2021-09-22 18:34:53 +03:00
|
|
|
{-# LANGUAGE ApplicativeDo #-}
|
2022-04-22 22:53:12 +03:00
|
|
|
{-# LANGUAGE TemplateHaskellQuotes #-}
|
2021-02-23 20:37:27 +03:00
|
|
|
{-# OPTIONS_GHC -fno-warn-orphans #-}
|
|
|
|
|
|
2022-01-11 01:54:51 +03:00
|
|
|
-- | MSSQL Instances Schema
|
|
|
|
|
--
|
|
|
|
|
-- Defines a 'Hasura.GraphQL.Schema.Backend.BackendSchema' type class instance for MSSQL.
|
2021-02-23 20:37:27 +03:00
|
|
|
module Hasura.Backends.MSSQL.Instances.Schema () where
|
|
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
import Data.Has
|
|
|
|
|
import Data.HashMap.Strict qualified as Map
|
|
|
|
|
import Data.List.NonEmpty qualified as NE
|
|
|
|
|
import Data.Text.Encoding (encodeUtf8)
|
|
|
|
|
import Data.Text.Extended
|
|
|
|
|
import Database.ODBC.SQLServer qualified as ODBC
|
2021-12-31 13:56:06 +03:00
|
|
|
import Hasura.Backends.MSSQL.Schema.IfMatched
|
2021-12-22 14:04:33 +03:00
|
|
|
import Hasura.Backends.MSSQL.Types.Insert (BackendInsert (..))
|
2021-11-26 16:47:12 +03:00
|
|
|
import Hasura.Backends.MSSQL.Types.Internal qualified as MSSQL
|
|
|
|
|
import Hasura.Backends.MSSQL.Types.Update (BackendUpdate (..), UpdateOperator (..))
|
2021-09-24 01:56:37 +03:00
|
|
|
import Hasura.Base.Error
|
|
|
|
|
import Hasura.GraphQL.Parser hiding (EnumValueInfo, field)
|
|
|
|
|
import Hasura.GraphQL.Parser qualified as P
|
2022-04-18 22:43:00 +03:00
|
|
|
import Hasura.GraphQL.Parser.Constants qualified as G
|
2021-09-24 01:56:37 +03:00
|
|
|
import Hasura.GraphQL.Parser.Internal.Parser hiding (field)
|
|
|
|
|
import Hasura.GraphQL.Schema.Backend
|
|
|
|
|
import Hasura.GraphQL.Schema.BoolExp
|
|
|
|
|
import Hasura.GraphQL.Schema.Build qualified as GSB
|
|
|
|
|
import Hasura.GraphQL.Schema.Common
|
|
|
|
|
import Hasura.GraphQL.Schema.Select
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
import Hasura.GraphQL.Schema.Table
|
2021-11-26 16:47:12 +03:00
|
|
|
import Hasura.GraphQL.Schema.Update qualified as SU
|
2021-09-24 01:56:37 +03:00
|
|
|
import Hasura.Prelude
|
|
|
|
|
import Hasura.RQL.IR
|
2021-10-01 15:52:19 +03:00
|
|
|
import Hasura.RQL.IR.Insert qualified as IR
|
2021-09-24 01:56:37 +03:00
|
|
|
import Hasura.RQL.IR.Select qualified as IR
|
2021-12-15 20:07:21 +03:00
|
|
|
import Hasura.RQL.Types hiding (BackendInsert)
|
2021-09-24 01:56:37 +03:00
|
|
|
import Language.GraphQL.Draft.Syntax qualified as G
|
2021-02-23 20:37:27 +03:00
|
|
|
|
|
|
|
|
----------------------------------------------------------------
|
2022-01-03 20:16:24 +03:00
|
|
|
|
|
|
|
|
-- * BackendSchema instance
|
2021-02-23 20:37:27 +03:00
|
|
|
|
|
|
|
|
instance BackendSchema 'MSSQL where
|
|
|
|
|
-- top level parsers
|
2021-09-24 01:56:37 +03:00
|
|
|
buildTableQueryFields = GSB.buildTableQueryFields
|
|
|
|
|
buildTableRelayQueryFields = msBuildTableRelayQueryFields
|
2022-04-22 22:53:12 +03:00
|
|
|
buildTableStreamingSubscriptionFields = GSB.buildTableStreamingSubscriptionFields
|
|
|
|
|
buildTableInsertMutationFields = GSB.buildTableInsertMutationFields backendInsertParser
|
2021-11-19 20:05:01 +03:00
|
|
|
buildTableDeleteMutationFields = GSB.buildTableDeleteMutationFields
|
2021-12-15 16:55:41 +03:00
|
|
|
buildTableUpdateMutationFields = msBuildTableUpdateMutationFields
|
2021-11-26 16:47:12 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
buildFunctionQueryFields = msBuildFunctionQueryFields
|
|
|
|
|
buildFunctionRelayQueryFields = msBuildFunctionRelayQueryFields
|
|
|
|
|
buildFunctionMutationFields = msBuildFunctionMutationFields
|
2021-06-15 18:53:20 +03:00
|
|
|
|
2021-02-23 20:37:27 +03:00
|
|
|
-- backend extensions
|
2021-09-24 01:56:37 +03:00
