From 81e928030f1524444f3c32b23916a76ed58a59d7 Mon Sep 17 00:00:00 2001
From: "liu.vaayne" <liu.vaayne@gmail.com>
Date: Tue, 26 Mar 2024 18:22:17 +0800
Subject: [PATCH 01/14] backend support api key

---
 backend/apps/web/models/auths.py  | 35 ++++++++++++++++++++++
 backend/apps/web/routers/auths.py | 49 ++++++++++++++++++++++++++-----
 backend/constants.py              |  3 +-
 backend/utils/utils.py            | 21 +++++++++++++
 4 files changed, 100 insertions(+), 8 deletions(-)

diff --git a/backend/apps/web/models/auths.py b/backend/apps/web/models/auths.py
index b26236ef8..04f6d4bbd 100644
--- a/backend/apps/web/models/auths.py
+++ b/backend/apps/web/models/auths.py
@@ -24,6 +24,7 @@ class Auth(Model):
     email = CharField()
     password = CharField()
     active = BooleanField()
+    api_key = CharField(null=True, unique=True)
 
     class Meta:
         database = DB
@@ -34,6 +35,7 @@ class AuthModel(BaseModel):
     email: str
     password: str
     active: bool = True
+    api_key: Optional[str] = None
 
 
 ####################
@@ -45,6 +47,8 @@ class Token(BaseModel):
     token: str
     token_type: str
 
+class ApiKey(BaseModel):
+    api_key: Optional[str] = None
 
 class UserResponse(BaseModel):
     id: str
@@ -122,6 +126,21 @@ class AuthsTable:
         except:
             return None
 
+    def authenticate_user_by_api_key(self, api_key: str) -> Optional[UserModel]:
+        log.info(f"authenticate_user_by_api_key: {api_key}")
+        # if no api_key, return None
+        if not api_key:
+            return None
+        try:
+            auth = Auth.get(Auth.api_key == api_key, Auth.active == True)
+            if auth:
+                user = Users.get_user_by_id(auth.id)
+                return user
+            else:
+                return None
+        except:
+            return None
+
     def update_user_password_by_id(self, id: str, new_password: str) -> bool:
         try:
             query = Auth.update(password=new_password).where(Auth.id == id)
@@ -140,6 +159,22 @@ class AuthsTable:
         except:
             return False
 
+    def update_api_key_by_id(self, id: str, api_key: str) -> str:
+        try:
+            query = Auth.update(api_key=api_key).where(Auth.id == id)
+            result = query.execute()
+
+            return True if result == 1 else False
+        except:
+            return False
+
+    def get_api_key_by_id(self, id: str) -> Optional[str]:
+        try:
+            auth = Auth.get(Auth.id == id)
+            return auth.api_key
+        except:
+            return None
+
     def delete_auth_by_id(self, id: str) -> bool:
         try:
             # Delete User
diff --git a/backend/apps/web/routers/auths.py b/backend/apps/web/routers/auths.py
index d881ec746..abbdc1c42 100644
--- a/backend/apps/web/routers/auths.py
+++ b/backend/apps/web/routers/auths.py
@@ -1,12 +1,8 @@
-from fastapi import Response, Request
-from fastapi import Depends, FastAPI, HTTPException, status
-from datetime import datetime, timedelta
-from typing import List, Union
+from fastapi import Request
+from fastapi import Depends, HTTPException, status
 
-from fastapi import APIRouter, status
+from fastapi import APIRouter
 from pydantic import BaseModel
-import time
-import uuid
 import re
 
 from apps.web.models.auths import (
@@ -17,6 +13,7 @@ from apps.web.models.auths import (
     UserResponse,
     SigninResponse,
     Auths,
+    ApiKey
 )
 from apps.web.models.users import Users
 
@@ -25,6 +22,7 @@ from utils.utils import (
     get_current_user,
     get_admin_user,
     create_token,
+    create_api_key
 )
 from utils.misc import parse_duration, validate_email_format
 from utils.webhook import post_webhook
@@ -249,3 +247,40 @@ async def update_token_expires_duration(
         return request.app.state.JWT_EXPIRES_IN
     else:
         return request.app.state.JWT_EXPIRES_IN
+
+
+############################
+# API Key
+############################
+
+
+# create api key
+@router.post("/api_key", response_model=ApiKey)
+async def create_api_key_(user=Depends(get_current_user)):
+    api_key = create_api_key()
+    success = Auths.update_api_key_by_id(user.id, api_key)
+    if success:
+        return {
+            "api_key": api_key,
+        }
+    else:
+        raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_API_KEY_ERROR)
+
+
+# delete api key
+@router.delete("/api_key", response_model=bool)
+async def delete_api_key(user=Depends(get_current_user)):
+    success = Auths.update_api_key_by_id(user.id, None)
+    return success
+
+
+# get api key
+@router.get("/api_key", response_model=ApiKey)
+async def get_api_key(user=Depends(get_current_user)):
+    api_key = Auths.get_api_key_by_id(user.id, None)
+    if api_key:
+        return {
+            "api_key": api_key,
+        }
+    else:
+        raise HTTPException(404, detail=ERROR_MESSAGES.API_KEY_NOT_FOUND)
diff --git a/backend/constants.py b/backend/constants.py
index 42c5c85eb..1adfe353f 100644
--- a/backend/constants.py
+++ b/backend/constants.py
@@ -58,5 +58,6 @@ class ERROR_MESSAGES(str, Enum):
     RATE_LIMIT_EXCEEDED = "API rate limit exceeded"
 
     MODEL_NOT_FOUND = lambda name="": f"Model '{name}' was not found"
-    OPENAI_NOT_FOUND = lambda name="": f"OpenAI API was not found"
+    OPENAI_NOT_FOUND = lambda name="": "OpenAI API was not found"
     OLLAMA_NOT_FOUND = "WebUI could not connect to Ollama"
+    CREATE_API_KEY_ERROR = "Oops! Something went wrong while creating your API key. Please try again later. If the issue persists, contact support for assistance."
diff --git a/backend/utils/utils.py b/backend/utils/utils.py
index 32724af39..071bb0ef9 100644
--- a/backend/utils/utils.py
+++ b/backend/utils/utils.py
@@ -1,6 +1,7 @@
 from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
 from fastapi import HTTPException, status, Depends
 from apps.web.models.users import Users
+
 from pydantic import BaseModel
 from typing import Union, Optional
 from constants import ERROR_MESSAGES
@@ -8,6 +9,7 @@ from passlib.context import CryptContext
 from datetime import datetime, timedelta
 import requests
 import jwt
+import uuid
 import logging
 import config
 
@@ -58,6 +60,11 @@ def extract_token_from_auth_header(auth_header: str):
     return auth_header[len("Bearer ") :]
 
 
+def create_api_key():
+    key = str(uuid.uuid4()).replace("-", "")
+    return f"sk-{key}"
+
+
 def get_http_authorization_cred(auth_header: str):
     try:
         scheme, credentials = auth_header.split(" ")
@@ -69,6 +76,10 @@ def get_http_authorization_cred(auth_header: str):
 def get_current_user(
     auth_token: HTTPAuthorizationCredentials = Depends(bearer_security),
 ):
+    # auth by api key
+    if auth_token.credentials.startswith("sk-"):
+        return get_current_user_by_api_key(auth_token.credentials)
+    # auth by jwt token
     data = decode_token(auth_token.credentials)
     if data != None and "id" in data:
         user = Users.get_user_by_id(data["id"])
@@ -84,6 +95,16 @@ def get_current_user(
             detail=ERROR_MESSAGES.UNAUTHORIZED,
         )
 
+def get_current_user_by_api_key(api_key: str):
+    from apps.web.models.auths import Auths
+
+    user = Auths.authenticate_user_by_api_key(api_key)
+    if user is None:
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail=ERROR_MESSAGES.INVALID_TOKEN,
+        )
+    return user
 
 def get_verified_user(user=Depends(get_current_user)):
     if user.role not in {"user", "admin"}:

From b4b56f9c85af2b5e8b756ed2b8b9ef40166a3c5d Mon Sep 17 00:00:00 2001
From: "liu.vaayne" <liu.vaayne@gmail.com>
Date: Tue, 26 Mar 2024 18:24:14 +0800
Subject: [PATCH 02/14] frontend support api key

