diff --git a/controller/channel-billing.go b/controller/channel-billing.go
index 751ee3600ac..a978241808c 100644
--- a/controller/channel-billing.go
+++ b/controller/channel-billing.go
@@ -6,7 +6,9 @@ import (
 	"fmt"
 	"io"
 	"net/http"
+	"net/url"
 	"strconv"
+	"strings"
 	"time"
 
 	"github.com/QuantumNous/new-api/common"
@@ -356,6 +358,118 @@ func updateChannelMoonshotBalance(channel *model.Channel) (float64, error) {
 	return availableBalanceUsd, nil
 }
 
+// Costs API response structures (https://platform.openai.com/docs/api-reference/usage/costs)
+
+const openAICostsMaxPages = 50 // safety cap for pagination; daily buckets over a month never exceed this
+
+type openAICostsResponse struct {
+	Object   string             `json:"object"`
+	Data     []openAICostBucket `json:"data"`
+	HasMore  bool               `json:"has_more"`
+	NextPage string             `json:"next_page"`
+}
+
+type openAICostBucket struct {
+	Object    string             `json:"object"`
+	StartTime int64              `json:"start_time"`
+	EndTime   int64              `json:"end_time"`
+	Results   []openAICostResult `json:"results"`
+}
+
+type openAICostResult struct {
+	Object string           `json:"object"`
+	Amount openAICostAmount `json:"amount"`
+}
+
+type openAICostAmount struct {
+	Value    float64 `json:"value"`
+	Currency string  `json:"currency"`
+}
+
+// updateChannelOpenAIBalance fetches OpenAI usage via the Costs API and writes a balance
+// value into channel.Balance. Requires an admin-scoped key (sk-admin-...) stored in
+// channel.other_settings.openai_admin_key. The legacy /v1/dashboard/billing endpoints were
+// deprecated by OpenAI; this function is their replacement.
+//
+// Two modes are supported:
+//   - Prepaid remaining: if both OpenAIPrepaidAmount > 0 and OpenAIPrepaidSince > 0 are set,
+//     costs are summed from OpenAIPrepaidSince to now, and the returned balance is
+//     OpenAIPrepaidAmount - total_costs (clamped to 0).
+//   - Month-to-date spend (fallback): otherwise, costs are summed from the 1st of the current
+//     UTC month to now and returned as-is.
+func updateChannelOpenAIBalance(channel *model.Channel) (float64, error) {
+	settings := channel.GetOtherSettings()
+	adminKey := strings.TrimSpace(settings.OpenAIAdminKey)
+	if adminKey == "" {
+		return 0, errors.New("openai admin key is not set; configure channel.other_settings.openai_admin_key")
+	}
+
+	baseURL := channel.GetBaseURL()
+	if baseURL == "" {
+		baseURL = constant.ChannelBaseURLs[channel.Type]
+	}
+
+	now := time.Now().UTC()
+	prepaidMode := settings.OpenAIPrepaidAmount > 0 && settings.OpenAIPrepaidSince > 0
+	var start int64
+	if prepaidMode {
+		start = settings.OpenAIPrepaidSince
+	} else {
+		start = time.Date(now.Year(), now.Month(), 1, 0, 0, 0, 0, time.UTC).Unix()
+	}
+	end := now.Unix()
+
+	var total float64
+	pageToken := ""
+	exhausted := true
+	for iter := 0; iter < openAICostsMaxPages; iter++ {
+		query := url.Values{}
+		query.Set("start_time", strconv.FormatInt(start, 10))
+		query.Set("end_time", strconv.FormatInt(end, 10))
+		query.Set("limit", "31")
+		if pageToken != "" {
+			query.Set("page", pageToken)
+		}
+		fullURL := fmt.Sprintf("%s/v1/organization/costs?%s", baseURL, query.Encode())
+
+		body, err := GetResponseBody("GET", fullURL, channel, GetAuthHeader(adminKey))
+		if err != nil {
+			return 0, fmt.Errorf("fetch openai usage: %w", err)
+		}
+
+		var resp openAICostsResponse
+		if err := common.Unmarshal(body, &resp); err != nil {
+			return 0, fmt.Errorf("parse openai usage: %w", err)
+		}
+
+		for _, bucket := range resp.Data {
+			for _, result := range bucket.Results {
+				total += result.Amount.Value
+			}
+		}
+
+		if !resp.HasMore || resp.NextPage == "" {
+			exhausted = false
+			break
+		}
+		pageToken = resp.NextPage
+	}
+	if exhausted {
+		return total, fmt.Errorf("openai costs pagination did not terminate after %d pages", openAICostsMaxPages)
+	}
+
+	balance := total
+	if prepaidMode {
+		balance = settings.OpenAIPrepaidAmount - total
+		if balance < 0 {
+			balance = 0
+		}
+	}
+
+	channel.UpdateBalance(balance)
+	return balance, nil
+}
+
 func updateChannelBalance(channel *model.Channel) (float64, error) {
 	baseURL := constant.ChannelBaseURLs[channel.Type]
 	if channel.GetBaseURL() == "" {
@@ -363,9 +477,7 @@ func updateChannelBalance(channel *model.Channel) (float64, error) {
 	}
 	switch channel.Type {
 	case constant.ChannelTypeOpenAI:
-		if channel.GetBaseURL() != "" {
-			baseURL = channel.GetBaseURL()
-		}
+		return updateChannelOpenAIBalance(channel)
 	case constant.ChannelTypeAzure:
 		return 0, errors.New("尚未实现")
 	case constant.ChannelTypeCustom:
diff --git a/controller/channel.go b/controller/channel.go
index 217351703fc..db49f584cca 100644
--- a/controller/channel.go
+++ b/controller/channel.go
@@ -67,6 +67,13 @@ func clearChannelInfo(channel *model.Channel) {
 		channel.ChannelInfo.MultiKeyDisabledReason = nil
 		channel.ChannelInfo.MultiKeyDisabledTime = nil
 	}
+	// Strip secrets embedded in OtherSettings JSON (e.g. OpenAIAdminKey) before serializing
+	// the channel back to API clients. The inference Key column is already cleared either via
+	// gorm Omit("key") at the query layer or by explicit channel.Key = "" in the caller.
+	if other := channel.GetOtherSettings(); other.OpenAIAdminKey != "" {
+		other.OpenAIAdminKey = ""
+		channel.SetOtherSettings(other)
+	}
 }
 
 func applyChannelStatusFilter(query *gorm.DB, statusFilter int) *gorm.DB {
@@ -889,6 +896,19 @@ func UpdateChannel(c *gin.Context) {
 	// Always copy the original ChannelInfo so that fields like IsMultiKey and MultiKeySize are retained.
 	channel.ChannelInfo = originChannel.ChannelInfo
 
+	// Preserve secrets embedded in OtherSettings when the client sends an empty value.
+	// The form masks OpenAIAdminKey on edit (the GET endpoint never returns it), so an empty
+	// admin_key in the PUT payload means "keep existing", not "clear". Without this merge,
+	// gorm's struct-based Updates(channel) would overwrite settings JSON wholesale.
