PyPI - xiaoshiai-hub - Versions diffs - 0.1.3__py3-none-any.whl → 1.0.0__py3-none-any.whl - Mend

xiaoshiai-hub 0.1.3py3-none-any.whl → 1.0.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

xiaoshiai_hub/__init__.py +2 -27
xiaoshiai_hub/client.py +11 -58
xiaoshiai_hub/download.py +20 -199
xiaoshiai_hub/exceptions.py +1 -5
xiaoshiai_hub/types.py +0 -16
xiaoshiai_hub/upload.py +477 -711
xiaoshiai_hub-1.0.0.dist-info/METADATA +473 -0
xiaoshiai_hub-1.0.0.dist-info/RECORD +11 -0
xiaoshiai_hub/encryption.py +0 -777
xiaoshiai_hub-0.1.3.dist-info/METADATA +0 -560
xiaoshiai_hub-0.1.3.dist-info/RECORD +0 -12
{xiaoshiai_hub-0.1.3.dist-info → xiaoshiai_hub-1.0.0.dist-info}/WHEEL +0 -0
{xiaoshiai_hub-0.1.3.dist-info → xiaoshiai_hub-1.0.0.dist-info}/licenses/LICENSE +0 -0
{xiaoshiai_hub-0.1.3.dist-info → xiaoshiai_hub-1.0.0.dist-info}/top_level.txt +0 -0

xiaoshiai_hub/upload.py CHANGED Viewed

@@ -1,32 +1,30 @@
 """
-Upload utilities for XiaoShi AI Hub SDK using GitPython
+Upload utilities for XiaoShi AI Hub SDK using HTTP API
 """
-import os
-import shutil
-import json
+import base64
 import hashlib
+import os
+import tempfile
 from pathlib import Path
-from typing import List, Optional, Union, Callable, Dict, Any
-from urllib.parse import urlparse, urlunparse
-from datetime import datetime, timezone
+from typing import List, Optional, Union, Dict
-from xiaoshiai_hub.client import DEFAULT_BASE_URL
+import requests
-try:
-    from git import Repo, GitCommandError, InvalidGitRepositoryError
-except ImportError:
-    raise ImportError(
-        "GitPython is required for upload functionality. "
-        "Install it with: pip install gitpython"
-    )
+from xiaoshiai_hub.client import DEFAULT_BASE_URL, HubClient
+from .exceptions import HubException, AuthenticationError, RepositoryNotFoundError
+from xpai_enc import enc_file
+from key_manager import KeyManager
 try:
     from tqdm.auto import tqdm
 except ImportError:
     tqdm = None
-from .exceptions import HubException, AuthenticationError, RepositoryNotFoundError, EncryptionError
+# File extensions that require encryption
+ENCRYPTABLE_EXTENSIONS = {".safetensors", ".bin", ".pt", ".pth", ".ckpt"}
 class UploadError(HubException):
@@ -34,176 +32,253 @@ class UploadError(HubException):
     pass
-def _build_git_url(
+def _build_api_url(
     base_url: Optional[str],
     organization: str,
     repo_type: str,
     repo_name: str,
-    username: Optional[str] = None,
-    password: Optional[str] = None,
-    token: Optional[str] = None,
 ) -> str:
-    """
-    Build Git repository URL with authentication.
-    Args:
-        base_url: Base URL of the Hub API
-        organization: Organization name
-        repo_type: Repository type ("models" or "datasets")
-        repo_name: Repository name
-        username: Username for authentication
-        password: Password for authentication
-        token: Token for authentication
-    Returns:
-        Git repository URL with embedded credentials
-    """
-    # Parse base URL to get the host
+    """Build API upload URL."""
     base_url = (base_url or DEFAULT_BASE_URL).rstrip('/')
-    parsed = urlparse(base_url)
-    host = parsed.netloc
-    scheme = parsed.scheme or 'https'
-    # Build repository path
-    repo_path = f"moha/{organization}/{repo_type}/{repo_name}.git"
+    return f"{base_url}/{organization}/{repo_type}/{repo_name}/api/upload"
+def _create_session(
+    token: Optional[str] = None,
+    username: Optional[str] = None,
+    password: Optional[str] = None
+) -> requests.Session:
+    """Create HTTP session with authentication."""
+    session = requests.Session()
-    # Add authentication to URL
     if token:
-        # Use token as username with empty password
-        netloc = f"oauth2:{token}@{host}"
+        session.headers.update({'Authorization': f'Bearer {token}'})
     elif username and password:
-        netloc = f"{username}:{password}@{host}"
-    else:
-        netloc = host
-    # Construct full URL
-    git_url = urlunparse((scheme, netloc, repo_path, '', '', ''))
+        from requests.auth import HTTPBasicAuth
+        session.auth = HTTPBasicAuth(username, password)  # type: ignore
-    return git_url
+    session.headers.update({'Content-Type': 'application/json'})
+    return session
-def _calculate_file_hash(file_path: Path) -> str:
-    """
-    Calculate SHA256 hash of a file.
-    Args:
-        file_path: Path to the file
-    Returns:
-        Hexadecimal hash string
-    """
+def _calculate_file_sha256(file_path: Path) -> str:
+    """Calculate SHA256 hash of a file."""
     sha256_hash = hashlib.sha256()
-    with open(file_path, "rb") as f:
-        for byte_block in iter(lambda: f.read(4096), b""):
-            sha256_hash.update(byte_block)
+    with open(file_path, 'rb') as f:
+        for chunk in iter(lambda: f.read(8192), b''):
+            sha256_hash.update(chunk)
     return sha256_hash.hexdigest()
-def _should_encrypt_file(file_path: str, encryption_exclude: List[str]) -> bool:
+class _TqdmUploadWrapper:
+    """Wrapper to add tqdm progress bar to file upload."""
