findSimilarMock(prompt); } private String findSimilarMock(String prompt) { return mockCache.values().stream() .findAny() .orElse({\content\:\默认Mock响应\}); } }五、最佳实践实践要点说明推荐度多模型热备至少配置主模型备用模型紧急模型三级容灾⭐⭐⭐⭐⭐用户配额隔离按用户/租户设置调用配额防止单用户耗尽配额⭐⭐⭐⭐⭐结果缓存相同Prompt的结果缓存到Caffeine/Redis减少重复调用⭐⭐⭐⭐⭐异步非阻塞使用CompletableFuture或虚拟线程避免阻塞业务线程⭐⭐⭐⭐熔断自动恢复配置Half-Open状态定期探测模型是否恢复⭐⭐⭐⭐成本监控记录每次调用的Token消耗设置日预算上限⭐⭐⭐⭐Mock降级AI预生成Mock数据表模型不可用时返回Mock数据⭐⭐⭐六、总结微服务集成大模型调用不是简单的HTTP请求封装而是一个需要完备的降级限流和容灾体系保障的系统工程。本文从Resilience4j限流熔断、多模型路由切换、用户配额控制、异步非阻塞调用、Sentinel降级规则、Mock数据联动降级等多个维度给出了完整的防护方案。核心思想是永远假设大模型不可用——在系统设计层面做好最坏的打算通过多层防护和优雅降级确保大模型API的任何异常都不会影响核心业务的正常运行。当大模型可用时提供智能服务不可用时降级到Cache或Mock数据这才是生产级的AI集成方案。
相关文章
商用车车联网:认知篇 - 第2篇:谁在为车联网付费?一张完整的付费方图谱
-------------------- 搞不清谁有钱、愿为什么花钱,再好的方案也饿死 -------------------------------------一个普遍的错误很多车联网团队上来就做“平台”,觉得覆盖功能越多,客户越愿意买单。结果产品做出来了,发现谁都不愿付…
Rusted PackFile Manager:终极《全面战争》模组开发工具完整指南
Rusted PackFile Manager:终极《全面战争》模组开发工具完整指南 【免费下载链接】rpfm Rusted PackFile Manager (RPFM) is a... reimplementation in Rust and Qt6 of PackFile Manager (PFM), one of the best modding tools for Total War Games. 项目地址: h…
乱编的SBTI,为什么这么多人都在测
乱编的SBTI,为什么这么多人都在测 近期,一种名为SBTI的测试在网络迅速走红。它以广为人知的MBTI框架为基础,却产出大量荒诞、粗俗甚至带侮辱色彩的标签,诸如“死者”“草者”“吗喽”“尤物”等,乍看像是随手拼凑的恶搞…
Sora 2交互设计白皮书首发,揭秘OpenAI未公开的7层反馈闭环机制,含真实A/B测试数据集
更多请点击: https://intelliparadigm.com 第一章:Sora 2交互设计演示 Sora 2 是 OpenAI 推出的下一代视频生成模型,其交互设计聚焦于低延迟响应、多模态指令理解与实时编辑反馈。在最新 SDK v2.3 中,开发者可通过统一的 WebAsse…
C++中的命名空间详细介绍
首先熟悉一下命名空间的两个概念。 声明区域:可以在其中进行声明的区域,如全局文件的声明区域是文件,函数内声明的变量声明区域为代码块。潜在作用域:潜在作用域从声明点开始,到其声明区域的结尾。因此潜在作用域比声…
TVA如何赋能机器人灵巧运动控制(26)
重磅预告:本专栏将独家连载系列丛书《智能体视觉技术与应用》部分精华内容,该书是世界首套系统阐述“因式智能体”视觉理论与实践的专著,特邀美国 TypeOne 公司首席科学家、斯坦福大学博士 Bohan 担任技术顾问。Bohan先生师从美国三院院士、“…
Jupyter Notebook图片显示全攻略:从HTML到OpenCV,四种方法优缺点实测对比
Jupyter Notebook图片显示全攻略:从HTML到OpenCV,四种方法优缺点实测对比在数据科学和机器学习的工作流中,Jupyter Notebook已经成为不可或缺的工具。它提供了一个交互式的环境,让研究人员和开发者能够快速迭代和可视化结果。其中…
