dify/api/libs/external_api.py

import re
import sys
from collections.abc import Mapping
from typing import Any

from flask import Blueprint, Flask, current_app, got_request_exception
from flask_restx import Api
from werkzeug.exceptions import HTTPException
from werkzeug.http import HTTP_STATUS_CODES

from configs import dify_config
from core.errors.error import AppInvokeQuotaExceededError
from libs.token import build_force_logout_cookie_headers


def http_status_message(code):
    return HTTP_STATUS_CODES.get(code, "")


def register_external_error_handlers(api: Api):
    @api.errorhandler(HTTPException)
    def handle_http_exception(e: HTTPException):
        got_request_exception.send(current_app, exception=e)

        # If Werkzeug already prepared a Response, just use it.
        if e.response is not None:
            return e.response

        status_code = getattr(e, "code", 500) or 500

        # Build a safe, dict-like payload
        default_data = {
            "code": re.sub(r"(?<!^)(?=[A-Z])", "_", type(e).__name__).lower(),
            "message": getattr(e, "description", http_status_message(status_code)),
            "status": status_code,
        }
        if default_data["message"] == "Failed to decode JSON object: Expecting value: line 1 column 1 (char 0)":
            default_data["message"] = "Invalid JSON payload received or JSON payload is empty."

        # Use headers on the exception if present; otherwise none.
        headers = {}
        exc_headers = getattr(e, "headers", None)
        if exc_headers:
            headers.update(exc_headers)

        # Payload per status
        if status_code == 406 and api.default_mediatype is None:
            data = {"code": "not_acceptable", "message": default_data["message"], "status": status_code}
            return data, status_code, headers
        elif status_code == 400:
            msg = default_data["message"]
            if isinstance(msg, Mapping) and msg:
                # Convert param errors like {"field": "reason"} into a friendly shape
                param_key, param_value = next(iter(msg.items()))
                data = {
                    "code": "invalid_param",
                    "message": str(param_value),
                    "params": param_key,
                    "status": status_code,
                }
            else:
                data = {**default_data}
                data.setdefault("code", "unknown")
            return data, status_code, headers
        else:
            data = {**default_data}
            data.setdefault("code", "unknown")
            # If you need WWW-Authenticate for 401, add it to headers
            if status_code == 401:
                headers["WWW-Authenticate"] = 'Bearer realm="api"'
                # Check if this is a forced logout error - clear cookies
                error_code = getattr(e, "error_code", None)
                if error_code == "unauthorized_and_force_logout":
                    # Add Set-Cookie headers to clear auth cookies
                    headers["Set-Cookie"] = build_force_logout_cookie_headers()
            return data, status_code, headers

    _ = handle_http_exception

    @api.errorhandler(ValueError)
    def handle_value_error(e: ValueError):
        got_request_exception.send(current_app, exception=e)
        status_code = 400
        data = {"code": "invalid_param", "message": str(e), "status": status_code}
        return data, status_code

    _ = handle_value_error

    @api.errorhandler(AppInvokeQuotaExceededError)
    def handle_quota_exceeded(e: AppInvokeQuotaExceededError):
        got_request_exception.send(current_app, exception=e)
        status_code = 429
        data = {"code": "too_many_requests", "message": str(e), "status": status_code}
        return data, status_code

    _ = handle_quota_exceeded

    @api.errorhandler(Exception)
    def handle_general_exception(e: Exception):
        got_request_exception.send(current_app, exception=e)

        status_code = 500
        data: dict[str, Any] = getattr(e, "data", {"message": http_status_message(status_code)})

        # 🔒 Normalize non-mapping data (e.g., if someone set e.data = Response)
        if not isinstance(data, dict):
            data = {"message": str(e)}

        data.setdefault("code", "unknown")
        data.setdefault("status", status_code)

