Add response validation for OpenAI API ephemeral key generation

- Add null checks for nested response data before accessing
- Validate client_secret structure exists in response
- Add default values for optional fields (sessionId, model)
- Improve error logging with response data for debugging
- Prevent potential runtime errors from missing response keys

Co-Authored-By: Claude <[email protected]>

Author: vijaythecoder

app/Http/Controllers/RealtimeController.php

@@ -47,13 +47,19 @@ public function generateEphemeralKey(Request $request)
 
             $data = $response->json();
 
+            // Validate response structure
+            if (!isset($data['client_secret']['value']) || !isset($data['client_secret']['expires_at'])) {
+                Log::error('Invalid response structure from OpenAI API', ['response' => $data]);
+                throw new \Exception('Invalid response structure from OpenAI API');
+            }
+            
             // Return ephemeral key data
             return response()->json([
                 'status' => 'success',
                 'ephemeralKey' => $data['client_secret']['value'],
                 'expiresAt' => $data['client_secret']['expires_at'],
-                'sessionId' => $data['id'],
-                'model' => $data['model'],
+                'sessionId' => $data['id'] ?? null,
+                'model' => $data['model'] ?? 'gpt-4o-realtime-preview-2024-12-17',
             ]);
 
         } catch (\Exception $e) {