CHAI
/
chtech-anythingllm
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14 Commits
1 Branch
0 Tags
235 MiB
Tree: 6923af70ad
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6923af70ad'
${ noResults }
chtech-anythingllm/server/endpoints/admin.js

658 lines
21 KiB
Raw Normal View History

first commit
11 months ago
用户新增接口
10 months ago
first commit
11 months ago
用户新增接口
10 months ago
first commit
11 months ago
部门管理页面显示,其他功能暂未打通
10 months ago
first commit
11 months ago
用户新增接口
10 months ago
坐痛了文档上传解析后还要保存真是文档,还要在数据库保存和部门关系
10 months ago
部门
10 months ago
坐痛了文档上传解析后还要保存真是文档,还要在数据库保存和部门关系
10 months ago
first commit
11 months ago
  1. const { ApiKey } = require("../models/apiKeys");
  2. const { Document } = require("../models/documents");
  3. const { EventLogs } = require("../models/eventLogs");
  4. const { Invite } = require("../models/invite");
  5. const { SystemSettings } = require("../models/systemSettings");
  6. const { Telemetry } = require("../models/telemetry");
  7. const { User } = require("../models/user");
  8. const { DeptUsers } = require("../models/deptUsers");
  9. const { DocumentVectors } = require("../models/vectors");
  10. const { Workspace } = require("../models/workspace");
  11. const { WorkspaceChats } = require("../models/workspaceChats");
  12. const prisma = require("../utils/prisma");
  13. const {
  14. getVectorDbClass,
  15. getEmbeddingEngineSelection,
  16. } = require("../utils/helpers");
  17. const {
  18. validRoleSelection,
  19. canModifyAdmin,
  20. validCanModify,
  21. } = require("../utils/helpers/admin");
  22. const { reqBody, userFromSession, safeJsonParse } = require("../utils/http");
  23. const {
  24. strictMultiUserRoleValid,
  25. flexUserRoleValid,
  26. ROLES,
  27. } = require("../utils/middleware/multiUserProtected");
  28. const { validatedRequest } = require("../utils/middleware/validatedRequest");
  29. const ImportedPlugin = require("../utils/agents/imported");
  31. function adminEndpoints(app) {
  32. if (!app) return;
  34. app.get(
  35. "/admin/users",
  36. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  37. async (_request, response) => {
  38. try {
  39. console.log("调用了调用了admin/users");
  40. const users = await User.where();
  41. response.status(200).json({ users });
  42. } catch (e) {
  43. console.error(e);
  44. response.sendStatus(500).end();
  45. }
  46. }
  47. );
  49. app.post(
  50. "/admin/users/new",
  51. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  52. async (request, response) => {
  53. try {
  54. const currUser = await userFromSession(request, response);
  55. const newUserParams = reqBody(request);
  56. const roleValidation = validRoleSelection(currUser, newUserParams);
  58. if (!roleValidation.valid) {
  59. response
  60. .status(200)
  61. .json({ user: null, error: roleValidation.error });
  62. return;
  63. }
  65. const { user: newUser, error } = await User.create(newUserParams);
  66. if (!!newUser) {
  67. await EventLogs.logEvent(
  68. "user_created",
  69. {
  70. userName: newUser.username,
  71. createdBy: currUser.username,
  72. },
  73. currUser.id
  74. );
  75. }
  77. response.status(200).json({ user: newUser, error });
  78. } catch (e) {
  79. console.error(e);
  80. response.sendStatus(500).end();
  81. }
  82. }
  83. );
  85. app.post(
  86. "/admin/users/add/:deptId",
  87. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  88. async (request, response) => {
  89. try {
  90. const currUser = await userFromSession(request, response);
  91. const { deptId } = request.params;
  92. const newUserParams = reqBody(request);
  93. const roleValidation = validRoleSelection(currUser, newUserParams);
  95. if (!roleValidation.valid) {
  96. return response.status(400).json({ error: roleValidation.error });
  97. }
  99. await prisma.$transaction(async () => {
  100. try {
  101. const { user: newUser, error } = await User.create(newUserParams);
  102. console.log("newUser", newUser);
  104. const deptUser = await DeptUsers.create({
  105. data: { userId: newUser.id, deptId: deptId },
  106. });
  108. await EventLogs.logEvent(
  109. "user_created",
