vodorod/Dorod-Sky
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat: add custom credential service (#4129)

Browse Source 
Co-authored-by: Stanislav Novosad <stas@skyvern.com>
This commit is contained in:
Vikas
2025-12-03 06:55:04 +05:30
committed by GitHub
parent d310c5e39c
commit 6dad49eb08
17 changed files with 1248 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

279
skyvern/forge/sdk/api/custom_credential_client.py Normal file
View File

@@ -0,0 +1,279 @@
from typing import Any
import structlog
from skyvern.exceptions import HttpException
from skyvern.forge.sdk.core.aiohttp_helper import aiohttp_delete, aiohttp_get_json, aiohttp_post
from skyvern.forge.sdk.schemas.credentials import (
CredentialItem,
CredentialType,
CreditCardCredential,
PasswordCredential,
)
LOG = structlog.get_logger()
class CustomCredentialAPIClient:
"""HTTP client for interacting with custom credential service APIs."""
def __init__(self, api_base_url: str, api_token: str):
"""
Initialize the custom credential API client.
Args:
api_base_url: Base URL for the custom credential API
api_token: Bearer token for authentication
"""
self.api_base_url = api_base_url.rstrip("/")
self.api_token = api_token
def _get_auth_headers(self) -> dict[str, str]:
"""Get headers for API authentication."""
return {
"Authorization": f"Bearer {self.api_token}",
"Content-Type": "application/json",
}
def _credential_to_api_payload(self, credential: PasswordCredential | CreditCardCredential) -> dict[str, Any]:
"""Convert Skyvern credential to API payload format."""
if isinstance(credential, PasswordCredential):
return {
"type": "password",
"username": credential.username,
"password": credential.password,
"totp": credential.totp,
"totp_type": credential.totp_type,
}
elif isinstance(credential, CreditCardCredential):
return {
"type": "credit_card",
"card_holder_name": credential.card_holder_name,
"card_number": credential.card_number,
"card_exp_month": credential.card_exp_month,
"card_exp_year": credential.card_exp_year,
"card_cvv": credential.card_cvv,
"card_brand": credential.card_brand,
}
else:
raise TypeError(f"Unsupported credential type: {type(credential)}")
def _api_response_to_credential(self, credential_data: dict[str, Any], name: str, item_id: str) -> CredentialItem:
"""Convert API response to Skyvern CredentialItem."""
credential_type = credential_data.get("type")
if credential_type == "password":
required_fields = ["username", "password"]
missing = [f for f in required_fields if f not in credential_data]
if missing:
raise ValueError(f"Missing required password fields from API: {missing}")
credential = PasswordCredential(
username=credential_data["username"],
password=credential_data["password"],
totp=credential_data.get("totp"),
totp_type=credential_data.get("totp_type", "none"),
)
return CredentialItem(
item_id=item_id,
credential=credential,
name=name,
credential_type=CredentialType.PASSWORD,
)
elif credential_type == "credit_card":
required_fields = [
"card_holder_name",
"card_number",
"card_exp_month",
"card_exp_year",
"card_cvv",
"card_brand",
]
missing = [f for f in required_fields if f not in credential_data]
if missing:
raise ValueError(f"Missing required credit card fields from API: {missing}")
credential = CreditCardCredential(
card_holder_name=credential_data["card_holder_name"],
card_number=credential_data["card_number"],
card_exp_month=credential_data["card_exp_month"],
card_exp_year=credential_data["card_exp_year"],
card_cvv=credential_data["card_cvv"],
card_brand=credential_data["card_brand"],
)
return CredentialItem(
item_id=item_id,
credential=credential,
name=name,
credential_type=CredentialType.CREDIT_CARD,
)
else:
raise ValueError(f"Unsupported credential type from API: {credential_type}")
async def create_credential(self, name: str, credential: PasswordCredential | CreditCardCredential) -> str:
"""
Create a credential using the custom API.
Args:
name: Name of the credential
credential: Credential data to store
Returns:
The credential ID returned by the API
Raises:
HttpException: If the API request fails
"""
url = f"{self.api_base_url}"
headers = self._get_auth_headers()
payload = {
"name": name,
**self._credential_to_api_payload(credential),
}
LOG.info(
"Creating credential via custom API",
url=url,
name=name,
credential_type=type(credential).__name__,
)
try:
response = await aiohttp_post(
url=url,
data=payload,
headers=headers,
raise_exception=True,
)
if not response:
raise HttpException(500, url, "Empty response from custom credential API")
# Extract credential ID from response
credential_id = response.get("id")
if not credential_id:
LOG.error(
"Custom credential API response missing id field",
url=url,
response=response,
)
raise HttpException(500, url, "Invalid response format from custom credential API")
LOG.info(
"Successfully created credential via custom API",
url=url,
name=name,
credential_id=credential_id,
)
return str(credential_id)
except HttpException:
raise
except Exception as e:
LOG.error(
"Failed to create credential via custom API",
url=url,
name=name,
error=str(e),
exc_info=True,
)
raise HttpException(500, url, f"Failed to create credential via custom API: {e!s}") from e
async def get_credential(self, credential_id: str, name: str) -> CredentialItem:
"""
Get a credential using the custom API.
Args:
credential_id: ID of the credential to retrieve
name: Name of the credential (for constructing CredentialItem)
Returns:
The credential data
Raises:
HttpException: If the API request fails
"""
url = f"{self.api_base_url}/{credential_id}"
headers = self._get_auth_headers()
LOG.info(
"Retrieving credential via custom API",
url=url,
credential_id=credential_id,
)
try:
response = await aiohttp_get_json(
url=url,
headers=headers,
raise_exception=True,
)
if not response:
raise HttpException(404, url, f"Credential not found: {credential_id}")
LOG.info(
"Successfully retrieved credential via custom API",
url=url,
credential_id=credential_id,
)
return self._api_response_to_credential(response, name, credential_id)
except HttpException:
raise
except Exception as e:
LOG.error(
"Failed to retrieve credential via custom API",
url=url,
credential_id=credential_id,
error=str(e),
exc_info=True,
)
raise HttpException(500, url, f"Failed to retrieve credential via custom API: {e!s}") from e
async def delete_credential(self, credential_id: str) -> None:
"""
Delete a credential using the custom API.
Args:
credential_id: ID of the credential to delete
Raises:
HttpException: If the API request fails
"""
url = f"{self.api_base_url}/{credential_id}"
headers = self._get_auth_headers()
LOG.info(
"Deleting credential via custom API",
url=url,
credential_id=credential_id,
)
try:
await aiohttp_delete(
url=url,
headers=headers,
raise_exception=True,
)
LOG.info(
"Successfully deleted credential via custom API",
url=url,
credential_id=credential_id,
)
except HttpException:
raise
except Exception as e:
LOG.error(
"Failed to delete credential via custom API",
url=url,
credential_id=credential_id,
error=str(e),
exc_info=True,
)
raise HttpException(500, url, f"Failed to delete credential via custom API: {e!s}") from e