|
|
|
relayExtension = Nothing
|
|
|
|
|
nodesAggExtension = Just ()
|
2022-04-22 22:53:12 +03:00
|
|
|
streamSubscriptionExtension = Nothing
|
2021-06-15 18:53:20 +03:00
|
|
|
|
|
|
|
|
-- table arguments
|
|
|
|
|
tableArguments = msTableArgs
|
2021-10-01 15:52:19 +03:00
|
|
|
mkRelationshipParser = msMkRelationshipParser
|
2021-06-15 18:53:20 +03:00
|
|
|
|
|
|
|
|
-- individual components
|
2021-09-24 01:56:37 +03:00
|
|
|
columnParser = msColumnParser
|
|
|
|
|
jsonPathArg = msJsonPathArg
|
|
|
|
|
orderByOperators = msOrderByOperators
|
|
|
|
|
comparisonExps = msComparisonExps
|
2022-01-18 17:53:44 +03:00
|
|
|
countTypeInput = msCountTypeInput
|
2021-02-23 20:37:27 +03:00
|
|
|
aggregateOrderByCountType = MSSQL.IntegerType
|
2021-09-24 01:56:37 +03:00
|
|
|
computedField = msComputedField
|
|
|
|
|
node = msNode
|
2021-06-15 18:53:20 +03:00
|
|
|
|
2021-02-23 20:37:27 +03:00
|
|
|
----------------------------------------------------------------
|
2022-01-03 20:16:24 +03:00
|
|
|
|
|
|
|
|
-- * Top level parsers
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msBuildTableRelayQueryFields ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
TableName 'MSSQL ->
|
|
|
|
|
TableInfo 'MSSQL ->
|
|
|
|
|
G.Name ->
|
|
|
|
|
NESeq (ColumnInfo 'MSSQL) ->
|
2021-11-26 00:07:53 +03:00
|
|
|
m [a]
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msBuildTableRelayQueryFields _sourceName _tableName _tableInfo _gqlName _pkeyColumns =
|
2021-06-15 18:53:20 +03:00
|
|
|
pure []
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-12-15 20:07:21 +03:00
|
|
|
backendInsertParser ::
|
|
|
|
|
forall m r n.
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
TableInfo 'MSSQL ->
|
|
|
|
|
m (InputFieldsParser n (BackendInsert (UnpreparedValue 'MSSQL)))
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
backendInsertParser sourceName tableInfo = do
|
|
|
|
|
ifMatched <- ifMatchedFieldParser sourceName tableInfo
|
2021-12-31 13:56:06 +03:00
|
|
|
let _biIdentityColumns = _tciExtraTableMetadata $ _tiCoreInfo tableInfo
|
2021-12-15 20:07:21 +03:00
|
|
|
pure $ do
|
2021-12-31 13:56:06 +03:00
|
|
|
_biIfMatched <- ifMatched
|
2021-12-15 20:07:21 +03:00
|
|
|
pure $ BackendInsert {..}
|
2021-12-09 12:05:42 +03:00
|
|
|
|
2021-12-15 16:55:41 +03:00
|
|
|
msBuildTableUpdateMutationFields ::
|
2021-09-24 01:56:37 +03:00
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
TableName 'MSSQL ->
|
|
|
|
|
TableInfo 'MSSQL ->
|
|
|
|
|
G.Name ->
|
2021-12-07 16:12:02 +03:00
|
|
|
m [FieldParser n (AnnotatedUpdateG 'MSSQL (RemoteRelationshipField UnpreparedValue) (UnpreparedValue 'MSSQL))]
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msBuildTableUpdateMutationFields sourceName tableName tableInfo gqlName = do
|
|
|
|
|
fieldParsers <- runMaybeT do
|
|
|
|
|
tablePerms <- MaybeT $ tablePermissions tableInfo
|
|
|
|
|
updatePerms <- hoistMaybe $ _permUpd tablePerms
|
|
|
|
|
let mkBackendUpdate backendUpdateTableInfo =
|
|
|
|
|
(fmap . fmap) BackendUpdate $
|
|
|
|
|
SU.buildUpdateOperators
|
|
|
|
|
(UpdateSet <$> SU.presetColumns updatePerms)
|
|
|
|
|
[ UpdateSet <$> SU.setOp,
|
|
|
|
|
UpdateInc <$> SU.incOp
|
|
|
|
|
]
|
|
|
|
|
backendUpdateTableInfo
|
|
|
|
|
lift $
|
|
|
|
|
GSB.buildTableUpdateMutationFields
|
|
|
|
|
mkBackendUpdate
|
|
|
|
|
sourceName
|
|
|
|
|
tableName
|
|
|
|
|
tableInfo
|
|
|
|
|
gqlName
|
|
|
|
|
pure . fold @Maybe @[_] $ fieldParsers
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2022-04-18 22:43:00 +03:00
|
|
|
{-
|
|
|
|
|
NOTE: We currently use 'GSB.buildTableDeleteMutationFields' instead of
|
|
|
|
|
this. Should we save it?
