mirror of
https://github.com/Significant-Gravitas/AutoGPT.git
synced 2026-04-08 03:00:28 -04:00
28b26dde94
## Summary
- When users hit their daily CoPilot token limit, they can now spend
credits ($2.00 default) to reset it and continue working
- Adds a dialog prompt when rate limit error occurs, offering the
credit-based reset option
- Adds a "Reset daily limit" button in the usage limits panel when the
daily limit is reached
- Backend: new `POST /api/chat/usage/reset` endpoint,
`reset_daily_usage()` Redis helper, `rate_limit_reset_cost` config
- Frontend: `RateLimitResetDialog` component, updated
`UsagePanelContent` with reset button, `useCopilotStream` exposes rate
limit state
- **NEW: Resetting the daily limit also reduces weekly usage by the
daily limit amount**, effectively granting 1 extra day's worth of weekly
capacity (e.g., daily_limit=10000 → weekly usage reduced by 10000,
clamped to 0)
## Context
Users have been confused about having credits available but being
blocked by rate limits (REQ-63, REQ-61). This provides a short-term
solution allowing users to spend credits to bypass their daily limit.
The weekly usage reduction ensures that a paid daily reset doesn't just
move the bottleneck to the weekly limit — users get genuine additional
capacity for the day they paid to unlock.
### Checklist 📋
#### For code changes:
- [x] I have clearly listed my changes in the PR description
- [x] I have made a test plan
- [x] I have tested my changes according to the test plan:
- [x] Hit daily rate limit → dialog appears with reset option
- [x] Click "Reset for $2.00" → credits charged, daily counter reset,
dialog closes
- [x] Usage panel shows "Reset daily limit" button when at 100% daily
usage
- [x] When `rate_limit_reset_cost=0` (disabled), rate limit shows toast
instead of dialog
- [x] Insufficient credits → error toast shown
- [x] Verify existing rate limit tests pass
- [x] Unit tests: weekly counter reduced by daily_limit on reset
- [x] Unit tests: weekly counter clamped to 0 when usage < daily_limit
- [x] Unit tests: no weekly reduction when daily_token_limit=0
#### For configuration changes:
- [x] `.env.default` is updated or already compatible with my changes
(new config fields `rate_limit_reset_cost` and `max_daily_resets` have
defaults in code)
- [x] `docker-compose.yml` is updated or already compatible with my
changes (no Docker changes needed)
1225 lines
41 KiB
Python
1225 lines
41 KiB
Python
"""Chat API routes for chat session management and streaming via SSE."""
|
|
|
|
import asyncio
|
|
import logging
|
|
import re
|
|
from collections.abc import AsyncGenerator
|
|
from typing import Annotated
|
|
from uuid import uuid4
|
|
|
|
from autogpt_libs import auth
|
|
from fastapi import APIRouter, HTTPException, Query, Response, Security
|
|
from fastapi.responses import StreamingResponse
|
|
from prisma.models import UserWorkspaceFile
|
|
from pydantic import BaseModel, Field, field_validator
|
|
|
|
from backend.copilot import service as chat_service
|
|
from backend.copilot import stream_registry
|
|
from backend.copilot.config import ChatConfig
|
|
from backend.copilot.executor.utils import enqueue_cancel_task, enqueue_copilot_turn
|
|
from backend.copilot.model import (
|
|
ChatMessage,
|
|
ChatSession,
|
|
append_and_save_message,
|
|
create_chat_session,
|
|
delete_chat_session,
|
|
get_chat_session,
|
|
get_user_sessions,
|
|
update_session_title,
|
|
)
|
|
from backend.copilot.rate_limit import (
|
|
CoPilotUsageStatus,
|
|
RateLimitExceeded,
|
|
acquire_reset_lock,
|
|
check_rate_limit,
|
|
get_daily_reset_count,
|
|
get_global_rate_limits,
|
|
get_usage_status,
|
|
increment_daily_reset_count,
|
|
release_reset_lock,
|
|
reset_daily_usage,
|
|
)
|
|
from backend.copilot.response_model import StreamError, StreamFinish, StreamHeartbeat
|
|
from backend.copilot.tools.e2b_sandbox import kill_sandbox
|
|
from backend.copilot.tools.models import (
|
|
AgentDetailsResponse,
|
|
AgentOutputResponse,
|
|
AgentPreviewResponse,
|
|
AgentSavedResponse,
|
|
AgentsFoundResponse,
|
|
BlockDetailsResponse,
|
|
BlockListResponse,
|
|
BlockOutputResponse,
|
|
ClarificationNeededResponse,
|
|
DocPageResponse,
|
|
DocSearchResultsResponse,
|
|
ErrorResponse,
|
|
ExecutionStartedResponse,
|
|
InputValidationErrorResponse,
|
|
MCPToolOutputResponse,
|
|
MCPToolsDiscoveredResponse,
|
|
NeedLoginResponse,
|
|
NoResultsResponse,
|
|
SetupRequirementsResponse,
|
|
SuggestedGoalResponse,
|
|
UnderstandingUpdatedResponse,
|
|
)
|
|
from backend.copilot.tracking import track_user_message
|
|
from backend.data.credit import UsageTransactionMetadata, get_user_credit_model
|
|
from backend.data.redis_client import get_redis_async
|
|
from backend.data.understanding import get_business_understanding
|
|
from backend.data.workspace import get_or_create_workspace
|
|
from backend.util.exceptions import InsufficientBalanceError, NotFoundError
|
|
from backend.util.settings import Settings
|
|
|
|
settings = Settings()
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
config = ChatConfig()
|
|
|
|
_UUID_RE = re.compile(
|
|
r"^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$", re.I
|
|
)
|
|
|
|
|
|
async def _validate_and_get_session(
|
|
session_id: str,
|
|
user_id: str | None,
|
|
) -> ChatSession:
|
|
"""Validate session exists and belongs to user."""