---
 src/lib/apis/auths/index.ts                   |  75 ++++++
 .../components/chat/Settings/Account.svelte   | 252 +++++++++++++-----
 src/routes/auth/+page.svelte                  |  14 +-
 3 files changed, 276 insertions(+), 65 deletions(-)

diff --git a/src/lib/apis/auths/index.ts b/src/lib/apis/auths/index.ts
index 169998726..a690a476b 100644
--- a/src/lib/apis/auths/index.ts
+++ b/src/lib/apis/auths/index.ts
@@ -318,3 +318,78 @@ export const updateJWTExpiresDuration = async (token: string, duration: string)
 
 	return res;
 };
+
+export const createApiKey = async (token: string) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
+		method: 'POST',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		}
+	})
+		.then(async (res) => {
+			if (!res.ok) throw await res.json();
+			return res.json();
+		})
+		.catch((err) => {
+			console.log(err);
+			error = err.detail;
+			return null;
+		});
+	if (error) {
+		throw error;
+	}
+	return res;
+}
+
+export const getApiKey = async (token: string) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
+		method: 'GET',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		}
+	})
+		.then(async (res) => {
+			if (!res.ok) throw await res.json();
+			return res.json();
+		})
+		.catch((err) => {
+			console.log(err);
+			error = err.detail;
+			return null;
+		});
+	if (error) {
+		throw error;
+	}
+	return res;
+}
+
+export const deleteApiKey = async (token: string) => {
+	let error = null;
+
+	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
+		method: 'DELETE',
+		headers: {
+			'Content-Type': 'application/json',
+			Authorization: `Bearer ${token}`
+		}
+	})
+		.then(async (res) => {
+			if (!res.ok) throw await res.json();
+			return res.json();
+		})
+		.catch((err) => {
+			console.log(err);
+			error = err.detail;
+			return null;
+		});
+	if (error) {
+		throw error;
+	}
+	return res;
+}
diff --git a/src/lib/components/chat/Settings/Account.svelte b/src/lib/components/chat/Settings/Account.svelte
index 3a2259a79..fbb5e6289 100644
--- a/src/lib/components/chat/Settings/Account.svelte
+++ b/src/lib/components/chat/Settings/Account.svelte
@@ -3,7 +3,7 @@
 	import { onMount, getContext } from 'svelte';
 
 	import { user } from '$lib/stores';
-	import { updateUserProfile } from '$lib/apis/auths';
+	import { updateUserProfile, createApiKey } from '$lib/apis/auths';
 
 	import UpdatePassword from './Account/UpdatePassword.svelte';
 	import { getGravatarUrl } from '$lib/apis/utils';
@@ -17,6 +17,9 @@
 	let name = '';
 	let showJWTToken = false;
 	let JWTTokenCopied = false;
+	let showApiKey= false;
+	let ApiKeyCopied = false;
+	let localApiKey = localStorage.apiKey;
 	let profileImageInputElement: HTMLInputElement;
 
 	const submitHandler = async () => {
@@ -33,6 +36,18 @@
 		return false;
 	};
 
+	const createApiKeyHandler = async () => {
+		const apiKey = await createApiKey(localStorage.token);
+		if (apiKey) {
+			localApiKey = apiKey["api_key"];
+			localStorage.apiKey = localApiKey;
+			toast.success($i18n.t('API Key created.'));
+		} else {
+			toast.error($i18n.t('Failed to create API Key.'));
+		
+		}
+	};
+
 	onMount(() => {
 		name = $user.name;
 		profileImageUrl = $user.profile_image_url;
@@ -170,41 +185,83 @@
 
 		<hr class=" dark:border-gray-700 my-4" />
 
-		<div class=" w-full justify-between">
-			<div class="flex w-full justify-between">
-				<div class=" self-center text-xs font-medium">{$i18n.t('JWT Token')}</div>
-			</div>
+		<div class="flex flex-col gap-4">
+			<div class="justify-between w-full ">
+				<div class="flex justify-between w-full">
+					<div class="self-center text-xs font-medium ">{$i18n.t('JWT Token')}</div>
+				</div>
 
-			<div class="flex mt-2">
-				<div class="flex w-full">
-					<input
-						class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
-						type={showJWTToken ? 'text' : 'password'}
-						value={localStorage.token}
-						disabled
-					/>
+				<div class="flex mt-2">
+					<div class="flex w-full">
+						<input
+							class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
+							type={showJWTToken ? 'text' : 'password'}
+							value={localStorage.token}
+							disabled
+						/>
+
+						<button
+							class="px-2 transition rounded-r-lg dark:bg-gray-800"
+							on:click={() => {
+								showJWTToken = !showJWTToken;
+							}}
+						>
+							{#if showJWTToken}
+								<svg
+									xmlns="http://www.w3.org/2000/svg"
+									viewBox="0 0 16 16"
+									fill="currentColor"
+									class="w-4 h-4"
+								>
+									<path
+										fill-rule="evenodd"
+										d="M3.28 2.22a.75.75 0 0 0-1.06 1.06l10.5 10.5a.75.75 0 1 0 1.06-1.06l-1.322-1.323a7.012 7.012 0 0 0 2.16-3.11.87.87 0 0 0 0-.567A7.003 7.003 0 0 0 4.82 3.76l-1.54-1.54Zm3.196 3.195 1.135 1.136A1.502 1.502 0 0 1 9.45 8.389l1.136 1.135a3 3 0 0 0-4.109-4.109Z"
+										clip-rule="evenodd"
+									/>
+									<path
+										d="m7.812 10.994 1.816 1.816A7.003 7.003 0 0 1 1.38 8.28a.87.87 0 0 1 0-.566 6.985 6.985 0 0 1 1.113-2.039l2.513 2.513a3 3 0 0 0 2.806 2.806Z"
+									/>
+								</svg>
+							{:else}
+								<svg
+									xmlns="http://www.w3.org/2000/svg"
+									viewBox="0 0 16 16"
+									fill="currentColor"
+									class="w-4 h-4"
+								>
+									<path d="M8 9.5a1.5 1.5 0 1 0 0-3 1.5 1.5 0 0 0 0 3Z" />
+									<path
+										fill-rule="evenodd"
+										d="M1.38 8.28a.87.87 0 0 1 0-.566 7.003 7.003 0 0 1 13.238.006.87.87 0 0 1 0 .566A7.003 7.003 0 0 1 1.379 8.28ZM11 8a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+										clip-rule="evenodd"
+									/>
+								</svg>
+							{/if}
+						</button>
+					</div>
 
 					<button
-						class="dark:bg-gray-800 px-2 transition rounded-r-lg"
+						class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
 						on:click={() => {
-							showJWTToken = !showJWTToken;
+							copyToClipboard(localStorage.token);
+							JWTTokenCopied = true;
+							setTimeout(() => {
+								JWTTokenCopied = false;
+							}, 2000);
 						}}
 					>
-						{#if showJWTToken}
+						{#if JWTTokenCopied}
 							<svg
 								xmlns="http://www.w3.org/2000/svg"
-								viewBox="0 0 16 16"
+								viewBox="0 0 20 20"
 								fill="currentColor"
 								class="w-4 h-4"
 							>
 								<path
 									fill-rule="evenodd"
-									d="M3.28 2.22a.75.75 0 0 0-1.06 1.06l10.5 10.5a.75.75 0 1 0 1.06-1.06l-1.322-1.323a7.012 7.012 0 0 0 2.16-3.11.87.87 0 0 0 0-.567A7.003 7.003 0 0 0 4.82 3.76l-1.54-1.54Zm3.196 3.195 1.135 1.136A1.502 1.502 0 0 1 9.45 8.389l1.136 1.135a3 3 0 0 0-4.109-4.109Z"
+									d="M16.704 4.153a.75.75 0 01.143 1.052l-8 10.5a.75.75 0 01-1.127.075l-4.5-4.5a.75.75 0 011.06-1.06l3.894 3.893 7.48-9.817a.75.75 0 011.05-.143z"
 									clip-rule="evenodd"
 								/>
-								<path
-									d="m7.812 10.994 1.816 1.816A7.003 7.003 0 0 1 1.38 8.28a.87.87 0 0 1 0-.566 6.985 6.985 0 0 1 1.113-2.039l2.513 2.513a3 3 0 0 0 2.806 2.806Z"
-								/>
 							</svg>
 						{:else}
 							<svg
@@ -213,60 +270,127 @@
 								fill="currentColor"
 								class="w-4 h-4"
 							>
-								<path d="M8 9.5a1.5 1.5 0 1 0 0-3 1.5 1.5 0 0 0 0 3Z" />
 								<path
 									fill-rule="evenodd"
-									d="M1.38 8.28a.87.87 0 0 1 0-.566 7.003 7.003 0 0 1 13.238.006.87.87 0 0 1 0 .566A7.003 7.003 0 0 1 1.379 8.28ZM11 8a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+									d="M11.986 3H12a2 2 0 0 1 2 2v6a2 2 0 0 1-1.5 1.937V7A2.5 2.5 0 0 0 10 4.5H4.063A2 2 0 0 1 6 3h.014A2.25 2.25 0 0 1 8.25 1h1.5a2.25 2.25 0 0 1 2.236 2ZM10.5 4v-.75a.75.75 0 0 0-.75-.75h-1.5a.75.75 0 0 0-.75.75V4h3Z"
+									clip-rule="evenodd"
+								/>
+								<path
+									fill-rule="evenodd"
+									d="M3 6a1 1 0 0 0-1 1v7a1 1 0 0 0 1 1h7a1 1 0 0 0 1-1V7a1 1 0 0 0-1-1H3Zm1.75 2.5a.75.75 0 0 0 0 1.5h3.5a.75.75 0 0 0 0-1.5h-3.5ZM4 11.75a.75.75 0 0 1 .75-.75h3.5a.75.75 0 0 1 0 1.5h-3.5a.75.75 0 0 1-.75-.75Z"
 									clip-rule="evenodd"
 								/>
 							</svg>
 						{/if}
 					</button>
 				</div>
+			</div>
+			<div class="justify-between w-full ">
+				<div class="flex justify-between w-full">
+					<div class="self-center text-xs font-medium ">{$i18n.t('API Key')}</div>
+				</div>
 
