dify/api/core/helper/encrypter.py

import base64

from extensions.ext_database import db
from libs import rsa


def obfuscated_token(token: str):
    if not token:
        return token
    if len(token) <= 8:
        return '*' * 20
    return token[:6] + '*' * 12 + token[-2:]


def encrypt_token(tenant_id: str, token: str):
    from models.account import Tenant
    if not (tenant := db.session.query(Tenant).filter(Tenant.id == tenant_id).first()):
        raise ValueError(f'Tenant with id {tenant_id} not found')
    encrypted_token = rsa.encrypt(token, tenant.encrypt_public_key)
    return base64.b64encode(encrypted_token).decode()


def decrypt_token(tenant_id: str, token: str):
    return rsa.decrypt(base64.b64decode(token), tenant_id)


def batch_decrypt_token(tenant_id: str, tokens: list[str]):
    rsa_key, cipher_rsa = rsa.get_decrypt_decoding(tenant_id)

    return [rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) for token in tokens]


def get_decrypt_decoding(tenant_id: str):
    return rsa.get_decrypt_decoding(tenant_id)


def decrypt_token_with_decoding(token: str, rsa_key, cipher_rsa):
    return rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa)
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00			`import base64`

			`from extensions.ext_database import db`
			`from libs import rsa`


			`def obfuscated_token(token: str):`
Feat/environment variables in workflow (#6515) Co-authored-by: JzoNg <jzongcode@gmail.com> 2024-07-22 15:29:39 +08:00			`if not token:`
			`return token`
			`if len(token) <= 8:`
			`return '' 20`
			`return token[:6] + '' 12 + token[-2:]`
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00

			`def encrypt_token(tenant_id: str, token: str):`
Feat: conversation variable & variable assigner node (#7222) Signed-off-by: -LAN- <laipz8200@outlook.com> Co-authored-by: Joel <iamjoel007@gmail.com> Co-authored-by: -LAN- <laipz8200@outlook.com> 2024-08-13 14:44:10 +08:00			`from models.account import Tenant`
Feat/environment variables in workflow (#6515) Co-authored-by: JzoNg <jzongcode@gmail.com> 2024-07-22 15:29:39 +08:00			`if not (tenant := db.session.query(Tenant).filter(Tenant.id == tenant_id).first()):`
			`raise ValueError(f'Tenant with id {tenant_id} not found')`
feat: server multi models support (#799) 2023-08-12 00:57:00 +08:00			`encrypted_token = rsa.encrypt(token, tenant.encrypt_public_key)`
			`return base64.b64encode(encrypted_token).decode()`


			`def decrypt_token(tenant_id: str, token: str):`
			`return rsa.decrypt(base64.b64decode(token), tenant_id)`
Model Runtime (#1858) Co-authored-by: StyleZhang <jasonapring2015@outlook.com> Co-authored-by: Garfield Dai <dai.hai@foxmail.com> Co-authored-by: chenhe <guchenhe@gmail.com> Co-authored-by: jyong <jyong@dify.ai> Co-authored-by: Joel <iamjoel007@gmail.com> Co-authored-by: Yeuoly <admin@srmxy.cn> 2024-01-02 23:42:00 +08:00

			`def batch_decrypt_token(tenant_id: str, tokens: list[str]):`
			`rsa_key, cipher_rsa = rsa.get_decrypt_decoding(tenant_id)`

			`return [rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) for token in tokens]`


			`def get_decrypt_decoding(tenant_id: str):`
			`return rsa.get_decrypt_decoding(tenant_id)`


			`def decrypt_token_with_decoding(token: str, rsa_key, cipher_rsa):`
			`return rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa)`