+	incomingOther := channel.GetOtherSettings()
+	if incomingOther.OpenAIAdminKey == "" {
+		originOther := originChannel.GetOtherSettings()
+		if originOther.OpenAIAdminKey != "" {
+			incomingOther.OpenAIAdminKey = originOther.OpenAIAdminKey
+			channel.SetOtherSettings(incomingOther)
+		}
+	}
+
 	// If the request explicitly specifies a new MultiKeyMode, apply it on top of the original info.
 	if channel.MultiKeyMode != nil && *channel.MultiKeyMode != "" {
 		channel.ChannelInfo.MultiKeyMode = constant.MultiKeyMode(*channel.MultiKeyMode)
diff --git a/controller/channel_billing_test.go b/controller/channel_billing_test.go
new file mode 100644
index 00000000000..ee5e47df872
--- /dev/null
+++ b/controller/channel_billing_test.go
@@ -0,0 +1,338 @@
+package controller
+
+import (
+	"fmt"
+	"net/http"
+	"net/http/httptest"
+	"net/url"
+	"strconv"
+	"testing"
+	"time"
+
+	"github.com/QuantumNous/new-api/common"
+	"github.com/QuantumNous/new-api/constant"
+	"github.com/QuantumNous/new-api/dto"
+	"github.com/QuantumNous/new-api/model"
+
+	"github.com/stretchr/testify/require"
+)
+
+// buildOpenAIChannelWithAdminKey creates an in-memory OpenAI channel pointing at the given baseURL.
+// adminKey is stored inside ChannelOtherSettings.OpenAIAdminKey. If empty, the field is omitted.
+func buildOpenAIChannelWithAdminKey(t *testing.T, baseURL, adminKey string) *model.Channel {
+	t.Helper()
+	require.NoError(t, model.DB.AutoMigrate(&model.Channel{}))
+	settings := dto.ChannelOtherSettings{}
+	if adminKey != "" {
+		settings.OpenAIAdminKey = adminKey
+	}
+	encoded, err := common.Marshal(settings)
+	require.NoError(t, err)
+	bURL := baseURL
+	ch := &model.Channel{
+		Type:          constant.ChannelTypeOpenAI,
+		Key:           "sk-fake-inference-key",
+		Status:        1,
+		Name:          "test-openai",
+		BaseURL:       &bURL,
+		OtherSettings: string(encoded),
+	}
+	require.NoError(t, model.DB.Create(ch).Error)
+	return ch
+}
+
+// firstDayOfCurrentMonthUTC returns the Unix timestamp of the 1st day of the current month at 00:00 UTC.
+func firstDayOfCurrentMonthUTC() int64 {
+	now := time.Now().UTC()
+	return time.Date(now.Year(), now.Month(), 1, 0, 0, 0, 0, time.UTC).Unix()
+}
+
+func TestUpdateChannelOpenAIBalance_SingleBucket(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	var capturedAuth string
+	var capturedQuery url.Values
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		capturedAuth = r.Header.Get("Authorization")
+		capturedQuery = r.URL.Query()
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `{
+			"object": "page",
+			"data": [
+				{
+					"object": "bucket",
+					"start_time": 1747008000,
+					"end_time": 1747094400,
+					"results": [
+						{"object": "organization.costs.result", "amount": {"value": 10.5, "currency": "usd"}}
+					]
+				}
+			],
+			"has_more": false,
+			"next_page": ""
+		}`)
+	}))
+	defer ts.Close()
+
+	ch := buildOpenAIChannelWithAdminKey(t, ts.URL, "sk-admin-test")
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+	require.InDelta(t, 10.5, balance, 0.001)
+	require.Equal(t, "Bearer sk-admin-test", capturedAuth)
+	require.Equal(t, strconv.FormatInt(firstDayOfCurrentMonthUTC(), 10), capturedQuery.Get("start_time"))
+
+	var fresh model.Channel
+	require.NoError(t, model.DB.First(&fresh, ch.Id).Error)
+	require.InDelta(t, 10.5, fresh.Balance, 0.001)
+}
+
+func TestUpdateChannelOpenAIBalance_Pagination(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	callCount := 0
+	var capturedTokenOnSecondCall string
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		callCount++
+		w.Header().Set("Content-Type", "application/json")
+		if callCount == 1 {
+			_, _ = fmt.Fprint(w, `{
+				"object": "page",
+				"data": [{"object": "bucket","start_time": 1747008000,"end_time": 1747094400,
+					"results": [{"object": "organization.costs.result","amount": {"value": 5.0,"currency": "usd"}}]}],
+				"has_more": true,
+				"next_page": "page-token-2"
+			}`)
+			return
+		}
+		capturedTokenOnSecondCall = r.URL.Query().Get("page")
+		_, _ = fmt.Fprint(w, `{
+			"object": "page",
+			"data": [{"object": "bucket","start_time": 1747094400,"end_time": 1747180800,
+				"results": [{"object": "organization.costs.result","amount": {"value": 7.25,"currency": "usd"}}]}],
+			"has_more": false,
+			"next_page": ""
+		}`)
+	}))
+	defer ts.Close()
+
+	ch := buildOpenAIChannelWithAdminKey(t, ts.URL, "sk-admin-test")
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+	require.Equal(t, 2, callCount)
+	require.Equal(t, "page-token-2", capturedTokenOnSecondCall)
+	require.InDelta(t, 12.25, balance, 0.001)
+}
+
+func TestUpdateChannelOpenAIBalance_NoAdminKey(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+	ch := buildOpenAIChannelWithAdminKey(t, "http://unused", "")
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.Error(t, err)
+	require.Contains(t, err.Error(), "openai admin key is not set")
+	require.Equal(t, float64(0), balance)
+
+	var fresh model.Channel
+	require.NoError(t, model.DB.First(&fresh, ch.Id).Error)
+	require.Equal(t, float64(0), fresh.Balance)
+}
+
+func TestUpdateChannelOpenAIBalance_Upstream403(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusForbidden)
+		_, _ = fmt.Fprint(w, `{"error":{"message":"missing scope","type":"insufficient_permissions"}}`)
+	}))
+	defer ts.Close()
+
+	ch := buildOpenAIChannelWithAdminKey(t, ts.URL, "sk-admin-test")
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.Error(t, err)
+	require.Contains(t, err.Error(), "status code: 403")
+	require.Equal(t, float64(0), balance)
+
+	var fresh model.Channel
+	require.NoError(t, model.DB.First(&fresh, ch.Id).Error)
+	require.Equal(t, float64(0), fresh.Balance)
+}
+
+func TestUpdateChannelOpenAIBalance_BadJSON(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `not-json-garbage`)
+	}))
+	defer ts.Close()
+
+	ch := buildOpenAIChannelWithAdminKey(t, ts.URL, "sk-admin-test")
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.Error(t, err)
+	require.Contains(t, err.Error(), "parse openai usage")
+	require.Equal(t, float64(0), balance)
+}
+
+func TestUpdateChannelOpenAIBalance_StartTimeIsFirstOfMonthUTC(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	var got url.Values
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		got = r.URL.Query()
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `{"object":"page","data":[],"has_more":false,"next_page":""}`)
+	}))
+	defer ts.Close()
+
+	ch := buildOpenAIChannelWithAdminKey(t, ts.URL, "sk-admin-test")
+	_, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+
+	now := time.Now().UTC()
+	wantStart := time.Date(now.Year(), now.Month(), 1, 0, 0, 0, 0, time.UTC).Unix()
