MangoFanFanw/NyaHome
1
1
Fork 0
Code Issues 2 Pull Requests Packages Projects 1 Releases Wiki Activity

refactor: 主要功能实现

Browse Source 
目前的工作已经实现的功能:
- 基本 FastAPI 路由;
- 基本 AI 聊天和创作功能;
- 用户信息管理、权限验证、JWT 令牌签发和验证、端点保护;
- HTML 验证码邮件发送和验证码验证。
This commit is contained in:
芒果帆帆
2026-05-24 13:58:51 +08:00
parent f06de85257
commit 21f0d7725e
98 changed files with 6483 additions and 116 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/nyahome/__init__.py
+1 -1
View File
@@ -1 +1 @@
from .__version__ import __version__
from .__version__ import __version__ as __version__
src/nyahome/config/__init__.py
+5
View File
@@ -0,0 +1,5 @@
from .manager import config_manager
__all__ = [
config_manager,
]
src/nyahome/config/config.py
+15
View File
@@ -0,0 +1,15 @@
class Config:
def __init__(self) -> None:
self.site_name = "Nya Home"
self.site_url = "http://localhost:5173"
self.backend_url = "http://localhost:9000"
self.jwt_secret_key = "see you tomorrow"
self.smtp_enable = False
self.smtp_sender = ""
self.smtp_hostname = "smtp.gmail.com"
self.smtp_port = 587
self.smtp_username = ""
self.smtp_password = ""
self.smtp_use_tls = True
src/nyahome/config/manager.py
+94
View File
@@ -0,0 +1,94 @@
import json
import logging
from pathlib import Path
from typing import Any, TypeVar
import aiofiles
from .config import Config
logger = logging.getLogger(__name__)
CONFIG_PATH = Path.cwd() / ".nyahome" / "config.json"
T = TypeVar("T")
class ConfigManager:
def __init__(self) -> None:
CONFIG_PATH.parent.mkdir(exist_ok=True)
self._config = Config()
def _parse(self, config: dict) -> None:
"""
解析给定的字典作为配置。
Args:
config: 配置字典
"""
for key, value in config.items():
setattr(self._config, key, value)
def _dumps(self) -> str:
"""
将配置项序列化为 json 字符串,包含格式化缩进。
Returns:
json 字符串。
"""
config = {}
for attr in dir(self._config):
if not attr.startswith("_"):
value = getattr(self._config, attr)
config[attr] = value
return json.dumps(config, ensure_ascii=False, indent=2)
async def async_load_config(self) -> None:
async with aiofiles.open(CONFIG_PATH, "r", encoding="utf-8") as f:
self._parse(json.loads(await f.read()))
logger.info("异步从 config.json 读取设置完成。")
def sync_load_config(self) -> None:
with open(CONFIG_PATH, "r", encoding="utf-8") as f:
self._parse(json.load(f))
logger.info("同步从 config.json 读取设置完成。")
async def async_save_config(self) -> None:
async with aiofiles.open(CONFIG_PATH, "w", encoding="utf-8") as f:
await f.write(self._dumps())
logger.info("异步保存设置到 config.json 完成。")
def sync_save_config(self) -> None:
with open(CONFIG_PATH, "w", encoding="utf-8") as f:
f.write(self._dumps())
logger.info("同步保存设置到 config.json 完成。")
def get(self, key: str, default: T | None = None) -> T:
"""
获取配置项
Args:
key: 配置键
default: 默认值,如果不提供则会在获取配置项失败时报错
Returns:
返回配置值,返回类型根据提供的默认值进行推断。
"""
return getattr(self._config, key, default) # type: ignore[return-value]
def get_config(self) -> dict[str, Any]:
config = {}
for attr in dir(self._config):
if not attr.startswith("_"):
value = getattr(self._config, attr)
config[attr] = value
return config
def set_config(self, config: dict[str, Any]) -> dict[str, Any]:
for attr in dir(self._config):
if not attr.startswith("_"):
setattr(self._config, attr, config[attr])
return self.get_config()
config_manager = ConfigManager()
src/nyahome/core/__init__.py
View File
src/nyahome/core/core_abc/__init__.py
View File
src/nyahome/core/core_abc/otp.py
+75
View File
@@ -0,0 +1,75 @@
import asyncio
import logging
import time
from abc import ABC, abstractmethod
from pydantic import BaseModel
logger = logging.getLogger(__name__)
class OtpItem(BaseModel):
user_id: int
verify_code: str
expire_time: int
class OtpMemoryStore(ABC):
def __init__(self, type_name: str) -> None:
self._store: dict[str, OtpItem] = {}
# 定时清理过期验证码的异步任务
self._clean_task: asyncio.Task[None] | None = None
self.type_name = type_name
def start(self) -> None:
self._clean_task = asyncio.create_task(self._cleanup())
def _check(self, user_id: int, address: str) -> bool:
if address in self._store:
return False
return all(item.user_id != user_id for item in self._store.values())
def _put(self, user_id: int, address: str, verify_code: str) -> None:
self._store[address] = OtpItem(
user_id=user_id,
verify_code=verify_code,
expire_time=int(time.time()) + 300,
)
async def _cleanup(self) -> None:
while True:
await asyncio.sleep(60)
logger.info(f"[{self.type_name}] 开始定时清理过期验证码。")
expires = []
for address, item in self._store.items():
if item.expire_time < time.time():
logger.debug(f"[{self.type_name}] 移除过期的 {address}")
expires.append(address)
for address in expires:
self._store.pop(address)
logger.info(f"[{self.type_name}] 清理完成。")
def verify(self, address: str, user_id: int, verify_code: str) -> bool:
item = self._store.get(address)
if item is None:
return False
if item.expire_time < time.time():
self._store.pop(address) # 如果超时,顺手删掉
return False
if item.user_id != user_id:
return False
if item.verify_code != verify_code:
return False
# 验证通过,也要删除
self._store.pop(address)
return True
@abstractmethod
async def generate_and_send(self, user_id: int, address: str, email_reason: str) -> bool:
"""
在此实现验证码发送,以及调用 self._check(user_id, address) 检查、 self._put(user_id, address, verify_code) 存储验证码。
"""
...
src/nyahome/core/core_abc/task_queue.py
+86
View File
@@ -0,0 +1,86 @@
import asyncio
import logging
from abc import ABC, abstractmethod
from typing import Generic, TypeVar
from pydantic import BaseModel
logger = logging.getLogger(__name__)
_V = TypeVar("_V", bound=BaseModel)
class TaskQueue(Generic[_V], ABC):
"""
一个基于 asyncio.Queue 实现的内存任务队列。
"""
def __init__(self, max_workers: int) -> None:
self.max_workers = max_workers
self.queue: asyncio.Queue[_V] = asyncio.Queue()
self.workers: list[asyncio.Task] = []
self._shutdown = False
def start(self) -> None:
"""
启动 worker 协程
"""
for i in range(0, self.max_workers):
task = asyncio.create_task(self._worker(i), name=f"worker {i}")
self.workers.append(task)
async def put(self, item: _V) -> None:
"""
向队列提交任务。
Args:
item: 任务
Raises:
RuntimeError: 在队列关闭的过程中提交新任务。
"""
if self._shutdown:
raise RuntimeError("队列正在关闭中,无法提交新任务。")
await self.queue.put(item)
async def _worker(self, worker_id: int) -> None:
"""
消费逻辑。
Args:
worker_id: 消费者 ID
"""
while True:
try:
# 使用 timeout 以便优雅地检查 shutdown
item = await asyncio.wait_for(self.queue.get(), timeout=1.0)
except asyncio.TimeoutError:
if self._shutdown:
break
continue
try:
logger.info(f"[Worker {worker_id}] Processing: {item}")
await self._process(item)
except Exception as e:
logger.error(f"[Worker {worker_id}] Error processing {item}: {e}")
finally:
self.queue.task_done()
async def join(self) -> None:
"""等待队列中所有任务完成"""
await self.queue.join()
async def shutdown(self) -> None:
"""优雅关闭"""
self._shutdown = True
await self.join()
for w in self.workers:
w.cancel()
await asyncio.gather(*self.workers, return_exceptions=True)
logger.info("队列成功关闭。")
@abstractmethod
async def _process(self, item: _V) -> None:
"""实际执行的工作。接收 item,返回 None。请 overload 此方法。"""
...