-				<button
-					class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
-					on:click={() => {
-						copyToClipboard(localStorage.token);
-						JWTTokenCopied = true;
-						setTimeout(() => {
-							JWTTokenCopied = false;
-						}, 2000);
-					}}
-				>
-					{#if JWTTokenCopied}
-						<svg
-							xmlns="http://www.w3.org/2000/svg"
-							viewBox="0 0 20 20"
-							fill="currentColor"
-							class="w-4 h-4"
+				<div class="flex mt-2">
+					<div class="flex w-full">
+						<input
+							class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
+							type={showApiKey ? 'text' : 'password'}
+							value={localApiKey}
+							disabled
+						/>
+
+						<button
+							class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
+							on:click={() => {createApiKeyHandler()}}
 						>
-							<path
-								fill-rule="evenodd"
-								d="M16.704 4.153a.75.75 0 01.143 1.052l-8 10.5a.75.75 0 01-1.127.075l-4.5-4.5a.75.75 0 011.06-1.06l3.894 3.893 7.48-9.817a.75.75 0 011.05-.143z"
-								clip-rule="evenodd"
-							/>
-						</svg>
-					{:else}
-						<svg
-							xmlns="http://www.w3.org/2000/svg"
-							viewBox="0 0 16 16"
-							fill="currentColor"
-							class="w-4 h-4"
+						<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16" fill="currentColor" class="w-4 h-4"><path d="M8.75 3.75a.75.75 0 0 0-1.5 0v3.5h-3.5a.75.75 0 0 0 0 1.5h3.5v3.5a.75.75 0 0 0 1.5 0v-3.5h3.5a.75.75 0 0 0 0-1.5h-3.5v-3.5Z"></path></svg>
+							
+						</button>
+
+						<button
+							class="px-2 transition rounded-r-lg dark:bg-gray-800"
+							on:click={() => {
+								showApiKey = !showApiKey;
+							}}
 						>
-							<path
-								fill-rule="evenodd"
-								d="M11.986 3H12a2 2 0 0 1 2 2v6a2 2 0 0 1-1.5 1.937V7A2.5 2.5 0 0 0 10 4.5H4.063A2 2 0 0 1 6 3h.014A2.25 2.25 0 0 1 8.25 1h1.5a2.25 2.25 0 0 1 2.236 2ZM10.5 4v-.75a.75.75 0 0 0-.75-.75h-1.5a.75.75 0 0 0-.75.75V4h3Z"
-								clip-rule="evenodd"
-							/>
-							<path
-								fill-rule="evenodd"
-								d="M3 6a1 1 0 0 0-1 1v7a1 1 0 0 0 1 1h7a1 1 0 0 0 1-1V7a1 1 0 0 0-1-1H3Zm1.75 2.5a.75.75 0 0 0 0 1.5h3.5a.75.75 0 0 0 0-1.5h-3.5ZM4 11.75a.75.75 0 0 1 .75-.75h3.5a.75.75 0 0 1 0 1.5h-3.5a.75.75 0 0 1-.75-.75Z"
-								clip-rule="evenodd"
-							/>
-						</svg>
-					{/if}
-				</button>
+							{#if showApiKey}
+								<svg
+									xmlns="http://www.w3.org/2000/svg"
+									viewBox="0 0 16 16"
+									fill="currentColor"
+									class="w-4 h-4"
+								>
+									<path
+										fill-rule="evenodd"
+										d="M3.28 2.22a.75.75 0 0 0-1.06 1.06l10.5 10.5a.75.75 0 1 0 1.06-1.06l-1.322-1.323a7.012 7.012 0 0 0 2.16-3.11.87.87 0 0 0 0-.567A7.003 7.003 0 0 0 4.82 3.76l-1.54-1.54Zm3.196 3.195 1.135 1.136A1.502 1.502 0 0 1 9.45 8.389l1.136 1.135a3 3 0 0 0-4.109-4.109Z"
+										clip-rule="evenodd"
+									/>
+									<path
+										d="m7.812 10.994 1.816 1.816A7.003 7.003 0 0 1 1.38 8.28a.87.87 0 0 1 0-.566 6.985 6.985 0 0 1 1.113-2.039l2.513 2.513a3 3 0 0 0 2.806 2.806Z"
+									/>
+								</svg>
+							{:else}
+								<svg
+									xmlns="http://www.w3.org/2000/svg"
+									viewBox="0 0 16 16"
+									fill="currentColor"
+									class="w-4 h-4"
+								>
+									<path d="M8 9.5a1.5 1.5 0 1 0 0-3 1.5 1.5 0 0 0 0 3Z" />
+									<path
+										fill-rule="evenodd"
+										d="M1.38 8.28a.87.87 0 0 1 0-.566 7.003 7.003 0 0 1 13.238.006.87.87 0 0 1 0 .566A7.003 7.003 0 0 1 1.379 8.28ZM11 8a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+										clip-rule="evenodd"
+									/>
+								</svg>
+							{/if}
+						</button>
+					</div>
+
+					<button
+						class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
+						on:click={() => {
+							copyToClipboard(localApiKey);
+							ApiKeyCopied = true;
+							setTimeout(() => {
+								ApiKeyCopied = false;
+							}, 2000);
+						}}
+					>
+						{#if ApiKeyCopied}
+							<svg
+								xmlns="http://www.w3.org/2000/svg"
+								viewBox="0 0 20 20"
+								fill="currentColor"
+								class="w-4 h-4"
+							>
+								<path
+									fill-rule="evenodd"
+									d="M16.704 4.153a.75.75 0 01.143 1.052l-8 10.5a.75.75 0 01-1.127.075l-4.5-4.5a.75.75 0 011.06-1.06l3.894 3.893 7.48-9.817a.75.75 0 011.05-.143z"
+									clip-rule="evenodd"
+								/>
+							</svg>
+						{:else}
+							<svg
+								xmlns="http://www.w3.org/2000/svg"
+								viewBox="0 0 16 16"
+								fill="currentColor"
+								class="w-4 h-4"
+							>
+								<path
+									fill-rule="evenodd"
+									d="M11.986 3H12a2 2 0 0 1 2 2v6a2 2 0 0 1-1.5 1.937V7A2.5 2.5 0 0 0 10 4.5H4.063A2 2 0 0 1 6 3h.014A2.25 2.25 0 0 1 8.25 1h1.5a2.25 2.25 0 0 1 2.236 2ZM10.5 4v-.75a.75.75 0 0 0-.75-.75h-1.5a.75.75 0 0 0-.75.75V4h3Z"
+									clip-rule="evenodd"
+								/>
+								<path
+									fill-rule="evenodd"
+									d="M3 6a1 1 0 0 0-1 1v7a1 1 0 0 0 1 1h7a1 1 0 0 0 1-1V7a1 1 0 0 0-1-1H3Zm1.75 2.5a.75.75 0 0 0 0 1.5h3.5a.75.75 0 0 0 0-1.5h-3.5ZM4 11.75a.75.75 0 0 1 .75-.75h3.5a.75.75 0 0 1 0 1.5h-3.5a.75.75 0 0 1-.75-.75Z"
+									clip-rule="evenodd"
+								/>
+							</svg>
+						{/if}
+					</button>
+				</div>
 			</div>
 		</div>
 	</div>
diff --git a/src/routes/auth/+page.svelte b/src/routes/auth/+page.svelte
index d392e9f77..22a77110f 100644
--- a/src/routes/auth/+page.svelte
+++ b/src/routes/auth/+page.svelte
@@ -1,6 +1,6 @@
 <script>
 	import { goto } from '$app/navigation';
-	import { userSignIn, userSignUp } from '$lib/apis/auths';
+	import { userSignIn, userSignUp, getApiKey } from '$lib/apis/auths';
 	import { WEBUI_API_BASE_URL, WEBUI_BASE_URL } from '$lib/constants';
 	import { WEBUI_NAME, config, user } from '$lib/stores';
 	import { onMount, getContext } from 'svelte';
@@ -20,11 +20,23 @@
 			console.log(sessionUser);
 			toast.success($i18n.t(`You're now logged in.`));
 			localStorage.token = sessionUser.token;
+			await setApiKey(sessionUser.token);
 			await user.set(sessionUser);
 			goto('/');
 		}
 	};
 
