arize-phoenix 11.16.1__py3-none-any.whl → 11.18.0__py3-none-any.whl

{arize_phoenix-11.16.1.dist-info → arize_phoenix-11.18.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: arize-phoenix
-Version: 11.16.1
+Version: 11.18.0
 Summary: AI Observability and Evaluation
 Project-URL: Documentation, https://arize.com/docs/phoenix/
 Project-URL: Issues, https://github.com/Arize-ai/phoenix/issues
@@ -191,7 +191,7 @@ Install Phoenix via `pip` or `conda`
 pip install arize-phoenix
 ```
 
-Phoenix container images are available via [Docker Hub](https://hub.docker.com/r/arizephoenix/phoenix) and can be deployed using Docker or Kubernetes.
+Phoenix container images are available via [Docker Hub](https://hub.docker.com/r/arizephoenix/phoenix) and can be deployed using Docker or Kubernetes. Arize AI also provides cloud instances at [app.phoenix.arize.com](https://app.phoenix.arize.com/).
 
 ## Packages
 

{arize_phoenix-11.16.1.dist-info → arize_phoenix-11.18.0.dist-info}/RECORD

@@ -1,12 +1,12 @@
 phoenix/__init__.py,sha256=xkpXH76HFbEDCq8IhiFp-2GnEHx39xPMdOpV5Skew1w,5481
-phoenix/auth.py,sha256=yW78f1xWNjTE30ACGUM14nOd5BzkukhlzA9B45kSUkM,11053
-phoenix/config.py,sha256=VWYsWA9yzL0ml_1dQ9Q-vnEZxBri1TO8zJocBBUVeZc,61985
+phoenix/auth.py,sha256=9rscOefuxy5VPcb6MlOYenuy3gDd5l7RxknONovGslE,11342
+phoenix/config.py,sha256=1Wb3pToeubtw1OFXsLct9HVYxQBsvjTqtPxkCT3q4OA,62749
 phoenix/datetime_utils.py,sha256=pRD-nzxXYKlMWNtd3r2tKGKfPFhwuJhfOAtlGLVAO60,8784
 phoenix/exceptions.py,sha256=n2L2KKuecrdflB9MsCdAYCiSEvGJptIsfRkXMoJle7A,169
 phoenix/py.typed,sha256=AbpHGcgLb-kRsJGnwFEktk7uzpZOCcBY74-YBdrKVGs,1
 phoenix/services.py,sha256=ngkyKGVatX3cO2WJdo2hKdaVKP-xJCMvqthvga6kJss,5196
 phoenix/settings.py,sha256=2kHfT3BNOVd4dAO1bq-syEQbHSG8oX2-7NhOwK2QREk,896
-phoenix/version.py,sha256=la5dgqPaLH76UOsPrzq3yXc1oRancntE_Rtl5KYWzoM,24
+phoenix/version.py,sha256=674yIbDThxLNMaAj6918CK5bHaDOhKWT8kaou_ywuBk,24
 phoenix/core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 phoenix/core/embedding_dimension.py,sha256=zKGbcvwOXgLf-yrJBpQyKtd-LEOPRKHnUToyAU8Owis,87
 phoenix/core/model.py,sha256=qBFraOtmwCCnWJltKNP18DDG0mULXigytlFsa6YOz6k,4837
@@ -19,7 +19,7 @@ phoenix/db/bulk_inserter.py,sha256=MbbmKip6gFtnLP1ZA3Z-mP-zy-Qnb9bPD8mRXJQOW2c,1
 phoenix/db/constants.py,sha256=-YE2rkzcROG06_rerfnX5hC7fLzOHx1Gjw4nXhX_um4,46
 phoenix/db/engines.py,sha256=tB_8iWMDz0folryVvw29sbBUxJOB2XZ-Xx0Uexj3uns,6889
 phoenix/db/enums.py,sha256=w3O5YuJEEzVTwVDZb8b2UUFhU8yK_GosF081VVrrno0,188
-phoenix/db/facilitator.py,sha256=aRbkIJkIDP2zMsLKbO7Y8jJq4U2HbV7Lf6GYVWXVImU,20151
+phoenix/db/facilitator.py,sha256=UIC-l14p3R8GFVWPmz04NY-CDm_zAynXCAuIYpj_W_g,20254
 phoenix/db/helpers.py,sha256=dsGONSgkhmVtjMpJh-84KRVTf5uPdQ5c8O2AhUgHkRg,14150
 phoenix/db/migrate.py,sha256=oUrXH8yEbcpL4eh09aSCuUiSrhFli0eT5D_j4ZmYChY,2797
 phoenix/db/models.py,sha256=bxyBRSST8rqBKcAyPyyDHmkv9AadaE3XmQnpcaMvvnk,61588
@@ -112,7 +112,7 @@ phoenix/server/api/auth.py,sha256=AyYhnZIbY9ALVjg2K6aC2UXSa3Pva5GVDBXyaZ3nD3o,27
 phoenix/server/api/context.py,sha256=mqsq_8Ru50e-PxKWNTzh9zptb1PFjYFUf58uW59UYL0,8996
