dify/api/controllers/service_api/wraps.py

from collections.abc import Callable
from datetime import datetime, timezone
from enum import Enum
from functools import wraps
from typing import Optional

from flask import current_app, request
from flask_login import user_logged_in
from flask_restful import Resource
from pydantic import BaseModel
from werkzeug.exceptions import Forbidden, NotFound, Unauthorized

from extensions.ext_database import db
from libs.login import _get_user
from models.account import Account, Tenant, TenantAccountJoin, TenantStatus
from models.model import ApiToken, App, EndUser
from services.feature_service import FeatureService


class WhereisUserArg(Enum):
    """
    Enum for whereis_user_arg.
    """
    QUERY = 'query'
    JSON = 'json'
    FORM = 'form'


class FetchUserArg(BaseModel):
    fetch_from: WhereisUserArg
    required: bool = False


def validate_app_token(view: Optional[Callable] = None, *, fetch_user_arg: Optional[FetchUserArg] = None):
    def decorator(view_func):
        @wraps(view_func)
        def decorated_view(*args, **kwargs):
            api_token = validate_and_get_api_token('app')

            app_model = db.session.query(App).filter(App.id == api_token.app_id).first()
            if not app_model:
                raise NotFound()

            if app_model.status != 'normal':
                raise NotFound()

            if not app_model.enable_api:
                raise NotFound()

            tenant = db.session.query(Tenant).filter(Tenant.id == app_model.tenant_id).first()
            if tenant.status == TenantStatus.ARCHIVE:
                raise NotFound()

            kwargs['app_model'] = app_model

            if fetch_user_arg:
                if fetch_user_arg.fetch_from == WhereisUserArg.QUERY:
                    user_id = request.args.get('user')
                elif fetch_user_arg.fetch_from == WhereisUserArg.JSON:
                    user_id = request.get_json().get('user')
                elif fetch_user_arg.fetch_from == WhereisUserArg.FORM:
                    user_id = request.form.get('user')
                else:
                    # use default-user
                    user_id = None

                if not user_id and fetch_user_arg.required:
                    raise ValueError("Arg user must be provided.")

                if user_id:
                    user_id = str(user_id)

                kwargs['end_user'] = create_or_update_end_user_for_user_id(app_model, user_id)

            return view_func(*args, **kwargs)
        return decorated_view

    if view is None:
        return decorator
    else:
        return decorator(view)


def cloud_edition_billing_resource_check(resource: str,
                                         api_token_type: str,
                                         error_msg: str = "You have reached the limit of your subscription."):
    def interceptor(view):
        def decorated(*args, **kwargs):
            api_token = validate_and_get_api_token(api_token_type)
            features = FeatureService.get_features(api_token.tenant_id)

            if features.billing.enabled:
                members = features.members
                apps = features.apps
                vector_space = features.vector_space
                documents_upload_quota = features.documents_upload_quota

                if resource == 'members' and 0 < members.limit <= members.size:
                    raise Forbidden(error_msg)
                elif resource == 'apps' and 0 < apps.limit <= apps.size:
                    raise Forbidden(error_msg)
                elif resource == 'vector_space' and 0 < vector_space.limit <= vector_space.size:
                    raise Forbidden(error_msg)
                elif resource == 'documents' and 0 < documents_upload_quota.limit <= documents_upload_quota.size:
                    raise Forbidden(error_msg)
                else:
                    return view(*args, **kwargs)

            return view(*args, **kwargs)
        return decorated
    return interceptor


def cloud_edition_billing_knowledge_limit_check(resource: str,
                                                api_token_type: str,
                                                error_msg: str = "To unlock this feature and elevate your Dify experience, please upgrade to a paid plan."):
    def interceptor(view):
        @wraps(view)
        def decorated(*args, **kwargs):
            api_token = validate_and_get_api_token(api_token_type)
            features = FeatureService.get_features(api_token.tenant_id)
            if features.billing.enabled:
                if resource == 'add_segment':
                    if features.billing.subscription.plan == 'sandbox':
                        raise Forbidden(error_msg)
                else:
                    return view(*args, **kwargs)

