24024
af7c11d7f9
- 新增图像生成接口,支持试用、积分和自定义API Key模式 - 实现生成图片结果异步上传至MinIO存储,带重试机制 - 优化积分预扣除和异常退还逻辑,保障用户积分准确 - 添加获取生成历史记录接口,支持时间范围和分页 - 提供本地字典配置接口,支持模型、比例、提示模板和尺寸 - 实现图片批量上传接口,支持S3兼容对象存储 feat(admin): 增加管理员角色管理与权限分配接口 - 实现角色列表查询、角色创建、更新及删除功能 - 增加权限列表查询接口 - 实现用户角色分配接口,便于统一管理用户权限 - 增加系统字典增删查改接口,支持分类过滤和排序 - 权限控制全面覆盖管理接口,保证安全访问 feat(auth): 完善用户登录注册及权限相关接口与页面 - 实现手机号验证码发送及校验功能,保障注册安全 - 支持手机号注册、登录及退出接口,集成日志记录 - 增加修改密码功能,验证原密码后更新 - 提供动态导航菜单接口,基于权限展示不同菜单 - 实现管理界面路由及日志、角色、字典管理页面访问权限控制 - 添加系统日志查询接口,支持关键词和等级筛选 feat(app): 初始化Flask应用并配置蓝图与数据库 - 创建应用程序工厂,加载配置,初始化数据库和Redis客户端 - 注册认证、API及管理员蓝图,整合路由 - 根路由渲染主页模板 - 应用上下文中自动创建数据库表,保证运行环境准备完毕 feat(database): 提供数据库创建与迁移支持脚本 - 新增数据库创建脚本,支持自动检测是否已存在 - 添加数据库表初始化脚本,支持创建和删除所有表 - 实现RBAC权限初始化,包含基础权限和角色创建 - 新增字段手动修复脚本,添加用户API Key和积分字段 - 强制迁移脚本支持清理连接和修复表结构,初始化默认数据及角色分配 feat(config): 新增系统配置参数 - 配置数据库、Redis、Session和MinIO相关参数 - 添加AI接口地址及试用Key配置 - 集成阿里云短信服务配置及开发模式相关参数 feat(extensions): 初始化数据库、Redis和MinIO客户端 - 创建全局SQLAlchemy数据库实例和Redis客户端 - 配置基于boto3的MinIO兼容S3客户端 chore(logs): 添加示例系统日志文件 - 记录用户请求、验证码发送成功与失败的日志信息
189 lines
6.1 KiB
Python
189 lines
6.1 KiB
Python
from __future__ import annotations
|
|
|
|
import hashlib
|
|
import hmac
|
|
import os
|
|
import posixpath
|
|
import secrets
|
|
|
|
SALT_CHARS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
|
|
DEFAULT_PBKDF2_ITERATIONS = 1_000_000
|
|
|
|
_os_alt_seps: list[str] = list(
|
|
sep for sep in [os.sep, os.path.altsep] if sep is not None and sep != "/"
|
|
)
|
|
# https://chrisdenton.github.io/omnipath/Special%20Dos%20Device%20Names.html
|
|
_windows_device_files = {
|
|
"AUX",
|
|
"CON",
|
|
"CONIN$",
|
|
"CONOUT$",
|
|
*(f"COM{c}" for c in "123456789¹²³"),
|
|
*(f"LPT{c}" for c in "123456789¹²³"),
|
|
"NUL",
|
|
"PRN",
|
|
}
|
|
|
|
|
|
def gen_salt(length: int) -> str:
|
|
"""Generate a random string of SALT_CHARS with specified ``length``."""
|
|
if length <= 0:
|
|
raise ValueError("Salt length must be at least 1.")
|
|
|
|
return "".join(secrets.choice(SALT_CHARS) for _ in range(length))
|
|
|
|
|
|
def _hash_internal(method: str, salt: str, password: str) -> tuple[str, str]:
|
|
method, *args = method.split(":")
|
|
salt_bytes = salt.encode()
|
|
password_bytes = password.encode()
|
|
|
|
if method == "scrypt":
|
|
if not args:
|
|
n = 2**15
|
|
r = 8
|
|
p = 1
|
|
else:
|
|
try:
|
|
n, r, p = map(int, args)
|
|
except ValueError:
|
|
raise ValueError("'scrypt' takes 3 arguments.") from None
|
|
|
|
maxmem = 132 * n * r * p # ideally 128, but some extra seems needed
|
|
return (
|
|
hashlib.scrypt(
|
|
password_bytes, salt=salt_bytes, n=n, r=r, p=p, maxmem=maxmem
|
|
).hex(),
|
|
f"scrypt:{n}:{r}:{p}",
|
|
)
|
|
elif method == "pbkdf2":
|
|
len_args = len(args)
|
|
|
|
if len_args == 0:
|
|
hash_name = "sha256"
|
|
iterations = DEFAULT_PBKDF2_ITERATIONS
|
|
elif len_args == 1:
|
|
hash_name = args[0]
|
|
iterations = DEFAULT_PBKDF2_ITERATIONS
|
|
elif len_args == 2:
|
|
hash_name = args[0]
|
|
iterations = int(args[1])
|
|
else:
|
|
raise ValueError("'pbkdf2' takes 2 arguments.")
