Spaces:
Sleeping
Sleeping
File size: 1,603 Bytes
5693654 |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 |
from fastapi import HTTPException, Header
from typing import Optional
import os
from dotenv import load_dotenv
from app.utils.logger import logger
# 加载 .env 文件
logger.info(f"当前工作目录: {os.getcwd()}")
logger.info("尝试加载.env文件...")
load_dotenv(override=True) # 添加override=True强制覆盖已存在的环境变量
# 获取环境变量
ALLOW_API_KEY = os.getenv("ALLOW_API_KEY")
logger.info(f"ALLOW_API_KEY环境变量状态: {'已设置' if ALLOW_API_KEY else '未设置'}")
if not ALLOW_API_KEY:
raise ValueError("ALLOW_API_KEY environment variable is not set")
# 打印API密钥的前4位用于调试
logger.info(f"Loaded API key starting with: {ALLOW_API_KEY[:4] if len(ALLOW_API_KEY) >= 4 else ALLOW_API_KEY}")
async def verify_api_key(authorization: Optional[str] = Header(None)) -> None:
"""验证API密钥
Args:
authorization (Optional[str], optional): Authorization header中的API密钥. Defaults to Header(None).
Raises:
HTTPException: 当Authorization header缺失或API密钥无效时抛出401错误
"""
if authorization is None:
logger.warning("请求缺少Authorization header")
raise HTTPException(
status_code=401,
detail="Missing Authorization header"
)
api_key = authorization.replace("Bearer ", "").strip()
if api_key != ALLOW_API_KEY:
logger.warning(f"无效的API密钥: {api_key}")
raise HTTPException(
status_code=401,
detail="Invalid API key"
)
logger.info("API密钥验证通过")
|