  110. { userName: newUser.username, createdBy: currUser.username },
  111. currUser.id
  112. );
  114. response.status(200).json({ user: newUser, error });
  115. } catch (error) {
  116. throw new Error(`Transaction failed: ${error.message}`);
  117. }
  118. });
  119. } catch (e) {
  120. console.error("Error creating user and dept user association:", e);
  121. response.status(500).json({ error: "Internal Server Error" });
  122. }
  123. }
  124. );
  126. // app.post(
  127. // "/admin/users/new",
  128. // [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  129. // async (request, response) => {
  130. // try {
  131. // const currUser = await userFromSession(request, response);
  132. // const newUserParams = reqBody(request);
  133. // const roleValidation = validRoleSelection(currUser, newUserParams);
  134. //
  135. // // 验证角色权限
  136. // if (!roleValidation.valid) {
  137. // response
  138. // .status(200)
  139. // .json({ user: null, error: roleValidation.error });
  140. // return;
  141. // }
  142. //
  143. // // 使用事务确保原子性
  144. // const result = await prisma.$transaction(async (prisma) => {
  145. // // 1. 创建用户
  146. // const newUser = await prisma.users.create({
  147. // data: newUserParams,
  148. // });
  149. //
  150. // // 2. 将用户和组织机构关联到 dept_users 表
  151. // if (newUserParams.deptId) {
  152. // await prisma.dept_users.create({
  153. // data: {
  154. // deptId: newUserParams.deptId,
  155. // userId: newUser.id,
  156. // createdAt: new Date(),
  157. // updatedAt: new Date(),
  158. // },
  159. // });
  160. // }
  161. //
  162. // // 3. 记录事件日志
  163. // await EventLogs.logEvent(
  164. // "user_created",
  165. // {
  166. // userName: newUser.username,
  167. // createdBy: currUser.username,
  168. // },
  169. // currUser.id
  170. // );
  171. //
  172. // return { user: newUser, error: null };
  173. // });
  174. //
  175. // // 返回成功响应
  176. // response.status(200).json(result);
  177. // } catch (e) {
  178. // console.error(e);
  179. // response.status(500).json({ user: null, error: e.message });
  180. // }
  181. // }
  182. // );
  184. app.post(
  185. "/admin/user/:id",
  186. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  187. async (request, response) => {
  188. try {
  189. const currUser = await userFromSession(request, response);
  190. const { id } = request.params;
  191. const updates = reqBody(request);
  192. const user = await User.get({ id: Number(id) });
  194. const canModify = validCanModify(currUser, user);
  195. if (!canModify.valid) {
  196. response.status(200).json({ success: false, error: canModify.error });
  197. return;
  198. }
  200. const roleValidation = validRoleSelection(currUser, updates);
  201. if (!roleValidation.valid) {
  202. response
  203. .status(200)
  204. .json({ success: false, error: roleValidation.error });
  205. return;
  206. }
  208. const validAdminRoleModification = await canModifyAdmin(user, updates);
  209. if (!validAdminRoleModification.valid) {
  210. response
  211. .status(200)
  212. .json({ success: false, error: validAdminRoleModification.error });
  213. return;
  214. }
  216. const { success, error } = await User.update(id, updates);
  217. response.status(200).json({ success, error });
  218. } catch (e) {
  219. console.error(e);
  220. response.sendStatus(500).end();
  221. }
  222. }
  223. );
  225. app.delete(
  226. "/admin/user/:id",
  227. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  228. async (request, response) => {
  229. try {
  230. const currUser = await userFromSession(request, response);
  231. const { id } = request.params;
  232. const user = await User.get({ id: Number(id) });
  234. const canModify = validCanModify(currUser, user);
  235. if (!canModify.valid) {
  236. response.status(200).json({ success: false, error: canModify.error });
  237. return;
  238. }
  240. await User.delete({ id: Number(id) });
  241. await EventLogs.logEvent(
  242. "user_deleted",
  243. {
  244. userName: user.username,
  245. deletedBy: currUser.username,
  246. },
  247. currUser.id
  248. );