+	const setApiKey = async (token) => {
+		const apiKey = await getApiKey(token).catch((error) => {
+			toast.error(error);
+			return null;
+		});
+
+		if (apiKey) {
+			localStorage.apiKey = apiKey['api-key'];
+		}
+	};
+
 	const signInHandler = async () => {
 		const sessionUser = await userSignIn(email, password).catch((error) => {
 			toast.error(error);

From b11af9ea0e85d8c7a03c6b0b6512b9f5cf14cd57 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:18:15 -0700
Subject: [PATCH 03/14] fix

---
 backend/apps/web/models/auths.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/backend/apps/web/models/auths.py b/backend/apps/web/models/auths.py
index cb8247769..09215e1be 100644
--- a/backend/apps/web/models/auths.py
+++ b/backend/apps/web/models/auths.py
@@ -48,9 +48,11 @@ class Token(BaseModel):
     token: str
     token_type: str
 
+
 class ApiKey(BaseModel):
     api_key: Optional[str] = None
 
+
 class UserResponse(BaseModel):
     id: str
     email: str
@@ -132,6 +134,7 @@ class AuthsTable:
         # if no api_key, return None
         if not api_key:
             return None
+
         try:
             auth = Auth.get(Auth.api_key == api_key, Auth.active == True)
             if auth:
@@ -140,6 +143,9 @@ class AuthsTable:
             else:
                 return None
 
+        except:
+            return False
+
     def authenticate_user_by_trusted_header(self, email: str) -> Optional[UserModel]:
         log.info(f"authenticate_user_by_trusted_header: {email}")
         try:

From 38c34b444428b43a7c6dc0a02339a5adcc942c0a Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:18:36 -0700
Subject: [PATCH 04/14] fix: import

---
 backend/apps/web/routers/auths.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/backend/apps/web/routers/auths.py b/backend/apps/web/routers/auths.py
index 1644819c9..6e03be437 100644
--- a/backend/apps/web/routers/auths.py
+++ b/backend/apps/web/routers/auths.py
@@ -4,6 +4,7 @@ from fastapi import Depends, HTTPException, status
 from fastapi import APIRouter
 from pydantic import BaseModel
 import re
+import uuid
 
 from apps.web.models.auths import (
     SigninForm,
@@ -13,7 +14,7 @@ from apps.web.models.auths import (
     UserResponse,
     SigninResponse,
     Auths,
-    ApiKey
+    ApiKey,
 )
 from apps.web.models.users import Users
 
@@ -22,7 +23,7 @@ from utils.utils import (
     get_current_user,
     get_admin_user,
     create_token,
-    create_api_key
+    create_api_key,
 )
 from utils.misc import parse_duration, validate_email_format
 from utils.webhook import post_webhook

From ba0523cd69649936c7e09cb8a8771703dc992343 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:23:55 -0700
Subject: [PATCH 05/14] refac: api_key field moved to user

---
 .../migrations/003_add_auth_api_key.py        | 48 +++++++++++++++++++
 backend/apps/web/models/auths.py              | 11 +----
 backend/apps/web/models/users.py              |  9 ++++
 3 files changed, 59 insertions(+), 9 deletions(-)
 create mode 100644 backend/apps/web/internal/migrations/003_add_auth_api_key.py

diff --git a/backend/apps/web/internal/migrations/003_add_auth_api_key.py b/backend/apps/web/internal/migrations/003_add_auth_api_key.py
new file mode 100644
index 000000000..07144f3ac
--- /dev/null
+++ b/backend/apps/web/internal/migrations/003_add_auth_api_key.py
@@ -0,0 +1,48 @@
+"""Peewee migrations -- 002_add_local_sharing.py.
+
+Some examples (model - class or model name)::
+
+    > Model = migrator.orm['table_name']            # Return model in current state by name
+    > Model = migrator.ModelClass                   # Return model in current state by name
+
+    > migrator.sql(sql)                             # Run custom SQL
+    > migrator.run(func, *args, **kwargs)           # Run python function with the given args
+    > migrator.create_model(Model)                  # Create a model (could be used as decorator)
+    > migrator.remove_model(model, cascade=True)    # Remove a model
+    > migrator.add_fields(model, **fields)          # Add fields to a model
+    > migrator.change_fields(model, **fields)       # Change fields
+    > migrator.remove_fields(model, *field_names, cascade=True)
+    > migrator.rename_field(model, old_field_name, new_field_name)
+    > migrator.rename_table(model, new_table_name)
+    > migrator.add_index(model, *col_names, unique=False)
+    > migrator.add_not_null(model, *field_names)
+    > migrator.add_default(model, field_name, default)
+    > migrator.add_constraint(model, name, sql)
+    > migrator.drop_index(model, *col_names)
+    > migrator.drop_not_null(model, *field_names)
+    > migrator.drop_constraints(model, *constraints)
+
+"""
+
+from contextlib import suppress
+
+import peewee as pw
+from peewee_migrate import Migrator
+
+
+with suppress(ImportError):
+    import playhouse.postgres_ext as pw_pext
+
+
+def migrate(migrator: Migrator, database: pw.Database, *, fake=False):
+    """Write your migrations here."""
+
+    migrator.add_fields(
+        "user", api_key=pw.CharField(max_length=255, null=True, unique=True)
+    )
+
+
+def rollback(migrator: Migrator, database: pw.Database, *, fake=False):
+    """Write your rollback migrations here."""
+
+    migrator.remove_fields("user", "api_key")
diff --git a/backend/apps/web/models/auths.py b/backend/apps/web/models/auths.py
index 09215e1be..1d8549d35 100644
--- a/backend/apps/web/models/auths.py
+++ b/backend/apps/web/models/auths.py
@@ -25,7 +25,6 @@ class Auth(Model):
     email = CharField()
     password = CharField()
     active = BooleanField()
-    api_key = CharField(null=True, unique=True)
 
     class Meta:
         database = DB
@@ -36,7 +35,6 @@ class AuthModel(BaseModel):
     email: str
     password: str
     active: bool = True
-    api_key: Optional[str] = None
 
 
 ####################
@@ -136,13 +134,8 @@ class AuthsTable:
             return None
 
         try:
-            auth = Auth.get(Auth.api_key == api_key, Auth.active == True)
-            if auth:
-                user = Users.get_user_by_id(auth.id)
-                return user
-            else:
-                return None
-
+            user = Users.get_user_by_api_key(api_key)
+            return user if user else None
         except:
             return False
 
diff --git a/backend/apps/web/models/users.py b/backend/apps/web/models/users.py
index 255c701df..d89b548da 100644
--- a/backend/apps/web/models/users.py
+++ b/backend/apps/web/models/users.py
@@ -20,6 +20,7 @@ class User(Model):
     role = CharField()
     profile_image_url = CharField()
     timestamp = DateField()
+    api_key = CharField(null=True, unique=True)
 
     class Meta:
         database = DB
@@ -32,6 +33,7 @@ class UserModel(BaseModel):
     role: str = "pending"
     profile_image_url: str = "/user.png"
     timestamp: int  # timestamp in epoch
+    api_key: Optional[str] = None
 
 
 ####################
@@ -82,6 +84,13 @@ class UsersTable:
         except:
             return None
 
