Adding support for roles API in frontend

Author: cableman

backend/open_webui/models/roles.py

@@ -55,7 +55,7 @@ class RoleModel(BaseModel):
 # Forms
 ####################
 
-class RoleAddForm(BaseModel):
+class RoleForm(BaseModel):
     role: str
 
 
@@ -94,6 +94,14 @@ def get_role_by_name(self, name: str) -> Optional[RoleModel]:
         except Exception:
             return None
 
+    def update_name_by_id(self, role_id: str, name: str) -> Optional[RoleModel]:
+        with get_db() as db:
+            db.query(Role).filter_by(id=role_id).update(
+                {"name": name, "updated_at": int(time.time())}
+            )
+            db.commit()
+            return self.get_role_by_id(role_id)
+
     def get_roles(self, skip: Optional[int] = None, limit: Optional[int] = None) -> list[RoleModel]:
         with get_db() as db:
 

backend/open_webui/routers/roles.py

@@ -8,7 +8,7 @@
 from open_webui.models.roles import (
     RoleModel,
     Roles,
-    RoleAddForm
+    RoleForm
 )
 from open_webui.models.permissions import (
     Permissions,
@@ -40,7 +40,7 @@ async def get_roles(skip: Optional[int] = None, limit: Optional[int] = None, use
 
 
 @router.post("/", response_model=Optional[RoleModel])
-async def add_role(form_data: RoleAddForm, user=Depends(get_admin_user)):
+async def add_role(form_data: RoleForm, user=Depends(get_admin_user)):
     # Check if the role already exists
     existing_role = Roles.get_role_by_name(name=form_data.role)
     if existing_role:
@@ -52,6 +52,22 @@ async def add_role(form_data: RoleAddForm, user=Depends(get_admin_user)):
     return Roles.insert_new_role(name=form_data.role)
 
 
+############################
+# UpdateRoleById
+############################
+
+@router.post("/{role_id}", response_model=Optional[RoleModel])
+async def update_role_name(role_id: int, form_data: RoleForm, user=Depends(get_admin_user)):
+    # Check if the role already exists
+    existing_role = Roles.get_role_by_id(role_id)
+    if not existing_role:
+        raise HTTPException(
+            status_code=status.HTTP_409_CONFLICT,
+            detail=f"Role with name '{form_data.role}' do not exists"
+        )
+
+    return Roles.update_name_by_id(role_id, form_data.role)
+
 ############################
 # DeleteRoleById
 ############################

src/lib/apis/roles/index.ts

@@ -28,7 +28,7 @@ export const getRoles = async (token: string) => {
 	return res;
 };
 
-export const addRole = async (token: string, role: string) => {
+export const addRole = async (token: string, roleName: string) => {
 	let error = null;
 
 	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/`, {
@@ -38,7 +38,7 @@ export const addRole = async (token: string, role: string) => {
 			Authorization: `Bearer ${token}`
 		},
 		body: JSON.stringify({
-			role: role
+			role: roleName
 		})
 	})
     .then(async (res) => {
@@ -58,10 +58,40 @@ export const addRole = async (token: string, role: string) => {
 	return res;
 };
 
-export const deleteRole = async (token: string, roleId: string) => {
+export const updateRole = async (token: string, roleId: number, roleName: string) => {
 	let error = null;
 
 	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/${roleId}`, {
+		method: 'POST',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		},
+		body: JSON.stringify({
+			role: roleName
+		})
+	})
+    .then(async (res) => {
+        if (!res.ok) throw await res.json();
+        return res.json();
+    })
+    .catch((err) => {
+        console.log(err);
+        error = err.detail;
+        return null;
+    });
+
+	if (error) {
+		throw error;
+	}
+
+	return res;
+};
+
+export const deleteRole = async (token: string, roleName: string) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/${roleName}`, {
 		method: 'DELETE',
 		headers: {
 			'Content-Type': 'application/json',
@@ -83,4 +113,97 @@ export const deleteRole = async (token: string, roleId: string) => {
 	}
 