            return view(*args, **kwargs)

        return decorated

    return interceptor

def validate_dataset_token(view=None):
    def decorator(view):
        @wraps(view)
        def decorated(*args, **kwargs):
            api_token = validate_and_get_api_token('dataset')
            tenant_account_join = db.session.query(Tenant, TenantAccountJoin) \
                .filter(Tenant.id == api_token.tenant_id) \
                .filter(TenantAccountJoin.tenant_id == Tenant.id) \
                .filter(TenantAccountJoin.role.in_(['owner'])) \
                .filter(Tenant.status == TenantStatus.NORMAL) \
                .one_or_none() # TODO: only owner information is required, so only one is returned.
            if tenant_account_join:
                tenant, ta = tenant_account_join
                account = Account.query.filter_by(id=ta.account_id).first()
                # Login admin
                if account:
                    account.current_tenant = tenant
                    current_app.login_manager._update_request_context_with_user(account)
                    user_logged_in.send(current_app._get_current_object(), user=_get_user())
                else:
                    raise Unauthorized("Tenant owner account does not exist.")
            else:
                raise Unauthorized("Tenant does not exist.")
            return view(api_token.tenant_id, *args, **kwargs)
        return decorated

    if view:
        return decorator(view)

    # if view is None, it means that the decorator is used without parentheses
    # use the decorator as a function for method_decorators
    return decorator


def validate_and_get_api_token(scope=None):
    """
    Validate and get API token.
    """
    auth_header = request.headers.get('Authorization')
    if auth_header is None or ' ' not in auth_header:
        raise Unauthorized("Authorization header must be provided and start with 'Bearer'")

    auth_scheme, auth_token = auth_header.split(None, 1)
    auth_scheme = auth_scheme.lower()

    if auth_scheme != 'bearer':
        raise Unauthorized("Authorization scheme must be 'Bearer'")

    api_token = db.session.query(ApiToken).filter(
        ApiToken.token == auth_token,
        ApiToken.type == scope,
    ).first()

    if not api_token:
        raise Unauthorized("Access token is invalid")

    api_token.last_used_at = datetime.now(timezone.utc).replace(tzinfo=None)
    db.session.commit()

    return api_token


def create_or_update_end_user_for_user_id(app_model: App, user_id: Optional[str] = None) -> EndUser:
    """
    Create or update session terminal based on user ID.
    """
    if not user_id:
        user_id = 'DEFAULT-USER'

    end_user = db.session.query(EndUser) \
        .filter(
        EndUser.tenant_id == app_model.tenant_id,
        EndUser.app_id == app_model.id,
        EndUser.session_id == user_id,
        EndUser.type == 'service_api'
    ).first()

    if end_user is None:
        end_user = EndUser(
            tenant_id=app_model.tenant_id,
            app_id=app_model.id,
            type='service_api',
            is_anonymous=True if user_id == 'DEFAULT-USER' else False,
            session_id=user_id
        )
        db.session.add(end_user)
        db.session.commit()

