iatoolkit 0.7.4__py3-none-any.whl → 0.7.6__py3-none-any.whl

views/change_password_view.py

@@ -0,0 +1,91 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask.views import MethodView
+from flask import render_template, request
+from services.profile_service import ProfileService
+from itsdangerous import URLSafeTimedSerializer, SignatureExpired
+from flask_bcrypt import Bcrypt
+from injector import inject
+import os
+
+
+class ChangePasswordView(MethodView):
+    @inject
+    def __init__(self, profile_service: ProfileService):
+        self.profile_service = profile_service
+
+        self.serializer = URLSafeTimedSerializer(os.getenv("PASS_RESET_KEY"))
+        self.bcrypt = Bcrypt()
+
+    def get(self, company_short_name: str, token: str):
+        # get company info
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return render_template('error.html', message=f"Empresa no encontrada: {company_short_name}"), 404
+
+        try:
+            # Decodificar el token
+            email = self.serializer.loads(token, salt='password-reset', max_age=3600)
+        except SignatureExpired as e:
+            return render_template('forgot_password.html',
+                        alert_message="El enlace de cambio de contraseña ha expirado. Por favor, solicita uno nuevo.")
+
+        return render_template('change_password.html',
+                               company_short_name=company_short_name,
+                               company=company,
+                               token=token, email=email)
+
+    def post(self, company_short_name: str, token: str):
+        # get company info
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return render_template('error.html', message=f"Empresa no encontrada: {company_short_name}"), 404
+
+        try:
+            # Decodificar el token
+            email = self.serializer.loads(token, salt='password-reset', max_age=3600)
+        except SignatureExpired:
+            return render_template('forgot_password.html',
+                                   company_short_name=company_short_name,
+                                   company=company,
+                                    alert_message="El enlace de cambio de contraseña ha expirado. Por favor, solicita uno nuevo.")
+
+        try:
+            # Obtener datos del formulario
+            temp_code = request.form.get('temp_code')
+            new_password = request.form.get('new_password')
+            confirm_password = request.form.get('confirm_password')
+
+            response = self.profile_service.change_password(
+                email=email,
+                temp_code=temp_code,
+                new_password=new_password,
+                confirm_password=confirm_password
+            )
+
+            if "error" in response:
+                return render_template(
+                    'change_password.html',
+                    token=token,
+                    company_short_name=company_short_name,
+                    company=company,
+                    form_data={"temp_code": temp_code,
+                               "new_password": new_password,
+                               "confirm_password": confirm_password},
+                    alert_message=response["error"]), 400
+
+
+            return render_template('login.html',
+                                   company_short_name=company_short_name,
+                                   company=company,
+                                   alert_icon='success',
+                               alert_message="Tu contraseña ha sido restablecida exitosamente. Ahora puedes iniciar sesión.")
+
+        except Exception as e:
+            return render_template("error.html",
+                                   company=company,
+                                   company_short_name=company_short_name,
+                                   message="Ha ocurrido un error inesperado."), 500

