ti.sil/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2025-12-12 04:15:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
open-webui/backend/open_webui/routers/models.py

418 lines
12 KiB
Python
Raw Normal View History

sort and fix backend imports
2024-08-27 22:10:27 +00:00
from typing import Optional
feat: channel/thread @ model
2025-09-17 05:49:44 +00:00
import io
import base64
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
import json
import asyncio
import logging
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
fix/refac: workspace shared model list
2025-11-25 11:32:27 +00:00
from open_webui.models.groups import Groups
wip
2024-12-10 08:54:13 +00:00
from open_webui.models.models import (
refac: mv backend files to /open_webui dir
2024-09-04 14:54:48 +00:00
ModelForm,
ModelModel,
ModelResponse,
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
ModelListResponse,
refac: mv backend files to /open_webui dir
2024-09-04 14:54:48 +00:00
Models,
)
feat: model sync endpoint
2025-07-28 09:06:05 +00:00
from pydantic import BaseModel
refac: mv backend files to /open_webui dir
2024-09-04 14:54:48 +00:00
from open_webui.constants import ERROR_MESSAGES
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
from fastapi import (
APIRouter,
Depends,
HTTPException,
Request,
status,
Response,
)
feat: channel/thread @ model
2025-09-17 05:49:44 +00:00
from fastapi.responses import FileResponse, StreamingResponse
wip: access control backend
2024-11-15 09:29:07 +00:00
refac
2024-12-09 00:01:56 +00:00
from open_webui.utils.auth import get_admin_user, get_verified_user
refac: user permissions validation
2024-11-17 11:04:31 +00:00
from open_webui.utils.access_control import has_access, has_permission
feat: channel/thread @ model
2025-09-17 05:49:44 +00:00
from open_webui.config import BYPASS_ADMIN_ACCESS_CONTROL, STATIC_DIR
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
log = logging.getLogger(__name__)
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
router = APIRouter()
wip: access control backend
2024-11-15 09:29:07 +00:00
refac: models endpoint
2025-11-19 08:18:16 +00:00
def is_valid_model_id(model_id: str) -> bool:
refac: introduce model id length limit
2025-10-08 21:54:06 +00:00
return model_id and len(model_id) <= 256
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
###########################
wip: access control backend
2024-11-15 09:29:07 +00:00
# GetModels
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
###########################
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
PAGE_ITEM_COUNT = 30
refac/fix: endpoint conflict
2025-11-02 23:41:57 +00:00
@router.get(
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
"/list", response_model=ModelListResponse
refac/fix: endpoint conflict
2025-11-02 23:41:57 +00:00
) # do NOT use "/" as path, conflicts with main.py
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
async def get_models(
query: Optional[str] = None,
view_option: Optional[str] = None,
tag: Optional[str] = None,
order_by: Optional[str] = None,
direction: Optional[str] = None,
page: Optional[int] = 1,
user=Depends(get_verified_user),
):
limit = PAGE_ITEM_COUNT
page = max(1, page)
skip = (page - 1) * limit
filter = {}
if query:
filter["query"] = query
if view_option:
filter["view_option"] = view_option
if tag:
filter["tag"] = tag
if order_by:
filter["order_by"] = order_by
if direction:
filter["direction"] = direction
if not user.role == "admin" or not BYPASS_ADMIN_ACCESS_CONTROL:
fix/refac: workspace shared model list
2025-11-25 11:32:27 +00:00
groups = Groups.get_groups_by_member_id(user.id)
if groups:
filter["group_ids"] = [group.id for group in groups]
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
filter["user_id"] = user.id
return Models.search_models(user.id, filter=filter, skip=skip, limit=limit)
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
refac
2025-03-04 05:27:48 +00:00
###########################
# GetBaseModels
###########################
@router.get("/base", response_model=list[ModelResponse])
async def get_base_models(user=Depends(get_admin_user)):
return Models.get_base_models()
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
###########################
# GetModelTags
###########################
@router.get("/tags", response_model=list[str])
async def get_model_tags(user=Depends(get_verified_user)):
