opensource/dify - dify - Gitea: Git with a cup of tea

mirror of https://github.com/langgenius/dify.git synced 2026-03-14 13:51:33 +08:00

Author	SHA1	Message	Date
yunlu.wen	42226fdd3b	Merge remote-tracking branch 'upstream/release/e-1.12.1' into deploy/enterprise	2026-03-12 13:02:44 +08:00
GareArc	d105a2f568	Squash merge fix/enterprise-api-error-handling into release/e-1.12.1	2026-03-11 15:43:54 -07:00
GareArc	6625828246	fix: exempt setup flow endpoints from license check Add /console/api/init and /console/api/login to the license exempt list so that fresh installs can complete setup when the enterprise license is inactive. Without these exemptions the init password validation and post-setup auto-login are blocked, causing the setup page to enter an infinite reload loop.	2026-03-08 23:45:10 -07:00
GareArc	9a682f1009	fix: use LicenseStatus enum instead of raw strings and tighten path prefix matching Replace raw license status strings with LicenseStatus enum values in app_factory.py and enterprise_service.py to prevent silent mismatches. Use trailing-slash prefixes ('/console/api/', '/api/') to avoid false matches on unrelated paths like /api-docs.	2026-03-05 01:16:45 -08:00
GareArc	825765231b	fix: remove extra exempts	2026-03-05 01:10:59 -08:00
GareArc	11f657019a	Squash merge fix/enterprise-api-error-handling into deploy/enterprise	2026-03-04 22:31:21 -08:00
GareArc	757fabda1e	fix: exempt console bootstrap APIs from license check to prevent infinite reload loop	2026-03-04 22:13:25 -08:00
GareArc	858ccd8746	feat: add Redis caching for enterprise license status Cache license status for 10 minutes to reduce HTTP calls to enterprise API. Only caches license status, not full system features. Changes: - Add EnterpriseService.get_cached_license_status() method - Cache key: enterprise:license:status - TTL: 600 seconds (10 minutes) - Graceful degradation: falls back to API call if Redis fails Performance improvement: - Before: HTTP call (~50-200ms) on every API request - After: Redis lookup (~1ms) on cached requests - Reduces load on enterprise service by ~99%	2026-03-04 21:28:11 -08:00
GareArc	ea35ee0a3e	feat: extend license enforcement to webapp API endpoints Extend license middleware to also block webapp API (/api/*) when enterprise license is expired/inactive/lost. Changes: - Check both /console/api and /api endpoints - Add webapp-specific exempt paths: - /api/passport (webapp authentication) - /api/login, /api/logout, /api/oauth - /api/forgot-password - /api/system-features (webapp needs this to check license status) This ensures both console users and webapp users are blocked when license expires, maintaining consistent enforcement across all APIs.	2026-03-04 20:38:03 -08:00
GareArc	0e9dc86f3b	fix: use UnauthorizedAndForceLogout to trigger frontend logout on license expiry Change license check to raise UnauthorizedAndForceLogout exception instead of returning generic JSON response. This ensures proper frontend handling: Frontend behavior (service/base.ts line 588): - Checks if code === 'unauthorized_and_force_logout' - Executes globalThis.location.reload() - Forces user logout and redirect to login page - Login page displays license expiration UI (already exists) Response format: - HTTP 401 (not 403) - code: "unauthorized_and_force_logout" - Triggers frontend reload which clears auth state This completes the license enforcement flow: 1. Backend blocks all business APIs when license expires 2. Backend returns proper error code to trigger logout 3. Frontend reloads and redirects to login 4. Login page shows license expiration message	2026-03-04 20:30:53 -08:00
GareArc	0ed39d81e9	feat: add global license check middleware to block API access on expiry Add before_request middleware that validates enterprise license status for all /console/api endpoints when ENTERPRISE_ENABLED is true. Behavior: - Checks license status before each console API request - Returns 403 with clear error message when license is expired/inactive/lost - Exempts auth endpoints (login, oauth, forgot-password, etc.) - Exempts /console/api/features so frontend can fetch license status - Gracefully handles errors to avoid service disruption This ensures all business APIs are blocked when license expires, addressing the issue where APIs remained callable after expiry.	2026-03-04 20:10:42 -08:00
GareArc	7ef139cadd	Squash merge 1.12.1-otel-ee into release/e-1.12.1	2026-03-04 16:59:37 -08:00