src/nyahome/core/otp_store.py
+44
View File
@@ -0,0 +1,44 @@
import logging
import random
from nyahome.config import config_manager
from nyahome.core.core_abc.otp import OtpMemoryStore
from nyahome.core.send_email import SendEmailItem, email_sender_queue
from nyahome.core.template_render import template_render
logger = logging.getLogger(__name__)
def generate_random_code() -> str:
return f"{random.randint(0, 999999):06d}"
class EmailOtpMemoryStore(OtpMemoryStore):
def __init__(self) -> None:
super().__init__("EmailOtpMemoryStore")
async def generate_and_send(self, user_id: int, address: str, email_reason: str) -> bool:
if not self._check(user_id, address):
logger.error(f"该邮件地址 {address} 或用户 {user_id} 已有待处理的邮件验证码。")
return False
code = generate_random_code()
site_name = config_manager.get("site_name", "Nya Home")
html = template_render.render_2fa_otp(
site_name=site_name,
site_url=config_manager.get("site_url"),
email_reason=email_reason,
otp_number=code,
)
await email_sender_queue.put(
SendEmailItem(
to=address,
subject=f"{site_name} - 一次性邮件验证码",
body=html,
)
)
self._put(user_id, address, code)
logger.info(f"已经向邮件地址 {address} 发送用户 {user_id} 的一次性邮件验证码 {code}")
return True
email_otp_memory_store = EmailOtpMemoryStore()
src/nyahome/core/password.py
+15
View File
@@ -0,0 +1,15 @@
from passlib.context import CryptContext
pwd_context = CryptContext(
schemes=["argon2"],
deprecated="auto",
# Argon2id:抵抗侧信道攻击和 GPU 破解的最佳平衡
argon2__type="ID",
# 内存 64MB,迭代 3 轮,4 线程
# 在普通 VPS 上大约耗时 0.3~0.6 秒
argon2__memory_cost=65536, # 64 MB
argon2__time_cost=3,
argon2__parallelism=4,
# 哈希输出长度(默认 32 字节,一般不用改)
argon2__hash_len=32,
)
src/nyahome/core/send_email.py
+105
View File
@@ -0,0 +1,105 @@
import logging
from email.message import EmailMessage
import aiosmtplib
from pydantic import BaseModel, ValidationError
from nyahome.config import config_manager
from nyahome.core.core_abc.task_queue import TaskQueue
logger = logging.getLogger(__name__)
class SendEmailItem(BaseModel):
to: str
subject: str
body: str
def __str__(self) -> str:
return f"SendEmailItem(to={self.to}, subject={self.subject})"
def __repr__(self) -> str:
return self.__str__()
async def send_email(
to: str,
sender: str,
subject: str,
body: str,
hostname: str,
port: int,
username: str,
password: str,
use_tls: bool,
) -> None:
"""
底层的邮件发送方法,异步执行,调用 aiosmtplib.send()。不进行任何检查。
Args:
to: 收件人邮件地址
sender: 发件人邮件地址
subject: 邮件主题
body: 邮件内容,可以是纯文本或者 HTML
hostname: SMTP 服务器主机名
port: SMTP 服务器端口
username: SMTP 用户名,一般与发件人邮件地址相同
password: SMTP 密码
use_tls: 使用 TLS
Raises:
ValueError: 遭遇未知问题导致发件失败。
aiosmtplib 的子异常类是可以排查的发件失败。
"""
msg = EmailMessage()
msg["From"] = sender
msg["To"] = to
msg["Subject"] = subject
msg.set_content(body, subtype="html")
try:
res = await aiosmtplib.send(
msg,
hostname=hostname,
port=port,
username=username,
password=password,
use_tls=use_tls,
)
if len(res[0]) == 0:
logger.debug(f"邮件发送成功 | {to=}, {subject=}")
else:
raise ValueError("邮件发送出现意外情况,我也不知道是什么情况……")
except Exception as e:
logger.error(f"邮件发送失败 | {e}")
class EmailSenderQueue(TaskQueue):
"""
邮件发送任务队列。使用 put 方法提交的 item 需要为 :py:class:`SendEmailItem` 结构。
"""
def __init__(self) -> None:
super().__init__(2)
async def _process(self, item: SendEmailItem) -> None:
try:
SendEmailItem.model_validate(item)
except ValidationError as e:
logger.error(f"向邮件发送队列提交了格式错误的 item - {e}")
raise e
await send_email(
to=item.to,
subject=item.subject,
body=item.body,
sender=config_manager.get("smtp_sender"),
hostname=config_manager.get("smtp_hostname"),
port=config_manager.get("smtp_port"),
username=config_manager.get("smtp_username"),
password=config_manager.get("smtp_password"),
use_tls=config_manager.get("smtp_use_tls"),
)
email_sender_queue = EmailSenderQueue()
src/nyahome/core/task.py
+36
View File
@@ -0,0 +1,36 @@
import logging
from sqlalchemy.exc import NoResultFound
from sqlmodel import select
from nyahome.core.password import pwd_context
from nyahome.database import ModelUser, async_get_session
logger = logging.getLogger(__name__)
async def init_admin_user() -> None:
"""
异步初始化管理员用户。向数据库中添加一个 id=1,用户名和密码均为 admin 的用户。
如果 id=1 的用户已经存在,视为初始化完成,执行结束。
作为异步任务,应该使用 asyncio.create_task() 执行本方法。本方法无返回值。
"""
async with async_get_session() as session:
logger.info("尝试初始化管理员用户...")
