bd84e500e1
新增完整的长期记忆支持及测试:引入中文记忆检索提示词、query_long_term_memory 检索工具、记忆服务与记忆流程服务,以及 WebUI 的记忆路由。新增大规模测试套件(包括单元测试与基准/在线测试),覆盖聊天历史摘要、知识获取器、事件(episode)生成、写回机制以及用户画像检索等功能。 更新多个模块以集成记忆检索能力(包括 knowledge fetcher、chat summarizer、memory_retrieval、person_info、config/legacy 迁移以及 WebUI 路由),并移除遗留的 lpmm 知识模块。这些变更完成了记忆运行时的接入,同时为基准测试提供嵌入适配器的 mock,并支持新测试与工具所需的导入与 episode 处理流程。
337 lines
10 KiB
Python
337 lines
10 KiB
Python
"""WebUI API 路由"""
|
||
|
||
from fastapi import APIRouter, Depends, HTTPException, Request, Response
|
||
from pydantic import BaseModel, Field
|
||
|
||
from src.common.logger import get_logger
|
||
from src.webui.core import (
|
||
check_auth_rate_limit,
|
||
clear_auth_cookie,
|
||
get_rate_limiter,
|
||
get_token_manager,
|
||
set_auth_cookie,
|
||
)
|
||
from src.webui.dependencies import require_auth, verify_token_optional
|
||
from src.webui.routers.config import router as config_router
|
||
from src.webui.routers.emoji import router as emoji_router
|
||
from src.webui.routers.expression import router as expression_router
|
||
from src.webui.routers.jargon import router as jargon_router
|
||
from src.webui.routers.memory import router as memory_router
|
||
from src.webui.routers.model import router as model_router
|
||
from src.webui.routers.person import router as person_router
|
||
from src.webui.routers.plugin import get_progress_router
|
||
from src.webui.routers.plugin import router as plugin_router
|
||
from src.webui.routers.statistics import router as statistics_router
|
||
from src.webui.routers.system import router as system_router
|
||
from src.webui.routers.websocket.auth import router as ws_auth_router
|
||
|
||
logger = get_logger("webui.api")
|
||
|
||
# 创建路由器
|
||
router = APIRouter(prefix="/api/webui", tags=["WebUI"])
|
||
|
||
# 注册配置管理路由
|
||
router.include_router(config_router)
|
||
# 注册统计数据路由
|
||
router.include_router(statistics_router)
|
||
# 注册人物信息管理路由
|
||
router.include_router(person_router)
|
||
# 注册表达方式管理路由
|
||
router.include_router(expression_router)
|
||
# 注册黑话管理路由
|
||
router.include_router(jargon_router)
|
||
# 注册表情包管理路由
|
||
router.include_router(emoji_router)
|
||
# 注册插件管理路由
|
||
router.include_router(plugin_router)
|
||
# 注册插件进度 WebSocket 路由
|
||
router.include_router(get_progress_router())
|
||
# 注册系统控制路由
|
||
router.include_router(system_router)
|
||
# 注册模型列表获取路由
|
||
router.include_router(model_router)
|
||
# 注册长期记忆管理路由
|
||
router.include_router(memory_router)
|
||
# 注册 WebSocket 认证路由
|
||
router.include_router(ws_auth_router)
|
||
|
||
|
||
class TokenVerifyRequest(BaseModel):
|
||
"""Token 验证请求"""
|
||
|
||
token: str = Field(..., description="访问令牌")
|
||
|
||
|
||
class TokenVerifyResponse(BaseModel):
|
||
"""Token 验证响应"""
|
||
|
||
valid: bool = Field(..., description="Token 是否有效")
|
||
message: str = Field(..., description="验证结果消息")
|
||
is_first_setup: bool = Field(False, description="是否为首次设置")
|
||
|
||
|
||
class TokenUpdateRequest(BaseModel):
|
||
"""Token 更新请求"""
|
||
|
||
new_token: str = Field(..., description="新的访问令牌", min_length=10)
|
||
|
||
|
||
class TokenUpdateResponse(BaseModel):
|
||
"""Token 更新响应"""
|
||
|
||
success: bool = Field(..., description="是否更新成功")
|
||
message: str = Field(..., description="更新结果消息")
|
||
|
||
|
||
