claw/insightflow
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Phase 7 Task 3: 数据安全与合规

Browse Source 
- 创建 security_manager.py 安全模块
  - SecurityManager: 安全管理主类
  - 审计日志系统 - 记录所有数据操作
  - 端到端加密 - AES-256-GCM 加密项目数据
  - 数据脱敏 - 支持手机号、邮箱、身份证等敏感信息脱敏
  - 数据访问策略 - 基于用户、角色、IP、时间的访问控制
  - 访问审批流程 - 敏感数据访问需要审批

- 更新 schema.sql 添加安全相关数据库表
  - audit_logs: 审计日志表
  - encryption_configs: 加密配置表
  - masking_rules: 脱敏规则表
  - data_access_policies: 数据访问策略表
  - access_requests: 访问请求表

- 更新 main.py 添加安全相关 API 端点
  - GET /api/v1/audit-logs - 查询审计日志
  - GET /api/v1/audit-logs/stats - 审计统计
  - POST /api/v1/projects/{id}/encryption/enable - 启用加密
  - POST /api/v1/projects/{id}/encryption/disable - 禁用加密
  - POST /api/v1/projects/{id}/encryption/verify - 验证密码
  - GET /api/v1/projects/{id}/encryption - 获取加密配置
  - POST /api/v1/projects/{id}/masking-rules - 创建脱敏规则
  - GET /api/v1/projects/{id}/masking-rules - 获取脱敏规则
  - PUT /api/v1/masking-rules/{id} - 更新脱敏规则
  - DELETE /api/v1/masking-rules/{id} - 删除脱敏规则
  - POST /api/v1/projects/{id}/masking/apply - 应用脱敏
  - POST /api/v1/projects/{id}/access-policies - 创建访问策略
  - GET /api/v1/projects/{id}/access-policies - 获取访问策略
  - POST /api/v1/access-policies/{id}/check - 检查访问权限
  - POST /api/v1/access-requests - 创建访问请求
  - POST /api/v1/access-requests/{id}/approve - 批准访问
  - POST /api/v1/access-requests/{id}/reject - 拒绝访问

- 更新 requirements.txt 添加 cryptography 依赖

- 更新 STATUS.md 和 README.md 记录完成状态
This commit is contained in:
OpenClaw Bot
2026-02-23 18:11:11 +08:00
parent 847e183b85
commit 95a558acc9
19 changed files with 4407 additions and 1646 deletions
Download Patch File Download Diff File Expand all files Collapse all files

