mirror of
https://github.com/danny-avila/LibreChat.git
synced 2025-09-22 06:00:56 +02:00
7b2cedf5ff
* refactor: require Auth middleware in route index files * feat: concurrent message limiter * feat: complete concurrent message limiter with caching * refactor: SSE response methods separated from handleText * fix(abortMiddleware): fix req and res order to standard, use endpointOption in req.body * chore: minor name changes * refactor: add isUUID condition to saveMessage * fix(concurrentLimiter): logic correctly handles the max number of concurrent messages and res closing/finalization * chore: bump keyv and remove console.log from Message * fix(concurrentLimiter): ensure messages are only saved in later message children * refactor(concurrentLimiter): use KeyvFile instead, could make other stores configurable in the future * feat: add denyRequest function for error responses * feat(utils): add isStringTruthy function Introduce the isStringTruthy function to the utilities module to check if a string value is a case-insensitive match for 'true' * feat: add optional message rate limiters by IP and userId * feat: add optional message rate limiters by IP and userId to edit route * refactor: rename isStringTruthy to isTrue for brevity * refactor(getError): use map to make code cleaner * refactor: use memory for concurrent rate limiter to prevent clearing on startup/exit, add multiple log files, fix error message for concurrent violation * feat: check if errorMessage is object, stringify if so * chore: send object to denyRequest which will stringify it * feat: log excessive requests * fix(getError): correctly pluralize messages * refactor(limiters): make type consistent between logs and errorMessage * refactor(cache): move files out of lib/db into separate cache dir >> feat: add getLogStores function so Keyv instance is not redundantly created on every violation feat: separate violation logging to own function with logViolation * fix: cache/index.js export, properly record userViolations * refactor(messageLimiters): use new logging method, add logging to registrations * refactor(logViolation): make userLogs an array of logs per user * feat: add logging to login limiter * refactor: pass req as first param to logViolation and record offending IP * refactor: rename isTrue helper fn to isEnabled * feat: add simple non_browser check and log violation * fix: open handles in unit tests, remove KeyvMongo as not used and properly mock global fetch * chore: adjust nodemon ignore paths to properly ignore logs * feat: add math helper function for safe use of eval * refactor(api/convos): use middleware at top of file to avoid redundancy * feat: add delete all static method for Sessions * fix: redirect to login on refresh if user is not found, or the session is not found but hasn't expired (ban case) * refactor(getLogStores): adjust return type * feat: add ban violation and check ban logic refactor(logViolation): pass both req and res objects * feat: add removePorts helper function * refactor: rename getError to getMessageError and add getLoginError for displaying different login errors * fix(AuthContext): fix type issue and remove unused code * refactor(bans): ban by ip and user id, send response based on origin * chore: add frontend ban messages * refactor(routes/oauth): add ban check to handler, also consolidate logic to avoid redundancy * feat: add ban check to AI messaging routes * feat: add ban check to login/registration * fix(ci/api): mock KeyvMongo to avoid tests hanging * docs: update .env.example > refactor(banViolation): calculate interval rate crossover, early return if duration is invalid ci(banViolation): add tests to ensure users are only banned when expected * docs: improve wording for mod system * feat: add configurable env variables for violation scores * chore: add jsdoc for uaParser.js * chore: improve ban text log * chore: update bun test scripts * refactor(math.js): add fallback values * fix(KeyvMongo/banLogs): refactor keyv instances to top of files to avoid memory leaks, refactor ban logic to use getLogStores instead refactor(getLogStores): get a single log store by type * fix(ci): refactor tests due to banLogs changes, also make sure to clear and revoke sessions even if ban duration is 0 * fix(banViolation.js): getLogStores import * feat: handle 500 code error at login * fix(middleware): handle case where user.id is _id and not just id * ci: add ban secrets for backend unit tests * refactor: logout user upon ban * chore: log session delete message only if deletedCount > 0 * refactor: change default ban duration (2h) and make logic more clear in JSDOC * fix: login and registration limiters will now return rate limiting error * fix: userId not parsable as non ObjectId string * feat: add useTimeout hook to properly clear timeouts when invoking functions within them refactor(AuthContext): cleanup code by using new hook and defining types in ~/common * fix: login error message for rate limits * docs: add info for automated mod system and rate limiters, update other docs accordingly * chore: bump data-provider version
