mirror of
https://gitee.com/dify_ai/dify.git
synced 2024-12-11 00:40:10 +08:00
d109881410
Co-authored-by: -LAN- <laipz8200@outlook.com>
262 lines
9.5 KiB
Python
262 lines
9.5 KiB
Python
import enum
|
|
import json
|
|
|
|
from flask_login import UserMixin
|
|
|
|
from extensions.ext_database import db
|
|
|
|
from .types import StringUUID
|
|
|
|
|
|
class AccountStatus(str, enum.Enum):
|
|
PENDING = "pending"
|
|
UNINITIALIZED = "uninitialized"
|
|
ACTIVE = "active"
|
|
BANNED = "banned"
|
|
CLOSED = "closed"
|
|
|
|
|
|
class Account(UserMixin, db.Model):
|
|
__tablename__ = "accounts"
|
|
__table_args__ = (db.PrimaryKeyConstraint("id", name="account_pkey"), db.Index("account_email_idx", "email"))
|
|
|
|
id = db.Column(StringUUID, server_default=db.text("uuid_generate_v4()"))
|
|
name = db.Column(db.String(255), nullable=False)
|
|
email = db.Column(db.String(255), nullable=False)
|
|
password = db.Column(db.String(255), nullable=True)
|
|
password_salt = db.Column(db.String(255), nullable=True)
|
|
avatar = db.Column(db.String(255))
|
|
interface_language = db.Column(db.String(255))
|
|
interface_theme = db.Column(db.String(255))
|
|
timezone = db.Column(db.String(255))
|
|
last_login_at = db.Column(db.DateTime)
|
|
last_login_ip = db.Column(db.String(255))
|
|
last_active_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
status = db.Column(db.String(16), nullable=False, server_default=db.text("'active'::character varying"))
|
|
initialized_at = db.Column(db.DateTime)
|
|
created_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
updated_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
|
|
@property
|
|
def is_password_set(self):
|
|
return self.password is not None
|
|
|
|
@property
|
|
def current_tenant(self):
|
|
return self._current_tenant
|
|
|
|
@current_tenant.setter
|
|
def current_tenant(self, value: "Tenant"):
|
|
tenant = value
|
|
ta = TenantAccountJoin.query.filter_by(tenant_id=tenant.id, account_id=self.id).first()
|
|
if ta:
|
|
tenant.current_role = ta.role
|
|
else:
|
|
tenant = None
|
|
self._current_tenant = tenant
|
|
|
|
@property
|
|
def current_tenant_id(self):
|
|
return self._current_tenant.id
|
|
|
|
@current_tenant_id.setter
|
|
def current_tenant_id(self, value: str):
|
|
try:
|
|
tenant_account_join = (
|
|
db.session.query(Tenant, TenantAccountJoin)
|
|
.filter(Tenant.id == value)
|
|
.filter(TenantAccountJoin.tenant_id == Tenant.id)
|
|
.filter(TenantAccountJoin.account_id == self.id)
|
|
.one_or_none()
|
|
)
|
|
|
|
if tenant_account_join:
|
|
tenant, ta = tenant_account_join
|
|
tenant.current_role = ta.role
|
|
else:
|
|
tenant = None
|
|
except:
|
|
tenant = None
|
|
|
|
self._current_tenant = tenant
|
|
|
|
@property
|
|
def current_role(self):
|
|
return self._current_tenant.current_role
|
|
|
|
def get_status(self) -> AccountStatus:
|
|
status_str = self.status
|
|
return AccountStatus(status_str)
|
|
|
|
@classmethod
|
|
def get_by_openid(cls, provider: str, open_id: str) -> db.Model:
|
|
account_integrate = (
|
|
db.session.query(AccountIntegrate)
|
|
.filter(AccountIntegrate.provider == provider, AccountIntegrate.open_id == open_id)
|
|
.one_or_none()
|
|
)
|
|
if account_integrate:
|
|
return db.session.query(Account).filter(Account.id == account_integrate.account_id).one_or_none()
|
|
return None
|
|
|
|
def get_integrates(self) -> list[db.Model]:
|
|
ai = db.Model
|
|
return db.session.query(ai).filter(ai.account_id == self.id).all()
|
|
|
|
# check current_user.current_tenant.current_role in ['admin', 'owner']
|
|
@property
|
|
def is_admin_or_owner(self):
|
|
return TenantAccountRole.is_privileged_role(self._current_tenant.current_role)
|
|
|
|
@property
|
|
def is_editor(self):
|
|
return TenantAccountRole.is_editing_role(self._current_tenant.current_role)
|
|
|
|
@property
|
|
def is_dataset_editor(self):
|
|
return TenantAccountRole.is_dataset_edit_role(self._current_tenant.current_role)
|
|
|
|
@property
|
|
def is_dataset_operator(self):
|
|
return self._current_tenant.current_role == TenantAccountRole.DATASET_OPERATOR
|
|
|
|
|
|
class TenantStatus(str, enum.Enum):
|
|
NORMAL = "normal"
|
|
ARCHIVE = "archive"
|
|
|
|
|
|
class TenantAccountRole(str, enum.Enum):
|
|
OWNER = "owner"
|
|
ADMIN = "admin"
|
|
EDITOR = "editor"
|
|
NORMAL = "normal"
|
|
DATASET_OPERATOR = "dataset_operator"
|
|
|
|
@staticmethod
|
|
def is_valid_role(role: str) -> bool:
|
|
return role and role in {
|
|
TenantAccountRole.OWNER,
|
|
TenantAccountRole.ADMIN,
|
|
TenantAccountRole.EDITOR,
|
|
TenantAccountRole.NORMAL,
|
|
TenantAccountRole.DATASET_OPERATOR,
|
|
}
|
|
|
|
@staticmethod
|
|
