Test7

Author: UtkarshMishra-Microsoft

.pylintrc

@@ -23,7 +23,6 @@ max-line-length=120
 max-args=10
 max-locals=30
 max-branches=20
-max-lines=1500
 max-statements=100
 
 [LOGGING]

backend/auth/auth_utils.py

@@ -5,16 +5,17 @@ def get_authenticated_user_details(request_headers):
     if "X-Ms-Client-Principal-Id" not in request_headers.keys():
         # if it's not, assume we're in development mode and return a default user
         from . import sample_user
+
         raw_user_object = sample_user.sample_user
     else:
         # if it is, get the user details from the EasyAuth headers
         raw_user_object = {k: v for k, v in request_headers.items()}
 
-    user_object['user_principal_id'] = raw_user_object.get('X-Ms-Client-Principal-Id')
-    user_object['user_name'] = raw_user_object.get('X-Ms-Client-Principal-Name')
-    user_object['auth_provider'] = raw_user_object.get('X-Ms-Client-Principal-Idp')
-    user_object['auth_token'] = raw_user_object.get('X-Ms-Token-Aad-Id-Token')
-    user_object['client_principal_b64'] = raw_user_object.get('X-Ms-Client-Principal')
-    user_object['aad_id_token'] = raw_user_object.get('X-Ms-Token-Aad-Id-Token')
+    user_object["user_principal_id"] = raw_user_object.get("X-Ms-Client-Principal-Id")
+    user_object["user_name"] = raw_user_object.get("X-Ms-Client-Principal-Name")
+    user_object["auth_provider"] = raw_user_object.get("X-Ms-Client-Principal-Idp")
+    user_object["auth_token"] = raw_user_object.get("X-Ms-Token-Aad-Id-Token")
+    user_object["client_principal_b64"] = raw_user_object.get("X-Ms-Client-Principal")
+    user_object["aad_id_token"] = raw_user_object.get("X-Ms-Token-Aad-Id-Token")
 
     return user_object

backend/auth/sample_user.py

@@ -11,9 +11,9 @@
     "Max-Forwards": "10",
     "Origin": "https://your_app_service.azurewebsites.net",
     "Referer": "https://your_app_service.azurewebsites.net/",
-    "Sec-Ch-Ua": "\"Microsoft Edge\";v=\"113\", \"Chromium\";v=\"113\", \"Not-A.Brand\";v=\"24\"",
+    "Sec-Ch-Ua": '"Microsoft Edge";v="113", "Chromium";v="113", "Not-A.Brand";v="24"',
     "Sec-Ch-Ua-Mobile": "?0",
-    "Sec-Ch-Ua-Platform": "\"Windows\"",
+    "Sec-Ch-Ua-Platform": '"Windows"',
     "Sec-Fetch-Dest": "empty",
     "Sec-Fetch-Mode": "cors",
     "Sec-Fetch-Site": "same-origin",
@@ -35,5 +35,5 @@
     "X-Ms-Token-Aad-Id-Token": "your_aad_id_token",
     "X-Original-Url": "/chatgpt",
     "X-Site-Deployment-Id": "your_app_service",
-    "X-Waws-Unencoded-Url": "/chatgpt"
+    "X-Waws-Unencoded-Url": "/chatgpt",
 }

backend/history/cosmosdbservice.py

@@ -4,39 +4,58 @@
 from azure.cosmos import exceptions
 
 
-class CosmosConversationClient():
-
-    def __init__(self, cosmosdb_endpoint: str, credential: any, database_name: str, container_name: str, enable_message_feedback: bool = False):
+class CosmosConversationClient:
+    def __init__(
+        self,
+        cosmosdb_endpoint: str,
+        credential: any,
+        database_name: str,
+        container_name: str,
+        enable_message_feedback: bool = False,
+    ):
         self.cosmosdb_endpoint = cosmosdb_endpoint
         self.credential = credential
         self.database_name = database_name
         self.container_name = container_name
         self.enable_message_feedback = enable_message_feedback
         try:
-            self.cosmosdb_client = CosmosClient(self.cosmosdb_endpoint, credential=credential)
+            self.cosmosdb_client = CosmosClient(
+                self.cosmosdb_endpoint, credential=credential
+            )
         except exceptions.CosmosHttpResponseError as e:
             if e.status_code == 401:
                 raise ValueError("Invalid credentials") from e
             else:
                 raise ValueError("Invalid CosmosDB endpoint") from e
 