  249. response.status(200).json({ success: true, error: null });
  250. } catch (e) {
  251. console.error(e);
  252. response.sendStatus(500).end();
  253. }
  254. }
  255. );
  257. app.get(
  258. "/admin/invites",
  259. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  260. async (_request, response) => {
  261. try {
  262. const invites = await Invite.whereWithUsers();
  263. response.status(200).json({ invites });
  264. } catch (e) {
  265. console.error(e);
  266. response.sendStatus(500).end();
  267. }
  268. }
  269. );
  271. app.post(
  272. "/admin/invite/new",
  273. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  274. async (request, response) => {
  275. try {
  276. const user = await userFromSession(request, response);
  277. const body = reqBody(request);
  278. const { invite, error } = await Invite.create({
  279. createdByUserId: user.id,
  280. workspaceIds: body?.workspaceIds || [],
  281. });
  283. await EventLogs.logEvent(
  284. "invite_created",
  285. {
  286. inviteCode: invite.code,
  287. createdBy: response.locals?.user?.username,
  288. },
  289. response.locals?.user?.id
  290. );
  291. response.status(200).json({ invite, error });
  292. } catch (e) {
  293. console.error(e);
  294. response.sendStatus(500).end();
  295. }
  296. }
  297. );
  299. app.delete(
  300. "/admin/invite/:id",
  301. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  302. async (request, response) => {
  303. try {
  304. const { id } = request.params;
  305. const { success, error } = await Invite.deactivate(id);
  306. await EventLogs.logEvent(
  307. "invite_deleted",
  308. { deletedBy: response.locals?.user?.username },
  309. response.locals?.user?.id
  310. );
  311. response.status(200).json({ success, error });
  312. } catch (e) {
  313. console.error(e);
  314. response.sendStatus(500).end();
  315. }
  316. }
  317. );
  319. app.get(
  320. "/admin/workspaces",
  321. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  322. async (_request, response) => {
  323. try {
  324. const workspaces = await Workspace.whereWithUsers();
  325. response.status(200).json({ workspaces });
  326. } catch (e) {
  327. console.error(e);
  328. response.sendStatus(500).end();
  329. }
  330. }
  331. );
  333. app.get(
  334. "/admin/workspaces/:workspaceId/users",
  335. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  336. async (request, response) => {
  337. try {
  338. const { workspaceId } = request.params;
  339. const users = await Workspace.workspaceUsers(workspaceId);
  340. response.status(200).json({ users });
  341. } catch (e) {
  342. console.error(e);
  343. response.sendStatus(500).end();
  344. }
  345. }
  346. );
  348. app.post(
  349. "/admin/workspaces/new",
  350. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  351. async (request, response) => {
  352. try {
  353. const user = await userFromSession(request, response);
  354. const { name } = reqBody(request);
  355. const { workspace, message: error } = await Workspace.new(
  356. name,
  357. user.id
  358. );
  359. response.status(200).json({ workspace, error });
  360. } catch (e) {
  361. console.error(e);
  362. response.sendStatus(500).end();
  363. }
  364. }
  365. );
  367. app.post(
  368. "/admin/workspaces/:workspaceId/update-users",
  369. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  370. async (request, response) => {
  371. try {
  372. const { workspaceId } = request.params;
  373. const { userIds } = reqBody(request);
  374. const { success, error } = await Workspace.updateUsers(
  375. workspaceId,
  376. userIds
  377. );
  378. response.status(200).json({ success, error });
  379. } catch (e) {
  380. console.error(e);
  381. response.sendStatus(500).end();
  382. }
  383. }
  384. );
  386. app.delete(
  387. "/admin/workspaces/:id",
  388. [validatedRequest, strictMultiUserRoleValid([ROLES.admin, ROLES.manager])],
  389. async (request, response) => {
  390. try {
  391. const { id } = request.params;
  392. const VectorDb = getVectorDbClass();
  393. const workspace = await Workspace.get({ id: Number(id) });
  394. if (!workspace) {
  395. response.sendStatus(404).end();