|
|
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msBuildTableDeleteMutationFields ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
TableName 'MSSQL ->
|
|
|
|
|
TableInfo 'MSSQL ->
|
|
|
|
|
G.Name ->
|
|
|
|
|
DelPermInfo 'MSSQL ->
|
|
|
|
|
Maybe (SelPermInfo 'MSSQL) ->
|
2021-11-26 00:07:53 +03:00
|
|
|
m [a]
|
|
|
|
|
msBuildTableDeleteMutationFields _sourceName _tableName _tableInfo _gqlName _delPerns _selPerms =
|
2021-02-23 20:37:27 +03:00
|
|
|
pure []
|
2022-04-18 22:43:00 +03:00
|
|
|
-}
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msBuildFunctionQueryFields ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
FunctionName 'MSSQL ->
|
|
|
|
|
FunctionInfo 'MSSQL ->
|
|
|
|
|
TableName 'MSSQL ->
|
2021-11-26 00:07:53 +03:00
|
|
|
m [a]
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msBuildFunctionQueryFields _ _ _ _ =
|
2021-02-23 20:37:27 +03:00
|
|
|
pure []
|
|
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msBuildFunctionRelayQueryFields ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
FunctionName 'MSSQL ->
|
|
|
|
|
FunctionInfo 'MSSQL ->
|
|
|
|
|
TableName 'MSSQL ->
|
|
|
|
|
NESeq (ColumnInfo 'MSSQL) ->
|
2021-11-26 00:07:53 +03:00
|
|
|
m [a]
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msBuildFunctionRelayQueryFields _sourceName _functionName _functionInfo _tableName _pkeyColumns =
|
2021-06-15 18:53:20 +03:00
|
|
|
pure []
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msBuildFunctionMutationFields ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
FunctionName 'MSSQL ->
|
|
|
|
|
FunctionInfo 'MSSQL ->
|
|
|
|
|
TableName 'MSSQL ->
|
2021-11-26 00:07:53 +03:00
|
|
|
m [a]
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msBuildFunctionMutationFields _ _ _ _ =
|
2021-02-23 20:37:27 +03:00
|
|
|
pure []
|
|
|
|
|
|
2021-06-15 18:53:20 +03:00
|
|
|
----------------------------------------------------------------
|
2022-01-03 20:16:24 +03:00
|
|
|
|
|
|
|
|
-- * Table arguments
|
2021-06-15 18:53:20 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msTableArgs ::
|
|
|
|
|
forall r m n.
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
TableInfo 'MSSQL ->
|
|
|
|
|
m (InputFieldsParser n (IR.SelectArgsG 'MSSQL (UnpreparedValue 'MSSQL)))
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msTableArgs sourceName tableInfo = do
|
|
|
|
|
whereParser <- tableWhereArg sourceName tableInfo
|
|
|
|
|
orderByParser <- tableOrderByArg sourceName tableInfo
|
2021-06-15 18:53:20 +03:00
|
|
|
pure do
|
2021-09-24 01:56:37 +03:00
|
|
|
whereArg <- whereParser
|
2021-06-15 18:53:20 +03:00
|
|
|
orderByArg <- orderByParser
|
2021-09-24 01:56:37 +03:00
|
|
|
limitArg <- tableLimitArg
|
|
|
|
|
offsetArg <- tableOffsetArg
|
|
|
|
|
pure $
|
|
|
|
|
IR.SelectArgs
|
|
|
|
|
{ IR._saWhere = whereArg,
|
|
|
|
|
IR._saOrderBy = orderByArg,
|
|
|
|
|
IR._saLimit = limitArg,
|
|
|
|
|
IR._saOffset = offsetArg,
|
|
|
|
|
-- not supported on MSSQL for now
|
|
|
|
|
IR._saDistinct = Nothing
|
|
|
|
|
}
|
2021-06-15 18:53:20 +03:00
|
|
|
|
2021-10-01 15:52:19 +03:00
|
|
|
msMkRelationshipParser ::
|
|
|
|
|
forall r m n.