        # Log stack
        exc_info: Any = sys.exc_info()
        if exc_info[1] is None:
            exc_info = (None, None, None)
        current_app.log_exception(exc_info)

        return data, status_code

    _ = handle_general_exception


class ExternalApi(Api):
    _authorizations = {
        "Bearer": {
            "type": "apiKey",
            "in": "header",
            "name": "Authorization",
            "description": "Type: Bearer {your-api-key}",
        }
    }

    def __init__(self, app: Blueprint | Flask, *args, **kwargs):
        kwargs.setdefault("authorizations", self._authorizations)
        kwargs.setdefault("security", "Bearer")
        kwargs["add_specs"] = dify_config.SWAGGER_UI_ENABLED
        kwargs["doc"] = dify_config.SWAGGER_UI_PATH if dify_config.SWAGGER_UI_ENABLED else False

        # manual separate call on construction and init_app to ensure configs in kwargs effective
        super().__init__(app=None, *args, **kwargs)
        self.init_app(app, **kwargs)
        register_external_error_handlers(self)
Initial commit 2023-05-15 08:51:32 +08:00			`import re`
			`import sys`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`from collections.abc import Mapping`
feat: mypy for all type check (#10921) 2024-12-24 18:38:51 +08:00			`from typing import Any`
Initial commit 2023-05-15 08:51:32 +08:00
api: support to config disabling Swagger UI in api service (#24440) 2025-08-26 15:48:04 +08:00			`from flask import Blueprint, Flask, current_app, got_request_exception`
try flask_restful -> flask_restx (#24310) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2025-08-24 14:45:47 +09:00			`from flask_restx import Api`
Initial commit 2023-05-15 08:51:32 +08:00			`from werkzeug.exceptions import HTTPException`
try flask_restful -> flask_restx (#24310) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2025-08-24 14:45:47 +09:00			`from werkzeug.http import HTTP_STATUS_CODES`
Initial commit 2023-05-15 08:51:32 +08:00
api: support to config disabling Swagger UI in api service (#24440) 2025-08-26 15:48:04 +08:00			`from configs import dify_config`
feat: app rate limit (#5844) Co-authored-by: liuzhenghua-jk <liuzhenghua-jk@360shuke.com> Co-authored-by: takatost <takatost@gmail.com> 2024-07-10 13:31:35 +00:00			`from core.errors.error import AppInvokeQuotaExceededError`
Enabled cross-subdomain console sessions by making the cookie domain configurable and aligning the frontend so it reads the shared CSRF cookie. (#27190) 2025-10-28 10:04:24 +08:00			`from libs.token import build_force_logout_cookie_headers`
feat: app rate limit (#5844) Co-authored-by: liuzhenghua-jk <liuzhenghua-jk@360shuke.com> Co-authored-by: takatost <takatost@gmail.com> 2024-07-10 13:31:35 +00:00
Initial commit 2023-05-15 08:51:32 +08:00
try flask_restful -> flask_restx (#24310) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2025-08-24 14:45:47 +09:00			`def http_status_message(code):`
			`return HTTP_STATUS_CODES.get(code, "")`


remove bare list, dict, Sequence, None, Any (#25058) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2025-09-06 04:32:23 +09:00			`def register_external_error_handlers(api: Api):`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`@api.errorhandler(HTTPException)`
			`def handle_http_exception(e: HTTPException):`
Initial commit 2023-05-15 08:51:32 +08:00			`got_request_exception.send(current_app, exception=e)`

fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`# If Werkzeug already prepared a Response, just use it.`
use deco to avoid current_user (#26077) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> 2025-10-16 15:45:51 +09:00			`if e.response is not None:`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`return e.response`