+    def __init__(self, file_obj, total_size, desc=None):
+        self.file_obj = file_obj
+        self.total_size = total_size
+        self.pbar = None
+        if tqdm:
+            self.pbar = tqdm(
+                total=total_size,
+                unit='B',
+                unit_scale=True,
+                unit_divisor=1024,
+                desc=desc,
+            )
+    def read(self, size=-1):
+        """Read data and update progress bar."""
+        data = self.file_obj.read(size)
+        if self.pbar is not None and data:
+            self.pbar.update(len(data))
+        return data
+    def __enter__(self):
+        return self
+    def __exit__(self, _exc_type, _exc_val, _exc_tb):
+        if self.pbar is not None:
+            self.pbar.close()
+        self.file_obj.close()
+def _upload_file_with_progress(
+    upload_url: str,
+    file_path: Path,
+    desc: Optional[str] = None,
+) -> None:
+    """Upload file to URL with progress bar."""
+    file_size = file_path.stat().st_size
+    with open(file_path, 'rb') as f:
+        with _TqdmUploadWrapper(f, file_size, desc=desc) as wrapped_file:
+            upload_response = requests.put(
+                upload_url,
+                data=wrapped_file,
+                headers={'Content-Type': 'application/octet-stream'}
+            )
+            upload_response.raise_for_status()
+def _encrypt_file_if_needed(
+    file_path: Path,
+    encryption_password: Optional[str] = None,
+) -> tuple[Optional[Path], Optional[Path]]:
     """
-    Check if a file should be encrypted based on exclude patterns.
+    Encrypt file if encryption_password is provided, file is large enough, and file extension is encryptable.
     Args:
-        file_path: Relative path of the file (relative to folder_path)
-        encryption_exclude: List of patterns to exclude from encryption
+        file_path: Path to the file to encrypt
+        encryption_password: Password for encryption
     Returns:
-        True if file should be encrypted, False otherwise
-    """
-    import fnmatch
-    if not encryption_exclude:
-        return True
-    for pattern in encryption_exclude:
-        # Match against the full relative path
-        if fnmatch.fnmatch(file_path, pattern):
-            return False
-    return True
-def _create_encryption_metadata(
-    encrypted_files: List[Dict[str, Any]],
-    algorithm: str,
-    version: str = "1.0"
-) -> Dict[str, Any]:
+        Tuple of (encrypted_file_path, temp_dir_path)
+        If no encryption, returns (None, None)
     """
-    Create encryption metadata structure.
-    Args:
-        encrypted_files: List of encrypted file information
-        algorithm: Encryption algorithm used
-        version: Metadata format version
+    if not encryption_password:
+        return None, None
+    # Check file size first (only encrypt files >= 5MB)
+    file_size = file_path.stat().st_size
+    if file_size < 5 * 1024 * 1024:
+        return None, None
+    # Check if file extension requires encryption
+    if file_path.suffix.lower() not in ENCRYPTABLE_EXTENSIONS:
+        return None, None
+    # Generate encryption key from password
+    encryption_key = KeyManager.generate_key(encryption_password)
+    # Create temporary directory for encrypted file
+    temp_dir = Path(tempfile.mkdtemp())
+    encrypted_file = temp_dir / file_path.name
+    manifest_path = temp_dir / "xpai_encryption_manifest.enc"
+    # Encrypt the file
+    enc_file(
+        source=file_path,
+        dest=encrypted_file,
+        encryption_key=encryption_key,
+        manifest_path=manifest_path,
+    )
-    Returns:
-        Encryption metadata dictionary
-    """
-    return {
-        "version": version,
-        "createAt": datetime.now(timezone.utc).isoformat().replace('+00:00', 'Z'),
-        "files": encrypted_files
+    return encrypted_file, temp_dir
+def _upload_files_via_api(
+    session: requests.Session,
+    api_url: str,
+    files: List[Dict],
+    message: str,
+    branch: str,
+    author: Optional[Dict] = None,
+) -> Dict:
+    """Upload files via HTTP API."""
+    payload = {
+        "files": files,
+        "message": message,
+        "branch": branch,
     }
+    if author:
+        payload["author"] = author
+    try:
+        response = session.post(api_url, json=payload)
+        response.raise_for_status()
+        return response.json()
+    except requests.exceptions.HTTPError as e:
+        if e.response.status_code == 401:
+            raise AuthenticationError(f"Authentication failed: {e}")
+        elif e.response.status_code == 404:
+            raise RepositoryNotFoundError(f"Repository not found: {e}")
+        else:
+            raise UploadError(f"Upload failed: {e}")
+    except requests.exceptions.RequestException as e:
+        raise UploadError(f"Request failed: {e}")
+def _upload_small_file(
+    session: requests.Session,
+    api_url: str,
+    local_path: Path,
+    remote_path: str,
+    message: str,
+    branch: str,
+) -> Dict:
+    """Upload small file (< 5MB) with base64 encoding."""
+    file_size = local_path.stat().st_size
+    # Show progress bar for reading file
+    pbar = None
+    if tqdm and file_size > 0:
+        pbar = tqdm(
+            total=file_size,
+            unit='B',
+            unit_scale=True,
+            unit_divisor=1024,
+            desc=f"Uploading {local_path.name}",
+        )
-def _write_encryption_metadata(repo_path: Path, metadata: Dict[str, Any]) -> None:
-    """
-    Write encryption metadata to .moha_encryption file.
-    Args:
-        repo_path: Path to the repository
-        metadata: Encryption metadata dictionary
-    """
-    metadata_file = repo_path / ".moha_encryption"
-    with open(metadata_file, 'w', encoding='utf-8') as f:
-        json.dump(metadata, f, indent=2, ensure_ascii=False)
-    print(f"Encryption metadata written to .moha_encryption")
-def _count_files_in_directory(directory: str, ignore_patterns: Optional[List[str]] = None) -> int:
-    """
-    Count total number of files in a directory.