    return end_user


class DatasetApiResource(Resource):
    method_decorators = [validate_dataset_token]
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`from collections.abc import Callable`
feat: Deprecate datetime.utcnow() in favor of datetime.now(timezone.utc).replace(tzinfo=None) for better timezone handling (#3408) (#3416) 2024-04-12 16:22:24 +08:00			`from datetime import datetime, timezone`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`from enum import Enum`
Initial commit 2023-05-15 08:51:32 +08:00			`from functools import wraps`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`from typing import Optional`
Initial commit 2023-05-15 08:51:32 +08:00
improve: introduce isort for linting Python imports (#1983) 2024-01-12 12:34:01 +08:00			`from flask import current_app, request`
Feat/dataset service api (#1245) Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-09-27 16:06:32 +08:00			`from flask_login import user_logged_in`
Initial commit 2023-05-15 08:51:32 +08:00			`from flask_restful import Resource`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`from pydantic import BaseModel`
add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`from werkzeug.exceptions import Forbidden, NotFound, Unauthorized`
enhancement: introduce Ruff for Python linter for reordering and removing unused imports with automated pre-commit and sytle check (#2366) 2024-02-06 13:21:13 +08:00
			`from extensions.ext_database import db`
feat: move login_required wrapper outside (#1281) 2023-10-08 05:21:32 -05:00			`from libs.login import _get_user`
Feat/enterprise sso (#3602) 2024-04-18 17:33:32 +08:00			`from models.account import Account, Tenant, TenantAccountJoin, TenantStatus`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`from models.model import ApiToken, App, EndUser`
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`from services.feature_service import FeatureService`
improve: introduce isort for linting Python imports (#1983) 2024-01-12 12:34:01 +08:00
Initial commit 2023-05-15 08:51:32 +08:00
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`class WhereisUserArg(Enum):`
			`"""`
			`Enum for whereis_user_arg.`
			`"""`
			`QUERY = 'query'`
			`JSON = 'json'`
			`FORM = 'form'`


			`class FetchUserArg(BaseModel):`
			`fetch_from: WhereisUserArg`
			`required: bool = False`


			`def validate_app_token(view: Optional[Callable] = None, *, fetch_user_arg: Optional[FetchUserArg] = None):`
			`def decorator(view_func):`
			`@wraps(view_func)`
			`def decorated_view(args, *kwargs):`
Initial commit 2023-05-15 08:51:32 +08:00			`api_token = validate_and_get_api_token('app')`

feat: optimize service api authorization header invalid error (#910) 2023-08-18 20:32:44 +08:00			`app_model = db.session.query(App).filter(App.id == api_token.app_id).first()`
Initial commit 2023-05-15 08:51:32 +08:00			`if not app_model:`
			`raise NotFound()`

			`if app_model.status != 'normal':`
			`raise NotFound()`

			`if not app_model.enable_api:`
			`raise NotFound()`

Feat/enterprise sso (#3602) 2024-04-18 17:33:32 +08:00			`tenant = db.session.query(Tenant).filter(Tenant.id == app_model.tenant_id).first()`
			`if tenant.status == TenantStatus.ARCHIVE:`
			`raise NotFound()`

fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`kwargs['app_model'] = app_model`
Initial commit 2023-05-15 08:51:32 +08:00
fix: AppParameterApi.get() got an unexpected keyword argument 'end_user' (#2607) 2024-02-28 16:46:50 +08:00			`if fetch_user_arg:`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`if fetch_user_arg.fetch_from == WhereisUserArg.QUERY:`
			`user_id = request.args.get('user')`
			`elif fetch_user_arg.fetch_from == WhereisUserArg.JSON:`
			`user_id = request.get_json().get('user')`
			`elif fetch_user_arg.fetch_from == WhereisUserArg.FORM:`
			`user_id = request.form.get('user')`
			`else:`
			`# use default-user`
			`user_id = None`
Initial commit 2023-05-15 08:51:32 +08:00
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`if not user_id and fetch_user_arg.required:`
			`raise ValueError("Arg user must be provided.")`

fix: AppParameterApi.get() got an unexpected keyword argument 'end_user' (#2607) 2024-02-28 16:46:50 +08:00			`if user_id:`
			`user_id = str(user_id)`

			`kwargs['end_user'] = create_or_update_end_user_for_user_id(app_model, user_id)`
fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00
			`return view_func(args, *kwargs)`
			`return decorated_view`

