anycoder

Paused

App Files Files Community

AbuAlone09 commited on 5 days ago

Commit

352e720

verified ·

1 Parent(s): 7d8dbb1

Update backend_api.py

Browse files

Files changed (1) hide show

backend_api.py +49 -73

backend_api.py CHANGED Viewed

@@ -535,78 +535,44 @@ async def get_session(session: str):
     }
-@app.get("/api/auth/status")
 async def auth_status(authorization: Optional[str] = Header(None)):
-    """Check authentication status and validate token"""
-    auth = get_auth_from_header(authorization)
-    if not auth.is_authenticated():
-        return AuthStatus(
-            authenticated=False,
-            username=None,
-            message="Not authenticated"
-        )
-    # For dev tokens, skip validation
-    if auth.token and auth.token.startswith("dev_token_"):
-        return AuthStatus(
-            authenticated=True,
-            username=auth.username,
-            message=f"Authenticated as {auth.username} (dev mode)"
-        )
-    # For session tokens, check expiration and validate
-    token = authorization.replace("Bearer ", "") if authorization else None
-    if token and "-" in token and len(token) > 20 and token in user_sessions:
-        session_data = user_sessions[token]
-        # Check if session has expired
-        if is_session_expired(session_data):
-            # Clean up expired session
-            user_sessions.pop(token, None)
-            return AuthStatus(
-                authenticated=False,
-                username=None,
-                message="Session expired"
-            )
-        # Validate token with HuggingFace
-        if not await validate_token_with_hf(session_data["access_token"]):
-            # Token is invalid, clean up session
-            user_sessions.pop(token, None)
-            return AuthStatus(
-                authenticated=False,
-                username=None,
-                message="Authentication expired"
-            )
         return AuthStatus(
             authenticated=True,
-            username=auth.username,
-            message=f"Authenticated as {auth.username}"
         )
-    # For direct OAuth tokens, validate with HF
-    if auth.token:
-        is_valid = await validate_token_with_hf(auth.token)
-        if is_valid:
-            return AuthStatus(
-                authenticated=True,
-                username=auth.username,
-                message=f"Authenticated as {auth.username}"
-            )
-        else:
-            return AuthStatus(
-                authenticated=False,
-                username=None,
-                message="Token expired or invalid"
-            )
-    return AuthStatus(
-        authenticated=False,
-        username=None,
-        message="Not authenticated"
-    )
 def cleanup_generated_code(code: str, language: str) -> str:
@@ -879,17 +845,27 @@ async def generate_code(
                     {"role": "user", "content": user_content}
                 ]
-            # Stream the response
             try:
-                # All models now use OpenAI-compatible API via HF Router or Inference API
-                stream = client.chat.completions.create(
-                    model=actual_model_id,
-                    messages=messages,
-                    temperature=0.7,
-                    max_tokens=10000,
                     stream=True
                 )
                 chunk_count = 0
                 # Only process stream if it exists

     }
+@app.get("/api/auth/status", response_model=AuthStatus)
 async def auth_status(authorization: Optional[str] = Header(None)):
+    """
+    Kiểm tra trạng thái xác thực bằng cách xác thực token trực tiếp với HuggingFace API.
+    Không phụ thuộc vào biến nhớ tạm (user_sessions) để tránh lỗi mất phiên.
+    """
+    if not authorization:
+        return AuthStatus(authenticated=False, username=None, message="No token provided")
+    # Loại bỏ tiền tố 'Bearer ' nếu có
+    token = authorization.replace("Bearer ", "").strip()
+    # 1. Chế độ Dev (bỏ qua xác thực thực tế)
+    if token.startswith("dev_token_"):
+        username = token.split("_")[2] if len(token.split("_")) > 2 else "user"
+        return AuthStatus(authenticated=True, username=username, message=f"Auth as {username} (dev)")
+    # 2. Xác thực thật với HuggingFace Hub (không qua user_sessions)
+    try:
+        from huggingface_hub import HfApi
+        # Gọi trực tiếp API của HuggingFace để kiểm tra token
+        api = HfApi(token=token)
+        user_info = api.whoami()
+        username = user_info.get("name") or user_info.get("preferred_username") or "user"
         return AuthStatus(
             authenticated=True,
+            username=username,
+            message=f"Authenticated as {username}"
+        )
+    except Exception as e:
+        print(f"[Auth] Token validation failed: {e}")
+        return AuthStatus(
+            authenticated=False,
+            username=None,
+            message="Invalid or expired token"
         )
 def cleanup_generated_code(code: str, language: str) -> str:
                     {"role": "user", "content": user_content}
                 ]
+            # Tìm đoạn "try: # Stream the response" trong backend_api.py và thay bằng:
             try:
+                # Sử dụng Gemini stream
+                response = client.generate_content(
+                    f"Generate a {language} application: {query}",
                     stream=True
                 )
+                for chunk in response:
+                    if chunk.text:
+                        chunk_content = chunk.text
+                        generated_code += chunk_content
+                        event_data = json.dumps({
+                            "type": "chunk",
+                            "content": chunk_content
+                        })
+                        yield f"data: {event_data}\n\n"
+                        await asyncio.sleep(0.01) # Tránh nghẽn stream
                 chunk_count = 0
                 # Only process stream if it exists