+	require.Equal(t, strconv.FormatInt(wantStart, 10), got.Get("start_time"))
+
+	endStr := got.Get("end_time")
+	require.NotEmpty(t, endStr)
+	endParsed, err := strconv.ParseInt(endStr, 10, 64)
+	require.NoError(t, err)
+	require.GreaterOrEqual(t, endParsed, wantStart)
+	require.LessOrEqual(t, endParsed-now.Unix(), int64(5))
+
+	require.Equal(t, "31", got.Get("limit"))
+}
+
+func TestUpdateChannelOpenAIBalance_PrepaidRemaining(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	var capturedQuery url.Values
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		capturedQuery = r.URL.Query()
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `{
+            "object": "page",
+            "data": [{"object": "bucket","start_time": 0,"end_time": 0,
+                "results": [{"object": "organization.costs.result","amount": {"value": 3.25,"currency": "usd"}}]}],
+            "has_more": false,
+            "next_page": ""
+        }`)
+	}))
+	defer ts.Close()
+
+	settings := dto.ChannelOtherSettings{
+		OpenAIAdminKey:      "sk-admin-test",
+		OpenAIPrepaidAmount: 20.0,
+		OpenAIPrepaidSince:  1700000000,
+	}
+	require.NoError(t, model.DB.AutoMigrate(&model.Channel{}))
+	encoded, _ := common.Marshal(settings)
+	bURL := ts.URL
+	ch := &model.Channel{
+		Type: constant.ChannelTypeOpenAI, Key: "sk-fake",
+		Status: 1, Name: "test", BaseURL: &bURL,
+		OtherSettings: string(encoded),
+	}
+	require.NoError(t, model.DB.Create(ch).Error)
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+	require.InDelta(t, 16.75, balance, 0.001) // 20.0 - 3.25 remaining
+	require.Equal(t, "1700000000", capturedQuery.Get("start_time"))
+}
+
+func TestUpdateChannelOpenAIBalance_PrepaidExhausted(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `{
+            "object": "page",
+            "data": [{"object": "bucket","start_time": 0,"end_time": 0,
+                "results": [{"object": "organization.costs.result","amount": {"value": 25.0,"currency": "usd"}}]}],
+            "has_more": false,
+            "next_page": ""
+        }`)
+	}))
+	defer ts.Close()
+
+	settings := dto.ChannelOtherSettings{
+		OpenAIAdminKey: "sk-admin-test", OpenAIPrepaidAmount: 20.0, OpenAIPrepaidSince: 1700000000,
+	}
+	require.NoError(t, model.DB.AutoMigrate(&model.Channel{}))
+	encoded, _ := common.Marshal(settings)
+	bURL := ts.URL
+	ch := &model.Channel{
+		Type: constant.ChannelTypeOpenAI, Key: "sk-fake",
+		Status: 1, Name: "test", BaseURL: &bURL,
+		OtherSettings: string(encoded),
+	}
+	require.NoError(t, model.DB.Create(ch).Error)
+
+	balance, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+	require.Equal(t, float64(0), balance) // cost > prepaid: clamp to 0
+}
+
+func TestUpdateChannelOpenAIBalance_PrepaidPartialUnsetFallsBackToMTD(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+
+	var capturedQuery url.Values
+	ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		capturedQuery = r.URL.Query()
+		w.Header().Set("Content-Type", "application/json")
+		_, _ = fmt.Fprint(w, `{
+            "object": "page",
+            "data": [],
+            "has_more": false,
+            "next_page": ""
+        }`)
+	}))
+	defer ts.Close()
+
+	// Only prepaid_amount set, NOT prepaid_since — should fall back to MTD
+	settings := dto.ChannelOtherSettings{
+		OpenAIAdminKey: "sk-admin-test", OpenAIPrepaidAmount: 20.0, // OpenAIPrepaidSince: 0 (unset)
+	}
+	require.NoError(t, model.DB.AutoMigrate(&model.Channel{}))
+	encoded, _ := common.Marshal(settings)
+	bURL := ts.URL
+	ch := &model.Channel{
+		Type: constant.ChannelTypeOpenAI, Key: "sk-fake",
+		Status: 1, Name: "test", BaseURL: &bURL,
+		OtherSettings: string(encoded),
+	}
+	require.NoError(t, model.DB.Create(ch).Error)
+
+	_, err := updateChannelOpenAIBalance(ch)
+	require.NoError(t, err)
+	// start_time should be 1st of current month UTC (fallback path)
+	require.Equal(t, strconv.FormatInt(firstDayOfCurrentMonthUTC(), 10), capturedQuery.Get("start_time"))
+}
+
+// TestChannelClean_RemovesOpenAIAdminKey verifies that Channel.Clean zeroes out the inference
+// Key column AND the OpenAIAdminKey nested in OtherSettings JSON. This is the core masking
+// guarantee that prevents the admin key from being exposed in GET /api/channel/<id> responses
+// or in the channel list / search payloads.
+func TestChannelClean_RemovesOpenAIAdminKey(t *testing.T) {
+	_ = openTokenControllerTestDB(t)
+	settingsBytes, err := common.Marshal(dto.ChannelOtherSettings{OpenAIAdminKey: "sk-admin-secret"})
+	require.NoError(t, err)
+	bURL := "http://x"
+	ch := &model.Channel{
+		Type:          constant.ChannelTypeOpenAI,
+		Key:           "sk-secret",
+		Status:        1,
+		BaseURL:       &bURL,
+		OtherSettings: string(settingsBytes),
+	}
+
+	ch.Clean()
+
+	require.Equal(t, "", ch.Key, "inference key must be masked")
+	other := ch.GetOtherSettings()
+	require.Equal(t, "", other.OpenAIAdminKey, "openai admin key must be stripped from OtherSettings")
+}
diff --git a/dto/channel_settings.go b/dto/channel_settings.go
index b6a1ab9f713..ecbdadeb6f9 100644
--- a/dto/channel_settings.go
+++ b/dto/channel_settings.go
@@ -35,6 +35,9 @@ type ChannelOtherSettings struct {
 	DisableStore                          bool          `json:"disable_store,omitempty"`             // 是否禁用 store 透传（默认允许透传，禁用后可能导致 Codex 无法使用）
 	AllowIncludeObfuscation               bool          `json:"allow_include_obfuscation,omitempty"` // 是否允许 stream_options.include_obfuscation 透传（默认过滤以避免关闭流混淆保护）
 	AwsKeyType                            AwsKeyType    `json:"aws_key_type,omitempty"`
+	OpenAIAdminKey                        string        `json:"openai_admin_key,omitempty"`
+	OpenAIPrepaidAmount                   float64       `json:"openai_prepaid_amount,omitempty"`
+	OpenAIPrepaidSince                    int64         `json:"openai_prepaid_since,omitempty"`
 	UpstreamModelUpdateCheckEnabled       bool          `json:"upstream_model_update_check_enabled,omitempty"`        // 是否检测上游模型更新
 	UpstreamModelUpdateAutoSyncEnabled    bool          `json:"upstream_model_update_auto_sync_enabled,omitempty"`    // 是否自动同步上游模型更新
 	UpstreamModelUpdateLastCheckTime      int64         `json:"upstream_model_update_last_check_time,omitempty"`      // 上次检测时间
diff --git a/model/channel.go b/model/channel.go
index 3e6d1866a09..6ab9c4fdd83 100644
--- a/model/channel.go
+++ b/model/channel.go
@@ -961,6 +961,20 @@ func (channel *Channel) SetOtherSettings(setting dto.ChannelOtherSettings) {
 	channel.OtherSettings = string(settingBytes)
 }
 
+// Clean strips sensitive fields from the channel so it is safe to serialize back to API clients.
