Accueil Explorer Aide
Connexion
biheng
/
dify
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Parcourir la source

feat: The SSRF request timeout configuration item is added (#10292)

Summer-Gu il y a 5 mois
Parent
bdadca1a65
commit
ce1f9d935d
3 fichiers modifiés avec 37 ajouts et 0 suppressions
Vue séparée Afficher les stats Diff
  1. 5 0
      api/.env.example
  2. 20 0
      api/configs/feature/__init__.py
  3. 12 0
      api/core/helper/ssrf_proxy.py

+ 5 - 0
api/.env.example
Voir le fichier 

@@ -320,9 +320,14 @@ ETL_TYPE=dify
 
 UNSTRUCTURED_API_URL=
 
 UNSTRUCTURED_API_KEY=
 
 
+#ssrf
 
 SSRF_PROXY_HTTP_URL=
 
 SSRF_PROXY_HTTPS_URL=
 
 SSRF_DEFAULT_MAX_RETRIES=3
 
+SSRF_DEFAULT_TIME_OUT=
 
+SSRF_DEFAULT_CONNECT_TIME_OUT=
 
+SSRF_DEFAULT_READ_TIME_OUT=
 
+SSRF_DEFAULT_WRITE_TIME_OUT=
 
 
 BATCH_UPLOAD_LIMIT=10
 
 KEYWORD_DATA_SOURCE_TYPE=database

+ 20 - 0
api/configs/feature/__init__.py
Voir le fichier 

@@ -286,6 +286,26 @@ class HttpConfig(BaseSettings):
 
         default=None,
 
     )
 
 
+    SSRF_DEFAULT_TIME_OUT: PositiveFloat = Field(
 
+        description="The default timeout period used for network requests (SSRF)",
 
+        default=5,
 
+    )
 
+
 
+    SSRF_DEFAULT_CONNECT_TIME_OUT: PositiveFloat = Field(
 
+        description="The default connect timeout period used for network requests (SSRF)",
 
+        default=5,
 
+    )
 
+
 
+    SSRF_DEFAULT_READ_TIME_OUT: PositiveFloat = Field(
 
+        description="The default read timeout period used for network requests (SSRF)",
 
+        default=5,
 
+    )
 
+
 
+    SSRF_DEFAULT_WRITE_TIME_OUT: PositiveFloat = Field(
 
+        description="The default write timeout period used for network requests (SSRF)",
 
+        default=5,
 
+    )
 
+
 
     RESPECT_XFORWARD_HEADERS_ENABLED: bool = Field(
 
         description="Enable or disable the X-Forwarded-For Proxy Fix middleware from Werkzeug"
 
         " to respect X-* headers to redirect clients",

+ 12 - 0
api/core/helper/ssrf_proxy.py
Voir le fichier 

@@ -12,6 +12,10 @@ SSRF_PROXY_ALL_URL = os.getenv("SSRF_PROXY_ALL_URL", "")
 
 SSRF_PROXY_HTTP_URL = os.getenv("SSRF_PROXY_HTTP_URL", "")
 
 SSRF_PROXY_HTTPS_URL = os.getenv("SSRF_PROXY_HTTPS_URL", "")
 
 SSRF_DEFAULT_MAX_RETRIES = int(os.getenv("SSRF_DEFAULT_MAX_RETRIES", "3"))
 
+SSRF_DEFAULT_TIME_OUT = float(os.getenv("SSRF_DEFAULT_TIME_OUT", "5"))
 
+SSRF_DEFAULT_CONNECT_TIME_OUT = float(os.getenv("SSRF_DEFAULT_CONNECT_TIME_OUT", "5"))
 
+SSRF_DEFAULT_READ_TIME_OUT = float(os.getenv("SSRF_DEFAULT_READ_TIME_OUT", "5"))
 
+SSRF_DEFAULT_WRITE_TIME_OUT = float(os.getenv("SSRF_DEFAULT_WRITE_TIME_OUT", "5"))
 
 
 proxy_mounts = (
 
     {
 
@@ -32,6 +36,14 @@ def make_request(method, url, max_retries=SSRF_DEFAULT_MAX_RETRIES, **kwargs):
 
         if "follow_redirects" not in kwargs:
 
             kwargs["follow_redirects"] = allow_redirects
 
 
+    if "timeout" not in kwargs:
 
+        kwargs["timeout"] = httpx.Timeout(
 
+            SSRF_DEFAULT_TIME_OUT,
 
+            connect=SSRF_DEFAULT_CONNECT_TIME_OUT,
 
+            read=SSRF_DEFAULT_READ_TIME_OUT,
 
+            write=SSRF_DEFAULT_WRITE_TIME_OUT,
 
+        )
 
+
 
     retries = 0
 
     while retries <= max_retries:
 
         try: