OpenSource
/
dify
關注 4
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 152 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7182 提交
4 分支
目錄樹: b51c724a94
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'b51c724a94'
${ noResults }
dify/api/controllers/console/auth/data_source_oauth.py

data_source_oauth.py 6.4KB
原始文件 Blame 歷史記錄

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 
  1. import logging

  2. 

  3. import requests

  4. from flask import current_app, redirect, request

  5. from flask_login import current_user

  6. from flask_restx import Resource, fields

  7. from werkzeug.exceptions import Forbidden

  8. 

  9. from configs import dify_config

  10. from controllers.console import api, console_ns

  11. from libs.login import login_required

  12. from libs.oauth_data_source import NotionOAuth

  13. 

  14. from ..wraps import account_initialization_required, setup_required

  15. 

  16. logger = logging.getLogger(__name__)

  17. 

  18. 

  19. def get_oauth_providers():

  20.     with current_app.app_context():

  21.         notion_oauth = NotionOAuth(

  22.             client_id=dify_config.NOTION_CLIENT_ID or "",

  23.             client_secret=dify_config.NOTION_CLIENT_SECRET or "",

  24.             redirect_uri=dify_config.CONSOLE_API_URL + "/console/api/oauth/data-source/callback/notion",

  25.         )

  26. 

  27.         OAUTH_PROVIDERS = {"notion": notion_oauth}

  28.         return OAUTH_PROVIDERS

  29. 

  30. 

  31. @console_ns.route("/oauth/data-source/<string:provider>")

  32. class OAuthDataSource(Resource):

  33.     @api.doc("oauth_data_source")

  34.     @api.doc(description="Get OAuth authorization URL for data source provider")

  35.     @api.doc(params={"provider": "Data source provider name (notion)"})

  36.     @api.response(

  37.         200,

  38.         "Authorization URL or internal setup success",

  39.         api.model(

  40.             "OAuthDataSourceResponse",

  41.             {"data": fields.Raw(description="Authorization URL or 'internal' for internal setup")},

  42.         ),

  43.     )

  44.     @api.response(400, "Invalid provider")

  45.     @api.response(403, "Admin privileges required")

  46.     def get(self, provider: str):

  47.         # The role of the current user in the table must be admin or owner

  48.         if not current_user.is_admin_or_owner:

  49.             raise Forbidden()

  50.         OAUTH_DATASOURCE_PROVIDERS = get_oauth_providers()

  51.         with current_app.app_context():

  52.             oauth_provider = OAUTH_DATASOURCE_PROVIDERS.get(provider)

  53.         if not oauth_provider:

  54.             return {"error": "Invalid provider"}, 400

  55.         if dify_config.NOTION_INTEGRATION_TYPE == "internal":

  56.             internal_secret = dify_config.NOTION_INTERNAL_SECRET

  57.             if not internal_secret:

  58.                 return ({"error": "Internal secret is not set"},)

  59.             oauth_provider.save_internal_access_token(internal_secret)

  60.             return {"data": "internal"}

  61.         else:

  62.             auth_url = oauth_provider.get_authorization_url()

  63.             return {"data": auth_url}, 200

  64. 

  65. 

  66. @console_ns.route("/oauth/data-source/callback/<string:provider>")

  67. class OAuthDataSourceCallback(Resource):

  68.     @api.doc("oauth_data_source_callback")

  69.     @api.doc(description="Handle OAuth callback from data source provider")

  70.     @api.doc(

  71.         params={

  72.             "provider": "Data source provider name (notion)",

  73.             "code": "Authorization code from OAuth provider",

  74.             "error": "Error message from OAuth provider",

  75.         }

  76.     )

  77.     @api.response(302, "Redirect to console with result")

  78.     @api.response(400, "Invalid provider")

  79.     def get(self, provider: str):

  80.         OAUTH_DATASOURCE_PROVIDERS = get_oauth_providers()

  81.         with current_app.app_context():

  82.             oauth_provider = OAUTH_DATASOURCE_PROVIDERS.get(provider)

  83.         if not oauth_provider:

  84.             return {"error": "Invalid provider"}, 400

  85.         if "code" in request.args:

  86.             code = request.args.get("code")

  87. 

