mirror of
https://github.com/simstudioai/sim.git
synced 2026-02-17 01:42:43 -05:00
48adaa00d8
* fix(security): restrict API key access on internal-only routes * test(security): update function execute tests for checkInternalAuth * updated agent handler * move session check higher in checkSessionOrInternalAuth * extracted duplicate code into helper for resolving user from jwt
380 lines
12 KiB
TypeScript
380 lines
12 KiB
TypeScript
import { db } from '@sim/db'
|
|
import { account } from '@sim/db/schema'
|
|
import { createLogger } from '@sim/logger'
|
|
import { eq } from 'drizzle-orm'
|
|
import { type NextRequest, NextResponse } from 'next/server'
|
|
import { checkInternalAuth } from '@/lib/auth/hybrid'
|
|
import { generateRequestId } from '@/lib/core/utils/request'
|
|
import { checkWorkspaceAccess } from '@/lib/workspaces/permissions/utils'
|
|
import { refreshTokenIfNeeded } from '@/app/api/auth/oauth/utils'
|
|
import type { StreamingExecution } from '@/executor/types'
|
|
import { executeProviderRequest } from '@/providers'
|
|
|
|
const logger = createLogger('ProvidersAPI')
|
|
|
|
export const dynamic = 'force-dynamic'
|
|
|
|
/**
|
|
* Server-side proxy for provider requests
|
|
*/
|
|
export async function POST(request: NextRequest) {
|
|
const requestId = generateRequestId()
|
|
const startTime = Date.now()
|
|
|
|
try {
|
|
const auth = await checkInternalAuth(request, { requireWorkflowId: false })
|
|
if (!auth.success || !auth.userId) {
|
|
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
|
|
}
|
|
|
|
logger.info(`[${requestId}] Provider API request started`, {
|
|
timestamp: new Date().toISOString(),
|
|
userAgent: request.headers.get('User-Agent'),
|
|
contentType: request.headers.get('Content-Type'),
|
|
})
|
|
|
|
const body = await request.json()
|
|
const {
|
|
provider,
|
|
model,
|
|
systemPrompt,
|
|
context,
|
|
tools,
|
|
temperature,
|
|
maxTokens,
|
|
apiKey,
|
|
azureEndpoint,
|
|
azureApiVersion,
|
|
vertexProject,
|
|
vertexLocation,
|
|
vertexCredential,
|
|
bedrockAccessKeyId,
|
|
bedrockSecretKey,
|
|
bedrockRegion,
|
|
responseFormat,
|
|
workflowId,
|
|
workspaceId,
|
|
stream,
|
|
messages,
|
|
environmentVariables,
|
|
workflowVariables,
|
|
blockData,
|
|
blockNameMapping,
|
|
reasoningEffort,
|
|
verbosity,
|
|
} = body
|
|
|
|
logger.info(`[${requestId}] Provider request details`, {
|
|
provider,
|
|
model,
|
|
hasSystemPrompt: !!systemPrompt,
|
|
hasContext: !!context,
|
|
hasTools: !!tools?.length,
|
|
toolCount: tools?.length || 0,
|
|
hasApiKey: !!apiKey,
|
|
hasAzureEndpoint: !!azureEndpoint,
|
|
hasAzureApiVersion: !!azureApiVersion,
|
|
hasVertexProject: !!vertexProject,
|
|
hasVertexLocation: !!vertexLocation,
|
|
hasVertexCredential: !!vertexCredential,
|
|
hasBedrockAccessKeyId: !!bedrockAccessKeyId,
|
|
hasBedrockSecretKey: !!bedrockSecretKey,
|
|
hasBedrockRegion: !!bedrockRegion,
|
|
hasResponseFormat: !!responseFormat,
|
|
workflowId,
|
|
stream: !!stream,
|
|
hasMessages: !!messages?.length,
|
|
messageCount: messages?.length || 0,
|
|
hasEnvironmentVariables:
|
|
!!environmentVariables && Object.keys(environmentVariables).length > 0,
|
|
hasWorkflowVariables: !!workflowVariables && Object.keys(workflowVariables).length > 0,
|
|
reasoningEffort,
|
|
verbosity,
|
|
})
|
|
|
|
if (workspaceId) {
|
|
const workspaceAccess = await checkWorkspaceAccess(workspaceId, auth.userId)
|
|
if (!workspaceAccess.hasAccess) {
|
|
return NextResponse.json({ error: 'Forbidden' }, { status: 403 })
|
|
}
|
|
}
|
|
|
|
let finalApiKey: string | undefined = apiKey
|
|
try {
|
|
if (provider === 'vertex' && vertexCredential) {
|
|
finalApiKey = await resolveVertexCredential(requestId, vertexCredential)
|
|
}
|
|
} catch (error) {
|
|
logger.error(`[${requestId}] Failed to resolve Vertex credential:`, {
|
|
provider,
|
|
model,
|
|
error: error instanceof Error ? error.message : String(error),
|
|
hasVertexCredential: !!vertexCredential,
|
|
})
|
|
return NextResponse.json(