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
RelInfo 'MSSQL ->
|
2022-04-01 09:43:05 +03:00
|
|
|
m (Maybe (InputFieldsParser n (Maybe (IR.AnnotatedInsertField 'MSSQL (UnpreparedValue 'MSSQL)))))
|
2021-10-01 15:52:19 +03:00
|
|
|
msMkRelationshipParser _sourceName _relationshipInfo = do
|
|
|
|
|
-- When we support nested inserts, we also need to ensure we limit ourselves
|
|
|
|
|
-- to inserting into tables whch supports inserts:
|
|
|
|
|
{-
|
|
|
|
|
import Hasura.GraphQL.Schema.Mutation qualified as GSB
|
|
|
|
|
|
|
|
|
|
runMaybeT $ do
|
|
|
|
|
let otherTableName = riRTable relationshipInfo
|
|
|
|
|
otherTableInfo <- lift $ askTableInfo sourceName otherTableName
|
|
|
|
|
guard (supportsInserts otherTableInfo)
|
|
|
|
|
-}
|
|
|
|
|
return Nothing
|
|
|
|
|
|
2021-02-23 20:37:27 +03:00
|
|
|
----------------------------------------------------------------
|
2022-01-03 20:16:24 +03:00
|
|
|
|
|
|
|
|
-- * Individual components
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msColumnParser ::
|
2021-10-29 17:42:07 +03:00
|
|
|
(MonadSchema n m, MonadError QErr m, MonadReader r m, Has MkTypename r) =>
|
2021-09-24 01:56:37 +03:00
|
|
|
ColumnType 'MSSQL ->
|
|
|
|
|
G.Nullability ->
|
|
|
|
|
m (Parser 'Both n (ValueWithOrigin (ColumnValue 'MSSQL)))
|
2021-02-23 20:37:27 +03:00
|
|
|
msColumnParser columnType (G.Nullability isNullable) =
|
server: remove remnants of query plan caching (fix #1795)
Query plan caching was introduced by - I believe - hasura/graphql-engine#1934 in order to reduce the query response latency. During the development of PDV in hasura/graphql-engine#4111, it was found out that the new architecture (for which query plan caching wasn't implemented) performed comparably to the pre-PDV architecture with caching. Hence, it was decided to leave query plan caching until some day in the future when it was deemed necessary.
Well, we're in the future now, and there still isn't a convincing argument for query plan caching. So the time has come to remove some references to query plan caching from the codebase. For the most part, any code being removed would probably not be very well suited to the post-PDV architecture of query execution, so arguably not much is lost.
Apart from simplifying the code, this PR will contribute towards making the GraphQL schema generation more modular, testable, and easier to profile. I'd like to eventually work towards a situation in which it's easy to generate a GraphQL schema parser *in isolation*, without being connected to a database, and then parse a GraphQL query *in isolation*, without even listening any HTTP port. It is important that both of these operations can be examined in detail, and in isolation, since they are two major performance bottlenecks, as well as phases where many important upcoming features hook into.
Implementation
The following have been removed:
- The entirety of `server/src-lib/Hasura/GraphQL/Execute/Plan.hs`
- The core phases of query parsing and execution no longer have any references to query plan caching. Note that this is not to be confused with query *response* caching, which is not affected by this PR. This includes removal of the types:
- - `Opaque`, which is replaced by a tuple. Note that the old implementation was broken and did not adequately hide the constructors.
- - `QueryReusability` (and the `markNotReusable` method). Notably, the implementation of the `ParseT` monad now consists of two, rather than three, monad transformers.
- Cache-related tests (in `server/src-test/Hasura/CacheBoundedSpec.hs`) have been removed .
- References to query plan caching in the documentation.
- The `planCacheOptions` in the `TenantConfig` type class was removed. However, during parsing, unrecognized fields in the YAML config get ignored, so this does not cause a breaking change. (Confirmed manually, as well as in consultation with @sordina.)
- The metrics no longer send cache hit/miss messages.
There are a few places in which one can still find references to query plan caching:
- We still accept the `--query-plan-cache-size` command-line option for backwards compatibility. The `HASURA_QUERY_PLAN_CACHE_SIZE` environment variable is not read.