  396. return;
  397. }
  399. await WorkspaceChats.delete({ workspaceId: Number(workspace.id) });
  400. await DocumentVectors.deleteForWorkspace(Number(workspace.id));
  401. await Document.delete({ workspaceId: Number(workspace.id) });
  402. await Workspace.delete({ id: Number(workspace.id) });
  403. try {
  404. await VectorDb["delete-namespace"]({ namespace: workspace.slug });
  405. } catch (e) {
  406. console.error(e.message);
  407. }
  409. response.status(200).json({ success: true, error: null });
  410. } catch (e) {
  411. console.error(e);
  412. response.sendStatus(500).end();
  413. }
  414. }
  415. );
  417. // System preferences but only by array of labels
  418. app.get(
  419. "/admin/system-preferences-for",
  420. [validatedRequest, flexUserRoleValid([ROLES.admin, ROLES.manager])],
  421. async (request, response) => {
  422. try {
  423. const requestedSettings = {};
  424. const labels = request.query.labels?.split(",") || [];
  425. const needEmbedder = [
  426. "text_splitter_chunk_size",
  427. "max_embed_chunk_size",
  428. ];
  429. const noRecord = [
  430. "max_embed_chunk_size",
  431. "agent_sql_connections",
  432. "imported_agent_skills",
  433. "feature_flags",
  434. "meta_page_title",
  435. "meta_page_favicon",
  436. ];
  438. for (const label of labels) {
  439. // Skip any settings that are not explicitly defined as public
  440. if (!SystemSettings.publicFields.includes(label)) continue;
  442. // Only get the embedder if the setting actually needs it
  443. let embedder = needEmbedder.includes(label)
  444. ? getEmbeddingEngineSelection()
  445. : null;
  446. // Only get the record from db if the setting actually needs it
  447. let setting = noRecord.includes(label)
  448. ? null
  449. : await SystemSettings.get({ label });
  451. switch (label) {
  452. case "footer_data":
  453. requestedSettings[label] = setting?.value ?? JSON.stringify([]);
  454. break;
  455. case "support_email":
  456. requestedSettings[label] = setting?.value || null;
  457. break;
  458. case "text_splitter_chunk_size":
  459. requestedSettings[label] =
  460. setting?.value || embedder?.embeddingMaxChunkLength || null;
  461. break;
  462. case "text_splitter_chunk_overlap":
  463. requestedSettings[label] = setting?.value || null;
  464. break;
  465. case "max_embed_chunk_size":
  466. requestedSettings[label] =
  467. embedder?.embeddingMaxChunkLength || 1000;
  468. break;
  469. case "agent_search_provider":
  470. requestedSettings[label] = setting?.value || null;
  471. break;
  472. case "agent_sql_connections":
  473. requestedSettings[label] =
  474. await SystemSettings.brief.agent_sql_connections();
  475. break;
  476. case "default_agent_skills":
  477. requestedSettings[label] = safeJsonParse(setting?.value, []);
  478. break;
  479. case "disabled_agent_skills":
  480. requestedSettings[label] = safeJsonParse(setting?.value, []);
  481. break;
  482. case "imported_agent_skills":
  483. requestedSettings[label] = ImportedPlugin.listImportedPlugins();
  484. break;
  485. case "custom_app_name":
  486. requestedSettings[label] = setting?.value || null;
  487. break;
  488. case "feature_flags":
  489. requestedSettings[label] =
  490. (await SystemSettings.getFeatureFlags()) || {};
  491. break;
  492. case "meta_page_title":
  493. requestedSettings[label] =
  494. await SystemSettings.getValueOrFallback({ label }, null);
  495. break;
  496. case "meta_page_favicon":
  497. requestedSettings[label] =
  498. await SystemSettings.getValueOrFallback({ label }, null);
  499. break;
  500. default:
  501. break;
  502. }
  503. }
  505. response.status(200).json({ settings: requestedSettings });
  506. } catch (e) {
  507. console.error(e);
  508. response.sendStatus(500).end();
  509. }
  510. }
  511. );
  513. // TODO: Delete this endpoint
  514. // DEPRECATED - use /admin/system-preferences-for instead with ?labels=... comma separated string of labels
  515. app.get(
  516. "/admin/system-preferences",
  517. [validatedRequest, flexUserRoleValid([ROLES.admin, ROLES.manager])],
  518. async (_, response) => {
  519. try {
