2023-05-25 15:54:45 +08:00
|
|
|
from functools import wraps
|
|
|
|
|
|
2024-02-06 13:21:13 +08:00
|
|
|
from flask import request
|
2024-12-24 18:38:51 +08:00
|
|
|
from flask_restful import Resource, reqparse # type: ignore
|
2024-10-21 20:38:27 +08:00
|
|
|
from sqlalchemy import select
|
|
|
|
|
from sqlalchemy.orm import Session
|
2024-02-06 13:21:13 +08:00
|
|
|
from werkzeug.exceptions import NotFound, Unauthorized
|
|
|
|
|
|
2024-10-22 11:01:32 +08:00
|
|
|
from configs import dify_config
|
2024-02-01 18:11:57 +08:00
|
|
|
from constants.languages import supported_language
|
2023-05-25 15:54:45 +08:00
|
|
|
from controllers.console import api
|
|
|
|
|
from controllers.console.wraps import only_edition_cloud
|
|
|
|
|
from extensions.ext_database import db
|
2024-01-12 12:34:01 +08:00
|
|
|
from models.model import App, InstalledApp, RecommendedApp
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
|
|
|
|
|
def admin_required(view):
|
|
|
|
|
@wraps(view)
|
|
|
|
|
def decorated(*args, **kwargs):
|
2024-10-22 11:01:32 +08:00
|
|
|
if not dify_config.ADMIN_API_KEY:
|
2024-08-26 15:29:10 +08:00
|
|
|
raise Unauthorized("API key is invalid.")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
auth_header = request.headers.get("Authorization")
|
2023-05-25 15:54:45 +08:00
|
|
|
if auth_header is None:
|
2024-08-26 15:29:10 +08:00
|
|
|
raise Unauthorized("Authorization header is missing.")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
if " " not in auth_header:
|
|
|
|
|
raise Unauthorized("Invalid Authorization header format. Expected 'Bearer <api-key>' format.")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
auth_scheme, auth_token = auth_header.split(None, 1)
|
|
|
|
|
auth_scheme = auth_scheme.lower()
|
|
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
if auth_scheme != "bearer":
|
|
|
|
|
raise Unauthorized("Invalid Authorization header format. Expected 'Bearer <api-key>' format.")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
2024-12-19 18:30:51 +08:00
|
|
|
if auth_token != dify_config.ADMIN_API_KEY:
|
2024-08-26 15:29:10 +08:00
|
|
|
raise Unauthorized("API key is invalid.")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
return view(*args, **kwargs)
|
|
|
|
|
|
|
|
|
|
return decorated
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class InsertExploreAppListApi(Resource):
|
|
|
|
|
@only_edition_cloud
|
|
|
|
|
@admin_required
|
|
|
|
|
def post(self):
|
|
|
|
|
parser = reqparse.RequestParser()
|
2024-08-26 15:29:10 +08:00
|
|
|
parser.add_argument("app_id", type=str, required=True, nullable=False, location="json")
|
|
|
|
|
parser.add_argument("desc", type=str, location="json")
|
|
|
|
|
parser.add_argument("copyright", type=str, location="json")
|
|
|
|
|
parser.add_argument("privacy_policy", type=str, location="json")
|
|
|
|
|
parser.add_argument("custom_disclaimer", type=str, location="json")
|
|
|
|
|
parser.add_argument("language", type=supported_language, required=True, nullable=False, location="json")
|
|
|
|
|
parser.add_argument("category", type=str, required=True, nullable=False, location="json")
|
|
|
|
|
parser.add_argument("position", type=int, required=True, nullable=False, location="json")
|
2023-05-25 15:54:45 +08:00
|
|
|
args = parser.parse_args()
|
|
|
|
|
|
2024-10-21 20:38:27 +08:00
|
|
|
with Session(db.engine) as session:
|
|
|
|
|
app = session.execute(select(App).filter(App.id == args["app_id"])).scalar_one_or_none()
|
2023-05-25 15:54:45 +08:00
|
|
|
if not app:
|
2025-01-23 14:48:16 +08:00
|
|
|
raise NotFound(f"App '{args['app_id']}' is not found")
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
site = app.site
|
|
|
|
|
if not site:
|
2024-09-12 15:50:49 +08:00
|
|
|
desc = args["desc"] or ""
|
|
|
|
|
copy_right = args["copyright"] or ""
|
|
|
|
|
privacy_policy = args["privacy_policy"] or ""