+// Currently masks the inference Key and the OpenAIAdminKey nested in OtherSettings.
+// Callers should invoke Clean (or controller-layer helpers that wrap it) before JSON-encoding
+// a channel in any response that is not an explicit "reveal secret" endpoint.
+func (channel *Channel) Clean() {
+	channel.Key = ""
+	// Also strip admin keys from other_settings JSON so they're never exposed in API responses.
+	other := channel.GetOtherSettings()
+	if other.OpenAIAdminKey != "" {
+		other.OpenAIAdminKey = ""
+		channel.SetOtherSettings(other)
+	}
+}
+
 func (channel *Channel) GetParamOverride() map[string]interface{} {
 	paramOverride := make(map[string]interface{})
 	if channel.ParamOverride != nil && *channel.ParamOverride != "" {
diff --git a/web/default/src/features/channels/components/drawers/channel-mutate-drawer.tsx b/web/default/src/features/channels/components/drawers/channel-mutate-drawer.tsx
index 39a6e1527b5..0aa5da5ac2a 100644
--- a/web/default/src/features/channels/components/drawers/channel-mutate-drawer.tsx
+++ b/web/default/src/features/channels/components/drawers/channel-mutate-drawer.tsx
@@ -2005,6 +2005,88 @@ export function ChannelMutateDrawer({
                   }}
                 />
 
+                {currentType === 1 && (
+                  <FormField
+                    control={form.control}
+                    name='openai_admin_key'
+                    render={({ field }) => {
+                      const adminKeyPlaceholder = isEditing
+                        ? t('Leave empty to keep existing admin key')
+                        : 'sk-admin-...'
+                      return (
+                        <FormItem>
+                          <FormLabel>{t('OpenAI Admin Key')}</FormLabel>
+                          <FormControl>
+                            <Textarea
+                              placeholder={adminKeyPlaceholder}
+                              rows={2}
+                              {...field}
+                            />
+                          </FormControl>
+                          <FormDescription>
+                            {t(
+                              'Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.'
+                            )}
+                          </FormDescription>
+                        </FormItem>
+                      )
+                    }}
+                  />
+                )}
+
+                {currentType === 1 && (
+                  <FormField
+                    control={form.control}
+                    name='openai_prepaid_amount'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>
+                          {t('OpenAI Prepaid Amount (USD)')}
+                        </FormLabel>
+                        <FormControl>
+                          <Input
+                            type='number'
+                            step='0.01'
+                            placeholder='20.00'
+                            {...field}
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t(
+                            'Total USD prepaid into the OpenAI account. Used together with "Prepaid since" to compute remaining balance.'
+                          )}
+                        </FormDescription>
+                      </FormItem>
+                    )}
+                  />
+                )}
+
+                {currentType === 1 && (
+                  <FormField
+                    control={form.control}
+                    name='openai_prepaid_since'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>
+                          {t('OpenAI Prepaid Since (Unix timestamp)')}
+                        </FormLabel>
+                        <FormControl>
+                          <Input
+                            type='number'
+                            placeholder='1700000000'
+                            {...field}
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t(
+                            'Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.'
+                          )}
+                        </FormDescription>
+                      </FormItem>
+                    )}
+                  />
+                )}
+
                 {currentType === 57 && (
                   <div className='bg-muted/20 space-y-3 rounded-lg border p-4'>
                     <div className='flex flex-col gap-2 sm:flex-row sm:items-center sm:justify-between'>
diff --git a/web/default/src/features/channels/lib/channel-form.ts b/web/default/src/features/channels/lib/channel-form.ts
index 03db2f2355f..d1798b9864a 100644
--- a/web/default/src/features/channels/lib/channel-form.ts
+++ b/web/default/src/features/channels/lib/channel-form.ts
@@ -66,6 +66,9 @@ export const channelFormSchema = z.object({
   vertex_key_type: z.enum(['json', 'api_key']).optional(), // Vertex AI specific
   aws_key_type: z.enum(['ak_sk', 'api_key']).optional(), // AWS specific
   azure_responses_version: z.string().optional(), // Azure specific
+  openai_admin_key: z.string().optional(), // OpenAI specific: admin key for usage statistics
+  openai_prepaid_amount: z.number().min(0),
+  openai_prepaid_since: z.number().int().min(0),
   // Field passthrough controls (stored in settings JSON)
   allow_service_tier: z.boolean().optional(), // OpenAI/Anthropic
   disable_store: z.boolean().optional(), // OpenAI only
@@ -124,6 +127,9 @@ export const CHANNEL_FORM_DEFAULT_VALUES: ChannelFormValues = {
   vertex_key_type: 'json',
   aws_key_type: 'ak_sk',
   azure_responses_version: '',
+  openai_admin_key: '',
+  openai_prepaid_amount: 0,
+  openai_prepaid_since: 0,
   // Field passthrough controls
   allow_service_tier: false,
   disable_store: false,
@@ -177,6 +183,9 @@ export function transformChannelToFormDefaults(
   // Parse type-specific settings from settings field
   let vertexKeyType: 'json' | 'api_key' = 'json'
   let azureResponsesVersion = ''
+  let openaiAdminKey = ''
+  let openaiPrepaidAmount = 0
+  let openaiPrepaidSince = 0
   let isEnterpriseAccount = false
   let awsKeyType: 'ak_sk' | 'api_key' = 'ak_sk'
   let allowServiceTier = false
@@ -195,6 +204,14 @@ export function transformChannelToFormDefaults(
       const parsed = JSON.parse(channel.settings)
       vertexKeyType = parsed.vertex_key_type || 'json'
       azureResponsesVersion = parsed.azure_responses_version || ''
+      // openai_admin_key is intentionally NOT loaded from the channel response — the
+      // backend masks it on read for security, and the field must start empty in edit
+      // mode so the user can leave it blank to preserve the existing value.