def is_privileged_role(role: str) -> bool:
|
|
return role and role in {TenantAccountRole.OWNER, TenantAccountRole.ADMIN}
|
|
|
|
@staticmethod
|
|
def is_non_owner_role(role: str) -> bool:
|
|
return role and role in {
|
|
TenantAccountRole.ADMIN,
|
|
TenantAccountRole.EDITOR,
|
|
TenantAccountRole.NORMAL,
|
|
TenantAccountRole.DATASET_OPERATOR,
|
|
}
|
|
|
|
@staticmethod
|
|
def is_editing_role(role: str) -> bool:
|
|
return role and role in {TenantAccountRole.OWNER, TenantAccountRole.ADMIN, TenantAccountRole.EDITOR}
|
|
|
|
@staticmethod
|
|
def is_dataset_edit_role(role: str) -> bool:
|
|
return role and role in {
|
|
TenantAccountRole.OWNER,
|
|
TenantAccountRole.ADMIN,
|
|
TenantAccountRole.EDITOR,
|
|
TenantAccountRole.DATASET_OPERATOR,
|
|
}
|
|
|
|
|
|
class Tenant(db.Model):
|
|
__tablename__ = "tenants"
|
|
__table_args__ = (db.PrimaryKeyConstraint("id", name="tenant_pkey"),)
|
|
|
|
id = db.Column(StringUUID, server_default=db.text("uuid_generate_v4()"))
|
|
name = db.Column(db.String(255), nullable=False)
|
|
encrypt_public_key = db.Column(db.Text)
|
|
plan = db.Column(db.String(255), nullable=False, server_default=db.text("'basic'::character varying"))
|
|
status = db.Column(db.String(255), nullable=False, server_default=db.text("'normal'::character varying"))
|
|
custom_config = db.Column(db.Text)
|
|
created_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
updated_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
|
|
def get_accounts(self) -> list[Account]:
|
|
return (
|
|
db.session.query(Account)
|
|
.filter(Account.id == TenantAccountJoin.account_id, TenantAccountJoin.tenant_id == self.id)
|
|
.all()
|
|
)
|
|
|
|
@property
|
|
def custom_config_dict(self) -> dict:
|
|
return json.loads(self.custom_config) if self.custom_config else {}
|
|
|
|
@custom_config_dict.setter
|
|
def custom_config_dict(self, value: dict):
|
|
self.custom_config = json.dumps(value)
|
|
|
|
|
|
class TenantAccountJoinRole(enum.Enum):
|
|
OWNER = "owner"
|
|
ADMIN = "admin"
|
|
NORMAL = "normal"
|
|
DATASET_OPERATOR = "dataset_operator"
|
|
|
|
|
|
class TenantAccountJoin(db.Model):
|
|
__tablename__ = "tenant_account_joins"
|
|
__table_args__ = (
|
|
db.PrimaryKeyConstraint("id", name="tenant_account_join_pkey"),
|
|
db.Index("tenant_account_join_account_id_idx", "account_id"),
|
|
db.Index("tenant_account_join_tenant_id_idx", "tenant_id"),
|
|
db.UniqueConstraint("tenant_id", "account_id", name="unique_tenant_account_join"),
|
|
)
|
|
|
|
id = db.Column(StringUUID, server_default=db.text("uuid_generate_v4()"))
|
|
tenant_id = db.Column(StringUUID, nullable=False)
|
|
account_id = db.Column(StringUUID, nullable=False)
|
|
current = db.Column(db.Boolean, nullable=False, server_default=db.text("false"))
|
|
role = db.Column(db.String(16), nullable=False, server_default="normal")
|
|
invited_by = db.Column(StringUUID, nullable=True)
|
|
created_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
updated_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
|
|
|
|
class AccountIntegrate(db.Model):
|
|
__tablename__ = "account_integrates"
|
|
__table_args__ = (
|
|
db.PrimaryKeyConstraint("id", name="account_integrate_pkey"),
|
|
db.UniqueConstraint("account_id", "provider", name="unique_account_provider"),
|
|
db.UniqueConstraint("provider", "open_id", name="unique_provider_open_id"),
|
|
)
|
|
|
|
id = db.Column(StringUUID, server_default=db.text("uuid_generate_v4()"))
|
|
account_id = db.Column(StringUUID, nullable=False)
|
|
provider = db.Column(db.String(16), nullable=False)
|
|
open_id = db.Column(db.String(255), nullable=False)
|
|
encrypted_token = db.Column(db.String(255), nullable=False)
|
|
created_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
updated_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|
|
|
|
|
|
class InvitationCode(db.Model):
|
|
__tablename__ = "invitation_codes"
|
|
__table_args__ = (
|
|
db.PrimaryKeyConstraint("id", name="invitation_code_pkey"),
|
|
db.Index("invitation_codes_batch_idx", "batch"),
|
|
db.Index("invitation_codes_code_idx", "code", "status"),
|
|
)
|
|
|
|
id = db.Column(db.Integer, nullable=False)
|
|
batch = db.Column(db.String(255), nullable=False)
|
|
code = db.Column(db.String(32), nullable=False)
|
|
status = db.Column(db.String(16), nullable=False, server_default=db.text("'unused'::character varying"))
|
|
used_at = db.Column(db.DateTime)
|
|
used_by_tenant_id = db.Column(StringUUID)
|
|
used_by_account_id = db.Column(StringUUID)
|
|
deprecated_at = db.Column(db.DateTime)
|
|
created_at = db.Column(db.DateTime, nullable=False, server_default=db.text("CURRENT_TIMESTAMP(0)"))
|