|
|
|
|
|
custom_disclaimer = args["custom_disclaimer"] or ""
|
2023-05-25 15:54:45 +08:00
|
|
|
else:
|
2024-09-12 15:50:49 +08:00
|
|
|
desc = site.description or args["desc"] or ""
|
|
|
|
|
copy_right = site.copyright or args["copyright"] or ""
|
|
|
|
|
privacy_policy = site.privacy_policy or args["privacy_policy"] or ""
|
|
|
|
|
custom_disclaimer = site.custom_disclaimer or args["custom_disclaimer"] or ""
|
2023-05-25 15:54:45 +08:00
|
|
|
|
2024-10-21 20:38:27 +08:00
|
|
|
with Session(db.engine) as session:
|
|
|
|
|
recommended_app = session.execute(
|
|
|
|
|
select(RecommendedApp).filter(RecommendedApp.app_id == args["app_id"])
|
|
|
|
|
).scalar_one_or_none()
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
if not recommended_app:
|
|
|
|
|
recommended_app = RecommendedApp(
|
|
|
|
|
app_id=app.id,
|
2023-05-25 18:53:28 +08:00
|
|
|
description=desc,
|
2023-05-25 15:54:45 +08:00
|
|
|
copyright=copy_right,
|
|
|
|
|
privacy_policy=privacy_policy,
|
2024-05-18 10:52:48 +08:00
|
|
|
custom_disclaimer=custom_disclaimer,
|
2024-08-26 15:29:10 +08:00
|
|
|
language=args["language"],
|
|
|
|
|
category=args["category"],
|
|
|
|
|
position=args["position"],
|
2023-05-25 15:54:45 +08:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
db.session.add(recommended_app)
|
|
|
|
|
|
|
|
|
|
app.is_public = True
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
return {"result": "success"}, 201
|
2023-05-25 15:54:45 +08:00
|
|
|
else:
|
2023-05-25 18:53:28 +08:00
|
|
|
recommended_app.description = desc
|
2023-05-25 16:01:41 +08:00
|
|
|
recommended_app.copyright = copy_right
|
|
|
|
|
recommended_app.privacy_policy = privacy_policy
|
2024-05-18 10:52:48 +08:00
|
|
|
recommended_app.custom_disclaimer = custom_disclaimer
|
2024-08-26 15:29:10 +08:00
|
|
|
recommended_app.language = args["language"]
|
|
|
|
|
recommended_app.category = args["category"]
|
|
|
|
|
recommended_app.position = args["position"]
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
app.is_public = True
|
|
|
|
|
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
return {"result": "success"}, 200
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
|
|
|
|
|
class InsertExploreAppApi(Resource):
|
|
|
|
|
@only_edition_cloud
|
|
|
|
|
@admin_required
|
|
|
|
|
def delete(self, app_id):
|
2024-10-21 20:38:27 +08:00
|
|
|
with Session(db.engine) as session:
|
|
|
|
|
recommended_app = session.execute(
|
|
|
|
|
select(RecommendedApp).filter(RecommendedApp.app_id == str(app_id))
|
|
|
|
|
).scalar_one_or_none()
|
|
|
|
|
|
2023-05-25 15:54:45 +08:00
|
|
|
if not recommended_app:
|
2024-08-26 15:29:10 +08:00
|
|
|
return {"result": "success"}, 204
|
2023-05-25 15:54:45 +08:00
|
|
|
|
2024-10-21 20:38:27 +08:00
|
|
|
with Session(db.engine) as session:
|
|
|
|
|
app = session.execute(select(App).filter(App.id == recommended_app.app_id)).scalar_one_or_none()
|
|
|
|
|
|
2023-05-25 15:54:45 +08:00
|
|
|
if app:
|
|
|
|
|
app.is_public = False
|
|
|
|
|
|
2024-10-21 20:38:27 +08:00
|
|
|
with Session(db.engine) as session:
|
|
|
|
|
installed_apps = session.execute(
|
|
|
|
|
select(InstalledApp).filter(
|
|
|
|
|
InstalledApp.app_id == recommended_app.app_id,
|
|
|
|
|
InstalledApp.tenant_id != InstalledApp.app_owner_tenant_id,
|
|
|
|
|
)
|
|
|
|
|
).all()
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
for installed_app in installed_apps:
|
|
|
|
|
db.session.delete(installed_app)
|
|
|
|
|
|
|
|
|
|
db.session.delete(recommended_app)
|
|
|
|
|
db.session.commit()
|
|
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
return {"result": "success"}, 204
|
2023-05-25 15:54:45 +08:00
|
|
|
|
|
|
|
|
|
2024-08-26 15:29:10 +08:00
|
|
|
api.add_resource(InsertExploreAppListApi, "/admin/insert-explore-apps")
|
|
|
|
|
api.add_resource(InsertExploreAppApi, "/admin/insert-explore-apps/<uuid:app_id>")
|