 phoenix/server/api/exceptions.py,sha256=E2W0x63CBzc0CoQPptrLr9nZxPF9zIP8MCJ3RuJMddw,1322
 phoenix/server/api/interceptor.py,sha256=ykDnoC_apUd-llVli3m1CW18kNSIgjz2qZ6m5JmPDu8,1294
-phoenix/server/api/queries.py,sha256=--ycVajCdDuN4Y-7bnD9py3BIXVWnZEwrpwDEW2Y8i4,46498
+phoenix/server/api/queries.py,sha256=ExhH6hftJArSKSdVlKOjbwyWMUT7s8nu1YyW_Wnj4vE,46482
 phoenix/server/api/schema.py,sha256=fcs36xQwFF_Qe41_5cWR8wYpDvOrnbcyTeo5WNMbDsA,1702
 phoenix/server/api/subscriptions.py,sha256=U7JZl-FGfsaIhRkIFdeSQLqR7xCS7CY1h-21BOAcaqY,25439
 phoenix/server/api/utils.py,sha256=quCBRcusc6PUq9tJq7M8PgwFZp7nXgVAxtbw8feribY,833
@@ -245,14 +245,14 @@ phoenix/server/api/mutations/prompt_version_tag_mutations.py,sha256=t77osYb5he2A
 phoenix/server/api/mutations/span_annotations_mutations.py,sha256=LQPcODp7-ZobXspjmtLaamyQa8UkTONC_va-ST9r-k8,15015
 phoenix/server/api/mutations/trace_annotations_mutations.py,sha256=zWoMfOMSQZqw7gZl7Le2PRojkDcG_KOiP1iIuqZpZ8Q,11971
 phoenix/server/api/mutations/trace_mutations.py,sha256=AvtQAfqNWBQpJOZm4e0DZFimhVJ6HQHtSSZtezRadCo,4698
-phoenix/server/api/mutations/user_mutations.py,sha256=9vFWfvfhb6RUdxL8xajV2-P2kVDtFRijRD58OFeBY4M,15373
+phoenix/server/api/mutations/user_mutations.py,sha256=6mwMx5I5c_VgUutOLrN9LSMcyPLgXzNaT0XT24ZwNWM,15473
 phoenix/server/api/openapi/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 phoenix/server/api/openapi/main.py,sha256=yKdzJYI4cxy_1mFcK4_7YObIcuRviBIfwNjB23RG14k,461
 phoenix/server/api/openapi/schema.py,sha256=WGmHWSIyJhtc5EIh_M3vlXU-EgHkFuTlyVofgS0kj1I,529
 phoenix/server/api/routers/__init__.py,sha256=YIzHsIFOOXuCRbDkMUHx-McrANFJK5UfUn6a4BNIzmo,277
-phoenix/server/api/routers/auth.py,sha256=nwoum3HKlrSkNF0MWN91rrsTcWMVKefGI9xPz9s0DGw,11604
+phoenix/server/api/routers/auth.py,sha256=PKGwWdw7O015KmjMY1mIxlvXeU7OrmqIPF5TWTOGmp4,11871
 phoenix/server/api/routers/embeddings.py,sha256=BpZGJee0pdL0W5Rp1L0b30dEtZTgJeVqXky8LgZ0ZXw,898
-phoenix/server/api/routers/oauth2.py,sha256=rwIqeJe4T5jK5NeuPAmrfNsbBqUZhMSFRNJdOJYyFPc,24445
+phoenix/server/api/routers/oauth2.py,sha256=rPcKFvfijzBYLjfwbCNzCn0ihn4wGWh4xh6BRqg9Ay4,24524
 phoenix/server/api/routers/utils.py,sha256=M41BoH-fl37izhRuN2aX7lWm7jOC20A_3uClv9TVUUY,583
 phoenix/server/api/routers/v1/__init__.py,sha256=ngLMPjC7lgZxgKy_Is33KxTRnMzSqy25qTTChCVx_Mo,2696
 phoenix/server/api/routers/v1/annotation_configs.py,sha256=xp5lJmKYlRsINCUrRD9-lTAElw2v4hdFndS5BWrxICA,16048
@@ -266,8 +266,8 @@ phoenix/server/api/routers/v1/models.py,sha256=p3gJN-9SWiUYTUTft4bZMsZVCBNTb4nN1
 phoenix/server/api/routers/v1/projects.py,sha256=32GwTLsaFgQLVNdjrlrGe90XT3pIX1N7-zX9D9_J_4w,12701
 phoenix/server/api/routers/v1/prompts.py,sha256=chRYcLkOYDJdJfVZVukVTUyIRnLPvsJCg41CuPxOIU8,26695
 phoenix/server/api/routers/v1/spans.py,sha256=ETH6I14O_zY9IW69Fo-LxL796BR3xgt8qdzwqzYAvbE,44208
-phoenix/server/api/routers/v1/traces.py,sha256=uLASCHMgU13tUhuWXnXqaom1crrQVpXi9PUtsyDXU9Y,10318
-phoenix/server/api/routers/v1/users.py,sha256=hUZCe7ctJqEkSJBe046a0OAFMLZodtyO7NLP7U6S8Pg,11986
+phoenix/server/api/routers/v1/traces.py,sha256=Skn0N_L4ZjoJ7x76PBrqvbKPFiAk8xSe1yxfiOaQ0Gc,11285