if user.role == "admin" and BYPASS_ADMIN_ACCESS_CONTROL:
models = Models.get_models()
else:
models = Models.get_models_by_user_id(user.id)
tags_set = set()
for model in models:
refac
2025-11-23 21:08:03 +00:00
if model.meta:
meta = model.meta.model_dump()
for tag in meta.get("tags", []):
refac: models workspace optimization
2025-11-23 04:20:51 +00:00
tags_set.add((tag.get("name")))
tags = [tag for tag in tags_set]
tags.sort()
return tags
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
############################
wip: access control backend
2024-11-15 09:29:07 +00:00
# CreateNewModel
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
############################
wip: access control backend
2024-11-15 09:29:07 +00:00
@router.post("/create", response_model=Optional[ModelModel])
async def create_new_model(
refac: user permissions validation
2024-11-17 11:04:31 +00:00
request: Request,
feat(sqlalchemy): Replace peewee with sqlalchemy
2024-06-18 13:03:31 +00:00
form_data: ModelForm,
wip: access control backend
2024-11-15 09:29:07 +00:00
user=Depends(get_verified_user),
feat: create model
2024-05-25 05:21:57 +00:00
):
refac: user permissions validation
2024-11-17 11:04:31 +00:00
if user.role != "admin" and not has_permission(
user.id, "workspace.models", request.app.state.config.USER_PERMISSIONS
):
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.UNAUTHORIZED,
)
wip: access control backend
2024-11-15 09:29:07 +00:00
model = Models.get_model_by_id(form_data.id)
if model:
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
feat: create model
2024-05-25 05:21:57 +00:00
detail=ERROR_MESSAGES.MODEL_ID_TAKEN,
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
)
wip: access control backend
2024-11-15 09:29:07 +00:00
refac: models endpoint
2025-11-19 08:18:16 +00:00
if not is_valid_model_id(form_data.id):
refac: introduce model id length limit
2025-10-08 21:54:06 +00:00
raise HTTPException(
status_code=status.HTTP_400_BAD_REQUEST,
detail=ERROR_MESSAGES.MODEL_ID_TOO_LONG,
)
feat: create model
2024-05-25 05:21:57 +00:00
else:
feat(sqlalchemy): remove session reference from router
2024-06-21 12:58:57 +00:00
model = Models.insert_new_model(form_data, user.id)
feat: create model
2024-05-25 05:21:57 +00:00
if model:
return model
else:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.DEFAULT(),
)
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
refac
2025-07-28 09:12:38 +00:00
############################
# ExportModels
############################
@router.get("/export", response_model=list[ModelModel])
feat: add granular import/export permissions for workspace items (#19242) * feat: add granular import/export permissions for workspace items (#55) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#58) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#59) Co-authored-by: Claude <noreply@anthropic.com> --------- Co-authored-by: Claude <noreply@anthropic.com>
2025-11-17 23:25:23 +00:00
async def export_models(request: Request, user=Depends(get_verified_user)):
if user.role != "admin" and not has_permission(
user.id, "workspace.models_export", request.app.state.config.USER_PERMISSIONS
):
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.UNAUTHORIZED,
)
if user.role == "admin" and BYPASS_ADMIN_ACCESS_CONTROL:
return Models.get_models()
else:
return Models.get_models_by_user_id(user.id)
refac
2025-07-28 09:12:38 +00:00
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
############################
# ImportModels
############################
feat: refactor model import to a single backend endpoint This refactors the model import functionality to improve performance and user experience by centralizing the logic on the backend. Previously, the frontend would parse an imported JSON file and send an individual API request for each model, which was slow and inefficient. This change introduces a new backend endpoint, `/api/v1/models/import`, that accepts a list of model objects. The frontend now reads the selected JSON file, parses it, and sends the entire payload to the backend in a single request. The backend then processes this list, creating or updating models as necessary. This commit also includes the following fixes: - Handles cases where the imported JSON contains models without `meta` or `params` fields by providing default empty values.