  520. const embedder = getEmbeddingEngineSelection();
  521. const settings = {
  522. footer_data:
  523. (await SystemSettings.get({ label: "footer_data" }))?.value ||
  524. JSON.stringify([]),
  525. support_email:
  526. (await SystemSettings.get({ label: "support_email" }))?.value ||
  527. null,
  528. text_splitter_chunk_size:
  529. (await SystemSettings.get({ label: "text_splitter_chunk_size" }))
  530. ?.value ||
  531. embedder?.embeddingMaxChunkLength ||
  532. null,
  533. text_splitter_chunk_overlap:
  534. (await SystemSettings.get({ label: "text_splitter_chunk_overlap" }))
  535. ?.value || null,
  536. max_embed_chunk_size: embedder?.embeddingMaxChunkLength || 1000,
  537. agent_search_provider:
  538. (await SystemSettings.get({ label: "agent_search_provider" }))
  539. ?.value || null,
  540. agent_sql_connections:
  541. await SystemSettings.brief.agent_sql_connections(),
  542. default_agent_skills:
  543. safeJsonParse(
  544. (await SystemSettings.get({ label: "default_agent_skills" }))
  545. ?.value,
  546. []
  547. ) || [],
  548. disabled_agent_skills:
  549. safeJsonParse(
  550. (await SystemSettings.get({ label: "disabled_agent_skills" }))
  551. ?.value,
  552. []
  553. ) || [],
  554. imported_agent_skills: ImportedPlugin.listImportedPlugins(),
  555. custom_app_name:
  556. (await SystemSettings.get({ label: "custom_app_name" }))?.value ||
  557. null,
  558. feature_flags: (await SystemSettings.getFeatureFlags()) || {},
  559. meta_page_title: await SystemSettings.getValueOrFallback(
  560. { label: "meta_page_title" },
  561. null
  562. ),
  563. meta_page_favicon: await SystemSettings.getValueOrFallback(
  564. { label: "meta_page_favicon" },
  565. null
  566. ),
  567. };
  568. response.status(200).json({ settings });
  569. } catch (e) {
  570. console.error(e);
  571. response.sendStatus(500).end();
  572. }
  573. }
  574. );
  576. app.post(
  577. "/admin/system-preferences",
  578. [validatedRequest, flexUserRoleValid([ROLES.admin, ROLES.manager])],
  579. async (request, response) => {
  580. try {
  581. const updates = reqBody(request);
  582. await SystemSettings.updateSettings(updates);
  583. response.status(200).json({ success: true, error: null });
  584. } catch (e) {
  585. console.error(e);
  586. response.sendStatus(500).end();
  587. }
  588. }
  589. );
  591. app.get(
  592. "/admin/api-keys",
  593. [validatedRequest, strictMultiUserRoleValid([ROLES.admin])],
  594. async (_request, response) => {
  595. try {
  596. const apiKeys = await ApiKey.whereWithUser({});
  597. return response.status(200).json({
  598. apiKeys,
  599. error: null,
  600. });
  601. } catch (error) {
  602. console.error(error);
  603. response.status(500).json({
  604. apiKey: null,
  605. error: "Could not find an API Keys.",
  606. });
  607. }
  608. }
  609. );
  611. app.post(
  612. "/admin/generate-api-key",
  613. [validatedRequest, strictMultiUserRoleValid([ROLES.admin])],
  614. async (request, response) => {
  615. try {
  616. const user = await userFromSession(request, response);
  617. const { apiKey, error } = await ApiKey.create(user.id);
  619. await Telemetry.sendTelemetry("api_key_created");
  620. await EventLogs.logEvent(
  621. "api_key_created",
  622. { createdBy: user?.username },
  623. user?.id
  624. );
  625. return response.status(200).json({
  626. apiKey,
  627. error,
  628. });
  629. } catch (e) {
  630. console.error(e);
  631. response.sendStatus(500).end();
  632. }
  633. }
  634. );
  636. app.delete(
  637. "/admin/delete-api-key/:id",
  638. [validatedRequest, strictMultiUserRoleValid([ROLES.admin])],
  639. async (request, response) => {
  640. try {
  641. const { id } = request.params;
  642. await ApiKey.delete({ id: Number(id) });
  644. await EventLogs.logEvent(
  645. "api_key_deleted",
  646. { deletedBy: response.locals?.user?.username },
  647. response?.locals?.user?.id
  648. );
  649. return response.status(200).end();
  650. } catch (e) {
  651. console.error(e);
  652. response.sendStatus(500).end();
  653. }
  654. }
  655. );
  656. }
  658. module.exports = { adminEndpoints };