-    Args:
-        directory: Directory path
-        ignore_patterns: List of patterns to ignore (e.g., ['.git', '__pycache__'])
-    Returns:
-        Total number of files
-    """
-    import fnmatch
-    count = 0
-    for root, dirs, files in os.walk(directory):
-        # Get relative path from directory
-        rel_root = os.path.relpath(root, directory)
-        if ignore_patterns:
-            dirs[:] = [d for d in dirs if not any(
-                fnmatch.fnmatch(d, pattern) for pattern in ignore_patterns
-            )]
-        if ignore_patterns:
-            filtered_files = []
-            for f in files:
-                # Construct relative file path
-                if rel_root == '.':
-                    rel_file_path = f
-                else:
-                    rel_file_path = os.path.join(rel_root, f)
-                # Check if file matches any ignore pattern
-                should_ignore = any(
-                    fnmatch.fnmatch(rel_file_path, pattern) for pattern in ignore_patterns
-                )
-                if not should_ignore:
-                    filtered_files.append(f)
-            files = filtered_files
-        count += len(files)
-    return count
+    try:
+        with open(local_path, 'rb') as f:
+            content = f.read()
+            if pbar is not None:
+                pbar.update(file_size)
+        content_b64 = base64.b64encode(content).decode('utf-8')
+        files = [{
+            "path": remote_path,
+            "content": content_b64,
+            "size": len(content),
+        }]
+        result = _upload_files_via_api(session, api_url, files, message, branch)
+        if pbar is not None:
+            pbar.close()
+        return result
+    except Exception:
+        if pbar is not None:
+            pbar.close()
+        raise
+def _upload_large_file(
+    session: requests.Session,
+    api_url: str,
+    local_path: Path,
+    remote_path: str,
+    message: str,
+    branch: str,
+) -> Dict:
+    """Upload large file (≥ 5MB) using LFS."""
+    file_size = os.path.getsize(local_path)
+    sha256 = _calculate_file_sha256(local_path)
+    files = [{
+        "path": remote_path,
+        "size": file_size,
+        "sha256": sha256,
+    }]
+    # Step 1: Request upload URL
+    result = _upload_files_via_api(session, api_url, files, message, branch)
+    # Step 2: Upload to S3 if needed
+    if result.get('needUpload'):
+        upload_url = result['uploadUrls'].get(remote_path)
+        if upload_url:
+            _upload_file_with_progress(
+                upload_url,
+                local_path,
+                desc=f"Uploading {local_path.name}"
+            )
+            print(f"Upload completed: {remote_path}")
+    return result
 def upload_folder(
@@ -217,331 +292,222 @@ def upload_folder(
     username: Optional[str] = None,
     password: Optional[str] = None,
     token: Optional[str] = None,
-    ignore_patterns: Optional[List[str]] = None, # 上传的时候忽略的文件
-    encryption_key: Optional[Union[str, bytes]] = None,
-    encryption_exclude: Optional[List[str]] = None, # 加密的时候排除的文件
-    encryption_algorithm: Optional[str] = None,
+    encryption_password: Optional[str] = None,
+    ignore_patterns: Optional[List[str]] = None,
     temp_dir: Optional[Union[str, Path]] = None,
-    skip_lfs: Optional[bool] = True,
-) -> str:
+) -> Dict:
     """
-    Upload a folder to a repository using Git.
-    This function clones the repository, copies files from the folder,
-    commits the changes, and pushes to the remote repository.
+    Upload a folder to a repository using HTTP API.
     Args:
         folder_path: Path to the folder to upload
         repo_id: Repository ID in the format "organization/repo_name"
         repo_type: Type of repository ("models" or "datasets")
         revision: Branch to upload to (default: "main")
-        commit_message: Commit message (default: "Upload folder")
+        commit_message: Commit message
         commit_description: Additional commit description
         base_url: Base URL of the Hub API
         username: Username for authentication
         password: Password for authentication
-        token: Token for authentication (preferred over username/password)
-        ignore_patterns: List of patterns to ignore (e.g., ['.git', '*.pyc', '__pycache__'])
-        encryption_key: Encryption key for encrypted repositories (string for symmetric, PEM for asymmetric)
-        encryption_exclude: List of file patterns to exclude from encryption (e.g., ['*.txt', 'README.md'])
-        encryption_algorithm: Encryption algorithm to use (default: 'aes-256-cbc')
-            - Symmetric: 'aes-256-cbc', 'aes-256-gcm'
-            - Asymmetric: 'rsa-oaep', 'rsa-pkcs1v15' (requires RSA public key in PEM format)
-        temp_dir: Custom temporary directory path for cloning repository (default: system temp directory)
-        skip_lfs: Skip LFS files when cloning the repository (default: True)
+        token: Token for authentication (preferred)
+        encryption_password: Password for file encryption (optional)
+        ignore_patterns: List of patterns to ignore
+        temp_dir: Temporary directory for encrypted files (optional, auto-created if not specified)
     Returns:
-        Commit hash of the uploaded changes
-    Raises:
-        RepositoryNotFoundError: If the repository does not exist
-        EncryptionError: If repository requires encryption but encryption_key is not provided
-    Example:
-        >>> commit_hash = upload_folder(
-        ...     folder_path="./my_model",
-        ...     repo_id="demo/my-model",
-        ...     repo_type="models",
-        ...     commit_message="Upload model files",
-        ...     token="your-token",
-        ... )
-        >>> # Upload to encrypted repository
-        >>> commit_hash = upload_folder(
-        ...     folder_path="./my_model",
-        ...     repo_id="demo/encrypted-model",
-        ...     repo_type="models",
-        ...     encryption_key="my-secret-key",
-        ...     encryption_exclude=["README.md", "*.txt"],
-        ...     token="your-token",
-        ... )
+        Upload response
     """
-    import tempfile
     import fnmatch
-    from .client import HubClient
+    import shutil
+    # Parse repo_id
     parts = repo_id.split('/')
     if len(parts) != 2:
         raise ValueError(f"Invalid repo_id format: {repo_id}. Expected 'organization/repo_name'")
     organization, repo_name = parts
-    client = HubClient(
-        base_url=base_url,
-        username=username,
-        password=password,
-        token=token,
-    )
+    # Check if repository exists
+    client = HubClient(base_url=base_url, username=username, password=password, token=token)
     try:
-        client.get_repository_info(
-            organization=organization,
-            repo_type=repo_type,
-            repo_name=repo_name,
-        )
+        client.get_repository_info(organization, repo_type, repo_name)
     except RepositoryNotFoundError:
         raise RepositoryNotFoundError(
-            f"Repository '{repo_id}' does not exist. "
-            "Please create the repository before uploading."
