From 49d354bac12001a36bdd18248142bfc005811455 Mon Sep 17 00:00:00 2001
From: Sarah Wooders <sarahwooders@gmail.com>
Date: Wed, 4 Feb 2026 16:22:29 -0800
Subject: [PATCH] fix(core): pass org_id to dulwich via header for git HTTP
 (#9291)

---
 letta/server/rest_api/routers/v1/git_http.py | 79 +++++++++++++++-----
 1 file changed, 59 insertions(+), 20 deletions(-)

diff --git a/letta/server/rest_api/routers/v1/git_http.py b/letta/server/rest_api/routers/v1/git_http.py
index c2d33266..002bc992 100644
--- a/letta/server/rest_api/routers/v1/git_http.py
+++ b/letta/server/rest_api/routers/v1/git_http.py
@@ -29,6 +29,7 @@ successful `git-receive-pack`.
 from __future__ import annotations
 
 import asyncio
+import contextvars
 import os
 import shutil
 import tempfile
@@ -55,11 +56,12 @@ except ImportError:  # pragma: no cover
     make_server = None  # type: ignore[assignment]
     _DULWICH_AVAILABLE = False
 
-from fastapi import APIRouter, Request
+from fastapi import APIRouter, Depends, Request
 from fastapi.responses import JSONResponse, StreamingResponse
 from starlette.background import BackgroundTask
 
 from letta.log import get_logger
+from letta.server.rest_api.dependencies import HeaderParams, get_headers, get_letta_server
 
 logger = get_logger(__name__)
 
@@ -73,6 +75,9 @@ _server_instance = None
 _repo_cache: Dict[str, str] = {}
 _repo_locks: Dict[str, threading.Lock] = {}
 
+# org_id for the currently-handled dulwich request (set by a WSGI wrapper).
+_current_org_id: contextvars.ContextVar[Optional[str]] = contextvars.ContextVar("letta_git_http_org_id", default=None)
+
 # Dulwich server globals
 _dulwich_server = None
 _dulwich_thread: Optional[threading.Thread] = None
@@ -143,13 +148,12 @@ def stop_dulwich_server() -> None:
         logger.exception("Failed to shutdown dulwich server")
 
 
-def _default_org_id() -> str:
-    if _server_instance is None:
-        raise RuntimeError("Server instance not set")
-    default_user = getattr(_server_instance, "default_user", None)
-    org_id = getattr(default_user, "organization_id", None)
+def _require_current_org_id() -> str:
+    """Read the org_id set by the WSGI wrapper for the current request."""
+
+    org_id = _current_org_id.get()
     if not org_id:
-        raise RuntimeError("Unable to infer org_id for git HTTP path")
+        raise RuntimeError("Missing org_id for git HTTP request")
     return org_id
 
 
@@ -185,7 +189,7 @@ class GCSBackend(Backend):
             raise ValueError(f"Invalid repository path (expected /{{agent_id}}/state.git): {path}")
 
         agent_id = parts[0]
-        org_id = _default_org_id()
+        org_id = _require_current_org_id()
 
         cache_key = f"{org_id}/{agent_id}"
         logger.info("GCSBackend.open_repository: org=%s agent=%s", org_id, agent_id)
@@ -398,13 +402,11 @@ async def _sync_after_push(org_id: str, agent_id: str) -> None:
     shutil.rmtree(os.path.dirname(repo_path), ignore_errors=True)
 
 
-def _parse_org_agent_from_repo_path(path: str) -> Optional[tuple[str, str]]:
-    """Extract (org_id, agent_id) from a git HTTP path.
+def _parse_agent_id_from_repo_path(path: str) -> Optional[str]:
+    """Extract agent_id from a git HTTP path.
 
