opensource/dify
2
0
Fork 0
mirror of https://github.com/langgenius/dify.git synced 2026-05-09 21:28:25 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge d54ada37d5 into 19bf36a716

Browse Source
This commit is contained in:
orbisai0security 2026-05-09 07:01:52 +05:30 committed by GitHub
commit 25a3723ac2
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 14 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
api/extensions/ext_app_metrics.py
View File

@ -2,12 +2,23 @@ import json
import os
import threading
from flask import Response
from flask import Response, abort, request
from configs import dify_config
from dify_app import DifyApp
def _check_admin_api_key():
"""Validate request carries the correct ADMIN_API_KEY."""
api_key = dify_config.ADMIN_API_KEY
if not api_key:
abort(403)
auth_header = request.headers.get("Authorization", "")
token = auth_header.removeprefix("Bearer ").strip()
if token != api_key:
abort(401)
def init_app(app: DifyApp):
@app.after_request
def after_request(response): # pyright: ignore[reportUnusedFunction]
@ -26,6 +37,7 @@ def init_app(app: DifyApp):
@app.route("/threads")
def threads(): # pyright: ignore[reportUnusedFunction]
_check_admin_api_key()
num_threads = threading.active_count()
threads = threading.enumerate()
@ -51,6 +63,7 @@ def init_app(app: DifyApp):
@app.route("/db-pool-stat")
def pool_stat(): # pyright: ignore[reportUnusedFunction]
_check_admin_api_key()
from extensions.ext_database import db
engine = db.engine