| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | from functools import wraps | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-02-06 13:21:13 +08:00
										 |  |  | from flask import request | 
					
						
							| 
									
										
										
										
											2025-05-06 11:58:49 +08:00
										 |  |  | from flask_restful import Resource, reqparse | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  | from sqlalchemy import select | 
					
						
							|  |  |  | from sqlalchemy.orm import Session | 
					
						
							| 
									
										
										
										
											2024-02-06 13:21:13 +08:00
										 |  |  | from werkzeug.exceptions import NotFound, Unauthorized | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-22 11:01:32 +08:00
										 |  |  | from configs import dify_config | 
					
						
							| 
									
										
										
										
											2024-02-01 18:11:57 +08:00
										 |  |  | from constants.languages import supported_language | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | from controllers.console import api | 
					
						
							|  |  |  | from controllers.console.wraps import only_edition_cloud | 
					
						
							|  |  |  | from extensions.ext_database import db | 
					
						
							| 
									
										
										
										
											2024-01-12 12:34:01 +08:00
										 |  |  | from models.model import App, InstalledApp, RecommendedApp | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | def admin_required(view): | 
					
						
							|  |  |  |     @wraps(view) | 
					
						
							|  |  |  |     def decorated(*args, **kwargs): | 
					
						
							| 
									
										
										
										
											2024-10-22 11:01:32 +08:00
										 |  |  |         if not dify_config.ADMIN_API_KEY: | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             raise Unauthorized("API key is invalid.") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |         auth_header = request.headers.get("Authorization") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         if auth_header is None: | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             raise Unauthorized("Authorization header is missing.") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |         if " " not in auth_header: | 
					
						
							|  |  |  |             raise Unauthorized("Invalid Authorization header format. Expected 'Bearer <api-key>' format.") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         auth_scheme, auth_token = auth_header.split(None, 1) | 
					
						
							|  |  |  |         auth_scheme = auth_scheme.lower() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |         if auth_scheme != "bearer": | 
					
						
							|  |  |  |             raise Unauthorized("Invalid Authorization header format. Expected 'Bearer <api-key>' format.") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-12-19 19:30:51 +09:00
										 |  |  |         if auth_token != dify_config.ADMIN_API_KEY: | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             raise Unauthorized("API key is invalid.") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         return view(*args, **kwargs) | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     return decorated | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | class InsertExploreAppListApi(Resource): | 
					
						
							|  |  |  |     @only_edition_cloud | 
					
						
							|  |  |  |     @admin_required | 
					
						
							|  |  |  |     def post(self): | 
					
						
							|  |  |  |         parser = reqparse.RequestParser() | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |         parser.add_argument("app_id", type=str, required=True, nullable=False, location="json") | 
					
						
							|  |  |  |         parser.add_argument("desc", type=str, location="json") | 
					
						
							|  |  |  |         parser.add_argument("copyright", type=str, location="json") | 
					
						
							|  |  |  |         parser.add_argument("privacy_policy", type=str, location="json") | 
					
						
							|  |  |  |         parser.add_argument("custom_disclaimer", type=str, location="json") | 
					
						
							|  |  |  |         parser.add_argument("language", type=supported_language, required=True, nullable=False, location="json") | 
					
						
							|  |  |  |         parser.add_argument("category", type=str, required=True, nullable=False, location="json") | 
					
						
							|  |  |  |         parser.add_argument("position", type=int, required=True, nullable=False, location="json") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         args = parser.parse_args() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  |         with Session(db.engine) as session: | 
					
						
							|  |  |  |             app = session.execute(select(App).filter(App.id == args["app_id"])).scalar_one_or_none() | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         if not app: | 
					
						
							| 
									
										
										
										
											2025-01-21 10:12:29 +08:00
										 |  |  |             raise NotFound(f"App '{args['app_id']}' is not found") | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         site = app.site | 
					
						
							|  |  |  |         if not site: | 
					
						
							| 
									
										
										
										
											2024-09-12 15:50:49 +08:00
										 |  |  |             desc = args["desc"] or "" | 
					
						
							|  |  |  |             copy_right = args["copyright"] or "" | 
					
						
							|  |  |  |             privacy_policy = args["privacy_policy"] or "" | 
					
						
							|  |  |  |             custom_disclaimer = args["custom_disclaimer"] or "" | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         else: | 
					
						
							| 
									
										
										
