Skip to content

[BAK-62] [기능] 랭체인에 사용될 복호화된 API KEY 접근 API #55

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ChoiSeungWoo98 merged 3 commits into from
Aug 18, 2025
Merged

[BAK-62] [기능] 랭체인에 사용될 복호화된 API KEY 접근 API #55

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
9b92574
feat: 랭체인에 사용될 API KEY 관련 API 구현
nahyeongjin1 Aug 18, 2025
4b52c37
chore: 상태 코드 적용
nahyeongjin1 Aug 18, 2025
b0e4af8
chore: path 변경
nahyeongjin1 Aug 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 18 additions & 1 deletion app/api/api_key_api.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@
from app.core.response import ResponseMessage
from app.core.status import CommonCode
from app.schemas.api_key.create_model import APIKeyCreate
from app.schemas.api_key.decrypted_response_model import DecryptedAPIKeyResponse
from app.schemas.api_key.response_model import APIKeyResponse
from app.schemas.api_key.update_model import APIKeyUpdate
from app.services.api_key_service import APIKeyService, api_key_service
Expand Down Expand Up @@ -31,7 +32,6 @@ def store_api_key(
response_data = APIKeyResponse(
id=created_api_key.id,
service_name=created_api_key.service_name.value,
api_key_encrypted=created_api_key.api_key,
created_at=created_api_key.created_at,
updated_at=created_api_key.updated_at,
)
Expand Down Expand Up @@ -86,6 +86,23 @@ def get_api_key_by_service_name(
return ResponseMessage.success(value=response_data, code=CommonCode.SUCCESS_GET_API_KEY)


@router.get(
"/find/decrypted/{serviceName}",
response_model=ResponseMessage[DecryptedAPIKeyResponse],
summary="[내부용] 복호화된 API KEY 조회",
description="내부 AI 서버와 같이, 신뢰된 서비스가 복호화된 API 키를 요청할 때 사용합니다. (외부 노출 금지)",
# include_in_schema=False, # Swagger 문서에 포함하지 않음
)
def get_decrypted_api_key(
serviceName: LLMServiceEnum, service: APIKeyService = api_key_service_dependency
) -> ResponseMessage[DecryptedAPIKeyResponse]:
"""서비스 이름을 기준으로 API Key를 복호화하여 반환합니다."""
decrypted_key = service.get_decrypted_api_key(serviceName.value)
return ResponseMessage.success(
value=DecryptedAPIKeyResponse(api_key=decrypted_key), code=CommonCode.SUCCESS_GET_API_KEY
)


@router.put(
"/modify/{serviceName}",
response_model=ResponseMessage[APIKeyResponse],
Expand Down
7 changes: 7 additions & 0 deletions app/schemas/api_key/decrypted_response_model.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
from pydantic import BaseModel, Field


class DecryptedAPIKeyResponse(BaseModel):
"""Decrypted API Key 응답용 스키마"""

api_key: str = Field(..., description="복호화된 실제 API Key")
10 changes: 10 additions & 0 deletions app/services/api_key_service.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,16 @@ def get_api_key_by_service_name(self, service_name: str) -> APIKeyInDB:
except sqlite3.Error as e:
raise APIException(CommonCode.FAIL) from e

def get_decrypted_api_key(self, service_name: str) -> str:
"""서비스 이름으로 암호화된 API Key를 조회하고 복호화하여 반환합니다."""
api_key_in_db = self.get_api_key_by_service_name(service_name)
try:
decrypted_key = AES256.decrypt(api_key_in_db.api_key)
return decrypted_key
except Exception as e:
# 복호화 실패 시 서버 에러 발생
raise APIException(CommonCode.FAIL_DECRYPT_API_KEY) from e

def update_api_key(self, service_name: str, key_data: APIKeyUpdate) -> APIKeyInDB:
"""서비스 이름에 해당하는 API Key를 수정합니다."""
key_data.validate_with_api_key()
Expand Down