# 尝试获取 id=1 的用户,如果不存在则创建,存在则忽略。
try:
admin: ModelUser = session.exec(select(ModelUser).where(ModelUser.id == 1)).one()
logger.info(f"管理员用户已存在:{admin.name}")
except NoResultFound:
admin = ModelUser(
id=1,
name="admin",
password=pwd_context.hash("admin"), # 使用 admin 作为密码
is_admin=True,
secure_changes="[]",
)
session.add(admin)
session.commit()
logger.info("管理员用户已创建,用户名和密码均为 admin。")
src/nyahome/core/template_render.py
+32
View File
@@ -0,0 +1,32 @@
from datetime import datetime
from pathlib import Path
import jinja2
class TemplateRender:
def __init__(self) -> None:
self.env = jinja2.Environment(loader=jinja2.FileSystemLoader(Path.cwd() / "public" / "templates"))
self.t_test = self.env.get_template("test.j2")
self.t_2fa_otp = self.env.get_template("2fa-otp.j2")
def render_test(self, site_name: str) -> str:
return self.t_test.render(site_name=site_name, sent_time=datetime.now().strftime("%Y-%m-%d %H:%M:%S"))
def render_2fa_otp(
self,
site_name: str,
site_url: str,
email_reason: str,
otp_number: str,
) -> str:
return self.t_2fa_otp.render(
site_name=site_name,
site_url=site_url,
email_reason=email_reason,
otp_number=otp_number,
sent_time=datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
)
template_render = TemplateRender()
src/nyahome/database/__init__.py
+44
View File
@@ -0,0 +1,44 @@
from sqlmodel import SQLModel
from .engine import engine
from .model_aii import AiiModel, AiiModelPublic, AiiProvider, AiiProviderPublic, z_aii_model, z_aii_provider
from .model_story import (
Chatroom,
ChatroomChat,
ChatroomChatAccept,
ChatroomChatDelete,
ChatroomChatEdit,
ChatroomPublic,
ChatScript,
ScriptTemplate,
)
from .model_user import ModelUploadFile, ModelUser
from .session import async_get_session, get_session
# 创建数据库连接和数据库文件
def create_db() -> None: # noqa: RUF067
SQLModel.metadata.create_all(engine)
__all__ = [
AiiModel,
AiiModelPublic,
AiiProvider,
AiiProviderPublic,
ChatScript,
Chatroom,
ChatroomChat,
ChatroomChatAccept,
ChatroomChatDelete,
ChatroomChatEdit,
ChatroomPublic,
ModelUploadFile,
ModelUser,
ScriptTemplate,
async_get_session,
create_db,
get_session,
z_aii_model,
z_aii_provider,
]
src/nyahome/database/engine.py
+7
View File
@@ -0,0 +1,7 @@
from pathlib import Path
from sqlmodel import create_engine
sqlite_file_path = Path.cwd() / ".nyahome" / "nyahome.db"
engine = create_engine(f"sqlite:///{sqlite_file_path!s}", connect_args={"check_same_thread": False})
src/nyahome/database/model_aii.py
+60
View File
@@ -0,0 +1,60 @@
from pydantic import BaseModel
from sqlmodel import Field, Relationship, SQLModel
class AiiProvider(SQLModel, table=True):
"""
模型提供商。
"""
id: int | None = Field(default=None, primary_key=True)
name: str
base_url: str
api_key: str
aii_models: list["AiiModel"] = Relationship(back_populates="aii_provider")
class AiiProviderPublic(BaseModel):
id: int | None = None
name: str
base_url: str
api_key: str
class AiiModel(SQLModel, table=True):
"""
模型。
"""
id: int | None = Field(default=None, primary_key=True)
model_name: str
max_context_length: int
aii_provider_id: int = Field(default=None, foreign_key="aiiprovider.id")
aii_provider: AiiProvider = Relationship(back_populates="aii_models")
class AiiModelPublic(BaseModel):
id: int | None = None
model_name: str
max_context_length: int
aii_provider_id: int
def z_aii_model(am: AiiModel) -> dict:
return {
"id": am.id,
"model_name": am.model_name,
"max_context_length": am.max_context_length,
"aii_provider_id": am.aii_provider_id,
}
def z_aii_provider(ap: AiiProvider) -> dict:
return {
"id": ap.id,
"name": ap.name,
"base_url": ap.base_url,
}
src/nyahome/database/model_story.py
+107
View File
@@ -0,0 +1,107 @@
from typing import Literal, Optional
from pydantic import BaseModel
from sqlalchemy import Column, ForeignKey
from sqlmodel import Field, Relationship, SQLModel
from ..config import config_manager
class Chatroom(SQLModel, table=True):
"""
聊天室 表结构。
聊天室是供剧本演出的场所。在聊天室中,由用户选定剧本模板、决定剧本走向,AI 按照剧本进行演出。
我们规定 script 是故事脚本设定,content 是故事正片,script template 是脚本模板。
规定 creator_id 为 0 的聊天室为公共聊天室,其权限由配置文件决定。
"""
id: int | None = Field(default=None, primary_key=True)
name: str
description: str
feature_image: str = Field(
default=f"{config_manager.get('site_url', 'http://localhost:9000')}/nyahome/normal-thumbnail.png"
)
content: str
script: str
script_template_id: int | None = Field(
default=None, sa_column=Column(ForeignKey("scripttemplate.id", name="fk_chatroom_script_template"))
)
script_template_version: str | None
script_template: "ScriptTemplate" = Relationship()
creator_id: int = Field(sa_column=Column(ForeignKey("modeluser.id", name="fk_chatroom_creator")))
creator: Optional["ModelUser"] = Relationship(back_populates="chatrooms")
class ChatroomPublic(BaseModel):
id: int | None = None
name: str
description: str
feature_image: str
script_template_id: int | None = None
script_template_version: str | None
class ScriptTemplate(SQLModel, table=True):
"""
剧本模板 表结构。
聊天室通过加载剧本模板来开始演绎一个剧本。
【开发中】
"""
id: int | None = Field(default=None, primary_key=True)
name: str
description: str
version: str
origin_url: str
script: str
class ScriptWordBook(BaseModel):
key_word: str
message: str
class ChatScript(BaseModel):
"""
剧本(提示词与世界书)。
"""
main_prompt: str
user_prefix: str
user_suffix: str
world_books: list[ScriptWordBook]
class ChatroomChat(BaseModel):
"""
聊天室的 chat 端点接收的数据结构,作为用户输入。
"""
message: str
prefix: str
mode: Literal["continue", "expand"]
model_id: int
class ChatroomChatAccept(BaseModel):
user_message: str
aii_message: str
mode: Literal["continue", "expand"]
class ChatroomChatEdit(BaseModel):
old_message: str
new_message: str
change: Literal["user", "aii"]
class ChatroomChatDelete(BaseModel):
message: str
change: Literal["user", "aii"]
from .model_user import ModelUser # noqa: E402
src/nyahome/database/model_user.py
+49
View File
@@ -0,0 +1,49 @@
from typing import Any
from pydantic import model_serializer
from sqlalchemy import Column, ForeignKey
from sqlmodel import Field, Relationship, SQLModel
from ..config import config_manager
from .model_story import Chatroom
class ModelUser(SQLModel, table=True):
id: int = Field(default=None, primary_key=True)
name: str
display_name: str | None
email: str | None
phone: str | None
avatar_url: str = Field(
default=f"{config_manager.get('site_url', 'http://localhost:9000')}/nyahome/normal-avatar.png"
)
background_url: str = Field(
default=f"{config_manager.get('site_url', 'http://localhost:9000')}/nyahome/normal-background.png"
)
description: str | None
password: str
is_admin: bool = Field(default=False)
upload_files: list["ModelUploadFile"] = Relationship(back_populates="uploader")
chatrooms: list[Chatroom] = Relationship(back_populates="creator")
secure_changes: str = Field(default="[]")
@model_serializer(mode="wrap")
def serialize_user(self, handler) -> dict[str, Any]: # type: ignore[no-untyped-def] # noqa ANN001
data = handler(self)
data.pop("password", None)
data.pop("secure_changes", None)
return data # type: ignore[no-any-return]
class ModelUploadFile(SQLModel, table=True):
id: int = Field(default=None, primary_key=True)
original_name: str
safe_name: str
download_url: str
uploader_id: int = Field(sa_column=Column(ForeignKey("modeluser.id", name="fk_chatroom_creator")))