https://github.com/hasura/graphql-engine-mono/pull/1815
GitOrigin-RevId: 17d92b254ec093c62a7dfeec478658ede0813eb7
2021-07-27 14:51:52 +03:00
|
|
|
peelWithOrigin . fmap (ColumnValue columnType) <$> case columnType of
|
2021-06-11 06:26:50 +03:00
|
|
|
-- TODO: the mapping here is not consistent with mkMSSQLScalarTypeName. For
|
|
|
|
|
-- example, exposing all the float types as a GraphQL Float type is
|
|
|
|
|
-- incorrect, similarly exposing all the integer types as a GraphQL Int
|
2021-09-24 01:56:37 +03:00
|
|
|
ColumnScalar scalarType ->
|
|
|
|
|
possiblyNullable scalarType <$> case scalarType of
|
|
|
|
|
-- bytestring
|
|
|
|
|
MSSQL.CharType -> pure $ ODBC.ByteStringValue . encodeUtf8 <$> P.string
|
|
|
|
|
MSSQL.VarcharType -> pure $ ODBC.ByteStringValue . encodeUtf8 <$> P.string
|
|
|
|
|
-- text
|
|
|
|
|
MSSQL.WcharType -> pure $ ODBC.TextValue <$> P.string
|
|
|
|
|
MSSQL.WvarcharType -> pure $ ODBC.TextValue <$> P.string
|
|
|
|
|
MSSQL.WtextType -> pure $ ODBC.TextValue <$> P.string
|
|
|
|
|
MSSQL.TextType -> pure $ ODBC.TextValue <$> P.string
|
|
|
|
|
-- integer
|
|
|
|
|
MSSQL.IntegerType -> pure $ ODBC.IntValue . fromIntegral <$> P.int
|
|
|
|
|
MSSQL.SmallintType -> pure $ ODBC.IntValue . fromIntegral <$> P.int
|
|
|
|
|
MSSQL.BigintType -> pure $ ODBC.IntValue . fromIntegral <$> P.int
|
|
|
|
|
MSSQL.TinyintType -> pure $ ODBC.IntValue . fromIntegral <$> P.int
|
|
|
|
|
-- float
|
|
|
|
|
MSSQL.NumericType -> pure $ ODBC.DoubleValue <$> P.float
|
|
|
|
|
MSSQL.DecimalType -> pure $ ODBC.DoubleValue <$> P.float
|
|
|
|
|
MSSQL.FloatType -> pure $ ODBC.DoubleValue <$> P.float
|
|
|
|
|
MSSQL.RealType -> pure $ ODBC.DoubleValue <$> P.float
|
|
|
|
|
-- boolean
|
|
|
|
|
MSSQL.BitType -> pure $ ODBC.BoolValue <$> P.boolean
|
|
|
|
|
_ -> do
|
|
|
|
|
name <- MSSQL.mkMSSQLScalarTypeName scalarType
|
2021-12-20 20:02:32 +03:00
|
|
|
let schemaType = P.TNamed P.NonNullable $ P.Definition name Nothing P.TIScalar
|
2021-09-24 01:56:37 +03:00
|
|
|
pure $
|
|
|
|
|
Parser
|
|
|
|
|
{ pType = schemaType,
|
|
|
|
|
pParser =
|
|
|
|
|
valueToJSON (P.toGraphQLType schemaType)
|
|
|
|
|
>=> either (parseErrorWith ParseFailed . qeError) pure . (MSSQL.parseScalarValue scalarType)
|
|
|
|
|
}
|
2022-04-13 13:07:06 +03:00
|
|
|
ColumnEnumReference enumRef@(EnumReference _ enumValues _) ->
|
2021-02-23 20:37:27 +03:00
|
|
|
case nonEmpty (Map.toList enumValues) of
|
|
|
|
|
Just enumValuesList -> do
|
2022-04-13 13:07:06 +03:00
|
|
|
enumName <- mkEnumTypeName enumRef
|
2021-02-23 20:37:27 +03:00
|
|
|
pure $ possiblyNullable MSSQL.VarcharType $ P.enum enumName Nothing (mkEnumValue <$> enumValuesList)
|
|
|
|
|
Nothing -> throw400 ValidationFailed "empty enum values"
|
|
|
|
|
where
|
|
|
|
|
possiblyNullable _scalarType
|
|
|
|
|
| isNullable = fmap (fromMaybe ODBC.NullValue) . P.nullable
|
2021-09-24 01:56:37 +03:00
|
|
|
| otherwise = id
|
2021-02-23 20:37:27 +03:00
|
|
|
mkEnumValue :: (EnumValue, EnumValueInfo) -> (P.Definition P.EnumValueInfo, ScalarValue 'MSSQL)
|
|
|
|
|
mkEnumValue (EnumValue value, EnumValueInfo description) =
|
Remove `Unique` from `Definition`
GraphQL types can refer to each other in a circular way. The PDV framework used to use values of type `Unique` to recognize two fragments of GraphQL schema as being the same instance. Internally, this is based on `Data.Unique` from the `base` package, which simply increases a counter on every creation of a `Unique` object.
**NB**: The `Unique` values are _not_ used for knot tying the schema combinators themselves (i.e. `Parser`s). The knot tying for `Parser`s is purely based on keys provided to `memoizeOn`. The `Unique` values are _only_ used to recognize two pieces of GraphQL _schema_ as being identical. Originally, the idea was that this would help us with a perfectly correct identification of GraphQL types. But this fully correct equality checking of GraphQL types was never implemented, and does not seem to be necessary to prevent bugs.