+            f"Repository not found: {organization}/{repo_type}/{repo_name}. "
+            f"Please create the repository first."
         )
-    is_encrypted = bool(encryption_key)
-    # Validate folder path
+    # Validate folder
     folder_path = Path(folder_path)
     if not folder_path.exists():
         raise FileNotFoundError(f"Folder not found: {folder_path}")
     if not folder_path.is_dir():
         raise ValueError(f"Path is not a directory: {folder_path}")
+    # Setup ignore patterns
     if ignore_patterns is None:
         ignore_patterns = []
-    if encryption_exclude is None:
-        encryption_exclude = []
-    # Build Git URL
-    git_url = _build_git_url(
-        base_url=base_url,
-        organization=organization,
-        repo_type=repo_type,
-        repo_name=repo_name,
-        username=username,
-        password=password,
-        token=token,
-    )
-    if temp_dir is not None:
-        import uuid
-        temp_dir_path = Path(temp_dir)
-        temp_dir_path.mkdir(parents=True, exist_ok=True)
-        unique_dir = temp_dir_path / f"upload_{uuid.uuid4().hex[:8]}"
-        unique_dir.mkdir(parents=True, exist_ok=True)
-        temp_context = None
-        working_temp_dir = unique_dir
-    else:
-        temp_context = tempfile.TemporaryDirectory()
-        working_temp_dir = Path(temp_context.__enter__())
-        unique_dir = None
+    if '.git' not in ignore_patterns and '.git/' not in ignore_patterns:
+        ignore_patterns.append('.git')
+    ignore_patterns.append('.gitattributes')
+    # Prepare encryption if needed
+    encryption_key = None
+    if encryption_password:
+        encryption_key = KeyManager.generate_key(encryption_password)
+    # Create or use temporary directory for encrypted files
+    temp_dir_path: Optional[Path] = None
+    if encryption_key:
+        if temp_dir:
+            # Use user-specified temp directory
+            temp_dir_path = Path(temp_dir)
+            temp_dir_path.mkdir(parents=True, exist_ok=True)
+        else:
+            # Auto-create temp directory
+            temp_dir_path = Path(tempfile.mkdtemp())
     try:
-        repo_path = working_temp_dir / "repo"
-        try:
-            try:
-                env_mapping = None
-                if skip_lfs:
-                    env_mapping={'GIT_LFS_SKIP_SMUDGE': "1"}
-                repo = Repo.clone_from(
-                    git_url,
-                    repo_path,
-                    branch=revision,
-                    depth=1,
-                    env=env_mapping,
-                )
-            except GitCommandError as e:
-                if "Authentication failed" in str(e) or "authentication" in str(e).lower():
-                    raise AuthenticationError(f"Authentication failed: {e}")
-                raise UploadError(f"Failed to clone repository: {e}")
-            # 过滤掉忽略的文件，需要上传的文件总数
-            total_files = _count_files_in_directory(str(folder_path), ignore_patterns)
-            print(f"Copying files from {folder_path} to repository...")
