opensource/dify
2
0
Fork 0
mirror of https://github.com/langgenius/dify.git synced 2026-06-23 03:52:31 +08:00
Code Issues Packages Projects Releases Wiki Activity
11,228 Commits 581 Branches 172 Tags 777 MiB
c3f56fcc9a
Commit Graph

14 Commits

Author SHA1 Message Date
GareArc
c3f56fcc9a
refactor(openapi/cli): drop tag/author from app usage-face noun 
The app noun is the usage face; tags and author are build/management
metadata that belong to studio-app, not here. Remove them end to end:

- backend: drop tags/created_by_name from AppListRow, tag from
  AppListQuery, the TagItem model, and the tag-name filter lookup;
  stop hardcoding the cross-tenant blanks in the permitted-external list
- cli: remove the --tag flag, TAGS/AUTHOR columns, and tag from the
  list query; single get app <id> no longer fabricates the fields
- regenerate openapi contracts (types/zod) and markdown docs

get app and get app <id> now agree (neither surfaces tags/author),
resolving the list-vs-single divergence raised in review.
 2026-06-21 21:25:13 -07:00
yunlu.wen
a0bdb16cb9 Merge branch 'feat/openapi-rbac' into deploy/enterprise 2026-06-22 11:01:12 +08:00
GareArc
4111751bdf
refactor(openapi/cli): split app usage-face from studio-app build-face 
Squash of PR #37641 (worktree-fix+app-abstraction-noun).

Introduces two app nouns:
- app: usage face (run/get/describe/resume), dual-subject account + external-SSO
- studio-app: build face (export/import), account-only

Backend: split read routes by subject with token-type-restricted guards;
shared public projection builder (build_app_describe_response); drop
author/tags from describe to prevent cross-tenant identity leak.
CLI: selectAppReader subject dispatch (account vs permitted-external),
AppReader strategy, studio-app export/import, refreshed help/guides.
 2026-06-21 19:48:22 -07:00
yunlu.wen
8cc6b16661 Merge remote-tracking branch 'upstream/main' into feat/openapi-rbac 2026-06-22 10:25:29 +08:00
Asuka Minato
4304044905
chore: example of make db.session pass from parameter. (#37561) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2026-06-18 02:16:09 +00:00
yunlu.wen
547340ecca allow enduser access for app list/desc 2026-06-17 11:23:10 +08:00
autofix-ci[bot]
39bf04e7fe
[autofix.ci] apply automated fixes 2026-06-17 02:30:55 +00:00
yunlu.wen
c38cba1f8c reorder decorators 2026-06-17 10:27:32 +08:00
yunlu.wen
d82b6fe48e guard openapi with rbac decorator 2026-06-15 13:51:30 +08:00
L1nSn0w
629e046303
refactor(openapi): unify request validation behind @accepts/@returns decorators (#37216) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2026-06-10 03:02:24 +00:00
Xiyuan Chen
1502a57381
feat(api,cli): strict UUID validation for app-id and workspace-id (#37212) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2026-06-09 07:35:18 +00:00
Xiyuan Chen
cad0942f4d
fix(api): enforce workspace membership + role checks in auth pipeline (#36931) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2026-06-03 07:31:47 +00:00
Xiyuan Chen
d2788d7aba
feat(openapi): redesign auth pipeline with per-token-type routing (#36693) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
 2026-05-27 12:45:30 +00:00
Yunlu Wen
a728e0ac69
feat: adding dify cli (#36348) 
Co-authored-by: GareArc <garethcxy@dify.ai>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: L1nSn0w <l1nsn0w@qq.com>
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Co-authored-by: gigglewang <gigglewang@dify.ai>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: Xiyuan Chen <52963600+GareArc@users.noreply.github.com>
 2026-05-26 01:12:36 +00:00