|
|
{ error: error instanceof Error ? error.message : 'Credential error' },
|
|
{ status: 400 }
|
|
)
|
|
}
|
|
|
|
logger.info(`[${requestId}] Executing provider request`, {
|
|
provider,
|
|
model,
|
|
workflowId,
|
|
hasApiKey: !!finalApiKey,
|
|
})
|
|
|
|
const response = await executeProviderRequest(provider, {
|
|
model,
|
|
systemPrompt,
|
|
context,
|
|
tools,
|
|
temperature,
|
|
maxTokens,
|
|
apiKey: finalApiKey,
|
|
azureEndpoint,
|
|
azureApiVersion,
|
|
vertexProject,
|
|
vertexLocation,
|
|
bedrockAccessKeyId,
|
|
bedrockSecretKey,
|
|
bedrockRegion,
|
|
responseFormat,
|
|
workflowId,
|
|
workspaceId,
|
|
stream,
|
|
messages,
|
|
environmentVariables,
|
|
workflowVariables,
|
|
blockData,
|
|
blockNameMapping,
|
|
reasoningEffort,
|
|
verbosity,
|
|
})
|
|
|
|
const executionTime = Date.now() - startTime
|
|
logger.info(`[${requestId}] Provider request completed successfully`, {
|
|
provider,
|
|
model,
|
|
workflowId,
|
|
executionTime,
|
|
responseType:
|
|
response instanceof ReadableStream
|
|
? 'stream'
|
|
: response && typeof response === 'object' && 'stream' in response
|
|
? 'streaming-execution'
|
|
: 'json',
|
|
})
|
|
|
|
// Check if the response is a StreamingExecution
|
|
if (
|
|
response &&
|
|
typeof response === 'object' &&
|
|
'stream' in response &&
|
|
'execution' in response
|
|
) {
|
|
const streamingExec = response as StreamingExecution
|
|
logger.info(`[${requestId}] Received StreamingExecution from provider`)
|
|
|
|
// Extract the stream and execution data
|
|
const stream = streamingExec.stream
|
|
const executionData = streamingExec.execution
|
|
|
|
// Attach the execution data as a custom header
|
|
// We need to safely serialize the execution data to avoid circular references
|
|
let executionDataHeader
|
|
try {
|
|
// Create a safe version of execution data with the most important fields
|
|
const safeExecutionData = {
|
|
success: executionData.success,
|
|
output: {
|
|
// Sanitize content to remove non-ASCII characters that would cause ByteString errors
|
|
content: executionData.output?.content
|
|
? String(executionData.output.content).replace(/[\u0080-\uFFFF]/g, '')
|
|
: '',
|
|
model: executionData.output?.model,
|
|
tokens: executionData.output?.tokens || {
|
|
input: 0,
|
|
output: 0,
|
|
total: 0,
|
|
},
|
|
// Sanitize any potential Unicode characters in tool calls
|
|
toolCalls: executionData.output?.toolCalls
|
|
? sanitizeToolCalls(executionData.output.toolCalls)
|
|
: undefined,
|
|
providerTiming: executionData.output?.providerTiming,
|
|
cost: executionData.output?.cost,
|
|
},
|
|
error: executionData.error,
|
|
logs: [], // Strip logs from header to avoid encoding issues
|
|
metadata: {
|
|
startTime: executionData.metadata?.startTime,
|
|
endTime: executionData.metadata?.endTime,
|
|
duration: executionData.metadata?.duration,
|
|
},
|
|
isStreaming: true, // Always mark streaming execution data as streaming
|
|
blockId: executionData.logs?.[0]?.blockId,
|
|
blockName: executionData.logs?.[0]?.blockName,
|
|
blockType: executionData.logs?.[0]?.blockType,
|
|
}
|
|
executionDataHeader = JSON.stringify(safeExecutionData)
|
|
} catch (error) {
|
|
logger.error(`[${requestId}] Failed to serialize execution data:`, error)
|
|
executionDataHeader = JSON.stringify({
|
|
success: executionData.success,
|
|
error: 'Failed to serialize full execution data',
|
|
})
|
|
}
|
|
|
|
// Return the stream with execution data in a header
|
|
return new Response(stream, {
|
|
headers: {
|
|
'Content-Type': 'text/event-stream',
|
|
'Cache-Control': 'no-cache',
|
|
Connection: 'keep-alive',
|
|
'X-Execution-Data': executionDataHeader,
|
|
},
|
|
})
|
|
}
|
|
|
|
// Check if the response is a ReadableStream for streaming
|
|
if (response instanceof ReadableStream) {
|
|
logger.info(`[${requestId}] Streaming response from provider`)
|
|
return new Response(response, {
|
|
headers: {
|
|
'Content-Type': 'text/event-stream',
|
|
'Cache-Control': 'no-cache',