Specifically, these `Unique` values are stored as part of `data Definition a`, which specifies a part of our internal abstract syntax tree for the GraphQL types that we expose. The `Unique` values get initialized by the `SchemaT` effect.
In #2894 and #2895, we are experimenting with how (parts of) the GraphQL types can be hidden behind certain permission predicates. This would allow a single GraphQL schema in memory to serve all roles, implementing #2711. The permission predicates get evaluated at query parsing time when we know what role is doing a certain request, thus outputting the correct GraphQL types for that role.
If the approach of #2895 is followed, then the `Definition` objects, and thus the `Unique` values, would be hidden behind the permission predicates. Since the permission predicates are evaluated only after the schema is already supposed to be built, this means that the permission predicates would prevent us from initializing the `Unique` values, rendering them useless.
The simplest remedy to this is to remove our usage of `Unique` altogether from the GraphQL schema and schema combinators. It doesn't serve a functional purpose, doesn't prevent bugs, and requires extra bookkeeping.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/2980
GitOrigin-RevId: 50d3f9e0b9fbf578ac49c8fc773ba64a94b1f43d
2021-12-01 19:20:35 +03:00
|
|
|
( P.Definition value (G.Description <$> description) P.EnumValueInfo,
|
2021-09-24 01:56:37 +03:00
|
|
|
ODBC.TextValue $ G.unName value
|
2021-02-23 20:37:27 +03:00
|
|
|
)
|
|
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msJsonPathArg ::
|
|
|
|
|
MonadParse n =>
|
|
|
|
|
ColumnType 'MSSQL ->
|
|
|
|
|
InputFieldsParser n (Maybe (IR.ColumnOp 'MSSQL))
|
2021-02-23 20:37:27 +03:00
|
|
|
msJsonPathArg _columnType = pure Nothing
|
|
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msOrderByOperators ::
|
|
|
|
|
NonEmpty
|
|
|
|
|
( Definition P.EnumValueInfo,
|
|
|
|
|
(BasicOrderType 'MSSQL, NullsOrderType 'MSSQL)
|
2021-02-23 20:37:27 +03:00
|
|
|
)
|
2021-09-24 01:56:37 +03:00
|
|
|
msOrderByOperators =
|
|
|
|
|
NE.fromList
|
2022-04-18 22:43:00 +03:00
|
|
|
[ ( define G._asc "in ascending order, nulls first",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.AscOrder, MSSQL.NullsFirst)
|
|
|
|
|
),
|
2022-04-18 22:43:00 +03:00
|
|
|
( define G._asc_nulls_first "in ascending order, nulls first",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.AscOrder, MSSQL.NullsFirst)
|
|
|
|
|
),
|
2022-04-18 22:43:00 +03:00
|
|
|
( define G._asc_nulls_last "in ascending order, nulls last",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.AscOrder, MSSQL.NullsLast)
|
|
|
|
|
),
|
2022-04-18 22:43:00 +03:00
|
|
|
( define G._desc "in descending order, nulls last",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.DescOrder, MSSQL.NullsLast)
|
|
|
|
|
),
|
2022-04-18 22:43:00 +03:00
|
|
|
( define G._desc_nulls_first "in descending order, nulls first",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.DescOrder, MSSQL.NullsFirst)
|
|
|
|
|
),
|
2022-04-18 22:43:00 +03:00
|
|
|
( define G._desc_nulls_last "in descending order, nulls last",
|
2021-09-24 01:56:37 +03:00
|
|
|
(MSSQL.DescOrder, MSSQL.NullsLast)
|
|
|
|
|
)
|
|
|
|
|
]
|
2021-02-23 20:37:27 +03:00
|
|
|
where
|
Remove `Unique` from `Definition`
GraphQL types can refer to each other in a circular way. The PDV framework used to use values of type `Unique` to recognize two fragments of GraphQL schema as being the same instance. Internally, this is based on `Data.Unique` from the `base` package, which simply increases a counter on every creation of a `Unique` object.
**NB**: The `Unique` values are _not_ used for knot tying the schema combinators themselves (i.e. `Parser`s). The knot tying for `Parser`s is purely based on keys provided to `memoizeOn`. The `Unique` values are _only_ used to recognize two pieces of GraphQL _schema_ as being identical. Originally, the idea was that this would help us with a perfectly correct identification of GraphQL types. But this fully correct equality checking of GraphQL types was never implemented, and does not seem to be necessary to prevent bugs.
Specifically, these `Unique` values are stored as part of `data Definition a`, which specifies a part of our internal abstract syntax tree for the GraphQL types that we expose. The `Unique` values get initialized by the `SchemaT` effect.
In #2894 and #2895, we are experimenting with how (parts of) the GraphQL types can be hidden behind certain permission predicates. This would allow a single GraphQL schema in memory to serve all roles, implementing #2711. The permission predicates get evaluated at query parsing time when we know what role is doing a certain request, thus outputting the correct GraphQL types for that role.
