dify/api/core/helper/encrypter.py

import base64

from libs import rsa


def obfuscated_token(token: str):
    if not token:
        return token
    if len(token) <= 8:
        return "*" * 20
    return token[:6] + "*" * 12 + token[-2:]


def encrypt_token(tenant_id: str, token: str):
    from models.account import Tenant
    from models.engine import db

    if not (tenant := db.session.query(Tenant).filter(Tenant.id == tenant_id).first()):
        raise ValueError(f"Tenant with id {tenant_id} not found")
    encrypted_token = rsa.encrypt(token, tenant.encrypt_public_key)
    return base64.b64encode(encrypted_token).decode()


def decrypt_token(tenant_id: str, token: str):
    return rsa.decrypt(base64.b64decode(token), tenant_id)


def batch_decrypt_token(tenant_id: str, tokens: list[str]):
    rsa_key, cipher_rsa = rsa.get_decrypt_decoding(tenant_id)

    return [rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) for token in tokens]


def get_decrypt_decoding(tenant_id: str):
    return rsa.get_decrypt_decoding(tenant_id)


def decrypt_token_with_decoding(token: str, rsa_key, cipher_rsa):
    return rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa)
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00			`import base64`

			`from libs import rsa`


			`def obfuscated_token(token: str):`
Feat/environment variables in workflow (#6515) Co-authored-by: JzoNg <jzongcode@gmail.com> 2024-07-22 15:29:39 +08:00			`if not token:`
			`return token`
			`if len(token) <= 8:`
chore(api/core): apply ruff reformatting (#7624) 2024-09-10 17:00:20 +08:00			`return "" 20`
			`return token[:6] + "" 12 + token[-2:]`
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00

			`def encrypt_token(tenant_id: str, token: str):`
Feat: conversation variable & variable assigner node (#7222) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: Joel <iamjoel007@gmail.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2024-08-13 14:44:10 +08:00			`from models.account import Tenant`
chore(db): use a better way to export models and remove unused table (#11838) Signed-off-by: -LAN- <laipz8200@outlook.com> 2024-12-20 14:12:29 +08:00			`from models.engine import db`
chore(api/core): apply ruff reformatting (#7624) 2024-09-10 17:00:20 +08:00
Feat/environment variables in workflow (#6515) Co-authored-by: JzoNg <jzongcode@gmail.com> 2024-07-22 15:29:39 +08:00			`if not (tenant := db.session.query(Tenant).filter(Tenant.id == tenant_id).first()):`
chore(api/core): apply ruff reformatting (#7624) 2024-09-10 17:00:20 +08:00			`raise ValueError(f"Tenant with id {tenant_id} not found")`
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00			`encrypted_token = rsa.encrypt(token, tenant.encrypt_public_key)`
			`return base64.b64encode(encrypted_token).decode()`


			`def decrypt_token(tenant_id: str, token: str):`
			`return rsa.decrypt(base64.b64decode(token), tenant_id)`
Model Runtime (#1858) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> Co-authored-by: Garfield Dai <dai.hai@foxmail.com> Co-authored-by: chenhe <guchenhe@gmail.com> Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: Joel <iamjoel007@gmail.com> Co-authored-by: Yeuoly <admin@srmxy.cn> 2024-01-02 23:42:00 +08:00

			`def batch_decrypt_token(tenant_id: str, tokens: list[str]):`
			`rsa_key, cipher_rsa = rsa.get_decrypt_decoding(tenant_id)`

			`return [rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) for token in tokens]`


			`def get_decrypt_decoding(tenant_id: str):`
			`return rsa.get_decrypt_decoding(tenant_id)`


			`def decrypt_token_with_decoding(token: str, rsa_key, cipher_rsa):`
			`return rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa)`