opensource
/
dify
mirror of https://github.com/langgenius/dify.git
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,836 Commits 287 Branches 160 Tags 490 MiB
Commit Graph

580 Commits

Author SHA1 Message Date
-LAN- b5a7e64e19
Fix incorrect API endpoint routing from PR #25628 (#25778) 2025-09-16 19:20:26 +08:00
-LAN- bab4975809
chore: add ast-grep rule to convert Optional[T] to T | None (#25560) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-15 13:06:33 +08:00
Guangdong Liu 07d383ffaa
refactor: update API routes and documentation for app and datasets endpoints (#25628) 2025-09-15 10:59:11 +08:00
Ritoban Dutta 67a686cf98
[Chore/Refactor] use __all__ to specify export member. (#25681) 2025-09-15 09:45:35 +08:00
Krito. a13d7987e0
chore: adopt StrEnum and auto() for some string-typed enums (#25129) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
 2025-09-12 21:14:26 +08:00
Guangdong Liu 285291f545
refactor: update API routes and documentation for console endpoints (#25554) 2025-09-12 11:51:24 +08:00
zyssyz123 c2fcd2895b
Feat/email register refactor (#25369) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
Co-authored-by: Joel <iamjoel007@gmail.com>
 2025-09-12 10:24:54 +08:00
Yongtao Huang 4511f4f537
Remove redundant parse_args call in WorkflowByIdApi.patch (#25498) 2025-09-12 09:40:41 +08:00
QuantumGhost 874406d934
security(api): fix privilege escalation vulnerability in model config and chat message APIs (#25518) 
The `ChatMessageApi` (`POST /console/api/apps/{app_id}/chat-messages`) and 
`ModelConfigResource` (`POST /console/api/apps/{app_id}/model-config`) 
endpoints do not properly validate user permissions, allowing users without `editor` 
permission to access restricted functionality.

This PR addresses this issue by adding proper permission check.
 2025-09-11 14:53:35 +08:00
Asuka Minato cbc0e639e4
update sql in batch (#24801) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
 2025-09-10 13:00:17 +08:00
Guangdong Liu b51c724a94
refactor: Migrate part of the console basic API module to Flask-RESTX (#24732) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
 2025-09-10 12:15:47 +08:00
-LAN- 08dd3f7b50
Fix basedpyright type errors (#25435) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-10 01:54:26 +08:00
Asuka Minato 38057b1b0e
add typing to all wraps (#25405) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-09 16:48:33 +08:00
Yongtao Huang 4aba570fa8
Fix flask response: 200 -> {}, 200 (#25404) 2025-09-09 15:06:18 +08:00
Xiyuan Chen 64c9a2f678
Feat/credential policy (#25151) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-08 23:45:05 -07:00
zyssyz123 ea61420441
Revert "feat: email register refactor" (#25367) 2025-09-08 19:20:09 +08:00
zyssyz123 860ee20c71
feat: email register refactor (#25344) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
 2025-09-08 17:51:43 +08:00
Cluas f891c67eca
feat: add MCP server headers support #22718 (#24760) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
Co-authored-by: Novice <novice12185727@gmail.com>
 2025-09-08 14:10:55 +08:00
Asuka Minato f6059ef389
add more typing (#24949) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-08 10:40:00 +08:00
Asuka Minato 16a3e21410
more assert (#24996) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
 2025-09-08 09:59:43 +08:00
-LAN- 9b8a03b53b
[Chore/Refactor] Improve type annotations in models module (#25281) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
 2025-09-08 09:42:27 +08:00
Asuka Minato a78339a040
remove bare list, dict, Sequence, None, Any (#25058) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
 2025-09-06 03:32:23 +08:00
Yongtao Huang 865ba8bb4f
Minor fix: correct get_app_model mode for delete() (#25082) 
Signed-off-by: Yongtao Huang <yongtaoh2022@gmail.com>
 2025-09-04 11:08:31 +08:00
NeatGuyCoding a9c7669c16