+      openaiAdminKey = ''
+      // openai_prepaid_amount and openai_prepaid_since are NOT masked by the backend,
+      // so they're safe to round-trip through edit mode.
+      openaiPrepaidAmount = parsed.openai_prepaid_amount ?? 0
+      openaiPrepaidSince = parsed.openai_prepaid_since ?? 0
       isEnterpriseAccount = parsed.openrouter_enterprise === true
       awsKeyType = parsed.aws_key_type || 'ak_sk'
       allowServiceTier = parsed.allow_service_tier === true
@@ -251,6 +268,9 @@ export function transformChannelToFormDefaults(
     is_enterprise_account: isEnterpriseAccount,
     vertex_key_type: vertexKeyType,
     azure_responses_version: azureResponsesVersion,
+    openai_admin_key: openaiAdminKey,
+    openai_prepaid_amount: openaiPrepaidAmount,
+    openai_prepaid_since: openaiPrepaidSince,
     aws_key_type: awsKeyType,
     allow_service_tier: allowServiceTier,
     disable_store: disableStore,
@@ -310,6 +330,38 @@ function buildSettingsJSON(formData: ChannelFormValues): string {
     delete settingsObj.azure_responses_version
   }
 
+  // Add openai_admin_key for OpenAI channels (type 1).
+  // Empty value means "keep existing" — backend preserves the stored admin key when the
+  // payload omits it, mirroring the behavior of the main inference `key` field. Do NOT
+  // delete the field on empty here; let the backend reconcile.
+  if (formData.type === 1) {
+    if (formData.openai_admin_key) {
+      settingsObj.openai_admin_key = formData.openai_admin_key
+    } else {
+      // Strip any masked/empty value carried over from the parsed `settings` field so we
+      // don't send a stray empty string; backend will copy the existing value from DB.
+      delete settingsObj.openai_admin_key
+    }
+    if ((formData.openai_prepaid_amount ?? 0) > 0) {
+      settingsObj.openai_prepaid_amount = formData.openai_prepaid_amount
+    } else {
+      delete settingsObj.openai_prepaid_amount
+    }
+    if ((formData.openai_prepaid_since ?? 0) > 0) {
+      settingsObj.openai_prepaid_since = formData.openai_prepaid_since
+    } else {
+      delete settingsObj.openai_prepaid_since
+    }
+  } else if ('openai_admin_key' in settingsObj) {
+    delete settingsObj.openai_admin_key
+    if ('openai_prepaid_amount' in settingsObj) {
+      delete settingsObj.openai_prepaid_amount
+    }
+    if ('openai_prepaid_since' in settingsObj) {
+      delete settingsObj.openai_prepaid_since
+    }
+  }
+
   // Add enterprise account setting for OpenRouter (type 20)
   if (formData.type === 20) {
     settingsObj.openrouter_enterprise = formData.is_enterprise_account === true
diff --git a/web/default/src/i18n/locales/_reports/_sync-report.json b/web/default/src/i18n/locales/_reports/_sync-report.json
index 771b6f6550a..7a9f7096440 100644
--- a/web/default/src/i18n/locales/_reports/_sync-report.json
+++ b/web/default/src/i18n/locales/_reports/_sync-report.json
@@ -11,25 +11,25 @@
       "file": "fr.json",
       "missingCount": 0,
       "extrasCount": 0,
-      "untranslatedCount": 21
+      "untranslatedCount": 24
     },
     "ja": {
       "file": "ja.json",
       "missingCount": 0,
       "extrasCount": 0,
-      "untranslatedCount": 120
+      "untranslatedCount": 127
     },
     "ru": {
       "file": "ru.json",
       "missingCount": 0,
       "extrasCount": 0,
-      "untranslatedCount": 135
+      "untranslatedCount": 136
     },
     "vi": {
       "file": "vi.json",
       "missingCount": 0,
       "extrasCount": 0,
-      "untranslatedCount": 23
+      "untranslatedCount": 26
     },
     "zh": {
       "file": "zh.json",
diff --git a/web/default/src/i18n/locales/_reports/fr.untranslated.json b/web/default/src/i18n/locales/_reports/fr.untranslated.json
index ee15fa5f08f..ba3f91bb73a 100644
--- a/web/default/src/i18n/locales/_reports/fr.untranslated.json
+++ b/web/default/src/i18n/locales/_reports/fr.untranslated.json
@@ -6,6 +6,7 @@
   "I have read and understood the above compliance reminder": "I have read and understood the above compliance reminder",
   "I have read and understood the above compliance reminder, acknowledge the related legal risks, and confirm that I bear legal responsibility arising from deployment, operation, and charging behavior.": "I have read and understood the above compliance reminder, acknowledge the related legal risks, and confirm that I bear legal responsibility arising from deployment, operation, and charging behavior.",
   "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.": "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.",
+  "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
   "operation and charging behavior": "operation and charging behavior",
   "Payment, redemption codes, subscription plans, and invitation rewards are locked until the root administrator confirms the compliance terms.": "Payment, redemption codes, subscription plans, and invitation rewards are locked until the root administrator confirms the compliance terms.",
   "Please type the following text to confirm:": "Please type the following text to confirm:",
@@ -14,7 +15,9 @@
   "Subscription plan creation and changes are locked until the administrator confirms compliance terms in Payment Gateway settings.": "Subscription plan creation and changes are locked until the administrator confirms compliance terms in Payment Gateway settings.",
   "The entered text does not match the required text.": "The entered text does not match the required text.",
   "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.": "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.",
+  "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
   "Type the confirmation text here": "Type the confirmation text here",
+  "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
   "You commit not to use this system to implement, assist with, or indirectly implement acts that violate applicable laws and regulations, regulatory requirements, platform rules, public interests, or the lawful rights and interests of third parties.": "You commit not to use this system to implement, assist with, or indirectly implement acts that violate applicable laws and regulations, regulatory requirements, platform rules, public interests, or the lawful rights and interests of third parties.",
   "You commit to using upstream APIs, accounts, keys, quotas, and service capabilities only within the scope of lawful authorization obtained from upstream service providers, model service providers, or relevant rights holders, and will not conduct unauthorized resale, trafficking, distribution, or other non-compliant commercialization.": "You commit to using upstream APIs, accounts, keys, quotas, and service capabilities only within the scope of lawful authorization obtained from upstream service providers, model service providers, or relevant rights holders, and will not conduct unauthorized resale, trafficking, distribution, or other non-compliant commercialization.",
   "You have legally obtained authorization for the connected model APIs, accounts, keys, and quotas.": "You have legally obtained authorization for the connected model APIs, accounts, keys, and quotas.",