GareArc	3461c3a8ef	feat(enterprise): Add OTEL telemetry with slim traces, metrics, and structured logs - Add EnterpriseOtelTrace handler with span emission for workflows and nodes - Implement minimal-span strategy: slim spans + detailed companion logs - Add deterministic span/trace IDs for cross-workflow trace correlation - Add metric collection at 100% accuracy (counters & histograms) - Add event handlers for app lifecycle and feedback telemetry - Add cross-workflow trace linking with parent context propagation - Add OTEL exporter with configurable sampling and privacy controls - Wire enterprise telemetry into workflow execution pipeline - Add telemetry configuration in enterprise configs	2026-02-05 20:12:28 -08:00
盐粒 Yanli	5bf0251554	chore(typing): reduce ty excludes for A1 (#31721 ) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	2026-01-30 02:38:57 +08:00
Asuka Minato	8d45755303	feat: init fastopenapi (#30453 ) Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	2026-01-23 21:07:52 +09:00
wangxiaolei	3b225c01da	refactor: refactor workflow context (#30607 )	2026-01-19 12:18:51 +08:00
Byron.wang	5362f69083	feat(refactoring): Support Structured Logging (JSON) (#30170 )	2026-01-04 11:46:46 +08:00
fanadong	44f8915e30	feat: Add Aliyun SLS (Simple Log Service) integration for workflow execution logging (#28986 ) Co-authored-by: hieheihei <270985384@qq.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: -LAN- <laipz8200@outlook.com>	2025-12-17 13:43:54 +08:00
wangxiaolei	094f417b32	refactor: admin api using session factory (#29628 )	2025-12-15 12:01:41 +08:00
wangxiaolei	f48522e923	feat: add x-trace-id to http responses and logs (#29015 ) Introduce trace id to http responses and logs to facilitate debugging process.	2025-12-02 17:22:34 +08:00
wangxiaolei	d162f7e5ef	feat(api): automatically `NODE_TYPE_CLASSES_MAPPING` generation from node class definitions (#28525 )	2025-12-01 14:14:19 +08:00
Asuka Minato	3cf19dc07f	add two test examples (#28236 ) Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	2025-11-21 10:36:41 +08:00
-LAN-	a2e0f80c01	[Chore/Refactor] Improve type checking configuration (#25185 ) Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>	2025-09-05 08:34:18 +08:00
Asuka Minato	3032e6fe59	example for logging (#24441 )	2025-08-25 11:41:17 +08:00
-LAN-	e340fccafb	feat: integrate flask-orjson for improved JSON serialization performance (#23935 )	2025-08-14 19:50:59 +08:00
Asuka Minato	a189d293f8	make logging not use f-str, change others to f-str (#22882 )	2025-07-25 10:32:48 +08:00
Hashcon	6a74c97a0a	feat: add debug log for request and response (#19781 ) (#19783 ) Co-authored-by: hashjang <hash@geek.com> Co-authored-by: QuantumGhost <obelisk.reg+git@gmail.com>	2025-05-17 17:31:09 +08:00
湛露先生	505d4cce78	Revert "sort extensions for review," (#19496 )	2025-05-11 16:57:13 +08:00
湛露先生	c431da9571	sort extensions for review, (#19470 ) Signed-off-by: zhanluxianshen <zhanluxianshen@163.com>	2025-05-10 20:01:31 +08:00
-LAN-	f23cf98317	refactor: Remove RepositoryFactory (#19176 ) Signed-off-by: -LAN- <laipz8200@outlook.com>	2025-05-06 21:14:51 +08:00
AichiB7A	8299614e60	[Observability][Bugfix] Fix expected an instance of Token, got None error in OpenTelemetry (#18934 )	2025-04-28 10:31:13 +08:00
-LAN-	61e39bccdf	fix: Patch OpenTelemetry to handle None tokens (#18498 ) Signed-off-by: -LAN- <laipz8200@outlook.com>	2025-04-22 16:04:20 +08:00
-LAN-	6d9dd3109e	feat: add a abstract layer for WorkflowNodeExcetion (#18026 )	2025-04-17 12:48:52 +09:00
AichiB7A	5f8d20b5b2	[Observability] Integrate OpenTelemetry (#17627 )	2025-04-11 17:04:06 +08:00
Yeuoly	490b6d092e	Fix/plugin race condition (#14253 )	2025-02-25 12:20:47 +08:00
-LAN-	99f40a9682	feat: full support for opendal and sync configurations between .env and docker-compose (#11754 ) Signed-off-by: -LAN- <laipz8200@outlook.com>	2024-12-18 09:05:54 +08:00
-LAN-	e86756cb39	feat(app_factory): speed up api startup (#11762 ) Signed-off-by: -LAN- <laipz8200@outlook.com>	2024-12-18 09:05:31 +08:00
Bowen Liang	9b46b02717	refactor: assembling the app features in modular way (#9129 ) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: -LAN- <laipz8200@outlook.com>	2024-11-30 23:05:22 +08:00
Jinzhou Zhang	6f418da388	Fixes #11065 : tenant_id not found when login via ADMIN_KEY (#11066 )	2024-11-27 19:50:56 +08:00
Bowen Liang	0e8ab0588f	fix: (#10437 followup) fix conditions with DEBUG config (#10438 )	2024-11-08 09:42:53 +08:00
Bowen Liang	0ebe198ff1	chore: use DEBUG in dify_config instead of parsing raw system environment variable in place (#10437 )	2024-11-08 09:34:11 +08:00
Bowen Liang	4d9160ca9f	refactor: use dify_config to replace legacy usage of flask app's config (#9089 )	2024-10-22 11:01:32 +08:00
zhuhao	83b2b8fe60	refactor: add logging extension module for log initialization (#9524 )	2024-10-22 09:00:44 +08:00
Sergio Sacristán	28de676956	controller test (#9469 )	2024-10-18 08:23:36 +08:00

44 Commits