+phoenix/server/api/routers/v1/users.py,sha256=eO8zMtGU33Td2_G1l9D7Z0a4CG1CwBUCj_Z9z2uk7wg,12089
 phoenix/server/api/routers/v1/utils.py,sha256=oXIOGPzPTkE0ZWUTRCoRIQQ7wTzoSwtWFaUSjlGBqts,4960
 phoenix/server/api/types/Annotation.py,sha256=gsl8CwjIbDUbZRj4d9USwZ_w_Tkz4i7zuZh9ftV80jA,1132
 phoenix/server/api/types/AnnotationConfig.py,sha256=TPukZUgvFC17W93Vnme21EhswasBMR-ZiuSWteiWZOU,3891
@@ -391,17 +391,17 @@ phoenix/server/static/apple-touch-icon-76x76.png,sha256=CT_xT12I0u2i0WU8JzBZBuOQ
 phoenix/server/static/apple-touch-icon.png,sha256=fOfpjqGpWYbJ0eAurKsyoZP1EAs6ZVooBJ_SGk2ZkDs,3801
 phoenix/server/static/favicon.ico,sha256=bY0vvCKRftemZfPShwZtE93DiiQdaYaozkPGwNFr6H8,34494
 phoenix/server/static/modernizr.js,sha256=mvK-XtkNqjOral-QvzoqsyOMECXIMu5BQwSVN_wcU9c,2564
-phoenix/server/static/.vite/manifest.json,sha256=7tNByP86-7b3NZxsgZFyq4MpRPrPaeFlINZoRP8NRkE,2165
-phoenix/server/static/assets/components-CK8hwrPx.js,sha256=g1vGnQRiqgG1yDDRMSbiUES-P4kkwsUbl4BPl9EH3Ek,650224
-phoenix/server/static/assets/index-UY6kXBX7.js,sha256=N-wk2Jml93MqnFKzVtzlcb6G5kquwPu06_FWFLfQxXU,63064
-phoenix/server/static/assets/pages-D8Hgmz1V.js,sha256=zVZMTQw6vFjJPf9FjvfXpYwosimlWXCGtMnwxNBbMKs,1208677
+phoenix/server/static/.vite/manifest.json,sha256=wdIctWiLSvBXLW9VyoDGwL1JHv4egHSTv5LoL920QKU,2328
+phoenix/server/static/assets/components-B1Ec5V_g.js,sha256=4acB1c9xZ91quZtIby2N2jN-wX4GCA5G3RnlmW9FKwc,656940
+phoenix/server/static/assets/index-DYx39hbu.js,sha256=1xQZOioOvWwZOZfyjmyCV_TejQqY3C_CH2mN609RA-Q,63064
+phoenix/server/static/assets/pages-B77OHHSB.js,sha256=oQjHFiCc5ciitUdp0-LtGBshV-ZIIh0QxvSmZr0Sx5E,1218398
+phoenix/server/static/assets/vendor-BbqekBfb.js,sha256=8xINQdH4ikfrf8nr8mlO0B9YrKJ2FPecrA9qu5kPILo,2588857
 phoenix/server/static/assets/vendor-CqDb5u4o.css,sha256=zIyFiNJKxMaQk8AvtLgt1rR01oO10d1MFndSDKH9Clw,5517
-phoenix/server/static/assets/vendor-_6rG8OMg.js,sha256=stdw5w5Q5kJ0EkGpzu_f_IYaEEwKHkn3eNDZSxBRQUE,2682340
-phoenix/server/static/assets/vendor-arizeai-BznCmJFh.js,sha256=qFSHnyPDSh4mml_O0oiMaCmZv2e9E3VQXPxzySPABWA,151750
-phoenix/server/static/assets/vendor-codemirror-29fWLPAy.js,sha256=dVUOVHLKRC3SXRgrMUeTXHXHMAsZqi0jZpLu75vg_JM,553698
-phoenix/server/static/assets/vendor-recharts-Cu431IpB.js,sha256=-RxCpZURhh5aUEh1XjG6P2WwqZPqKmcyxhDNbvLTlCQ,231651
-phoenix/server/static/assets/vendor-shiki-Ce9e01lU.js,sha256=FPFdF-MxIINIy5ujia044AyVID8jqcjjMvuYnbBZI6w,8980312
-phoenix/server/static/assets/vendor-three-C5WAXd5r.js,sha256=ELkg06u70N7h8oFmvqdoHyPuUf9VgGEWeT4LKFx4VWo,620975
+phoenix/server/static/assets/vendor-arizeai-CEwHhYfL.js,sha256=EIl1d9G6uPn7_Fc8YyAdxWmyV1Y7k1nN7VeJmI4MxtA,121514
+phoenix/server/static/assets/vendor-codemirror-CHApHLLJ.js,sha256=q9KKVgYlf8hMPLO3915yxYrRr-vW7abf22fLQcn7CEA,402623
+phoenix/server/static/assets/vendor-recharts-Bqf7C6Cm.js,sha256=MsKqIXTx4JHHa9EtfFlQ_QqHZOfc6ETZDxAP7sJlzoQ,231651
+phoenix/server/static/assets/vendor-shiki-BQ88Q1b1.js,sha256=5oAj5_AuRlfSv2GHNstkg5klTm5gj_WnPa8dJ_B5ReA,305160
+phoenix/server/static/assets/vendor-three-BLWp5bic.js,sha256=vfSCVXS20jA0Ceo_O0mDxYBcROinWMdPE6RR4JXmtec,620972
