blackteay/GPT-SoVITS
1
0
Fork 0
mirror of https://github.com/RVC-Boss/GPT-SoVITS.git synced 2026-06-04 05:01:27 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix: V-003 security vulnerability

Browse Source 
Automated security fix generated by OrbisAI Security
This commit is contained in:
orbisai0security 2026-05-20 04:43:46 +00:00
parent 08d627c333
commit 2fe7b2e17a
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
api.py
View File

@ -1213,6 +1213,7 @@ parser.add_argument("-cp", "--cut_punc", type=str, default="", help="文本切
# 切割常用分句符为 `python ./api.py -cp ".?!。?!"` # 切割常用分句符为 `python ./api.py -cp ".?!。?!"`
parser.add_argument("-hb", "--hubert_path", type=str, default=g_config.cnhubert_path, help="覆盖config.cnhubert_path") parser.add_argument("-hb", "--hubert_path", type=str, default=g_config.cnhubert_path, help="覆盖config.cnhubert_path")
parser.add_argument("-b", "--bert_path", type=str, default=g_config.bert_path, help="覆盖config.bert_path") parser.add_argument("-b", "--bert_path", type=str, default=g_config.bert_path, help="覆盖config.bert_path")
parser.add_argument("-ak", "--api_key", type=str, default="", help="API密钥不为空时开启鉴权")
args = parser.parse_args() args = parser.parse_args()
sovits_path = args.sovits_path sovits_path = args.sovits_path
@ -1298,6 +1299,15 @@ change_gpt_sovits_weights(gpt_path=gpt_path, sovits_path=sovits_path)
app = FastAPI() app = FastAPI()
@app.middleware("http")
async def api_key_middleware(request: Request, call_next):
if args.api_key:
key = request.headers.get("X-API-Key", "")
if key != args.api_key:
return JSONResponse(status_code=401, content={"message": "Unauthorized"})
return await call_next(request)
@app.post("/set_model") @app.post("/set_model")
async def set_model(request: Request): async def set_model(request: Request):
json_post_raw = await request.json() json_post_raw = await request.json()