295 lines
8.7 KiB
JavaScript
295 lines
8.7 KiB
JavaScript
const express = require('express');
|
|
const crypto = require('crypto');
|
|
const router = express.Router();
|
|
const { titleConvoBing, askBing } = require('../../../app');
|
|
const { saveMessage, getConvoTitle, saveConvo, getConvo } = require('../../../models');
|
|
const { handleError, sendMessage, createOnProgress, handleText } = require('../../utils');
|
|
const { setHeaders } = require('../../middleware');
|
|
|
|
router.post('/', setHeaders, async (req, res) => {
|
|
const {
|
|
endpoint,
|
|
text,
|
|
messageId,
|
|
overrideParentMessageId = null,
|
|
parentMessageId,
|
|
conversationId: oldConversationId,
|
|
} = req.body;
|
|
if (text.length === 0) {
|
|
return handleError(res, { text: 'Prompt empty or too short' });
|
|
}
|
|
if (endpoint !== 'bingAI') {
|
|
return handleError(res, { text: 'Illegal request' });
|
|
}
|
|
|
|
// build user message
|
|
const conversationId = oldConversationId || crypto.randomUUID();
|
|
const isNewConversation = !oldConversationId;
|
|
const userMessageId = messageId;
|
|
const userParentMessageId = parentMessageId || '00000000-0000-0000-0000-000000000000';
|
|
let userMessage = {
|
|
messageId: userMessageId,
|
|
sender: 'User',
|
|
text,
|
|
parentMessageId: userParentMessageId,
|
|
conversationId,
|
|
isCreatedByUser: true,
|
|
};
|
|
|
|
// build endpoint option
|
|
let endpointOption = {};
|
|
if (req.body?.jailbreak) {
|
|
endpointOption = {
|
|
jailbreak: req.body?.jailbreak ?? false,
|
|
jailbreakConversationId: req.body?.jailbreakConversationId ?? null,
|
|
systemMessage: req.body?.systemMessage ?? null,
|
|
context: req.body?.context ?? null,
|
|
toneStyle: req.body?.toneStyle ?? 'creative',
|
|
key: req.body?.key ?? null,
|
|
};
|
|
} else {
|
|
endpointOption = {
|
|
jailbreak: req.body?.jailbreak ?? false,
|
|
systemMessage: req.body?.systemMessage ?? null,
|
|
context: req.body?.context ?? null,
|
|
conversationSignature: req.body?.conversationSignature ?? null,
|
|
clientId: req.body?.clientId ?? null,
|
|
invocationId: req.body?.invocationId ?? null,
|
|
toneStyle: req.body?.toneStyle ?? 'creative',
|
|
key: req.body?.key ?? null,
|
|
};
|
|
}
|
|
|
|
console.log('ask log', {
|
|
userMessage,
|
|
endpointOption,
|
|
conversationId,
|
|
});
|
|
|
|
if (!overrideParentMessageId) {
|
|
await saveMessage(userMessage);
|
|
await saveConvo(req.user.id, {
|
|
...userMessage,
|
|
...endpointOption,
|
|
conversationId,
|
|
endpoint,
|
|
});
|
|
}
|
|
|
|
// eslint-disable-next-line no-use-before-define
|
|
return await ask({
|
|
isNewConversation,
|
|
userMessage,
|
|
endpointOption,
|
|
conversationId,
|
|
preSendRequest: true,
|
|
overrideParentMessageId,
|
|
req,
|
|
res,
|
|
});
|
|
});
|
|
|
|
const ask = async ({
|
|
isNewConversation,
|
|
userMessage,
|
|
endpointOption,
|
|
conversationId,
|
|
preSendRequest = true,
|
|
overrideParentMessageId = null,
|
|
req,
|
|
res,
|
|
}) => {
|
|
let { text, parentMessageId: userParentMessageId, messageId: userMessageId } = userMessage;
|
|
|
|
let responseMessageId = crypto.randomUUID();
|
|
const model = endpointOption?.jailbreak ? 'Sydney' : 'BingAI';
|
|
|
|
if (preSendRequest) {
|
|
sendMessage(res, { message: userMessage, created: true });
|
|
}
|
|
|
|
let lastSavedTimestamp = 0;
|
|
const { onProgress: progressCallback, getPartialText } = createOnProgress({
|
|
onProgress: ({ text }) => {
|
|
const currentTimestamp = Date.now();
|
|
if (currentTimestamp - lastSavedTimestamp > 500) {
|
|
lastSavedTimestamp = currentTimestamp;
|
|
saveMessage({
|
|
messageId: responseMessageId,
|
|
sender: model,
|
|
conversationId,
|
|
parentMessageId: overrideParentMessageId || userMessageId,
|
|
model,
|
|
text: text,
|
|
unfinished: true,
|
|
cancelled: false,
|
|
error: false,
|
|
isCreatedByUser: false,
|
|
});
|
|
}
|
|
},
|
|
});
|
|
const abortController = new AbortController();
|
|
let bingConversationId = null;
|
|
if (!isNewConversation) {
|
|
const convo = await getConvo(req.user.id, conversationId);
|
|
bingConversationId = convo.bingConversationId;
|
|
}
|
|
|
|
try {
|
|
let response = await askBing({
|
|
text,
|
|
userId: req.user.id,