uploader: ModelUser = Relationship(back_populates="upload_files")
src/nyahome/database/session.py
+24
View File
@@ -0,0 +1,24 @@
from contextlib import asynccontextmanager
from typing import AsyncGenerator, Generator
from sqlmodel import Session
from .engine import engine
def get_session() -> Generator[Session, None, None]:
"""
用于以依赖注入的方式在 路由端点函数 中获取数据库会话。
`session: Annotated[Session, Depends(get_session)],`
Yields:
数据库会话对象 Session。
"""
with Session(engine) as session:
yield session
@asynccontextmanager
async def async_get_session() -> AsyncGenerator[Session, None]:
with Session(engine) as session:
yield session
src/nyahome/manage.py
+4 -2
View File
@@ -1,6 +1,6 @@
"""
此文件为命令行入口。
避免在此文件中引用 router 模块内的代码。
避免在此文件中引用 router 和 service 模块内的代码。
"""
import typer
@@ -45,10 +45,12 @@ def run() -> None:
uvicorn.run(
"nyahome.server:app",
reload=True,
reload=False,
host="0.0.0.0",
port=9000,
timeout_graceful_shutdown=2,
log_config="logging.yaml",
log_level="debug",
)
src/nyahome/router/__init__.py
+11
View File
@@ -1,2 +1,13 @@
from .admin_router import admin_router
from .aii_router import aii_router
from .chatroom_router import chatroom_router
from .file_router import file_router
from .webui_router import webui_router
__all__ = [
"admin_router",
"aii_router",
"chatroom_router",
"file_router",
"webui_router",
]
src/nyahome/router/admin_router.py
+211 -1
View File
@@ -1,3 +1,213 @@
from fastapi import APIRouter
import json
import logging
from datetime import datetime
from typing import Annotated, Any
from fastapi import APIRouter, HTTPException
from fastapi.params import Depends
from pydantic import BaseModel
from sqlalchemy.exc import NoResultFound
from sqlmodel import Session, select
from nyahome.config import config_manager
from nyahome.database import ModelUser, get_session
from nyahome.service.secure_service import SecureChange, s_append_secure_changes
from nyahome.service.verify_service import s_send_test_email, s_send_verify_email, s_verify_email
from .auth import create_access_token, save_password, verify_password, verify_token
from .response_model import ReturnDto
logger = logging.getLogger(__name__)
admin_router = APIRouter(tags=["admin"], prefix="/admin")
class UserLogin(BaseModel):
username: str
password: str
class UserInfo(BaseModel):
name: str
display_name: str
avatar_url: str
background_url: str
description: str
class ChangePassword(BaseModel):
old_password: str
new_password: str
class SendEmail(BaseModel):
to: str
class VerifyEmail(BaseModel):
to: str
verify_code: str
@admin_router.post("/login/name/")
async def nyahome_login_name(user: UserLogin, session: Annotated[Session, Depends(get_session)]) -> ReturnDto:
try:
u: ModelUser = session.exec(select(ModelUser).where(ModelUser.name == user.username)).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="用户不存在") from None
if verify_password(user.password, u.password):
change = SecureChange(
created_at=datetime.now(),
type="login",
old=None,
new=None,
)
u.secure_changes = s_append_secure_changes(u.secure_changes, change)
session.add(u)
session.commit()
return ReturnDto(
result={
"user_id": u.id,
"access_token": create_access_token(u.id, u.password, 30),
}
)
raise HTTPException(status_code=401, detail="验证失败,请检查用户名和密码是否正确")
@admin_router.get("/me/")
async def nyahome_get_me(user: Annotated[ModelUser, Depends(verify_token)]) -> ModelUser:
return user
@admin_router.post("/me/")
async def nyahome_post_me(
info: UserInfo, user: Annotated[ModelUser, Depends(verify_token)], session: Annotated[Session, Depends(get_session)]
) -> ModelUser:
user.name = info.name
user.display_name = info.display_name
user.avatar_url = info.avatar_url
user.background_url = info.background_url
user.description = info.description
session.add(user)
session.commit()
session.refresh(user)
return user
@admin_router.post("/me/password/")
async def nyahome_change_password(
change: ChangePassword,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
if verify_password(change.old_password, user.password):
user.password = save_password(change.new_password)
change_ = SecureChange(
created_at=datetime.now(),
type="change_password",
old=None,
new=None,
)
user.secure_changes = s_append_secure_changes(user.secure_changes, change_)
session.add(user)
session.commit()
return ReturnDto(success=True)
raise HTTPException(status_code=400, detail="修改密码需要提供旧的密码,但提供的旧密码错误。") from None
@admin_router.post("/me/email-verify/")
async def nyahome_verify_email(
to: VerifyEmail,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
success = await s_verify_email(user_id=user.id, address=to.to, verify_code=to.verify_code)
if success:
old_email = user.email
user.email = to.to
user.secure_changes = s_append_secure_changes(
user.secure_changes,
SecureChange(
created_at=datetime.now(),
type="change_email",
old=old_email,
new=to.to,
),
)
session.add(user)
session.commit()
logger.info(f"已更新用户 {user.id} 的邮件地址至 {user.email}")
return ReturnDto(success=success)
@admin_router.post("/me/email-verify/send/")
async def nyahome_verify_email_send(to: SendEmail, user: Annotated[ModelUser, Depends(verify_token)]) -> ReturnDto:
success = await s_send_verify_email(user.id, to.to)
return ReturnDto(success=success)
@admin_router.get("/me/secure_changes/")
async def nyahome_get_secure_changes(
user: Annotated[ModelUser, Depends(verify_token)],
) -> list[SecureChange]:
return json.loads(user.secure_changes) # type: ignore[no-any-return]
@admin_router.get("/site_config/")
async def get_site_config(user: Annotated[ModelUser, Depends(verify_token)]) -> dict[str, Any]:
"""
获取 NyaHome 的设置。
Raises:
HTTPException: 403 表示请求用户非管理员。
Returns:
dict[str, Any] NyaHome 设置
"""
if not user.is_admin:
raise HTTPException(status_code=403, detail="非管理员禁止访问") from None
return config_manager.get_config()
@admin_router.post("/site_config/")
async def set_site_config(
user: Annotated[ModelUser, Depends(verify_token)],
config_: dict[str, Any],
) -> dict[str, Any]:
"""
设置 NyaHome 的设置。
Raises:
HTTPException: 403 表示请求用户非管理员。
Returns:
dict[str, Any] 更新过的 NyaHome 设置
"""
if not user.is_admin:
raise HTTPException(status_code=403, detail="非管理员禁止访问") from None
final_config = config_manager.set_config(config_)
await config_manager.async_save_config()
return final_config
@admin_router.post("/email-test/")
async def nyahome_test_email(to: SendEmail, user: Annotated[ModelUser, Depends(verify_token)]) -> ReturnDto:
"""
NyaHome 管理员面板中的测试邮件端点。
Args:
to: 测试邮件发送目标
user: 当前用户,需要为管理员
Raises:
HTTPException: 403 表示请求用户非管理员。
Returns:
ReturnDto
"""
if not user.is_admin:
raise HTTPException(status_code=403, detail="非管理员禁止访问") from None
success = await s_send_test_email(to.to)
logger.info(f"发送测试邮件到 {to} - {success=}")
return ReturnDto(success=success)
src/nyahome/router/aii_router.py
+122
View File
@@ -0,0 +1,122 @@
from typing import Annotated
from fastapi import APIRouter, Depends, HTTPException
from sqlalchemy.exc import NoResultFound
from sqlmodel import Session, select
from nyahome.database import (
AiiModel,
AiiModelPublic,
AiiProvider,
AiiProviderPublic,
ModelUser,
get_session,
z_aii_model,
z_aii_provider,
)
from nyahome.service.aii_service import apply_get_models, s_check_remote_model, s_list_remote_provider_models
