Feat: Add Load-Balancing for multiple API KEYS

[jorschac]

Description

This PR introduces a unified LLMService layer that abstracts LLM API calls across multiple providers with built-in load balancing for API keys. The refactoring improves maintainability, scalability, and reliability of the LLM integration. The relevant Feature Request can be found here: #445

Key Changes

1. New LLM Service Layer (api/llm.py)

• Created LLMService class as a unified interface for all LLM providers
• Implemented load balancing across multiple API keys per provider using least-used and least-recently-used strategies
• Added support for synchronous, asynchronous, streaming, and batch invocation methods
• Singleton pattern ensures consistent state across the application
• Provider-agnostic design supports Google, OpenAI, OpenRouter, Azure, Ollama, Bedrock, and Dashscope

2. Configuration Management (api/config.py, api/config/api_keys.json)

• Added load_api_keys_config() function to load API keys from configuration files or environment variables
• Enhanced replace_env_placeholders() to support ${ENV_VAR} placeholder substitution in JSON configs
• Implemented comma-separated API key parsing for easy multi-key configuration
• Created api/config/api_keys.json for centralized API key management

3. OpenAI Client Improvements (api/openai_client.py)

• Fixed missing usage field in non-streaming responses
• Added proper handling for streaming responses that include usage information
• Improved error handling with fallback to None values when usage data is unavailable
• Maintained backward compatibility with existing adalflow interfaces

4. Streaming Interface Integration

• api/simple_chat.py: Replaced direct client instantiation with LLMService.async_invoke_stream()
• api/websocket_wiki.py: Replaced direct client instantiation with LLMService.async_invoke_stream()
• Maintained all original input/output parameters and streaming behavior
• Preserved provider-specific post-processing logic (e.g., Ollama thinking tags)
• Added graceful fallback handling for token limit errors

5. Testing Infrastructure

• Created tests/unit/test_balance_loading.py to verify load balancing functionality
• Implemented tests for API key configuration loading and distribution
• Added visual reporting for load balancing statistics

6. Documentation

• Added .env.example template for environment variable setup

Type of Change

• Bug fix
• New feature
• Breaking change
• Documentation update

Testing

• Tests pass locally
• Added new tests
• Updated existing tests

Checklist

• Code follows style guidelines
• Self-reviewed my code
• Commented complex code
• Updated documentation
• No breaking changes

[gemini-code-assist]

Summary of Changes

Hello @jorschac, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly refactors the application's interaction with Large Language Models by introducing a robust and unified LLM service layer. This new layer centralizes API key management, implements intelligent load balancing across multiple keys for various providers, and streamlines both synchronous and asynchronous LLM invocations. The changes enhance the system's maintainability, scalability, and reliability by abstracting provider-specific complexities and improving error handling, particularly for streaming responses and token usage tracking.

Highlights

• New LLM Service Layer: Introduced a unified LLMService class (api/llm.py) that abstracts LLM API calls across multiple providers. It includes built-in load balancing for API keys using least-used and least-recently-used strategies, supports synchronous, asynchronous, streaming, and batch invocation methods, and is designed as a singleton for consistent state. It's provider-agnostic, supporting Google, OpenAI, OpenRouter, Azure, Ollama, Bedrock, and Dashscope.
• Enhanced Configuration Management: Added load_api_keys_config() in api/config.py to load API keys from configuration files or environment variables. This includes support for ${ENV_VAR} placeholder substitution and parsing comma-separated API keys. A new api/config/api_keys.json file centralizes API key management.
• OpenAI Client Improvements: Fixed missing usage field in non-streaming responses and improved handling for streaming responses to correctly include usage information. Error handling was enhanced with fallback to None values when usage data is unavailable, while maintaining backward compatibility.
• Streaming Interface Integration: Refactored api/simple_chat.py and api/websocket_wiki.py to utilize the new LLMService.async_invoke_stream() for all LLM calls, replacing direct client instantiations. This preserves original input/output parameters, streaming behavior, and provider-specific post-processing logic (e.g., Ollama thinking tags), and adds graceful fallback for token limit errors.
• New Testing Infrastructure: A new unit test file (tests/unit/test_balance_loading.py) was created to verify the load balancing functionality and API key configuration loading and distribution, including visual reporting for load balancing statistics.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a significant and valuable refactoring by adding a unified LLMService layer. This new service abstracts LLM API calls across multiple providers and implements load balancing for API keys, which greatly improves maintainability, scalability, and reliability. The code is well-structured, and the inclusion of configuration files and a new test suite is excellent. However, I have identified a critical thread-safety issue related to how API keys are handled for some providers, which could lead to race conditions and incorrect behavior in a concurrent environment. I've also pointed out another race condition in the load balancing logic and a suggestion to improve timeout handling for parallel requests. Addressing these points will make the new service robust and ready for production use.

