mirror of
				https://github.com/meilisearch/meilisearch.git
				synced 2025-10-26 13:36:27 +00:00 
			
		
		
		
	Merge #4533
4533: Hide api key in settings and task queue r=dureuill a=dureuill # Pull Request See [Usage page](https://meilisearch.notion.site/v1-8-AI-search-API-usage-135552d6e85a4a52bc7109be82aeca42#117f5ff7b19f4d95bb3ae0005f6c6633) ## Motivation See [slack discussion (internal link)](https://meilisearch.slack.com/archives/C06GQP7FQ6P/p1709804022298749) ## Changes - The value of the `apiKey` parameter is now hidden in the settings and the details of the task queue. Co-authored-by: Louis Dureuil <louis@meilisearch.com>
This commit is contained in:
		| @@ -7,7 +7,7 @@ use meilisearch_types::error::ResponseError; | ||||
| use meilisearch_types::facet_values_sort::FacetValuesSort; | ||||
| use meilisearch_types::index_uid::IndexUid; | ||||
| use meilisearch_types::milli::update::Setting; | ||||
| use meilisearch_types::settings::{settings, RankingRuleView, Settings, Unchecked}; | ||||
| use meilisearch_types::settings::{settings, RankingRuleView, SecretPolicy, Settings, Unchecked}; | ||||
| use meilisearch_types::tasks::KindWithContent; | ||||
| use serde_json::json; | ||||
| use tracing::debug; | ||||
| @@ -134,7 +134,7 @@ macro_rules! make_setting_route { | ||||
|  | ||||
|                 let index = index_scheduler.index(&index_uid)?; | ||||
|                 let rtxn = index.read_txn()?; | ||||
|                 let settings = settings(&index, &rtxn)?; | ||||
|                 let settings = settings(&index, &rtxn, meilisearch_types::settings::SecretPolicy::HideSecrets)?; | ||||
|  | ||||
|                 debug!(returns = ?settings, "Update settings"); | ||||
|                 let mut json = serde_json::json!(&settings); | ||||
| @@ -819,7 +819,7 @@ pub async fn get_all( | ||||
|  | ||||
|     let index = index_scheduler.index(&index_uid)?; | ||||
|     let rtxn = index.read_txn()?; | ||||
|     let new_settings = settings(&index, &rtxn)?; | ||||
|     let new_settings = settings(&index, &rtxn, SecretPolicy::HideSecrets)?; | ||||
|     debug!(returns = ?new_settings, "Get all settings"); | ||||
|     Ok(HttpResponse::Ok().json(new_settings)) | ||||
| } | ||||
|   | ||||
| @@ -88,6 +88,136 @@ async fn get_settings() { | ||||
|     assert_eq!(settings["searchCutoffMs"], json!(null)); | ||||
| } | ||||
|  | ||||
| #[actix_rt::test] | ||||
| async fn secrets_are_hidden_in_settings() { | ||||
|     let server = Server::new().await; | ||||
|     let (response, code) = server.set_features(json!({"vectorStore": true})).await; | ||||
|  | ||||
|     meili_snap::snapshot!(code, @"200 OK"); | ||||
|     meili_snap::snapshot!(meili_snap::json_string!(response), @r###" | ||||
|     { | ||||
|       "vectorStore": true, | ||||
|       "metrics": false, | ||||
|       "logsRoute": false, | ||||
|       "exportPuffinReports": false | ||||
|     } | ||||
|     "###); | ||||
|  | ||||
|     let index = server.index("test"); | ||||
|     let (response, _code) = index.create(None).await; | ||||
|     index.wait_task(response.uid()).await; | ||||
|  | ||||
|     let (response, code) = index | ||||
|         .update_settings(json!({ | ||||
|             "embedders": { | ||||
|                 "default": { | ||||
|                     "source": "rest", | ||||
|                     "url": "https://localhost:7777", | ||||
|                     "apiKey": "My super secret value you will never guess" | ||||
|                 } | ||||
|             } | ||||
|         })) | ||||
|         .await; | ||||
|     meili_snap::snapshot!(code, @"202 Accepted"); | ||||
