feat: add password protection to `/admin` routes on server #1025

cpacker · 2024-02-18T20:20:44Z

Please describe the purpose of this pull request.

Puts /admin routes on REST server (used to create users, create API keys, etc) behind bearer token auth by default
The password (to be passed as a bearer token) can be specified when running the server using env variable MEMGPT_SERVER_PASS
If the password is not specified, it will be auto-generated (and written to stdout)

How to test

Have you tested this PR?

 % memgpt server
Generated admin server password for this session: jBNDBB...w5_wg

% export MEMGPT_SERVER_PASS="banana"
% memgpt server                     
Using existing admin server password from environment.

… response

cpacker added 5 commits February 18, 2024 12:19

updated tag name for the admin routes to 'admin' instead of 'users'

77b54c4

deprecate old auth route used by the chatui in favor of new admin routes

bb621a4

add delete user route

e9d23cf

autogenerate an api key on user generation, and return it in the http…

66973ad

… response

put /admin routes behind bearer token auth

674411d

cpacker marked this pull request as ready for review February 18, 2024 21:30

cpacker merged commit dfa1d2a into main Feb 18, 2024
6 checks passed

cpacker deleted the admin-endpoints-patch branch February 18, 2024 22:03

mattzh72 pushed a commit that referenced this pull request Oct 9, 2024

feat: add password protection to /admin routes on server (#1025)

a10ed47

Provide feedback