OpenSource
/
dify
关注 4
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 152 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
6424 提交
4 分支
目录树: 366d42d9c0
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '366d42d9c0'
${ noResults }
dify/api/core/helper/ssrf_proxy.py

ssrf_proxy.py 4.1KB
原始文件 普通视图 文件历史

Feat/show detailed custom api response when testing (#2400)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
feat: support max_retries in jina requests (#6585)
1年前
Feat/show detailed custom api response when testing (#2400)
1年前
chore: refactor the http executor node (#5212)
1年前
enhancement: introduce Ruff for Python linter for reordering and removing unused imports with automated pre-commit and sytle check (#2366)
1年前
fix: config violations when running db migtration ci tests (#10428)
1年前
Feat/show detailed custom api response when testing (#2400)
1年前
feat: add Http Request Node to skip ssl verify function #15177 (#15664)
7 个月前
feat: support max_retries in jina requests (#6585)
1年前
chore: refactor the http executor node (#5212)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
fix: change MaxRetriesExceededError to inherit from ValueError (#11934) Signed-off-by: -LAN- <laipz8200@outlook.com>
10 个月前
Feat: continue on error (#11458) Co-authored-by: Novice Lee <novicelee@NovicedeMacBook-Pro.local> Co-authored-by: Novice Lee <novicelee@NoviPro.local>
10 个月前
feat: support max_retries in jina requests (#6585)
1年前
security/SSRF vulns (#6682)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
feat: The SSRF request timeout configuration item is added (#10292)
1年前
fix: config violations when running db migtration ci tests (#10428)
1年前
feat: The SSRF request timeout configuration item is added (#10292)
1年前
Http requests node add ssl verify (#18125) Co-authored-by: lizb <lizb@sugon.com>
6 个月前
feat: support max_retries in jina requests (#6585)
1年前
fix: config violations when running db migtration ci tests (#10428)
1年前
Http requests node add ssl verify (#18125) Co-authored-by: lizb <lizb@sugon.com>
6 个月前
feat/enhance the multi-modal support (#8818)
1年前
fix: SSRF proxy file descriptor leak in concurrent requests (#13108)
9 个月前
Http requests node add ssl verify (#18125) Co-authored-by: lizb <lizb@sugon.com>
6 个月前
fix: SSRF proxy file descriptor leak in concurrent requests (#13108)
9 个月前
Http requests node add ssl verify (#18125) Co-authored-by: lizb <lizb@sugon.com>
6 个月前
feat/enhance the multi-modal support (#8818)
1年前
feat: support max_retries in jina requests (#6585)
1年前
Http requests node add ssl verify (#18125) Co-authored-by: lizb <lizb@sugon.com>
6 个月前
feat/enhance the multi-modal support (#8818)
1年前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
fix: remove the unused retry index field (#11903) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: Novice Lee <novicelee@NoviPro.local> Co-authored-by: -LAN- <laipz8200@outlook.com>
10 个月前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
Feat: continue on error (#11458) Co-authored-by: Novice Lee <novicelee@NovicedeMacBook-Pro.local> Co-authored-by: Novice Lee <novicelee@NoviPro.local>
10 个月前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
chore: refactor the http executor node (#5212)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
feat: support max_retries in jina requests (#6585)
1年前
chore(api/core): apply ruff reformatting (#7624)
1年前
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. """

  2. Proxy requests to avoid SSRF

  3. """

  4. 

  5. import logging

  6. import time

  7. 

  8. import httpx

  9. 

  10. from configs import dify_config

  11. 

  12. SSRF_DEFAULT_MAX_RETRIES = dify_config.SSRF_DEFAULT_MAX_RETRIES

  13. 

  14. HTTP_REQUEST_NODE_SSL_VERIFY = True  # Default value for HTTP_REQUEST_NODE_SSL_VERIFY is True

  15. try:

  16.     HTTP_REQUEST_NODE_SSL_VERIFY = dify_config.HTTP_REQUEST_NODE_SSL_VERIFY

  17.     http_request_node_ssl_verify_lower = str(HTTP_REQUEST_NODE_SSL_VERIFY).lower()

  18.     if http_request_node_ssl_verify_lower == "true":

  19.         HTTP_REQUEST_NODE_SSL_VERIFY = True

  20.     elif http_request_node_ssl_verify_lower == "false":

  21.         HTTP_REQUEST_NODE_SSL_VERIFY = False

  22.     else:

  23.         raise ValueError("Invalid value. HTTP_REQUEST_NODE_SSL_VERIFY should be 'True' or 'False'")

  24. except NameError:

  25.     HTTP_REQUEST_NODE_SSL_VERIFY = True

  26. 

  27. BACKOFF_FACTOR = 0.5

  28. STATUS_FORCELIST = [429, 500, 502, 503, 504]

  29. 

  30. 

  31. class MaxRetriesExceededError(ValueError):

  32.     """Raised when the maximum number of retries is exceeded."""

  33. 

  34.     pass

  35. 

  36. 

  37. def make_request(method, url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  38.     if "allow_redirects" in kwargs:

  39.         allow_redirects = kwargs.pop("allow_redirects")

  40.         if "follow_redirects" not in kwargs:

  41.             kwargs["follow_redirects"] = allow_redirects

  42. 

  43.     if "timeout" not in kwargs:

  44.         kwargs["timeout"] = httpx.Timeout(

  45.             timeout=dify_config.SSRF_DEFAULT_TIME_OUT,

  46.             connect=dify_config.SSRF_DEFAULT_CONNECT_TIME_OUT,

  47.             read=dify_config.SSRF_DEFAULT_READ_TIME_OUT,

  48.             write=dify_config.SSRF_DEFAULT_WRITE_TIME_OUT,

  49.         )

  50. 

  51.     if "ssl_verify" not in kwargs:

  52.         kwargs["ssl_verify"] = HTTP_REQUEST_NODE_SSL_VERIFY

  53. 

  54.     ssl_verify = kwargs.pop("ssl_verify")

  55. 

  56.     retries = 0

  57.     while retries <= max_retries:

  58.         try:

  59.             if dify_config.SSRF_PROXY_ALL_URL:

  60.                 with httpx.Client(proxy=dify_config.SSRF_PROXY_ALL_URL, verify=ssl_verify) as client:

  61.                     response = client.request(method=method, url=url, **kwargs)

  62.             elif dify_config.SSRF_PROXY_HTTP_URL and dify_config.SSRF_PROXY_HTTPS_URL:

  63.                 proxy_mounts = {

  64.                     "http://": httpx.HTTPTransport(proxy=dify_config.SSRF_PROXY_HTTP_URL, verify=ssl_verify),

  65.                     "https://": httpx.HTTPTransport(proxy=dify_config.SSRF_PROXY_HTTPS_URL, verify=ssl_verify),

  66.                 }

  67.                 with httpx.Client(mounts=proxy_mounts, verify=ssl_verify) as client:

  68.                     response = client.request(method=method, url=url, **kwargs)

  69.             else:

  70.                 with httpx.Client(verify=ssl_verify) as client:

  71.                     response = client.request(method=method, url=url, **kwargs)

  72. 

  73.             if response.status_code not in STATUS_FORCELIST:

  74.                 return response

  75.             else:

  76.                 logging.warning(f"Received status code {response.status_code} for URL {url} which is in the force list")

  77. 

  78.         except httpx.RequestError as e:

  79.             logging.warning(f"Request to URL {url} failed on attempt {retries + 1}: {e}")

  80.             if max_retries == 0:

  81.                 raise

  82. 

  83.         retries += 1

  84.         if retries <= max_retries:

  85.             time.sleep(BACKOFF_FACTOR * (2 ** (retries - 1)))

  86.     raise MaxRetriesExceededError(f"Reached maximum retries ({max_retries}) for URL {url}")

  87. 

  88. 

  89. def get(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  90.     return make_request("GET", url, max_retries=max_retries, **kwargs)

  91. 

  92. 

  93. def post(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  94.     return make_request("POST", url, max_retries=max_retries, **kwargs)

  95. 

  96. 

  97. def put(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  98.     return make_request("PUT", url, max_retries=max_retries, **kwargs)

  99. 

  100. 

  101. def patch(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  102.     return make_request("PATCH", url, max_retries=max_retries, **kwargs)

  103. 

  104. 

  105. def delete(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  106.     return make_request("DELETE", url, max_retries=max_retries, **kwargs)

  107. 

  108. 

  109. def head(url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):

  110.     return make_request("HEAD", url, max_retries=max_retries, **kwargs)