views/chat_token_request_view.py

@@ -0,0 +1,98 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask import request, jsonify, current_app
+from flask.views import MethodView
+from injector import inject
+import logging
+from repositories.profile_repo import ProfileRepo
+from services.jwt_service import JWTService
+from typing import Optional
+
+
+# Necesitaremos JWT_EXPIRATION_SECONDS_CHAT de la configuración de la app
+# Se podría inyectar o acceder globalmente.
+
+class ChatTokenRequestView(MethodView):
+    @inject
+    def __init__(self, profile_repo: ProfileRepo, jwt_service: JWTService):
+        self.profile_repo = profile_repo
+        self.jwt_service = jwt_service
+
+    def _authenticate_requesting_company_via_api_key(self) -> tuple[
+        Optional[int], Optional[str], Optional[tuple[dict, int]]]:
+        """
+        Autentica a la compañía que solicita el token JWT usando su API Key.
+        Retorna (company_id, company_short_name, None) en éxito.
+        Retorna (None, None, (error_json, status_code)) en fallo.
+        """
+        api_key_header = request.headers.get('Authorization')
+        if not api_key_header or not api_key_header.startswith('Bearer '):
+            return None, None, ({"error": "API Key faltante o mal formada en el header Authorization"}, 401)
+
+        api_key_value = api_key_header.split('Bearer ')[1]
+        try:
+            api_key_entry = self.profile_repo.get_active_api_key_entry(api_key_value)
+            if not api_key_entry:
+                return None, None, ({"error": "API Key inválida o inactiva"}, 401)
+
+            # api_key_entry.company ya está cargado por joinedload en get_active_api_key_entry
+            if not api_key_entry.company:  # Sanity check
+                logging.error(
+                    f"ChatTokenRequest: API Key {api_key_value[:5]}... no tiene compañía asociada a pesar de ser válida.")
+                return None, None, ({"error": "Error interno del servidor al verificar API Key"}, 500)
+
+            return api_key_entry.company_id, api_key_entry.company.short_name, None
+
+        except Exception as e:
+            logging.exception(f"ChatTokenRequest: Error interno durante validación de API Key: {e}")
+            return None, None, ({"error": "Error interno del servidor al validar API Key"}, 500)
+
+    def post(self):
+        """
+        Genera un JWT para una sesión de chat.
+        Autenticado por API Key de la empresa.
+        Requiere JSON body:
+                {"company_short_name": "target_company_name",
+                "external_user_id": "user_abc"
+                }
+        """
+        # only requests with valid api-key are allowed
+        auth_company_id, auth_company_short_name, error = self._authenticate_requesting_company_via_api_key()
+        if error:
+            return jsonify(error[0]), error[1]
+
+        # get the json fields from the request body
+        data = request.get_json()
+        if not data:
+            return jsonify({"error": "Cuerpo de la solicitud JSON faltante"}), 400
+
+        target_company_short_name = data.get('company_short_name')
+        external_user_id = data.get('external_user_id')
+
+        if not target_company_short_name or not external_user_id:
+            return jsonify(
+                {"error": "Faltan 'company_short_name' o 'external_user_id' en el cuerpo de la solicitud"}), 401
+
+        # Verificar que la API Key usada pertenezca a la empresa para la cual se solicita el token
+        if auth_company_short_name != target_company_short_name:
+            return jsonify({
+                    "error": f"API Key no autorizada para generar tokens para la compañía '{target_company_short_name}'"}), 403
+
+        jwt_expiration_seconds = current_app.config.get('JWT_EXPIRATION_SECONDS_CHAT', 3600)
+
+        # Aquí, auth_company_id es el ID de la compañía para la que se generará el token.
+        # auth_company_short_name es su nombre corto.
+        token = self.jwt_service.generate_chat_jwt(
+            company_id=auth_company_id,
+            company_short_name=auth_company_short_name,  # Usamos el short_name autenticado
+            external_user_id=external_user_id,
+            expires_delta_seconds=jwt_expiration_seconds
+        )
+
+        if token:
+            return jsonify({"chat_jwt": token}), 200
+        else:
+            return jsonify({"error": "No se pudo generar el token de chat"}), 500

views/chat_view.py

@@ -0,0 +1,51 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask import render_template, request, jsonify
+from services.profile_service import ProfileService
+from flask.views import MethodView
+from injector import inject
+import os
+from common.auth import IAuthentication
+from services.prompt_manager_service import PromptService
+
+
+class ChatView(MethodView):
+    @inject
+    def __init__(self,
+                 iauthentication: IAuthentication,
+                 prompt_service: PromptService,
+                 profile_service: ProfileService):
+        self.iauthentication = iauthentication
+        self.profile_service = profile_service
+        self.prompt_service = prompt_service
+
+    def get(self, company_short_name: str):
+        # get access credentials
+        iaut = self.iauthentication.verify(company_short_name)
+        if not iaut.get("success"):
+            return jsonify(iaut), 401
+
+        user_agent = request.user_agent
+        is_mobile = user_agent.platform in ["android", "iphone", "ipad"] or "mobile" in user_agent.string.lower()
+        alert_message = request.args.get('alert_message', None)
+
+        # 1. get company info
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return render_template('error.html', message="Empresa no encontrada"), 404
+
+        # 2. get the company prompts
+        prompts = self.prompt_service.get_user_prompts(company_short_name)
+
+        return render_template("chat.html",
+                               company=company,
+                               company_short_name=company_short_name,
+                               is_mobile=is_mobile,
+                               alert_message=alert_message,
+                               alert_icon='success' if alert_message else None,
+                               iatoolkit_base_url=os.getenv('IATOOLKIT_BASE_URL', 'http://localhost:5000'),
+                               prompts=prompts
+                               )

