open-webui/backend/apps/web/routers/chats.py

from fastapi import Depends, Request, HTTPException, status
from datetime import datetime, timedelta
from typing import List, Union, Optional
from utils.utils import get_current_user, get_admin_user
from fastapi import APIRouter
from pydantic import BaseModel
import json
import logging

from apps.web.models.users import Users
from apps.web.models.chats import (
    ChatModel,
    ChatResponse,
    ChatTitleForm,
    ChatForm,
    ChatTitleIdResponse,
    Chats,
)


from apps.web.models.tags import (
    TagModel,
    ChatIdTagModel,
    ChatIdTagForm,
    ChatTagsResponse,
    Tags,
)

from constants import ERROR_MESSAGES

from config import SRC_LOG_LEVELS
log = logging.getLogger(__name__)
log.setLevel(SRC_LOG_LEVELS["MODELS"])

router = APIRouter()

############################
# GetChats
############################


@router.get("/", response_model=List[ChatTitleIdResponse])
async def get_user_chats(
    user=Depends(get_current_user), skip: int = 0, limit: int = 50
):
    return Chats.get_chat_lists_by_user_id(user.id, skip, limit)


############################
# GetAllChats
############################


@router.get("/all", response_model=List[ChatResponse])
async def get_all_user_chats(user=Depends(get_current_user)):
    return [
        ChatResponse(**{**chat.model_dump(), "chat": json.loads(chat.chat)})
        for chat in Chats.get_all_chats_by_user_id(user.id)
    ]


############################
# GetAllChatsInDB
############################


@router.get("/all/db", response_model=List[ChatResponse])
async def get_all_user_chats_in_db(user=Depends(get_admin_user)):
    return [
        ChatResponse(**{**chat.model_dump(), "chat": json.loads(chat.chat)})
        for chat in Chats.get_all_chats()
    ]


############################
# CreateNewChat
############################


@router.post("/new", response_model=Optional[ChatResponse])
async def create_new_chat(form_data: ChatForm, user=Depends(get_current_user)):
    try:
        chat = Chats.insert_new_chat(user.id, form_data)
        return ChatResponse(**{**chat.model_dump(), "chat": json.loads(chat.chat)})
    except Exception as e:
        log.exception(e)
        raise HTTPException(
            status_code=status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.DEFAULT()
        )


############################
# GetAllTags
############################


@router.get("/tags/all", response_model=List[TagModel])
async def get_all_tags(user=Depends(get_current_user)):
    try:
        tags = Tags.get_tags_by_user_id(user.id)
        return tags
    except Exception as e:
        log.exception(e)
        raise HTTPException(
            status_code=status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.DEFAULT()
        )


############################
# GetChatsByTags
############################


@router.get("/tags/tag/{tag_name}", response_model=List[ChatTitleIdResponse])
async def get_user_chats_by_tag_name(
    tag_name: str, user=Depends(get_current_user), skip: int = 0, limit: int = 50
):
    chat_ids = [
        chat_id_tag.chat_id
        for chat_id_tag in Tags.get_chat_ids_by_tag_name_and_user_id(tag_name, user.id)
    ]

    chats = Chats.get_chat_lists_by_chat_ids(chat_ids, skip, limit)

    if len(chats) == 0:
        Tags.delete_tag_by_tag_name_and_user_id(tag_name, user.id)

    return chats


############################
# GetChatById
############################


@router.get("/{id}", response_model=Optional[ChatResponse])
async def get_chat_by_id(id: str, user=Depends(get_current_user)):
    chat = Chats.get_chat_by_id_and_user_id(id, user.id)

    if chat:
        return ChatResponse(**{**chat.model_dump(), "chat": json.loads(chat.chat)})
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND
        )


############################
# UpdateChatById
############################


@router.post("/{id}", response_model=Optional[ChatResponse])
async def update_chat_by_id(
    id: str, form_data: ChatForm, user=Depends(get_current_user)
):
    chat = Chats.get_chat_by_id_and_user_id(id, user.id)
    if chat:
        updated_chat = {**json.loads(chat.chat), **form_data.chat}

        chat = Chats.update_chat_by_id(id, updated_chat)
        return ChatResponse(**{**chat.model_dump(), "chat": json.loads(chat.chat)})
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail=ERROR_MESSAGES.ACCESS_PROHIBITED,
        )


############################
# DeleteChatById
############################


@router.delete("/{id}", response_model=bool)
async def delete_chat_by_id(request: Request, id: str, user=Depends(get_current_user)):

    if (
        user.role == "user"
        and not request.app.state.USER_PERMISSIONS["chat"]["deletion"]
    ):
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail=ERROR_MESSAGES.ACCESS_PROHIBITED,
        )

    result = Chats.delete_chat_by_id_and_user_id(id, user.id)
    return result


############################
# GetChatTagsById
############################


@router.get("/{id}/tags", response_model=List[TagModel])
async def get_chat_tags_by_id(id: str, user=Depends(get_current_user)):
    tags = Tags.get_tags_by_chat_id_and_user_id(id, user.id)

    if tags != None:
        return tags
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND
        )