diff --git a/web/default/src/i18n/locales/_reports/ja.untranslated.json b/web/default/src/i18n/locales/_reports/ja.untranslated.json
index b6d34b23ff9..39d81af2f3a 100644
--- a/web/default/src/i18n/locales/_reports/ja.untranslated.json
+++ b/web/default/src/i18n/locales/_reports/ja.untranslated.json
@@ -4,6 +4,7 @@
   "/status/": "/status/",
   "/your/endpoint": "/your/endpoint",
   "acknowledge the related legal risks": "acknowledge the related legal risks",
+  "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.",
   "AIGC2D": "AIGC2D",
   "Alipay": "Alipay",
   "Anthropic": "Anthropic",
@@ -62,6 +63,7 @@
   "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.": "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.",
   "Jimeng": "Jimeng",
   "JustSong": "JustSong",
+  "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
   "LingYiWanWu": "LingYiWanWu",
   "LinuxDO": "LinuxDO",
   "Midjourney": "Midjourney",
@@ -78,6 +80,9 @@
   "OhMyGPT": "OhMyGPT",
   "Ollama": "Ollama",
   "OpenAI": "OpenAI",
+  "OpenAI Admin Key": "OpenAI Admin Key",
+  "OpenAI Prepaid Amount (USD)": "OpenAI Prepaid Amount (USD)",
+  "OpenAI Prepaid Since (Unix timestamp)": "OpenAI Prepaid Since (Unix timestamp)",
   "OpenAIMax": "OpenAIMax",
   "OpenRouter": "OpenRouter",
   "operation and charging behavior": "operation and charging behavior",
@@ -102,10 +107,12 @@
   "The entered text does not match the required text.": "The entered text does not match the required text.",
   "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.": "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.",
   "Token prices": "Token prices",
+  "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
   "TTFT P50": "TTFT P50",
   "TTFT P95": "TTFT P95",
   "TTFT P99": "TTFT P99",
   "Type the confirmation text here": "Type the confirmation text here",
+  "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
   "Vertex AI": "Vertex AI",
   "VolcEngine": "VolcEngine",
   "Webhook URL": "Webhook URL",
diff --git a/web/default/src/i18n/locales/_reports/ru.untranslated.json b/web/default/src/i18n/locales/_reports/ru.untranslated.json
index fa683ab7587..e281c97c1fb 100644
--- a/web/default/src/i18n/locales/_reports/ru.untranslated.json
+++ b/web/default/src/i18n/locales/_reports/ru.untranslated.json
@@ -89,6 +89,7 @@
   "OhMyGPT": "OhMyGPT",
   "Ollama": "Ollama",
   "OpenAI": "OpenAI",
+  "OpenAI Admin Key": "OpenAI Admin Key",
   "OpenAIMax": "OpenAIMax",
   "OpenRouter": "OpenRouter",
   "operation and charging behavior": "operation and charging behavior",
diff --git a/web/default/src/i18n/locales/_reports/vi.untranslated.json b/web/default/src/i18n/locales/_reports/vi.untranslated.json
index 48dce390e60..70ae0c2e2b3 100644
--- a/web/default/src/i18n/locales/_reports/vi.untranslated.json
+++ b/web/default/src/i18n/locales/_reports/vi.untranslated.json
@@ -7,6 +7,7 @@
   "I have read and understood the above compliance reminder": "I have read and understood the above compliance reminder",
   "I have read and understood the above compliance reminder, acknowledge the related legal risks, and confirm that I bear legal responsibility arising from deployment, operation, and charging behavior.": "I have read and understood the above compliance reminder, acknowledge the related legal risks, and confirm that I bear legal responsibility arising from deployment, operation, and charging behavior.",
   "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.": "If you provide generative AI services to the public in mainland China, you will fulfill legal obligations including filing, security assessment, content safety, complaint handling, generated content labeling, log retention, and personal information protection.",
+  "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
   "operation and charging behavior": "operation and charging behavior",
   "Payment, redemption codes, subscription plans, and invitation rewards are locked until the root administrator confirms the compliance terms.": "Payment, redemption codes, subscription plans, and invitation rewards are locked until the root administrator confirms the compliance terms.",
   "Please type the following text to confirm:": "Please type the following text to confirm:",
@@ -16,7 +17,9 @@
   "Subscription plan creation and changes are locked until the administrator confirms compliance terms in Payment Gateway settings.": "Subscription plan creation and changes are locked until the administrator confirms compliance terms in Payment Gateway settings.",
   "The entered text does not match the required text.": "The entered text does not match the required text.",
   "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.": "This confirmation unlocks payment, redemption code, subscription plan, and invitation reward features. Please read the statements carefully.",
+  "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
   "Type the confirmation text here": "Type the confirmation text here",
+  "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
   "You commit not to use this system to implement, assist with, or indirectly implement acts that violate applicable laws and regulations, regulatory requirements, platform rules, public interests, or the lawful rights and interests of third parties.": "You commit not to use this system to implement, assist with, or indirectly implement acts that violate applicable laws and regulations, regulatory requirements, platform rules, public interests, or the lawful rights and interests of third parties.",
   "You commit to using upstream APIs, accounts, keys, quotas, and service capabilities only within the scope of lawful authorization obtained from upstream service providers, model service providers, or relevant rights holders, and will not conduct unauthorized resale, trafficking, distribution, or other non-compliant commercialization.": "You commit to using upstream APIs, accounts, keys, quotas, and service capabilities only within the scope of lawful authorization obtained from upstream service providers, model service providers, or relevant rights holders, and will not conduct unauthorized resale, trafficking, distribution, or other non-compliant commercialization.",
   "You have legally obtained authorization for the connected model APIs, accounts, keys, and quotas.": "You have legally obtained authorization for the connected model APIs, accounts, keys, and quotas.",
diff --git a/web/default/src/i18n/locales/en.json b/web/default/src/i18n/locales/en.json
index 1560b01992d..f054fb4133f 100644
--- a/web/default/src/i18n/locales/en.json
+++ b/web/default/src/i18n/locales/en.json
@@ -207,6 +207,7 @@
     "Admin": "Admin",
     "Admin access required": "Admin access required",
     "Admin area": "Admin area",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.",
     "Admin notes (only visible to admins)": "Admin notes (only visible to admins)",
     "Admin Only": "Admin Only",
     "Administer user accounts and roles.": "Administer user accounts and roles.",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.",
     "Leave empty to disband the tag": "Leave empty to disband the tag",
