Skip to content

Credentials: Add support for org credentials #179

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
AkhileshNegi merged 35 commits into from
May 14, 2025
Merged

Credentials: Add support for org credentials #179

Show file tree
Hide file tree
Changes from 28 commits
Commits
Show all changes
35 commits
Select commit Hold shift + click to select a range
29d219a
Add provider column to credential table and update API for provider-s…
priyanshu6238 May 10, 2025
b91b3fc
Refactor credential tests to streamline organization and credential c…
priyanshu6238 May 10, 2025
a7fb888
Add soft delete functionality for credentials and update tests to ver…
priyanshu6238 May 10, 2025
206fd9b
Refactor credential handling to improve error management and ensure p…
priyanshu6238 May 10, 2025
e935a15
Enhance credential update handling with organization existence checks…
priyanshu6238 May 10, 2025
dfd17b4
Enhance credential update handling with validation for provider and c…
priyanshu6238 May 10, 2025
c1a54e8
Refactor credential
priyanshu6238 May 10, 2025
6e841cc
Merge branch 'main' into credential_4
priyanshu6238 May 10, 2025
df539d0
Fix down_revision reference in migration script for provider column a…
priyanshu6238 May 10, 2025
35329e2
added provider test in core
priyanshu6238 May 10, 2025
d4fa0cc
refactor test_provider.py
priyanshu6238 May 10, 2025
ba4d3ad
updates
priyanshu6238 May 11, 2025
7c49131
cherry picking from other PR
priyanshu6238 May 11, 2025
7533b1a
using encrypt/decrypt
May 12, 2025
df8303e
cleanups
May 12, 2025
668cb9b
decrypting credentials
May 12, 2025
1ab315e
added support for per project per organization
May 12, 2025
db02b99
few more steps forward to per org per project per provider
May 12, 2025
ac7b2a6
encrypting the entire credentials column
May 12, 2025
0e64dfd
added testcases
May 12, 2025
2900865
updating threads codes
May 12, 2025
6c34316
updating time
May 12, 2025
43080b7
updating time
May 12, 2025
4fae6db
reverting changes
May 12, 2025
1322ee7
update migration
May 12, 2025
636ba91
updated testcases
May 12, 2025
6258c81
updated credentials testcases
May 12, 2025
2560882
using langfuse from creds
May 13, 2025
d25aa89
Merge branch 'main' into feature/add-provider-org-credentials
AkhileshNegi May 13, 2025
083e72d
few cleanups
May 13, 2025
e2d20fa
cleanup & refactoring
May 13, 2025
dec44e0
refactor security
May 14, 2025
92002f7
getting rid of redundant str()
May 14, 2025
a4fd2ca
using now()
May 14, 2025
dd35f67
cleanup few testcases and code
May 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions backend/app/alembic/versions/543f97951bd0_add_credential_table.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
"""add credetial table
"""add credential table

Revision ID: 543f97951bd0
Revises: 8d7a05fd0ad4
Expand All @@ -22,7 +22,7 @@ def upgrade():
"credential",
sa.Column("id", sa.Integer(), nullable=False),
sa.Column("is_active", sa.Boolean(), nullable=False),
sa.Column("credential", sa.JSON(), nullable=True),
sa.Column("credential", sqlmodel.sql.sqltypes.AutoString(), nullable=False),
sa.Column("organization_id", sa.Integer(), nullable=False),
sa.Column("inserted_at", sa.DateTime(), nullable=True),
sa.Column("updated_at", sa.DateTime(), nullable=True),
Expand Down
78 changes: 78 additions & 0 deletions backend/app/alembic/versions/904ed70e7dab_added_provider_column_to_the_credential_.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,78 @@
"""Added provider column to the credential table

Revision ID: 904ed70e7dab
Revises: 543f97951bd0
Create Date: 2025-05-10 11:13:17.868238