############################
# AddChatTagById
############################


@router.post("/{id}/tags", response_model=Optional[ChatIdTagModel])
async def add_chat_tag_by_id(
    id: str, form_data: ChatIdTagForm, user=Depends(get_current_user)
):
    tags = Tags.get_tags_by_chat_id_and_user_id(id, user.id)

    if form_data.tag_name not in tags:
        tag = Tags.add_tag_to_chat(user.id, form_data)

        if tag:
            return tag
        else:
            raise HTTPException(
                status_code=status.HTTP_401_UNAUTHORIZED,
                detail=ERROR_MESSAGES.NOT_FOUND,
            )
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.DEFAULT()
        )


############################
# DeleteChatTagById
############################


@router.delete("/{id}/tags", response_model=Optional[bool])
async def delete_chat_tag_by_id(
    id: str, form_data: ChatIdTagForm, user=Depends(get_current_user)
):
    result = Tags.delete_tag_by_tag_name_and_chat_id_and_user_id(
        form_data.tag_name, id, user.id
    )

    if result:
        return result
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND
        )


############################
# DeleteAllChatTagsById
############################


@router.delete("/{id}/tags/all", response_model=Optional[bool])
async def delete_all_chat_tags_by_id(id: str, user=Depends(get_current_user)):
    result = Tags.delete_tags_by_chat_id_and_user_id(id, user.id)

    if result:
        return result
    else:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND
        )


############################
# DeleteAllChats
############################


@router.delete("/", response_model=bool)
async def delete_all_user_chats(request: Request, user=Depends(get_current_user)):

    if (
        user.role == "user"
        and not request.app.state.USER_PERMISSIONS["chat"]["deletion"]
    ):
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail=ERROR_MESSAGES.ACCESS_PROHIBITED,
        )

    result = Chats.delete_chats_by_user_id(user.id)
    return result
feat(auth): add auth middleware - refactored chat routes to use request.user instead of doing authentication in every route 2023-12-28 21:15:54 +01:00			`from fastapi import Depends, Request, HTTPException, status`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`from datetime import datetime, timedelta`
			`from typing import List, Union, Optional`
Endpoint role-checking was redundantly applied but FastAPI provides a nice abstraction mechanic...so I applied it. There should be no logical changes in this code; only simpler, cleaner ways for doing the same thing. 2024-02-09 01:05:01 +01:00			`from utils.utils import get_current_user, get_admin_user`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`from fastapi import APIRouter`
			`from pydantic import BaseModel`
fix: chat return type to dict 2023-12-26 10:27:43 +01:00			`import json`
Migrate to python logging module with env var control. 2024-03-21 00:11:36 +01:00			`import logging`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00
			`from apps.web.models.users import Users`
			`from apps.web.models.chats import (`
			`ChatModel,`
fix: chat return type to dict 2023-12-26 10:27:43 +01:00			`ChatResponse,`
feat: update chat 2023-12-26 19:41:55 +01:00			`ChatTitleForm,`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`ChatForm,`
			`ChatTitleIdResponse,`
			`Chats,`
			`)`

feat: convo tagging backend support 2024-01-18 09:58:45 +01:00
			`from apps.web.models.tags import (`
			`TagModel,`
feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`ChatIdTagModel,`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`ChatIdTagForm,`
			`ChatTagsResponse,`
			`Tags,`
			`)`

feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`from constants import ERROR_MESSAGES`

Migrate to python logging module with env var control. 2024-03-21 00:11:36 +01:00			`from config import SRC_LOG_LEVELS`
			`log = logging.getLogger(__name__)`
			`log.setLevel(SRC_LOG_LEVELS["MODELS"])`

feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`router = APIRouter()`

			`############################`
			`# GetChats`
			`############################`


			`@router.get("/", response_model=List[ChatTitleIdResponse])`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`async def get_user_chats(`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`user=Depends(get_current_user), skip: int = 0, limit: int = 50`
			`):`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`return Chats.get_chat_lists_by_user_id(user.id, skip, limit)`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00

feat: chat export 2023-12-27 07:10:22 +01:00			`############################`
			`# GetAllChats`
			`############################`