|
|
parentMessageId: userParentMessageId,
|
|
conversationId: bingConversationId ?? conversationId,
|
|
...endpointOption,
|
|
onProgress: progressCallback.call(null, {
|
|
res,
|
|
text,
|
|
parentMessageId: overrideParentMessageId || userMessageId,
|
|
}),
|
|
abortController,
|
|
});
|
|
|
|
console.log('BING RESPONSE', response);
|
|
|
|
if (response.details && response.details.scores) {
|
|
console.log('SCORES', response.details.scores);
|
|
}
|
|
|
|
const newConversationId = endpointOption?.jailbreak
|
|
? response.jailbreakConversationId
|
|
: response.conversationId || conversationId;
|
|
const newUserMessageId =
|
|
response.parentMessageId || response.details.requestId || userMessageId;
|
|
const newResponseMessageId = response.messageId || response.details.messageId;
|
|
|
|
// STEP1 generate response message
|
|
response.text =
|
|
response.response || response.details.spokenText || '**Bing refused to answer.**';
|
|
|
|
const partialText = getPartialText();
|
|
let unfinished = false;
|
|
if (partialText?.trim()?.length > response.text.length) {
|
|
response.text = partialText;
|
|
unfinished = false;
|
|
//setting "unfinished" to false fix bing image generation error msg and allows to continue a convo after being triggered by censorship (bing does remember the context after a "censored error" so there is no reason to end the convo)
|
|
}
|
|
|
|
let responseMessage = {
|
|
conversationId,
|
|
bingConversationId: newConversationId,
|
|
messageId: responseMessageId,
|
|
newMessageId: newResponseMessageId,
|
|
parentMessageId: overrideParentMessageId || newUserMessageId,
|
|
sender: model,
|
|
text: await handleText(response, true),
|
|
model,
|
|
suggestions:
|
|
response.details.suggestedResponses &&
|
|
response.details.suggestedResponses.map((s) => s.text),
|
|
unfinished,
|
|
cancelled: false,
|
|
error: false,
|
|
isCreatedByUser: false,
|
|
};
|
|
|
|
await saveMessage(responseMessage);
|
|
responseMessage.messageId = newResponseMessageId;
|
|
|
|
let conversationUpdate = {
|
|
conversationId,
|
|
bingConversationId: newConversationId,
|
|
endpoint: 'bingAI',
|
|
};
|
|
|
|
if (endpointOption?.jailbreak) {
|
|
conversationUpdate.jailbreak = true;
|
|
conversationUpdate.jailbreakConversationId = response.jailbreakConversationId;
|
|
} else {
|
|
conversationUpdate.jailbreak = false;
|
|
conversationUpdate.conversationSignature = response.conversationSignature;
|
|
conversationUpdate.clientId = response.clientId;
|
|
conversationUpdate.invocationId = response.invocationId;
|
|
}
|
|
|
|
await saveConvo(req.user.id, conversationUpdate);
|
|
userMessage.messageId = newUserMessageId;
|
|
|
|
// If response has parentMessageId, the fake userMessage.messageId should be updated to the real one.
|
|
if (!overrideParentMessageId) {
|
|
await saveMessage({
|
|
...userMessage,
|
|
messageId: userMessageId,
|
|
newMessageId: newUserMessageId,
|
|
});
|
|
}
|
|
userMessageId = newUserMessageId;
|
|
|
|
sendMessage(res, {
|
|
title: await getConvoTitle(req.user.id, conversationId),
|
|
final: true,
|
|
conversation: await getConvo(req.user.id, conversationId),
|
|
requestMessage: userMessage,
|
|
responseMessage: responseMessage,
|
|
});
|
|
res.end();
|
|
|
|
if (userParentMessageId == '00000000-0000-0000-0000-000000000000') {
|
|
const title = await titleConvoBing({
|
|
text,
|
|
response: responseMessage,
|
|
});
|
|
|
|
await saveConvo(req.user.id, {
|
|
conversationId: conversationId,
|
|
title,
|
|
});
|
|
}
|
|
} catch (error) {
|
|
console.error(error);
|
|
const partialText = getPartialText();
|
|
if (partialText?.length > 2) {
|
|
const responseMessage = {
|
|
messageId: responseMessageId,
|
|
sender: model,
|
|
conversationId,
|
|
parentMessageId: overrideParentMessageId || userMessageId,
|
|
text: partialText,
|
|
model,
|
|
unfinished: true,
|
|
cancelled: false,
|
|
error: false,
|
|
isCreatedByUser: false,
|
|
};
|
|
|
|
saveMessage(responseMessage);
|
|
|
|
return {
|
|
title: await getConvoTitle(req.user.id, conversationId),
|
|
final: true,
|
|
conversation: await getConvo(req.user.id, conversationId),
|
|
requestMessage: userMessage,
|
|
responseMessage: responseMessage,
|
|
};
|
|
} else {
|
|
console.log(error);
|
|
const errorMessage = {
|
|
messageId: responseMessageId,
|
|
sender: model,
|
|
conversationId,
|
|
parentMessageId: overrideParentMessageId || userMessageId,
|
|
unfinished: false,
|
|
cancelled: false,
|
|
error: true,
|
|
text: error.message,
|
|
model,
|
|
isCreatedByUser: false,
|
|
};
|
|
await saveMessage(errorMessage);
|
|
handleError(res, errorMessage);
|
|
}
|
|
}
|
|
};
|
|
|
|
module.exports = router;
|