 phoenix/server/templates/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 phoenix/server/templates/index.html,sha256=0sqTnrrfw-BxrXaj2PayCgOUu-MseC6eUGBJwZx7KO8,7116
 phoenix/session/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -441,9 +441,9 @@ phoenix/utilities/project.py,sha256=auVpARXkDb-JgeX5f2aStyFIkeKvGwN9l7qrFeJMVxI,
 phoenix/utilities/re.py,sha256=6YyUWIkv0zc2SigsxfOWIHzdpjKA_TZo2iqKq7zJKvw,2081
 phoenix/utilities/span_store.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 phoenix/utilities/template_formatters.py,sha256=gh9PJD6WEGw7TEYXfSst1UR4pWWwmjxMLrDVQ_CkpkQ,2779
-arize_phoenix-11.16.1.dist-info/METADATA,sha256=ueQTCyUpZNKsx4_LOt6KkqVkK__SbVbvYWX8ZjKgRVk,30851
-arize_phoenix-11.16.1.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-arize_phoenix-11.16.1.dist-info/entry_points.txt,sha256=Pgpn8Upxx9P8z8joPXZWl2LlnAlGc3gcQoVchb06X1Q,94
-arize_phoenix-11.16.1.dist-info/licenses/IP_NOTICE,sha256=JBqyyCYYxGDfzQ0TtsQgjts41IJoa-hiwDrBjCb9gHM,469
-arize_phoenix-11.16.1.dist-info/licenses/LICENSE,sha256=HFkW9REuMOkvKRACuwLPT0hRydHb3zNg-fdFt94td18,3794
-arize_phoenix-11.16.1.dist-info/RECORD,,
+arize_phoenix-11.18.0.dist-info/METADATA,sha256=XaPsPlJWMGjRNAAtWtBTxz1RuLSV0A_U37UeL1u-1wI,30950
+arize_phoenix-11.18.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+arize_phoenix-11.18.0.dist-info/entry_points.txt,sha256=Pgpn8Upxx9P8z8joPXZWl2LlnAlGc3gcQoVchb06X1Q,94
+arize_phoenix-11.18.0.dist-info/licenses/IP_NOTICE,sha256=JBqyyCYYxGDfzQ0TtsQgjts41IJoa-hiwDrBjCb9gHM,469
+arize_phoenix-11.18.0.dist-info/licenses/LICENSE,sha256=HFkW9REuMOkvKRACuwLPT0hRydHb3zNg-fdFt94td18,3794
+arize_phoenix-11.18.0.dist-info/RECORD,,

phoenix/auth.py

@@ -47,6 +47,18 @@ def is_valid_password(*, password: Secret, salt: bytes, password_hash: bytes) ->
     return password_hash == compute_password_hash(password=password, salt=salt)
 
 
+def sanitize_email(email: str) -> str:
+    """
+    Sanitizes an email address by trimming whitespace and converting to lowercase.
+
+    Args:
+        email (str): the email address to sanitize
+    Returns:
+        str: the sanitized email address
+    """
+    return email.strip().lower()
+
+
 def validate_email_format(email: str) -> None:
     """
     Checks that the email has a valid format.

phoenix/config.py

@@ -333,6 +333,10 @@ Whether to verify client certificates for mutual TLS (mTLS) authentication.
 When set to true, clients must provide valid certificates signed by the CA specified in
 PHOENIX_TLS_CA_FILE.
 """
+ENV_PHOENIX_DEFAULT_RETENTION_POLICY_DAYS = "PHOENIX_DEFAULT_RETENTION_POLICY_DAYS"
+"""
+The default retention policy for traces in days.
+"""
 
 
 @dataclass(frozen=True)
@@ -494,6 +498,20 @@ def get_env_tls_verify_client() -> bool:
     return _bool_val(ENV_PHOENIX_TLS_VERIFY_CLIENT, False)
 
 
+def get_env_default_retention_policy_days() -> int:
+    """
+    Returns the number of days for the default retention policy as set by the
+    PHOENIX_DEFAULT_RETENTION_POLICY_DAYS environment variable, defaulting to 0 if not set.