  88.             return redirect(f"{dify_config.CONSOLE_WEB_URL}?type=notion&code={code}")

  89.         elif "error" in request.args:

  90.             error = request.args.get("error")

  91. 

  92.             return redirect(f"{dify_config.CONSOLE_WEB_URL}?type=notion&error={error}")

  93.         else:

  94.             return redirect(f"{dify_config.CONSOLE_WEB_URL}?type=notion&error=Access denied")

  95. 

  96. 

  97. @console_ns.route("/oauth/data-source/binding/<string:provider>")

  98. class OAuthDataSourceBinding(Resource):

  99.     @api.doc("oauth_data_source_binding")

  100.     @api.doc(description="Bind OAuth data source with authorization code")

  101.     @api.doc(

  102.         params={"provider": "Data source provider name (notion)", "code": "Authorization code from OAuth provider"}

  103.     )

  104.     @api.response(

  105.         200,

  106.         "Data source binding success",

  107.         api.model("OAuthDataSourceBindingResponse", {"result": fields.String(description="Operation result")}),

  108.     )

  109.     @api.response(400, "Invalid provider or code")

  110.     def get(self, provider: str):

  111.         OAUTH_DATASOURCE_PROVIDERS = get_oauth_providers()

  112.         with current_app.app_context():

  113.             oauth_provider = OAUTH_DATASOURCE_PROVIDERS.get(provider)

  114.         if not oauth_provider:

  115.             return {"error": "Invalid provider"}, 400

  116.         if "code" in request.args:

  117.             code = request.args.get("code", "")

  118.             if not code:

  119.                 return {"error": "Invalid code"}, 400

  120.             try:

  121.                 oauth_provider.get_access_token(code)

  122.             except requests.HTTPError as e:

  123.                 logger.exception(

  124.                     "An error occurred during the OAuthCallback process with %s: %s", provider, e.response.text

  125.                 )

  126.                 return {"error": "OAuth data source process failed"}, 400

  127. 

  128.             return {"result": "success"}, 200

  129. 

  130. 

  131. @console_ns.route("/oauth/data-source/<string:provider>/<uuid:binding_id>/sync")

  132. class OAuthDataSourceSync(Resource):

  133.     @api.doc("oauth_data_source_sync")

  134.     @api.doc(description="Sync data from OAuth data source")

  135.     @api.doc(params={"provider": "Data source provider name (notion)", "binding_id": "Data source binding ID"})

  136.     @api.response(

  137.         200,

  138.         "Data source sync success",

  139.         api.model("OAuthDataSourceSyncResponse", {"result": fields.String(description="Operation result")}),

  140.     )

  141.     @api.response(400, "Invalid provider or sync failed")

  142.     @setup_required

  143.     @login_required

  144.     @account_initialization_required

  145.     def get(self, provider, binding_id):

  146.         provider = str(provider)

  147.         binding_id = str(binding_id)

  148.         OAUTH_DATASOURCE_PROVIDERS = get_oauth_providers()

  149.         with current_app.app_context():

  150.             oauth_provider = OAUTH_DATASOURCE_PROVIDERS.get(provider)

  151.         if not oauth_provider:

  152.             return {"error": "Invalid provider"}, 400

  153.         try:

  154.             oauth_provider.sync_data_source(binding_id)

  155.         except requests.HTTPError as e:

  156.             logger.exception(

  157.                 "An error occurred during the OAuthCallback process with %s: %s", provider, e.response.text

  158.             )

  159.             return {"error": "OAuth data source process failed"}, 400

  160. 

  161.         return {"result": "success"}, 200