from .auth import verify_token
from .response_model import ReturnDto
aii_router = APIRouter(tags=["Aii"], prefix="/aii")
@aii_router.get("/model/")
async def get_all_model(session: Annotated[Session, Depends(get_session)]) -> ReturnDto:
final_model_list = apply_get_models(session)
return ReturnDto(result=final_model_list)
@aii_router.post("/model/")
async def add_model(
model: AiiModelPublic,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
if not user.is_admin:
raise HTTPException(status_code=401, detail="用户无权限管理模型。") from None
try:
ap: AiiProvider = session.exec(select(AiiProvider).where(AiiProvider.id == model.aii_provider_id)).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="Provider 不存在。") from None
am = AiiModel(
model_name=model.model_name,
max_context_length=model.max_context_length,
aii_provider_id=model.aii_provider_id,
aii_provider=ap,
)
session.add(am)
session.commit()
session.refresh(am)
return ReturnDto(result=z_aii_model(am))
@aii_router.get("/provider/")
async def get_all_provider(session: Annotated[Session, Depends(get_session)]) -> ReturnDto:
aii_providers = session.exec(select(AiiProvider)).all()
return ReturnDto(result=[z_aii_provider(ap) for ap in aii_providers])
@aii_router.post("/provider/")
async def add_provider(
provider: AiiProviderPublic,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
if not user.is_admin:
raise HTTPException(status_code=401, detail="用户无权限管理模型。") from None
ap = AiiProvider(name=provider.name, base_url=provider.base_url, api_key=provider.api_key)
session.add(ap)
session.commit()
session.refresh(ap)
return ReturnDto(result=z_aii_provider(ap))
@aii_router.get("/provider/{id_}/remote/models/")
async def get_provider_remote_models(
id_: int, user: Annotated[ModelUser, Depends(verify_token)], session: Annotated[Session, Depends(get_session)]
) -> ReturnDto:
if not user.is_admin:
raise HTTPException(status_code=401, detail="用户无权限管理模型。") from None
try:
ap: AiiProvider = session.exec(select(AiiProvider).where(AiiProvider.id == id_)).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="Provider 不存在。") from None
models = await s_list_remote_provider_models(ap.base_url, ap.api_key)
# 只返回模型名称列表,方便前端填入表单
return ReturnDto(result=[m["id"] for m in models])
@aii_router.get("/provider/{id_}/remote/model/{model_name}/")
async def check_remote_provider_model(
id_: int, model_name: str, session: Annotated[Session, Depends(get_session)]
) -> ReturnDto:
"""
检测指定提供商的指定名称模型是否可用。
Args:
id_: 模型提供商 ID。
model_name: 模型名称。
session: 数据库连接对象。
Raises:
HTTPException: 404 表明提供商 ID 未找到。
Returns:
ReturnDto,其中 result 字段为布尔值,表明指定名称模型的可用状态。
"""
try:
ap: AiiProvider = session.exec(select(AiiProvider).where(AiiProvider.id == id_)).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="Provider 不存在。") from None
return ReturnDto(result=await s_check_remote_model(model_name, ap.base_url, ap.api_key))
@aii_router.post("/remote/provider/check/")
async def check_remote_provider(provider: AiiProviderPublic) -> ReturnDto:
try:
count = len(await s_list_remote_provider_models(provider.base_url, provider.api_key))
return ReturnDto(result=count)
except TypeError:
return ReturnDto(success=False)
src/nyahome/router/auth.py
+109
View File
@@ -0,0 +1,109 @@
import datetime
import hashlib
# import logging
from typing import Annotated, Any
from fastapi import Depends, HTTPException
from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer
from jose import jwt
from sqlalchemy.exc import NoResultFound
from sqlmodel import Session, select
from nyahome.config import config_manager
from nyahome.core.password import pwd_context
from nyahome.database import ModelUser, get_session
# logger = logging.getLogger(__name__)
security = HTTPBearer()
def create_access_token(user_id: int, user_password: str, expire: int) -> str:
"""
签发一个 access Token 给指定用户。
Args:
user_id: 用户 ID
user_password: 用户经过加密的密码密文
expire: 逾期时间,单位为天
Returns:
签发得到的 JWT Token
"""
return jwt.encode(
{
"user_id": user_id,
"pw_hash": hashlib.sha256(user_password.encode("utf-8")).hexdigest(),
"exp": datetime.datetime.now() + datetime.timedelta(days=expire),
},
config_manager.get("site_jwt_secret", "see you tomorrow"),
algorithm="HS256",
)
def verify_access_token(token: str, user_id: int | None = None) -> dict[str, Any]:
try:
claims = jwt.decode(token, config_manager.get("site_jwt_secret", "see you tomorrow"))
except Exception as e:
# logger.info(f"验证一个 Access Token 失败:{user_id=} | {e}")
raise ValueError("验证 Access Token 失败") from e
# 如果提供了 user_id 则顺手进行检查
if user_id and claims.get("user_id") != user_id:
# logger.info(f"验证一个 Access Token 失败:{user_id=} | Token 有效,但用户错误。")
raise NameError("正在检查的 Access Token 不是签发给提供用户的……")
# logger.info(f"验证一个 Access Token 成功:{user_id=}")
return claims
def verify_password(input_password: str, saved_password: str) -> bool:
"""
验证用户登录请求的密码是否正确。
Args:
input_password: 前端直接提供的密码原文
saved_password: 保存在数据库中的、经过加密的密码
Returns:
布尔值表明正确与否
"""
return pwd_context.verify(input_password, saved_password)
def save_password(password: str) -> str:
return pwd_context.hash(password)
async def verify_token(
credentials: Annotated[HTTPAuthorizationCredentials, Depends(security)],
session: Annotated[Session, Depends(get_session)],
) -> ModelUser:
"""
验证 Bearer Token。
验证内容包括 Access Token 本身合法性以及签发的目标用户合法性。
另外,修改密码会导致所有签发的 Access Token 失效。
Raises:
HTTPException: 所有验证失败均返回 401。
Returns:
ModelUser
"""
token = credentials.credentials
try:
claims = verify_access_token(token)
except Exception as e:
raise HTTPException(status_code=401, detail="Access Token 验证失败1") from e
user_id = claims.get("user_id")
try:
user: ModelUser = session.exec(select(ModelUser).where(ModelUser.id == user_id)).one()
except NoResultFound:
raise HTTPException(status_code=401, detail="Access Token 验证失败2") from None
if hashlib.sha256(user.password.encode("utf-8")).hexdigest() != claims.get("pw_hash"):
raise HTTPException(status_code=401, detail="Access Token 验证失败3") from None
return user
src/nyahome/router/chatroom_router.py
+296
View File
@@ -0,0 +1,296 @@
import json
from typing import Annotated
from fastapi import APIRouter, Depends, HTTPException
from fastapi.responses import StreamingResponse
from sqlalchemy.exc import NoResultFound
from sqlmodel import Session, select
from nyahome.database import (
Chatroom,
ChatroomChat,
ChatroomChatAccept,
ChatroomChatDelete,
ChatroomChatEdit,
ChatroomPublic,
ChatScript,
ModelUser,
get_session,
)
from nyahome.service.chat_service import (
apply_chat,
s_append_chatroom_content,
s_delete_chatroom_content,
s_edit_chatroom_content,
s_start_async_streaming_chat,
)
from .auth import verify_token
from .response_model import ReturnDto
chatroom_router = APIRouter(tags=["Chatroom"], prefix="/chatroom")
@chatroom_router.get("/{id_}/")
async def get_chatroom(
id_: int, user: Annotated[ModelUser, Depends(verify_token)], session: Annotated[Session, Depends(get_session)]
) -> ReturnDto:
"""
根据 ID 获取聊天室。这里获取到的是完整的聊天室信息。
Returns:
聊天室对象。
Raises:
HTTPException: 404 未找到指定 ID 的聊天室。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
else:
return ReturnDto(result=cr.model_dump())
@chatroom_router.get("/")
async def get_all_chatroom(