|
|
|
|
return (
|
|
hashlib.pbkdf2_hmac(
|
|
hash_name, password_bytes, salt_bytes, iterations
|
|
).hex(),
|
|
f"pbkdf2:{hash_name}:{iterations}",
|
|
)
|
|
else:
|
|
raise ValueError(f"Invalid hash method '{method}'.")
|
|
|
|
|
|
def generate_password_hash(
|
|
password: str, method: str = "scrypt", salt_length: int = 16
|
|
) -> str:
|
|
"""Securely hash a password for storage. A password can be compared to a stored hash
|
|
using :func:`check_password_hash`.
|
|
|
|
The following methods are supported:
|
|
|
|
- ``scrypt``, the default. The parameters are ``n``, ``r``, and ``p``, the default
|
|
is ``scrypt:32768:8:1``. See :func:`hashlib.scrypt`.
|
|
- ``pbkdf2``, less secure. The parameters are ``hash_method`` and ``iterations``,
|
|
the default is ``pbkdf2:sha256:600000``. See :func:`hashlib.pbkdf2_hmac`.
|
|
|
|
Default parameters may be updated to reflect current guidelines, and methods may be
|
|
deprecated and removed if they are no longer considered secure. To migrate old
|
|
hashes, you may generate a new hash when checking an old hash, or you may contact
|
|
users with a link to reset their password.
|
|
|
|
:param password: The plaintext password.
|
|
:param method: The key derivation function and parameters.
|
|
:param salt_length: The number of characters to generate for the salt.
|
|
|
|
.. versionchanged:: 3.1
|
|
The default iterations for pbkdf2 was increased to 1,000,000.
|
|
|
|
.. versionchanged:: 2.3
|
|
Scrypt support was added.
|
|
|
|
.. versionchanged:: 2.3
|
|
The default iterations for pbkdf2 was increased to 600,000.
|
|
|
|
.. versionchanged:: 2.3
|
|
All plain hashes are deprecated and will not be supported in Werkzeug 3.0.
|
|
"""
|
|
salt = gen_salt(salt_length)
|
|
h, actual_method = _hash_internal(method, salt, password)
|
|
return f"{actual_method}${salt}${h}"
|
|
|
|
|
|
def check_password_hash(pwhash: str, password: str) -> bool:
|
|
"""Securely check that the given stored password hash, previously generated using
|
|
:func:`generate_password_hash`, matches the given password.
|
|
|
|
Methods may be deprecated and removed if they are no longer considered secure. To
|
|
migrate old hashes, you may generate a new hash when checking an old hash, or you
|
|
may contact users with a link to reset their password.
|
|
|
|
:param pwhash: The hashed password.
|
|
:param password: The plaintext password.
|
|
|
|
.. versionchanged:: 2.3
|
|
All plain hashes are deprecated and will not be supported in Werkzeug 3.0.
|
|
"""
|
|
try:
|
|
method, salt, hashval = pwhash.split("$", 2)
|
|
except ValueError:
|
|
return False
|
|
|
|
return hmac.compare_digest(_hash_internal(method, salt, password)[0], hashval)
|
|
|
|
|
|
def safe_join(directory: str, *pathnames: str) -> str | None:
|
|
"""Safely join zero or more untrusted path components to a base
|
|
directory to avoid escaping the base directory.
|
|
|
|
:param directory: The trusted base directory.
|
|
:param pathnames: The untrusted path components relative to the
|
|
base directory.
|
|
:return: A safe path, otherwise ``None``.
|
|
|
|
.. versionchanged:: 3.1.5
|
|
More special device names, regardless of extension or trailing spaces,
|
|
are not allowed on Windows.
|
|
|
|
.. versionchanged:: 3.1.4
|
|
Special device names are not allowed on Windows.
|
|
"""
|
|
if not directory:
|
|
# Ensure we end up with ./path if directory="" is given,
|
|
# otherwise the first untrusted part could become trusted.
|
|
directory = "."
|
|
|
|
parts = [directory]
|
|
|
|
for filename in pathnames:
|
|
if filename != "":
|
|
filename = posixpath.normpath(filename)
|
|
|
|
if (
|
|
any(sep in filename for sep in _os_alt_seps)
|
|
or (
|
|
os.name == "nt"
|
|
and filename.partition(".")[0].strip().upper() in _windows_device_files
|
|
)
|
|
or os.path.isabs(filename)
|
|
# ntpath.isabs doesn't catch this on Python < 3.11
|
|
or filename.startswith("/")
|
|
or filename == ".."
|
|
or filename.startswith("../")
|
|
):
|
|
return None
|
|
|
|
parts.append(filename)
|
|
|
|
return posixpath.join(*parts)
|