refactor: use select for API key auth lookups (#34146)

Co-authored-by: Asuka Minato <i@asukaminato.eu.org>
2026-04-05 06:19:25 +08:00 · 2026-03-28 00:01:05 +00:00
parent 865ee473ce
commit c5eae67ac9
1 changed files with 7 additions and 8 deletions
--- a/api/services/auth/api_key_auth_service.py
+++ b/api/services/auth/api_key_auth_service.py
@@ -35,15 +35,13 @@ class ApiKeyAuthService:

    @staticmethod
    def get_auth_credentials(tenant_id: str, category: str, provider: str):
-        data_source_api_key_bindings = (
-            db.session.query(DataSourceApiKeyAuthBinding)
-            .where(
+        data_source_api_key_bindings = db.session.scalar(
+            select(DataSourceApiKeyAuthBinding).where(
                DataSourceApiKeyAuthBinding.tenant_id == tenant_id,
                DataSourceApiKeyAuthBinding.category == category,
                DataSourceApiKeyAuthBinding.provider == provider,
                DataSourceApiKeyAuthBinding.disabled.is_(False),
            )
-            .first()
        )
        if not data_source_api_key_bindings:
            return None
@@ -54,10 +52,11 @@ class ApiKeyAuthService:

    @staticmethod
    def delete_provider_auth(tenant_id: str, binding_id: str):
-        data_source_api_key_binding = (
-            db.session.query(DataSourceApiKeyAuthBinding)
-            .where(DataSourceApiKeyAuthBinding.tenant_id == tenant_id, DataSourceApiKeyAuthBinding.id == binding_id)
-            .first()
+        data_source_api_key_binding = db.session.scalar(
+            select(DataSourceApiKeyAuthBinding).where(
+                DataSourceApiKeyAuthBinding.tenant_id == tenant_id,
+                DataSourceApiKeyAuthBinding.id == binding_id,
+            )
        )
        if data_source_api_key_binding:
            db.session.delete(data_source_api_key_binding)