|  | ||||
|     meili_snap::snapshot!(meili_snap::json_string!(response, { ".duration" => "[duration]", ".enqueuedAt" => "[date]", ".startedAt" => "[date]", ".finishedAt" => "[date]" }), | ||||
|     @r###" | ||||
|     { | ||||
|       "taskUid": 1, | ||||
|       "indexUid": "test", | ||||
|       "status": "enqueued", | ||||
|       "type": "settingsUpdate", | ||||
|       "enqueuedAt": "[date]" | ||||
|     } | ||||
|     "###); | ||||
|  | ||||
|     let settings_update_uid = response.uid(); | ||||
|  | ||||
|     index.wait_task(settings_update_uid).await; | ||||
|  | ||||
|     let (response, code) = index.settings().await; | ||||
|     meili_snap::snapshot!(code, @"200 OK"); | ||||
|     meili_snap::snapshot!(meili_snap::json_string!(response), @r###" | ||||
|     { | ||||
|       "displayedAttributes": [ | ||||
|         "*" | ||||
|       ], | ||||
|       "searchableAttributes": [ | ||||
|         "*" | ||||
|       ], | ||||
|       "filterableAttributes": [], | ||||
|       "sortableAttributes": [], | ||||
|       "rankingRules": [ | ||||
|         "words", | ||||
|         "typo", | ||||
|         "proximity", | ||||
|         "attribute", | ||||
|         "sort", | ||||
|         "exactness" | ||||
|       ], | ||||
|       "stopWords": [], | ||||
|       "nonSeparatorTokens": [], | ||||
|       "separatorTokens": [], | ||||
|       "dictionary": [], | ||||
|       "synonyms": {}, | ||||
|       "distinctAttribute": null, | ||||
|       "proximityPrecision": "byWord", | ||||
|       "typoTolerance": { | ||||
|         "enabled": true, | ||||
|         "minWordSizeForTypos": { | ||||
|           "oneTypo": 5, | ||||
|           "twoTypos": 9 | ||||
|         }, | ||||
|         "disableOnWords": [], | ||||
|         "disableOnAttributes": [] | ||||
|       }, | ||||
|       "faceting": { | ||||
|         "maxValuesPerFacet": 100, | ||||
|         "sortFacetValuesBy": { | ||||
|           "*": "alpha" | ||||
|         } | ||||
|       }, | ||||
|       "pagination": { | ||||
|         "maxTotalHits": 1000 | ||||
|       }, | ||||
|       "embedders": { | ||||
|         "default": { | ||||
|           "source": "rest", | ||||
|           "apiKey": "My suXXXXXX...", | ||||
|           "documentTemplate": "{% for field in fields %} {{ field.name }}: {{ field.value }}\n{% endfor %}", | ||||
|           "url": "https://localhost:7777", | ||||
|           "query": null, | ||||
|           "inputField": [ | ||||
|             "input" | ||||
|           ], | ||||
|           "pathToEmbeddings": [ | ||||
|             "data" | ||||
|           ], | ||||
|           "embeddingObject": [ | ||||
|             "embedding" | ||||
|           ], | ||||
|           "inputType": "text" | ||||
|         } | ||||
|       }, | ||||
|       "searchCutoffMs": null | ||||
|     } | ||||
|     "###); | ||||
|  | ||||
|     let (response, code) = server.get_task(settings_update_uid).await; | ||||
|     meili_snap::snapshot!(code, @"200 OK"); | ||||
|     meili_snap::snapshot!(meili_snap::json_string!(response["details"]), @r###" | ||||
|     { | ||||
|       "embedders": { | ||||
|         "default": { | ||||
|           "source": "rest", | ||||
|           "apiKey": "My suXXXXXX...", | ||||
|           "url": "https://localhost:7777" | ||||
|         } | ||||
|       } | ||||
|     } | ||||
|     "###); | ||||
| } | ||||
|  | ||||
| #[actix_rt::test] | ||||
| async fn error_update_settings_unknown_field() { | ||||
|     let server = Server::new().await; | ||||
|   | ||||
		Reference in New Issue
	
	Block a user