+
+    Returns:
+        int: Number of days for the default retention policy. Defaults to 0 if the environment variable is not set.
+    """  # noqa: E501
+    days = _int_val(ENV_PHOENIX_DEFAULT_RETENTION_POLICY_DAYS, 0)
+    if days < 0:
+        raise ValueError("PHOENIX_DEFAULT_RETENTION_POLICY_DAYS must be non-negative")
+    return days
+
+
 def get_env_tls_config() -> Optional[TLSConfig]:
     """
     Retrieves and validates TLS configuration from environment variables.
@@ -865,6 +883,8 @@ def get_env_admins() -> dict[str, str]:
     """
     if not (env_value := getenv(ENV_PHOENIX_ADMINS)):
         return {}
+    from phoenix.auth import sanitize_email
+
     usernames = set()
     emails = set()
     ans = {}
@@ -881,7 +901,7 @@ def get_env_admins() -> dict[str, str]:
                 f"Expected format: 'username=email'"
             )
         username = pair[:last_equals_pos].strip()
-        email_addr = pair[last_equals_pos + 1 :].strip()
+        email_addr = sanitize_email(pair[last_equals_pos + 1 :])
         try:
             email_addr = validate_email(email_addr, check_deliverability=False).normalized
         except EmailNotValidError:

phoenix/db/facilitator.py

@@ -28,6 +28,7 @@ from phoenix.auth import (
 from phoenix.config import (
     get_env_admins,
     get_env_default_admin_initial_password,
+    get_env_default_retention_policy_days,
     get_env_disable_basic_auth,
 )
 from phoenix.db import models
@@ -334,7 +335,9 @@ async def _ensure_default_project_trace_retention_policy(db: DbSessionFactory) -
         ):
             return
         cron_expression = TraceRetentionCronExpression(root="0 0 * * 0")
-        rule = TraceRetentionRule(root=MaxDaysRule(max_days=0))
+        rule = TraceRetentionRule(
+            root=MaxDaysRule(max_days=get_env_default_retention_policy_days())
+        )
         await session.execute(
             sa.insert(models.ProjectTraceRetentionPolicy),
             [

phoenix/server/api/mutations/user_mutations.py

@@ -21,6 +21,7 @@ from phoenix.auth import (
     PASSWORD_REQUIREMENTS,
     PHOENIX_ACCESS_TOKEN_COOKIE_NAME,
     PHOENIX_REFRESH_TOKEN_COOKIE_NAME,
+    sanitize_email,
     validate_email_format,
     validate_password_format,
 )
@@ -115,20 +116,23 @@ class UserMutationMixin:
         info: Info[Context, None],
         input: CreateUserInput,
     ) -> UserMutationPayload:
+        # Sanitize email by trimming and lowercasing
+        email = sanitize_email(input.email)
+
         user: models.User
         if input.auth_method is AuthMethod.OAUTH2:
             user = models.OAuth2User(
-                email=input.email,
+                email=email,
                 username=input.username,
             )
         else:
             assert input.password
-            validate_email_format(input.email)
+            validate_email_format(email)
             validate_password_format(input.password)
             salt = secrets.token_bytes(DEFAULT_SECRET_LENGTH)
             password_hash = await info.context.hash_password(Secret(input.password), salt)
             user = models.LocalUser(
-                email=input.email,
+                email=email,
                 username=input.username,
                 password_hash=password_hash,
                 password_salt=salt,

phoenix/server/api/queries.py

@@ -338,19 +338,19 @@ class Query:
     async def compare_experiments(
         self,
         info: Info[Context, None],
-        baseline_experiment_id: GlobalID,
+        base_experiment_id: GlobalID,
         compare_experiment_ids: list[GlobalID],
         first: Optional[int] = 50,
         after: Optional[CursorString] = UNSET,
         filter_condition: Optional[str] = UNSET,
     ) -> Connection[ExperimentComparison]:
-        if baseline_experiment_id in compare_experiment_ids:
-            raise BadRequest("Compare experiment IDs cannot contain the baseline experiment ID")
+        if base_experiment_id in compare_experiment_ids:
+            raise BadRequest("Compare experiment IDs cannot contain the base experiment ID")
         if len(set(compare_experiment_ids)) < len(compare_experiment_ids):
             raise BadRequest("Compare experiment IDs must be unique")
         experiment_ids = [
             from_global_id_with_expected_type(experiment_id, models.Experiment.__name__)
-            for experiment_id in (baseline_experiment_id, *compare_experiment_ids)
+            for experiment_id in (base_experiment_id, *compare_experiment_ids)
         ]
         cursor = Cursor.from_string(after) if after else None
         page_size = first or 50

phoenix/server/api/routers/auth.py

@@ -6,7 +6,7 @@ from pathlib import Path
 from urllib.parse import urlencode, urlparse, urlunparse
 
 from fastapi import APIRouter, Depends, HTTPException, Request, Response
-from sqlalchemy import select
+from sqlalchemy import func, select
 from sqlalchemy.orm import joinedload
 from starlette.status import (
     HTTP_204_NO_CONTENT,
@@ -29,6 +29,7 @@ from phoenix.auth import (
     delete_oauth2_state_cookie,
     delete_refresh_token_cookie,
     is_valid_password,
+    sanitize_email,
     set_access_token_cookie,
     set_refresh_token_cookie,
     validate_password_format,
