Merge remote-tracking branch 'origin/main'

Author: ziyujiahao

README.md

@@ -32,16 +32,9 @@ TBD: 交流群二维码
 
 ## UI 展示
 
-<table style="border-collapse: collapse; border: 1px solid black;">
   <tr>
-    <td style="padding: 5px;background-color:#fff;"><img src= "TBD" alt="SQLBot Demo1"   /></td>
-    <td style="padding: 5px;background-color:#fff;"><img src= "TBD" alt="SQLBot Demo2"   /></td>
+    <img alt="q&a" src="https://github.com/user-attachments/assets/55526514-52f3-4cfe-98ec-08a986259280"   />
   </tr>
-  <tr>
-    <td style="padding: 5px;background-color:#fff;"><img src= "TBD" alt="SQLBot Demo3"   /></td>
-    <td style="padding: 5px;background-color:#fff;"><img src= "TBD" alt="SQLBot Demo4"   /></td>
-  </tr>
-</table>
 
 ## Star History
 

backend/apps/chat/task/llm.py

@@ -439,6 +439,7 @@ def select_datasource(self):
                     _ds = self.out_ds_instance.get_ds(data['id'])
                     self.ds = _ds
                     self.chat_question.engine = _ds.type
+                    self.chat_question.db_schema = self.out_ds_instance.get_db_schema(self.ds.id)
                     _engine_type = self.chat_question.engine
                     _chat.engine_type = _ds.type
                 else:
@@ -448,6 +449,7 @@ def select_datasource(self):
                         raise Exception(f"Datasource configuration with id {_datasource} not found")
                     self.ds = CoreDatasource(**_ds.model_dump())
                     self.chat_question.engine = _ds.type_name if _ds.type != 'excel' else 'PostgreSQL'
+                    self.chat_question.db_schema = get_table_schema(session=self.session, current_user=self.current_user, ds=self.ds)
                     _engine_type = self.chat_question.engine
                     _chat.engine_type = _ds.type_name
                 # save chat
@@ -698,6 +700,8 @@ def check_save_sql(self, res: str) -> str:
     def check_save_chart(self, res: str) -> Dict[str, Any]:
 
         json_str = extract_nested_json(res)
+        if json_str is None:
+            raise Exception("Cannot parse chart config from answer")
         data = orjson.loads(json_str)
 
         chart: Dict[str, Any] = {}
@@ -834,7 +838,8 @@ def run_task(self, in_chat: bool = True):
                     self.ds.id) if self.out_ds_instance else get_table_schema(session=self.session,
                                                                               current_user=self.current_user,
                                                                               ds=self.ds)
-
+            else:
+                self.validate_history_ds()
             # generate sql
             sql_res = self.generate_sql()
             full_sql_text = ''
@@ -1023,7 +1028,25 @@ def run_analysis_or_predict_task(self, action_type: str):
         finally:
             # end
             pass
-
+    
+    def validate_history_ds(self):
+        _ds = self.ds
+        if not self.current_assistant:
+            current_ds = self.session.exec(CoreDatasource, _ds.id)
+            if not current_ds:
+                raise Exception('ds is invalid')
+        else:
+            try:
+                _ds_list: list[dict] = get_assistant_ds(session=self.session, llm_service=self)
+                match_ds = any(item.get("id") == _ds.id for item in _ds_list)
+                if not match_ds:
+                    type = self.current_assistant.type
+                    msg = f"ds is invalid [please check ds list and public ds list]" if type == 0 else f"ds is invalid [please check ds api]"
+                    raise Exception(msg)
+            except Exception as e:
+                raise Exception(f"ds is invalid [{str(e)}]")
+           
+            
 
 def execute_sql_with_db(db: SQLDatabase, sql: str) -> str:
     """Execute SQL query using SQLDatabase

backend/apps/system/crud/user.py

@@ -26,6 +26,8 @@ def get_user_by_account(*, session: Session, account: str) -> BaseUserDTO | None
 @cache(namespace=CacheNamespace.AUTH_INFO, cacheName=CacheName.USER_INFO, keyExpression="user_id")
 async def get_user_info(*, session: Session, user_id: int) -> UserInfoDTO | None:
     db_user: UserModel = get_db_user(session = session, user_id = user_id)
+    if not db_user:
+        return None
     userInfo = UserInfoDTO.model_validate(db_user.model_dump())
     userInfo.isAdmin = userInfo.id == 1 and userInfo.account == 'admin'
     if userInfo.isAdmin:

backend/apps/system/middleware/auth.py

@@ -13,9 +13,11 @@
 from common.core import security
 from common.core.config import settings
 from common.core.schemas import TokenPayload
+from common.utils.locale import I18n
 from common.utils.utils import SQLBotLogUtil
 from common.utils.whitelist import whiteUtils
 from fastapi.security.utils import get_authorization_scheme_param
+from common.core.deps import get_i18n
 class TokenMiddleware(BaseHTTPMiddleware):
 
 
@@ -29,27 +31,31 @@ async def dispatch(self, request, call_next):
             return await call_next(request)
         assistantTokenKey = settings.ASSISTANT_TOKEN_KEY
         assistantToken = request.headers.get(assistantTokenKey)
+        trans = await get_i18n(request)
         #if assistantToken and assistantToken.lower().startswith("assistant "):
         if assistantToken:
             validator: tuple[any] = await self.validateAssistant(assistantToken)
             if validator[0]:
                 request.state.current_user = validator[1]
                 request.state.assistant = validator[2]
                 return await call_next(request)
-            return JSONResponse(f"Unauthorized:[{validator[1]}]", status_code=401, headers={"Access-Control-Allow-Origin": "*"})
+            message = trans('i18n_permission.authenticate_invalid', msg = validator[1])
+            return JSONResponse(message, status_code=401, headers={"Access-Control-Allow-Origin": "*"})
         #validate pass
         tokenkey = settings.TOKEN_KEY
         token = request.headers.get(tokenkey)
-        validate_pass, data = await self.validateToken(token)
+        validate_pass, data = await self.validateToken(token, trans)
         if validate_pass:
             request.state.current_user = data
             return await call_next(request)
-        return JSONResponse(f"Unauthorized:[{data}]", status_code=401, headers={"Access-Control-Allow-Origin": "*"})
+        
+        message = trans('i18n_permission.authenticate_invalid', msg = data)
+        return JSONResponse(message, status_code=401, headers={"Access-Control-Allow-Origin": "*"})
 
     def is_options(self, request: Request):
         return request.method == "OPTIONS"
 