If the approach of #2895 is followed, then the `Definition` objects, and thus the `Unique` values, would be hidden behind the permission predicates. Since the permission predicates are evaluated only after the schema is already supposed to be built, this means that the permission predicates would prevent us from initializing the `Unique` values, rendering them useless.
The simplest remedy to this is to remove our usage of `Unique` altogether from the GraphQL schema and schema combinators. It doesn't serve a functional purpose, doesn't prevent bugs, and requires extra bookkeeping.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/2980
GitOrigin-RevId: 50d3f9e0b9fbf578ac49c8fc773ba64a94b1f43d
2021-12-01 19:20:35 +03:00
|
|
|
define name desc = P.Definition name (Just desc) P.EnumValueInfo
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2021-09-24 01:56:37 +03:00
|
|
|
msComparisonExps ::
|
|
|
|
|
forall m n r.
|
|
|
|
|
( BackendSchema 'MSSQL,
|
|
|
|
|
MonadSchema n m,
|
|
|
|
|
MonadError QErr m,
|
|
|
|
|
MonadReader r m,
|
2021-10-29 17:42:07 +03:00
|
|
|
Has QueryContext r,
|
|
|
|
|
Has MkTypename r
|
2021-09-24 01:56:37 +03:00
|
|
|
) =>
|
|
|
|
|
ColumnType 'MSSQL ->
|
|
|
|
|
m (Parser 'Input n [ComparisonExp 'MSSQL])
|
2021-02-23 20:37:27 +03:00
|
|
|
msComparisonExps = P.memoize 'comparisonExps \columnType -> do
|
|
|
|
|
-- see Note [Columns in comparison expression are never nullable]
|
2021-04-08 11:25:11 +03:00
|
|
|
collapseIfNull <- asks $ qcDangerousBooleanCollapse . getter
|
|
|
|
|
|
|
|
|
|
-- parsers used for individual values
|
2021-09-24 01:56:37 +03:00
|
|
|
typedParser <- columnParser columnType (G.Nullability False)
|
2022-04-18 22:43:00 +03:00
|
|
|
_nullableTextParser <- columnParser (ColumnScalar @'MSSQL MSSQL.VarcharType) (G.Nullability True)
|
2021-09-24 01:56:37 +03:00
|
|
|
textParser <- columnParser (ColumnScalar @'MSSQL MSSQL.VarcharType) (G.Nullability False)
|
|
|
|
|
let columnListParser = fmap openValueOrigin <$> P.list typedParser
|
2022-04-18 22:43:00 +03:00
|
|
|
_textListParser = fmap openValueOrigin <$> P.list textParser
|
2021-04-08 11:25:11 +03:00
|
|
|
|
|
|
|
|
-- field info
|
2022-04-18 22:43:00 +03:00
|
|
|
let name = P.getName typedParser <> G.__MSSQL_comparison_exp
|
2021-09-24 01:56:37 +03:00
|
|
|
desc =
|
|
|
|
|
G.Description $
|
|
|
|
|
"Boolean expression to compare columns of type "
|
|
|
|
|
<> P.getName typedParser
|
|
|
|
|
<<> ". All fields are combined with logical 'AND'."
|
|
|
|
|
|
|
|
|
|
pure $
|
|
|
|
|
P.object name (Just desc) $
|
|
|
|
|
fmap catMaybes $
|
|
|
|
|
sequenceA $
|
|
|
|
|
concat
|
|
|
|
|
[ -- Common ops for all types
|
|
|
|
|
equalityOperators
|
|
|
|
|
collapseIfNull
|
|
|
|
|
(mkParameter <$> typedParser)
|
|
|
|
|
(mkListLiteral <$> columnListParser),
|
|
|
|
|
comparisonOperators
|
|
|
|
|
collapseIfNull
|
|
|
|
|
(mkParameter <$> typedParser),
|
|
|
|
|
-- Ops for String like types
|
|
|
|
|
guard (isScalarColumnWhere (`elem` MSSQL.stringTypes) columnType)
|
|
|
|
|
*> [ P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__like
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column match the given pattern")
|
|
|
|
|
(ALIKE . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__nlike
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column NOT match the given pattern")
|
|
|
|
|
(ANLIKE . mkParameter <$> typedParser)
|
|
|
|
|
],
|
|
|
|
|
-- Ops for Geometry/Geography types
|
|
|
|
|
guard (isScalarColumnWhere (`elem` MSSQL.geoTypes) columnType)
|
|
|
|
|
*> [ P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_contains
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column contain the given value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTContains . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_equals
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "is the column equal to given value (directionality is ignored)")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTEquals . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_intersects
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column spatially intersect the given value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTIntersects . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_overlaps