			`status_code = getattr(e, "code", 500) or 500`
Initial commit 2023-05-15 08:51:32 +08:00
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`# Build a safe, dict-like payload`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`default_data = {`
			`"code": re.sub(r"(?<!^)(?=[A-Z])", "_", type(e).__name__).lower(),`
			`"message": getattr(e, "description", http_status_message(status_code)),`
			`"status": status_code,`
			`}`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`if default_data["message"] == "Failed to decode JSON object: Expecting value: line 1 column 1 (char 0)":`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`default_data["message"] = "Invalid JSON payload received or JSON payload is empty."`

fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`# Use headers on the exception if present; otherwise none.`
			`headers = {}`
			`exc_headers = getattr(e, "headers", None)`
			`if exc_headers:`
			`headers.update(exc_headers)`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`# Payload per status`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`if status_code == 406 and api.default_mediatype is None:`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {"code": "not_acceptable", "message": default_data["message"], "status": status_code}`
			`return data, status_code, headers`
Initial commit 2023-05-15 08:51:32 +08:00			`elif status_code == 400:`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`msg = default_data["message"]`
			`if isinstance(msg, Mapping) and msg:`
			`# Convert param errors like {"field": "reason"} into a friendly shape`
			`param_key, param_value = next(iter(msg.items()))`
			`data = {`
			`"code": "invalid_param",`
			`"message": str(param_value),`
			`"params": param_key,`
			`"status": status_code,`
			`}`
Initial commit 2023-05-15 08:51:32 +08:00			`else:`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {**default_data}`
			`data.setdefault("code", "unknown")`
			`return data, status_code, headers`
Initial commit 2023-05-15 08:51:32 +08:00			`else:`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {**default_data}`
			`data.setdefault("code", "unknown")`
			`# If you need WWW-Authenticate for 401, add it to headers`
			`if status_code == 401:`
			`headers["WWW-Authenticate"] = 'Bearer realm="api"'`
refactor: replace localStorage with HTTP-only cookies for auth tokens (#24365) Signed-off-by: NeatGuyCoding <15627489+NeatGuyCoding@users.noreply.github.com> Signed-off-by: lyzno1 <yuanyouhuilyz@gmail.com> Signed-off-by: kenwoodjw <blackxin55+@gmail.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: Yunlu Wen <wylswz@163.com> Co-authored-by: Joel <iamjoel007@gmail.com> Co-authored-by: GareArc <chen4851@purdue.edu> Co-authored-by: NFish <douxc512@gmail.com> Co-authored-by: Davide Delbianco <davide.delbianco@outlook.com> Co-authored-by: minglu7 <1347866672@qq.com> Co-authored-by: Ponder <ruan.lj@foxmail.com> Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com> Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> Co-authored-by: heyszt <270985384@qq.com> Co-authored-by: Asuka Minato <i@asukaminato.eu.org> Co-authored-by: Guangdong Liu <liugddx@gmail.com> Co-authored-by: Eric Guo <eric.guocz@gmail.com> Co-authored-by: NeatGuyCoding <15627489+NeatGuyCoding@users.noreply.github.com> Co-authored-by: XlKsyt <caixuesen@outlook.com> Co-authored-by: Dhruv Gorasiya <80987415+DhruvGorasiya@users.noreply.github.com> Co-authored-by: crazywoola <427733928@qq.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: lyzno1 <92089059+lyzno1@users.noreply.github.com> Co-authored-by: hj24 <mambahj24@gmail.com> Co-authored-by: GuanMu <ballmanjq@gmail.com> Co-authored-by: 非法操作 <hjlarry@163.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: Tonlo <123lzs123@gmail.com> Co-authored-by: Yusuke Yamada <yamachu.dev@gmail.com> Co-authored-by: Novice <novice12185727@gmail.com> Co-authored-by: kenwoodjw <blackxin55+@gmail.com> Co-authored-by: Ademílson Tonato <ademilsonft@outlook.com> Co-authored-by: znn <jubinkumarsoni@gmail.com> Co-authored-by: yangzheli <43645580+yangzheli@users.noreply.github.com> 2025-10-19 21:29:04 +08:00			`# Check if this is a forced logout error - clear cookies`
			`error_code = getattr(e, "error_code", None)`
			`if error_code == "unauthorized_and_force_logout":`
			`# Add Set-Cookie headers to clear auth cookies`
Enabled cross-subdomain console sessions by making the cookie domain configurable and aligning the frontend so it reads the shared CSRF cookie. (#27190) 2025-10-28 10:04:24 +08:00			`headers["Set-Cookie"] = build_force_logout_cookie_headers()`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`return data, status_code, headers`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`_ = handle_http_exception`

refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`@api.errorhandler(ValueError)`
			`def handle_value_error(e: ValueError):`
			`got_request_exception.send(current_app, exception=e)`
			`status_code = 400`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {"code": "invalid_param", "message": str(e), "status": status_code}`
			`return data, status_code`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`_ = handle_value_error`

refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`@api.errorhandler(AppInvokeQuotaExceededError)`
			`def handle_quota_exceeded(e: AppInvokeQuotaExceededError):`
			`got_request_exception.send(current_app, exception=e)`
			`status_code = 429`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {"code": "too_many_requests", "message": str(e), "status": status_code}`
			`return data, status_code`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`_ = handle_quota_exceeded`

refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`@api.errorhandler(Exception)`
			`def handle_general_exception(e: Exception):`
			`got_request_exception.send(current_app, exception=e)`

			`status_code = 500`
feat(typing): Remove "libs" from pyright exclude and fix typing errors (#26423) Co-authored-by: google-labs-jules[bot] <161369871+google-labs-jules[bot]@users.noreply.github.com> 2025-09-29 20:23:22 +09:00			`data: dict[str, Any] = getattr(e, "data", {"message": http_status_message(status_code)})`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00
			`# 🔒 Normalize non-mapping data (e.g., if someone set e.data = Response)`
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`if not isinstance(data, dict):`
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data = {"message": str(e)}`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`data.setdefault("code", "unknown")`
			`data.setdefault("status", status_code)`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`# Log stack`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`exc_info: Any = sys.exc_info()`
			`if exc_info[1] is None:`
use deco to avoid current_user (#26077) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> 2025-10-16 15:45:51 +09:00			`exc_info = (None, None, None)`
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`current_app.log_exception(exc_info)`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00			`return data, status_code`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
Fix basedpyright type errors (#25435) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> 2025-09-10 01:54:26 +08:00			`_ = handle_general_exception`

refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00
			`class ExternalApi(Api):`
feat: add authorizations for swagger doc (#24518) 2025-08-26 11:41:00 +08:00			`_authorizations = {`
			`"Bearer": {`
			`"type": "apiKey",`
			`"in": "header",`
			`"name": "Authorization",`
			`"description": "Type: Bearer {your-api-key}",`
			`}`
			`}`

api: support to config disabling Swagger UI in api service (#24440) 2025-08-26 15:48:04 +08:00			`def __init__(self, app: Blueprint \| Flask, args, *kwargs):`
feat: add authorizations for swagger doc (#24518) 2025-08-26 11:41:00 +08:00			`kwargs.setdefault("authorizations", self._authorizations)`
			`kwargs.setdefault("security", "Bearer")`
api: support to config disabling Swagger UI in api service (#24440) 2025-08-26 15:48:04 +08:00			`kwargs["add_specs"] = dify_config.SWAGGER_UI_ENABLED`
			`kwargs["doc"] = dify_config.SWAGGER_UI_PATH if dify_config.SWAGGER_UI_ENABLED else False`

			`# manual separate call on construction and init_app to ensure configs in kwargs effective`
rm type ignore (#25715) Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2025-10-21 12:26:58 +09:00			`super().__init__(app=None, args, *kwargs)`
api: support to config disabling Swagger UI in api service (#24440) 2025-08-26 15:48:04 +08:00			`self.init_app(app, **kwargs)`
refactor: better error handler (#24422) Signed-off-by: -LAN- <laipz8200@outlook.com> 2025-08-25 09:28:42 +08:00			`register_external_error_handlers(self)`