@@ -87,9 +88,14 @@ async def login(request: Request) -> Response:
     if not email or not password:
         raise HTTPException(status_code=HTTP_401_UNAUTHORIZED, detail="Email and password required")
 
+    # Sanitize email by trimming and lowercasing
+    email = sanitize_email(email)
+
     async with request.app.state.db() as session:
         user = await session.scalar(
-            select(models.User).filter_by(email=email).options(joinedload(models.User.role))
+            select(models.User)
+            .where(func.lower(models.User.email) == email)
+            .options(joinedload(models.User.role))
         )
         if (
             user is None
@@ -207,6 +213,10 @@ async def initiate_password_reset(request: Request) -> Response:
     data = await request.json()
     if not (email := data.get("email")):
         raise MISSING_EMAIL
+
+    # Sanitize email by trimming and lowercasing
+    email = sanitize_email(email)
+
     sender: EmailSender = request.app.state.email_sender
     if sender is None:
         raise SMTP_UNAVAILABLE
@@ -214,7 +224,7 @@ async def initiate_password_reset(request: Request) -> Response:
     async with request.app.state.db() as session:
         user = await session.scalar(
             select(models.User)
-            .filter_by(email=email)
+            .where(func.lower(models.User.email) == email)
             .options(
                 joinedload(models.User.password_reset_token).load_only(models.PasswordResetToken.id)
             )

phoenix/server/api/routers/oauth2.py

@@ -27,6 +27,7 @@ from phoenix.auth import (
     PHOENIX_OAUTH2_STATE_COOKIE_NAME,
     delete_oauth2_nonce_cookie,
     delete_oauth2_state_cookie,
+    sanitize_email,
     set_access_token_cookie,
     set_oauth2_nonce_cookie,
     set_oauth2_state_cookie,
@@ -217,7 +218,7 @@ class UserInfo:
         if not (idp_user_id := (self.idp_user_id or "").strip()):
             raise ValueError("idp_user_id cannot be empty")
         object.__setattr__(self, "idp_user_id", idp_user_id)
-        if not (email := (self.email or "").strip()):
+        if not (email := sanitize_email(self.email or "")):
             raise ValueError("email cannot be empty")
         object.__setattr__(self, "email", email)
         if username := (self.username or "").strip():
@@ -356,7 +357,7 @@ async def _get_existing_oauth2_user(
             - User has a password set
             - User has mismatched OAuth2 credentials
     """  # noqa: E501
-    if not (email := (user_info.email or "").strip()):
+    if not (email := sanitize_email(user_info.email or "")):
         raise ValueError("Email is required.")
     if not (oauth2_user_id := (user_info.idp_user_id or "").strip()):
         raise ValueError("OAuth2 user ID is required.")
@@ -370,7 +371,7 @@ async def _get_existing_oauth2_user(
         if email and email != user.email:
             user.email = email
     else:
-        user = await session.scalar(stmt.filter_by(email=email))
+        user = await session.scalar(stmt.where(func.lower(models.User.email) == email))
         if user is None or not isinstance(user, models.OAuth2User):
             raise SignInNotAllowed("Sign in is not allowed.")
         # Case 1: Different OAuth2 client - update both client and user IDs
@@ -520,7 +521,7 @@ async def _email_and_username_exist(
             select(
                 cast(
                     func.coalesce(
-                        func.max(case((models.User.email == email, 1), else_=0)),
+                        func.max(case((func.lower(models.User.email) == email, 1), else_=0)),
                         0,
                     ),
                     Boolean,
@@ -532,7 +533,7 @@ async def _email_and_username_exist(
                     ),
                     Boolean,
                 ).label("username_exists"),
-            ).where(or_(models.User.email == email, models.User.username == username))
+            ).where(or_(func.lower(models.User.email) == email, models.User.username == username))
         )
     ).all()
     return email_exists, username_exists

phoenix/server/api/routers/v1/traces.py

@@ -24,6 +24,7 @@ from strawberry.relay import GlobalID
 from phoenix.db import models
 from phoenix.db.insertion.helpers import as_kv
 from phoenix.db.insertion.types import Precursors
+from phoenix.server.api.types.node import from_global_id_with_expected_type
 from phoenix.server.authorization import is_not_locked
 from phoenix.server.bearer_auth import PhoenixUser
 from phoenix.server.dml_event import SpanDeleteEvent, TraceAnnotationInsertEvent
@@ -228,11 +229,13 @@ async def _add_spans(req: ExportTraceServiceRequest, state: State) -> None:
 
 
 @router.delete(
-    "/traces/{trace_id}",
+    "/traces/{trace_identifier}",
     operation_id="deleteTrace",
-    summary="Delete a trace by trace_id",
+    summary="Delete a trace by identifier",
     description=(
-        "Delete an entire trace by its OpenTelemetry trace_id. "
+        "Delete an entire trace by its identifier. The identifier can be either:\n"
+        "1. A Relay node ID (base64-encoded)\n"
+        "2. An OpenTelemetry trace_id (hex string)\n\n"
         "This will permanently remove all spans in the trace and their associated data."
