240241002/ai_v
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
825f4fb4a9
ai_v/venv/Lib/site-packages/alibabacloud_credentials/credentials.py

562 lines
18 KiB
Python
Raw Normal View History

feat(api): 实现图像生成及后台同步功能 - 新增图像生成接口,支持试用、积分和自定义API Key模式 - 实现生成图片结果异步上传至MinIO存储,带重试机制 - 优化积分预扣除和异常退还逻辑,保障用户积分准确 - 添加获取生成历史记录接口,支持时间范围和分页 - 提供本地字典配置接口,支持模型、比例、提示模板和尺寸 - 实现图片批量上传接口,支持S3兼容对象存储 feat(admin): 增加管理员角色管理与权限分配接口 - 实现角色列表查询、角色创建、更新及删除功能 - 增加权限列表查询接口 - 实现用户角色分配接口,便于统一管理用户权限 - 增加系统字典增删查改接口,支持分类过滤和排序 - 权限控制全面覆盖管理接口,保证安全访问 feat(auth): 完善用户登录注册及权限相关接口与页面 - 实现手机号验证码发送及校验功能,保障注册安全 - 支持手机号注册、登录及退出接口,集成日志记录 - 增加修改密码功能,验证原密码后更新 - 提供动态导航菜单接口,基于权限展示不同菜单 - 实现管理界面路由及日志、角色、字典管理页面访问权限控制 - 添加系统日志查询接口,支持关键词和等级筛选 feat(app): 初始化Flask应用并配置蓝图与数据库 - 创建应用程序工厂,加载配置,初始化数据库和Redis客户端 - 注册认证、API及管理员蓝图,整合路由 - 根路由渲染主页模板 - 应用上下文中自动创建数据库表,保证运行环境准备完毕 feat(database): 提供数据库创建与迁移支持脚本 - 新增数据库创建脚本,支持自动检测是否已存在 - 添加数据库表初始化脚本,支持创建和删除所有表 - 实现RBAC权限初始化,包含基础权限和角色创建 - 新增字段手动修复脚本,添加用户API Key和积分字段 - 强制迁移脚本支持清理连接和修复表结构,初始化默认数据及角色分配 feat(config): 新增系统配置参数 - 配置数据库、Redis、Session和MinIO相关参数 - 添加AI接口地址及试用Key配置 - 集成阿里云短信服务配置及开发模式相关参数 feat(extensions): 初始化数据库、Redis和MinIO客户端 - 创建全局SQLAlchemy数据库实例和Redis客户端 - 配置基于boto3的MinIO兼容S3客户端 chore(logs): 添加示例系统日志文件 - 记录用户请求、验证码发送成功与失败的日志信息
2026-01-12 00:53:31 +08:00
import calendar
import json
import time
from urllib.parse import urlparse, parse_qs
from Tea.core import TeaCore
from alibabacloud_credentials.utils import auth_constant as ac
from alibabacloud_credentials.utils import parameter_helper as ph
from alibabacloud_credentials.exceptions import CredentialException
from alibabacloud_credentials.models import CredentialModel
class Credential:
def get_access_key_id(self):
return
def get_access_key_secret(self):
return
def get_security_token(self):
return
async def get_access_key_id_async(self):
return
async def get_access_key_secret_async(self):
return
async def get_security_token_async(self):
return
def get_credential(self):
return
async def get_credential_async(self):
return
class _AutomaticallyRefreshCredentials:
def __init__(self, expiration, provider):
self.expiration = expiration
self.provider = provider
def _with_should_refresh(self):
if self.expiration is None:
return True
return int(time.mktime(time.localtime())) >= (self.expiration - 180)
def _get_new_credential(self):
return self.provider.get_credentials()
def _refresh_credential(self):
if self._with_should_refresh():
return self._get_new_credential()
async def _get_new_credential_async(self):
return await self.provider.get_credentials_async()
async def _refresh_credential_async(self):
if self._with_should_refresh():
return await self._get_new_credential_async()
class AccessKeyCredential(Credential):
"""AccessKeyCredential"""
def __init__(self, access_key_id, access_key_secret):
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.credential_type = ac.ACCESS_KEY
def get_access_key_id(self):
return self.access_key_id
def get_access_key_secret(self):
return self.access_key_secret
async def get_access_key_id_async(self):
return self.access_key_id
async def get_access_key_secret_async(self):
return self.access_key_secret
def get_credential(self):
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
type=ac.ACCESS_KEY
)
async def get_credential_async(self):
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
type=ac.ACCESS_KEY
)
class BearerTokenCredential(Credential):
"""BearerTokenCredential"""
def __init__(self, bearer_token):
self.bearer_token = bearer_token
self.credential_type = ac.BEARER
def get_credential(self):
return CredentialModel(
bearer_token=self.bearer_token,
type=ac.BEARER
)
async def get_credential_async(self):
return CredentialModel(
bearer_token=self.bearer_token,
type=ac.BEARER
)
def get_type(self) -> str:
return self.credential_type
class EcsRamRoleCredential(Credential, _AutomaticallyRefreshCredentials):
"""EcsRamRoleCredential"""
def __init__(self, access_key_id, access_key_secret, security_token, expiration, provider):
super().__init__(expiration, provider)
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.security_token = security_token
self.credential_type = ac.ECS_RAM_ROLE
def _refresh_credential(self):
credential = super()._refresh_credential()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
async def _refresh_credential_async(self):
credential = await super()._refresh_credential_async()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
def get_access_key_id(self):
self._refresh_credential()
return self.access_key_id
def get_access_key_secret(self):
self._refresh_credential()
return self.access_key_secret
def get_security_token(self):
self._refresh_credential()
return self.security_token
async def get_access_key_id_async(self):
await self._refresh_credential_async()
return self.access_key_id
async def get_access_key_secret_async(self):