chore: comply to RFC 6750 and improve bearer token split (#24955) 2025-09-03 22:29:08 +08:00
非法操作 b673560b92
feat: improve multi model credentials (#25009) 
Co-authored-by: Claude <noreply@anthropic.com>
 2025-09-03 13:52:31 +08:00
-LAN- 9d5956cef8
[Chore/Refactor] Switch from MyPy to Basedpyright for type checking (#25047) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
 2025-09-03 11:52:26 +08:00
湛露先生 1fff4620e6
clean console apis and rag cleans. (#25042) 
Signed-off-by: zhanluxianshen <zhanluxianshen@163.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-03 11:25:18 +08:00
Will 5092e5f631
fix: workflow not published (#25030) 2025-09-03 10:07:31 +08:00
Yongtao Huang bc9efa7ea8
Refactor: use DatasourceType.XX.value instead of hardcoded (#25015) 
Signed-off-by: Yongtao Huang <yongtaoh2022@gmail.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-03 08:56:48 +08:00
GuanMu 25a11bfafc
Export DSL from history (#24939) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-02 21:36:52 +08:00
Novice 68c75f221b
fix: workflow log status filter add parial success status (#24977) 2025-09-02 16:24:03 +08:00
Bowen Liang 7b379e2a61
chore: apply ty checks on api code with script and ci action (#24653) 2025-09-02 16:05:13 +08:00
Yongtao Huang 067b0d07c4
Fix: ensure InstalledApp deletion uses model instances instead of Row (#24942) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-09-02 11:59:38 +08:00
jiangbo721 e048588a88
fix: remove duplicated code (#24893) 2025-09-02 08:58:31 +08:00
NeatGuyCoding 2e6e414a9e
the conversion OAuthGrantType(parsed_args["grant_type"]) can raise ValueError for invalid values which is not caught and will produce a 500 (#24854) 2025-09-01 10:05:54 +08:00
NeatGuyCoding c45d676477
remove duplicated authorization header handling and bearer should be case-insensitive (#24852) 2025-09-01 10:05:19 +08:00
Asuka Minato 24e2b72b71
Update ast-grep pattern for session.query (#24828) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-31 17:03:51 +08:00
Junyan Qin (Chin) f32e176d6a
feat: oauth provider (#24206) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: yessenia <yessenia.contact@gmail.com>
 2025-08-29 14:10:51 +08:00
Eric Guo ecf74d91e2
fix: has_more logic in ChatMessageListApi to ensure correct on behavior when no more messages are available. (#24661) 2025-08-28 15:05:52 +08:00
Yongtao Huang 2a29c61041
Refactor: replace count() > 0 check with exists() (#24583) 
Co-authored-by: Yongtao Huang <99629139+hyongtao-db@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-27 17:46:52 +08:00
Yongtao Huang 826f19e968
Chore : rm dead code detected by pylance (#24588) 2025-08-27 13:19:40 +08:00
Yongtao Huang b486d72b8e
Chore: remove dead var in `DocumentBatchIndexingEstimateApi` (#24497) 
Co-authored-by: Yongtao Huang <99629139+hyongtao-db@users.noreply.github.com>
 2025-08-26 23:33:50 +08:00
Yongtao Huang fa753239ad
Refactor: use logger = logging.getLogger(__name__) in logging (#24515) 
Co-authored-by: Yongtao Huang <99629139+hyongtao-db@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
 2025-08-26 18:10:31 +08:00
-LAN- cfb8d224da
fix: standardize authentication error messages to prevent user enumeration (#24324) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-26 09:46:23 +08:00
Yongtao Huang ac5aed7a45
Fix missing return 200 in response handling (#24499) 
Co-authored-by: Yongtao Huang <99629139+hyongtao-db@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-26 09:24:18 +08:00
Asuka Minato 2b91ba2411
example: limit current user usage (#24470) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-26 00:23:29 +08:00
非法操作 6010d5f24c
feat: add multi model credentials (#24451) 
Co-authored-by: zxhlyh <jasonapring2015@outlook.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-25 16:12:29 +08:00
quicksand b08bfa203a
fix(flask_restx): invite member email parse error (#24464) 2025-08-25 15:50:20 +08:00
