mirror of
https://github.com/infiniflow/ragflow.git
synced 2025-12-06 20:07:04 +00:00
d81e4095de
### What problem does this PR solve? Google drive supports web-based credentials. <img width="1204" height="612" alt="image" src="https://github.com/user-attachments/assets/70291c63-a2dd-4a80-ae20-807fe034cdbc" /> ### Type of change - [x] New Feature (non-breaking change which adds functionality)
104 lines
2.8 KiB
Python
104 lines
2.8 KiB
Python
from enum import Enum
|
|
|
|
from common.data_source.config import DocumentSource
|
|
|
|
SLIM_BATCH_SIZE = 500
|
|
# NOTE: do not need https://www.googleapis.com/auth/documents.readonly
|
|
# this is counted under `/auth/drive.readonly`
|
|
GOOGLE_SCOPES = {
|
|
DocumentSource.GOOGLE_DRIVE: [
|
|
"https://www.googleapis.com/auth/drive.readonly",
|
|
"https://www.googleapis.com/auth/drive.metadata.readonly",
|
|
"https://www.googleapis.com/auth/admin.directory.group.readonly",
|
|
"https://www.googleapis.com/auth/admin.directory.user.readonly",
|
|
],
|
|
DocumentSource.GMAIL: [
|
|
"https://www.googleapis.com/auth/gmail.readonly",
|
|
"https://www.googleapis.com/auth/admin.directory.user.readonly",
|
|
"https://www.googleapis.com/auth/admin.directory.group.readonly",
|
|
],
|
|
}
|
|
|
|
|
|
# This is the Oauth token
|
|
DB_CREDENTIALS_DICT_TOKEN_KEY = "google_tokens"
|
|
# This is the service account key
|
|
DB_CREDENTIALS_DICT_SERVICE_ACCOUNT_KEY = "google_service_account_key"
|
|
# The email saved for both auth types
|
|
DB_CREDENTIALS_PRIMARY_ADMIN_KEY = "google_primary_admin"
|
|
|
|
|
|
# https://developers.google.com/workspace/guides/create-credentials
|
|
# Internally defined authentication method type.
|
|
# The value must be one of "oauth_interactive" or "uploaded"
|
|
# Used to disambiguate whether credentials have already been created via
|
|
# certain methods and what actions we allow users to take
|
|
DB_CREDENTIALS_AUTHENTICATION_METHOD = "authentication_method"
|
|
|
|
|
|
class GoogleOAuthAuthenticationMethod(str, Enum):
|
|
OAUTH_INTERACTIVE = "oauth_interactive"
|
|
UPLOADED = "uploaded"
|
|
|
|
|
|
USER_FIELDS = "nextPageToken, users(primaryEmail)"
|
|
|
|
|
|
# Error message substrings
|
|
MISSING_SCOPES_ERROR_STR = "client not authorized for any of the scopes requested"
|
|
SCOPE_INSTRUCTIONS = ""
|
|
|
|
|
|
GOOGLE_DRIVE_WEB_OAUTH_POPUP_TEMPLATE = """<!DOCTYPE html>
|
|
<html lang="en">
|
|
<head>
|
|
<meta charset="utf-8" />
|
|
<title>Google Drive Authorization</title>
|
|
<style>
|
|
body {{
|
|
font-family: Arial, sans-serif;
|
|
background: #f8fafc;
|
|
color: #0f172a;
|
|
display: flex;
|
|
flex-direction: column;
|
|
align-items: center;
|
|
justify-content: center;
|
|
min-height: 100vh;
|
|
margin: 0;
|
|
}}
|
|
.card {{
|
|
background: white;
|
|
padding: 32px;
|
|
border-radius: 12px;
|
|
box-shadow: 0 8px 30px rgba(15, 23, 42, 0.1);
|
|
max-width: 420px;
|
|
text-align: center;
|
|
}}
|
|
h1 {{
|
|
font-size: 1.5rem;
|
|
margin-bottom: 12px;
|
|
}}
|
|
p {{
|
|
font-size: 0.95rem;
|
|
line-height: 1.5;
|
|
}}
|
|
</style>
|
|
</head>
|
|
<body>
|
|
<div class="card">
|
|
<h1>{heading}</h1>
|
|
<p>{message}</p>
|
|
<p>You can close this window.</p>
|
|
</div>
|
|
<script>
|
|
(function(){{
|
|
if (window.opener) {{
|
|
window.opener.postMessage({payload_json}, "*");
|
|
}}
|
|
{auto_close}
|
|
}})();
|
|
</script>
|
|
</body>
|
|
</html>
|
|
"""
|