class TokenRegenerateResponse(BaseModel):
|
||
"""Token 重新生成响应"""
|
||
|
||
success: bool = Field(..., description="是否生成成功")
|
||
token: str = Field(..., description="新生成的令牌")
|
||
message: str = Field(..., description="生成结果消息")
|
||
|
||
|
||
class FirstSetupStatusResponse(BaseModel):
|
||
"""首次配置状态响应"""
|
||
|
||
is_first_setup: bool = Field(..., description="是否为首次配置")
|
||
message: str = Field(..., description="状态消息")
|
||
|
||
|
||
class CompleteSetupResponse(BaseModel):
|
||
"""完成配置响应"""
|
||
|
||
success: bool = Field(..., description="是否成功")
|
||
message: str = Field(..., description="结果消息")
|
||
|
||
|
||
class ResetSetupResponse(BaseModel):
|
||
"""重置配置响应"""
|
||
|
||
success: bool = Field(..., description="是否成功")
|
||
message: str = Field(..., description="结果消息")
|
||
|
||
|
||
@router.get("/health")
|
||
async def health_check():
|
||
"""健康检查"""
|
||
return {"status": "healthy", "service": "MaiBot WebUI"}
|
||
|
||
|
||
@router.post("/auth/verify", response_model=TokenVerifyResponse)
|
||
async def verify_token(
|
||
request_body: TokenVerifyRequest,
|
||
request: Request,
|
||
response: Response,
|
||
_rate_limit: None = Depends(check_auth_rate_limit),
|
||
):
|
||
"""
|
||
验证访问令牌,验证成功后设置 HttpOnly Cookie
|
||
|
||
Args:
|
||
request_body: 包含 token 的验证请求
|
||
request: FastAPI Request 对象(用于获取客户端 IP)
|
||
response: FastAPI Response 对象
|
||
|
||
Returns:
|
||
验证结果(包含首次配置状态)
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
rate_limiter = get_rate_limiter()
|
||
|
||
is_valid = token_manager.verify_token(request_body.token)
|
||
|
||
if is_valid:
|
||
# 认证成功,重置失败计数
|
||
rate_limiter.reset_failures(request)
|
||
# 设置 HttpOnly Cookie(传入 request 以检测协议)
|
||
set_auth_cookie(response, request_body.token, request)
|
||
# 同时返回首次配置状态,避免额外请求
|
||
is_first_setup = token_manager.is_first_setup()
|
||
return TokenVerifyResponse(valid=True, message="Token 验证成功", is_first_setup=is_first_setup)
|
||
else:
|
||
# 记录失败尝试
|
||
blocked, remaining = rate_limiter.record_failed_attempt(
|
||
request,
|
||
max_failures=5, # 5 次失败
|
||
window_seconds=300, # 5 分钟窗口
|
||
block_duration=600, # 封禁 10 分钟
|
||
)
|
||
|
||
if blocked:
|
||
raise HTTPException(status_code=429, detail="认证失败次数过多,您的 IP 已被临时封禁 10 分钟")
|
||
|
||
message = "Token 无效或已过期"
|
||
if remaining <= 2:
|
||
message += f"(剩余 {remaining} 次尝试机会)"
|
||
|
||
return TokenVerifyResponse(valid=False, message=message)
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"Token 验证失败: {e}")
|
||
raise HTTPException(status_code=500, detail="Token 验证失败") from e
|
||
|
||
|
||
@router.post("/auth/logout")
|
||
async def logout(response: Response):
|
||
"""
|
||
登出并清除认证 Cookie
|
||
|
||
Args:
|
||
response: FastAPI Response 对象
|
||
|
||
Returns:
|
||
登出结果
|
||
"""
|
||
clear_auth_cookie(response)
|
||
return {"success": True, "message": "已成功登出"}
|
||
|
||
|
||
@router.get("/auth/check")
|
||
async def check_auth_status(
|
||
authenticated: bool = Depends(verify_token_optional),
|
||
):
|
||
"""
|
||
检查当前认证状态(用于前端判断是否已登录)
|
||
|
||
Returns:
|
||
认证状态
|
||
"""
|
||
try:
|
||
logger.debug(f"检查认证状态,结果: {authenticated}")
|
||
return {"authenticated": authenticated}
|
||
except Exception as e:
|
||
logger.error(f"认证检查失败: {e}", exc_info=True)
|
||
return {"authenticated": False}
|
||
|
||
|
||
