| from copy import deepcopy |
| from typing import Any |
|
|
| from pydantic import BaseModel |
|
|
| from core.helper import encrypter |
| from core.helper.tool_parameter_cache import ToolParameterCache, ToolParameterCacheType |
| from core.helper.tool_provider_cache import ToolProviderCredentialsCache, ToolProviderCredentialsCacheType |
| from core.tools.entities.tool_entities import ( |
| ToolParameter, |
| ToolProviderCredentials, |
| ) |
| from core.tools.provider.tool_provider import ToolProviderController |
| from core.tools.tool.tool import Tool |
|
|
|
|
| class ToolConfigurationManager(BaseModel): |
| tenant_id: str |
| provider_controller: ToolProviderController |
|
|
| def _deep_copy(self, credentials: dict[str, str]) -> dict[str, str]: |
| """ |
| deep copy credentials |
| """ |
| return deepcopy(credentials) |
|
|
| def encrypt_tool_credentials(self, credentials: dict[str, str]) -> dict[str, str]: |
| """ |
| encrypt tool credentials with tenant id |
| |
| return a deep copy of credentials with encrypted values |
| """ |
| credentials = self._deep_copy(credentials) |
|
|
| |
| fields = self.provider_controller.get_credentials_schema() |
| for field_name, field in fields.items(): |
| if field.type == ToolProviderCredentials.CredentialsType.SECRET_INPUT: |
| if field_name in credentials: |
| encrypted = encrypter.encrypt_token(self.tenant_id, credentials[field_name]) |
| credentials[field_name] = encrypted |
|
|
| return credentials |
|
|
| def mask_tool_credentials(self, credentials: dict[str, Any]) -> dict[str, Any]: |
| """ |
| mask tool credentials |
| |
| return a deep copy of credentials with masked values |
| """ |
| credentials = self._deep_copy(credentials) |
|
|
| |
| fields = self.provider_controller.get_credentials_schema() |
| for field_name, field in fields.items(): |
| if field.type == ToolProviderCredentials.CredentialsType.SECRET_INPUT: |
| if field_name in credentials: |
| if len(credentials[field_name]) > 6: |
| credentials[field_name] = ( |
| credentials[field_name][:2] |
| + "*" * (len(credentials[field_name]) - 4) |
| + credentials[field_name][-2:] |
| ) |
| else: |
| credentials[field_name] = "*" * len(credentials[field_name]) |
|
|
| return credentials |
|
|
| def decrypt_tool_credentials(self, credentials: dict[str, str]) -> dict[str, str]: |
| """ |
| decrypt tool credentials with tenant id |
| |
| return a deep copy of credentials with decrypted values |
| """ |
| cache = ToolProviderCredentialsCache( |
| tenant_id=self.tenant_id, |
| identity_id=f"{self.provider_controller.provider_type.value}.{self.provider_controller.identity.name}", |
| cache_type=ToolProviderCredentialsCacheType.PROVIDER, |
| ) |
| cached_credentials = cache.get() |
| if cached_credentials: |
| return cached_credentials |
| credentials = self._deep_copy(credentials) |
| |
| fields = self.provider_controller.get_credentials_schema() |
| for field_name, field in fields.items(): |
| if field.type == ToolProviderCredentials.CredentialsType.SECRET_INPUT: |
| if field_name in credentials: |
| try: |
| credentials[field_name] = encrypter.decrypt_token(self.tenant_id, credentials[field_name]) |
| except: |
| pass |
|
|
| cache.set(credentials) |
| return credentials |
|
|
| def delete_tool_credentials_cache(self): |
| cache = ToolProviderCredentialsCache( |
| tenant_id=self.tenant_id, |
| identity_id=f"{self.provider_controller.provider_type.value}.{self.provider_controller.identity.name}", |
| cache_type=ToolProviderCredentialsCacheType.PROVIDER, |
| ) |
| cache.delete() |
|
|
|
|
| class ToolParameterConfigurationManager(BaseModel): |
| """ |
| Tool parameter configuration manager |
| """ |
|
|
| tenant_id: str |
| tool_runtime: Tool |
| provider_name: str |
| provider_type: str |
| identity_id: str |
|
|
| def _deep_copy(self, parameters: dict[str, Any]) -> dict[str, Any]: |