"""
from alembic import op
import sqlalchemy as sa
import sqlmodel.sql.sqltypes


revision = "904ed70e7dab"
down_revision = "f23675767ed2"
branch_labels = None
depends_on = None


def upgrade():
op.add_column(
"credential",
sa.Column("provider", sqlmodel.sql.sqltypes.AutoString(), nullable=False),
)
op.create_index(
op.f("ix_credential_provider"), "credential", ["provider"], unique=False
)
op.drop_constraint(
"credential_organization_id_fkey", "credential", type_="foreignkey"
)
op.create_foreign_key(
"credential_organization_id_fkey",
"credential",
"organization",
["organization_id"],
["id"],
ondelete="CASCADE",
)
op.drop_constraint("project_organization_id_fkey", "project", type_="foreignkey")
op.create_foreign_key(None, "project", "organization", ["organization_id"], ["id"])

# Add project_id column and foreign key
op.add_column("credential", sa.Column("project_id", sa.Integer(), nullable=True))
op.create_foreign_key(
"credential_project_id_fkey",
"credential",
"project",
["project_id"],
["id"],
ondelete="SET NULL",
)


def downgrade():
# Drop project_id foreign key and column
op.drop_constraint("credential_project_id_fkey", "credential", type_="foreignkey")
op.drop_column("credential", "project_id")

op.drop_constraint(None, "project", type_="foreignkey")
op.create_foreign_key(
"project_organization_id_fkey",
"project",
"organization",
["organization_id"],
["id"],
ondelete="CASCADE",
)
op.drop_constraint(
"credential_organization_id_fkey", "credential", type_="foreignkey"
)
op.create_foreign_key(
"credential_organization_id_fkey",
"credential",
"organization",
["organization_id"],
["id"],
)
op.drop_index(op.f("ix_credential_provider"), table_name="credential")
op.drop_column("credential", "provider")
211 changes: 161 additions & 50 deletions backend/app/api/routes/credentials.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,127 +1,238 @@
from typing import List

from fastapi import APIRouter, Depends, HTTPException
from sqlalchemy.exc import IntegrityError

from app.api.deps import SessionDep, get_current_active_superuser
from app.crud.credentials import (
get_creds_by_org,
get_key_by_org,
get_provider_credential,
remove_creds_for_org,
set_creds_for_org,
update_creds_for_org,
remove_provider_credential,
)
from app.models import CredsCreate, CredsPublic, CredsUpdate
from app.models.organization import Organization
from app.models.project import Project
from app.utils import APIResponse
from datetime import datetime
from app.core.providers import validate_provider

router = APIRouter(prefix="/credentials", tags=["credentials"])


@router.post(
"/",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[CredsPublic],
response_model=APIResponse[List[CredsPublic]],
summary="Create new credentials for an organization and project",
description="Creates new credentials for a specific organization and project combination. This endpoint requires superuser privileges. Each organization can have different credentials for different providers and projects. Only one credential per provider is allowed per organization-project combination.",
)
def create_new_credential(*, session: SessionDep, creds_in: CredsCreate):
new_creds = None
try:
existing_creds = get_creds_by_org(
session=session, org_id=creds_in.organization_id
)
if not existing_creds:
new_creds = set_creds_for_org(session=session, creds_add=creds_in)
# Check if organization exists
organization = session.get(Organization, creds_in.organization_id)
if not organization:
raise HTTPException(status_code=404, detail="Organization not found")

# Check if project exists if project_id is provided
if creds_in.project_id:
project = session.get(Project, creds_in.project_id)
if not project:
raise HTTPException(status_code=404, detail="Project not found")
if project.organization_id != creds_in.organization_id:
raise HTTPException(
status_code=400,
detail="Project does not belong to the specified organization",
)

# Check for existing credentials for each provider
for provider in creds_in.credential.keys():
existing_cred = get_provider_credential(
session=session,
org_id=creds_in.organization_id,
provider=provider,
project_id=creds_in.project_id,
)
if existing_cred:
raise HTTPException(
status_code=400,
detail=f"Credentials for provider '{provider}' already exist for this organization and project combination",
)