await self._refresh_credential_async()
return self.access_key_secret
async def get_security_token_async(self):
await self._refresh_credential_async()
return self.security_token
def get_credential(self):
self._refresh_credential()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.ECS_RAM_ROLE
)
async def get_credential_async(self):
await self._refresh_credential_async()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.ECS_RAM_ROLE
)
class RamRoleArnCredential(Credential, _AutomaticallyRefreshCredentials):
"""RamRoleArnCredential"""
def __init__(self, access_key_id, access_key_secret, security_token, expiration, provider):
super().__init__(expiration, provider)
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.security_token = security_token
self.credential_type = ac.RAM_ROLE_ARN
def _refresh_credential(self):
credential = super()._refresh_credential()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
async def _refresh_credential_async(self):
credential = await super()._refresh_credential_async()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
def get_access_key_id(self):
self._refresh_credential()
return self.access_key_id
def get_access_key_secret(self):
self._refresh_credential()
return self.access_key_secret
def get_security_token(self):
self._refresh_credential()
return self.security_token
async def get_access_key_id_async(self):
await self._refresh_credential_async()
return self.access_key_id
async def get_access_key_secret_async(self):
await self._refresh_credential_async()
return self.access_key_secret
async def get_security_token_async(self):
await self._refresh_credential_async()
return self.security_token
def get_credential(self):
self._refresh_credential()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.RAM_ROLE_ARN
)
async def get_credential_async(self):
await self._refresh_credential_async()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.RAM_ROLE_ARN
)
class OIDCRoleArnCredential(Credential, _AutomaticallyRefreshCredentials):
"""OIDCRoleArnCredential"""
def __init__(self, access_key_id, access_key_secret, security_token, expiration, provider):
super().__init__(expiration, provider)
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.security_token = security_token
self.credential_type = ac.OIDC_ROLE_ARN
def _refresh_credential(self):
credential = super()._refresh_credential()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
async def _refresh_credential_async(self):
credential = await super()._refresh_credential_async()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
def get_access_key_id(self):
self._refresh_credential()
return self.access_key_id
def get_access_key_secret(self):
self._refresh_credential()
return self.access_key_secret
def get_security_token(self):
self._refresh_credential()
return self.security_token
async def get_access_key_id_async(self):
await self._refresh_credential_async()
return self.access_key_id
async def get_access_key_secret_async(self):
await self._refresh_credential_async()
return self.access_key_secret
async def get_security_token_async(self):
await self._refresh_credential_async()
return self.security_token
def get_credential(self):
self._refresh_credential()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.OIDC_ROLE_ARN
)
async def get_credential_async(self):
await self._refresh_credential_async()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.OIDC_ROLE_ARN
)
class CredentialsURICredential(Credential):
"""CredentialsURICredential"""
def __init__(self, credentials_uri):
self.access_key_id = None
self.access_key_secret = None
self.security_token = None
self.expiration = None
self.credentials_uri = credentials_uri
self.credential_type = ac.CREDENTIALS_URI
def _need_refresh(self):
if self.expiration is None:
return True
return int(time.mktime(time.localtime())) >= (self.expiration - 180)
def _ensure_credential(self):
if self._need_refresh():
self._get_new_credential()
async def _ensure_credential_async(self):
if self._need_refresh():
await self._get_new_credential_async()
def _get_new_credential(self):
r = urlparse(self.credentials_uri)
tea_request = ph.get_new_request()
tea_request.headers['host'] = r.hostname
tea_request.port = r.port
tea_request.method = 'GET'
tea_request.pathname = r.path
for key, values in parse_qs(r.query).items():
for value in values:
tea_request.query[key] = value
response = TeaCore.do_action(tea_request)
if response.status_code != 200:
raise CredentialException(
"Get credentials from " + self.credentials_uri + " failed, HttpCode=" + str(response.status_code))
body = response.body.decode('utf-8')
dic = json.loads(body)
content_code = dic.get('Code')
content_access_key_id = dic.get('AccessKeyId')
content_access_key_secret = dic.get('AccessKeySecret')
content_security_token = dic.get('SecurityToken')
content_expiration = dic.get('Expiration')