     ),
     responses=add_errors_to_responses([HTTP_404_NOT_FOUND]),
@@ -240,33 +243,51 @@ async def _add_spans(req: ExportTraceServiceRequest, state: State) -> None:
 )
 async def delete_trace(
     request: Request,
-    trace_id: str = Path(description="The OpenTelemetry trace_id of the trace to delete"),
+    trace_identifier: str = Path(
+        description="The trace identifier: either a relay GlobalID or OpenTelemetry trace_id"
+    ),
 ) -> None:
     """
-    Delete a trace by trace_id.
+    Delete a trace by identifier (relay GlobalID or OpenTelemetry trace_id).
 
     This endpoint will:
-    1. Find and delete the trace with the given trace_id (and all its spans via CASCADE)
-    2. Trigger cache invalidation events
-    3. Return 204 No Content on success
+    1. Delete the trace by identifier (relay GlobalID or OpenTelemetry trace_id)
+    2. Get project_id from the deletion for cache invalidation
+    3. Trigger cache invalidation events
+    4. Return 204 No Content on success
 
     Note: This deletes the entire trace, including all spans, which maintains data consistency
     and avoids orphaned spans or inconsistent cached cumulative fields.
     """
     async with request.app.state.db() as session:
-        # Delete the trace directly and get project_id for cache invalidation
-        delete_stmt = (
-            delete(models.Trace)
-            .where(models.Trace.trace_id == trace_id)
-            .returning(models.Trace.project_rowid)
-        )
+        # Try to parse as GlobalID first, then fall back to trace_id
+        try:
+            trace_rowid = from_global_id_with_expected_type(
+                GlobalID.from_id(trace_identifier),
+                "Trace",
+            )
+            # Delete by database rowid
+            delete_stmt = (
+                delete(models.Trace)
+                .where(models.Trace.id == trace_rowid)
+                .returning(models.Trace.project_rowid)
+            )
+            error_detail = f"Trace with relay ID '{trace_identifier}' not found"
+        except Exception:
+            # Delete by OpenTelemetry trace_id
+            delete_stmt = (
+                delete(models.Trace)
+                .where(models.Trace.trace_id == trace_identifier)
+                .returning(models.Trace.project_rowid)
+            )
+            error_detail = f"Trace with trace_id '{trace_identifier}' not found"
 
         project_id = await session.scalar(delete_stmt)
 
         if project_id is None:
             raise HTTPException(
                 status_code=HTTP_404_NOT_FOUND,
-                detail=f"Trace with trace_id '{trace_id}' not found",
+                detail=error_detail,
             )
 
     # Trigger cache invalidation event

phoenix/server/api/routers/v1/users.py

@@ -31,6 +31,7 @@ from phoenix.auth import (
     DEFAULT_SYSTEM_EMAIL,
     DEFAULT_SYSTEM_USERNAME,
     compute_password_hash,
+    sanitize_email,
     validate_email_format,
     validate_password_format,
 )
@@ -205,6 +206,8 @@ async def create_user(
 ) -> CreateUserResponseBody:
     user_data = request_body.user
     email, username, role = user_data.email, user_data.username, user_data.role
+    # Sanitize email by trimming and lowercasing
+    email = sanitize_email(email)
     validate_email_format(email)
 
     # Prevent creation of SYSTEM users

phoenix/server/static/.vite/manifest.json

@@ -1,87 +1,93 @@
 {
-  "_components-CK8hwrPx.js": {
-    "file": "assets/components-CK8hwrPx.js",
+  "_components-B1Ec5V_g.js": {
+    "file": "assets/components-B1Ec5V_g.js",
     "name": "components",
     "imports": [
-      "_vendor-_6rG8OMg.js",
-      "_pages-D8Hgmz1V.js",
-      "_vendor-arizeai-BznCmJFh.js",
