-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Make public credentials accessible by all admins (#337)
- Loading branch information
Showing
20 changed files
with
290 additions
and
201 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,128 @@ | ||
from fastapi import APIRouter | ||
from fastapi import Depends | ||
from fastapi import HTTPException | ||
from sqlalchemy.orm import Session | ||
|
||
from danswer.auth.users import current_admin_user | ||
from danswer.auth.users import current_user | ||
from danswer.db.credentials import create_credential | ||
from danswer.db.credentials import delete_credential | ||
from danswer.db.credentials import fetch_credential_by_id | ||
from danswer.db.credentials import fetch_credentials | ||
from danswer.db.credentials import update_credential | ||
from danswer.db.engine import get_session | ||
from danswer.db.models import User | ||
from danswer.server.models import CredentialBase | ||
from danswer.server.models import CredentialSnapshot | ||
from danswer.server.models import ObjectCreationIdResponse | ||
from danswer.server.models import StatusResponse | ||
|
||
|
||
router = APIRouter(prefix="/manage") | ||
|
||
|
||
"""Admin-only endpoints""" | ||
|
||
|
||
@router.get("/admin/credential") | ||
def list_credentials_admin( | ||
_: User = Depends(current_admin_user), | ||
db_session: Session = Depends(get_session), | ||
) -> list[CredentialSnapshot]: | ||
"""Lists all public credentials""" | ||
credentials = fetch_credentials(db_session=db_session, public_only=True) | ||
return [ | ||
CredentialSnapshot.from_credential_db_model(credential) | ||
for credential in credentials | ||
] | ||
|
||
|
||
@router.delete("/admin/credential/{credential_id}") | ||
def delete_credential_by_id_admin( | ||
credential_id: int, | ||
_: User = Depends(current_admin_user), | ||
db_session: Session = Depends(get_session), | ||
) -> StatusResponse: | ||
"""Same as the user endpoint, but can delete any credential (not just the user's own)""" | ||
delete_credential(db_session=db_session, credential_id=credential_id, user=None) | ||
return StatusResponse( | ||
success=True, message="Credential deleted successfully", data=credential_id | ||
) | ||
|
||
|
||
"""Endpoints for all""" | ||
|
||
|
||
@router.get("/credential") | ||
def list_credentials( | ||
user: User | None = Depends(current_user), | ||
db_session: Session = Depends(get_session), | ||
) -> list[CredentialSnapshot]: | ||
credentials = fetch_credentials(db_session=db_session, user=user) | ||
return [ | ||
CredentialSnapshot.from_credential_db_model(credential) | ||
for credential in credentials | ||
] | ||
|
||
|
||
@router.get("/credential/{credential_id}") | ||
def get_credential_by_id( | ||
credential_id: int, | ||
user: User = Depends(current_user), | ||
db_session: Session = Depends(get_session), | ||
) -> CredentialSnapshot | StatusResponse[int]: | ||
credential = fetch_credential_by_id(credential_id, user, db_session) | ||
if credential is None: | ||
raise HTTPException( | ||
status_code=401, | ||
detail=f"Credential {credential_id} does not exist or does not belong to user", | ||
) | ||
|
||
return CredentialSnapshot.from_credential_db_model(credential) | ||
|
||
|
||
@router.post("/credential") | ||
def create_credential_from_model( | ||
connector_info: CredentialBase, | ||
user: User = Depends(current_user), | ||
db_session: Session = Depends(get_session), | ||
) -> ObjectCreationIdResponse: | ||
return create_credential(connector_info, user, db_session) | ||
|
||
|
||
@router.patch("/credential/{credential_id}") | ||
def update_credential_from_model( | ||
credential_id: int, | ||
credential_data: CredentialBase, | ||
user: User = Depends(current_user), | ||
db_session: Session = Depends(get_session), | ||
) -> CredentialSnapshot | StatusResponse[int]: | ||
updated_credential = update_credential( | ||
credential_id, credential_data, user, db_session | ||
) | ||
if updated_credential is None: | ||
raise HTTPException( | ||
status_code=401, | ||
detail=f"Credential {credential_id} does not exist or does not belong to user", | ||
) | ||
|
||
return CredentialSnapshot( | ||
id=updated_credential.id, | ||
credential_json=updated_credential.credential_json, | ||
user_id=updated_credential.user_id, | ||
public_doc=updated_credential.public_doc, | ||
time_created=updated_credential.time_created, | ||
time_updated=updated_credential.time_updated, | ||
) | ||
|
||
|
||
@router.delete("/credential/{credential_id}") | ||
def delete_credential_by_id( | ||
credential_id: int, | ||
user: User = Depends(current_user), | ||
db_session: Session = Depends(get_session), | ||
) -> StatusResponse: | ||
delete_credential(credential_id, user, db_session) | ||
return StatusResponse( | ||
success=True, message="Credential deleted successfully", data=credential_id | ||
) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.
642862b
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Successfully deployed to the following URLs:
internal-search – ./
internal-search.vercel.app
www.danswer.dev
internal-search-danswer.vercel.app
internal-search-git-main-danswer.vercel.app
danswer.dev