2025-09-28 22:49:42 +00:00
class ModelsImportForm(BaseModel):
models: list[dict]
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
@router.post("/import", response_model=bool)
async def import_models(
feat: add granular import/export permissions for workspace items (#19242) * feat: add granular import/export permissions for workspace items (#55) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#58) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#59) Co-authored-by: Claude <noreply@anthropic.com> --------- Co-authored-by: Claude <noreply@anthropic.com>
2025-11-17 23:25:23 +00:00
request: Request,
user=Depends(get_verified_user),
form_data: ModelsImportForm = (...),
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
):
feat: add granular import/export permissions for workspace items (#19242) * feat: add granular import/export permissions for workspace items (#55) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#58) Co-authored-by: Claude <noreply@anthropic.com> * Fix permissions toggles not saving in EditGroupModal (#59) Co-authored-by: Claude <noreply@anthropic.com> --------- Co-authored-by: Claude <noreply@anthropic.com>
2025-11-17 23:25:23 +00:00
if user.role != "admin" and not has_permission(
user.id, "workspace.models_import", request.app.state.config.USER_PERMISSIONS
):
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.UNAUTHORIZED,
)
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
try:
feat: refactor model import to a single backend endpoint This refactors the model import functionality to improve performance and user experience by centralizing the logic on the backend. Previously, the frontend would parse an imported JSON file and send an individual API request for each model, which was slow and inefficient. This change introduces a new backend endpoint, `/api/v1/models/import`, that accepts a list of model objects. The frontend now reads the selected JSON file, parses it, and sends the entire payload to the backend in a single request. The backend then processes this list, creating or updating models as necessary. This commit also includes the following fixes: - Handles cases where the imported JSON contains models without `meta` or `params` fields by providing default empty values.
2025-09-28 22:49:42 +00:00
data = form_data.models
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
if isinstance(data, list):
for model_data in data:
# Here, you can add logic to validate model_data if needed
model_id = model_data.get("id")
refac: introduce model id length limit
2025-10-08 21:54:06 +00:00
refac: models endpoint
2025-11-19 08:18:16 +00:00
if model_id and is_valid_model_id(model_id):
feat: move JSON model import to backend This moves the JSON model import functionality to the backend. Instead of the frontend parsing the JSON file and sending multiple requests, it now uploads the file to a new endpoint (/api/v1/models/import), which processes the file and imports the models. This improves efficiency and provides better user feedback.
2025-09-28 22:09:58 +00:00
existing_model = Models.get_model_by_id(model_id)
if existing_model:
# Update existing model
model_data["meta"] = model_data.get("meta", {})
model_data["params"] = model_data.get("params", {})
updated_model = ModelForm(
**{**existing_model.model_dump(), **model_data}
)
Models.update_model_by_id(model_id, updated_model)
else:
# Insert new model
model_data["meta"] = model_data.get("meta", {})
model_data["params"] = model_data.get("params", {})
new_model = ModelForm(**model_data)
Models.insert_new_model(user_id=user.id, form_data=new_model)
return True
else:
raise HTTPException(status_code=400, detail="Invalid JSON format")
except Exception as e:
log.exception(e)
raise HTTPException(status_code=500, detail=str(e))
feat: model sync endpoint
2025-07-28 09:06:05 +00:00
############################
# SyncModels
############################
class SyncModelsForm(BaseModel):
models: list[ModelModel] = []
@router.post("/sync", response_model=list[ModelModel])
async def sync_models(
request: Request, form_data: SyncModelsForm, user=Depends(get_admin_user)
):
return Models.sync_models(user.id, form_data.models)
wip: access control backend
2024-11-15 09:29:07 +00:00
###########################
# GetModelById
###########################
refac: models endpoint
2025-11-19 08:18:16 +00:00
class ModelIdForm(BaseModel):
id: str
refac: models api
2024-11-20 02:45:26 +00:00
# Note: We're not using the typical url path param here, but instead using a query parameter to allow '/' in the id
@router.get("/model", response_model=Optional[ModelResponse])
wip: access control backend
2024-11-15 09:29:07 +00:00
async def get_model_by_id(id: str, user=Depends(get_verified_user)):
model = Models.get_model_by_id(id)
if model:
if (
refac: ENABLE_ADMIN_WORKSPACE_CONTENT_ACCESS renamed to BYPASS_ADMIN_ACCESS_CONTROL
2025-08-21 09:08:22 +00:00