@router.post("/auth/update", response_model=TokenUpdateResponse, dependencies=[Depends(require_auth)])
|
||
async def update_token(
|
||
request: TokenUpdateRequest,
|
||
response: Response,
|
||
):
|
||
"""
|
||
更新访问令牌(需要当前有效的 token)
|
||
|
||
Args:
|
||
request: 包含新 token 的更新请求
|
||
response: FastAPI Response 对象
|
||
|
||
Returns:
|
||
更新结果
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
|
||
# 更新 token
|
||
success, message = token_manager.update_token(request.new_token)
|
||
|
||
# 如果更新成功,清除 Cookie,要求用户重新登录
|
||
if success:
|
||
clear_auth_cookie(response)
|
||
|
||
return TokenUpdateResponse(success=success, message=message)
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"Token 更新失败: {e}")
|
||
raise HTTPException(status_code=500, detail="Token 更新失败") from e
|
||
|
||
|
||
@router.post("/auth/regenerate", response_model=TokenRegenerateResponse, dependencies=[Depends(require_auth)])
|
||
async def regenerate_token(
|
||
response: Response,
|
||
):
|
||
"""
|
||
重新生成访问令牌(需要当前有效的 token)
|
||
|
||
Args:
|
||
response: FastAPI Response 对象
|
||
|
||
Returns:
|
||
新生成的 token
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
|
||
# 重新生成 token
|
||
new_token = token_manager.regenerate_token()
|
||
|
||
# 清除 Cookie,要求用户重新登录
|
||
clear_auth_cookie(response)
|
||
|
||
return TokenRegenerateResponse(success=True, token=new_token, message="Token 已重新生成")
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"Token 重新生成失败: {e}")
|
||
raise HTTPException(status_code=500, detail="Token 重新生成失败") from e
|
||
|
||
|
||
@router.get("/setup/status", response_model=FirstSetupStatusResponse, dependencies=[Depends(require_auth)])
|
||
async def get_setup_status():
|
||
"""
|
||
获取首次配置状态
|
||
|
||
Returns:
|
||
首次配置状态
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
|
||
# 检查是否为首次配置
|
||
is_first = token_manager.is_first_setup()
|
||
|
||
return FirstSetupStatusResponse(is_first_setup=is_first, message="首次配置" if is_first else "已完成配置")
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"获取配置状态失败: {e}")
|
||
raise HTTPException(status_code=500, detail="获取配置状态失败") from e
|
||
|
||
|
||
@router.post("/setup/complete", response_model=CompleteSetupResponse, dependencies=[Depends(require_auth)])
|
||
async def complete_setup():
|
||
"""
|
||
标记首次配置完成
|
||
|
||
Returns:
|
||
完成结果
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
|
||
# 标记配置完成
|
||
success = token_manager.mark_setup_completed()
|
||
|
||
return CompleteSetupResponse(success=success, message="配置已完成" if success else "标记失败")
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"标记配置完成失败: {e}")
|
||
raise HTTPException(status_code=500, detail="标记配置完成失败") from e
|
||
|
||
|
||
@router.post("/setup/reset", response_model=ResetSetupResponse, dependencies=[Depends(require_auth)])
|
||
async def reset_setup():
|
||
"""
|
||
重置首次配置状态,允许重新进入配置向导
|
||
|
||
Returns:
|
||
重置结果
|
||
"""
|
||
try:
|
||
token_manager = get_token_manager()
|
||
|
||
# 重置配置状态
|
||
success = token_manager.reset_setup_status()
|
||
|
||
return ResetSetupResponse(success=success, message="配置状态已重置" if success else "重置失败")
|
||
except HTTPException:
|
||
raise
|
||
except Exception as e:
|
||
logger.error(f"重置配置状态失败: {e}")
|
||
raise HTTPException(status_code=500, detail="重置配置状态失败") from e
|