# Create new credentials
new_creds = set_creds_for_org(session=session, creds_add=creds_in)
if not new_creds:
raise HTTPException(status_code=500, detail="Failed to create credentials")
return APIResponse.success_response([cred.to_public() for cred in new_creds])
except ValueError as e:
if "Unsupported provider" in str(e):
raise HTTPException(status_code=400, detail=str(e))
raise HTTPException(status_code=404, detail=str(e))
except Exception as e:
Copy link
Copy Markdown
Contributor

@jerome-white jerome-white May 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Because of these outer exception handlers, and most notably because of the base exception handling here, none of the exceptions in the function body will be raised on their own. Notably, all HTTPExceptions raised in the function body will be cause by this parent exception, which will return 500 to the user. Because the body-exceptions raise different status codes, I imagine this -- raising 500 always -- was not the intention.

raise HTTPException(
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)

# Ensure inserted_at is set during creation
new_creds.inserted_at = datetime.utcnow()

return APIResponse.success_response(new_creds)


@router.get(
"/{org_id}",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[CredsPublic],
response_model=APIResponse[List[CredsPublic]],
summary="Get all credentials for an organization and project",
description="Retrieves all provider credentials associated with a specific organization and project combination. If project_id is not provided, returns credentials for the organization level. This endpoint requires superuser privileges.",
)
def read_credential(*, session: SessionDep, org_id: int):
def read_credential(*, session: SessionDep, org_id: int, project_id: int | None = None):
try:
creds = get_creds_by_org(session=session, org_id=org_id)
creds = get_creds_by_org(session=session, org_id=org_id, project_id=project_id)
if not creds:
raise HTTPException(status_code=404, detail="Credentials not found")
return APIResponse.success_response([cred.to_public() for cred in creds])
except HTTPException:
Copy link
Copy Markdown
Contributor

@jerome-white jerome-white May 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Consider restructuring the code so that this doesn't have to be re-raised. get_creds_by_org is probably the only call within this function that needs to be a in a try-except block

raise
except Exception as e:
raise HTTPException(
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)

if creds is None:
raise HTTPException(status_code=404, detail="Credentials not found")

return APIResponse.success_response(creds)


@router.get(
"/{org_id}/api-key",
"/{org_id}/{provider}",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[dict],
summary="Get specific provider credentials for an organization and project",
description="Retrieves credentials for a specific provider (e.g., 'openai', 'anthropic') for a given organization and project combination. If project_id is not provided, returns organization-level credentials. This endpoint requires superuser privileges.",
)
def read_api_key(*, session: SessionDep, org_id: int):
def read_provider_credential(
*, session: SessionDep, org_id: int, provider: str, project_id: int | None = None
):
try:
api_key = get_key_by_org(session=session, org_id=org_id)
provider_enum = validate_provider(provider)
provider_creds = get_provider_credential(
session=session,
org_id=org_id,
provider=provider_enum,
project_id=project_id,
)
if provider_creds is None:
raise HTTPException(
status_code=404, detail="Provider credentials not found"
)
return APIResponse.success_response(provider_creds)
Copy link
Copy Markdown
Contributor

@jerome-white jerome-white May 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do these lines need to be in the try-except block? If not, it would alleviate the need for the HTTPException to be caught (a few lines down)

except ValueError as e:
raise HTTPException(status_code=400, detail=str(e))
except HTTPException:
raise
except Exception as e:
raise HTTPException(
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)

if api_key is None:
raise HTTPException(status_code=404, detail="API key not found")

return APIResponse.success_response({"api_key": api_key})