(user.role == "admin" and BYPASS_ADMIN_ACCESS_CONTROL)
wip: access control backend
2024-11-15 09:29:07 +00:00
or model.user_id == user.id
or has_access(user.id, "read", model.access_control)
):
return model
else:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.NOT_FOUND,
)
feat: channel/thread @ model
2025-09-17 05:49:44 +00:00
###########################
# GetModelById
###########################
@router.get("/model/profile/image")
async def get_model_profile_image(id: str, user=Depends(get_verified_user)):
model = Models.get_model_by_id(id)
if model:
if model.meta.profile_image_url:
if model.meta.profile_image_url.startswith("http"):
return Response(
status_code=status.HTTP_302_FOUND,
headers={"Location": model.meta.profile_image_url},
)
elif model.meta.profile_image_url.startswith("data:image"):
try:
header, base64_data = model.meta.profile_image_url.split(",", 1)
image_data = base64.b64decode(base64_data)
image_buffer = io.BytesIO(image_data)
return StreamingResponse(
image_buffer,
media_type="image/png",
headers={"Content-Disposition": "inline; filename=image.png"},
)
except Exception as e:
pass
refac: profile_image_url optimization
2025-11-21 01:43:59 +00:00
feat: channel/thread @ model
2025-09-17 05:49:44 +00:00
return FileResponse(f"{STATIC_DIR}/favicon.png")
else:
return FileResponse(f"{STATIC_DIR}/favicon.png")
refac: models
2024-11-16 02:21:41 +00:00
############################
refac
2025-07-28 09:12:38 +00:00
# ToggleModelById
refac: models
2024-11-16 02:21:41 +00:00
############################
refac: models api
2024-11-20 02:45:26 +00:00
@router.post("/model/toggle", response_model=Optional[ModelResponse])
refac: models
2024-11-16 02:21:41 +00:00
async def toggle_model_by_id(id: str, user=Depends(get_verified_user)):
model = Models.get_model_by_id(id)
if model:
if (
user.role == "admin"
or model.user_id == user.id
or has_access(user.id, "write", model.access_control)
):
model = Models.toggle_model_by_id(id)
if model:
return model
else:
raise HTTPException(
status_code=status.HTTP_400_BAD_REQUEST,
detail=ERROR_MESSAGES.DEFAULT("Error updating function"),
)
else:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.UNAUTHORIZED,
)
else:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.NOT_FOUND,
)
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
############################
# UpdateModelById
############################
refac: models api
2024-11-20 02:45:26 +00:00
@router.post("/model/update", response_model=Optional[ModelModel])
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
async def update_model_by_id(
feat(sqlalchemy): Replace peewee with sqlalchemy
2024-06-18 13:03:31 +00:00
form_data: ModelForm,
wip: access control backend
2024-11-15 09:29:07 +00:00
user=Depends(get_verified_user),
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
):
refac: models endpoint
2025-11-19 08:18:16 +00:00
model = Models.get_model_by_id(form_data.id)
wip: access control backend
2024-11-15 09:29:07 +00:00
if not model:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.NOT_FOUND,
)
fix: model update access
2025-01-23 18:40:49 +00:00
if (
model.user_id != user.id
and not has_access(user.id, "write", model.access_control)
and user.role != "admin"
):
raise HTTPException(
status_code=status.HTTP_400_BAD_REQUEST,
detail=ERROR_MESSAGES.ACCESS_PROHIBITED,
)
refac
2025-11-21 06:48:06 +00:00
model = Models.update_model_by_id(form_data.id, ModelForm(**form_data.model_dump()))
wip: access control backend
2024-11-15 09:29:07 +00:00
return model
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
############################
# DeleteModelById
############################
refac: models endpoint
2025-11-19 08:18:16 +00:00
@router.post("/model/delete", response_model=bool)
async def delete_model_by_id(form_data: ModelIdForm, user=Depends(get_verified_user)):
model = Models.get_model_by_id(form_data.id)
wip: access control backend
2024-11-15 09:29:07 +00:00
if not model:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.NOT_FOUND,
)
Adding more checks for write access. Adding accessRoles to Model & Knowledge creation
2025-01-27 18:11:52 +00:00
if (
fix: #9003
2025-01-30 05:31:18 +00:00
user.role != "admin"
fix
2025-01-30 05:32:07 +00:00
and model.user_id != user.id
and not has_access(user.id, "write", model.access_control)
fix: #9003
2025-01-30 05:31:18 +00:00
):
wip: access control backend
2024-11-15 09:29:07 +00:00
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail=ERROR_MESSAGES.UNAUTHORIZED,
)
refac: models endpoint
2025-11-19 08:18:16 +00:00
result = Models.delete_model_by_id(form_data.id)
feat: modelfiles to models
2024-05-24 07:26:00 +00:00
return result
enh: reset models
2024-11-19 19:03:36 +00:00
@router.delete("/delete/all", response_model=bool)
async def delete_all_models(user=Depends(get_admin_user)):
result = Models.delete_all_models()
return result
Reference in a new issue Copy permalink