quicksand a06681913d
remove: document download file permission (#24459) 2025-08-25 15:11:48 +08:00
-LAN- a9e106b17e
fix: Fix login error handling by raising exception instead of returning (#24452) 2025-08-25 13:54:25 +08:00
znn 3aedc139ac
fix delete conversations via Api and delete conversations from db as well (#23591) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: crazywoola <427733928@qq.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-25 09:43:45 +08:00
-LAN- b7466f8b65
feat: API docs for service api (#24425) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
 2025-08-25 09:26:54 +08:00
Asuka Minato 18dce66443
try flask_restful -> flask_restx (#24310) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
 2025-08-24 13:45:47 +08:00
kenwoodjw 8a348bea21
fix child-chunk ownership validation (#24374) 
Signed-off-by: kenwoodjw <blackxin55+@gmail.com>
 2025-08-23 20:17:44 +08:00
willzhao 5ab6bc283c
[CHORE]: x: T = None to x: Optional[T] = None (#24217) 2025-08-21 21:58:39 +08:00
Guangdong Liu 1abf1240b2
refactor: replace try-except blocks with contextlib.suppress for cleaner exception handling (#24284) 2025-08-21 18:18:49 +08:00
Xiyuan Chen cfefe4f738
Feat: Education (#24208) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-20 15:38:14 +08:00
Stream c2606f9062
fix: correct behaviour of code fix (#24152) 
Co-authored-by: Joel <iamjoel007@gmail.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-19 14:18:49 +08:00
Asuka Minato 70da81d0e5
try ast-grep (#24149) 2025-08-19 13:41:52 +08:00
Zhehao Peng c0702aacac
Use typing.Literal to replace str places (#24099) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-18 21:34:13 +08:00
Stream ae7de7d36b
fix: treat default template of code as empty (#24106) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-18 16:52:27 +08:00
Joel de9c5f10b3
feat: enchance prompt and code (#23633) 
Co-authored-by: stream <stream@dify.ai>
Co-authored-by: Stream <1542763342@qq.com>
Co-authored-by: Stream <Stream_2@qq.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-18 12:29:12 +08:00
耐小心 4b9812ce6a
fix: move database service call inside session context in workflow draft variable API (#23996) 2025-08-15 18:23:42 +08:00
xubo f560116fb2
fix: 504 Gateway Time-out error on /console/api/version endpoint (#23961) 2025-08-15 11:25:25 +08:00
heyszt aa71173dbb
Feat: External_trace_id compatible with OpenTelemetry (#23918) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-15 09:13:41 +08:00
QuantumGhost 7286b4ad06
fix(api): resolve "Message not exists" error in admin feedback creation (#23232) 
Fix regression introduced in PR #22580 where admin users encountered 
"Message not exists" errors when creating feedback on messages created 
by other users.

The issue was caused by `MessageService.create_feedback()` incorrectly 
filtering messages by the current user's ID, preventing admins from 
accessing messages created by end users. 

Reverts: #22580
 2025-08-13 23:57:25 +08:00
Yongtao Huang bf2f03f911
Restructure the File errors in controller (#23801) 
Co-authored-by: Yongtao Huang <99629139+hyongtao-db@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-13 17:06:07 +08:00
Will 1ffe190557
Feat/improved mcp timeout configs (#23605) 
Co-authored-by: crazywoola <427733928@qq.com>
 2025-08-12 13:14:00 +08:00
crazywoola 1c60b7f070
Revert "feat: improved MCP timeout" (#23602) 2025-08-08 11:20:53 +08:00
Will 4b0480c8b3
feat: improved MCP timeout (#23546) 2025-08-08 09:08:14 +08:00
lyzno1 2edd32fdea
fix: resolve AppCard description overlap with tag area (#23585) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-08 09:05:55 +08:00
yunqiqiliang e01510e2a6
feat: Add Clickzetta Lakehouse vector database integration (#22551) 
Co-authored-by: Claude <noreply@anthropic.com>
 2025-08-07 14:21:46 +08:00
Yongtao Huang e072b7dafa