     Expected path form:
       - {agent_id}/state.git/...
-
-    org_id is inferred from the running server instance.
     """
 
     parts = path.strip("/").split("/")
@@ -414,7 +416,7 @@ def _parse_org_agent_from_repo_path(path: str) -> Optional[tuple[str, str]]:
     if parts[1] != "state.git":
         return None
 
-    return _default_org_id(), parts[0]
+    return parts[0]
 
 
 def _filter_out_hop_by_hop_headers(headers: Iterable[tuple[str, str]]) -> Dict[str, str]:
@@ -440,7 +442,12 @@ def _filter_out_hop_by_hop_headers(headers: Iterable[tuple[str, str]]) -> Dict[s
 
 
 @router.api_route("/{path:path}", methods=["GET", "POST", "PUT", "PATCH", "DELETE", "HEAD", "OPTIONS"])  # pragma: no cover
-async def proxy_git_http(path: str, request: Request):
+async def proxy_git_http(
+    path: str,
+    request: Request,
+    server=Depends(get_letta_server),
+    headers: HeaderParams = Depends(get_headers),
+):
     """Proxy `/v1/git/*` requests to the local dulwich WSGI server."""
 
     if not _DULWICH_AVAILABLE:
@@ -462,6 +469,13 @@ async def proxy_git_http(path: str, request: Request):
     req_headers.pop("host", None)
     req_headers.pop("content-length", None)
 
+    # Resolve org_id from the authenticated actor + agent and forward to dulwich.
+    agent_id = _parse_agent_id_from_repo_path(path)
+    if agent_id is not None:
+        actor = await server.user_manager.get_actor_or_default_async(actor_id=headers.actor_id)
+        agent = await server.agent_manager.get_agent_by_id_async(agent_id=agent_id, actor=actor, include_relationships=[])
+        req_headers["x-organization-id"] = agent.organization_id
+
     async def _body_iter():
         async for chunk in request.stream():
             yield chunk
@@ -480,11 +494,15 @@ async def proxy_git_http(path: str, request: Request):
 
     # If this was a push, trigger our sync.
     if request.method == "POST" and path.endswith("git-receive-pack") and upstream.status_code < 400:
-        parsed = _parse_org_agent_from_repo_path(path)
-        if parsed is not None:
-            org_id, agent_id = parsed
-            # Fire-and-forget; do not block git client response.
-            asyncio.create_task(_sync_after_push(org_id, agent_id))
+        agent_id = _parse_agent_id_from_repo_path(path)
+        if agent_id is not None:
+            try:
+                actor = await server.user_manager.get_actor_or_default_async(actor_id=headers.actor_id)
+                agent = await server.agent_manager.get_agent_by_id_async(agent_id=agent_id, actor=actor, include_relationships=[])
+                # Fire-and-forget; do not block git client response.
+                asyncio.create_task(_sync_after_push(agent.organization_id, agent_id))
+            except Exception:
+                logger.exception("Failed to trigger post-push sync (agent_id=%s)", agent_id)
 
     async def _aclose_upstream_and_client() -> None:
         try:
@@ -501,6 +519,27 @@ async def proxy_git_http(path: str, request: Request):
     )
 
 
+def _org_header_middleware(app):
+    """WSGI wrapper to capture org_id from proxied requests.
+
+    FastAPI proxies requests to the dulwich server and injects `X-Organization-Id`.
+    Dulwich itself only passes repository *paths* into the Backend, so we capture
+    the org_id from the WSGI environ and stash it in a contextvar.
+    """
+
+    def _wrapped(environ, start_response):
+        token = None
+        try:
+            org_id = environ.get("HTTP_X_ORGANIZATION_ID")
+            token = _current_org_id.set(org_id)
+            return app(environ, start_response)
+        finally:
+            if token is not None:
+                _current_org_id.reset(token)
+
+    return _wrapped
+
+
 # dulwich WSGI app (optional)
 _backend = GCSBackend()
-_git_wsgi_app = HTTPGitApplication(_backend) if _DULWICH_AVAILABLE and HTTPGitApplication is not None else None
+_git_wsgi_app = _org_header_middleware(HTTPGitApplication(_backend)) if _DULWICH_AVAILABLE and HTTPGitApplication is not None else None