views/download_file_view.py

@@ -0,0 +1,58 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+import logging
+import os
+
+from flask import current_app, jsonify, send_from_directory
+from flask.views import MethodView
+from injector import inject
+
+from common.auth import IAuthentication
+from services.excel_service import ExcelService
+from services.profile_service import ProfileService
+
+
+class DownloadFileView(MethodView):
+    @inject
+    def __init__(self, iauthentication: IAuthentication, profile_service: ProfileService, excel_service: ExcelService):
+        self.iauthentication = iauthentication
+        self.profile_service = profile_service
+        self.excel_service = excel_service
+
+    def get(self, company_short_name: str, external_user_id: str, filename: str):
+        if not external_user_id:
+            return jsonify({"error": "Falta external_user_id"}), 400
+
+        iauth = self.iauthentication.verify(
+            company_short_name,
+            body_external_user_id=external_user_id
+        )
+        if not iauth.get("success"):
+            return jsonify(iauth), 401
+
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return jsonify({"error": "Empresa no encontrada"}), 404
+
+        file_validation = self.excel_service.validate_file_access(filename)
+        if file_validation:
+            return file_validation
+
+        temp_dir = os.path.join(current_app.root_path, 'static', 'temp')
+
+        try:
+            response = send_from_directory(
+                temp_dir,
+                filename,
+                as_attachment=True,
+                mimetype='application/octet-stream'
+            )
+            logging.info(f"Archivo descargado via API: {filename}")
+            return response
+        except Exception as e:
+            logging.error(f"Error descargando archivo {filename}: {str(e)}")
+            return jsonify({"error": "Error descargando archivo"}), 500
+

views/external_chat_login_view.py

@@ -0,0 +1,88 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+import os
+import logging
+from flask import request, jsonify, render_template
+from flask.views import MethodView
+from injector import inject
+from common.auth import IAuthentication
+from services.profile_service import ProfileService
+from services.query_service import QueryService
+from services.prompt_manager_service import PromptService
+from services.jwt_service import JWTService
+
+class ExternalChatLoginView(MethodView):
+    @inject
+    def __init__(self,
+                 profile_service: ProfileService,
+                 query_service: QueryService,
+                 prompt_service: PromptService,
+                 iauthentication: IAuthentication,
+                 jwt_service: JWTService
+                 ):
+        self.profile_service = profile_service
+        self.query_service = query_service
+        self.prompt_service = prompt_service
+        self.iauthentication = iauthentication
+        self.jwt_service = jwt_service
+
+    def post(self, company_short_name: str):
+        data = request.get_json()
+        if not data or 'external_user_id' not in data:
+            return jsonify({"error": "Falta external_user_id"}), 400
+
+        external_user_id = data['external_user_id']
+        # 1. get access credentials
+        iaut = self.iauthentication.verify(
+            company_short_name,
+            body_external_user_id=external_user_id
+        )
+        if not iaut.get("success"):
+            return jsonify(iaut), 401
+
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return jsonify({"error": "Empresa no encontrada"}), 404
+
+        try:
+            # 1. generate a new JWT, our secure access token.
+            token = self.jwt_service.generate_chat_jwt(
+                company_id=company.id,
+                company_short_name=company.short_name,
+                external_user_id=external_user_id,
+                expires_delta_seconds=3600 * 8  # 8 horas
+            )
+            if not token:
+                raise Exception("No se pudo generar el token de sesión (JWT).")
+
+            # 2. init the company/user LLM context.
+            self.query_service.llm_init_context(
+                company_short_name=company_short_name,
+                external_user_id=external_user_id
+            )
+
+            # 3. get the prompt list from backend
+            prompts = self.prompt_service.get_user_prompts(company_short_name)
+
+            # 4. render the chat page with the company/user information.
+            user_agent = request.user_agent
+            is_mobile = user_agent.platform in ["android", "iphone", "ipad"] or "mobile" in user_agent.string.lower()
+
+            chat_html = render_template("chat.html",
+                                        company=company,
+                                        company_short_name=company_short_name,
+                                        external_user_id=external_user_id,
+                                        is_mobile=is_mobile,
+                                        auth_method='jwt',  # login method is JWT
+                                        session_jwt=token,  # pass the token to the front-end
+                                        iatoolkit_base_url=os.getenv('IATOOLKIT_BASE_URL'),
+                                        prompts=prompts,
+                                        external_login=True)
+            return chat_html, 200
+
+        except Exception as e:
+            logging.exception(f"Error al inicializar el chat para {company_short_name}/{external_user_id}: {e}")
+            return jsonify({"error": "Error interno al iniciar el chat"}), 500