|
|
session = await get_chat_session(session_id, user_id)
|
|
if not session:
|
|
raise NotFoundError(f"Session {session_id} not found.")
|
|
return session
|
|
|
|
|
|
router = APIRouter(
|
|
tags=["chat"],
|
|
)
|
|
|
|
# ========== Request/Response Models ==========
|
|
|
|
|
|
class StreamChatRequest(BaseModel):
|
|
"""Request model for streaming chat with optional context."""
|
|
|
|
message: str
|
|
is_user_message: bool = True
|
|
context: dict[str, str] | None = None # {url: str, content: str}
|
|
file_ids: list[str] | None = Field(
|
|
default=None, max_length=20
|
|
) # Workspace file IDs attached to this message
|
|
|
|
|
|
class CreateSessionResponse(BaseModel):
|
|
"""Response model containing information on a newly created chat session."""
|
|
|
|
id: str
|
|
created_at: str
|
|
user_id: str | None
|
|
|
|
|
|
class ActiveStreamInfo(BaseModel):
|
|
"""Information about an active stream for reconnection."""
|
|
|
|
turn_id: str
|
|
last_message_id: str # Redis Stream message ID for resumption
|
|
|
|
|
|
class SessionDetailResponse(BaseModel):
|
|
"""Response model providing complete details for a chat session, including messages."""
|
|
|
|
id: str
|
|
created_at: str
|
|
updated_at: str
|
|
user_id: str | None
|
|
messages: list[dict]
|
|
active_stream: ActiveStreamInfo | None = None # Present if stream is still active
|
|
total_prompt_tokens: int = 0
|
|
total_completion_tokens: int = 0
|
|
|
|
|
|
class SessionSummaryResponse(BaseModel):
|
|
"""Response model for a session summary (without messages)."""
|
|
|
|
id: str
|
|
created_at: str
|
|
updated_at: str
|
|
title: str | None = None
|
|
is_processing: bool
|
|
|
|
|
|
class ListSessionsResponse(BaseModel):
|
|
"""Response model for listing chat sessions."""
|
|
|
|
sessions: list[SessionSummaryResponse]
|
|
total: int
|
|
|
|
|
|
class CancelSessionResponse(BaseModel):
|
|
"""Response model for the cancel session endpoint."""
|
|
|
|
cancelled: bool
|
|
reason: str | None = None
|
|
|
|
|
|
class UpdateSessionTitleRequest(BaseModel):
|
|
"""Request model for updating a session's title."""
|
|
|
|
title: str
|
|
|
|
@field_validator("title")
|
|
@classmethod
|
|
def title_must_not_be_blank(cls, v: str) -> str:
|
|
stripped = v.strip()
|
|
if not stripped:
|
|
raise ValueError("Title must not be blank")
|
|
return stripped
|
|
|
|
|
|
# ========== Routes ==========
|
|
|
|
|
|
@router.get(
|
|
"/sessions",
|
|
dependencies=[Security(auth.requires_user)],
|
|
)
|
|
async def list_sessions(
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
limit: int = Query(default=50, ge=1, le=100),
|
|
offset: int = Query(default=0, ge=0),
|
|
) -> ListSessionsResponse:
|
|
"""
|
|
List chat sessions for the authenticated user.
|
|
|
|
Returns a paginated list of chat sessions belonging to the current user,
|
|
ordered by most recently updated.
|
|
|
|
Args:
|
|
user_id: The authenticated user's ID.
|
|
limit: Maximum number of sessions to return (1-100).
|
|
offset: Number of sessions to skip for pagination.
|
|
|
|
Returns:
|
|
ListSessionsResponse: List of session summaries and total count.
|
|
"""
|
|
sessions, total_count = await get_user_sessions(user_id, limit, offset)
|
|
|
|
# Batch-check Redis for active stream status on each session
|
|
processing_set: set[str] = set()
|
|
if sessions:
|
|
try:
|
|
redis = await get_redis_async()
|
|
pipe = redis.pipeline(transaction=False)
|
|
for session in sessions:
|
|
pipe.hget(
|
|
f"{config.session_meta_prefix}{session.session_id}",
|
|
"status",
|
|
)
|
|
statuses = await pipe.execute()
|
|
processing_set = {
|
|
session.session_id
|
|
for session, st in zip(sessions, statuses)
|
|
if st == "running"
|
|
}
|
|
except Exception:
|
|
logger.warning(
|
|
"Failed to fetch processing status from Redis; defaulting to empty"
|
|
)
|
|
|
|
return ListSessionsResponse(
|
|
sessions=[
|
|
SessionSummaryResponse(
|
|
id=session.session_id,
|
|
created_at=session.started_at.isoformat(),
|
|
updated_at=session.updated_at.isoformat(),
|
|
title=session.title,
|
|
is_processing=session.session_id in processing_set,
|
|
)
|
|
for session in sessions
|
|
],
|
|
total=total_count,
|
|
)
|
|
|
|
|
|
@router.post(
|
|
"/sessions",
|
|
)
|
|
async def create_session(
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> CreateSessionResponse:
|
|
"""
|
|
Create a new chat session.
|
|
|
|
Initiates a new chat session for the authenticated user.
|
|
|
|
Args:
|
|
user_id: The authenticated user ID parsed from the JWT (required).
|
|
|
|
Returns:
|
|
CreateSessionResponse: Details of the created session.
|
|
|
|
"""
|
|
logger.info(
|
|
f"Creating session with user_id: "
|
|
f"...{user_id[-8:] if len(user_id) > 8 else '<redacted>'}"
|
|
)
|
|
|
|
session = await create_chat_session(user_id)
|
|
|
|
return CreateSessionResponse(
|
|
id=session.session_id,
|
|
created_at=session.started_at.isoformat(),
|
|
user_id=session.user_id,
|
|
)
|
|
|
|
|
|
@router.delete(
|
|
"/sessions/{session_id}",
|
|
dependencies=[Security(auth.requires_user)],
|
|
status_code=204,
|
|
responses={404: {"description": "Session not found or access denied"}},
|
|
)
|
|
async def delete_session(
|
|
session_id: str,
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> Response:
|
|
"""
|
|
Delete a chat session.
