[x] Add api to generate a token for anonymous users before they can start any conversation, this should be the identifier temporarily https://github.com/SkywardAI/kirin/pull/203
[x] APIs requests should pass user token for validation, token should be changed on each login/register/anonymous query, should have expire time - e.g. 24hrs, should can extract logged-in user id somehow to append to user history, instead of pass user id that anonymous users doesn't have, and pass id is not safe as well. https://github.com/SkywardAI/kirin/pull/203
[x] POST /api/chat session id should return a complex string to avoid information leak. add also token in coming request. e.g. request should be
POST xxx/api/chat HTTP/1.1
Content-Type: application/json
[ ] GET /api/chat/{id} doesn't seems to work at this moment, should also add token, a better way could be GET /api/chat?id=?&token=?
[ ] GET /api/chat/history/{id} - description is Chat:Get-Chat-History-By-Account-Id which should be chat session id? can also change to GET /api/chat/history?session-id=?&token=?
Contact Details(optional)
No response
What feature are you requesting?
[x] remove
GET /api/chat
, this can cause serious privacy issues. https://github.com/SkywardAI/kirin/pull/203[x] Add api to generate a token for anonymous users before they can start any conversation, this should be the identifier temporarily https://github.com/SkywardAI/kirin/pull/203
[x] APIs requests should pass user token for validation, token should be changed on each login/register/anonymous query, should have expire time - e.g. 24hrs, should can extract logged-in user id somehow to append to user history, instead of pass user id that anonymous users doesn't have, and pass id is not safe as well. https://github.com/SkywardAI/kirin/pull/203
[x]
POST /api/chat
session id should return a complex string to avoid information leak. add also token in coming request. e.g. request should be[ ]
GET /api/chat/{id}
doesn't seems to work at this moment, should also add token, a better way could beGET /api/chat?id=?&token=?
[ ]
GET /api/chat/history/{id}
- description is Chat:Get-Chat-History-By-Account-Id which should be chat session id? can also change toGET /api/chat/history?session-id=?&token=?