idZddlmZddlmZddlZddlZddlZddlZddl m Z ddl m Z ddl mZmZddlmZdd lmZmZeejd Ze ed z dd lmZdd lmZdd lmZdd l mZ!dd l"mZ#dd l$m%Z%ddl&m'Z'ddl(m)Z)ddl*m+Z+e'ej,e-Z.hdZ/dZ0e0fd8dZ1d9dZ2d:dZ3ed d!d"#Z4dd$l5m6Z6d%Z7e7e4_8dd&l9m:Z:e4;ee:j<d'd(gd(g)e4=e!e4=ee4=ee4=ee4=e#e4>d*d;d-Z?e4@d.dd7ZEdS)?u Nom du script : main.py Chemin : /gitlab-bridge/app/main.py Description : Point d'entrée FastAPI du bridge GitLab entre OpenWebUI et GitLab. Options éventuelles : Démarrage via uvicorn. Exemples d'utilisation : `uvicorn app.main:app --reload --host 0.0.0.0 --port 8080`. Prérequis : Python 3.11+, FastAPI, GitLab accessible, base MariaDB disponible. Auteur : Sylvain SCATTOLINI Date de création / modification : 2026-03-25 Version : 1.1 ) annotations)PathN)Any) load_dotenv)FastAPIRequest)CORSMiddleware) JSONResponseResponsez.env)router) BridgeError)configure_logging)Base)engine>tokensecretpassword api_token access_token authorization private_token refresh_tokenivaluestrlimitintreturncnt||kr|S|d|dt||z dzS)Nz... [truncated z chars])len)rrs '/var/www/html/gitlab-bridge/app/main.py_truncate_log_valuer"9sB 5zzU %=HSZZ%-?HHH HHrct|tri}|D]q\}}t|t vrd|t|<Rt||t|<r|St|tr d|DSt|tr d|DSt|trt|S|S)Nz***REDACTED***c,g|]}t|S_sanitize_for_log.0items r! z%_sanitize_for_log..K!:::D!$'':::r#c,g|]}t|Sr&r'r)s r!r,z%_sanitize_for_log..Nr-r#) isinstancedictitemsrstriplowerSENSITIVE_LOG_KEYSr(listtupler")r sanitizedkeyr+s r!r(r(@s%$&  > >IC3xx~~%%''+===&6 #c((##&7&=&= #c((##%;::E::::%;::E::::%*"5))) Lr#body bytes | None content_type str | NonecV|sdS|pd}d|vrE ttj|dS#t $rYnwxYwd|vs d|vsd|vsd|vr$t |dd Sd t|d S) Nzapplication/jsonzutf-8ztext/jsonxmlzx-www-form-urlencodedreplace)errors)r3r(r?loadsdecode Exceptionr"r )r9r;raw_content_types r!_decode_body_for_logrHWs t$*1133--- $TZ G0D0D%E%EFF F    D  ### % % % $ $ $ "&6 6 6"4;;wy;#I#IJJJ (s4yy ( ( ((s3A A! A!z GitLab Bridgez1.13.0.3)titleversionopenapi_version) get_openapictjr tjSttjtjdtjtj}|t_tjS)NrI)rJrKrL descriptionroutes)appopenapi_schemarMrJrKrOrP)rRs r!custom_openapirSvsT "!! i Oz N(C  r#)settingsT*) allow_originsallow_credentials allow_methods allow_headershttprequestrcTKtjjdd}tj}|d{V}d||j|jjt|jj pd|j r |j j nd|j d|j dt||j dd }t d| ||d{V}nY#t$$rLt'tj|z d zd }t d i|d |d wxYwd}t+|dr|j|j}nxt+|drh|jad|j2d{V} d| }t1||jt5|j |j|j}||j d<t'tj|z d zd }t di|d|j||j dt||j dd|S)N http_requestr>z user-agentz content-type) event request_idmethodpathquery client_ip user_agentrequest_content_type request_bodyzHTTP request received)extraizHTTP request failed http_error)r_ duration_msr#r9 body_iteratorc"Kg|3d{V}| 6S)Nr&)r*chunks r!r,z%log_http_requests..s.BBBBBBBB%%BBBBs)content status_codeheaders media_type backgroundz X-Request-IDzHTTP response sent http_response)r_rprkresponse_content_type response_body)uuiduuid4hextime perf_counterr9raurlrbrrcclienthostrqgetrHloggerinforFround exceptionhasattrrljoinr rpr0rrrs) r[ call_nextr` started_atrg request_extraresponserkresponse_body_byteschunkss r!log_http_requestsrs !#2#&J"$$J ''''''L  .  W[&,"--,3NDW^((o)),77 ' 3 3N C C,\7?;N;N~;^;^__  M KK'}K=== "7++++++++    T.00:=EqII  !%*      x   X]%>&m ? + +  0F0RBB8+ABBBBBBBBB!hhv..' ,)****    (2H^$*,,z9TA1EEK KK    $#/&%-%5%9%9.%I%I1# $$^44        Os DAE2startupNonectjttddS)z)Initialisation minimale de l'application.)binduGitLab Bridge démarré.N)rmetadata create_allrrrr&r#r!rrs6 M&))) KK*+++++r#_excrr cVt|jdvrdndd|j|jdS)u<Transforme les erreurs métier en réponses JSON homogènes.> access_deniediiFsuccesserrormessagerpro)r coderrrs r!handle_bridge_errorrsF 8+<<rs  #"""""  $$$$$$$$22222244444444 4>> ! ! # # +A . Hv 555555555555999999555555======++++++......!!!!!!  8 $ $   2EIIIII.)))).g   .-----    $$$$$$'%% =!!!=!!!?###=!!!$%%%AAAAHi,,,, {##   $# y!!   "!   r#