OpenSource/dify - dify - 浩瀚星图

ИН на ревизия: c60c754ac9

Автор	SHA1	Съобщение	Дата
QuantumGhost	874406d934	security(api): fix privilege escalation vulnerability in model config and chat message APIs (#25518) The `ChatMessageApi` (`POST /console/api/apps/{app_id}/chat-messages`) and `ModelConfigResource` (`POST /console/api/apps/{app_id}/model-config`) endpoints do not properly validate user permissions, allowing users without `editor` permission to access restricted functionality. This PR addresses this issue by adding proper permission check.	преди 1 месец
Asuka Minato	2b91ba2411	example: limit current user usage (#24470) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	преди 2 месеца
-LAN-	b7466f8b65	feat: API docs for service api (#24425) Signed-off-by: -LAN- <laipz8200@outlook.com>	преди 2 месеца
Asuka Minato	18dce66443	try flask_restful -> flask_restx (#24310) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: -LAN- <laipz8200@outlook.com>	преди 2 месеца
Zhehao Peng	c0702aacac	Use typing.Literal to replace str places (#24099) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	преди 2 месеца
Asuka Minato	a189d293f8	make logging not use f-str, change others to f-str (#22882)	преди 3 месеца
quicksand	2d4f8f1377	fix: apps/annotation missing 1 required positional argument: 'end_user' (#20428)	преди 5 месеца
-LAN-	b357eca307	fix: Copy request context and current user in app generators. (#20240) Signed-off-by: -LAN- <laipz8200@outlook.com>	преди 5 месеца
Bowen Liang	8537abfff8	chore: avoid repeated type ignore noqa by adding flask_restful and flask_login in mypy import exclusions (#19224)	преди 6 месеца
小马哥	e5bdc1438a	fix: annotation update need use http put method and annotation-reply api doc parms wrong (#18891)	преди 6 месеца
devxing	136995d2a1	fix: change delete app status code from 204 to 200 (#18398) Co-authored-by: devxing <devxing@gmail.com> Co-authored-by: crazywoola <427733928@qq.com>	преди 6 месеца
Jasonfish	0afad94378	fix: Correct "The job is not exist" to "The job does not exist" (#17516)	преди 7 месеца
Jasonfish	fd443941a2	feat(improve-api-endpoints): Added Datasets and Annotation APIs (#12237)	преди 7 месеца

13 Ревизии (c60c754ac9fb1cde43862dd83a76a59ee61c20f5)