use deco (#28153)

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
2025-11-21 15:25:53 +09:00
parent 3c30d0f41b
commit 1a2f8dfcb4
23 changed files with 205 additions and 317 deletions
--- a/api/controllers/console/workspace/models.py
+++ b/api/controllers/console/workspace/models.py
@@ -1,10 +1,9 @@
 import logging

 from flask_restx import Resource, reqparse
-from werkzeug.exceptions import Forbidden

 from controllers.console import api, console_ns
-from controllers.console.wraps import account_initialization_required, setup_required
+from controllers.console.wraps import account_initialization_required, is_admin_or_owner_required, setup_required
 from core.model_runtime.entities.model_entities import ModelType
 from core.model_runtime.errors.validate import CredentialsValidateFailedError
 from core.model_runtime.utils.encoders import jsonable_encoder
@@ -50,12 +49,10 @@ class DefaultModelApi(Resource):
    @api.expect(parser_post_default)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def post(self):
-        current_user, tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
+        _, tenant_id = current_account_with_tenant()

        args = parser_post_default.parse_args()
        model_provider_service = ModelProviderService()
@@ -133,13 +130,11 @@ class ModelProviderModelApi(Resource):
    @api.expect(parser_post_models)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def post(self, provider: str):
        # To save the model's load balance configs
-        current_user, tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
+        _, tenant_id = current_account_with_tenant()
        args = parser_post_models.parse_args()

        if args.get("config_from", "") == "custom-model":
@@ -181,12 +176,10 @@ class ModelProviderModelApi(Resource):
    @api.expect(parser_delete_models)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def delete(self, provider: str):
-        current_user, tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
+        _, tenant_id = current_account_with_tenant()

        args = parser_delete_models.parse_args()

@@ -314,12 +307,10 @@ class ModelProviderModelCredentialApi(Resource):
    @api.expect(parser_post_cred)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def post(self, provider: str):
-        current_user, tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
+        _, tenant_id = current_account_with_tenant()

        args = parser_post_cred.parse_args()

@@ -348,13 +339,10 @@ class ModelProviderModelCredentialApi(Resource):
    @api.expect(parser_put_cred)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def put(self, provider: str):
-        current_user, current_tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
-
+        _, current_tenant_id = current_account_with_tenant()
        args = parser_put_cred.parse_args()

        model_provider_service = ModelProviderService()
@@ -377,12 +365,10 @@ class ModelProviderModelCredentialApi(Resource):
    @api.expect(parser_delete_cred)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def delete(self, provider: str):
-        current_user, current_tenant_id = current_account_with_tenant()
-
-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
+        _, current_tenant_id = current_account_with_tenant()
        args = parser_delete_cred.parse_args()

        model_provider_service = ModelProviderService()
@@ -417,12 +403,11 @@ class ModelProviderModelCredentialSwitchApi(Resource):
    @api.expect(parser_switch)
    @setup_required
    @login_required
+    @is_admin_or_owner_required
    @account_initialization_required
    def post(self, provider: str):
-        current_user, current_tenant_id = current_account_with_tenant()
+        _, current_tenant_id = current_account_with_tenant()

-        if not current_user.is_admin_or_owner:
-            raise Forbidden()
        args = parser_switch.parse_args()

        service = ModelProviderService()