-    async def validateToken(self, token: Optional[str]):
+    async def validateToken(self, token: Optional[str], trans: I18n):
         if not token:
             return False, f"Miss Token[{settings.TOKEN_KEY}]!"
         schema, param = get_authorization_scheme_param(token)
@@ -63,17 +69,15 @@ async def validateToken(self, token: Optional[str]):
             with Session(engine) as session:
                 session_user = await get_user_info(session = session, user_id = token_data.id)
                 if not session_user:
-                    raise Exception(f"User not found with id: {token_data.id}")
+                    message = trans('i18n_not_exist', msg = trans('i18n_user.account'))
+                    raise Exception(message)
                 session_user = UserInfoDTO.model_validate(session_user)
                 if session_user.status != 1:
-                    raise Exception(f"User is not active!")
+                    message = trans('i18n_login.user_disable', msg = trans('i18n_concat_admin'))
+                    raise Exception(message)
                 if not session_user.oid or session_user.oid == 0:
-                    raise Exception(f"User default space is not set!")
-                """ if token_data.oid != session_user.oid:
-                    raise HTTPException(
-                        status_code=401,
-                        detail="Default space has been changed, please login again!"
-                    ) """
+                    message = trans('i18n_login.no_associated_ws', msg = trans('i18n_concat_admin'))
+                    raise Exception(message)
                 return True, session_user
         except Exception as e:
             SQLBotLogUtil.exception(f"Token validation error: {str(e)}")

backend/common/core/config.py

@@ -9,7 +9,6 @@
 )
 from pydantic_core import MultiHostUrl
 from pydantic_settings import BaseSettings, SettingsConfigDict
-from typing_extensions import Self
 
 
 def parse_cors(v: Any) -> list[str] | str:

backend/locales/en.json

@@ -24,7 +24,8 @@
     },
     "i18n_permission": {
         "only_admin": "Only administrators can call this!",
-        "no_permission": "No permission to access {url}{msg}"
+        "no_permission": "No permission to access {url}{msg}",
+        "authenticate_invalid": "Authenticate invalid [{msg}]"
     },
     "i18n_llm": {
         "validate_error": "Validation failed [{msg}]",

backend/locales/zh-CN.json

@@ -24,7 +24,8 @@
     },
     "i18n_permission": {
         "only_admin": "仅支持管理员调用！",
-        "no_permission": "无权调用{url}{msg}"
+        "no_permission": "无权调用{url}{msg}",
+        "authenticate_invalid": "认证无效【{msg}】"
 
     },
     "i18n_llm": {

backend/template.yaml

@@ -54,13 +54,13 @@ template:
       ]
       ```
       
+      ### 提供表结构如下:
+      {schema}
+      
       ### 响应, 请直接返回JSON结果:
       ```json
 
     user: |
-      ### 提供表结构如下:
-      {schema}
-      
       ### 问题:
       {question}
       

frontend/src/utils/request.ts

@@ -182,7 +182,7 @@ class HttpService {
           setTimeout(() => {
             wsCache.delete('user.token')
             window.location.reload()
-          }, 1000)
+          }, 2000)
           return
         // break
         case 403:

frontend/src/views/chat/index.vue

@@ -21,7 +21,6 @@
       :class="{ 'assistant-popover-sidebar': isAssistant }"
     >
       <el-popover
-        :visible="isAssistant ? floatPopoverVisible : null"
         :width="280"
         placement="bottom-start"
         :popper-style="{ ...defaultFloatPopoverStyle }"
@@ -48,6 +47,31 @@
           @on-click-side-bar-btn="hideSideBar"
         />
       </el-popover>
+
+      <el-drawer
+        v-model="floatPopoverVisible"
+        :with-header="false"
+        direction="ltr"
+        size="278"
+        modal-class="assistant-popover_sidebar"
+        :before-close="hideSideBar"
+      >
+        <ChatListContainer
+          ref="floatPopoverRef"
+          v-model:chat-list="chatList"
+          v-model:current-chat-id="currentChatId"
+          v-model:current-chat="currentChat"
+          v-model:loading="loading"
+          :in-popover="false"
+          @go-empty="goEmpty"
+          @on-chat-created="onChatCreated"
+          @on-click-history="onClickHistory"
+          @on-chat-deleted="onChatDeleted"
+          @on-chat-renamed="onChatRenamed"
+          @on-click-side-bar-btn="hideSideBar"
+        />
+      </el-drawer>
+
       <el-tooltip effect="dark" :content="t('qa.new_chat')" placement="bottom">
         <el-button link type="primary" class="icon-btn" @click="createNewChatSimple">
           <el-icon>
@@ -1092,3 +1116,15 @@ onMounted(() => {
   }
 }
 </style>
+
+<style lang="less">
+.assistant-popover_sidebar {
+  .ed-drawer {
+    height: 100% !important;
+    margin-top: 0 !important;
+  }
+  .ed-drawer__body {
+    padding: 0;
+  }
+}
+</style>