Update version to v1.4.168 and commit

Merge pull request #1399 from HaroldFinchIFT/add-optional-simple-apikey-for-server
feat: add simple optional api key management for protect routes in --serve mode
2026-04-24 03:00:15 -04:00 · 2025-04-02 13:33:53 +00:00 · 2025-04-02 15:32:31 +02:00 · 2025-04-01 22:47:39 +02:00 · 2025-04-01 01:26:53 +02:00 · 2025-04-01 01:26:53 +02:00
7 changed files with 42 additions and 5 deletions
--- a/cli/cli.go
+++ b/cli/cli.go
@@ -57,7 +57,7 @@ func Cli(version string) (err error) {

 	if currentFlags.Serve {
 		registry.ConfigureVendors()
-		err = restapi.Serve(registry, currentFlags.ServeAddress)
+		err = restapi.Serve(registry, currentFlags.ServeAddress, currentFlags.ServeAPIKey)
 		return
 	}

--- a/cli/flags.go
+++ b/cli/flags.go
@@ -64,6 +64,7 @@ type Flags struct {
 	Serve                           bool              `long:"serve" description:"Serve the Fabric Rest API"`
 	ServeOllama                     bool              `long:"serveOllama" description:"Serve the Fabric Rest API with ollama endpoints"`
 	ServeAddress                    string            `long:"address" description:"The address to bind the REST API" default:":8080"`
+	ServeAPIKey                     string            `long:"api-key" description:"API key used to secure server routes" default:""`
 	Config                          string            `long:"config" description:"Path to YAML config file"`
 	Version                         bool              `long:"version" description:"Print current version"`
 	ListExtensions                  bool              `long:"listextensions" description:"List all registered extensions"`
--- a/nix/pkgs/fabric/version.nix
+++ b/nix/pkgs/fabric/version.nix
@@ -1 +1 @@
-"1.4.166"
+"1.4.168"
--- a/restapi/auth.go
+++ b/restapi/auth.go
@@ -0,0 +1,27 @@
+package restapi
+
+import (
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+)
+
+const APIKeyHeader = "X-API-Key"
+
+func APIKeyMiddleware(apiKey string) gin.HandlerFunc {
+	return func(c *gin.Context) {
+		headerApiKey := c.GetHeader(APIKeyHeader)
+
+		if headerApiKey == "" {
+			c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{"error": "Missing API Key"})
+			return
+		}
+
+		if headerApiKey != apiKey {
+			c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{"error": "Wrong API Key"})
+			return
+		}
+
+		c.Next()
+	}
+}
--- a/restapi/serve.go
+++ b/restapi/serve.go
@@ -1,17 +1,25 @@
 package restapi

 import (
+	"log/slog"
+
 	"github.com/danielmiessler/fabric/core"
 	"github.com/gin-gonic/gin"
 )

-func Serve(registry *core.PluginRegistry, address string) (err error) {
+func Serve(registry *core.PluginRegistry, address string, apiKey string) (err error) {
 	r := gin.New()

 	// Middleware
 	r.Use(gin.Logger())
 	r.Use(gin.Recovery())

+	if apiKey != "" {
+		r.Use(APIKeyMiddleware(apiKey))
+	} else {
+		slog.Warn("Starting REST API server without API key authentication. This may pose security risks.")
+	}
+
 	// Register routes
 	fabricDb := registry.Db
 	NewPatternsHandler(r, fabricDb.Patterns)
--- a/version.go
+++ b/version.go
@@ -1,3 +1,3 @@
 package main

-var version = "v1.4.166"
+var version = "v1.4.168"
--- a/web/src/lib/components/chat/DropdownGroup.svelte
+++ b/web/src/lib/components/chat/DropdownGroup.svelte
@@ -12,7 +12,8 @@
    { code: 'es', name: 'Spanish' },
    { code: 'de', name: 'German' },
    { code: 'zh', name: 'Chinese' },
-    { code: 'ja', name: 'Japanese' }
+    { code: 'ja', name: 'Japanese' },
+    { code: 'it', name: 'Italian' }
  ];
 </script>
Author	SHA1	Message	Date
github-actions[bot]	b60bad7799	Update version to v1.4.168 and commit	2025-04-02 13:33:53 +00:00
Eugen Eisler	234d1303ad	Merge pull request #1399 from HaroldFinchIFT/add-optional-simple-apikey-for-server feat: add simple optional api key management for protect routes in --serve mode	2025-04-02 15:32:31 +02:00
Harold	cd74a96be2	refactor: refactor API key middleware based on code review feedback	2025-04-01 22:47:39 +02:00
Harold	ceaa90a7c7	fix: bad format	2025-04-01 01:26:53 +02:00
Harold	15a2eeadc9	feat: add simple optional api key management for protect routes in --serve mode	2025-04-01 01:26:53 +02:00
github-actions[bot]	8d02f5b21d	Update version to v1.4.167 and commit	2025-03-31 14:42:50 +00:00
Eugen Eisler	0f8f0b6b39	Merge pull request #1397 from HaroldFinchIFT/add-italian-language-gui feat: add it lang to the chat drop down menu lang in web gui	2025-03-31 16:41:34 +02:00
Harold	fd58b6d410	feat: add it lang to the chat drop down menu lang in web gui	2025-03-30 12:05:22 +02:00