views/external_login_view.py

@@ -0,0 +1,40 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask.views import MethodView
+from injector import inject
+from common.auth import IAuthentication
+from services.query_service import QueryService
+from flask import jsonify
+import logging
+
+class ExternalLoginView(MethodView):
+
+    @inject
+    def __init__(self,
+                 iauthentication: IAuthentication,
+                 query_service: QueryService
+                 ):
+        self.iauthentication = iauthentication
+        self.query_service = query_service
+
+    def get(self, company_short_name: str, external_user_id: str):
+        # 1. get access credentials
+        iaut = self.iauthentication.verify(company_short_name, external_user_id)
+        if not iaut.get("success"):
+            return jsonify(iaut), 401
+
+        try:
+            # initialize the context
+            self.query_service.llm_init_context(
+                company_short_name=company_short_name,
+                external_user_id=external_user_id
+            )
+
+            return {'status': 'OK'}, 200
+        except Exception as e:
+            logging.exception(
+                f"Error inesperado al inicializar el contexto durante el login para company {company_short_name}: {e}")
+            return jsonify({"error_message": str(e)}), 500

views/file_store_view.py

@@ -0,0 +1,58 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask.views import MethodView
+from flask import request, jsonify
+from services.load_documents_service import LoadDocumentsService
+from repositories.profile_repo import ProfileRepo
+from injector import inject
+import base64
+
+
+class FileStoreView(MethodView):
+    @inject
+    def __init__(self,
+                 doc_service: LoadDocumentsService,
+                 profile_repo: ProfileRepo,):
+        self.doc_service = doc_service
+        self.profile_repo = profile_repo
+
+    def post(self):
+        try:
+            req_data = request.get_json()
+
+            required_fields = ['company', 'filename', 'content']
+            for field in required_fields:
+                if field not in req_data:
+                    return jsonify({"error": f"El campo {field} es requerido"}), 400
+
+            company_short_name = req_data.get('company', '')
+            filename = req_data.get('filename', False)
+            base64_content = req_data.get('content', '')
+            metadata = req_data.get('metadata', {})
+
+            # get company
+            company = self.profile_repo.get_company_by_short_name(company_short_name)
+            if not company:
+                return jsonify({"error": f"La empresa {company_short_name} no existe"}), 400
+
+            # get the file content from base64
+            content = base64.b64decode(base64_content)
+
+            new_document = self.doc_service.load_file_callback(
+                filename=filename,
+                content=content,
+                company=company,
+                context={'metadata': metadata})
+
+            return jsonify({
+                "document_id": new_document.id,
+            }), 200
+
+        except Exception as e:
+            response = jsonify({"error": str(e)})
+            response.status_code = 500
+
+            return response