         try:
-            self.database_client = self.cosmosdb_client.get_database_client(database_name)
+            self.database_client = self.cosmosdb_client.get_database_client(
+                database_name
+            )
         except exceptions.CosmosResourceNotFoundError:
             raise ValueError("Invalid CosmosDB database name")
 
         try:
-            self.container_client = self.database_client.get_container_client(container_name)
+            self.container_client = self.database_client.get_container_client(
+                container_name
+            )
         except exceptions.CosmosResourceNotFoundError:
             raise ValueError("Invalid CosmosDB container name")
 
     async def ensure(self):
-        if not self.cosmosdb_client or not self.database_client or not self.container_client:
+        if (
+            not self.cosmosdb_client
+            or not self.database_client
+            or not self.container_client
+        ):
             return False, "CosmosDB client not initialized correctly"
         try:
             database_info = await self.database_client.read()
         except:
-            return False, f"CosmosDB database {self.database_name} on account {self.cosmosdb_endpoint} not found"
+            return (
+                False,
+                f"CosmosDB database {self.database_name} on account {self.cosmosdb_endpoint} not found",
+            )
 
         try:
             container_info = await self.container_client.read()
@@ -45,14 +64,14 @@ async def ensure(self):
 
         return True, "CosmosDB client initialized successfully"
 
-    async def create_conversation(self, user_id, title=''):
+    async def create_conversation(self, user_id, title=""):
         conversation = {
-            'id': str(uuid.uuid4()),
-            'type': 'conversation',
-            'createdAt': datetime.utcnow().isoformat(),
-            'updatedAt': datetime.utcnow().isoformat(),
-            'userId': user_id,
-            'title': title
+            "id": str(uuid.uuid4()),
+            "type": "conversation",
+            "createdAt": datetime.utcnow().isoformat(),
+            "updatedAt": datetime.utcnow().isoformat(),
+            "userId": user_id,
+            "title": title,
         }
         # TODO: add some error handling based on the output of the upsert_item call
         resp = await self.container_client.upsert_item(conversation)
@@ -69,9 +88,13 @@ async def upsert_conversation(self, conversation):
             return False
 
     async def delete_conversation(self, user_id, conversation_id):
-        conversation = await self.container_client.read_item(item=conversation_id, partition_key=user_id)
+        conversation = await self.container_client.read_item(
+            item=conversation_id, partition_key=user_id
+        )
         if conversation:
-            resp = await self.container_client.delete_item(item=conversation_id, partition_key=user_id)
+            resp = await self.container_client.delete_item(
+                item=conversation_id, partition_key=user_id
+            )
             return resp
         else:
             return True
@@ -82,41 +105,36 @@ async def delete_messages(self, conversation_id, user_id):
         response_list = []
         if messages:
             for message in messages:
-                resp = await self.container_client.delete_item(item=message['id'], partition_key=user_id)
+                resp = await self.container_client.delete_item(
+                    item=message["id"], partition_key=user_id
+                )
                 response_list.append(resp)
             return response_list
 
-    async def get_conversations(self, user_id, limit, sort_order='DESC', offset=0):
-        parameters = [
-            {
-                'name': '@userId',
-                'value': user_id
-            }
-        ]
+    async def get_conversations(self, user_id, limit, sort_order="DESC", offset=0):
+        parameters = [{"name": "@userId", "value": user_id}]
         query = f"SELECT * FROM c where c.userId = @userId and c.type='conversation' order by c.updatedAt {sort_order}"
         if limit is not None:
             query += f" offset {offset} limit {limit}"
 
         conversations = []
-        async for item in self.container_client.query_items(query=query, parameters=parameters):
+        async for item in self.container_client.query_items(
+            query=query, parameters=parameters
+        ):
             conversations.append(item)
 