+    def get_user_by_api_key(self, api_key: str) -> Optional[UserModel]:
+        try:
+            user = User.get(User.api_key == api_key)
+            return UserModel(**model_to_dict(user))
+        except:
+            return None
+
     def get_user_by_email(self, email: str) -> Optional[UserModel]:
         try:
             user = User.get(User.email == email)

From da8646cae90cba48d714364a25784aa6890f4875 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:27:35 -0700
Subject: [PATCH 06/14] refac

---
 backend/apps/web/models/auths.py  | 16 ----------------
 backend/apps/web/models/users.py  | 16 ++++++++++++++++
 backend/apps/web/routers/auths.py |  6 +++---
 3 files changed, 19 insertions(+), 19 deletions(-)

diff --git a/backend/apps/web/models/auths.py b/backend/apps/web/models/auths.py
index 1d8549d35..069865036 100644
--- a/backend/apps/web/models/auths.py
+++ b/backend/apps/web/models/auths.py
@@ -167,22 +167,6 @@ class AuthsTable:
         except:
             return False
 
-    def update_api_key_by_id(self, id: str, api_key: str) -> str:
-        try:
-            query = Auth.update(api_key=api_key).where(Auth.id == id)
-            result = query.execute()
-
-            return True if result == 1 else False
-        except:
-            return False
-
-    def get_api_key_by_id(self, id: str) -> Optional[str]:
-        try:
-            auth = Auth.get(Auth.id == id)
-            return auth.api_key
-        except:
-            return None
-
     def delete_auth_by_id(self, id: str) -> bool:
         try:
             # Delete User
diff --git a/backend/apps/web/models/users.py b/backend/apps/web/models/users.py
index d89b548da..a01e595e5 100644
--- a/backend/apps/web/models/users.py
+++ b/backend/apps/web/models/users.py
@@ -158,5 +158,21 @@ class UsersTable:
         except:
             return False
 
+    def update_user_api_key_by_id(self, id: str, api_key: str) -> str:
+        try:
+            query = User.update(api_key=api_key).where(User.id == id)
+            result = query.execute()
+
+            return True if result == 1 else False
+        except:
+            return False
+
+    def get_user_api_key_by_id(self, id: str) -> Optional[str]:
+        try:
+            user = User.get(User.id == id)
+            return user.api_key
+        except:
+            return None
+
 
 Users = UsersTable(DB)
diff --git a/backend/apps/web/routers/auths.py b/backend/apps/web/routers/auths.py
index 6e03be437..293cb55b8 100644
--- a/backend/apps/web/routers/auths.py
+++ b/backend/apps/web/routers/auths.py
@@ -277,7 +277,7 @@ async def update_token_expires_duration(
 @router.post("/api_key", response_model=ApiKey)
 async def create_api_key_(user=Depends(get_current_user)):
     api_key = create_api_key()
-    success = Auths.update_api_key_by_id(user.id, api_key)
+    success = Users.update_user_api_key_by_id(user.id, api_key)
     if success:
         return {
             "api_key": api_key,
@@ -289,14 +289,14 @@ async def create_api_key_(user=Depends(get_current_user)):
 # delete api key
 @router.delete("/api_key", response_model=bool)
 async def delete_api_key(user=Depends(get_current_user)):
-    success = Auths.update_api_key_by_id(user.id, None)
+    success = Users.update_user_api_key_by_id(user.id, None)
     return success
 
 
 # get api key
 @router.get("/api_key", response_model=ApiKey)
 async def get_api_key(user=Depends(get_current_user)):
-    api_key = Auths.get_api_key_by_id(user.id, None)
+    api_key = Users.get_user_api_key_by_id(user.id)
     if api_key:
         return {
             "api_key": api_key,

From e49e04c56aa0d854c4df142e89289258dfbe7f2e Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:33:27 -0700
Subject: [PATCH 07/14] chore: formatting

---
 src/lib/apis/auths/index.ts                   |  6 +--
 .../components/chat/Settings/Account.svelte   | 43 ++++++++++++-------
 2 files changed, 31 insertions(+), 18 deletions(-)

diff --git a/src/lib/apis/auths/index.ts b/src/lib/apis/auths/index.ts
index a690a476b..b703e8746 100644
--- a/src/lib/apis/auths/index.ts
+++ b/src/lib/apis/auths/index.ts
@@ -342,7 +342,7 @@ export const createApiKey = async (token: string) => {
 		throw error;
 	}
 	return res;
-}
+};
 
 export const getApiKey = async (token: string) => {
 	let error = null;
@@ -367,7 +367,7 @@ export const getApiKey = async (token: string) => {
 		throw error;
 	}
 	return res;
-}
+};
 
 export const deleteApiKey = async (token: string) => {
 	let error = null;
@@ -392,4 +392,4 @@ export const deleteApiKey = async (token: string) => {
 		throw error;
 	}
 	return res;
-}
+};
diff --git a/src/lib/components/chat/Settings/Account.svelte b/src/lib/components/chat/Settings/Account.svelte
index fbb5e6289..f368d90f9 100644
--- a/src/lib/components/chat/Settings/Account.svelte
+++ b/src/lib/components/chat/Settings/Account.svelte
@@ -17,7 +17,7 @@
 	let name = '';
 	let showJWTToken = false;
 	let JWTTokenCopied = false;
-	let showApiKey= false;
+	let showApiKey = false;
 	let ApiKeyCopied = false;
 	let localApiKey = localStorage.apiKey;
 	let profileImageInputElement: HTMLInputElement;
@@ -39,12 +39,11 @@
 	const createApiKeyHandler = async () => {
 		const apiKey = await createApiKey(localStorage.token);
 		if (apiKey) {
-			localApiKey = apiKey["api_key"];
+			localApiKey = apiKey['api_key'];
 			localStorage.apiKey = localApiKey;
 			toast.success($i18n.t('API Key created.'));
 		} else {
 			toast.error($i18n.t('Failed to create API Key.'));
-		
 		}
 	};
 
@@ -186,9 +185,9 @@
 		<hr class=" dark:border-gray-700 my-4" />
 
 		<div class="flex flex-col gap-4">
-			<div class="justify-between w-full ">
+			<div class="justify-between w-full">
 				<div class="flex justify-between w-full">
-					<div class="self-center text-xs font-medium ">{$i18n.t('JWT Token')}</div>
+					<div class="self-center text-xs font-medium">{$i18n.t('JWT Token')}</div>
 				</div>
 
 				<div class="flex mt-2">
@@ -285,9 +284,9 @@
 					</button>
 				</div>
 			</div>
-			<div class="justify-between w-full ">
+			<div class="justify-between w-full">
 				<div class="flex justify-between w-full">
-					<div class="self-center text-xs font-medium ">{$i18n.t('API Key')}</div>
+					<div class="self-center text-xs font-medium">{$i18n.t('API Key')}</div>
 				</div>
 
 				<div class="flex mt-2">
@@ -299,14 +298,6 @@
 							disabled
 						/>
 
-						<button
-							class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
-							on:click={() => {createApiKeyHandler()}}
-						>
-						<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16" fill="currentColor" class="w-4 h-4"><path d="M8.75 3.75a.75.75 0 0 0-1.5 0v3.5h-3.5a.75.75 0 0 0 0 1.5h3.5v3.5a.75.75 0 0 0 1.5 0v-3.5h3.5a.75.75 0 0 0 0-1.5h-3.5v-3.5Z"></path></svg>
-							
-						</button>
-
 						<button
 							class="px-2 transition rounded-r-lg dark:bg-gray-800"
 							on:click={() => {
@@ -390,6 +381,28 @@
 							</svg>
 						{/if}
 					</button>
+
+					<button
+						class=" px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
+						on:click={() => {
+							createApiKeyHandler();
+						}}
+					>
+						<svg
+							xmlns="http://www.w3.org/2000/svg"
+							fill="none"
+							viewBox="0 0 24 24"
+							stroke-width="2"
+							stroke="currentColor"
+							class="size-4"
+						>
+							<path
+								stroke-linecap="round"
+								stroke-linejoin="round"
+								d="M16.023 9.348h4.992v-.001M2.985 19.644v-4.992m0 0h4.992m-4.993 0 3.181 3.183a8.25 8.25 0 0 0 13.803-3.7M4.031 9.865a8.25 8.25 0 0 1 13.803-3.7l3.181 3.182m0-4.991v4.99"
+							/>
+						</svg>
+					</button>
 				</div>
 			</div>
 		</div>