views/forgot_password_view.py

@@ -0,0 +1,64 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask.views import MethodView
+from flask import render_template, request, url_for
+from injector import inject
+from services.profile_service import ProfileService
+from itsdangerous import URLSafeTimedSerializer
+import os
+
+class ForgotPasswordView(MethodView):
+    @inject
+    def __init__(self, profile_service: ProfileService):
+        self.profile_service = profile_service
+        self.serializer = URLSafeTimedSerializer(os.getenv("PASS_RESET_KEY"))
+
+    def get(self, company_short_name: str):
+        # get company info
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return render_template('error.html', message="Empresa no encontrada"), 404
+
+        return render_template('forgot_password.html',
+                               company=company,
+                               company_short_name=company_short_name
+                               )
+
+    def post(self, company_short_name: str):
+        company = self.profile_service.get_company_by_short_name(company_short_name)
+        if not company:
+            return render_template('error.html', message="Empresa no encontrada"), 404
+
+        try:
+            email = request.form.get('email')
+
+            # create a safe token and url for it
+            token = self.serializer.dumps(email, salt='password-reset')
+            reset_url = url_for('change_password',
+                                company_short_name=company_short_name,
+                                token=token, _external=True)
+
+            response = self.profile_service.forgot_password(email=email, reset_url=reset_url)
+            if "error" in response:
+                return render_template(
+                    'forgot_password.html',
+                    company=company,
+                    company_short_name=company_short_name,
+                    form_data={"email": email },
+                    alert_message=response["error"]), 400
+
+
+            return render_template('login.html',
+                                   company=company,
+                                   company_short_name=company_short_name,
+                                   alert_icon='success',
+                                   alert_message="Hemos enviado un enlace a tu correo para restablecer la contraseña.")
+        except Exception as e:
+            return render_template("error.html",
+                                   company=company,
+                                   company_short_name=company_short_name,
+                                   message="Ha ocurrido un error inesperado."), 500
+

views/history_view.py

@@ -0,0 +1,57 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask import request, jsonify, render_template
+from flask.views import MethodView
+from services.history_service import HistoryService
+from common.auth import IAuthentication
+from injector import inject
+import logging
+
+
+class HistoryView(MethodView):
+    @inject
+    def __init__(self,
+                 iauthentication: IAuthentication,
+                 history_service: HistoryService ):
+        self.iauthentication = iauthentication
+        self.history_service = history_service
+
+    def post(self, company_short_name):
+        try:
+            data = request.get_json()
+        except Exception:
+            return jsonify({"error_message": "Cuerpo de la solicitud JSON inválido o faltante"}), 400
+
+        if not data:
+            return jsonify({"error_message": "Cuerpo de la solicitud JSON inválido o faltante"}), 400
+
+        # get access credentials
+        iaut = self.iauthentication.verify(company_short_name, data.get("external_user_id"))
+        if not iaut.get("success"):
+            return jsonify(iaut), 401
+
+        external_user_id = data.get("external_user_id")
+        local_user_id = data.get("local_user_id", 0)
+
+        try:
+            response = self.history_service.get_history(
+                company_short_name=company_short_name,
+                external_user_id=external_user_id,
+                local_user_id=local_user_id
+            )
+
+            if "error" in response:
+                return {'error_message': response["error"]}, 402
+
+            return response, 200
+        except Exception as e:
+            logging.exception(
+                f"Error inesperado al obtener el historial de consultas para company {company_short_name}: {e}")
+            if local_user_id:
+                return render_template("error.html",
+                                       message="Ha ocurrido un error inesperado."), 500
+            else:
+                return jsonify({"error_message": str(e)}), 500

views/home_view.py

@@ -0,0 +1,34 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask.views import MethodView
+from flask import render_template, request
+from injector import inject
+from services.profile_service import ProfileService
+import os
+
+
+class HomeView(MethodView):
+    @inject
+    def __init__(self,
+                 profile_service: ProfileService):
+        self.profile_service = profile_service
+
+    def get(self):
+        user_agent = request.user_agent
+        is_mobile = user_agent.platform in ["android", "iphone", "ipad"] or "mobile" in user_agent.string.lower()
+        alert_message = request.args.get('alert_message', None)
+        companies = self.profile_service.get_companies()
+
+        # Esta API_KEY para el login
+        api_key_for_login = os.getenv("IATOOLKIT_API_KEY", "tu_api_key_por_defecto_o_error")
+
+        return render_template('home.html',
+                               companies=companies,
+                               is_mobile=is_mobile,
+                               alert_message=alert_message,
+                               alert_icon='success' if alert_message else None,
+                               api_key=api_key_for_login
+                               )