+    "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
     "Leave empty to keep existing key": "Leave empty to keep existing key",
     "Leave empty to keep unchanged": "Leave empty to keep unchanged",
     "Leave empty to use account email": "Leave empty to use account email",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "Open theme settings",
     "Open weights": "Open weights",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI Admin Key",
     "OpenAI Compatible": "OpenAI Compatible",
+    "OpenAI Prepaid Amount (USD)": "OpenAI Prepaid Amount (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI Prepaid Since (Unix timestamp)",
     "OpenAI Organization": "OpenAI Organization",
     "OpenAI Organization ID (optional)": "OpenAI Organization ID (optional)",
     "OpenAI, Anthropic, etc.": "OpenAI, Anthropic, etc.",
@@ -4061,6 +4066,7 @@
     "Total requests made": "Total requests made",
     "Total tokens": "Total tokens",
     "Total Tokens": "Total Tokens",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
     "Total Usage": "Total Usage",
     "Total:": "Total:",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "Unit price (USD)",
     "Unit price must be greater than 0": "Unit price must be greater than 0",
     "Units per USD": "Units per USD",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
     "Unknown": "Unknown",
     "Unknown version": "Unknown version",
     "Unlimited": "Unlimited",
diff --git a/web/default/src/i18n/locales/fr.json b/web/default/src/i18n/locales/fr.json
index 8b555700a15..96c1058df43 100644
--- a/web/default/src/i18n/locales/fr.json
+++ b/web/default/src/i18n/locales/fr.json
@@ -207,6 +207,7 @@
     "Admin": "Administrateur",
     "Admin access required": "Accès administrateur requis",
     "Admin area": "Espace administrateur",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.",
     "Admin notes (only visible to admins)": "Notes d'administration (visibles uniquement par les administrateurs)",
     "Admin Only": "Administrateur uniquement",
     "Administer user accounts and roles.": "Gérer les comptes d'utilisateurs et les rôles.",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Laissez vide pour désactiver l'exigence d'accord. Prend en charge Markdown, HTML ou une URL complète pour rediriger les utilisateurs.",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Laissez vide pour désactiver l'exigence de politique de confidentialité. Prend en charge Markdown, HTML ou une URL complète pour rediriger les utilisateurs.",
     "Leave empty to disband the tag": "Laissez vide pour dissoudre l'étiquette",
+    "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
     "Leave empty to keep existing key": "Laissez vide pour conserver la clé existante",
     "Leave empty to keep unchanged": "Laissez vide pour conserver inchangé",
     "Leave empty to use account email": "Laissez vide pour utiliser l'e-mail du compte",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "Ouvrir les paramètres du thème",
     "Open weights": "Poids ouverts",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI Admin Key",
     "OpenAI Compatible": "Compatible OpenAI",
+    "OpenAI Prepaid Amount (USD)": "OpenAI Prepaid Amount (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI Prepaid Since (Unix timestamp)",
     "OpenAI Organization": "Organisation OpenAI",
     "OpenAI Organization ID (optional)": "Identifiant d'organisation OpenAI (optionnel)",
     "OpenAI, Anthropic, etc.": "OpenAI, Anthropic, etc.",
@@ -4061,6 +4066,7 @@
     "Total requests made": "Requêtes totales effectuées",
     "Total tokens": "Jetons totaux",
     "Total Tokens": "Jetons totaux",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
     "Total Usage": "Utilisation totale",
     "Total:": "Total :",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "Prix unitaire (USD)",
     "Unit price must be greater than 0": "Le prix unitaire doit être supérieur à 0",
     "Units per USD": "Unités par USD",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
     "Unknown": "Inconnu",
     "Unknown version": "Version inconnue",
     "Unlimited": "Illimité",
diff --git a/web/default/src/i18n/locales/ja.json b/web/default/src/i18n/locales/ja.json
index 778867e9428..2678ebb59e7 100644
--- a/web/default/src/i18n/locales/ja.json
+++ b/web/default/src/i18n/locales/ja.json
@@ -207,6 +207,7 @@
     "Admin": "管理者",
     "Admin access required": "管理者アクセスが必要です",
     "Admin area": "管理者エリア",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.",
     "Admin notes (only visible to admins)": "管理者メモ (管理者のみに表示)",
     "Admin Only": "管理者のみ",
     "Administer user accounts and roles.": "ユーザーアカウントとロールを管理します。",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "利用規約の要件を無効にするには空のままにしてください。Markdown、HTML、またはユーザーをリダイレクトするための完全なURLをサポートします。",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "プライバシーポリシーの要件を無効にするには空のままにしてください。Markdown、HTML、またはユーザーをリダイレクトするための完全なURLをサポートします。",
     "Leave empty to disband the tag": "タグを解散するには空のままにしてください",
+    "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
     "Leave empty to keep existing key": "空欄のままにすると既存のキーを保持します",
     "Leave empty to keep unchanged": "変更しない場合は空欄のまま",
     "Leave empty to use account email": "アカウントのメールアドレスを使用するには空のままにしてください",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "テーマ設定を開く",
     "Open weights": "公開ウェイト",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI Admin Key",
     "OpenAI Compatible": "OpenAI互換",
+    "OpenAI Prepaid Amount (USD)": "OpenAI Prepaid Amount (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI Prepaid Since (Unix timestamp)",
     "OpenAI Organization": "OpenAI組織",
     "OpenAI Organization ID (optional)": "OpenAI 組織 ID (オプション)",
     "OpenAI, Anthropic, etc.": "OpenAI、Anthropicなど",
@@ -4061,6 +4066,7 @@
     "Total requests made": "合計リクエスト数",
     "Total tokens": "合計トークン",
     "Total Tokens": "合計トークン",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
     "Total Usage": "総使用量",
     "Total:": "合計:",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "単価 (USD)",
     "Unit price must be greater than 0": "単価は 0 より大きい必要があります",
     "Units per USD": "USDあたりのユニット数",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
     "Unknown": "不明",
     "Unknown version": "不明なバージョン",
     "Unlimited": "無制限",
diff --git a/web/default/src/i18n/locales/ru.json b/web/default/src/i18n/locales/ru.json
index 88ae65b0718..4c564cf495c 100644
--- a/web/default/src/i18n/locales/ru.json
+++ b/web/default/src/i18n/locales/ru.json
@@ -207,6 +207,7 @@
     "Admin": "Администратор",
     "Admin access required": "Требуется доступ администратора",
     "Admin area": "Область администратора",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Ключ admin OpenAI (sk-admin-...) для получения статистики использования. Для инференса не используется.",
     "Admin notes (only visible to admins)": "Заметки администратора (видны только администраторам)",
     "Admin Only": "Только для администраторов",