From 7c5f6d71b3607e0529fd1359ac0346bdf5784a72 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:39:55 -0700
Subject: [PATCH 08/14] refac

---
 src/lib/apis/auths/index.ts                   | 10 ++---
 .../components/chat/Settings/Account.svelte   | 44 +++++++++++--------
 src/routes/auth/+page.svelte                  | 13 +-----
 3 files changed, 31 insertions(+), 36 deletions(-)

diff --git a/src/lib/apis/auths/index.ts b/src/lib/apis/auths/index.ts
index b703e8746..548a9418d 100644
--- a/src/lib/apis/auths/index.ts
+++ b/src/lib/apis/auths/index.ts
@@ -319,7 +319,7 @@ export const updateJWTExpiresDuration = async (token: string, duration: string)
 	return res;
 };
 
-export const createApiKey = async (token: string) => {
+export const createAPIKey = async (token: string) => {
 	let error = null;
 
 	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
@@ -341,10 +341,10 @@ export const createApiKey = async (token: string) => {
 	if (error) {
 		throw error;
 	}
-	return res;
+	return res.api_key;
 };
 
-export const getApiKey = async (token: string) => {
+export const getAPIKey = async (token: string) => {
 	let error = null;
 
 	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
@@ -366,10 +366,10 @@ export const getApiKey = async (token: string) => {
 	if (error) {
 		throw error;
 	}
-	return res;
+	return res.api_key;
 };
 
-export const deleteApiKey = async (token: string) => {
+export const deleteAPIKey = async (token: string) => {
 	let error = null;
 
 	const res = await fetch(`${WEBUI_API_BASE_URL}/auths/api_key`, {
diff --git a/src/lib/components/chat/Settings/Account.svelte b/src/lib/components/chat/Settings/Account.svelte
index f368d90f9..916cd811a 100644
--- a/src/lib/components/chat/Settings/Account.svelte
+++ b/src/lib/components/chat/Settings/Account.svelte
@@ -3,7 +3,7 @@
 	import { onMount, getContext } from 'svelte';
 
 	import { user } from '$lib/stores';
-	import { updateUserProfile, createApiKey } from '$lib/apis/auths';
+	import { updateUserProfile, createAPIKey, getAPIKey } from '$lib/apis/auths';
 
 	import UpdatePassword from './Account/UpdatePassword.svelte';
 	import { getGravatarUrl } from '$lib/apis/utils';
@@ -15,11 +15,14 @@
 
 	let profileImageUrl = '';
 	let name = '';
+
 	let showJWTToken = false;
 	let JWTTokenCopied = false;
-	let showApiKey = false;
-	let ApiKeyCopied = false;
-	let localApiKey = localStorage.apiKey;
+
+	let APIKey = '';
+	let showAPIKey = false;
+	let APIKeyCopied = false;
+
 	let profileImageInputElement: HTMLInputElement;
 
 	const submitHandler = async () => {
@@ -36,20 +39,23 @@
 		return false;
 	};
 
-	const createApiKeyHandler = async () => {
-		const apiKey = await createApiKey(localStorage.token);
-		if (apiKey) {
-			localApiKey = apiKey['api_key'];
-			localStorage.apiKey = localApiKey;
+	const createAPIKeyHandler = async () => {
+		APIKey = await createAPIKey(localStorage.token);
+		if (APIKey) {
 			toast.success($i18n.t('API Key created.'));
 		} else {
 			toast.error($i18n.t('Failed to create API Key.'));
 		}
 	};
 
-	onMount(() => {
+	onMount(async () => {
 		name = $user.name;
 		profileImageUrl = $user.profile_image_url;
+
+		APIKey = await getAPIKey(localStorage.token).catch((error) => {
+			console.log(error);
+			return '';
+		});
 	});
 </script>
 
@@ -293,18 +299,18 @@
 					<div class="flex w-full">
 						<input
 							class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
-							type={showApiKey ? 'text' : 'password'}
-							value={localApiKey}
+							type={showAPIKey ? 'text' : 'password'}
+							value={APIKey}
 							disabled
 						/>
 
 						<button
 							class="px-2 transition rounded-r-lg dark:bg-gray-800"
 							on:click={() => {
-								showApiKey = !showApiKey;
+								showAPIKey = !showAPIKey;
 							}}
 						>
-							{#if showApiKey}
+							{#if showAPIKey}
 								<svg
 									xmlns="http://www.w3.org/2000/svg"
 									viewBox="0 0 16 16"
@@ -341,14 +347,14 @@
 					<button
 						class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
 						on:click={() => {
-							copyToClipboard(localApiKey);
-							ApiKeyCopied = true;
+							copyToClipboard(APIKey);
+							APIKeyCopied = true;
 							setTimeout(() => {
-								ApiKeyCopied = false;
+								APIKeyCopied = false;
 							}, 2000);
 						}}
 					>
-						{#if ApiKeyCopied}
+						{#if APIKeyCopied}
 							<svg
 								xmlns="http://www.w3.org/2000/svg"
 								viewBox="0 0 20 20"
@@ -385,7 +391,7 @@
 					<button
 						class=" px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
 						on:click={() => {
-							createApiKeyHandler();
+							createAPIKeyHandler();
 						}}
 					>
 						<svg
diff --git a/src/routes/auth/+page.svelte b/src/routes/auth/+page.svelte
index 4d84715c7..23dbc7eea 100644
--- a/src/routes/auth/+page.svelte
+++ b/src/routes/auth/+page.svelte
@@ -1,6 +1,6 @@
 <script>
 	import { goto } from '$app/navigation';
-	import { userSignIn, userSignUp, getApiKey } from '$lib/apis/auths';
+	import { userSignIn, userSignUp } from '$lib/apis/auths';
 	import Spinner from '$lib/components/common/Spinner.svelte';
 	import { WEBUI_API_BASE_URL, WEBUI_BASE_URL } from '$lib/constants';
 	import { WEBUI_NAME, config, user } from '$lib/stores';
@@ -27,17 +27,6 @@
 		}
 	};
 
-	const setApiKey = async (token) => {
-		const apiKey = await getApiKey(token).catch((error) => {
-			toast.error(error);
-			return null;
-		});
-
-		if (apiKey) {
-			localStorage.apiKey = apiKey['api-key'];
-		}
-	};
-
 	const signInHandler = async () => {
 		const sessionUser = await userSignIn(email, password).catch((error) => {
 			toast.error(error);

From 6d1ce99537009d234af905d07df359c7bc6ecefd Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:40:36 -0700
Subject: [PATCH 09/14] revert: auth page

---
 src/routes/auth/+page.svelte | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/routes/auth/+page.svelte b/src/routes/auth/+page.svelte
index 23dbc7eea..2dc2a92b2 100644
--- a/src/routes/auth/+page.svelte
+++ b/src/routes/auth/+page.svelte
@@ -21,7 +21,6 @@
 			console.log(sessionUser);
 			toast.success($i18n.t(`You're now logged in.`));
 			localStorage.token = sessionUser.token;
-			await setApiKey(sessionUser.token);
 			await user.set(sessionUser);
 			goto('/');
 		}

From b35cc36e192cb7c96f194cc0851178a8616e8e53 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:42:45 -0700
Subject: [PATCH 10/14] chore: formatting

---
 backend/constants.py   | 1 -
 backend/utils/utils.py | 2 ++
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/backend/constants.py b/backend/constants.py
index ffd639f91..da1ee0b3f 100644
--- a/backend/constants.py
+++ b/backend/constants.py
@@ -65,4 +65,3 @@ class ERROR_MESSAGES(str, Enum):
     CREATE_API_KEY_ERROR = "Oops! Something went wrong while creating your API key. Please try again later. If the issue persists, contact support for assistance."
 