|
|
|
|
Permanently removes a chat session and all its messages.
|
|
Only the owner can delete their sessions.
|
|
|
|
Args:
|
|
session_id: The session ID to delete.
|
|
user_id: The authenticated user's ID.
|
|
|
|
Returns:
|
|
204 No Content on success.
|
|
|
|
Raises:
|
|
HTTPException: 404 if session not found or not owned by user.
|
|
"""
|
|
deleted = await delete_chat_session(session_id, user_id)
|
|
|
|
if not deleted:
|
|
raise HTTPException(
|
|
status_code=404,
|
|
detail=f"Session {session_id} not found or access denied",
|
|
)
|
|
|
|
# Best-effort cleanup of the E2B sandbox (if any).
|
|
# sandbox_id is in Redis; kill_sandbox() fetches it from there.
|
|
e2b_cfg = ChatConfig()
|
|
if e2b_cfg.e2b_active:
|
|
assert e2b_cfg.e2b_api_key # guaranteed by e2b_active check
|
|
try:
|
|
await kill_sandbox(session_id, e2b_cfg.e2b_api_key)
|
|
except Exception:
|
|
logger.warning(
|
|
"[E2B] Failed to kill sandbox for session %s", session_id[:12]
|
|
)
|
|
|
|
return Response(status_code=204)
|
|
|
|
|
|
@router.patch(
|
|
"/sessions/{session_id}/title",
|
|
summary="Update session title",
|
|
dependencies=[Security(auth.requires_user)],
|
|
status_code=200,
|
|
responses={404: {"description": "Session not found or access denied"}},
|
|
)
|
|
async def update_session_title_route(
|
|
session_id: str,
|
|
request: UpdateSessionTitleRequest,
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> dict:
|
|
"""
|
|
Update the title of a chat session.
|
|
|
|
Allows the user to rename their chat session.
|
|
|
|
Args:
|
|
session_id: The session ID to update.
|
|
request: Request body containing the new title.
|
|
user_id: The authenticated user's ID.
|
|
|
|
Returns:
|
|
dict: Status of the update.
|
|
|
|
Raises:
|
|
HTTPException: 404 if session not found or not owned by user.
|
|
"""
|
|
success = await update_session_title(session_id, user_id, request.title)
|
|
if not success:
|
|
raise HTTPException(
|
|
status_code=404,
|
|
detail=f"Session {session_id} not found or access denied",
|
|
)
|
|
return {"status": "ok"}
|
|
|
|
|
|
@router.get(
|
|
"/sessions/{session_id}",
|
|
)
|
|
async def get_session(
|
|
session_id: str,
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> SessionDetailResponse:
|
|
"""
|
|
Retrieve the details of a specific chat session.
|
|
|
|
Looks up a chat session by ID for the given user (if authenticated) and returns all session data including messages.
|
|
If there's an active stream for this session, returns active_stream info for reconnection.
|
|
|
|
Args:
|
|
session_id: The unique identifier for the desired chat session.
|
|
user_id: The optional authenticated user ID, or None for anonymous access.
|
|
|
|
Returns:
|
|
SessionDetailResponse: Details for the requested session, including active_stream info if applicable.
|
|
|
|
"""
|
|
session = await get_chat_session(session_id, user_id)
|
|
if not session:
|
|
raise NotFoundError(f"Session {session_id} not found.")
|
|
|
|
messages = [message.model_dump() for message in session.messages]
|
|
|
|
# Check if there's an active stream for this session
|
|
active_stream_info = None
|
|
active_session, last_message_id = await stream_registry.get_active_session(
|
|
session_id, user_id
|
|
)
|
|
logger.info(
|
|
f"[GET_SESSION] session={session_id}, active_session={active_session is not None}, "
|
|
f"msg_count={len(messages)}, last_role={messages[-1].get('role') if messages else 'none'}"
|
|
)
|
|
if active_session:
|
|
# Keep the assistant message (including tool_calls) so the frontend can
|
|
# render the correct tool UI (e.g. CreateAgent with mini game).
|
|
# convertChatSessionToUiMessages handles isComplete=false by setting
|
|
# tool parts without output to state "input-available".
|
|
active_stream_info = ActiveStreamInfo(
|
|
turn_id=active_session.turn_id,
|
|
last_message_id=last_message_id,
|
|
)
|
|
|
|
# Sum token usage from session
|
|
total_prompt = sum(u.prompt_tokens for u in session.usage)
|
|
total_completion = sum(u.completion_tokens for u in session.usage)
|
|
|
|
return SessionDetailResponse(
|
|
id=session.session_id,
|
|
created_at=session.started_at.isoformat(),
|
|
updated_at=session.updated_at.isoformat(),
|
|
user_id=session.user_id or None,
|
|
messages=messages,
|
|
active_stream=active_stream_info,
|
|
total_prompt_tokens=total_prompt,
|
|
total_completion_tokens=total_completion,
|
|
)
|
|
|
|
|
|
@router.get(
|
|
"/usage",
|
|
)
|
|
async def get_copilot_usage(
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> CoPilotUsageStatus:
|
|
"""Get CoPilot usage status for the authenticated user.
|
|
|
|
Returns current token usage vs limits for daily and weekly windows.
|
|
Global defaults sourced from LaunchDarkly (falling back to config).
