6j/bdZddlZddlZddlZddlmZddlm Z m Z de ddfdZ d'd e fd Zd edefd Zd ededefdZdZdefdZd(d e de ddfdZd)d e deddfdZdZdZeZdddededzdefdZdddedzfdZde de fd Zde fd!Zd"Zdefd#Z dedzfd$Z!d%edefd&Z"dS)*z) Hermes Web UI -- HTTP helper functions. N)Path) IMAGE_EXTSMD_EXTSbodyreturncrfd|D}|r%tdd|dS)zHPhase D: Validate required fields. Raises ValueError with clean message.cpg|]2}||dk0|3S)r)get).0frs !/root/hermes-webui/api/helpers.py zrequire.. s<IIIQ I q8H8Hq8H8H8HzMissing required field(s): z, N) ValueErrorjoin)rfieldsmissings` r requirer sTIIII&IIIGMKtyy7I7IKKLLLMMrstatusc*t|d|i|S)z#Return a clean JSON error response.error)r)j)handlermsgrs r badrs WwnV 4 4 44recZddl}t|}|dd|}|S)zJStrip filesystem paths from exception messages before returning to client.rNz,(?:(?:/[a-zA-Z0-9_.-]+)+|(?:[A-Z]:\\[^\s]+))z)restrsub)rrrs r _sanitize_errorr"s1 III a&&C &&@(C P PC Jrroot requestedc||z }|||S)zEResolve a relative path inside root, raising ValueError on traversal.)resolve relative_to)r#r$resolveds r safe_resolver) s9y ))++H ((( Orc|dd|dd|dd|dd|d d d S) z'Add security headers to every response.zX-Content-Type-OptionsnosniffzX-Frame-OptionsDENYzReferrer-Policyz same-originzContent-Security-Policyadefault-src 'self' https://*.cloudflareaccess.com; script-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com; img-src 'self' data: https: blob:; font-src 'self' data: https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src 'self' https://cdn.jsdelivr.net; manifest-src 'self' https://*.cloudflareaccess.com; base-uri 'self'; form-action 'self'zPermissions-PolicyzDcamera=(), microphone=(self), geolocation=(), clipboard-write=(self)N) send_header)rs r _security_headersr.'s 0)<<< )6222 )=999 ! . Nrc`t|dd}|sdS|dd}d|vS)z*Check if the client accepts gzip encoding.headersNFzAccept-Encodinggzip)getattrr )rr0aes r _accepts_gzipr5;s>gy$//G u & + +B R<r extra_headersctj|ddd}|||ddt |rDt |dkr1dd l}||d }|d d |dtt ||ddt||r0| D]\}}|||| |j |d S)zSend a JSON response. *extra_headers*: optional dict of additional headers to include (e.g., {'Set-Cookie': '...'}). Headers are sent before end_headers(). F) ensure_asciiindentutf-8 Content-Typezapplication/json; charset=utf-8irN) compresslevelzContent-Encodingr2Content-Length Cache-Controlno-store)_jsondumpsencode send_responser-r5lenr2compressr r.items end_headerswfilewrite)rpayloadrr7rr2kvs r rrDs_ ;wU1 = = = D DW M MD &!!! (IJJJ W8#d))d"2"2 }}T}33.777 (#c$ii..999 444g&!'')) & &DAq   1 % % % %  Mrtext/plain; charset=utf-8 content_typect|tr|n!t|d}|||d||dtt ||ddt|||j |dS)z#Send a plain text or HTML response.r<r=r@rArBN) isinstancebytesr rErFr-rGr.rJrKrL)rrMrrQrs r trU`s %00 R77c'll6I6I'6R6RD &!!!  555 (#c$ii..999 444g  Mri@c|tjdtjdtjtjdtjddtdtfddtdtffd  d d lmn#t $rcYSwxYwdtdtffd }|S) zFReturn a redactor backed by hermes-agent plus local fallback patterns.a(?._masks;03E b0@0@%),,bcc ,,,eKrtextct|tr|s|Sfd|}fd|}fd|}d|}|S)Nc@|dS)Ngroupmr\s r z<_build_redact_fn.._fallback_redact..seeAGGAJJ&7&7rcl|d|dzS)Nr`r9rarcs r rez<_build_redact_fn.._fallback_redact..s*!''!**uuQWWQZZ7H7H*Hrc|dd|d|d|dS)Nr`=r9rarcs r rez<_build_redact_fn.._fallback_redact..sQQQaggajjQ%% 2C2CQQWWQZZQQrz[REDACTED PRIVATE KEY])rSr r!)r] _AUTH_HDR_RE_CRED_RE_ENV_RE _PRIVKEY_REr\s r _fallback_redactz*_build_redact_fn.._fallback_redacts$$$ D K||7777>> H H H H$OO{{ Q Q Q QSW  7>> rr)redact_sensitive_textct|tr|s|S |d}n#t$r|}YnwxYw|S)NT)force)rSr TypeError)r]agent_redactedrnros r _combined_redactz*_build_redact_fn.._combined_redacts$$$ D K  9224tDDDNN 9 9 922488NNN 9 ///s *AA)_recompile IGNORECASEr agent.redactro ImportError)rtrjrkrlrmrnr\ros @@@@@@@r _build_redact_fnrzqsE { H;CS^TTLk "G+SKLSLSLLLL s s           6666666      0s 0s 0 0 0 0 0 0 0 sB B$#B$_enabledr]r|ct|tr|s|S|1ddlm}t |dd}|s|St |S)uRedact sensitive text from API responses. Respects api_redact_enabled setting. The ``_enabled`` parameter is an internal optimization for callers that redact many strings in a single response — `redact_session_data()` reads the setting once and threads it through ``_redact_value`` so we avoid re-loading settings.json from disk per string. (Opus pre-release perf fix.) Nr load_settingsapi_redact_enabledT)rSr api.configrboolr _redact_fn_cached)r]r|rs r _redact_textrsy dC  ,,,,,, ++,@$GGHH  T " ""rct|trt|St|tr fd|DSt|t rfd|DS|S)zRecursively redact credentials from strings, dicts, and lists. ``_enabled`` is threaded through so a single response-level redact pass only reads settings.json once. (Opus pre-release perf fix.) r{c:i|]\}}|t|Sr{ _redact_value)r rNvalr|s r z!_redact_value..s,QQQVQ=x888QQQrc2g|]}t|Srr)r itemr|s r rz!_redact_value..s&EEE4 dX666EEEr)rSr rdictrIlist)rOr|s `r rrs !S2A1111!TRQQQQqwwyyQQQQ!TFEEEE1EEEE Hr session_dictcddlm}t|dd}t |}t |dt rt|d||d<d|vrt|d||d<d|vrt|d||d<|S) a4Redact credentials from message content and tool_call data before API response. Applies to: messages[], tool_calls[], and title. The underlying session file is not modified; redaction is response-layer only. Reads the ``api_redact_enabled`` setting ONCE for the entire response and threads it through to avoid hundreds of settings.json reads per session payload (a 50-message session has hundreds of nested strings). When the setting is disabled this is also a fast path: the recursion still walks but every string returns early. rr~rTtitler{messages tool_calls) rrrr rrSr rr)rrr|results r redact_session_datars)(((((MMOO''(rs ********M$MDMMMM55c5555 ySt(dd8   s [_    " ???D%$&&8<###s######$15    $+     dt0 $    'GGGGG 3:,.s.s......r