			`if view is None:`
			`return decorator`
			`else:`
			`return decorator(view)`
Initial commit 2023-05-15 08:51:32 +08:00

feat: billing enhancement 20231204 (#1691) Co-authored-by: jyong <jyong@dify.ai> 2023-12-05 16:53:55 +08:00			`def cloud_edition_billing_resource_check(resource: str,`
			`api_token_type: str,`
			`error_msg: str = "You have reached the limit of your subscription."):`
			`def interceptor(view):`
			`def decorated(args, *kwargs):`
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`api_token = validate_and_get_api_token(api_token_type)`
			`features = FeatureService.get_features(api_token.tenant_id)`
feat: billing enhancement 20231204 (#1691) Co-authored-by: jyong <jyong@dify.ai> 2023-12-05 16:53:55 +08:00
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`if features.billing.enabled:`
			`members = features.members`
			`apps = features.apps`
			`vector_space = features.vector_space`
Feat: Add documents limitation (#2662) 2024-03-03 12:45:06 +08:00			`documents_upload_quota = features.documents_upload_quota`
feat: billing enhancement 20231204 (#1691) Co-authored-by: jyong <jyong@dify.ai> 2023-12-05 16:53:55 +08:00
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`if resource == 'members' and 0 < members.limit <= members.size:`
add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`raise Forbidden(error_msg)`
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`elif resource == 'apps' and 0 < apps.limit <= apps.size:`
add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`raise Forbidden(error_msg)`
feat: add billing switch. (#1789) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-12-20 15:37:57 +08:00			`elif resource == 'vector_space' and 0 < vector_space.limit <= vector_space.size:`
add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`raise Forbidden(error_msg)`
Feat: Add documents limitation (#2662) 2024-03-03 12:45:06 +08:00			`elif resource == 'documents' and 0 < documents_upload_quota.limit <= documents_upload_quota.size:`
add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`raise Forbidden(error_msg)`
feat: billing enhancement 20231204 (#1691) Co-authored-by: jyong <jyong@dify.ai> 2023-12-05 16:53:55 +08:00			`else:`
			`return view(args, *kwargs)`

			`return view(args, *kwargs)`
			`return decorated`
			`return interceptor`


add segment function billing check for SAAS env (#3082) Co-authored-by: jyong <jyong@dify.ai> 2024-04-02 17:55:49 +08:00			`def cloud_edition_billing_knowledge_limit_check(resource: str,`
			`api_token_type: str,`
			`error_msg: str = "To unlock this feature and elevate your Dify experience, please upgrade to a paid plan."):`
			`def interceptor(view):`
			`@wraps(view)`
			`def decorated(args, *kwargs):`
			`api_token = validate_and_get_api_token(api_token_type)`
			`features = FeatureService.get_features(api_token.tenant_id)`
			`if features.billing.enabled:`
			`if resource == 'add_segment':`
			`if features.billing.subscription.plan == 'sandbox':`
			`raise Forbidden(error_msg)`
			`else:`
			`return view(args, *kwargs)`

			`return view(args, *kwargs)`

			`return decorated`

			`return interceptor`

Initial commit 2023-05-15 08:51:32 +08:00			`def validate_dataset_token(view=None):`
			`def decorator(view):`
			`@wraps(view)`
			`def decorated(args, *kwargs):`
			`api_token = validate_and_get_api_token('dataset')`
Feat/dataset service api (#1245) Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-09-27 16:06:32 +08:00			`tenant_account_join = db.session.query(Tenant, TenantAccountJoin) \`
			`.filter(Tenant.id == api_token.tenant_id) \`
			`.filter(TenantAccountJoin.tenant_id == Tenant.id) \`
fix:determine multiple result exceptions caused by admin (#2211) Co-authored-by: chenxin <chenxin@limayao.com> 2024-01-26 00:06:23 +08:00			`.filter(TenantAccountJoin.role.in_(['owner'])) \`
Feat/enterprise sso (#3602) 2024-04-18 17:33:32 +08:00			`.filter(Tenant.status == TenantStatus.NORMAL) \`
fix: multiple rows were found correctly (#2219) 2024-01-26 12:47:42 +08:00			`.one_or_none() # TODO: only owner information is required, so only one is returned.`
Feat/dataset service api (#1245) Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-09-27 16:06:32 +08:00			`if tenant_account_join:`
			`tenant, ta = tenant_account_join`
			`account = Account.query.filter_by(id=ta.account_id).first()`
			`# Login admin`
			`if account:`
			`account.current_tenant = tenant`
			`current_app.login_manager._update_request_context_with_user(account)`
			`user_logged_in.send(current_app._get_current_object(), user=_get_user())`
			`else:`
fix: multiple rows were found correctly (#2219) 2024-01-26 12:47:42 +08:00			`raise Unauthorized("Tenant owner account does not exist.")`
Feat/dataset service api (#1245) Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-09-27 16:06:32 +08:00			`else:`
fix: multiple rows were found correctly (#2219) 2024-01-26 12:47:42 +08:00			`raise Unauthorized("Tenant does not exist.")`
Feat/dataset service api (#1245) Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-09-27 16:06:32 +08:00			`return view(api_token.tenant_id, args, *kwargs)`
Initial commit 2023-05-15 08:51:32 +08:00			`return decorated`