 	return res;
-};
+};
+
+export const getRolePermissions = async (token: string, roleName: string ) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/${roleName}/permissions`, {
+		method: 'GET',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		}
+	})
+    .then(async (res) => {
+        if (!res.ok) throw await res.json();
+        return res.json();
+    })
+    .catch((err) => {
+        console.log(err);
+        error = err.detail;
+        return null;
+    });
+
+	if (error) {
+		throw error;
+	}
+
+	return res;
+};
+
+// GET /api/v1/roles/{role_name}/permission Add New Default Permission With Role
+// {
+//   "name": "string",
+//   "category": "workspace",
+//   "description": "string",
+//   "value": false
+// }
+
+export const linkRoleToPermissions = async (token: string, roleName: string, categoryName: string, permissionName: string, value: boolean ) => {
+	let error = null;
+	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/${roleName}/permission/link`, {
+		method: 'POST',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		},
+		body: JSON.stringify({
+			permission_name: permissionName,
+			category: categoryName,
+			value: value
+		})
+	})
+    .then(async (res) => {
+        if (!res.ok) throw await res.json();
+        return res.json();
+    })
+    .catch((err) => {
+        console.log(err);
+        error = err.detail;
+        return null;
+    });
+
+	if (error) {
+		throw error;
+	}
+
+	return res;
+};
+
+export const unlinkRoleFromPermissions = async (token: string, roleName: string, categoryName: string, permissionName: string) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/roles/${roleName}/permission/${categoryName}/${permissionName}`, {
+		method: 'DELETE',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		},
+	})
+    .then(async (res) => {
+        if (!res.ok) throw await res.json();
+        return res.json();
+    })
+    .catch((err) => {
+        console.log(err);
+        error = err.detail;
+        return null;
+    });
+
+	if (error) {
+		throw error;
+	}
+
+	return res;
+};

src/lib/components/admin/Users.svelte

@@ -8,6 +8,7 @@
 	import { getUsers } from '$lib/apis/users';
 
 	import UserList from './Users/UserList.svelte';
+	import Roles from './Users/RoleList.svelte';
 	import Groups from './Users/Groups.svelte';
 