     EMPTY_CONTENT = "The content provided is empty. Please ensure that there is text or data present before proceeding."
-
diff --git a/backend/utils/utils.py b/backend/utils/utils.py
index 071bb0ef9..d5bb04e90 100644
--- a/backend/utils/utils.py
+++ b/backend/utils/utils.py
@@ -95,6 +95,7 @@ def get_current_user(
             detail=ERROR_MESSAGES.UNAUTHORIZED,
         )
 
+
 def get_current_user_by_api_key(api_key: str):
     from apps.web.models.auths import Auths
 
@@ -106,6 +107,7 @@ def get_current_user_by_api_key(api_key: str):
         )
     return user
 
+
 def get_verified_user(user=Depends(get_current_user)):
     if user.role not in {"user", "admin"}:
         raise HTTPException(

From fb516ea694647203e6ce2eadaa89fbfaf2c8fb44 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 09:58:34 -0700
Subject: [PATCH 11/14] refac: styling

---
 .../components/chat/Settings/Account.svelte   | 185 ++++++++++--------
 src/lib/components/icons/Plus.svelte          |  15 ++
 2 files changed, 116 insertions(+), 84 deletions(-)
 create mode 100644 src/lib/components/icons/Plus.svelte

diff --git a/src/lib/components/chat/Settings/Account.svelte b/src/lib/components/chat/Settings/Account.svelte
index 916cd811a..e0239fb0b 100644
--- a/src/lib/components/chat/Settings/Account.svelte
+++ b/src/lib/components/chat/Settings/Account.svelte
@@ -8,6 +8,8 @@
 	import UpdatePassword from './Account/UpdatePassword.svelte';
 	import { getGravatarUrl } from '$lib/apis/utils';
 	import { copyToClipboard } from '$lib/utils';
+	import Plus from '$lib/components/icons/Plus.svelte';
+	import Tooltip from '$lib/components/common/Tooltip.svelte';
 
 	const i18n = getContext('i18n');
 
@@ -199,14 +201,14 @@
 				<div class="flex mt-2">
 					<div class="flex w-full">
 						<input
-							class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
+							class="w-full rounded-l-lg py-1.5 pl-4 text-sm bg-white dark:text-gray-300 dark:bg-gray-800 outline-none"
 							type={showJWTToken ? 'text' : 'password'}
 							value={localStorage.token}
 							disabled
 						/>
 
 						<button
-							class="px-2 transition rounded-r-lg dark:bg-gray-800"
+							class="px-2 transition rounded-r-lg bg-white dark:bg-gray-800"
 							on:click={() => {
 								showJWTToken = !showJWTToken;
 							}}
@@ -246,7 +248,7 @@
 					</div>
 
 					<button
-						class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
+						class="ml-1.5 px-1.5 py-1 dark:hover:bg-gray-800 transition rounded-lg"
 						on:click={() => {
 							copyToClipboard(localStorage.token);
 							JWTTokenCopied = true;
@@ -296,35 +298,77 @@
 				</div>
 
 				<div class="flex mt-2">
-					<div class="flex w-full">
-						<input
-							class="w-full rounded-l-lg py-1.5 pl-4 text-sm dark:text-gray-300 dark:bg-gray-800 outline-none"
-							type={showAPIKey ? 'text' : 'password'}
-							value={APIKey}
-							disabled
-						/>
+					{#if APIKey}
+						<div class="flex w-full">
+							<input
+								class="w-full rounded-l-lg py-1.5 pl-4 text-sm bg-white dark:text-gray-300 dark:bg-gray-800 outline-none"
+								type={showAPIKey ? 'text' : 'password'}
+								value={APIKey}
+								disabled
+							/>
+
+							<button
+								class="px-2 transition rounded-r-lg bg-white dark:bg-gray-800"
+								on:click={() => {
+									showAPIKey = !showAPIKey;
+								}}
+							>
+								{#if showAPIKey}
+									<svg
+										xmlns="http://www.w3.org/2000/svg"
+										viewBox="0 0 16 16"
+										fill="currentColor"
+										class="w-4 h-4"
+									>
+										<path
+											fill-rule="evenodd"
+											d="M3.28 2.22a.75.75 0 0 0-1.06 1.06l10.5 10.5a.75.75 0 1 0 1.06-1.06l-1.322-1.323a7.012 7.012 0 0 0 2.16-3.11.87.87 0 0 0 0-.567A7.003 7.003 0 0 0 4.82 3.76l-1.54-1.54Zm3.196 3.195 1.135 1.136A1.502 1.502 0 0 1 9.45 8.389l1.136 1.135a3 3 0 0 0-4.109-4.109Z"
+											clip-rule="evenodd"
+										/>
+										<path
+											d="m7.812 10.994 1.816 1.816A7.003 7.003 0 0 1 1.38 8.28a.87.87 0 0 1 0-.566 6.985 6.985 0 0 1 1.113-2.039l2.513 2.513a3 3 0 0 0 2.806 2.806Z"
+										/>
+									</svg>
+								{:else}
+									<svg
+										xmlns="http://www.w3.org/2000/svg"
+										viewBox="0 0 16 16"
+										fill="currentColor"
+										class="w-4 h-4"
+									>
+										<path d="M8 9.5a1.5 1.5 0 1 0 0-3 1.5 1.5 0 0 0 0 3Z" />
+										<path
+											fill-rule="evenodd"
+											d="M1.38 8.28a.87.87 0 0 1 0-.566 7.003 7.003 0 0 1 13.238.006.87.87 0 0 1 0 .566A7.003 7.003 0 0 1 1.379 8.28ZM11 8a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+											clip-rule="evenodd"
+										/>
+									</svg>
+								{/if}
+							</button>
+						</div>
 
 						<button
-							class="px-2 transition rounded-r-lg dark:bg-gray-800"
+							class="ml-1.5 px-1.5 py-1 dark:hover:bg-gray-800 transition rounded-lg"
 							on:click={() => {
-								showAPIKey = !showAPIKey;
+								copyToClipboard(APIKey);
+								APIKeyCopied = true;
+								setTimeout(() => {
+									APIKeyCopied = false;
+								}, 2000);
 							}}
 						>
-							{#if showAPIKey}
+							{#if APIKeyCopied}
 								<svg
 									xmlns="http://www.w3.org/2000/svg"
-									viewBox="0 0 16 16"
+									viewBox="0 0 20 20"
 									fill="currentColor"
 									class="w-4 h-4"
 								>
 									<path
 										fill-rule="evenodd"
-										d="M3.28 2.22a.75.75 0 0 0-1.06 1.06l10.5 10.5a.75.75 0 1 0 1.06-1.06l-1.322-1.323a7.012 7.012 0 0 0 2.16-3.11.87.87 0 0 0 0-.567A7.003 7.003 0 0 0 4.82 3.76l-1.54-1.54Zm3.196 3.195 1.135 1.136A1.502 1.502 0 0 1 9.45 8.389l1.136 1.135a3 3 0 0 0-4.109-4.109Z"
+										d="M16.704 4.153a.75.75 0 01.143 1.052l-8 10.5a.75.75 0 01-1.127.075l-4.5-4.5a.75.75 0 011.06-1.06l3.894 3.893 7.48-9.817a.75.75 0 011.05-.143z"
 										clip-rule="evenodd"
 									/>
-									<path
-										d="m7.812 10.994 1.816 1.816A7.003 7.003 0 0 1 1.38 8.28a.87.87 0 0 1 0-.566 6.985 6.985 0 0 1 1.113-2.039l2.513 2.513a3 3 0 0 0 2.806 2.806Z"
-									/>
 								</svg>
 							{:else}
 								<svg
@@ -333,82 +377,55 @@
 									fill="currentColor"
 									class="w-4 h-4"
 								>
-									<path d="M8 9.5a1.5 1.5 0 1 0 0-3 1.5 1.5 0 0 0 0 3Z" />
 									<path
 										fill-rule="evenodd"
-										d="M1.38 8.28a.87.87 0 0 1 0-.566 7.003 7.003 0 0 1 13.238.006.87.87 0 0 1 0 .566A7.003 7.003 0 0 1 1.379 8.28ZM11 8a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+										d="M11.986 3H12a2 2 0 0 1 2 2v6a2 2 0 0 1-1.5 1.937V7A2.5 2.5 0 0 0 10 4.5H4.063A2 2 0 0 1 6 3h.014A2.25 2.25 0 0 1 8.25 1h1.5a2.25 2.25 0 0 1 2.236 2ZM10.5 4v-.75a.75.75 0 0 0-.75-.75h-1.5a.75.75 0 0 0-.75.75V4h3Z"
+										clip-rule="evenodd"
+									/>
+									<path
+										fill-rule="evenodd"
+										d="M3 6a1 1 0 0 0-1 1v7a1 1 0 0 0 1 1h7a1 1 0 0 0 1-1V7a1 1 0 0 0-1-1H3Zm1.75 2.5a.75.75 0 0 0 0 1.5h3.5a.75.75 0 0 0 0-1.5h-3.5ZM4 11.75a.75.75 0 0 1 .75-.75h3.5a.75.75 0 0 1 0 1.5h-3.5a.75.75 0 0 1-.75-.75Z"
 										clip-rule="evenodd"
 									/>
 								</svg>
 							{/if}
 						</button>
-					</div>
 
