opensource/dify
2
0
Fork 0
mirror of https://github.com/langgenius/dify.git synced 2026-06-11 02:31:13 +08:00
Code Issues Packages Projects Releases Wiki Activity
e3cfc4d40f
dify/api/services/file_request_service.py
盐粒 Yanli ba9975a083
feat(dify-agent): sync shell and back proxy updates (#37159) 
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
2026-06-10 03:04:32 +00:00

81 lines
3.0 KiB
Python
Raw Blame History

"""Service helpers for trusted file request control-plane endpoints.
These helpers are used by inner APIs that return signed upload/download URLs to
trusted external runtimes such as ``dify-agent``. They do not transfer file
bytes themselves; they only rebuild access-scoped ``graphon.file.File`` values
and resolve the signed URL that the caller should use directly.
"""
from __future__ import annotations
from collections.abc import Mapping
from dataclasses import dataclass
from typing import Any
from core.app.entities.app_invoke_entities import InvokeFrom, UserFrom
from core.app.file_access import DatabaseFileAccessController, FileAccessScope, bind_file_access_scope
from factories.file_factory.builders import build_from_mapping
from graphon.file import File
from graphon.file import helpers as file_helpers
@dataclass(frozen=True, slots=True)
class DownloadFileRequestResult:
"""Resolved metadata and signed URL returned to trusted download callers."""
filename: str
mime_type: str | None
size: int
download_url: str
class FileRequestService:
"""Resolve signed download URLs for trusted external file consumers."""
_access_controller: DatabaseFileAccessController
def __init__(self, access_controller: DatabaseFileAccessController | None = None) -> None:
self._access_controller = access_controller or DatabaseFileAccessController()
def request_download_url(
self,
*,
tenant_id: str,
user_id: str,
user_from: UserFrom | str,
invoke_from: InvokeFrom | str,
file_mapping: Mapping[str, Any],
) -> DownloadFileRequestResult:
"""Resolve one file mapping into signed download metadata.
The request is evaluated under a request-local :class:`FileAccessScope`
so file-factory reconstruction and URL resolution enforce the same
tenant/user authorization rules used by workflow runtime execution.
"""
scope = FileAccessScope(
tenant_id=tenant_id,
user_id=user_id,
user_from=user_from if isinstance(user_from, UserFrom) else UserFrom(user_from),
invoke_from=invoke_from if isinstance(invoke_from, InvokeFrom) else InvokeFrom(invoke_from),
)
with bind_file_access_scope(scope):
file = self._build_file(mapping=file_mapping, tenant_id=tenant_id)
download_url = file_helpers.resolve_file_url(file, for_external=True)
if not download_url:
raise ValueError("file does not support signed download")
return DownloadFileRequestResult(
filename=file.filename or "download.bin",
mime_type=file.mime_type,
size=file.size,
download_url=download_url,
)
def _build_file(self, *, mapping: Mapping[str, Any], tenant_id: str) -> File:
return build_from_mapping(
mapping=mapping,
tenant_id=tenant_id,
access_controller=self._access_controller,
)
Reference in New Issue View Git Blame Copy Permalink