			`@router.get("/all", response_model=List[ChatResponse])`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`async def get_all_user_chats(user=Depends(get_current_user)):`
feat(auth): add auth middleware - refactored chat routes to use request.user instead of doing authentication in every route 2023-12-28 21:15:54 +01:00			`return [`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`ChatResponse({chat.model_dump(), "chat": json.loads(chat.chat)})`
			`for chat in Chats.get_all_chats_by_user_id(user.id)`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`]`
feat: chat export 2023-12-27 07:10:22 +01:00

feat: export all chats from db admin only 2024-02-04 10:07:18 +01:00			`############################`
			`# GetAllChatsInDB`
			`############################`


			`@router.get("/all/db", response_model=List[ChatResponse])`
Endpoint role-checking was redundantly applied but FastAPI provides a nice abstraction mechanic...so I applied it. There should be no logical changes in this code; only simpler, cleaner ways for doing the same thing. 2024-02-09 01:05:01 +01:00			`async def get_all_user_chats_in_db(user=Depends(get_admin_user)):`
			`return [`
			`ChatResponse({chat.model_dump(), "chat": json.loads(chat.chat)})`
			`for chat in Chats.get_all_chats()`
			`]`
feat: export all chats from db admin only 2024-02-04 10:07:18 +01:00

feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`############################`
			`# CreateNewChat`
			`############################`


fix: chat return type to dict 2023-12-26 10:27:43 +01:00			`@router.post("/new", response_model=Optional[ChatResponse])`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`async def create_new_chat(form_data: ChatForm, user=Depends(get_current_user)):`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`try:`
			`chat = Chats.insert_new_chat(user.id, form_data)`
			`return ChatResponse({chat.model_dump(), "chat": json.loads(chat.chat)})`
			`except Exception as e:`
Migrate to python logging module with env var control. 2024-03-21 00:11:36 +01:00			`log.exception(e)`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`raise HTTPException(`
			`status_code=status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.DEFAULT()`
			`)`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00

feat: convo tag filtering 2024-01-18 11:55:25 +01:00			`############################`
			`# GetAllTags`
			`############################`


			`@router.get("/tags/all", response_model=List[TagModel])`
			`async def get_all_tags(user=Depends(get_current_user)):`
			`try:`
			`tags = Tags.get_tags_by_user_id(user.id)`
			`return tags`
			`except Exception as e:`
Migrate to python logging module with env var control. 2024-03-21 00:11:36 +01:00			`log.exception(e)`
feat: convo tag filtering 2024-01-18 11:55:25 +01:00			`raise HTTPException(`
			`status_code=status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.DEFAULT()`
			`)`


			`############################`
			`# GetChatsByTags`
			`############################`


			`@router.get("/tags/tag/{tag_name}", response_model=List[ChatTitleIdResponse])`
			`async def get_user_chats_by_tag_name(`
			`tag_name: str, user=Depends(get_current_user), skip: int = 0, limit: int = 50`
			`):`
			`chat_ids = [`
			`chat_id_tag.chat_id`
			`for chat_id_tag in Tags.get_chat_ids_by_tag_name_and_user_id(tag_name, user.id)`
			`]`

fix: cleanup unused tags 2024-02-25 22:03:26 +01:00			`chats = Chats.get_chat_lists_by_chat_ids(chat_ids, skip, limit)`
feat: convo tag filtering 2024-01-18 11:55:25 +01:00
fix: cleanup unused tags 2024-02-25 22:03:26 +01:00			`if len(chats) == 0:`
			`Tags.delete_tag_by_tag_name_and_user_id(tag_name, user.id)`

			`return chats`
feat: convo tag filtering 2024-01-18 11:55:25 +01:00

feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`############################`
			`# GetChatById`
			`############################`


fix: chat return type to dict 2023-12-26 10:27:43 +01:00			`@router.get("/{id}", response_model=Optional[ChatResponse])`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`async def get_chat_by_id(id: str, user=Depends(get_current_user)):`
			`chat = Chats.get_chat_by_id_and_user_id(id, user.id)`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00
feat(auth): add auth middleware - refactored chat routes to use request.user instead of doing authentication in every route 2023-12-28 21:15:54 +01:00			`if chat:`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`return ChatResponse({chat.model_dump(), "chat": json.loads(chat.chat)})`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00			`else:`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND`
			`)`
feat: db migration to sqlite 2023-12-26 06:44:28 +01:00