-            progress_bar = None
-            if tqdm is not None and total_files > 0:
-                progress_bar = tqdm(
-                    total=total_files,
-                    unit='file',
-                    desc="Copying files",
-                    leave=True,
-                )
-            files_copied = 0
-            files_to_encrypt = []  # 标记哪些文件需要加密
-            for root, dirs, files in os.walk(folder_path):
-                dirs[:] = [d for d in dirs if not any(
-                    fnmatch.fnmatch(d, pattern) for pattern in ignore_patterns
-                )]
-                # 相对路径
-                rel_root = os.path.relpath(root, folder_path)
-                if rel_root == '.':
-                    dest_root = repo_path
-                else:
-                    dest_root = repo_path / rel_root
-                # Create destination directory
-                dest_root.mkdir(parents=True, exist_ok=True)
-                # Copy files
-                for file in files:
-                    # Construct relative file path (relative to folder_path)
-                    if rel_root == '.':
-                        rel_file_path = file
-                    else:
-                        rel_file_path = os.path.join(rel_root, file)
-                    # Check ignore patterns using full relative path
-                    if any(fnmatch.fnmatch(rel_file_path, pattern) for pattern in ignore_patterns):
-                        continue
-                    src_file = Path(root) / file
-                    dest_file = dest_root / file
-                    # Copy file
-                    shutil.copy2(src_file, dest_file)
-                    files_copied += 1
-                    # 把需要加密的文件写入列表 (使用完整相对路径)
-                    if is_encrypted and _should_encrypt_file(rel_file_path, encryption_exclude):
-                        files_to_encrypt.append(dest_file)
-                    if progress_bar is not None:
-                        progress_bar.update(1)
-            if progress_bar is not None:
-                progress_bar.close()
-            print(f"Copied {files_copied} files")
-            # 处理加密元数据文件
-            metadata_file = repo_path / ".moha_encryption"
+        # Create session and API URL
+        session = _create_session(token, username, password)
+        api_url = _build_api_url(base_url, organization, repo_type, repo_name)
+        # Prepare commit message
+        if commit_message is None:
+            commit_message = f"Upload folder from {folder_path.name}"
+        if commit_description:
+            commit_message = f"{commit_message}\n\n{commit_description}"
+        # Collect all files
+        files_to_upload = []
+        large_files = []  # Files >= 5MB
+        small_files = []  # Files < 5MB
+        for root, dirs, files in os.walk(folder_path):
+            # Filter directories
+            dirs[:] = [d for d in dirs if not any(
+                fnmatch.fnmatch(d, pattern) for pattern in ignore_patterns
+            )]
-            # 加密
-            if is_encrypted and files_to_encrypt:
-                # Determine encryption algorithm
-                from .encryption import EncryptionAlgorithm, encrypt_file as encrypt_file_func
+            rel_root = os.path.relpath(root, folder_path)
-                if encryption_algorithm is None:
-                    algorithm = EncryptionAlgorithm.AES_256_CBC
+            for file in files:
+                # Construct relative file path
+                if rel_root == '.':
+                    rel_file_path = file
                 else:
-                    try:
-                        algorithm = EncryptionAlgorithm(encryption_algorithm)
-                    except ValueError:
-                        raise EncryptionError(
-                            f"Invalid encryption algorithm: {encryption_algorithm}. "
-                            f"Supported algorithms: {', '.join([a.value for a in EncryptionAlgorithm])}"
-                        )
-                print(f"Encrypting {len(files_to_encrypt)} files using {algorithm.value}...")
-                encrypt_progress = None
-                if tqdm is not None:
-                    encrypt_progress = tqdm(
-                        total=len(files_to_encrypt),
-                        unit='file',
-                        desc="Encrypting files",
-                        leave=True,
+                    rel_file_path = os.path.join(rel_root, file)
+                # Check if file matches ignore pattern
+                if any(fnmatch.fnmatch(rel_file_path, pattern) for pattern in ignore_patterns):
+                    continue
+                local_file = Path(root) / file
+                file_size = local_file.stat().st_size
+                # Encrypt file if needed (only for large files with specific extensions)
+                actual_file = local_file
+                if (encryption_key and temp_dir_path and
+                    file_size >= 5 * 1024 * 1024 and  # Only encrypt files >= 5MB
+                    local_file.suffix.lower() in ENCRYPTABLE_EXTENSIONS):
+                    # Preserve directory structure in temp dir
+                    encrypted_file = temp_dir_path / rel_file_path
+                    encrypted_file.parent.mkdir(parents=True, exist_ok=True)
+                    enc_file(
+                        source=local_file,
+                        dest=encrypted_file,
+                        encryption_key=encryption_key,
+                        manifest_path=temp_dir_path / "xpai_encryption_manifest.enc",
                     )
-                # 收集加密文件的元数据
-                encrypted_files_metadata = []
-                for file_path in files_to_encrypt:
-                    # 加密文件
-                    encrypt_file_func(file_path, encryption_key, algorithm)
-                    # 计算加密后的文件信息
-                    encrypted_size = file_path.stat().st_size
-                    encrypted_hash = _calculate_file_hash(file_path)
-                    # 获取相对于 repo_path 的路径
-                    rel_path = file_path.relative_to(repo_path)
-                    # 添加到元数据列表
-                    encrypted_files_metadata.append({
-                        "path": str(rel_path),
-                        "algorithm": algorithm.value,
-                        "encryptedSize": encrypted_size,
-                        "encryptedHash": encrypted_hash,
+                    actual_file = encrypted_file
+                # Determine upload method based on size
+                if file_size >= 5 * 1024 * 1024:  # 5MB
+                    # Large file - use LFS
+                    sha256 = _calculate_file_sha256(actual_file)
+                    files_to_upload.append({
+                        "path": rel_file_path,
+                        "size": file_size,
+                        "sha256": sha256,
+                    })
+                    large_files.append((actual_file, rel_file_path))
+                else:
+                    # Small file - use base64
+                    with open(actual_file, 'rb') as f:
+                        content = f.read()
+                    content_b64 = base64.b64encode(content).decode('utf-8')
+                    files_to_upload.append({
+                        "path": rel_file_path,
+                        "content": content_b64,
+                        "size": file_size,
                     })
+                    small_files.append((rel_file_path, file_size))
+        # Add encryption manifest file if it exists
+        if temp_dir_path:
+            manifest_file = temp_dir_path / "xpai_encryption_manifest.enc"
+            if manifest_file.exists():
+                manifest_size = manifest_file.stat().st_size
+                # Read manifest file content
+                with open(manifest_file, 'rb') as f:
+                    manifest_content = f.read()
+                manifest_b64 = base64.b64encode(manifest_content).decode('utf-8')
+                # Add to files to upload
+                files_to_upload.append({
+                    "path": "xpai_encryption_manifest.enc",
+                    "content": manifest_b64,
+                    "size": manifest_size,
+                })
+                small_files.append(("xpai_encryption_manifest.enc", manifest_size))