 	const i18n = getContext('i18n');
@@ -98,13 +99,39 @@
 			</div>
 			<div class=" self-center">{$i18n.t('Groups')}</div>
 		</button>
+
+		<button
+			class="px-0.5 py-1 min-w-fit rounded-lg lg:flex-none flex text-right transition {selectedTab ===
+			'roles'
+				? ''
+				: ' text-gray-300 dark:text-gray-600 hover:text-gray-700 dark:hover:text-white'}"
+			on:click={() => {
+				selectedTab = 'roles';
+			}}
+		>
+			<div class=" self-center mr-2">
+				<svg
+					xmlns="http://www.w3.org/2000/svg"
+					viewBox="0 0 640 512"
+					fill="currentColor"
+					class="size-4"
+				>
+					<path
+							d="M144 160A80 80 0 1 0 144 0a80 80 0 1 0 0 160zm368 0A80 80 0 1 0 512 0a80 80 0 1 0 0 160zM0 298.7C0 310.4 9.6 320 21.3 320l213.3 0c.2 0 .4 0 .7 0c-26.6-23.5-43.3-57.8-43.3-96c0-7.6 .7-15 1.9-22.3c-13.6-6.3-28.7-9.7-44.6-9.7l-42.7 0C47.8 192 0 239.8 0 298.7zM320 320c24 0 45.9-8.8 62.7-23.3c2.5-3.7 5.2-7.3 8-10.7c2.7-3.3 5.7-6.1 9-8.3C410 262.3 416 243.9 416 224c0-53-43-96-96-96s-96 43-96 96s43 96 96 96zm65.4 60.2c-10.3-5.9-18.1-16.2-20.8-28.2l-103.2 0C187.7 352 128 411.7 128 485.3c0 14.7 11.9 26.7 26.7 26.7l300.6 0c-2.1-5.2-3.2-10.9-3.2-16.4l0-3c-1.3-.7-2.7-1.5-4-2.3l-2.6 1.5c-16.8 9.7-40.5 8-54.7-9.7c-4.5-5.6-8.6-11.5-12.4-17.6l-.1-.2-.1-.2-2.4-4.1-.1-.2-.1-.2c-3.4-6.2-6.4-12.6-9-19.3c-8.2-21.2 2.2-42.6 19-52.3l2.7-1.5c0-.8 0-1.5 0-2.3s0-1.5 0-2.3l-2.7-1.5zM533.3 192l-42.7 0c-15.9 0-31 3.5-44.6 9.7c1.3 7.2 1.9 14.7 1.9 22.3c0 17.4-3.5 33.9-9.7 49c2.5 .9 4.9 2 7.1 3.3l2.6 1.5c1.3-.8 2.6-1.6 4-2.3l0-3c0-19.4 13.3-39.1 35.8-42.6c7.9-1.2 16-1.9 24.2-1.9s16.3 .6 24.2 1.9c22.5 3.5 35.8 23.2 35.8 42.6l0 3c1.3 .7 2.7 1.5 4 2.3l2.6-1.5c16.8-9.7 40.5-8 54.7 9.7c2.3 2.8 4.5 5.8 6.6 8.7c-2.1-57.1-49-102.7-106.6-102.7zm91.3 163.9c6.3-3.6 9.5-11.1 6.8-18c-2.1-5.5-4.6-10.8-7.4-15.9l-2.3-4c-3.1-5.1-6.5-9.9-10.2-14.5c-4.6-5.7-12.7-6.7-19-3l-2.9 1.7c-9.2 5.3-20.4 4-29.6-1.3s-16.1-14.5-16.1-25.1l0-3.4c0-7.3-4.9-13.8-12.1-14.9c-6.5-1-13.1-1.5-19.9-1.5s-13.4 .5-19.9 1.5c-7.2 1.1-12.1 7.6-12.1 14.9l0 3.4c0 10.6-6.9 19.8-16.1 25.1s-20.4 6.6-29.6 1.3l-2.9-1.7c-6.3-3.6-14.4-2.6-19 3c-3.7 4.6-7.1 9.5-10.2 14.6l-2.3 3.9c-2.8 5.1-5.3 10.4-7.4 15.9c-2.6 6.8 .5 14.3 6.8 17.9l2.9 1.7c9.2 5.3 13.7 15.8 13.7 26.4s-4.5 21.1-13.7 26.4l-3 1.7c-6.3 3.6-9.5 11.1-6.8 17.9c2.1 5.5 4.6 10.7 7.4 15.8l2.4 4.1c3 5.1 6.4 9.9 10.1 14.5c4.6 5.7 12.7 6.7 19 3l2.9-1.7c9.2-5.3 20.4-4 29.6 1.3s16.1 14.5 16.1 25.1l0 3.4c0 7.3 4.9 13.8 12.1 14.9c6.5 1 13.1 1.5 19.9 1.5s13.4-.5 19.9-1.5c7.2-1.1 12.1-7.6 12.1-14.9l0-3.4c0-10.6 6.9-19.8 16.1-25.1s20.4-6.6 29.6-1.3l2.9 1.7c6.3 3.6 14.4 2.6 19-3c3.7-4.6 7.1-9.4 10.1-14.5l2.4-4.2c2.8-5.1 5.3-10.3 7.4-15.8c2.6-6.8-.5-14.3-6.8-17.9l-3-1.7c-9.2-5.3-13.7-15.8-13.7-26.4s4.5-21.1 13.7-26.4l3-1.7zM472 384a40 40 0 1 1 80 0 40 40 0 1 1 -80 0z"
+					/>
+				</svg>
+			</div>
+			<div class=" self-center">{$i18n.t('Roles')}</div>
+		</button>
 	</div>
 
 	<div class="flex-1 mt-1 lg:mt-0 overflow-y-scroll">
 		{#if selectedTab === 'overview'}
 			<UserList {users} />
 		{:else if selectedTab === 'groups'}
 			<Groups {users} />
+		{:else if selectedTab === 'roles'}
+			<Roles />
 		{/if}
 	</div>
 </div>