graphql-engine/server/tests-py/queries/graphql_mutation/update/permissions/schema_setup.yaml

type: bulk
args:

#Author table
- type: run_sql
  args:
    sql: |
      create table author(
          id serial primary key,
          name text unique,
          user_id int
      );
- type: track_table
  args:
    schema: public
    name: author

#Article table
- type: run_sql
  args:
    sql: |
      CREATE TABLE article (
        id SERIAL,
        title TEXT,
        version TEXT,
        content TEXT,
        author_id INTEGER REFERENCES author(id),
        is_published BOOLEAN,
        published_on TIMESTAMP,
        PRIMARY KEY (id,version)
      );

      CREATE FUNCTION fetch_articles(search text, author_row author)
      RETURNS SETOF article AS $$
        SELECT *
        FROM article
        WHERE
          ( title ilike ('%' || search || '%')
            OR content ilike ('%' || search || '%')
          ) AND author_id = author_row.id
      $$ LANGUAGE sql STABLE;

- type: track_table
  args:
    schema: public
    name: article

- type: add_computed_field
  args:
    table: author
    name: get_articles
    definition:
      function: fetch_articles
      table_argument: author_row

#Object relationship
- type: create_object_relationship
  args:
    table: article
    name: author
    using:
      foreign_key_constraint_on: author_id

#Array relationship
- type: create_array_relationship
  args:
    table: author
    name: articles
    using:
      foreign_key_constraint_on:
        table: article
        column: author_id

#Person table

- type: run_sql
  args:
    sql: |
      CREATE TABLE person (
        id SERIAL PRIMARY KEY,
        details JSONB NOT NULL
      )
- type: track_table
  args:
    schema: public
    name: person


#Author select permission for user
- type: create_select_permission
  args:
    table: author
    role: user
    permission:
      columns: [id, name]
      filter:
        id: X-HASURA-USER-ID

#Author update permission for user
- type: create_update_permission
  args:
    table: author
    role: user
    permission:
      columns:
      - name
      filter:
        id: X-Hasura-User-Id

#Article select permission for user
- type: create_select_permission
  args:
    table: article
    role: user
    permission:
      columns: '*'
      filter:
        $or:
          - author_id: X-HASURA-USER-ID
          - is_published: true

#Article update permission for user
#Allow modifications only on unpublished articles
- type: create_update_permission
  args:
    table: article
    role: user
    permission:
      columns:
      - title
      - content
      - is_published
      - published_on
      - version
      filter:
        $and:
          - author_id: X-HASURA-USER-ID
          - is_published: false
      check:
        is_published: false

#Resident table
- type: run_sql
  args:
    sql: |
      CREATE TABLE resident (
        id SERIAL PRIMARY KEY,
        name TEXT NOT NULL,
        age INTEGER NOT NULL,
        city TEXT NOT NULL
      );

- type: track_table
  args:
    name: resident
    schema: public

#Permissions
- type: create_select_permission
  args:
    table: resident
    role: user1
    permission:
      filter: {}
      columns: '*'
- type: create_update_permission
  args:
    table: resident
    role: user1
    permission:
      filter: {}
      columns: '*'
      set:
        city: melbourne

- type: create_select_permission
  args:
    table: resident
    role: user2
    permission:
      filter: {}
      columns: '*'
- type: create_update_permission
  args:
    table: resident
    role: user2
    permission:
      filter: {}
      columns: '*'
      set:
        city: X-Hasura-City

# Tables to test '_exist' field
- type: run_sql
  args:
    sql: |
      create table "user" (
        id serial primary key,
        name text not null unique,
        is_admin boolean default false
      );

      create table account (
        id serial primary key,
        account_no integer not null
      );

- type: track_table
  args:
    name: user
    schema: public

- type: track_table
  args:
    name: account
    schema: public

- type: create_update_permission
  args:
    table: account
    role: user
    permission:
      columns:
      - account_no
      filter:
        _exists:
          _table: user
          _where:
            id: X-Hasura-User-Id
            is_admin: true

- type: create_select_permission
  args:
    table: account
    role: user
    permission:
      columns:
      - id
      - account_no
      filter:
        _exists:
          _table: user
          _where:
            id: X-Hasura-User-Id
            is_admin: true
add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00			`type: bulk`
			`args:`