| """ |
| deep copy parameters |
| """ |
| return deepcopy(parameters) |
|
|
| def _merge_parameters(self) -> list[ToolParameter]: |
| """ |
| merge parameters |
| """ |
| |
| tool_parameters = self.tool_runtime.parameters or [] |
| |
| runtime_parameters = self.tool_runtime.get_runtime_parameters() or [] |
| |
| current_parameters = tool_parameters.copy() |
| for runtime_parameter in runtime_parameters: |
| found = False |
| for index, parameter in enumerate(current_parameters): |
| if parameter.name == runtime_parameter.name and parameter.form == runtime_parameter.form: |
| current_parameters[index] = runtime_parameter |
| found = True |
| break |
|
|
| if not found and runtime_parameter.form == ToolParameter.ToolParameterForm.FORM: |
| current_parameters.append(runtime_parameter) |
|
|
| return current_parameters |
|
|
| def mask_tool_parameters(self, parameters: dict[str, Any]) -> dict[str, Any]: |
| """ |
| mask tool parameters |
| |
| return a deep copy of parameters with masked values |
| """ |
| parameters = self._deep_copy(parameters) |
|
|
| |
| current_parameters = self._merge_parameters() |
|
|
| for parameter in current_parameters: |
| if ( |
| parameter.form == ToolParameter.ToolParameterForm.FORM |
| and parameter.type == ToolParameter.ToolParameterType.SECRET_INPUT |
| ): |
| if parameter.name in parameters: |
| if len(parameters[parameter.name]) > 6: |
| parameters[parameter.name] = ( |
| parameters[parameter.name][:2] |
| + "*" * (len(parameters[parameter.name]) - 4) |
| + parameters[parameter.name][-2:] |
| ) |
| else: |
| parameters[parameter.name] = "*" * len(parameters[parameter.name]) |
|
|
| return parameters |
|
|
| def encrypt_tool_parameters(self, parameters: dict[str, Any]) -> dict[str, Any]: |
| """ |
| encrypt tool parameters with tenant id |
| |
| return a deep copy of parameters with encrypted values |
| """ |
| |
| current_parameters = self._merge_parameters() |
|
|
| parameters = self._deep_copy(parameters) |
|
|
| for parameter in current_parameters: |
| if ( |
| parameter.form == ToolParameter.ToolParameterForm.FORM |
| and parameter.type == ToolParameter.ToolParameterType.SECRET_INPUT |
| ): |
| if parameter.name in parameters: |
| encrypted = encrypter.encrypt_token(self.tenant_id, parameters[parameter.name]) |
| parameters[parameter.name] = encrypted |
|
|
| return parameters |
|
|
| def decrypt_tool_parameters(self, parameters: dict[str, Any]) -> dict[str, Any]: |
| """ |
| decrypt tool parameters with tenant id |
| |
| return a deep copy of parameters with decrypted values |
| """ |
| cache = ToolParameterCache( |
| tenant_id=self.tenant_id, |
| provider=f"{self.provider_type}.{self.provider_name}", |
| tool_name=self.tool_runtime.identity.name, |
| cache_type=ToolParameterCacheType.PARAMETER, |
| identity_id=self.identity_id, |
| ) |
| cached_parameters = cache.get() |
| if cached_parameters: |
| return cached_parameters |
|
|
| |
| current_parameters = self._merge_parameters() |
| has_secret_input = False |
|
|
| for parameter in current_parameters: |
| if ( |
| parameter.form == ToolParameter.ToolParameterForm.FORM |
| and parameter.type == ToolParameter.ToolParameterType.SECRET_INPUT |
| ): |
| if parameter.name in parameters: |
| try: |
| has_secret_input = True |
| parameters[parameter.name] = encrypter.decrypt_token(self.tenant_id, parameters[parameter.name]) |
| except: |
| pass |
|
|
| if has_secret_input: |
| cache.set(parameters) |
|
|
| return parameters |
|
|
| def delete_tool_parameters_cache(self): |
| cache = ToolParameterCache( |
| tenant_id=self.tenant_id, |
| provider=f"{self.provider_type}.{self.provider_name}", |
| tool_name=self.tool_runtime.identity.name, |
| cache_type=ToolParameterCacheType.PARAMETER, |
| identity_id=self.identity_id, |
| ) |
| cache.delete() |
|
|