user: Annotated[ModelUser, Depends(verify_token)], session: Annotated[Session, Depends(get_session)]
) -> ReturnDto:
"""
获取全部聊天室。这里获取到的是 public 简略聊天室信息,不包含 content 和 script 字段。
Returns:
包含全部聊天室的列表。
"""
crs = session.exec(select(Chatroom).where(Chatroom.creator_id == user.id)).all()
return ReturnDto(result=[cr.model_dump(exclude={"content", "script"}) for cr in crs])
@chatroom_router.post("/")
async def create_chatroom(
chatroom: ChatroomPublic,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
创建聊天室。
在请求体中提供聊天室信息,详请参阅 ChatroomPublic。注意,提供的 id 会被忽略。
Returns:
创建的聊天室对象,包含由数据库分配的 id。
"""
cr = Chatroom(
name=chatroom.name,
description=chatroom.description,
content="[]",
script="{}",
feature_image=chatroom.feature_image if chatroom.feature_image != "" else None,
script_template_id=chatroom.script_template_id,
creator_id=user.id,
)
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=cr.model_dump())
@chatroom_router.post("/{id_}/")
async def edit_chatroom(
id_: int,
chatroom: ChatroomPublic,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
修改聊天室的基本信息。
content 和 script 需要从各自的独立端点请求修改,不包含在本端点的负责范围内。
Args:
id_: 聊天室 ID
chatroom: 聊天室基本信息,类型为 ChatroomPublic。注意 id 不可更改,如提供则会被忽略
user: 用户
session: 数据库连接对象
Raises:
HTTPException: 404 表示未找到聊天室
Returns:
修改过的聊天室对象,供前端更新。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
cr.name = chatroom.name
cr.description = chatroom.description
if chatroom.feature_image != "":
cr.feature_image = chatroom.feature_image
cr.script_template_id = chatroom.script_template_id
cr.script_template_version = chatroom.script_template_version
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=cr.model_dump())
@chatroom_router.post("/{id_}/script/")
async def update_chatroom_script(
id_: int,
script: ChatScript,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
更新聊天室的剧本(提示词与世界书)。
Args:
id_: 聊天室 ID
script: 剧本
user: 用户
session: 数据库连接对象
Raises:
HTTPException: 404 表示未找到聊天室
Returns:
result 字段包含最新的剧本。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
cr.script = json.dumps(script.model_dump(), ensure_ascii=False)
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=script.model_dump())
@chatroom_router.post("/{id_}/chat/")
async def post_chatroom_chat(
id_: int,
chat: ChatroomChat,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> StreamingResponse:
"""
在聊天室中发送新的用户消息,流式返回 AI 调用结果。
Args:
id_: (路径参数)聊天室 ID
chat: 用户消息
user: 用户
session: 数据库连接对象
Raises:
HTTPException: 404 表示聊天室未找到,444 表示模型未找到。
Returns:
SSE 流式输出,实质上相当于转发 AI 的流式输出结果。
"""
try:
return StreamingResponse(
s_start_async_streaming_chat(**apply_chat(id_, user.id, chat, session)),
media_type="text/event-stream",
)
except HTTPException as e:
raise e
@chatroom_router.post("/{id_}/chat/accept/")
async def accept_chatroom_chat(
id_: int,
accept: ChatroomChatAccept,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
此端点不负责调用 AI 生成输出,而是用于保存一对用户消息和 AI 输出到聊天室 content 的最后。
Raises:
HTTPException: 404 表明未找到聊天室。
Returns:
ReturnDto,其中 result 字段是该聊天室的最新 content,以供前端刷新。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
cr.content = s_append_chatroom_content(cr.content, accept)
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=cr.model_dump())
@chatroom_router.post("/{id_}/chat/edit/")
async def edit_chatroom_chat(
id_: int,
edit: ChatroomChatEdit,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
此端点不负责调用 AI 生成输出,而是用于修改一条已经保存在聊天记录中的消息。
Raises:
HTTPException: 404 表明未找到聊天室,400 表明聊天记录匹配失败,未更新。
Returns:
ReturnDto,其中 result 字段是该聊天室的最新 content,以供前端刷新。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
try:
cr.content = s_edit_chatroom_content(cr.content, edit)
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=cr.model_dump())
except ValueError as e:
raise HTTPException(status_code=400, detail=str(e)) from e
@chatroom_router.post("/{id_}/chat/delete/")
async def delete_chatroom_chat(
id_: int,
delete: ChatroomChatDelete,
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ReturnDto:
"""
此端点不负责调用 AI 生成输出,而是用于删除一条已经保存在聊天记录中的消息。关联的 user 或 aii 消息会一并删除。
Raises:
HTTPException: 404 表明未找到聊天室,400 表明聊天记录匹配失败,未更新。
Returns:
ReturnDto,其中 result 字段是该聊天室的最新 content,以供前端刷新。
"""
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user.id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
try:
cr.content = s_delete_chatroom_content(cr.content, delete)
session.add(cr)
session.commit()
session.refresh(cr)
return ReturnDto(result=cr.model_dump())
except ValueError as e:
raise HTTPException(status_code=400, detail=str(e)) from e
src/nyahome/router/file_router.py
+55
View File
@@ -0,0 +1,55 @@
from typing import Annotated, Sequence
from fastapi import APIRouter, File, HTTPException, UploadFile
from fastapi.params import Depends
from sqlmodel import Session, select
from nyahome.config import config_manager
from nyahome.database import ModelUploadFile, ModelUser, get_session
from nyahome.service.file_service import UPLOAD_DIR, s_get_safe_filename, s_save_upload_file
from .auth import verify_token
file_router = APIRouter(tags=["File"], prefix="/file")
@file_router.get("/")
async def get_files(
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> Sequence[ModelUploadFile]:
files: Sequence[ModelUploadFile] = session.exec(
select(ModelUploadFile).where(ModelUploadFile.uploader_id == user.id)
).all()
return files
@file_router.post("/upload/")
async def file_upload(
file: Annotated[UploadFile, File()],
user: Annotated[ModelUser, Depends(verify_token)],
session: Annotated[Session, Depends(get_session)],
) -> ModelUploadFile:
try:
safe_name = s_get_safe_filename(file.filename) # type: ignore[arg-type]
dest_path = UPLOAD_DIR / safe_name
except TypeError as e:
raise HTTPException(status_code=400, detail=str(e)) from e
try:
await s_save_upload_file(dest_path, file)
except TypeError as e:
raise HTTPException(status_code=500, detail=str(e)) from e
download_url = f"{config_manager.get('site_url', 'http://localhost:9000')}/download/{safe_name}"
upload_file = ModelUploadFile(
original_name=file.filename,
safe_name=safe_name,
download_url=download_url,
uploader_id=user.id,
)
session.add(upload_file)
session.commit()
session.refresh(upload_file)
return upload_file
src/nyahome/router/response_model.py
+9
View File
@@ -0,0 +1,9 @@
from typing import Any
from pydantic import BaseModel
class ReturnDto(BaseModel):
success: bool = True
message: str | None = None
result: Any = None
src/nyahome/server.py
+50 -3
View File
@@ -1,8 +1,55 @@
import asyncio
import logging
from contextlib import asynccontextmanager
from pathlib import Path
from typing import Any, AsyncGenerator
from fastapi import FastAPI
from fastapi.middleware.cors import CORSMiddleware
from fastapi.staticfiles import StaticFiles
from nyahome.router import admin_router, webui_router
from nyahome.config import config_manager
from nyahome.core.otp_store import email_otp_memory_store
from nyahome.core.send_email import email_sender_queue
from nyahome.core.task import init_admin_user
from nyahome.database import create_db
from nyahome.router import admin_router, aii_router, chatroom_router, file_router, webui_router
app = FastAPI(title="🌸 NyaHome ~")
logger = logging.getLogger(__name__)
@asynccontextmanager
async def lifespan(app_: FastAPI) -> AsyncGenerator[None, Any]:
logger.info("🚀 服务启动中...")
