From 718c7f50992656a97434ce5041e716145ec3a5c8 Mon Sep 17 00:00:00 2001
From: blackhao <13851610112@163.com>
Date: Wed, 10 Dec 2025 21:22:14 -0600
Subject: set keys

---
 backend/app/auth/routes.py | 47 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 47 insertions(+)

(limited to 'backend/app/auth/routes.py')

diff --git a/backend/app/auth/routes.py b/backend/app/auth/routes.py
index 7f07c2a..3c906b5 100644
--- a/backend/app/auth/routes.py
+++ b/backend/app/auth/routes.py
@@ -2,6 +2,7 @@ from fastapi import APIRouter, Depends, HTTPException, status
 from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
 from sqlalchemy.orm import Session
 from typing import Optional
+from pydantic import BaseModel
 
 from .models import User, get_db
 from .utils import (
@@ -212,6 +213,52 @@ async def get_me(current_user: User = Depends(get_current_user)):
     return current_user
 
 
+@router.get("/api-keys")
+async def get_api_keys(current_user: User = Depends(get_current_user)):
+    """
+    Get current user's API keys (masked for security).
+    """
+    def mask_key(key: str | None) -> str:
+        if not key:
+            return ""
+        if len(key) <= 8:
+            return "*" * len(key)
+        return key[:4] + "*" * (len(key) - 8) + key[-4:]
+    
+    return {
+        "openai_api_key": mask_key(current_user.openai_api_key),
+        "gemini_api_key": mask_key(current_user.gemini_api_key),
+        "has_openai_key": bool(current_user.openai_api_key),
+        "has_gemini_key": bool(current_user.gemini_api_key),
+    }
+
+
+class ApiKeysUpdate(BaseModel):
+    openai_api_key: Optional[str] = None
+    gemini_api_key: Optional[str] = None
+
+
+@router.post("/api-keys")
+async def update_api_keys(
+    keys: ApiKeysUpdate,
+    current_user: User = Depends(get_current_user),
+    db: Session = Depends(get_db)
+):
+    """
+    Update current user's API keys.
+    Pass empty string to clear a key, or omit to keep unchanged.
+    """
+    if keys.openai_api_key is not None:
+        current_user.openai_api_key = keys.openai_api_key if keys.openai_api_key else None
+    
+    if keys.gemini_api_key is not None:
+        current_user.gemini_api_key = keys.gemini_api_key if keys.gemini_api_key else None
+    
+    db.commit()
+    
+    return {"message": "API keys updated successfully"}
+
+
 @router.post("/logout")
 async def logout():
     """
-- 
cgit v1.2.3