+        print(f"Found {len(files_to_upload)} files to upload ({len(large_files)} large files, {len(small_files)} small files)")
+        # Show progress for small files upload
+        small_files_pbar = None
+        if small_files and tqdm:
+            total_small_size = sum(size for _, size in small_files)
+            small_files_pbar = tqdm(
+                total=total_small_size,
+                unit='B',
+                unit_scale=True,
+                unit_divisor=1024,
+                desc="Uploading small files",
+            )
+        # Upload files via API
+        try:
+            result = _upload_files_via_api(session, api_url, files_to_upload, commit_message, revision)
+            # Update progress bar for small files
+            if small_files_pbar is not None:
+                for _, size in small_files:
+                    small_files_pbar.update(size)
+                small_files_pbar.close()
+        except Exception:
+            if small_files_pbar is not None:
+                small_files_pbar.close()
+            raise
+        # Upload large files to S3 if needed
+        if result.get('needUpload') and large_files:
+            upload_urls = result.get('uploadUrls', {})
+            for local_file, remote_path in large_files:
+                upload_url = upload_urls.get(remote_path)
+                if upload_url:
+                    _upload_file_with_progress(
+                        upload_url,
+                        local_file,
+                        desc=f"Uploading {local_file.name}"
+                    )
+                    print(f"Upload completed: {remote_path}")
-                    if encrypt_progress is not None:
-                        encrypt_progress.update(1)
-                if encrypt_progress is not None:
-                    encrypt_progress.close()
-                print(f"Encrypted {len(files_to_encrypt)} files")
-                # 写入加密元数据文件
-                encryption_metadata = _create_encryption_metadata(
-                    encrypted_files=encrypted_files_metadata,
-                    algorithm=algorithm.value
-                )
-                _write_encryption_metadata(repo_path, encryption_metadata)
-            else:
-                # 如果不是加密上传，删除可能存在的加密元数据文件
-                if metadata_file.exists():
-                    metadata_file.unlink()
-                    print("Removed .moha_encryption file (non-encrypted upload)")
-            repo.git.add(A=True)
-            if not repo.is_dirty() and not repo.untracked_files:
-                print("No changes to commit")
-                return repo.head.commit.hexsha
-            if commit_message is None:
-                commit_message = f"Upload folder from {folder_path.name}"
-            full_message = commit_message
-            if commit_description:
-                full_message = f"{commit_message}\n\n{commit_description}"
-            # Commit changes
-            print(f"Committing changes: {commit_message}")
-            commit = repo.index.commit(full_message)
-            try:
-                origin = repo.remote(name='origin')
-                origin.push(refspec=f'{revision}:{revision}')
-            except GitCommandError as e:
-                if "Authentication failed" in str(e) or "authentication" in str(e).lower():
-                    raise AuthenticationError(f"Authentication failed during push: {e}")
-                raise UploadError(f"Failed to push changes: {e}")
-            print(f"Successfully uploaded to {repo_id}")
-            print(f"Commit hash: {commit.hexsha}")
-            return commit.hexsha
-        except (GitCommandError, InvalidGitRepositoryError) as e:
-            raise UploadError(f"Git operation failed: {e}")
+        print(f"Successfully uploaded to {repo_id}")
+        return result
     finally:
-        # Clean up temporary directory
-        if temp_context is not None:
-            # Clean up system temp directory
-            try:
-                temp_context.__exit__(None, None, None)
-            except Exception:
-                pass  # Ignore cleanup errors
-        elif unique_dir is not None:
-            # Clean up custom temp directory
-            try:
-                import shutil as shutil_cleanup
-                shutil_cleanup.rmtree(unique_dir, ignore_errors=True)
-            except Exception:
-                pass  # Ignore cleanup errors
+        if temp_dir_path and temp_dir_path.exists():
+            shutil.rmtree(temp_dir_path)
 def upload_file(
-    path_or_fileobj: Union[str, Path, bytes],
+    path_file: Union[str, Path],
     path_in_repo: str,
     repo_id: str,
     repo_type: str = "models",
@@ -552,17 +518,14 @@ def upload_file(
     username: Optional[str] = None,
     password: Optional[str] = None,
     token: Optional[str] = None,
-    encryption_key: Optional[Union[str, bytes]] = None,
-    encryption_algorithm: Optional[str] = None,
-    temp_dir: Optional[Union[str, Path]] = None,
-    skip_lfs: Optional[bool] = True, # 当克隆仓库的时候，跳过lfs的大文件下载,只需要下载lfs文件指针
-) -> str:
+    encryption_password: Optional[str] = None,
+) -> Dict:
     """
-    Upload a single file to a repository.
+    Upload a single file to a repository using HTTP API.
     Args:
-        path_or_fileobj: Path to the file or file content as bytes
-        path_in_repo: Path where the file should be stored in the repository
+        path_file: Path to the local file
+        path_in_repo: Path in the repository
         repo_id: Repository ID in the format "organization/repo_name"
         repo_type: Type of repository ("models" or "datasets")
         revision: Branch to upload to (default: "main")
@@ -571,283 +534,86 @@ def upload_file(
         base_url: Base URL of the Hub API
         username: Username for authentication
         password: Password for authentication
-        token: Token for authentication
-        encryption_key: Encryption key for encrypted repositories (string for symmetric, PEM for asymmetric)
-        encryption_algorithm: Encryption algorithm to use (default: 'aes-256-cbc')
-            - Symmetric: 'aes-256-cbc', 'aes-256-gcm'
-            - Asymmetric: 'rsa-oaep', 'rsa-pkcs1v15' (requires RSA public key in PEM format)
-        temp_dir: Custom temporary directory path for cloning repository (default: system temp directory)
-        skip_lfs: Skip LFS files when cloning the repository (default: True)
+        token: Token for authentication (preferred)
+        encryption_password: Password for file encryption (optional)
     Returns:
-        Commit hash of the uploaded file
-    Raises:
-        RepositoryNotFoundError: If the repository does not exist
-        EncryptionError: If repository requires encryption but encryption_key is not provided
-    Example:
-        >>> commit_hash = upload_file(
-        ...     path_or_fileobj="./config.yaml",
-        ...     path_in_repo="config.yaml",
-        ...     repo_id="demo/my-model",
-        ...     commit_message="Upload config file",
-        ...     token="your-token",
-        ... )
-        >>> # Upload to encrypted repository
-        >>> commit_hash = upload_file(
-        ...     path_or_fileobj="./model.bin",
-        ...     path_in_repo="model.bin",
-        ...     repo_id="demo/encrypted-model",
-        ...     encryption_key="my-secret-key",
-        ...     token="your-token",
-        ... )
+        Upload response
     """
-    import tempfile
-    from .client import HubClient
+    import shutil
     # Parse repo_id
     parts = repo_id.split('/')
     if len(parts) != 2:
         raise ValueError(f"Invalid repo_id format: {repo_id}. Expected 'organization/repo_name'")
     organization, repo_name = parts
-    client = HubClient(
-        base_url=base_url,
-        username=username,
-        password=password,
-        token=token,
-    )
+    # Check if repository exists
+    client = HubClient(base_url=base_url, username=username, password=password, token=token)
     try:
-        client.get_repository_info(
-            organization=organization,
-            repo_type=repo_type,
-            repo_name=repo_name,
-        )
+        client.get_repository_info(organization, repo_type, repo_name)
     except RepositoryNotFoundError:
         raise RepositoryNotFoundError(
-            f"Repository '{repo_id}' does not exist. "
-            "Please create the repository before uploading."