|
|
"""
|
|
daily_limit, weekly_limit = await get_global_rate_limits(
|
|
user_id, config.daily_token_limit, config.weekly_token_limit
|
|
)
|
|
return await get_usage_status(
|
|
user_id=user_id,
|
|
daily_token_limit=daily_limit,
|
|
weekly_token_limit=weekly_limit,
|
|
rate_limit_reset_cost=config.rate_limit_reset_cost,
|
|
)
|
|
|
|
|
|
class RateLimitResetResponse(BaseModel):
|
|
"""Response from resetting the daily rate limit."""
|
|
|
|
success: bool
|
|
credits_charged: int = Field(description="Credits charged (in cents)")
|
|
remaining_balance: int = Field(description="Credit balance after charge (in cents)")
|
|
usage: CoPilotUsageStatus = Field(description="Updated usage status after reset")
|
|
|
|
|
|
@router.post(
|
|
"/usage/reset",
|
|
status_code=200,
|
|
responses={
|
|
400: {
|
|
"description": "Bad Request (feature disabled or daily limit not reached)"
|
|
},
|
|
402: {"description": "Payment Required (insufficient credits)"},
|
|
429: {
|
|
"description": "Too Many Requests (max daily resets exceeded or reset in progress)"
|
|
},
|
|
503: {
|
|
"description": "Service Unavailable (Redis reset failed; credits refunded or support needed)"
|
|
},
|
|
},
|
|
)
|
|
async def reset_copilot_usage(
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> RateLimitResetResponse:
|
|
"""Reset the daily CoPilot rate limit by spending credits.
|
|
|
|
Allows users who have hit their daily token limit to spend credits
|
|
to reset their daily usage counter and continue working.
|
|
Returns 400 if the feature is disabled or the user is not over the limit.
|
|
Returns 402 if the user has insufficient credits.
|
|
"""
|
|
cost = config.rate_limit_reset_cost
|
|
if cost <= 0:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="Rate limit reset is not available.",
|
|
)
|
|
|
|
if not settings.config.enable_credit:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="Rate limit reset is not available (credit system is disabled).",
|
|
)
|
|
|
|
daily_limit, weekly_limit = await get_global_rate_limits(
|
|
user_id, config.daily_token_limit, config.weekly_token_limit
|
|
)
|
|
|
|
if daily_limit <= 0:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="No daily limit is configured — nothing to reset.",
|
|
)
|
|
|
|
# Check max daily resets. get_daily_reset_count returns None when Redis
|
|
# is unavailable; reject the reset in that case to prevent unlimited
|
|
# free resets when the counter store is down.
|
|
reset_count = await get_daily_reset_count(user_id)
|
|
if reset_count is None:
|
|
raise HTTPException(
|
|
status_code=503,
|
|
detail="Unable to verify reset eligibility — please try again later.",
|
|
)
|
|
if config.max_daily_resets > 0 and reset_count >= config.max_daily_resets:
|
|
raise HTTPException(
|
|
status_code=429,
|
|
detail=f"You've used all {config.max_daily_resets} resets for today.",
|
|
)
|
|
|
|
# Acquire a per-user lock to prevent TOCTOU races (concurrent resets).
|
|
if not await acquire_reset_lock(user_id):
|
|
raise HTTPException(
|
|
status_code=429,
|
|
detail="A reset is already in progress. Please try again.",
|
|
)
|
|
|
|
try:
|
|
# Verify the user is actually at or over their daily limit.
|
|
usage_status = await get_usage_status(
|
|
user_id=user_id,
|
|
daily_token_limit=daily_limit,
|
|
weekly_token_limit=weekly_limit,
|
|
)
|
|
if daily_limit > 0 and usage_status.daily.used < daily_limit:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="You have not reached your daily limit yet.",
|
|
)
|
|
|
|
# If the weekly limit is also exhausted, resetting the daily counter
|
|
# won't help — the user would still be blocked by the weekly limit.
|
|
if weekly_limit > 0 and usage_status.weekly.used >= weekly_limit:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="Your weekly limit is also reached. Resetting the daily limit won't help.",
|
|
)
|
|
|
|
# Charge credits.
|
|
credit_model = await get_user_credit_model(user_id)
|
|
try:
|
|
remaining = await credit_model.spend_credits(
|
|
user_id=user_id,
|
|
cost=cost,
|
|
metadata=UsageTransactionMetadata(
|
|
reason="CoPilot daily rate limit reset",
|
|
),
|
|
)
|
|
except InsufficientBalanceError as e:
|
|
raise HTTPException(
|
|
status_code=402,
|
|
detail="Insufficient credits to reset your rate limit.",
|
|
) from e
|
|
|
|
# Reset daily usage in Redis. If this fails, refund the credits
|
|
# so the user is not charged for a service they did not receive.
|
|
if not await reset_daily_usage(user_id, daily_token_limit=daily_limit):
|
|
# Compensate: refund the charged credits.
|
|
refunded = False
|
|
try:
|
|
await credit_model.top_up_credits(user_id, cost)
|
|
refunded = True
|
|
logger.warning(
|
|
"Refunded %d credits to user %s after Redis reset failure",
|
|
cost,
|
|
user_id[:8],
|
|
)
|
|
except Exception:
|
|
logger.error(
|
|
"CRITICAL: Failed to refund %d credits to user %s "
|
|
"after Redis reset failure — manual intervention required",
|
|
cost,
|
|
user_id[:8],
|
|
exc_info=True,
|
|
)
|
|
if refunded:
|
|
raise HTTPException(
|
|
status_code=503,
|
|
detail="Rate limit reset failed — please try again later. "
|
|
"Your credits have not been charged.",
|
|
)
|
|
raise HTTPException(
|
|
status_code=503,
|
|
detail="Rate limit reset failed and the automatic refund "
|
|
"also failed. Please contact support for assistance.",
|
|
)
|
|
|
|
# Track the reset count for daily cap enforcement.
|
|
await increment_daily_reset_count(user_id)
|
|
finally:
|
|
await release_reset_lock(user_id)
|
|
|
|
# Return updated usage status.
|
|
updated_usage = await get_usage_status(
|
|
user_id=user_id,
|
|
daily_token_limit=daily_limit,
|
|
weekly_token_limit=weekly_limit,
|
|
rate_limit_reset_cost=config.rate_limit_reset_cost,
|
|
)
|
|
|
|
return RateLimitResetResponse(
|
|
success=True,
|
|
credits_charged=cost,
|
|
remaining_balance=remaining,
|
|
usage=updated_usage,
|
|
)
|
|
|
|
|
|
@router.post(
|
|
"/sessions/{session_id}/cancel",
|
|
status_code=200,
|
|
)
|
|
async def cancel_session_task(
|
|
session_id: str,
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> CancelSessionResponse:
|
|
"""Cancel the active streaming task for a session.