578
chrome-extension/options.html
View File

@@ -1,349 +1,247 @@
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>InsightFlow Clipper 设置</title>
<style>
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
background: #f3f4f6;
min-height: 100vh;
padding: 40px 20px;
}
.container {
max-width: 600px;
margin: 0 auto;
}
.header {
text-align: center;
margin-bottom: 32px;
}
.header h1 {
font-size: 28px;
color: #111827;
margin-bottom: 8px;
}
.header p {
color: #6b7280;
}
.card {
background: white;
border-radius: 12px;
padding: 24px;
margin-bottom: 24px;
box-shadow: 0 1px 3px rgba(0,0,0,0.1);
}
.card-title {
font-size: 18px;
font-weight: 600;
color: #111827;
margin-bottom: 20px;
display: flex;
align-items: center;
gap: 8px;
}
.form-group {
margin-bottom: 20px;
}
.form-label {
display: block;
font-size: 14px;
font-weight: 500;
color: #374151;
margin-bottom: 6px;
}
.form-input {
width: 100%;
padding: 10px 12px;
border: 1px solid #d1d5db;
border-radius: 6px;
font-size: 14px;
transition: border-color 0.2s;
}
.form-input:focus {
outline: none;
border-color: #4f46e5;
}
.form-hint {
font-size: 12px;
color: #6b7280;
margin-top: 4px;
}
.btn {
padding: 10px 20px;
border: none;
border-radius: 6px;
font-size: 14px;
font-weight: 500;
cursor: pointer;
transition: all 0.2s;
}
.btn-primary {
background: #4f46e5;
color: white;
}
.btn-primary:hover {
background: #4338ca;
}
.btn-secondary {
background: white;
color: #374151;
border: 1px solid #d1d5db;
}
.btn-secondary:hover {
background: #f9fafb;
}
.btn-success {
background: #10b981;
color: white;
}
.actions {
display: flex;
gap: 12px;
justify-content: flex-end;
margin-top: 24px;
}
.status-badge {
display: inline-flex;
align-items: center;
gap: 6px;
padding: 6px 12px;
border-radius: 20px;
font-size: 12px;
font-weight: 500;
}
.status-badge.success {
background: #d1fae5;
color: #065f46;
}
.status-badge.error {
background: #fee2e2;
color: #991b1b;
}
.status-dot {
width: 6px;
height: 6px;
border-radius: 50%;
background: currentColor;
}
.info-box {
background: #eff6ff;
border-left: 4px solid #3b82f6;
padding: 16px;
border-radius: 0 6px 6px 0;
margin-bottom: 20px;
}
.info-box h4 {
font-size: 14px;
color: #1e40af;
margin-bottom: 8px;
}
.info-box p {
font-size: 13px;
color: #3b82f6;
line-height: 1.5;
}
.info-box code {
background: rgba(255,255,255,0.5);
padding: 2px 6px;
border-radius: 3px;
font-family: monospace;
}
.shortcut-list {
list-style: none;
}
.shortcut-list li {
display: flex;
justify-content: space-between;
padding: 12px 0;
border-bottom: 1px solid #e5e7eb;
}
.shortcut-list li:last-child {
border-bottom: none;
}
.shortcut-key {
background: #f3f4f6;
padding: 4px 8px;
border-radius: 4px;
font-size: 12px;
font-family: monospace;
color: #374151;
}
.footer {
text-align: center;
padding: 24px;
color: #6b7280;
font-size: 13px;
}
.footer a {
color: #4f46e5;
text-decoration: none;
}
.footer a:hover {
text-decoration: underline;
}
#testResult {
margin-top: 12px;
padding: 12px;
border-radius: 6px;
font-size: 13px;
display: none;
}
#testResult.success {
display: block;
background: #d1fae5;
color: #065f46;
}
#testResult.error {
display: block;
background: #fee2e2;
color: #991b1b;
}
</style>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>InsightFlow Clipper - 设置</title>
<style>
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, sans-serif;
background: #f5f5f5;
min-height: 100vh;
padding: 40px 20px;
}
.container {
max-width: 600px;
margin: 0 auto;
background: white;
border-radius: 12px;
box-shadow: 0 4px 20px rgba(0,0,0,0.1);
overflow: hidden;
}
.header {
background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
color: white;
padding: 30px;
text-align: center;
}
.header h1 {
font-size: 24px;
font-weight: 600;
}
.header p {
opacity: 0.9;
margin-top: 5px;
}
.content {
padding: 30px;
}
.section {
margin-bottom: 30px;
}
.section-title {
font-size: 16px;
font-weight: 600;
color: #333;
margin-bottom: 15px;
padding-bottom: 10px;
border-bottom: 2px solid #f0f0f0;
}
.form-group {
margin-bottom: 20px;
}
label {
display: block;
font-size: 14px;
font-weight: 500;
color: #555;
margin-bottom: 8px;
}
input[type="text"],
input[type="password"],
input[type="url"] {
width: 100%;
padding: 12px 15px;
border: 2px solid #e0e0e0;
border-radius: 6px;
font-size: 14px;
transition: border-color 0.2s;
}
input[type="text"]:focus,
input[type="password"]:focus,
input[type="url"]:focus {
outline: none;
border-color: #667eea;
}
.help-text {
font-size: 12px;
color: #888;
margin-top: 5px;
}
.checkbox-group {
display: flex;
align-items: center;
gap: 10px;
}
input[type="checkbox"] {
width: 18px;
height: 18px;
cursor: pointer;
}
.btn {
padding: 12px 30px;
border: none;
border-radius: 6px;
font-size: 14px;
font-weight: 500;
cursor: pointer;