+            f"Repository not found: {organization}/{repo_type}/{repo_name}. "
+            f"Please create the repository first."
         )
-    is_encrypted = bool(encryption_key)
-    # 构建 Git URL
-    git_url = _build_git_url(
-        base_url=base_url,
-        organization=organization,
-        repo_type=repo_type,
-        repo_name=repo_name,
-        username=username,
-        password=password,
-        token=token,
-    )
-    # 该临时目录用来存储克隆的仓库
-    if temp_dir is not None:
-        # 创建子目录
-        import uuid
-        temp_dir_path = Path(temp_dir)
-        temp_dir_path.mkdir(parents=True, exist_ok=True)
-        unique_dir = temp_dir_path / f"upload_{uuid.uuid4().hex[:8]}"
-        unique_dir.mkdir(parents=True, exist_ok=True)
-        temp_context = None
-        working_temp_dir = unique_dir
-    else:
-        # 使用系统的临时目录
-        temp_context = tempfile.TemporaryDirectory()
-        working_temp_dir = Path(temp_context.__enter__())
-        unique_dir = None
-    try:
-        repo_path = working_temp_dir / "repo"
-        try:
-            # 克隆远程仓库到临时目录，depth=1，只克隆最新的提交,减少数据量
-            try:
-                env_mapping = None
-                if skip_lfs:
-                    env_mapping={'GIT_LFS_SKIP_SMUDGE': "1"}
-                repo = Repo.clone_from(
-                    git_url,
-                    repo_path,
-                    branch=revision,
-                    depth=1,
-                    env=env_mapping,
-                )
-            except GitCommandError as e:
-                if "Authentication failed" in str(e) or "authentication" in str(e).lower():
-                    raise AuthenticationError(f"Authentication failed: {e}")
-                raise UploadError(f"Failed to clone repository: {e}")
-            # Prepare file path in repository
-            file_path = repo_path / path_in_repo
-            file_path.parent.mkdir(parents=True, exist_ok=True)
-            # Write file content
-            if isinstance(path_or_fileobj, bytes):
-                # Write bytes directly
-                file_path.write_bytes(path_or_fileobj)
-            else:
-                # Copy from source file
-                source_path = Path(path_or_fileobj)
-                if not source_path.exists():
-                    raise FileNotFoundError(f"File not found: {source_path}")
-                shutil.copy2(source_path, file_path)
-            print(f"Added file: {path_in_repo}")
-            # 处理加密元数据文件
-            metadata_file = repo_path / ".moha_encryption"
-            metadata_updated = False
-            # Encrypt file if repository is encrypted
-            if is_encrypted:
-                # Determine encryption algorithm
-                from .encryption import EncryptionAlgorithm, encrypt_file as encrypt_file_func
-                if encryption_algorithm is None:
-                    algorithm = EncryptionAlgorithm.AES_256_CBC
-                else:
-                    try:
-                        algorithm = EncryptionAlgorithm(encryption_algorithm)
-                    except ValueError:
-                        raise EncryptionError(
-                            f"Invalid encryption algorithm: {encryption_algorithm}. "
-                            f"Supported algorithms: {', '.join([a.value for a in EncryptionAlgorithm])}"
-                        )
-                print(f"Encrypting file: {path_in_repo} using {algorithm.value}")
-                encrypt_file_func(file_path, encryption_key, algorithm)
-                print(f"File encrypted")
-                # 计算加密后的文件信息
-                encrypted_size = file_path.stat().st_size
-                encrypted_hash = _calculate_file_hash(file_path)
-                # 读取或创建加密元数据文件
-                if metadata_file.exists():
-                    with open(metadata_file, 'r', encoding='utf-8') as f:
-                        encryption_metadata = json.load(f)
-                else:
-                    encryption_metadata = {
-                        "version": "1.0",
-                        "createAt": datetime.now(timezone.utc).isoformat().replace('+00:00', 'Z'),
-                        "files": []
-                    }
-                # 更新或添加文件信息
-                file_info = {
-                    "path": path_in_repo,
-                    "algorithm": algorithm.value,
-                    "encryptedSize": encrypted_size,
-                    "encryptedHash": encrypted_hash,
-                }
-                # 检查文件是否已存在，如果存在则更新
-                existing_index = None
-                for i, f in enumerate(encryption_metadata["files"]):
-                    if f["path"] == path_in_repo:
-                        existing_index = i
-                        break
-                if existing_index is not None:
-                    encryption_metadata["files"][existing_index] = file_info
-                else:
-                    encryption_metadata["files"].append(file_info)
-                # 写入元数据文件
-                _write_encryption_metadata(repo_path, encryption_metadata)
-                metadata_updated = True
-            else:
-                # 如果不是加密上传，从元数据文件中移除该文件（如果存在）
-                if metadata_file.exists():
-                    with open(metadata_file, 'r', encoding='utf-8') as f:
-                        encryption_metadata = json.load(f)
-                    # 查找并移除该文件
-                    original_count = len(encryption_metadata["files"])
-                    encryption_metadata["files"] = [
-                        f for f in encryption_metadata["files"]
-                        if f["path"] != path_in_repo