|
|
|
|
Publishes a cancel event to the executor via RabbitMQ FANOUT, then
|
|
polls Redis until the task status flips from ``running`` or a timeout
|
|
(5 s) is reached. Returns only after the cancellation is confirmed.
|
|
"""
|
|
await _validate_and_get_session(session_id, user_id)
|
|
|
|
active_session, _ = await stream_registry.get_active_session(session_id, user_id)
|
|
if not active_session:
|
|
return CancelSessionResponse(cancelled=True, reason="no_active_session")
|
|
|
|
await enqueue_cancel_task(session_id)
|
|
logger.info(f"[CANCEL] Published cancel for session ...{session_id[-8:]}")
|
|
|
|
# Poll until the executor confirms the task is no longer running.
|
|
poll_interval = 0.5
|
|
max_wait = 5.0
|
|
waited = 0.0
|
|
while waited < max_wait:
|
|
await asyncio.sleep(poll_interval)
|
|
waited += poll_interval
|
|
session_state = await stream_registry.get_session(session_id)
|
|
if session_state is None or session_state.status != "running":
|
|
logger.info(
|
|
f"[CANCEL] Session ...{session_id[-8:]} confirmed stopped "
|
|
f"(status={session_state.status if session_state else 'gone'}) after {waited:.1f}s"
|
|
)
|
|
return CancelSessionResponse(cancelled=True)
|
|
|
|
logger.warning(
|
|
f"[CANCEL] Session ...{session_id[-8:]} not confirmed after {max_wait}s, force-completing"
|
|
)
|
|
await stream_registry.mark_session_completed(session_id, error_message="Cancelled")
|
|
return CancelSessionResponse(cancelled=True)
|
|
|
|
|
|
@router.post(
|
|
"/sessions/{session_id}/stream",
|
|
)
|
|
async def stream_chat_post(
|
|
session_id: str,
|
|
request: StreamChatRequest,
|
|
user_id: str = Security(auth.get_user_id),
|
|
):
|
|
"""
|
|
Stream chat responses for a session (POST with context support).
|
|
|
|
Streams the AI/completion responses in real time over Server-Sent Events (SSE), including:
|
|
- Text fragments as they are generated
|
|
- Tool call UI elements (if invoked)
|
|
- Tool execution results
|
|
|
|
The AI generation runs in a background task that continues even if the client disconnects.
|
|
All chunks are written to a per-turn Redis stream for reconnection support. If the client
|
|
disconnects, they can reconnect using GET /sessions/{session_id}/stream to resume.
|
|
|
|
Args:
|
|
session_id: The chat session identifier to associate with the streamed messages.
|
|
request: Request body containing message, is_user_message, and optional context.
|
|
user_id: Authenticated user ID.
|
|
Returns:
|
|
StreamingResponse: SSE-formatted response chunks.
|
|
|
|
"""
|
|
import asyncio
|
|
import time
|
|
|
|
stream_start_time = time.perf_counter()
|
|
log_meta = {"component": "ChatStream", "session_id": session_id, "user_id": user_id}
|
|
|
|
logger.info(
|
|
f"[TIMING] stream_chat_post STARTED, session={session_id}, "
|
|
f"user={user_id}, message_len={len(request.message)}",
|
|
extra={"json_fields": log_meta},
|
|
)
|
|
await _validate_and_get_session(session_id, user_id)
|
|
logger.info(
|
|
f"[TIMING] session validated in {(time.perf_counter() - stream_start_time) * 1000:.1f}ms",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"duration_ms": (time.perf_counter() - stream_start_time) * 1000,
|
|
}
|
|
},
|
|
)
|
|
|
|
# Pre-turn rate limit check (token-based).
|
|
# check_rate_limit short-circuits internally when both limits are 0.
|
|
# Global defaults sourced from LaunchDarkly, falling back to config.
|
|
if user_id:
|
|
try:
|
|
daily_limit, weekly_limit = await get_global_rate_limits(
|
|
user_id, config.daily_token_limit, config.weekly_token_limit
|
|
)
|
|
await check_rate_limit(
|
|
user_id=user_id,
|
|
daily_token_limit=daily_limit,
|
|
weekly_token_limit=weekly_limit,
|
|
)
|
|
except RateLimitExceeded as e:
|
|
raise HTTPException(status_code=429, detail=str(e)) from e
|
|
|
|
# Enrich message with file metadata if file_ids are provided.
|
|
# Also sanitise file_ids so only validated, workspace-scoped IDs are
|
|
# forwarded downstream (e.g. to the executor via enqueue_copilot_turn).
|
|
sanitized_file_ids: list[str] | None = None
|
|
if request.file_ids and user_id:
|
|
# Filter to valid UUIDs only to prevent DB abuse
|
|
valid_ids = [fid for fid in request.file_ids if _UUID_RE.match(fid)]
|
|
|
|
if valid_ids:
|
|
workspace = await get_or_create_workspace(user_id)
|
|
# Batch query instead of N+1
|
|
files = await UserWorkspaceFile.prisma().find_many(
|
|
where={
|
|
"id": {"in": valid_ids},
|
|
"workspaceId": workspace.id,
|
|
"isDeleted": False,
|
|
}
|
|
)
|
|
# Only keep IDs that actually exist in the user's workspace
|
|
sanitized_file_ids = [wf.id for wf in files] or None
|
|
file_lines: list[str] = [
|
|
f"- {wf.name} ({wf.mimeType}, {round(wf.sizeBytes / 1024, 1)} KB), file_id={wf.id}"
|
|
for wf in files
|
|
]
|
|
if file_lines:
|
|
files_block = (
|
|
"\n\n[Attached files]\n"
|
|
+ "\n".join(file_lines)
|
|
+ "\nUse read_workspace_file with the file_id to access file contents."