			`############################`
			`# UpdateChatById`
			`############################`


fix: chat return type to dict 2023-12-26 10:27:43 +01:00			`@router.post("/{id}", response_model=Optional[ChatResponse])`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`async def update_chat_by_id(`
			`id: str, form_data: ChatForm, user=Depends(get_current_user)`
			`):`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`chat = Chats.get_chat_by_id_and_user_id(id, user.id)`
feat(auth): add auth middleware - refactored chat routes to use request.user instead of doing authentication in every route 2023-12-28 21:15:54 +01:00			`if chat:`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`updated_chat = {json.loads(chat.chat), form_data.chat}`
feat: update chat 2023-12-26 19:41:55 +01:00
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`chat = Chats.update_chat_by_id(id, updated_chat)`
fix: more edge cases 2024-01-17 23:47:56 +01:00			`return ChatResponse({chat.model_dump(), "chat": json.loads(chat.chat)})`
feat(auth): add auth middleware - refactored chat routes to use request.user instead of doing authentication in every route 2023-12-28 21:15:54 +01:00			`else:`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail=ERROR_MESSAGES.ACCESS_PROHIBITED,`
			`)`
fix: chat return type to dict 2023-12-26 10:27:43 +01:00

			`############################`
			`# DeleteChatById`
			`############################`


			`@router.delete("/{id}", response_model=bool)`
feat: admin settings 2024-02-14 10:17:43 +01:00			`async def delete_chat_by_id(request: Request, id: str, user=Depends(get_current_user)):`

			`if (`
			`user.role == "user"`
			`and not request.app.state.USER_PERMISSIONS["chat"]["deletion"]`
			`):`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail=ERROR_MESSAGES.ACCESS_PROHIBITED,`
			`)`

refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 11:53:33 +01:00			`result = Chats.delete_chat_by_id_and_user_id(id, user.id)`
			`return result`
feat: delete all user chats 2023-12-30 09:15:37 +01:00
refac: remove the verify_token and use get-current user for auth+user 2024-01-01 09:55:50 +01:00
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`############################`
			`# GetChatTagsById`
			`############################`


			`@router.get("/{id}/tags", response_model=List[TagModel])`
			`async def get_chat_tags_by_id(id: str, user=Depends(get_current_user)):`
			`tags = Tags.get_tags_by_chat_id_and_user_id(id, user.id)`

feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`if tags != None:`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`return tags`
			`else:`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND`
			`)`


			`############################`
			`# AddChatTagById`
			`############################`


feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`@router.post("/{id}/tags", response_model=Optional[ChatIdTagModel])`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`async def add_chat_tag_by_id(`
			`id: str, form_data: ChatIdTagForm, user=Depends(get_current_user)`
			`):`
feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`tags = Tags.get_tags_by_chat_id_and_user_id(id, user.id)`

			`if form_data.tag_name not in tags:`
			`tag = Tags.add_tag_to_chat(user.id, form_data)`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00
feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`if tag:`
			`return tag`
			`else:`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail=ERROR_MESSAGES.NOT_FOUND,`
			`)`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`else:`
			`raise HTTPException(`
feat: convo tagging full integration 2024-01-18 11:10:07 +01:00			`status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.DEFAULT()`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`)`


			`############################`
			`# DeleteChatTagById`
			`############################`


			`@router.delete("/{id}/tags", response_model=Optional[bool])`
feat: convo tagging api added 2024-01-18 10:04:24 +01:00			`async def delete_chat_tag_by_id(`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`id: str, form_data: ChatIdTagForm, user=Depends(get_current_user)`
			`):`
feat: convo tagging api added 2024-01-18 10:04:24 +01:00			`result = Tags.delete_tag_by_tag_name_and_chat_id_and_user_id(`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`form_data.tag_name, id, user.id`
			`)`

feat: convo tagging api added 2024-01-18 10:04:24 +01:00			`if result:`
			`return result`
			`else:`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND`
			`)`


			`############################`
			`# DeleteAllChatTagsById`
			`############################`


			`@router.delete("/{id}/tags/all", response_model=Optional[bool])`
			`async def delete_all_chat_tags_by_id(id: str, user=Depends(get_current_user)):`
			`result = Tags.delete_tags_by_chat_id_and_user_id(id, user.id)`

			`if result:`
			`return result`
feat: convo tagging backend support 2024-01-18 09:58:45 +01:00			`else:`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED, detail=ERROR_MESSAGES.NOT_FOUND`
			`)`


feat: delete all user chats 2023-12-30 09:15:37 +01:00			`############################`
			`# DeleteAllChats`
			`############################`


			`@router.delete("/", response_model=bool)`
fix: user chat delete loophole 2024-03-02 09:07:50 +01:00			`async def delete_all_user_chats(request: Request, user=Depends(get_current_user)):`

			`if (`
			`user.role == "user"`
			`and not request.app.state.USER_PERMISSIONS["chat"]["deletion"]`
			`):`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail=ERROR_MESSAGES.ACCESS_PROHIBITED,`
			`)`

Merge branch 'main' of github.com:ollama-webui/ollama-webui into refac/auth-middleware 2023-12-30 12:03:18 +01:00			`result = Chats.delete_chats_by_user_id(user.id)`
			`return result`