-                    ]
-                    if len(encryption_metadata["files"]) < original_count:
-                        # 文件被移除了
-                        if len(encryption_metadata["files"]) == 0:
-                            # 如果没有加密文件了，删除元数据文件
-                            metadata_file.unlink()
-                            print(f"Removed .moha_encryption file (no encrypted files remaining)")
-                        else:
-                            # 更新元数据文件
-                            _write_encryption_metadata(repo_path, encryption_metadata)
-                            print(f"Updated .moha_encryption file (removed {path_in_repo})")
-                        metadata_updated = True
-            # Add file to git
-            repo.git.add(path_in_repo)
-            # 如果元数据文件被更新，也添加到 git
-            if metadata_updated:
-                if metadata_file.exists():
-                    repo.git.add(".moha_encryption")
-                else:
-                    # 如果文件被删除，确保从 git 中移除
-                    try:
-                        repo.git.rm(".moha_encryption")
-                    except GitCommandError:
-                        # 文件可能不在 git 中，忽略错误
-                        pass
-            # Check if there are changes
-            if not repo.is_dirty() and not repo.untracked_files:
-                print("No changes to commit (file already exists with same content)")
-                return repo.head.commit.hexsha
-            # Create commit message
-            if commit_message is None:
-                commit_message = f"Upload {path_in_repo}"
-            full_message = commit_message
-            if commit_description:
-                full_message = f"{commit_message}\n\n{commit_description}"
-            # Commit changes
-            print(f"Committing changes: {commit_message}")
-            commit = repo.index.commit(full_message)
-            # Push to remote
-            print(f"Pushing to {revision}...")
-            try:
-                origin = repo.remote(name='origin')
-                origin.push(refspec=f'{revision}:{revision}')
-            except GitCommandError as e:
-                if "Authentication failed" in str(e) or "authentication" in str(e).lower():
-                    raise AuthenticationError(f"Authentication failed during push: {e}")
-                raise UploadError(f"Failed to push changes: {e}")
-            print(f"Successfully uploaded {path_in_repo} to {repo_id}")
-            print(f"Commit hash: {commit.hexsha}")
-            return commit.hexsha
-        except (GitCommandError, InvalidGitRepositoryError) as e:
-            raise UploadError(f"Git operation failed: {e}")
-    finally:
-        # Clean up temporary directory
-        if temp_context is not None:
-            # Clean up system temp directory
-            try:
-                temp_context.__exit__(None, None, None)
-            except Exception:
-                pass  # Ignore cleanup errors
-        elif unique_dir is not None:
-            # Clean up custom temp directory
-            try:
-                import shutil as shutil_cleanup
-                shutil_cleanup.rmtree(unique_dir, ignore_errors=True)
-            except Exception:
-                pass  # Ignore cleanup errors
+    # Validate file
+    path_file = Path(path_file)
+    if not path_file.exists():
+        raise FileNotFoundError(f"File not found: {path_file}")
+    if not path_file.is_file():
+        raise ValueError(f"Path is not a file: {path_file}")
+    # Encrypt file if needed
+    encrypted_file, temp_dir = _encrypt_file_if_needed(path_file, encryption_password)
+    actual_file = encrypted_file if encrypted_file else path_file
+    try:
+        # Create session and API URL
+        session = _create_session(token, username, password)
+        api_url = _build_api_url(base_url, organization, repo_type, repo_name)
+        # Prepare commit message
+        if commit_message is None:
+            commit_message = f"Upload {path_in_repo}"
+        if commit_description:
+            commit_message = f"{commit_message}\n\n{commit_description}"
+        # Check file size
+        file_size = actual_file.stat().st_size
+        # Check if encryption manifest file exists
+        manifest_file = None
+        if temp_dir:
+            manifest_path = temp_dir / "xpai_encryption_manifest.enc"
+            if manifest_path.exists():
+                manifest_file = manifest_path
+                print(f"Found encryption manifest file: xpai_encryption_manifest.enc")
+        # Upload main file
+        if file_size >= 5 * 1024 * 1024:  # 5MB
+            # Large file
+            result = _upload_large_file(session, api_url, actual_file, path_in_repo, commit_message, revision)
+        else:
+            # Small file
+            result = _upload_small_file(session, api_url, actual_file, path_in_repo, commit_message, revision)
+        # Upload manifest file if it exists
+        if manifest_file:
+            _upload_small_file(
+                session,
+                api_url,
+                manifest_file,
+                "xpai_encryption_manifest.enc",
+                f"{commit_message} (manifest)",
+                revision
+            )
+        print(f"Successfully uploaded {path_in_repo} to {repo_id}")
+        return result
+    finally:
+        # Clean up temporary encrypted file
+        if temp_dir and temp_dir.exists():
+            shutil.rmtree(temp_dir)

xiaoshiai-hub 0.1.3__py3-none-any.whl → 1.0.0__py3-none-any.whl

xiaoshiai-hub 0.1.3py3-none-any.whl → 1.0.0py3-none-any.whl