|
|
)
|
|
request.message += files_block
|
|
|
|
# Atomically append user message to session BEFORE creating task to avoid
|
|
# race condition where GET_SESSION sees task as "running" but message isn't
|
|
# saved yet. append_and_save_message re-fetches inside a lock to prevent
|
|
# message loss from concurrent requests.
|
|
if request.message:
|
|
message = ChatMessage(
|
|
role="user" if request.is_user_message else "assistant",
|
|
content=request.message,
|
|
)
|
|
if request.is_user_message:
|
|
track_user_message(
|
|
user_id=user_id,
|
|
session_id=session_id,
|
|
message_length=len(request.message),
|
|
)
|
|
logger.info(f"[STREAM] Saving user message to session {session_id}")
|
|
await append_and_save_message(session_id, message)
|
|
logger.info(f"[STREAM] User message saved for session {session_id}")
|
|
|
|
# Create a task in the stream registry for reconnection support
|
|
turn_id = str(uuid4())
|
|
log_meta["turn_id"] = turn_id
|
|
|
|
session_create_start = time.perf_counter()
|
|
await stream_registry.create_session(
|
|
session_id=session_id,
|
|
user_id=user_id,
|
|
tool_call_id="chat_stream",
|
|
tool_name="chat",
|
|
turn_id=turn_id,
|
|
)
|
|
logger.info(
|
|
f"[TIMING] create_session completed in {(time.perf_counter() - session_create_start) * 1000:.1f}ms",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"duration_ms": (time.perf_counter() - session_create_start) * 1000,
|
|
}
|
|
},
|
|
)
|
|
|
|
# Per-turn stream is always fresh (unique turn_id), subscribe from beginning
|
|
subscribe_from_id = "0-0"
|
|
|
|
await enqueue_copilot_turn(
|
|
session_id=session_id,
|
|
user_id=user_id,
|
|
message=request.message,
|
|
turn_id=turn_id,
|
|
is_user_message=request.is_user_message,
|
|
context=request.context,
|
|
file_ids=sanitized_file_ids,
|
|
)
|
|
|
|
setup_time = (time.perf_counter() - stream_start_time) * 1000
|
|
logger.info(
|
|
f"[TIMING] Task enqueued to RabbitMQ, setup={setup_time:.1f}ms",
|
|
extra={"json_fields": {**log_meta, "setup_time_ms": setup_time}},
|
|
)
|
|
|
|
# SSE endpoint that subscribes to the task's stream
|
|
async def event_generator() -> AsyncGenerator[str, None]:
|
|
import time as time_module
|
|
|
|
event_gen_start = time_module.perf_counter()
|
|
logger.info(
|
|
f"[TIMING] event_generator STARTED, turn={turn_id}, session={session_id}, "
|
|
f"user={user_id}",
|
|
extra={"json_fields": log_meta},
|
|
)
|
|
subscriber_queue = None
|
|
first_chunk_yielded = False
|
|
chunks_yielded = 0
|
|
try:
|
|
# Subscribe from the position we captured before enqueuing
|
|
# This avoids replaying old messages while catching all new ones
|
|
subscriber_queue = await stream_registry.subscribe_to_session(
|
|
session_id=session_id,
|
|
user_id=user_id,
|
|
last_message_id=subscribe_from_id,
|
|
)
|
|
|
|
if subscriber_queue is None:
|
|
yield StreamFinish().to_sse()
|
|
yield "data: [DONE]\n\n"
|
|
return
|
|
|
|
# Read from the subscriber queue and yield to SSE
|
|
logger.info(
|
|
"[TIMING] Starting to read from subscriber_queue",
|
|
extra={"json_fields": log_meta},
|
|
)
|
|
while True:
|
|
try:
|
|
chunk = await asyncio.wait_for(subscriber_queue.get(), timeout=10.0)
|
|
chunks_yielded += 1
|
|
|
|
if not first_chunk_yielded:
|
|
first_chunk_yielded = True
|
|
elapsed = time_module.perf_counter() - event_gen_start
|
|
logger.info(
|
|
f"[TIMING] FIRST CHUNK from queue at {elapsed:.2f}s, "
|
|
f"type={type(chunk).__name__}",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"chunk_type": type(chunk).__name__,
|
|
"elapsed_ms": elapsed * 1000,
|
|
}
|
|
},
|
|
)
|
|
|
|
yield chunk.to_sse()
|
|
|
|
# Check for finish signal
|
|
if isinstance(chunk, StreamFinish):
|
|
total_time = time_module.perf_counter() - event_gen_start
|
|
logger.info(
|
|
f"[TIMING] StreamFinish received in {total_time:.2f}s; "
|
|
f"n_chunks={chunks_yielded}",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"chunks_yielded": chunks_yielded,
|
|
"total_time_ms": total_time * 1000,
|
|
}
|
|
},
|
|
)
|
|
break
|
|
except asyncio.TimeoutError:
|
|
yield StreamHeartbeat().to_sse()
|
|
|
|
except GeneratorExit:
|
|
logger.info(
|
|
f"[TIMING] GeneratorExit (client disconnected), chunks={chunks_yielded}",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"chunks_yielded": chunks_yielded,
|
|
"reason": "client_disconnect",
|
|
}
|
|
},
|
|
)
|
|
pass # Client disconnected - background task continues
|
|
except Exception as e:
|
|
elapsed = (time_module.perf_counter() - event_gen_start) * 1000
|
|
logger.error(
|
|
f"[TIMING] event_generator ERROR after {elapsed:.1f}ms: {e}",
|
|
extra={
|
|