-					<button
-						class="ml-1.5 px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
-						on:click={() => {
-							copyToClipboard(APIKey);
-							APIKeyCopied = true;
-							setTimeout(() => {
-								APIKeyCopied = false;
-							}, 2000);
-						}}
-					>
-						{#if APIKeyCopied}
-							<svg
-								xmlns="http://www.w3.org/2000/svg"
-								viewBox="0 0 20 20"
-								fill="currentColor"
-								class="w-4 h-4"
+						<Tooltip content="Create new key">
+							<button
+								class=" px-1.5 py-1 dark:hover:bg-gray-800transition rounded-lg"
+								on:click={() => {
+									createAPIKeyHandler();
+								}}
 							>
-								<path
-									fill-rule="evenodd"
-									d="M16.704 4.153a.75.75 0 01.143 1.052l-8 10.5a.75.75 0 01-1.127.075l-4.5-4.5a.75.75 0 011.06-1.06l3.894 3.893 7.48-9.817a.75.75 0 011.05-.143z"
-									clip-rule="evenodd"
-								/>
-							</svg>
-						{:else}
-							<svg
-								xmlns="http://www.w3.org/2000/svg"
-								viewBox="0 0 16 16"
-								fill="currentColor"
-								class="w-4 h-4"
-							>
-								<path
-									fill-rule="evenodd"
-									d="M11.986 3H12a2 2 0 0 1 2 2v6a2 2 0 0 1-1.5 1.937V7A2.5 2.5 0 0 0 10 4.5H4.063A2 2 0 0 1 6 3h.014A2.25 2.25 0 0 1 8.25 1h1.5a2.25 2.25 0 0 1 2.236 2ZM10.5 4v-.75a.75.75 0 0 0-.75-.75h-1.5a.75.75 0 0 0-.75.75V4h3Z"
-									clip-rule="evenodd"
-								/>
-								<path
-									fill-rule="evenodd"
-									d="M3 6a1 1 0 0 0-1 1v7a1 1 0 0 0 1 1h7a1 1 0 0 0 1-1V7a1 1 0 0 0-1-1H3Zm1.75 2.5a.75.75 0 0 0 0 1.5h3.5a.75.75 0 0 0 0-1.5h-3.5ZM4 11.75a.75.75 0 0 1 .75-.75h3.5a.75.75 0 0 1 0 1.5h-3.5a.75.75 0 0 1-.75-.75Z"
-									clip-rule="evenodd"
-								/>
-							</svg>
-						{/if}
-					</button>
-
-					<button
-						class=" px-1.5 py-1 hover:bg-gray-800 transition rounded-lg"
-						on:click={() => {
-							createAPIKeyHandler();
-						}}
-					>
-						<svg
-							xmlns="http://www.w3.org/2000/svg"
-							fill="none"
-							viewBox="0 0 24 24"
-							stroke-width="2"
-							stroke="currentColor"
-							class="size-4"
+								<svg
+									xmlns="http://www.w3.org/2000/svg"
+									fill="none"
+									viewBox="0 0 24 24"
+									stroke-width="2"
+									stroke="currentColor"
+									class="size-4"
+								>
+									<path
+										stroke-linecap="round"
+										stroke-linejoin="round"
+										d="M16.023 9.348h4.992v-.001M2.985 19.644v-4.992m0 0h4.992m-4.993 0 3.181 3.183a8.25 8.25 0 0 0 13.803-3.7M4.031 9.865a8.25 8.25 0 0 1 13.803-3.7l3.181 3.182m0-4.991v4.99"
+									/>
+								</svg>
+							</button>
+						</Tooltip>
+					{:else}
+						<button
+							class="flex gap-1.5 items-center font-medium px-3.5 py-1.5 rounded-lg bg-gray-100/70 hover:bg-gray-100 dark:bg-gray-850 dark:hover:bg-gray-800 transition"
+							on:click={() => {
+								createAPIKeyHandler();
+							}}
 						>
-							<path
-								stroke-linecap="round"
-								stroke-linejoin="round"
-								d="M16.023 9.348h4.992v-.001M2.985 19.644v-4.992m0 0h4.992m-4.993 0 3.181 3.183a8.25 8.25 0 0 0 13.803-3.7M4.031 9.865a8.25 8.25 0 0 1 13.803-3.7l3.181 3.182m0-4.991v4.99"
-							/>
-						</svg>
-					</button>
+							<Plus strokeWidth="2" className=" size-3.5" />
+
+							Create new secret key</button
+						>
+					{/if}
 				</div>
 			</div>
 		</div>
diff --git a/src/lib/components/icons/Plus.svelte b/src/lib/components/icons/Plus.svelte
new file mode 100644
index 000000000..bcfe4a8b2
--- /dev/null
+++ b/src/lib/components/icons/Plus.svelte
@@ -0,0 +1,15 @@
+<script lang="ts">
+	export let className = 'w-4 h-4';
+	export let strokeWidth = '1.5';
+</script>
+
+<svg
+	xmlns="http://www.w3.org/2000/svg"
+	fill="none"
+	viewBox="0 0 24 24"
+	stroke-width={strokeWidth}
+	stroke="currentColor"
+	class={className}
+>
+	<path stroke-linecap="round" stroke-linejoin="round" d="M12 4.5v15m7.5-7.5h-15" />
+</svg>

From 398b2076cd9e2b4e7f1cc9a4b759c54286ee95b7 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 10:05:53 -0700
Subject: [PATCH 12/14] refac

---
 backend/utils/utils.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/backend/utils/utils.py b/backend/utils/utils.py
index d5bb04e90..184a1bab9 100644
--- a/backend/utils/utils.py
+++ b/backend/utils/utils.py
@@ -1,6 +1,8 @@
 from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
 from fastapi import HTTPException, status, Depends
+
 from apps.web.models.users import Users
+from apps.web.models.auths import Auths
 
 from pydantic import BaseModel
 from typing import Union, Optional
@@ -97,8 +99,6 @@ def get_current_user(
 
 
 def get_current_user_by_api_key(api_key: str):
-    from apps.web.models.auths import Auths
-
     user = Auths.authenticate_user_by_api_key(api_key)
     if user is None:
         raise HTTPException(

From 1066096b33487091f893fa072598bec994b3a8ff Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 10:06:58 -0700
Subject: [PATCH 13/14] fix

---
 backend/utils/utils.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/backend/utils/utils.py b/backend/utils/utils.py
index 184a1bab9..1c45258b1 100644
--- a/backend/utils/utils.py
+++ b/backend/utils/utils.py
@@ -2,7 +2,6 @@ from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
 from fastapi import HTTPException, status, Depends
 
 from apps.web.models.users import Users
-from apps.web.models.auths import Auths
 
 from pydantic import BaseModel
 from typing import Union, Optional
@@ -78,6 +77,8 @@ def get_http_authorization_cred(auth_header: str):
 def get_current_user(
     auth_token: HTTPAuthorizationCredentials = Depends(bearer_security),
 ):
+
+    print(auth_token)
     # auth by api key
     if auth_token.credentials.startswith("sk-"):
         return get_current_user_by_api_key(auth_token.credentials)
@@ -99,7 +100,7 @@ def get_current_user(
 
 
 def get_current_user_by_api_key(api_key: str):
-    user = Auths.authenticate_user_by_api_key(api_key)
+    user = Users.get_user_by_api_key(api_key)
     if user is None:
         raise HTTPException(
             status_code=status.HTTP_401_UNAUTHORIZED,

From 0aa4d305c75fc9c409ed3ff3a80c4cbfee8d52a9 Mon Sep 17 00:00:00 2001
From: "Timothy J. Baek" <timothyjrbeck@gmail.com>
Date: Tue, 2 Apr 2024 10:07:44 -0700
Subject: [PATCH 14/14] chore: print statement removed

---
 backend/utils/utils.py | 2 --
 1 file changed, 2 deletions(-)

diff --git a/backend/utils/utils.py b/backend/utils/utils.py
index 1c45258b1..49e15789f 100644
--- a/backend/utils/utils.py
+++ b/backend/utils/utils.py
@@ -77,8 +77,6 @@ def get_http_authorization_cred(auth_header: str):
 def get_current_user(
     auth_token: HTTPAuthorizationCredentials = Depends(bearer_security),
 ):
-
-    print(auth_token)
     # auth by api key
     if auth_token.credentials.startswith("sk-"):
         return get_current_user_by_api_key(auth_token.credentials)