     "Administer user accounts and roles.": "Управление учетными записями пользователей и ролями.",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Оставьте пустым, чтобы отключить требование соглашения. Поддерживает Markdown, HTML или полный URL для перенаправления пользователей.",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Оставьте пустым, чтобы отключить требование политики конфиденциальности. Поддерживает Markdown, HTML или полный URL для перенаправления пользователей.",
     "Leave empty to disband the tag": "Оставьте пустым, чтобы удалить тег",
+    "Leave empty to keep existing admin key": "Оставьте пустым, чтобы сохранить текущий admin key",
     "Leave empty to keep existing key": "Оставьте пустым, чтобы сохранить существующий ключ",
     "Leave empty to keep unchanged": "Оставьте пустым, чтобы сохранить без изменений",
     "Leave empty to use account email": "Оставьте пустым, чтобы использовать электронную почту учетной записи",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "Открыть настройки темы",
     "Open weights": "Открытые веса",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI Admin Key",
     "OpenAI Compatible": "Совместимо с OpenAI",
+    "OpenAI Prepaid Amount (USD)": "Сумма prepaid OpenAI (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI prepaid с (Unix timestamp)",
     "OpenAI Organization": "Организация OpenAI",
     "OpenAI Organization ID (optional)": "Идентификатор организации OpenAI (необязательно)",
     "OpenAI, Anthropic, etc.": "OpenAI, Anthropic и т.д.",
@@ -4061,6 +4066,7 @@
     "Total requests made": "Всего сделанных запросов",
     "Total tokens": "Всего токенов",
     "Total Tokens": "Всего токенов",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Общая сумма pre-paid на счёте OpenAI в USD. Вместе с \"Prepaid since\" используется для расчёта остатка.",
     "Total Usage": "Общее использование",
     "Total:": "Всего:",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "Цена за единицу (USD)",
     "Unit price must be greater than 0": "Цена за единицу должна быть больше 0",
     "Units per USD": "Единиц за USD",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp начала prepaid-периода. Если 0 — показывается расход с начала месяца.",
     "Unknown": "Неизвестно",
     "Unknown version": "Неизвестная версия",
     "Unlimited": "Без ограничений",
diff --git a/web/default/src/i18n/locales/vi.json b/web/default/src/i18n/locales/vi.json
index 5e2e32001b2..ddc6fb06e50 100644
--- a/web/default/src/i18n/locales/vi.json
+++ b/web/default/src/i18n/locales/vi.json
@@ -207,6 +207,7 @@
     "Admin": "Quản trị viên",
     "Admin access required": "Yêu cầu quyền truy cập Admin",
     "Admin area": "Khu vực quản trị",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.",
     "Admin notes (only visible to admins)": "Ghi chú của quản trị viên (chỉ hiển thị với quản trị viên)",
     "Admin Only": "Chỉ dành cho quản trị viên",
     "Administer user accounts and roles.": "Quản lý tài khoản người dùng và vai trò.",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Để trống để tắt yêu cầu đồng ý. Hỗ trợ Markdown, HTML hoặc một URL đầy đủ để chuyển hướng người dùng.",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "Để trống để vô hiệu hóa yêu cầu chính sách bảo mật. Hỗ trợ Markdown, HTML hoặc một URL đầy đủ để chuyển hướng người dùng.",
     "Leave empty to disband the tag": "Để trống để giải tán thẻ",
+    "Leave empty to keep existing admin key": "Leave empty to keep existing admin key",
     "Leave empty to keep existing key": "Để trống để giữ khóa hiện có",
     "Leave empty to keep unchanged": "Để trống để giữ nguyên",
     "Leave empty to use account email": "Để trống để sử dụng email tài khoản",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "Mở cài đặt giao diện",
     "Open weights": "Trọng số mở",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI Admin Key",
     "OpenAI Compatible": "Tương thích OpenAI",
+    "OpenAI Prepaid Amount (USD)": "OpenAI Prepaid Amount (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI Prepaid Since (Unix timestamp)",
     "OpenAI Organization": "Tổ chức OpenAI",
     "OpenAI Organization ID (optional)": "ID Tổ chức OpenAI (tùy chọn)",
     "OpenAI, Anthropic, etc.": "OpenAI, Anthropic, v.v.",
@@ -4061,6 +4066,7 @@
     "Total requests made": "Tổng lượt yêu cầu",
     "Total tokens": "Tổng số token",
     "Total Tokens": "Tổng số token",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.",
     "Total Usage": "Tổng Mức Sử dụng",
     "Total:": "Tổng cộng:",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "Đơn giá (USD)",
     "Unit price must be greater than 0": "Đơn giá phải lớn hơn 0",
     "Units per USD": "Đơn vị trên USD",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.",
     "Unknown": "Không rõ",
     "Unknown version": "Phiên bản không xác định",
     "Unlimited": "Không giới hạn",
diff --git a/web/default/src/i18n/locales/zh.json b/web/default/src/i18n/locales/zh.json
index 6da35355a92..1355b044fe6 100644
--- a/web/default/src/i18n/locales/zh.json
+++ b/web/default/src/i18n/locales/zh.json
@@ -207,6 +207,7 @@
     "Admin": "管理员",
     "Admin access required": "需要管理员权限",
     "Admin area": "管理员区域",
+    "Admin key (sk-admin-...) used for fetching usage statistics. Not used for inference.": "管理员密钥（sk-admin-...）用于获取使用量统计。不用于推理请求。",
     "Admin notes (only visible to admins)": "管理员备注（仅管理员可见）",
     "Admin Only": "仅限管理员",
     "Administer user accounts and roles.": "管理用户账户和角色。",
@@ -2160,6 +2161,7 @@
     "Leave empty to disable the agreement requirement. Supports Markdown, HTML, or a full URL to redirect users.": "留空以禁用协议要求。支持 Markdown、HTML 或用于重定向用户的完整 URL。",
     "Leave empty to disable the privacy policy requirement. Supports Markdown, HTML, or a full URL to redirect users.": "留空以禁用隐私政策要求。支持 Markdown、HTML 或用于重定向用户的完整 URL。",
     "Leave empty to disband the tag": "留空以解散标签",
+    "Leave empty to keep existing admin key": "留空以保留现有管理员密钥",
     "Leave empty to keep existing key": "留空以保留现有密钥",
     "Leave empty to keep unchanged": "留空以保持不变",
     "Leave empty to use account email": "留空以使用账户邮箱",
@@ -2728,7 +2730,10 @@
     "Open theme settings": "打开主题设置",
     "Open weights": "开放权重",
     "OpenAI": "OpenAI",
+    "OpenAI Admin Key": "OpenAI 管理员密钥",
     "OpenAI Compatible": "兼容 OpenAI",
+    "OpenAI Prepaid Amount (USD)": "OpenAI 预付金额 (USD)",
+    "OpenAI Prepaid Since (Unix timestamp)": "OpenAI 预付起始 (Unix 时间戳)",
     "OpenAI Organization": "OpenAI 组织",
     "OpenAI Organization ID (optional)": "OpenAI 组织 ID（可选）",
     "OpenAI, Anthropic, etc.": "OpenAI、Anthropic 等",
@@ -4061,6 +4066,7 @@
     "Total requests made": "总请求数",
     "Total tokens": "总 Token",
     "Total Tokens": "总 Token 数",
+    "Total USD prepaid into the OpenAI account. Used together with \"Prepaid since\" to compute remaining balance.": "OpenAI 账户的预付金额总额（美元），与\"预付起始时间\"结合用于计算剩余余额。",
     "Total Usage": "总用量",
     "Total:": "总计：",
     "TPM": "TPM",
@@ -4136,6 +4142,7 @@
     "Unit price (USD)": "单价 (USD)",
     "Unit price must be greater than 0": "单价必须大于 0",
     "Units per USD": "每 USD 单位数",
+    "Unix timestamp when the prepaid period started. If 0, balance shows month-to-date spend instead.": "预付期开始的 Unix 时间戳。如果为 0，则显示本月累计支出。",
     "Unknown": "未知",
     "Unknown version": "未知版本",
     "Unlimited": "无限制",