|
|
Connection: 'keep-alive',
|
|
},
|
|
})
|
|
}
|
|
|
|
// Return regular JSON response for non-streaming
|
|
return NextResponse.json(response)
|
|
} catch (error) {
|
|
const executionTime = Date.now() - startTime
|
|
logger.error(`[${requestId}] Provider request failed:`, {
|
|
error: error instanceof Error ? error.message : String(error),
|
|
errorName: error instanceof Error ? error.name : 'Unknown',
|
|
errorStack: error instanceof Error ? error.stack : undefined,
|
|
executionTime,
|
|
timestamp: new Date().toISOString(),
|
|
})
|
|
|
|
return NextResponse.json(
|
|
{ error: error instanceof Error ? error.message : String(error) },
|
|
{ status: 500 }
|
|
)
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Helper function to sanitize tool calls to remove Unicode characters
|
|
*/
|
|
function sanitizeToolCalls(toolCalls: any) {
|
|
// If it's an object with a list property, sanitize the list
|
|
if (toolCalls && typeof toolCalls === 'object' && Array.isArray(toolCalls.list)) {
|
|
return {
|
|
...toolCalls,
|
|
list: toolCalls.list.map(sanitizeToolCall),
|
|
}
|
|
}
|
|
|
|
// If it's an array, sanitize each item
|
|
if (Array.isArray(toolCalls)) {
|
|
return toolCalls.map(sanitizeToolCall)
|
|
}
|
|
|
|
return toolCalls
|
|
}
|
|
|
|
/**
|
|
* Sanitize a single tool call to remove Unicode characters
|
|
*/
|
|
function sanitizeToolCall(toolCall: any) {
|
|
if (!toolCall || typeof toolCall !== 'object') return toolCall
|
|
|
|
// Create a sanitized copy
|
|
const sanitized = { ...toolCall }
|
|
|
|
// Sanitize any string fields that might contain Unicode
|
|
if (typeof sanitized.name === 'string') {
|
|
sanitized.name = sanitized.name.replace(/[\u0080-\uFFFF]/g, '')
|
|
}
|
|
|
|
// Sanitize input/arguments
|
|
if (sanitized.input && typeof sanitized.input === 'object') {
|
|
sanitized.input = sanitizeObject(sanitized.input)
|
|
}
|
|
|
|
if (sanitized.arguments && typeof sanitized.arguments === 'object') {
|
|
sanitized.arguments = sanitizeObject(sanitized.arguments)
|
|
}
|
|
|
|
// Sanitize output/result
|
|
if (sanitized.output && typeof sanitized.output === 'object') {
|
|
sanitized.output = sanitizeObject(sanitized.output)
|
|
}
|
|
|
|
if (sanitized.result && typeof sanitized.result === 'object') {
|
|
sanitized.result = sanitizeObject(sanitized.result)
|
|
}
|
|
|
|
// Sanitize error message
|
|
if (typeof sanitized.error === 'string') {
|
|
sanitized.error = sanitized.error.replace(/[\u0080-\uFFFF]/g, '')
|
|
}
|
|
|
|
return sanitized
|
|
}
|
|
|
|
/**
|
|
* Recursively sanitize an object to remove Unicode characters from strings
|
|
*/
|
|
function sanitizeObject(obj: any): any {
|
|
if (!obj || typeof obj !== 'object') return obj
|
|
|
|
// Handle arrays
|
|
if (Array.isArray(obj)) {
|
|
return obj.map((item) => sanitizeObject(item))
|
|
}
|
|
|
|
// Handle objects
|
|
const result: any = {}
|
|
for (const [key, value] of Object.entries(obj)) {
|
|
if (typeof value === 'string') {
|
|
result[key] = value.replace(/[\u0080-\uFFFF]/g, '')
|
|
} else if (typeof value === 'object' && value !== null) {
|
|
result[key] = sanitizeObject(value)
|
|
} else {
|
|
result[key] = value
|
|
}
|
|
}
|
|
|
|
return result
|
|
}
|
|
|
|
/**
|
|
* Resolves a Vertex AI OAuth credential to an access token
|
|
*/
|
|
async function resolveVertexCredential(requestId: string, credentialId: string): Promise<string> {
|
|
logger.info(`[${requestId}] Resolving Vertex AI credential: ${credentialId}`)
|
|
|
|
const credential = await db.query.account.findFirst({
|
|
where: eq(account.id, credentialId),
|
|
})
|
|
|
|
if (!credential) {
|
|
throw new Error(`Vertex AI credential not found: ${credentialId}`)
|
|
}
|
|
|
|
const { accessToken } = await refreshTokenIfNeeded(requestId, credential, credentialId)
|
|
|
|
if (!accessToken) {
|
|
throw new Error('Failed to get Vertex AI access token')
|
|
}
|
|
|
|
logger.info(`[${requestId}] Successfully resolved Vertex AI credential`)
|
|
return accessToken
|
|
}
|