			`if view:`
			`return decorator(view)`

			`# if view is None, it means that the decorator is used without parentheses`
			`# use the decorator as a function for method_decorators`
			`return decorator`


			`def validate_and_get_api_token(scope=None):`
			`"""`
			`Validate and get API token.`
			`"""`
			`auth_header = request.headers.get('Authorization')`
feat: optimize service api authorization header invalid error (#910) 2023-08-18 20:32:44 +08:00			`if auth_header is None or ' ' not in auth_header:`
			`raise Unauthorized("Authorization header must be provided and start with 'Bearer'")`
Initial commit 2023-05-15 08:51:32 +08:00
			`auth_scheme, auth_token = auth_header.split(None, 1)`
			`auth_scheme = auth_scheme.lower()`

			`if auth_scheme != 'bearer':`
feat: optimize service api authorization header invalid error (#910) 2023-08-18 20:32:44 +08:00			`raise Unauthorized("Authorization scheme must be 'Bearer'")`
Initial commit 2023-05-15 08:51:32 +08:00
			`api_token = db.session.query(ApiToken).filter(`
			`ApiToken.token == auth_token,`
			`ApiToken.type == scope,`
			`).first()`

			`if not api_token:`
feat: optimize service api authorization header invalid error (#910) 2023-08-18 20:32:44 +08:00			`raise Unauthorized("Access token is invalid")`
Initial commit 2023-05-15 08:51:32 +08:00
feat: Deprecate datetime.utcnow() in favor of datetime.now(timezone.utc).replace(tzinfo=None) for better timezone handling (#3408) (#3416) 2024-04-12 16:22:24 +08:00			`api_token.last_used_at = datetime.now(timezone.utc).replace(tzinfo=None)`
Initial commit 2023-05-15 08:51:32 +08:00			`db.session.commit()`

			`return api_token`


fix: missing default user for APP service api (#2606) 2024-02-28 16:09:56 +08:00			`def create_or_update_end_user_for_user_id(app_model: App, user_id: Optional[str] = None) -> EndUser:`
			`"""`
			`Create or update session terminal based on user ID.`
			`"""`
			`if not user_id:`
			`user_id = 'DEFAULT-USER'`

			`end_user = db.session.query(EndUser) \`
			`.filter(`
			`EndUser.tenant_id == app_model.tenant_id,`
			`EndUser.app_id == app_model.id,`
			`EndUser.session_id == user_id,`
			`EndUser.type == 'service_api'`
			`).first()`

			`if end_user is None:`
			`end_user = EndUser(`
			`tenant_id=app_model.tenant_id,`
			`app_id=app_model.id,`
			`type='service_api',`
			`is_anonymous=True if user_id == 'DEFAULT-USER' else False,`
			`session_id=user_id`
			`)`
			`db.session.add(end_user)`
			`db.session.commit()`

			`return end_user`
Initial commit 2023-05-15 08:51:32 +08:00

			`class DatasetApiResource(Resource):`
			`method_decorators = [validate_dataset_token]`