Chore: remove unused variable pruned_memory (#23514) 2025-08-07 09:06:17 +08:00
Yongtao Huang b8ef0c84e6
Fix: moved `file =` after file presence validation (#23453) 
Signed-off-by: Yongtao Huang <yongtaoh2022@gmail.com>
 2025-08-06 13:44:12 +08:00
Xiyuan Chen 904af20023
Feat/webapp opt (#23283) 2025-08-05 16:07:48 +08:00
Yongtao Huang 146d870098
Fix: avoid Flask route conflict by merging `DocumentDetailApi` and `DocumentDeleteApi` (#23333) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-08-04 14:37:36 +08:00
Yongtao Huang 964fa132cb
Chore: fix typo, no code change (#23331) 2025-08-03 22:30:28 +08:00
Warren Wong 6d5a7684b4
feat: Add Download Button to UI for Knowledge Resource Source Files (#23320) 2025-08-03 16:26:11 +08:00
Asuka Minato 58608f51da
replace db with sa to get typing support (#23240) 2025-08-02 23:54:23 +08:00
NeatGuyCoding 07cff1ed2c
minor fix: fix flask api resources only accept one resource for same url (#23168) 2025-07-30 17:05:02 +08:00
NeatGuyCoding 070379a900
minor fix: fix wrong check of annotation_ids (#23164) 2025-07-30 17:04:31 +08:00
GuanMu 4499cda186
Feat annotations panel (#22968) 2025-07-30 13:40:48 +08:00
lyzno1 0ea010d7ee
fix: metadata API nullable validation consistency issue (#23133) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-07-30 10:33:24 +08:00
Yongtao Huang 57e0a12ccd
Refactor: remove redundant full module paths in exception handlers (#23076) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-07-29 09:40:51 +08:00
NeatGuyCoding 537c04745d
minor fix: using the same AccountInFreezeError (#23061) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2025-07-28 18:24:27 +08:00
zyssyz123 de28bb1075
fix: changed email login use oauth will create an new account (#23057) 2025-07-28 16:32:25 +08:00
zhaobingshuang 5c5f61b2aa
fix(dataset): CELERY_BROKER uses amqp rabbitmq. When adding document segments in batches and uploading large files, the status will always remain stuck at "In batch processing" #22709 (#23038) 2025-07-28 14:24:13 +08:00
呆萌闷油瓶 ee50a2bcd5
feat: clear all annotation (#22878) 
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-07-25 18:06:03 +08:00
Asuka Minato a189d293f8
make logging not use f-str, change others to f-str (#22882) 2025-07-25 10:32:48 +08:00
quicksand 8340d775bd
Improve: support custom model parameters in auto-generator (#22924) 2025-07-25 09:00:26 +08:00
KVOJJJin d6b980a2dd
Feat: change user email freezes limit (#22912) 
Co-authored-by: Yansong Zhang <916125788@qq.com>
 2025-07-25 08:48:23 +08:00
zyssyz123 6ac06486e3
Feat/change user email freezes limit (#22900) 2025-07-24 15:36:53 +08:00
KVOJJJin de611ab344
Feat: add notification for change email completed (#22812) 
Co-authored-by: Yansong Zhang <916125788@qq.com>
 2025-07-24 14:16:39 +08:00
Asuka Minato ef51678c73
orm filter -> where (#22801) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: -LAN- <laipz8200@outlook.com>
Co-authored-by: Claude <noreply@anthropic.com>
 2025-07-24 00:57:45 +08:00
Junyan Qin (Chin) eaae79a581
feat: plugin auto upgrade strategy (#19758) 
Co-authored-by: Joel <iamjoel007@gmail.com>
Co-authored-by: crazywoola <427733928@qq.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Novice <novice12185727@gmail.com>
 2025-07-23 15:33:39 +08:00
Maries ad67094e54
feat: oauth refresh token (#22744) 
Co-authored-by: Yeuoly <admin@srmxy.cn>
 2025-07-23 13:12:39 +08:00
Bowen Liang 74940ad3f2
chore: code improvement for mcp_client and mcp_tools_manage_service (#22645) 2025-07-21 09:52:55 +08:00
Aryan Raj ce794335e9
Fix/replace datetime patterns with naive utc now (#22654) 2025-07-20 11:05:53 +08:00
jiangbo721 ffee6f3288
fix: admin feedback uses the same method create_feedback (#22580) 
Co-authored-by: 刘江波 <jiangbo721@163.com>
 2025-07-18 10:10:31 +08:00
-LAN- 1715dd4320
refactor: Fix some type error (#22594) 
Signed-off-by: -LAN- <laipz8200@outlook.com>
 2025-07-18 09:26:29 +08:00