			`#Author table`
			`- type: run_sql`
			`args:`
			`sql: \|`
			`create table author(`
			`id serial primary key,`
server: fix primary key mutations issue (closes #6255) (#129) * Add update_by_pk test with more interesting permissions. * Add new delete test with more interesting permissions. * Fix byPk operations not providing all columns. * Empty commit to unlock ci. GitOrigin-RevId: eb1ca2cc4c59f421bc5fedf49bef91aa4bbdca94 2020-12-02 17:12:06 +03:00			`name text unique,`
			`user_id int`
add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00			`);`
			`- type: track_table`
			`args:`
			`schema: public`
			`name: author`

			`#Article table`
			`- type: run_sql`
			`args:`
			`sql: \|`
			`CREATE TABLE article (`
			`id SERIAL,`
			`title TEXT,`
			`version TEXT,`
			`content TEXT,`
			`author_id INTEGER REFERENCES author(id),`
			`is_published BOOLEAN,`
			`published_on TIMESTAMP,`
			`PRIMARY KEY (id,version)`
fix postgres query error when computed fields included in mutation response, fix #4035 2020-03-10 15:45:47 +03:00			`);`

			`CREATE FUNCTION fetch_articles(search text, author_row author)`
			`RETURNS SETOF article AS $$`
			`SELECT *`
			`FROM article`
			`WHERE`
			`( title ilike ('%' \|\| search \|\| '%')`
			`OR content ilike ('%' \|\| search \|\| '%')`
			`) AND author_id = author_row.id`
			`$$ LANGUAGE sql STABLE;`

add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00			`- type: track_table`
			`args:`
			`schema: public`
			`name: article`

fix postgres query error when computed fields included in mutation response, fix #4035 2020-03-10 15:45:47 +03:00			`- type: add_computed_field`
			`args:`
			`table: author`
			`name: get_articles`
			`definition:`
			`function: fetch_articles`
			`table_argument: author_row`
add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00
			`#Object relationship`
			`- type: create_object_relationship`
			`args:`
			`table: article`
			`name: author`
			`using:`
			`foreign_key_constraint_on: author_id`

			`#Array relationship`
			`- type: create_array_relationship`
			`args:`
			`table: author`
			`name: articles`
			`using:`
			`foreign_key_constraint_on:`
			`table: article`
			`column: author_id`

			`#Person table`

			`- type: run_sql`
			`args:`
			`sql: \|`
			`CREATE TABLE person (`
			`id SERIAL PRIMARY KEY,`
			`details JSONB NOT NULL`
			`)`
			`- type: track_table`
			`args:`
			`schema: public`
			`name: person`


			`#Author select permission for user`
			`- type: create_select_permission`
			`args:`
			`table: author`
			`role: user`
			`permission:`
server: fix primary key mutations issue (closes #6255) (#129) * Add update_by_pk test with more interesting permissions. * Add new delete test with more interesting permissions. * Fix byPk operations not providing all columns. * Empty commit to unlock ci. GitOrigin-RevId: eb1ca2cc4c59f421bc5fedf49bef91aa4bbdca94 2020-12-02 17:12:06 +03:00			`columns: [id, name]`
add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00			`filter:`
			`id: X-HASURA-USER-ID`

fix postgres query error when computed fields included in mutation response, fix #4035 2020-03-10 15:45:47 +03:00			`#Author update permission for user`
			`- type: create_update_permission`
			`args:`
			`table: author`
			`role: user`
			`permission:`
			`columns:`
			`- name`
			`filter:`
			`id: X-Hasura-User-Id`

add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00			`#Article select permission for user`
			`- type: create_select_permission`
			`args:`
			`table: article`
			`role: user`
			`permission:`
			`columns: '*'`
			`filter:`
			`$or:`
			`- author_id: X-HASURA-USER-ID`
			`- is_published: true`