"json_fields": {**log_meta, "elapsed_ms": elapsed, "error": str(e)}
|
|
},
|
|
)
|
|
# Surface error to frontend so it doesn't appear stuck
|
|
yield StreamError(
|
|
errorText="An error occurred. Please try again.",
|
|
code="stream_error",
|
|
).to_sse()
|
|
yield StreamFinish().to_sse()
|
|
finally:
|
|
# Unsubscribe when client disconnects or stream ends
|
|
if subscriber_queue is not None:
|
|
try:
|
|
await stream_registry.unsubscribe_from_session(
|
|
session_id, subscriber_queue
|
|
)
|
|
except Exception as unsub_err:
|
|
logger.error(
|
|
f"Error unsubscribing from session {session_id}: {unsub_err}",
|
|
exc_info=True,
|
|
)
|
|
# AI SDK protocol termination - always yield even if unsubscribe fails
|
|
total_time = time_module.perf_counter() - event_gen_start
|
|
logger.info(
|
|
f"[TIMING] event_generator FINISHED in {total_time:.2f}s; "
|
|
f"turn={turn_id}, session={session_id}, n_chunks={chunks_yielded}",
|
|
extra={
|
|
"json_fields": {
|
|
**log_meta,
|
|
"total_time_ms": total_time * 1000,
|
|
"chunks_yielded": chunks_yielded,
|
|
}
|
|
},
|
|
)
|
|
yield "data: [DONE]\n\n"
|
|
|
|
return StreamingResponse(
|
|
event_generator(),
|
|
media_type="text/event-stream",
|
|
headers={
|
|
"Cache-Control": "no-cache",
|
|
"Connection": "keep-alive",
|
|
"X-Accel-Buffering": "no", # Disable nginx buffering
|
|
"x-vercel-ai-ui-message-stream": "v1", # AI SDK protocol header
|
|
},
|
|
)
|
|
|
|
|
|
@router.get(
|
|
"/sessions/{session_id}/stream",
|
|
)
|
|
async def resume_session_stream(
|
|
session_id: str,
|
|
user_id: str = Security(auth.get_user_id),
|
|
):
|
|
"""
|
|
Resume an active stream for a session.
|
|
|
|
Called by the AI SDK's ``useChat(resume: true)`` on page load.
|
|
Checks for an active (in-progress) task on the session and either replays
|
|
the full SSE stream or returns 204 No Content if nothing is running.
|
|
|
|
Args:
|
|
session_id: The chat session identifier.
|
|
user_id: Optional authenticated user ID.
|
|
|
|
Returns:
|
|
StreamingResponse (SSE) when an active stream exists,
|
|
or 204 No Content when there is nothing to resume.
|
|
"""
|
|
import asyncio
|
|
|
|
active_session, last_message_id = await stream_registry.get_active_session(
|
|
session_id, user_id
|
|
)
|
|
|
|
if not active_session:
|
|
return Response(status_code=204)
|
|
|
|
# Always replay from the beginning ("0-0") on resume.
|
|
# We can't use last_message_id because it's the latest ID in the backend
|
|
# stream, not the latest the frontend received — the gap causes lost
|
|
# messages. The frontend deduplicates replayed content.
|
|
subscriber_queue = await stream_registry.subscribe_to_session(
|
|
session_id=session_id,
|
|
user_id=user_id,
|
|
last_message_id="0-0",
|
|
)
|
|
|
|
if subscriber_queue is None:
|
|
return Response(status_code=204)
|
|
|
|
async def event_generator() -> AsyncGenerator[str, None]:
|
|
chunk_count = 0
|
|
first_chunk_type: str | None = None
|
|
try:
|
|
while True:
|
|
try:
|
|
chunk = await asyncio.wait_for(subscriber_queue.get(), timeout=10.0)
|
|
if chunk_count < 3:
|
|
logger.info(
|
|
"Resume stream chunk",
|
|
extra={
|
|
"session_id": session_id,
|
|
"chunk_type": str(chunk.type),
|
|
},
|
|
)
|
|
if not first_chunk_type:
|
|
first_chunk_type = str(chunk.type)
|
|
chunk_count += 1
|
|
yield chunk.to_sse()
|
|
|
|
if isinstance(chunk, StreamFinish):
|
|
break
|
|
except asyncio.TimeoutError:
|
|
yield StreamHeartbeat().to_sse()
|
|
except GeneratorExit:
|
|
pass
|
|
except Exception as e:
|
|
logger.error(f"Error in resume stream for session {session_id}: {e}")
|
|
finally:
|
|
try:
|
|
await stream_registry.unsubscribe_from_session(
|
|
session_id, subscriber_queue
|
|
)
|
|
except Exception as unsub_err:
|
|
logger.error(
|
|
f"Error unsubscribing from session {active_session.session_id}: {unsub_err}",
|
|
exc_info=True,
|
|
)
|
|
logger.info(
|
|
"Resume stream completed",
|
|
extra={
|
|
"session_id": session_id,
|
|
"n_chunks": chunk_count,
|
|
"first_chunk_type": first_chunk_type,
|
|
},
|
|
)
|
|
yield "data: [DONE]\n\n"
|
|
|
|
return StreamingResponse(
|
|
event_generator(),
|
|
media_type="text/event-stream",
|
|
headers={
|
|
"Cache-Control": "no-cache",
|
|
"Connection": "keep-alive",
|
|
"X-Accel-Buffering": "no",
|
|
"x-vercel-ai-ui-message-stream": "v1",
|
|
},
|
|
)
|
|
|
|
|
|
@router.patch(
|
|
"/sessions/{session_id}/assign-user",
|
|
dependencies=[Security(auth.requires_user)],
|
|
)
|
|
async def session_assign_user(
|
|
session_id: str,
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> dict:
|
|
"""
|
|
Assign an authenticated user to a chat session.