transition: all 0.2s;
}
.btn-primary {
background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
color: white;
}
.btn-primary:hover {
transform: translateY(-1px);
box-shadow: 0 4px 12px rgba(102, 126, 234, 0.4);
}
.btn-secondary {
background: #f0f0f0;
color: #555;
margin-left: 10px;
}
.btn-secondary:hover {
background: #e0e0e0;
}
.status {
padding: 12px 15px;
border-radius: 6px;
margin-top: 15px;
font-size: 14px;
display: none;
}
.status.success {
display: block;
background: #e8f5e9;
color: #2e7d32;
}
.status.error {
display: block;
background: #ffebee;
color: #c62828;
}
.info-box {
background: #e3f2fd;
border-left: 4px solid #2196f3;
padding: 15px;
border-radius: 4px;
margin-bottom: 20px;
}
.info-box p {
font-size: 13px;
color: #1565c0;
line-height: 1.5;
}
.info-box code {
background: rgba(255,255,255,0.5);
padding: 2px 6px;
border-radius: 3px;
font-family: 'Courier New', monospace;
}
</style>
</head>
<body>
<div class="container">
<div class="header">
<h1>⚙️ InsightFlow Clipper 设置</h1>
<p>配置您的知识库连接</p>
<div class="container">
<div class="header">
<h1>⚙️ InsightFlow 设置</h1>
<p>配置您的知识库连接</p>
</div>
<div class="content">
<div class="info-box">
<p>
要使用 Chrome 扩展,您需要在 InsightFlow 中创建一个 Chrome 扩展令牌。
<br>
前往 <code>插件管理 > Chrome 扩展</code> 创建令牌。
</p>
</div>
<div class="section">
<div class="section-title">服务器配置</div>
<div class="form-group">
<label for="serverUrl">服务器地址</label>
<input type="url" id="serverUrl" placeholder="https://your-insightflow.com">
<p class="help-text">您的 InsightFlow 服务器地址</p>
</div>
<div class="form-group">
<label for="apiKey">API 令牌</label>
<input type="password" id="apiKey" placeholder="if_ext_xxxxxxxx">
<p class="help-text">从 InsightFlow 获取的 Chrome 扩展令牌</p>
</div>
</div>
<div class="section">
<div class="section-title">偏好设置</div>
<div class="form-group">
<div class="checkbox-group">
<input type="checkbox" id="showFloatingButton">
<label for="showFloatingButton" style="margin: 0;">显示浮动按钮</label>
</div>
<p class="help-text">在网页右下角显示快速剪辑按钮</p>
</div>
<div class="form-group">
<div class="checkbox-group">
<input type="checkbox" id="autoSync">
<label for="autoSync" style="margin: 0;">自动同步</label>
</div>
<p class="help-text">剪辑后自动同步到服务器</p>
</div>
</div>
<div class="actions">
<button class="btn btn-primary" id="saveBtn">保存设置</button>
<button class="btn btn-secondary" id="testBtn">测试连接</button>
</div>
<div class="status" id="status"></div>
</div>
</div>
<div class="card">
<div class="card-title">
<svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
<path d="M13 10V3L4 14h7v7l9-11h-7z"/>
</svg>
服务器连接
</div>
<div class="info-box">
<h4>如何获取 API Key</h4>
<p>
1. 登录 InsightFlow 控制台<br>
2. 进入「插件管理」页面<br>
3. 创建 Chrome 插件并复制 API Key
</p>
</div>
<div class="form-group">
<label class="form-label">服务器地址</label>
<input type="text" id="serverUrl" class="form-input" placeholder="http://122.51.127.111:18000">
<p class="form-hint">InsightFlow 服务器的 URL 地址</p>
</div>
<div class="form-group">
<label class="form-label">API Key</label>
<input type="password" id="apiKey" class="form-input" placeholder="if_plugin_xxxxxxxx...">
<p class="form-hint">从 InsightFlow 控制台获取的插件 API Key</p>
</div>
<div class="form-group">
<button id="testBtn" class="btn btn-secondary">测试连接</button>
<div id="testResult"></div>
</div>
</div>
<div class="card">
<div class="card-title">
<svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
<path d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z"/>
<path d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"/>
</svg>
默认设置
</div>
<div class="form-group">
<label class="form-label">默认项目</label>
<select id="defaultProject" class="form-input">
<option value="">不设置默认项目</option>
</select>
<p class="form-hint">保存内容时默认导入的项目</p>
</div>
</div>
<div class="card">
<div class="card-title">
<svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
<path d="M9 12h6m-6 4h6m2 5H7a2 2 0 01-2-2V5a2 2 0 012-2h5.586a1 1 0 01.707.293l5.414 5.414a1 1 0 01.293.707V19a2 2 0 01-2 2z"/>
</svg>
使用说明
</div>
<ul class="shortcut-list">
<li>
<span>保存当前页面</span>
<span class="shortcut-key">点击扩展图标</span>
</li>
<li>
<span>保存选中文本</span>
<span class="shortcut-key">右键 → 保存到 InsightFlow</span>
</li>
<li>
<span>快速保存选中内容</span>
<span class="shortcut-key">选中文本后点击浮动按钮</span>
</li>
<li>
<span>选择项目保存</span>
<span class="shortcut-key">选中文本后点击"选择项目"</span>
</li>
</ul>
</div>
<div class="actions">
<button id="resetBtn" class="btn btn-secondary">重置</button>
<button id="saveBtn" class="btn btn-primary">保存设置</button>
</div>
<div class="footer">
<p>InsightFlow Clipper v1.0.0</p>
<p><a href="#" id="openConsole">打开 InsightFlow 控制台</a> | <a href="#" id="helpLink">帮助文档</a></p>
</div>
</div>
<script src="options.js"></script>
<script src="options.js"></script>
</body>
</html>