admin/goodgo-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6ebacbc9bfafe66a5d7dd3e45f87eb4af421f7e9
goodgo-platform/libs/ai-services/app/middleware.py
Ho Ngoc Hai e60b95cdec fix(infra): harden AI service — graceful shutdown, rate limiting, API key auth, pinned deps, Grafana secrets 
- Add dumb-init + --timeout-graceful-shutdown 30 to AI service Dockerfile
- Add slowapi rate limiting (configurable via AI_RATE_LIMIT) and X-API-Key auth middleware
- Pin all Python dependencies to exact versions for reproducible builds
- Move Grafana admin credentials from env vars to Docker secrets in production compose

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-04-08 06:13:29 +07:00

24 lines
706 B
Python
Raw Blame History

import hmac
from typing import Optional
from fastapi import Depends, HTTPException, Security, status
from fastapi.security import APIKeyHeader
from app.config import settings
api_key_header = APIKeyHeader(name="X-API-Key", auto_error=False)
async def verify_api_key(
api_key: Optional[str] = Security(api_key_header),
) -> str:
"""Validate X-API-Key header. Skipped when AI_API_KEY is not configured."""
if not settings.api_key:
return "no-auth"
if not api_key or not hmac.compare_digest(api_key, settings.api_key):
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Invalid or missing API key",
)
return api_key
Reference in New Issue View Git Blame Copy Permalink