OpenSource
/
dify
Vērot 4
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 152 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
6889 Revīzijas
4 Atzari
Koks: 2b91ba2411
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '2b91ba2411'
${ noResults }
dify/api/libs/login.py

login.py 2.5KB
Neapstrādāts Vainot Vēsture

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. from functools import wraps

  2. from typing import Union, cast

  3. 

  4. from flask import current_app, g, has_request_context, request

  5. from flask_login.config import EXEMPT_METHODS  # type: ignore

  6. from werkzeug.local import LocalProxy

  7. 

  8. from configs import dify_config

  9. from models.account import Account

  10. from models.model import EndUser

  11. 

  12. #: A proxy for the current user. If no user is logged in, this will be an

  13. #: anonymous user

  14. current_user = cast(Union[Account, EndUser, None], LocalProxy(lambda: _get_user()))

  15. 

  16. 

  17. def login_required(func):

  18.     """

  19.     If you decorate a view with this, it will ensure that the current user is

  20.     logged in and authenticated before calling the actual view. (If they are

  21.     not, it calls the :attr:`LoginManager.unauthorized` callback.) For

  22.     example::

  23. 

  24.         @app.route('/post')

  25.         @login_required

  26.         def post():

  27.             pass

  28. 

  29.     If there are only certain times you need to require that your user is

  30.     logged in, you can do so with::

  31. 

  32.         if not current_user.is_authenticated:

  33.             return current_app.login_manager.unauthorized()

  34. 

  35.     ...which is essentially the code that this function adds to your views.

  36. 

  37.     It can be convenient to globally turn off authentication when unit testing.

  38.     To enable this, if the application configuration variable `LOGIN_DISABLED`

  39.     is set to `True`, this decorator will be ignored.

  40. 

  41.     .. Note ::

  42. 

  43.         Per `W3 guidelines for CORS preflight requests

  44.         <http://www.w3.org/TR/cors/#cross-origin-request-with-preflight-0>`_,

  45.         HTTP ``OPTIONS`` requests are exempt from login checks.

  46. 

  47.     :param func: The view function to decorate.

  48.     :type func: function

  49.     """

  50. 

  51.     @wraps(func)

  52.     def decorated_view(*args, **kwargs):

  53.         if request.method in EXEMPT_METHODS or dify_config.LOGIN_DISABLED:

  54.             pass

  55.         elif current_user is not None and not current_user.is_authenticated:

  56.             return current_app.login_manager.unauthorized()  # type: ignore

  57. 

  58.         # flask 1.x compatibility

  59.         # current_app.ensure_sync is only available in Flask >= 2.0

  60.         if callable(getattr(current_app, "ensure_sync", None)):

  61.             return current_app.ensure_sync(func)(*args, **kwargs)

  62.         return func(*args, **kwargs)

  63. 

  64.     return decorated_view

  65. 

  66. 

  67. def _get_user() -> EndUser | Account | None:

  68.     if has_request_context():

  69.         if "_login_user" not in g:

  70.             current_app.login_manager._load_user()  # type: ignore

  71. 

  72.         return g._login_user  # type: ignore

  73. 

  74.     return None