|
|
|
|
Used (typically post-login) to claim an existing anonymous session as the current authenticated user.
|
|
|
|
Args:
|
|
session_id: The identifier for the (previously anonymous) session.
|
|
user_id: The authenticated user's ID to associate with the session.
|
|
|
|
Returns:
|
|
dict: Status of the assignment.
|
|
|
|
"""
|
|
await chat_service.assign_user_to_session(session_id, user_id)
|
|
return {"status": "ok"}
|
|
|
|
|
|
# ========== Suggested Prompts ==========
|
|
|
|
|
|
class SuggestedTheme(BaseModel):
|
|
"""A themed group of suggested prompts."""
|
|
|
|
name: str
|
|
prompts: list[str]
|
|
|
|
|
|
class SuggestedPromptsResponse(BaseModel):
|
|
"""Response model for user-specific suggested prompts grouped by theme."""
|
|
|
|
themes: list[SuggestedTheme]
|
|
|
|
|
|
@router.get(
|
|
"/suggested-prompts",
|
|
dependencies=[Security(auth.requires_user)],
|
|
)
|
|
async def get_suggested_prompts(
|
|
user_id: Annotated[str, Security(auth.get_user_id)],
|
|
) -> SuggestedPromptsResponse:
|
|
"""
|
|
Get LLM-generated suggested prompts grouped by theme.
|
|
|
|
Returns personalized quick-action prompts based on the user's
|
|
business understanding. Returns empty themes list if no custom
|
|
prompts are available.
|
|
"""
|
|
understanding = await get_business_understanding(user_id)
|
|
if understanding is None or not understanding.suggested_prompts:
|
|
return SuggestedPromptsResponse(themes=[])
|
|
|
|
themes = [
|
|
SuggestedTheme(name=name, prompts=prompts)
|
|
for name, prompts in understanding.suggested_prompts.items()
|
|
]
|
|
return SuggestedPromptsResponse(themes=themes)
|
|
|
|
|
|
# ========== Configuration ==========
|
|
|
|
|
|
@router.get("/config/ttl", status_code=200)
|
|
async def get_ttl_config() -> dict:
|
|
"""
|
|
Get the stream TTL configuration.
|
|
|
|
Returns the Time-To-Live settings for chat streams, which determines
|
|
how long clients can reconnect to an active stream.
|
|
|
|
Returns:
|
|
dict: TTL configuration with seconds and milliseconds values.
|
|
"""
|
|
return {
|
|
"stream_ttl_seconds": config.stream_ttl,
|
|
"stream_ttl_ms": config.stream_ttl * 1000,
|
|
}
|
|
|
|
|
|
# ========== Health Check ==========
|
|
|
|
|
|
@router.get("/health", status_code=200)
|
|
async def health_check() -> dict:
|
|
"""
|
|
Health check endpoint for the chat service.
|
|
|
|
Performs a full cycle test of session creation and retrieval. Should always return healthy
|
|
if the service and data layer are operational.
|
|
|
|
Returns:
|
|
dict: A status dictionary indicating health, service name, and API version.
|
|
|
|
"""
|
|
from backend.data.user import get_or_create_user
|
|
|
|
# Ensure health check user exists (required for FK constraint)
|
|
health_check_user_id = "health-check-user"
|
|
await get_or_create_user(
|
|
{
|
|
"sub": health_check_user_id,
|
|
"email": "health-check@system.local",
|
|
"user_metadata": {"name": "Health Check User"},
|
|
}
|
|
)
|
|
|
|
# Create and retrieve session to verify full data layer
|
|
session = await create_chat_session(health_check_user_id)
|
|
await get_chat_session(session.session_id, health_check_user_id)
|
|
|
|
return {
|
|
"status": "healthy",
|
|
"service": "chat",
|
|
"version": "0.1.0",
|
|
}
|
|
|
|
|
|
# ========== Schema Export (for OpenAPI / Orval codegen) ==========
|
|
|
|
ToolResponseUnion = (
|
|
AgentsFoundResponse
|
|
| NoResultsResponse
|
|
| AgentDetailsResponse
|
|
| SetupRequirementsResponse
|
|
| ExecutionStartedResponse
|
|
| NeedLoginResponse
|
|
| ErrorResponse
|
|
| InputValidationErrorResponse
|
|
| AgentOutputResponse
|
|
| UnderstandingUpdatedResponse
|
|
| AgentPreviewResponse
|
|
| AgentSavedResponse
|
|
| ClarificationNeededResponse
|
|
| SuggestedGoalResponse
|
|
| BlockListResponse
|
|
| BlockDetailsResponse
|
|
| BlockOutputResponse
|
|
| DocSearchResultsResponse
|
|
| DocPageResponse
|
|
| MCPToolsDiscoveredResponse
|
|
| MCPToolOutputResponse
|
|
)
|
|
|
|
|
|
@router.get(
|
|
"/schema/tool-responses",
|
|
response_model=ToolResponseUnion,
|
|
include_in_schema=True,
|
|
summary="[Dummy] Tool response type export for codegen",
|
|
description="This endpoint is not meant to be called. It exists solely to "
|
|
"expose tool response models in the OpenAPI schema for frontend codegen.",
|
|
)
|
|
async def _tool_response_schema() -> ToolResponseUnion: # type: ignore[return]
|
|
"""Never called at runtime. Exists only so Orval generates TS types."""
|
|
raise HTTPException(status_code=501, detail="Schema-only endpoint")
|