[gemini-code-assist]

This method modifies os.environ to set API keys for providers like google and dashscope. Since os.environ is a global, process-wide state, modifying it without synchronization in a multi-threaded context (as used in parallel_invoke) will cause a race condition. One thread might set an API key, but another thread could overwrite it before the first thread's client is initialized or used, leading to incorrect key usage, failed requests, and broken load balancing.

Recommendation:
The best solution is to refactor the underlying client classes (GoogleGenAIClient, DashscopeClient, etc.) to accept the api_key directly in their constructor, similar to how OpenAIClient is handled. Since DashscopeClient is part of this repository, it can be updated to support this.

If modifying the client classes is not feasible, you must protect the environment variable modification and client instantiation with a lock. For example:

# At class level
import threading
...
class LLMService:
    ...
    def __init__(...):
        ...
        self._client_creation_lock = threading.Lock()
        ...

    def _get_client(self, provider: str, api_key: Optional[str] = None):
        ...
        # For providers that use environment variables
        if provider in ["google", "dashscope"]:
            with self._client_creation_lock:
                # Temporarily set env var, create client, then unset
                env_var = f"{provider.upper()}_API_KEY"
                original_value = os.environ.get(env_var)
                try:
                    if api_key:
                        os.environ[env_var] = api_key
                    client = model_client_class()
                finally:
                    # Restore original env var value
                    if original_value is not None:
                        os.environ[env_var] = original_value
                    elif api_key:
                        del os.environ[env_var]
        else:
            # Existing logic for other providers
            ...

However, passing the key to the constructor is strongly preferred for cleaner, safer code.

[sng-asyncfunc]

We should address this.

[gemini-code-assist]

The logic for selecting the next API key and updating usage statistics is not thread-safe. In parallel_invoke, multiple threads can call this method concurrently. This can lead to a race condition where multiple threads read the same usage counts, increment them, and then one thread's update is overwritten by another's. This would result in an incorrect usage count and defeat the purpose of the load balancing strategy.

To ensure atomicity of the key selection and statistics update, you should use a threading.Lock.

1. Add import threading at the top of the file.
2. Initialize a lock in LLMService.__init__:

   self._key_selection_lock = threading.Lock()

3. Use the lock in get_next_api_key to protect the critical section as shown in the suggestion.

The same lock should also be used in reset_key_usage_stats to ensure thread safety when resetting statistics.

Suggested change

	# Load balancing logic: select the key with the least usage and the least recently used
	current_time = time.time()
	best_key = min(
	keys,
	key=lambda k: (
	self.provider_key_usage[provider][str(k)],
	self.provider_key_last_used[provider][str(k)]
	)
	)
	# 更新统计
	best_key_str = str(best_key)
	self.provider_key_usage[provider][best_key_str] += 1
	self.provider_key_last_used[provider][best_key_str] = current_time
	logger.debug(f"Selected API key for {provider}: {best_key[:8]}...{best_key[-4:]}")
	return best_key
	with self._key_selection_lock:
	# Load balancing logic: select the key with the least usage and the least recently used
	current_time = time.time()
	best_key = min(
	keys,
	key=lambda k: (
	self.provider_key_usage[provider][str(k)],
	self.provider_key_last_used[provider][str(k)]
	)
	)
	# 更新统计
	best_key_str = str(best_key)
	self.provider_key_usage[provider][best_key_str] += 1
	self.provider_key_last_used[provider][best_key_str] = current_time
	logger.debug(f"Selected API key for {provider}: {best_key[:8]}...{best_key[-4:]}")
	return best_key

[gemini-code-assist]

The timeout parameter on as_completed applies to the entire batch of futures, not to each individual future. If any single request takes longer than the timeout, as_completed will raise a TimeoutError, terminating the loop and leaving unprocessed futures. This is likely not the intended behavior, which is typically a per-request timeout.

For a more robust per-request timeout, you should remove the timeout from as_completed and apply it to future.result(). This allows you to handle timeouts for individual requests gracefully.

Remember to import TimeoutError from concurrent.futures at the top of the file.

            # Collect results
            completed = 0
            for future in as_completed(future_to_index):
                index = future_to_index[future]
                try:
                    result = future.result(timeout=timeout)
                    results[index] = result
                    completed += 1
                    
                    if completed % 5 == 0 or completed == len(requests):
                        logger.info(f"Completed {completed}/{len(requests)} requests")
                        
                except TimeoutError:
                    logger.error(f"Request {index} timed out after {timeout} seconds")
                    results[index] = {
                        "index": index,
                        "error": f"Request timed out after {timeout} seconds",
                        "request_data": requests[index]
                    }
                except Exception as e:
                    logger.error(f"Request {index} failed: {str(e)}")
                    results[index] = {
                        "index": index,
                        "error": str(e),
                        "request_data": requests[index]
                    }