-      "_vendor-codemirror-29fWLPAy.js",
-      "_vendor-three-C5WAXd5r.js"
+      "_vendor-BbqekBfb.js",
+      "_pages-B77OHHSB.js",
+      "_vendor-arizeai-CEwHhYfL.js",
+      "_vendor-codemirror-CHApHLLJ.js",
+      "_vendor-three-BLWp5bic.js"
     ]
   },
-  "_pages-D8Hgmz1V.js": {
-    "file": "assets/pages-D8Hgmz1V.js",
+  "_pages-B77OHHSB.js": {
+    "file": "assets/pages-B77OHHSB.js",
     "name": "pages",
     "imports": [
-      "_vendor-_6rG8OMg.js",
-      "_vendor-arizeai-BznCmJFh.js",
-      "_components-CK8hwrPx.js",
-      "_vendor-codemirror-29fWLPAy.js",
-      "_vendor-recharts-Cu431IpB.js"
+      "_vendor-BbqekBfb.js",
+      "_vendor-arizeai-CEwHhYfL.js",
+      "_components-B1Ec5V_g.js",
+      "_vendor-codemirror-CHApHLLJ.js",
+      "_vendor-recharts-Bqf7C6Cm.js"
     ]
   },
-  "_vendor-CqDb5u4o.css": {
-    "file": "assets/vendor-CqDb5u4o.css",
-    "src": "_vendor-CqDb5u4o.css"
-  },
-  "_vendor-_6rG8OMg.js": {
-    "file": "assets/vendor-_6rG8OMg.js",
+  "_vendor-BbqekBfb.js": {
+    "file": "assets/vendor-BbqekBfb.js",
     "name": "vendor",
     "imports": [
-      "_vendor-three-C5WAXd5r.js"
+      "_vendor-three-BLWp5bic.js"
     ],
     "css": [
       "assets/vendor-CqDb5u4o.css"
     ]
   },
-  "_vendor-arizeai-BznCmJFh.js": {
-    "file": "assets/vendor-arizeai-BznCmJFh.js",
+  "_vendor-CqDb5u4o.css": {
+    "file": "assets/vendor-CqDb5u4o.css",
+    "src": "_vendor-CqDb5u4o.css"
+  },
+  "_vendor-arizeai-CEwHhYfL.js": {
+    "file": "assets/vendor-arizeai-CEwHhYfL.js",
     "name": "vendor-arizeai",
     "imports": [
-      "_vendor-_6rG8OMg.js"
+      "_vendor-BbqekBfb.js"
     ]
   },
-  "_vendor-codemirror-29fWLPAy.js": {
-    "file": "assets/vendor-codemirror-29fWLPAy.js",
+  "_vendor-codemirror-CHApHLLJ.js": {
+    "file": "assets/vendor-codemirror-CHApHLLJ.js",
     "name": "vendor-codemirror",
     "imports": [
-      "_vendor-_6rG8OMg.js",
-      "_vendor-shiki-Ce9e01lU.js"
+      "_vendor-BbqekBfb.js",
+      "_vendor-shiki-BQ88Q1b1.js"
+    ],
+    "dynamicImports": [
+      "_vendor-shiki-BQ88Q1b1.js",
+      "_vendor-shiki-BQ88Q1b1.js",
+      "_vendor-shiki-BQ88Q1b1.js"
     ]
   },
-  "_vendor-recharts-Cu431IpB.js": {
-    "file": "assets/vendor-recharts-Cu431IpB.js",
+  "_vendor-recharts-Bqf7C6Cm.js": {
+    "file": "assets/vendor-recharts-Bqf7C6Cm.js",
     "name": "vendor-recharts",
     "imports": [
-      "_vendor-_6rG8OMg.js"
+      "_vendor-BbqekBfb.js"
     ]
   },
-  "_vendor-shiki-Ce9e01lU.js": {
-    "file": "assets/vendor-shiki-Ce9e01lU.js",
+  "_vendor-shiki-BQ88Q1b1.js": {
+    "file": "assets/vendor-shiki-BQ88Q1b1.js",
     "name": "vendor-shiki",
+    "isDynamicEntry": true,
     "imports": [
-      "_vendor-_6rG8OMg.js"
+      "_vendor-BbqekBfb.js"
     ]
   },
-  "_vendor-three-C5WAXd5r.js": {
-    "file": "assets/vendor-three-C5WAXd5r.js",
+  "_vendor-three-BLWp5bic.js": {
+    "file": "assets/vendor-three-BLWp5bic.js",
     "name": "vendor-three"
   },
   "index.tsx": {
-    "file": "assets/index-UY6kXBX7.js",
+    "file": "assets/index-DYx39hbu.js",
     "name": "index",
     "src": "index.tsx",
     "isEntry": true,
     "imports": [
-      "_vendor-_6rG8OMg.js",
-      "_vendor-arizeai-BznCmJFh.js",
-      "_pages-D8Hgmz1V.js",
-      "_components-CK8hwrPx.js",
-      "_vendor-three-C5WAXd5r.js",
-      "_vendor-codemirror-29fWLPAy.js",
-      "_vendor-shiki-Ce9e01lU.js",
-      "_vendor-recharts-Cu431IpB.js"
+      "_vendor-BbqekBfb.js",
+      "_vendor-arizeai-CEwHhYfL.js",
+      "_pages-B77OHHSB.js",
+      "_components-B1Ec5V_g.js",
+      "_vendor-three-BLWp5bic.js",
+      "_vendor-codemirror-CHApHLLJ.js",
+      "_vendor-shiki-BQ88Q1b1.js",
+      "_vendor-recharts-Bqf7C6Cm.js"
     ]
   }
 }