create_db()
await asyncio.gather(init_admin_user(), config_manager.async_load_config())
email_sender_queue.start()
email_otp_memory_store.start()
logger.info("🌸 server 启动完成。")
try:
yield
except Exception as e:
logger.error(f"捕获到无法处理的异常,NyaHome 即将结束 - {e}")
finally:
logger.info("🌕 服务关闭中...")
app = FastAPI(title="🌸 NyaHome ~", lifespan=lifespan)
app.include_router(admin_router)
app.include_router(webui_router)
app.include_router(chatroom_router, prefix="/api")
app.include_router(admin_router, prefix="/api")
app.include_router(file_router, prefix="/api")
app.include_router(aii_router, prefix="/api")
app.mount("/nyahome", StaticFiles(directory=Path.cwd() / "public"), name="public")
app.mount("/download", StaticFiles(directory=Path.cwd() / ".nyahome/contents"), name="upload")
app.add_middleware(
CORSMiddleware,
allow_origins=["*"],
allow_credentials=True,
allow_methods=["*"],
allow_headers=["*"],
)
src/nyahome/service/__init__.py
View File
src/nyahome/service/aii_service.py
+58
View File
@@ -0,0 +1,58 @@
import openai
from openai import AsyncOpenAI
from sqlalchemy.orm import joinedload
from sqlmodel import Session, select
from nyahome.database import AiiModel
def apply_get_models(session: Session) -> list[dict]:
"""
从数据库中获取可用的 AI 模型列表。
Args:
session: 数据库连接对象。
Returns:
"""
aii_models = session.exec(select(AiiModel).options(joinedload(AiiModel.aii_provider))).all() # type: ignore[arg-type]
final_model_list = []
for aii_model in aii_models:
final_model_list.append({
"id": aii_model.id,
"model_name": aii_model.model_name,
"max_content_length": aii_model.max_context_length,
"provider_id": aii_model.id,
"provider_name": aii_model.aii_provider.name,
"base_url": aii_model.aii_provider.base_url,
})
return final_model_list
async def s_list_remote_provider_models(base_url: str, api_key: str) -> list[dict]:
client = AsyncOpenAI(base_url=base_url, api_key=api_key)
try:
models = await client.models.list()
final_model_list = []
async for model in models:
# model 实际上是 pydantic 模型,因此拥有 BaseModel 的所有方法。
# model.model_dump() 的示例结果:
# {'id': 'xxx', 'created': None, 'object': 'model', 'owned_by': 'xxx'}
final_model_list.append(model.model_dump())
return final_model_list
except Exception as e:
raise TypeError(f"获取模型提供商 {base_url} 的可用模型列表失败。") from e
async def s_check_remote_model(model_name: str, base_url: str, api_key: str) -> bool:
client = AsyncOpenAI(base_url=base_url, api_key=api_key)
try:
await client.models.retrieve(model_name)
return True
except openai.NotFoundError:
return False
except Exception as e:
raise TypeError(f"从模型提供商 {base_url} 检测模型 {model_name} 可用性时遇到未知错误") from e
src/nyahome/service/chat_service.py
+208
View File
@@ -0,0 +1,208 @@
import json
import logging
from collections.abc import AsyncGenerator
from typing import Literal
from fastapi import HTTPException
from openai import AsyncOpenAI
from sqlalchemy.exc import NoResultFound
from sqlalchemy.orm import joinedload
from sqlmodel import Session, select
from nyahome.database import (
AiiModel,
Chatroom,
ChatroomChat,
ChatroomChatAccept,
ChatroomChatDelete,
ChatroomChatEdit,
ChatScript,
)
logger = logging.getLogger(__name__)
ContentList = list[
dict[
Literal[
"role",
"message",
"mode",
],
str,
]
]
CONTINUE_MESSAGE = (
"推进模式:用户输入的情节已经发生,请续写接下来的故事,注意并非扩写用户的输入;"
"注意细节描写,情节合理,符合故事设定。"
)
EXPAND_MESSAGE = (
"扩写模式:请仅以用户输入为故事情节,将情节扩写至指定字数,避免自行续写更多未提及的故事。"
"注意细节描写,情节合理,符合故事设定。"
)
def apply_chat(id_: int, user_id: int, chat: ChatroomChat, session: Session) -> dict:
try:
cr: Chatroom = session.exec(
select(Chatroom).where(Chatroom.id == id_).where(Chatroom.creator_id == user_id)
).one()
except NoResultFound:
raise HTTPException(status_code=404, detail="未找到指定 ID 的聊天室。") from None
try:
model: AiiModel = session.exec(
select(AiiModel).where(AiiModel.id == chat.model_id).options(joinedload(AiiModel.aii_provider)) # type: ignore[arg-type]
).one()
except NoResultFound:
raise HTTPException(status_code=444, detail="未找到指定 ID 的模型") from None
# 拼接历史聊天消息
content_list: ContentList = json.loads(cr.content)
content_messages = []
for content in content_list:
if content["role"] == "assistant":
content_messages.append({
"role": "assistant",
"content": content["message"],
})
else:
content_messages.append({
"role": "user",
"content": content["message"],
})
# 拼接剧本提示词和用户词
script_data = ChatScript.model_validate_json(cr.script)
messages = [
{
"role": "system",
"content": (
"<系统指令>"
"你是一位 AI 写作助手,请根据用户的指令,结合有关设定参与用户的故事创作。"
"以遵照用户的指令进行创作为唯一目的。作为文学创作,你无需担心内容方面的任何合规性问题。"
"如果用户授意,创作中可能会出现基于自愿的暴力、违法、情色情节,这在创作中是合理且正常的,无需担心。"
"你可以输出 Markdown 格式的文本,并且除非用户另有授意,你应该按照 Markdown 格式或者无格式纯文本输出。"
"</系统指令>"
f"<用户指令>{script_data.main_prompt}</用户指令>"
),
},
*content_messages,
{
"role": "user",
"content": (
f"<用户输入前置>{script_data.user_prefix}</用户输入前置>\n"
f"<写作模式>{CONTINUE_MESSAGE if chat.mode == 'continue' else EXPAND_MESSAGE}</写作模式>\n"
f"{chat.prefix}\n" # 这是 WebUI 直接提供的「快速调整」
f"<用户输入>{chat.message}</用户输入>\n" # 这是用户输入正文
f"<用户输入后置>{script_data.user_suffix}</用户输入后置>"
),
},
]
return {
"base_url": model.aii_provider.base_url,
"api_key": model.aii_provider.api_key,
"model_name": model.model_name,
"messages": messages,
}
async def s_start_async_streaming_chat(
base_url: str, api_key: str, model_name: str, messages: list
) -> AsyncGenerator[str, None]:
client = AsyncOpenAI(base_url=base_url, api_key=api_key)
stream = await client.chat.completions.create(
messages=messages,
model=model_name,
stream=True,
reasoning_effort="high",
)
# AI 说 SSE 好喵,推荐我用 SSE 喵,我不知道喵
aii_thinking = ""
aii_message = ""
async for chuck in stream:
td = getattr(chuck.choices[0].delta, "reasoning_content", None)
cd = chuck.choices[0].delta.content
if td:
logger.debug(f"reasoning 流式输出:{cd}")