if content_code != "Success":
raise CredentialException(
"Get credentials from " + self.credentials_uri + " failed, Code is " + content_code)
# 先转换为时间数组
time_array = time.strptime(content_expiration, "%Y-%m-%dT%H:%M:%SZ")
# 转换为时间戳
time_stamp = calendar.timegm(time_array)
self.access_key_id = content_access_key_id
self.access_key_secret = content_access_key_secret
self.security_token = content_security_token
self.expiration = time_stamp
async def _get_new_credential_async(self):
r = urlparse(self.credentials_uri)
tea_request = ph.get_new_request()
tea_request.headers['host'] = r.netloc
tea_request.method = 'GET'
tea_request.pathname = r.path
tea_request.query = parse_qs(r.query)
response = await TeaCore.async_do_action(tea_request)
if response.status_code != 200:
raise CredentialException(
"Get credentials from " + self.credentials_uri + " failed, HttpCode=" + str(response.status_code))
body = response.body.decode('utf-8')
dic = json.loads(body)
content_code = dic.get('Code')
content_access_key_id = dic.get('AccessKeyId')
content_access_key_secret = dic.get('AccessKeySecret')
content_security_token = dic.get('SecurityToken')
content_expiration = dic.get('Expiration')
if content_code != "Success":
raise CredentialException(
"Get credentials from " + self.credentials_uri + " failed, Code is " + content_code)
# 先转换为时间数组
time_array = time.strptime(content_expiration, "%Y-%m-%dT%H:%M:%SZ")
# 转换为时间戳
time_stamp = calendar.timegm(time_array)
self.access_key_id = content_access_key_id
self.access_key_secret = content_access_key_secret
self.security_token = content_security_token
self.expiration = time_stamp
def get_access_key_id(self):
self._ensure_credential()
return self.access_key_id
def get_access_key_secret(self):
self._ensure_credential()
return self.access_key_secret
def get_security_token(self):
self._ensure_credential()
return self.security_token
async def get_access_key_id_async(self):
await self._ensure_credential_async()
return self.access_key_id
async def get_access_key_secret_async(self):
await self._ensure_credential_async()
return self.access_key_secret
async def get_security_token_async(self):
await self._ensure_credential_async()
return self.security_token
def get_credential(self):
self._ensure_credential()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.CREDENTIALS_URI
)
async def get_credential_async(self):
await self._ensure_credential_async()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.CREDENTIALS_URI
)
class RsaKeyPairCredential(Credential, _AutomaticallyRefreshCredentials):
def __init__(self, access_key_id, access_key_secret, expiration, provider):
super().__init__(expiration, provider)
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.credential_type = ac.RSA_KEY_PAIR
def _refresh_credential(self):
credential = super()._refresh_credential()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
async def _refresh_credential_async(self):
credential = await super()._refresh_credential_async()
if credential:
self.access_key_id = credential.access_key_id
self.access_key_secret = credential.access_key_secret
self.expiration = credential.expiration
self.security_token = credential.security_token
def get_access_key_id(self):
self._refresh_credential()
return self.access_key_id
def get_access_key_secret(self):
self._refresh_credential()
return self.access_key_secret
async def get_access_key_id_async(self):
await self._refresh_credential_async()
return self.access_key_id
async def get_access_key_secret_async(self):
await self._refresh_credential_async()
return self.access_key_secret
def get_credential(self):
self._refresh_credential()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
type=ac.RSA_KEY_PAIR
)
async def get_credential_async(self):
await self._refresh_credential_async()
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
type=ac.RSA_KEY_PAIR
)
class StsCredential(Credential):
def __init__(self, access_key_id, access_key_secret, security_token):
self.access_key_id = access_key_id
self.access_key_secret = access_key_secret
self.security_token = security_token
self.credential_type = ac.STS
def get_access_key_id(self):
return self.access_key_id
def get_access_key_secret(self):
return self.access_key_secret
def get_security_token(self):
return self.security_token
async def get_access_key_id_async(self):
return self.access_key_id
async def get_access_key_secret_async(self):
return self.access_key_secret
async def get_security_token_async(self):
return self.security_token
def get_credential(self):
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.STS
)
async def get_credential_async(self):
return CredentialModel(
access_key_id=self.access_key_id,
access_key_secret=self.access_key_secret,
security_token=self.security_token,
type=ac.STS
)
Reference in New Issue Copy Permalink