| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218 |
- import json
- import time
- import uuid
- from typing import Optional
- from functools import lru_cache
- from open_webui.internal.db import Base, get_db
- from open_webui.models.groups import Groups
- from open_webui.utils.access_control import has_access
- from open_webui.models.users import Users, UserResponse
- from pydantic import BaseModel, ConfigDict
- from sqlalchemy import BigInteger, Boolean, Column, String, Text, JSON
- from sqlalchemy import or_, func, select, and_, text
- from sqlalchemy.sql import exists
- ####################
- # Note DB Schema
- ####################
- class Note(Base):
- __tablename__ = "note"
- id = Column(Text, primary_key=True)
- user_id = Column(Text)
- title = Column(Text)
- data = Column(JSON, nullable=True)
- meta = Column(JSON, nullable=True)
- access_control = Column(JSON, nullable=True)
- created_at = Column(BigInteger)
- updated_at = Column(BigInteger)
- class NoteModel(BaseModel):
- model_config = ConfigDict(from_attributes=True)
- id: str
- user_id: str
- title: str
- data: Optional[dict] = None
- meta: Optional[dict] = None
- access_control: Optional[dict] = None
- created_at: int # timestamp in epoch
- updated_at: int # timestamp in epoch
- ####################
- # Forms
- ####################
- class NoteForm(BaseModel):
- title: str
- data: Optional[dict] = None
- meta: Optional[dict] = None
- access_control: Optional[dict] = None
- class NoteUpdateForm(BaseModel):
- title: Optional[str] = None
- data: Optional[dict] = None
- meta: Optional[dict] = None
- access_control: Optional[dict] = None
- class NoteUserResponse(NoteModel):
- user: Optional[UserResponse] = None
- class NoteTable:
- def insert_new_note(
- self,
- form_data: NoteForm,
- user_id: str,
- ) -> Optional[NoteModel]:
- with get_db() as db:
- note = NoteModel(
- **{
- "id": str(uuid.uuid4()),
- "user_id": user_id,
- **form_data.model_dump(),
- "created_at": int(time.time_ns()),
- "updated_at": int(time.time_ns()),
- }
- )
- new_note = Note(**note.model_dump())
- db.add(new_note)
- db.commit()
- return note
- def get_notes(
- self, skip: Optional[int] = None, limit: Optional[int] = None
- ) -> list[NoteModel]:
- with get_db() as db:
- query = db.query(Note).order_by(Note.updated_at.desc())
- if skip is not None:
- query = query.offset(skip)
- if limit is not None:
- query = query.limit(limit)
- notes = query.all()
- return [NoteModel.model_validate(note) for note in notes]
- def get_notes_by_user_id(
- self,
- user_id: str,
- skip: Optional[int] = None,
- limit: Optional[int] = None,
- ) -> list[NoteModel]:
- with get_db() as db:
- query = db.query(Note).filter(Note.user_id == user_id)
- query = query.order_by(Note.updated_at.desc())
- if skip is not None:
- query = query.offset(skip)
- if limit is not None:
- query = query.limit(limit)
- notes = query.all()
- return [NoteModel.model_validate(note) for note in notes]
- def get_notes_by_permission(
- self,
- user_id: str,
- permission: str = "write",
- skip: Optional[int] = None,
- limit: Optional[int] = None,
- ) -> list[NoteModel]:
- with get_db() as db:
- user_groups = Groups.get_groups_by_member_id(user_id)
- user_group_ids = {group.id for group in user_groups}
- # Order newest-first. We stream to keep memory usage low.
- query = (
- db.query(Note)
- .order_by(Note.updated_at.desc())
- .execution_options(stream_results=True)
- .yield_per(256)
- )
- results: list[NoteModel] = []
- n_skipped = 0
- for note in query:
- # Fast-pass #1: owner
- if note.user_id == user_id:
- permitted = True
- # Fast-pass #2: public/open
- elif note.access_control is None:
- # Technically this should mean public access for both read and write, but we'll only do read for now
- # We might want to change this behavior later
- permitted = permission == "read"
- else:
- permitted = has_access(
- user_id, permission, note.access_control, user_group_ids
- )
- if not permitted:
- continue
- # Apply skip AFTER permission filtering so it counts only accessible notes
- if skip and n_skipped < skip:
- n_skipped += 1
- continue
- results.append(NoteModel.model_validate(note))
- if limit is not None and len(results) >= limit:
- break
- return results
- def get_note_by_id(self, id: str) -> Optional[NoteModel]:
- with get_db() as db:
- note = db.query(Note).filter(Note.id == id).first()
- return NoteModel.model_validate(note) if note else None
- def update_note_by_id(
- self, id: str, form_data: NoteUpdateForm
- ) -> Optional[NoteModel]:
- with get_db() as db:
- note = db.query(Note).filter(Note.id == id).first()
- if not note:
- return None
- form_data = form_data.model_dump(exclude_unset=True)
- if "title" in form_data:
- note.title = form_data["title"]
- if "data" in form_data:
- note.data = {**note.data, **form_data["data"]}
- if "meta" in form_data:
- note.meta = {**note.meta, **form_data["meta"]}
- if "access_control" in form_data:
- note.access_control = form_data["access_control"]
- note.updated_at = int(time.time_ns())
- db.commit()
- return NoteModel.model_validate(note) if note else None
- def delete_note_by_id(self, id: str):
- with get_db() as db:
- db.query(Note).filter(Note.id == id).delete()
- db.commit()
- return True
- Notes = NoteTable()
|