										
											2024-09-12 15:50:49 +08:00
										 |  |  |             desc = site.description or args["desc"] or "" | 
					
						
							|  |  |  |             copy_right = site.copyright or args["copyright"] or "" | 
					
						
							|  |  |  |             privacy_policy = site.privacy_policy or args["privacy_policy"] or "" | 
					
						
							|  |  |  |             custom_disclaimer = site.custom_disclaimer or args["custom_disclaimer"] or "" | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  |         with Session(db.engine) as session: | 
					
						
							|  |  |  |             recommended_app = session.execute( | 
					
						
							|  |  |  |                 select(RecommendedApp).filter(RecommendedApp.app_id == args["app_id"]) | 
					
						
							|  |  |  |             ).scalar_one_or_none() | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         if not recommended_app: | 
					
						
							|  |  |  |             recommended_app = RecommendedApp( | 
					
						
							|  |  |  |                 app_id=app.id, | 
					
						
							| 
									
										
										
										
											2023-05-25 18:53:28 +08:00
										 |  |  |                 description=desc, | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |                 copyright=copy_right, | 
					
						
							|  |  |  |                 privacy_policy=privacy_policy, | 
					
						
							| 
									
										
										
										
											2024-05-18 04:52:48 +02:00
										 |  |  |                 custom_disclaimer=custom_disclaimer, | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |                 language=args["language"], | 
					
						
							|  |  |  |                 category=args["category"], | 
					
						
							|  |  |  |                 position=args["position"], | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |             ) | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             db.session.add(recommended_app) | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             app.is_public = True | 
					
						
							|  |  |  |             db.session.commit() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             return {"result": "success"}, 201 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         else: | 
					
						
							| 
									
										
										
										
											2023-05-25 18:53:28 +08:00
										 |  |  |             recommended_app.description = desc | 
					
						
							| 
									
										
										
										
											2023-05-25 16:01:41 +08:00
										 |  |  |             recommended_app.copyright = copy_right | 
					
						
							|  |  |  |             recommended_app.privacy_policy = privacy_policy | 
					
						
							| 
									
										
										
										
											2024-05-18 04:52:48 +02:00
										 |  |  |             recommended_app.custom_disclaimer = custom_disclaimer | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             recommended_app.language = args["language"] | 
					
						
							|  |  |  |             recommended_app.category = args["category"] | 
					
						
							|  |  |  |             recommended_app.position = args["position"] | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |             app.is_public = True | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             db.session.commit() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             return {"result": "success"}, 200 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | class InsertExploreAppApi(Resource): | 
					
						
							|  |  |  |     @only_edition_cloud | 
					
						
							|  |  |  |     @admin_required | 
					
						
							|  |  |  |     def delete(self, app_id): | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  |         with Session(db.engine) as session: | 
					
						
							|  |  |  |             recommended_app = session.execute( | 
					
						
							|  |  |  |                 select(RecommendedApp).filter(RecommendedApp.app_id == str(app_id)) | 
					
						
							|  |  |  |             ).scalar_one_or_none() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         if not recommended_app: | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |             return {"result": "success"}, 204 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  |         with Session(db.engine) as session: | 
					
						
							|  |  |  |             app = session.execute(select(App).filter(App.id == recommended_app.app_id)).scalar_one_or_none() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  |         if app: | 
					
						
							|  |  |  |             app.is_public = False | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-02-17 17:05:13 +08:00
										 |  |  |         with Session(db.engine) as session: | 
					
						
							|  |  |  |             installed_apps = session.execute( | 
					
						
							|  |  |  |                 select(InstalledApp).filter( | 
					
						
							|  |  |  |                     InstalledApp.app_id == recommended_app.app_id, | 
					
						
							|  |  |  |                     InstalledApp.tenant_id != InstalledApp.app_owner_tenant_id, | 
					
						
							|  |  |  |                 ) | 
					
						
							|  |  |  |             ).all() | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         for installed_app in installed_apps: | 
					
						
							|  |  |  |             db.session.delete(installed_app) | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         db.session.delete(recommended_app) | 
					
						
							|  |  |  |         db.session.commit() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  |         return {"result": "success"}, 204 | 
					
						
							| 
									
										
										
										
											2023-05-25 15:54:45 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-08-26 15:29:10 +08:00
										 |  |  | api.add_resource(InsertExploreAppListApi, "/admin/insert-explore-apps") | 
					
						
							|  |  |  | api.add_resource(InsertExploreAppApi, "/admin/insert-explore-apps/<uuid:app_id>") |