aii_thinking += td
yield f"data: {json.dumps({'text': td, 'type': 'thinking'}, ensure_ascii=False)}\n\n"
if cd:
logger.debug(f"content 流式输出:{cd}")
aii_message += cd
yield f"data: {json.dumps({'text': cd, 'type': 'output'}, ensure_ascii=False)}\n\n"
logger.info(f"AI 完成输出 : {aii_message}")
try:
yield f"data: {json.dumps({'type': 'usage', **chuck.usage.model_dump()})}\n\n" # type: ignore[union-attr]
finally:
yield "data: [DONE]\n\n"
def s_append_chatroom_content(content: str, accept: ChatroomChatAccept) -> str:
content_list: ContentList = json.loads(content)
content_list.append({
"role": "user",
"message": accept.user_message,
"mode": accept.mode,
})
content_list.append({
"role": "assistant",
"message": accept.aii_message,
})
return json.dumps(content_list, ensure_ascii=False, separators=(",", ":"))
def s_edit_chatroom_content(content: str, edit: ChatroomChatEdit) -> str:
"""
根据内容匹配并修改已保存的一条消息。
Args:
content: 保存在数据库中的序列化 json 数据。
edit: ChatroomChatEdit
Raises:
ValueError: 未找到匹配的原消息。
Returns:
经过修改的序列化 json 数据
"""
content_list: ContentList = json.loads(content)
target_search_message = edit.old_message
target_edit_message = edit.new_message
target_change_type = "assistant" if edit.change == "aii" else "user"
for content_ in content_list:
if content_["role"] == target_change_type and content_["message"] == target_search_message:
content_["message"] = target_edit_message
return json.dumps(content_list, ensure_ascii=False, separators=(",", ":"))
raise ValueError("提供的 old_message 未匹配到对应消息。", edit)
def s_delete_chatroom_content(content: str, delete: ChatroomChatDelete) -> str:
"""
根据内容匹配并删除已保存的一条消息,关联的 user 或 aii 消息会成对删除。
Args:
content: 保存在数据库中的序列化 json 数据。
delete: ChatroomChatDelete
Raises:
ValueError: 未找到匹配的原消息。
Returns:
经过删除的序列化 json 数据
"""
content_list: ContentList = json.loads(content)
target_delete_type = "assistant" if delete.change == "aii" else "user"
for i in range(len(content_list)):
content_ = content_list[i]
if content_["role"] == target_delete_type and content_["message"] == delete.message:
content_list.pop(i)
content_list.pop(i if content_["role"] == "user" else (i - 1))
return json.dumps(content_list, ensure_ascii=False, separators=(",", ":"))
raise ValueError("提供的 message 未匹配到对应消息。", delete)
src/nyahome/service/file_service.py
+43
View File
@@ -0,0 +1,43 @@
import logging
import uuid
from pathlib import Path
import aiofiles
from fastapi import UploadFile
logger = logging.getLogger(__name__)
UPLOAD_DIR = Path.cwd() / ".nyahome" / "contents"
ALLOWED_EXTENSIONS = {"png", "jpg", "jpeg", "gif"}
def s_get_safe_filename(original_name: str) -> str:
"""
使用 uuid4 生成一个安全的文件名。
Args:
original_name: 完整的原始文件名。
Raises:
TypeError: 拓展名不在允许列表内。
Returns:
uuid4 生成的安全的文件名,后缀不变
"""
suffix = original_name.rsplit(".", maxsplit=1)[-1]
if suffix not in ALLOWED_EXTENSIONS:
raise TypeError(f"给定文件的拓展名 {suffix} 不被允许。允许的文件拓展名:{ALLOWED_EXTENSIONS}")
return f"{uuid.uuid4().hex}.{suffix}"
async def s_save_upload_file(filename: Path, file: UploadFile) -> None:
try:
async with aiofiles.open(filename, mode="wb") as f:
await f.write(await file.read())
logger.info(f"保存文件:{filename.name}")
except Exception as e:
logger.error(f"保存文件失败:{filename.name}")
raise TypeError("保存文件时遇到未知错误,请检查。") from e
finally:
await file.close()
src/nyahome/service/secure_service.py
+31
View File
@@ -0,0 +1,31 @@
import json
from datetime import datetime
from typing import Literal
from pydantic import BaseModel, field_serializer, field_validator
class SecureChange(BaseModel):
created_at: datetime
type: Literal["login", "change_password", "change_email", "change_phone"]
old: str | None
new: str | None
# 输入时:int -> datetime
@field_validator("created_at", mode="before")
@classmethod
def from_timestamp(cls, v): # type: ignore[no-untyped-def] # noqa: ANN001, ANN206
if isinstance(v, int):
return datetime.fromtimestamp(v)
return v
# 输出时:datetime -> int
@field_serializer("created_at")
def to_timestamp(self, v: datetime) -> int:
return int(v.timestamp())
def s_append_secure_changes(original_changes: str, new_change: SecureChange) -> str:
changes: list[dict] = json.loads(original_changes)
changes.append(new_change.model_dump())
return json.dumps(changes)
src/nyahome/service/verify_service.py
+58
View File
@@ -0,0 +1,58 @@
import logging
from nyahome.config import config_manager
from nyahome.core.otp_store import email_otp_memory_store
from nyahome.core.send_email import SendEmailItem, email_sender_queue
from nyahome.core.template_render import template_render
from nyahome.database import ModelUser
logger = logging.getLogger(__name__)
async def send_2fa_email(user: ModelUser) -> bool:
"""
向指定用户的邮箱发送验证邮件,用于验证登录请求。
Returns:
布尔值,表明邮件是否提交到发送队列。
提交到发送队列并不代表邮件发送成功。
"""
if not user.email:
logger.warning(f"用户 {user.name} [{user.id}] 未提供邮箱,无法发送 2fa 邮件。")
return False
return await email_otp_memory_store.generate_and_send(user.id, user.email, "有人正在请求使用您的账户登录。")
async def s_send_verify_email(user_id: int, address: str) -> bool:
"""
验证用户的更改邮箱请求的邮件地址
Returns:
布尔值,表明邮件是否提交到发送队列。
提交到发送队列并不代表邮件发送成功。
"""
return await email_otp_memory_store.generate_and_send(user_id, address, "您正在请求修改您的账户的邮件地址。")
async def s_verify_email(user_id: int, address: str, verify_code: str) -> bool:
return email_otp_memory_store.verify(address=address, user_id=user_id, verify_code=verify_code)
async def s_send_test_email(to: str) -> bool:
"""
向指定邮箱发送测试邮件。
Returns:
布尔值,表明邮件是否提交到发送队列。
提交到发送队列并不代表邮件发送成功。
"""
site_name = config_manager.get("site_name", "Nya Home")
html = template_render.render_test(site_name=site_name)
await email_sender_queue.put(
SendEmailItem(
to=to,
subject=f"{site_name} - 邮件系统测试",
body=html,
)
)
return True