			`#Article update permission for user`
			`#Allow modifications only on unpublished articles`
			`- type: create_update_permission`
			`args:`
			`table: article`
			`role: user`
			`permission:`
			`columns:`
			`- title`
			`- content`
			`- is_published`
			`- published_on`
			`- version`
			`filter:`
			`$and:`
			`- author_id: X-HASURA-USER-ID`
			`- is_published: false`
Add check expresion to update permissions (close #384) (#3804) * Add check expresion to update permissions (close #384) * wip on conflict behavior * Handle upserts for views properly * Use insert check if there is no update check * Fix the test * Improve error message slightly Co-authored-by: Vamshi Surabhi <0x777@users.noreply.github.com> 2020-02-13 10:38:49 +03:00			`check:`
			`is_published: false`
add python based tests, remove haskell tests this does not generate coverage report yet 2018-10-04 15:44:15 +03:00
support column presets in update mutation (closes #1449, closes #1464) (#1473) Also restricts altering type of columns which are used in presets 2019-02-11 15:45:30 +03:00			`#Resident table`
			`- type: run_sql`
			`args:`
			`sql: \|`
			`CREATE TABLE resident (`
			`id SERIAL PRIMARY KEY,`
			`name TEXT NOT NULL,`
			`age INTEGER NOT NULL,`
			`city TEXT NOT NULL`
			`);`
run graphql tests on both http and websocket; add parallelism (close #1868) (#1921) Examples 1) ` pytest --hge-urls "http://127.0.0.1:8080" --pg-urls "postgresql://admin@127.0.0.1:5432/hge_tests" -vv ` 2) `pytest --hge-urls "http://127.0.0.1:8080" "http://127.0.0.1:8081" --pg-urls "postgresql://admin@127.0.0.1:5432/hge_tests" "postgresql://admin@127.0.0.1:5432/hge_tests2" -vv ` ### Solution and Design <!-- How is this issue solved/fixed? What is the design? --> <!-- It's better if we elaborate --> #### Reducing execution time of tests - The Schema setup and teardown, which were earlier done per test method, usually takes around 1 sec. - For mutations, the model has now been changed to only do schema setup and teardown once per test class. - A data setup and teardown will be done once per test instead (usually takes ~10ms). - For the test class to get this behaviour, one can can extend the class `DefaultTestMutations`. - The function `dir()` should be define which returns the location of the configuration folder. - Inside the configuration folder, there should be - Files `<conf_dir>/schema_setup.yaml` and `<conf_dir>/schema_teardown.yaml`, which has the metadata query executed during schema setup and teardown respectively - Files named `<conf_dir>/values_setup.yaml` and `<conf_dir>/values_teardown.yaml`. These files are executed to setup and remove data from the tables respectively. #### Running Graphql queries on both http and websockets - Each GraphQL query/mutation is run on the both HTTP and websocket protocols - Pytests test parameterisation is used to achieve this - The errors over websockets are slightly different from that on HTTP - The code takes care of converting the errors in HTTP to errors in websockets #### Parallel executation of tests. - The plugin pytest-xdist helps in running tests on parallel workers. - We are using this plugin to group tests by file and run on different workers. - Parallel test worker processes operate on separate postgres databases(and separate graphql-engines connected to these databases). Thus tests on one worker will not affect the tests on the other worker. - With two workers, this decreases execution times by half, as the tests on event triggers usually takes a long time, but does not consume much CPU. 2019-04-08 10:22:38 +03:00
support column presets in update mutation (closes #1449, closes #1464) (#1473) Also restricts altering type of columns which are used in presets 2019-02-11 15:45:30 +03:00			`- type: track_table`
			`args:`
			`name: resident`
			`schema: public`

			`#Permissions`
			`- type: create_select_permission`
			`args:`
			`table: resident`
			`role: user1`
			`permission:`
			`filter: {}`
			`columns: '*'`
			`- type: create_update_permission`
			`args:`
			`table: resident`
			`role: user1`
			`permission:`
			`filter: {}`
			`columns: '*'`
			`set:`
			`city: melbourne`

			`- type: create_select_permission`
			`args:`
			`table: resident`
			`role: user2`
			`permission:`
			`filter: {}`
			`columns: '*'`
			`- type: create_update_permission`
			`args:`
			`table: resident`
			`role: user2`
			`permission:`
			`filter: {}`
			`columns: '*'`
			`set:`
			`city: X-Hasura-City`
allow creating permissions with conditions spanning tables (close #2512) (#2701) 2019-09-05 10:34:53 +03:00
			`# Tables to test '_exist' field`
			`- type: run_sql`
			`args:`
			`sql: \|`
			`create table "user" (`
			`id serial primary key,`
			`name text not null unique,`
			`is_admin boolean default false`
			`);`

			`create table account (`
			`id serial primary key,`
			`account_no integer not null`
			`);`

			`- type: track_table`
			`args:`
			`name: user`
			`schema: public`

			`- type: track_table`
			`args:`
			`name: account`
			`schema: public`

			`- type: create_update_permission`
			`args:`
			`table: account`
			`role: user`
			`permission:`
			`columns:`
			`- account_no`
			`filter:`
			`_exists:`
			`_table: user`
			`_where:`
			`id: X-Hasura-User-Id`
			`is_admin: true`

			`- type: create_select_permission`
			`args:`
			`table: account`
			`role: user`
			`permission:`
			`columns:`
			`- id`
			`- account_no`
			`filter:`
			`_exists:`
			`_table: user`
			`_where:`
			`id: X-Hasura-User-Id`
			`is_admin: true`