         return conversations
 
     async def get_conversation(self, user_id, conversation_id):
         parameters = [
-            {
-                'name': '@conversationId',
-                'value': conversation_id
-            },
-            {
-                'name': '@userId',
-                'value': user_id
-            }
+            {"name": "@conversationId", "value": conversation_id},
+            {"name": "@userId", "value": user_id},
         ]
         query = f"SELECT * FROM c where c.id = @conversationId and c.type='conversation' and c.userId = @userId"
         conversations = []
-        async for item in self.container_client.query_items(query=query, parameters=parameters):
+        async for item in self.container_client.query_items(
+            query=query, parameters=parameters
+        ):
             conversations.append(item)
 
         # if no conversations are found, return None
@@ -127,54 +145,52 @@ async def get_conversation(self, user_id, conversation_id):
 
     async def create_message(self, uuid, conversation_id, user_id, input_message: dict):
         message = {
-            'id': uuid,
-            'type': 'message',
-            'userId': user_id,
-            'createdAt': datetime.utcnow().isoformat(),
-            'updatedAt': datetime.utcnow().isoformat(),
-            'conversationId': conversation_id,
-            'role': input_message['role'],
-            'content': input_message['content']
+            "id": uuid,
+            "type": "message",
+            "userId": user_id,
+            "createdAt": datetime.utcnow().isoformat(),
+            "updatedAt": datetime.utcnow().isoformat(),
+            "conversationId": conversation_id,
+            "role": input_message["role"],
+            "content": input_message["content"],
         }
 
         if self.enable_message_feedback:
-            message['feedback'] = ''
+            message["feedback"] = ""
 
         resp = await self.container_client.upsert_item(message)
         if resp:
             # update the parent conversations's updatedAt field with the current message's createdAt datetime value
             conversation = await self.get_conversation(user_id, conversation_id)
             if not conversation:
                 return "Conversation not found"
-            conversation['updatedAt'] = message['createdAt']
+            conversation["updatedAt"] = message["createdAt"]
             await self.upsert_conversation(conversation)
             return resp
         else:
             return False
 
     async def update_message_feedback(self, user_id, message_id, feedback):
-        message = await self.container_client.read_item(item=message_id, partition_key=user_id)
+        message = await self.container_client.read_item(
+            item=message_id, partition_key=user_id
+        )
         if message:
-            message['feedback'] = feedback
+            message["feedback"] = feedback
             resp = await self.container_client.upsert_item(message)
             return resp
         else:
             return False
 
     async def get_messages(self, user_id, conversation_id):
         parameters = [
-            {
-                'name': '@conversationId',
-                'value': conversation_id
-            },
-            {
-                'name': '@userId',
-                'value': user_id
-            }
+            {"name": "@conversationId", "value": conversation_id},
+            {"name": "@userId", "value": user_id},
         ]
         query = f"SELECT * FROM c WHERE c.conversationId = @conversationId AND c.type='message' AND c.userId = @userId ORDER BY c.timestamp ASC"
         messages = []
-        async for item in self.container_client.query_items(query=query, parameters=parameters):
+        async for item in self.container_client.query_items(
+            query=query, parameters=parameters
+        ):
             messages.append(item)
 
         return messages

backend/security/ms_defender_utils.py

@@ -2,11 +2,13 @@
 
 
 def get_msdefender_user_json(authenticated_user_details, request_headers):
-    auth_provider = authenticated_user_details.get('auth_provider')
-    source_ip = request_headers.get('X-Forwarded-For', request_headers.get('Remote-Addr', ''))
+    auth_provider = authenticated_user_details.get("auth_provider")
+    source_ip = request_headers.get(
+        "X-Forwarded-For", request_headers.get("Remote-Addr", "")
+    )
     user_args = {
-        "EndUserId": authenticated_user_details.get('user_principal_id'),
+        "EndUserId": authenticated_user_details.get("user_principal_id"),
         "EndUserIdType": "EntraId" if auth_provider == "aad" else auth_provider,
-        "SourceIp": source_ip.split(':')[0],  # remove port
+        "SourceIp": source_ip.split(":")[0],  # remove port
     }
     return json.dumps(user_args)