@router.patch(
"/{org_id}",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[CredsPublic],
response_model=APIResponse[List[CredsPublic]],
summary="Update organization and project credentials",
description="Updates credentials for a specific organization and project combination. Can update specific provider credentials or add new providers. If project_id is provided in the update, credentials will be moved to that project. This endpoint requires superuser privileges.",
)
def update_credential(*, session: SessionDep, org_id: int, creds_in: CredsUpdate):
try:
if not creds_in or not creds_in.provider or not creds_in.credential:
raise HTTPException(
status_code=400, detail="Provider and credential must be provided"
)
Comment on lines +121 to +124
Copy link
Copy Markdown
Contributor

@jerome-white jerome-white May 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this need to be in a try-except?

organization = session.get(Organization, org_id)
if not organization:
raise HTTPException(status_code=404, detail="Organization not found")
updated_creds = update_creds_for_org(
session=session, org_id=org_id, creds_in=creds_in
)

updated_creds.updated_at = datetime.utcnow()

return APIResponse.success_response(updated_creds)
if not updated_creds:
raise HTTPException(status_code=404, detail="Failed to update credentials")
return APIResponse.success_response(
[cred.to_public() for cred in updated_creds]
)
except IntegrityError as e:
if "ForeignKeyViolation" in str(e):
raise HTTPException(
status_code=400,
detail="Invalid organization ID. Ensure the organization exists before updating credentials.",
)
raise HTTPException(
status_code=500, detail=f"An unexpected database error occurred: {str(e)}"
)
except ValueError as e:
if "Unsupported provider" in str(e):
raise HTTPException(status_code=400, detail=str(e))
raise HTTPException(status_code=404, detail=str(e))
except HTTPException:
raise
except Exception as e:
raise HTTPException(
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)


from fastapi import HTTPException, Depends
from app.crud.credentials import remove_creds_for_org
from app.utils import APIResponse
from app.api.deps import SessionDep, get_current_active_superuser


@router.delete(
"/{org_id}/api-key",
"/{org_id}/{provider}",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[dict],
summary="Delete specific provider credentials for an organization and project",
description="Removes credentials for a specific provider while keeping other provider credentials intact. If project_id is provided, only removes credentials for that project. This endpoint requires superuser privileges.",
)
def delete_credential(*, session: SessionDep, org_id: int):
def delete_provider_credential(
*, session: SessionDep, org_id: int, provider: str, project_id: int | None = None
):
try:
creds = remove_creds_for_org(session=session, org_id=org_id)
provider_enum = validate_provider(provider)
updated_creds = remove_provider_credential(
session=session,
org_id=org_id,
provider=provider_enum,
project_id=project_id,
)
if not updated_creds:
raise HTTPException(
status_code=404, detail="Provider credentials not found"
)
return APIResponse.success_response(
{"message": "Provider credentials removed successfully"}
)
except ValueError:
raise HTTPException(status_code=404, detail="Provider credentials not found")
except HTTPException:
raise
except Exception as e:
raise HTTPException(
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)

if creds is None:

@router.delete(
"/{org_id}",
dependencies=[Depends(get_current_active_superuser)],
response_model=APIResponse[dict],
summary="Delete all credentials for an organization and project",
description="Removes all credentials for a specific organization and project combination. If project_id is provided, only removes credentials for that project. This is a soft delete operation that marks credentials as inactive. This endpoint requires superuser privileges.",
)
def delete_all_credentials(
*, session: SessionDep, org_id: int, project_id: int | None = None
):
try:
creds = remove_creds_for_org(
session=session, org_id=org_id, project_id=project_id
)
if not creds:
raise HTTPException(
status_code=404, detail="Credentials for organization not found"
)
return APIResponse.success_response(
{"message": "Credentials deleted successfully"}
)
except HTTPException:
raise
except Exception as e:
raise HTTPException(
status_code=404, detail="Credentials for organization not found"
status_code=500, detail=f"An unexpected error occurred: {str(e)}"
)

# No need to manually set deleted_at and is_active if it's done in remove_creds_for_org
# Simply return the success response
return APIResponse.success_response({"message": "Credentials deleted successfully"})
Loading