分块传送:让大文件传输不再“卡顿”的HTTP黑科技
你是否曾遇到过这样的场景:上传一个大文件时,进度条卡在99%不动了,或者观看在线视频时频繁缓冲?这些问题的背后,其实都涉及到一个关键的HTTP技术——分块传送(Chunked Transfer Encoding)。 什么…
如何让AI生成项目的单元测试,propmt技巧详解
比如你的项目是一个典型的 Java (Spring Boot) Vue3 的前后端分离项目。为了让 AI(无论是我、ChatGPT 还是其他代码模型)生成高质量的测试代码,你需要提供具体的上下文。AI 不能凭空猜你的数据库字段或接口参数。以下是为你定制的 Prompt 模…
从 Prompt 到生产闭环:Spring AI Tool Calling 深度拆解与企业级落地
从 Prompt 到生产闭环:Spring AI Tool Calling 深度拆解与企业级落地 摘要 Tool Calling 是大模型系统从“会回答”走向“会执行”的关键能力。很多文章只停留在 @Tool 注解和 Hello World 级别示例,但一旦进入生产环境,问题很快从“怎么调用”升级为“怎么控延迟、怎么控风…
解耦安防碎片化:基于 Docker 与边缘计算的 AI 视频中台架构设计(支持 GB28181/RTSP 与源码交付)
在智能视频分析(IVA)与产业物联网(IoT)大行其道的今天,政企级安防项目的落地依然面临着严重的碎片化挑战。对于系统集成商和独立软件开发商(ISV)而言,传统的流媒体研发存在两大核心痛…
解耦品牌壁垒:基于 Docker 与边缘计算的高并发视频中台架构(支持 GB28181/RTSP 统一接入与源码交付)
在泛安防与产业物联网(IoT)工程落地中,系统集成商与技术团队往往深陷于底层流媒体对接的碎片化泥潭。一方面,前端摄像机、IPC、NVR 品牌林立(如海康、大华、宇视等),其 GB28181 国标协议的信令交…
Win10/Win11下Realtek 8188GU网卡驱动感叹号?别急着扔,试试这个手动安装的野路子
Realtek 8188GU网卡驱动故障深度修复指南:从原理到实战当设备管理器里那个顽固的黄色感叹号挥之不去,而你已经尝试了所有"标准操作"——Windows自动更新、第三方驱动工具、甚至重启大法——却依然无济于事时,是时候换个思路了。这篇…
AnolisOS 8.8安装源配置踩坑实录:从‘设置基础软件仓库时出错’到成功联网的保姆级指南
AnolisOS 8.8安装源配置实战指南:从诊断到解决方案的全流程解析当你在安装AnolisOS 8.8时遇到"设置基础软件仓库时出错"的提示,这通常意味着系统无法访问或识别安装源。这个问题看似简单,但背后可能涉及网络配置、镜像选择、启动参…
基于树莓派Pico的反应速度测试游戏:从GPIO编程到状态机实战
1. 项目概述与核心思路最近在整理工作室的电子元件,翻出来几个闲置的街机按钮和一块树莓派Pico,灵机一动,决定做个简单又有趣的反应速度测试游戏。这个项目非常适合想入门嵌入式开发的朋友,它不涉及复杂的传感器和通信协议&#x…
Zotero Duplicates Merger:5步彻底清理文献库重复条目
Zotero Duplicates Merger:5步彻底清理文献库重复条目 【免费下载链接】ZoteroDuplicatesMerger A zotero plugin to automatically merge duplicate items 项目地址: https://gitcode.com/gh_mirrors/zo/ZoteroDuplicatesMerger 还在为文献库中堆积如山的重…
利用随机有限集理论对蜂群的ILQR和MPC控制研究附Matlab代码
✅作者简介:热爱科研的Matlab仿真开发者,擅长数据处理、建模仿真、程序设计、完整代码获取、论文复现及科研仿真。🍎 往期回顾关注个人主页:Matlab科研工作室🍊个人信条:格物致知,完整Matlab代码及仿真咨询…
为什么你的Gemini邮件CTE低于行业均值2.8倍?:从Prompt架构到发送时序的深度归因
更多请点击: https://intelliparadigm.com 第一章:为什么你的Gemini邮件CTE低于行业均值2.8倍?:从Prompt架构到发送时序的深度归因 Gemini邮件的客户转化效率(CTE)显著偏低,根本原因常被误判为…