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column 'spatially overlap' (intersect but not completely contain) the given value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTOverlaps . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_within
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "is the column contained in the given value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTWithin . mkParameter <$> typedParser)
|
|
|
|
|
],
|
|
|
|
|
-- Ops for Geometry types
|
|
|
|
|
guard (isScalarColumnWhere (MSSQL.GeometryType ==) columnType)
|
|
|
|
|
*> [ P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_crosses
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column cross the given geometry value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTCrosses . mkParameter <$> typedParser),
|
|
|
|
|
P.fieldOptional
|
2022-04-18 22:43:00 +03:00
|
|
|
G.__st_touches
|
2021-09-24 01:56:37 +03:00
|
|
|
(Just "does the column have at least one point in common with the given geometry value")
|
|
|
|
|
(ABackendSpecific . MSSQL.ASTTouches . mkParameter <$> typedParser)
|
|
|
|
|
]
|
|
|
|
|
]
|
2021-03-19 15:42:09 +03:00
|
|
|
where
|
|
|
|
|
mkListLiteral :: [ColumnValue 'MSSQL] -> UnpreparedValue 'MSSQL
|
|
|
|
|
mkListLiteral =
|
|
|
|
|
P.UVLiteral . MSSQL.ListExpression . fmap (MSSQL.ValueExpression . cvValue)
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2022-01-18 17:53:44 +03:00
|
|
|
msCountTypeInput ::
|
|
|
|
|
MonadParse n =>
|
|
|
|
|
Maybe (Parser 'Both n (Column 'MSSQL)) ->
|
|
|
|
|
InputFieldsParser n (IR.CountDistinct -> CountType 'MSSQL)
|
|
|
|
|
msCountTypeInput = \case
|
|
|
|
|
Just columnEnum -> do
|
2022-04-18 22:43:00 +03:00
|
|
|
column <- P.fieldOptional G._column Nothing columnEnum
|
2022-01-18 17:53:44 +03:00
|
|
|
pure $ flip mkCountType column
|
|
|
|
|
Nothing -> pure $ flip mkCountType Nothing
|
|
|
|
|
where
|
|
|
|
|
mkCountType :: IR.CountDistinct -> Maybe (Column 'MSSQL) -> CountType 'MSSQL
|
|
|
|
|
mkCountType _ Nothing = MSSQL.StarCountable
|
|
|
|
|
mkCountType IR.SelectCountDistinct (Just col) = MSSQL.DistinctCountable col
|
|
|
|
|
mkCountType IR.SelectCountNonDistinct (Just col) = MSSQL.NonNullFieldCountable col
|
2021-02-23 20:37:27 +03:00
|
|
|
|
|
|
|
|
-- | Computed field parser.
|
|
|
|
|
-- Currently unsupported: returns Nothing for now.
|
2021-09-24 01:56:37 +03:00
|
|
|
msComputedField ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
SourceName ->
|
|
|
|
|
ComputedFieldInfo 'MSSQL ->
|
|
|
|
|
TableName 'MSSQL ->
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
TableInfo 'MSSQL ->
|
2021-09-24 01:56:37 +03:00
|
|
|
m (Maybe (FieldParser n (AnnotatedField 'MSSQL)))
|
Role-invariant schema constructors
We build the GraphQL schema by combining building blocks such as `tableSelectionSet` and `columnParser`. These building blocks individually build `{InputFields,Field,}Parser` objects. Those object specify the valid GraphQL schema.
Since the GraphQL schema is role-dependent, at some point we need to know what fragment of the GraphQL schema a specific role is allowed to access, and this is stored in `{Sel,Upd,Ins,Del}PermInfo` objects.
We have passed around these permission objects as function arguments to the schema building blocks since we first started dealing with permissions during the PDV refactor - see hasura/graphql-engine@5168b99e463199b1934d8645bd6cd37eddb64ae1 in hasura/graphql-engine#4111. This means that, for instance, `tableSelectionSet` has as its type:
```haskell
tableSelectionSet ::
forall b r m n.
MonadBuildSchema b r m n =>
SourceName ->
TableInfo b ->
SelPermInfo b ->
m (Parser 'Output n (AnnotatedFields b))
```
There are three reasons to change this.
1. We often pass a `Maybe (xPermInfo b)` instead of a proper `xPermInfo b`, and it's not clear what the intended semantics of this is. Some potential improvements on the data types involved are discussed in issue hasura/graphql-engine-mono#3125.
2. In most cases we also already pass a `TableInfo b`, and together with the `MonadRole` that is usually also in scope, this means that we could look up the required permissions regardless: so passing the permissions explicitly undermines the "single source of truth" principle. Breaking this principle also makes the code more difficult to read.
3. We are working towards role-based parsers (see hasura/graphql-engine-mono#2711), where the `{InputFields,Field,}Parser` objects are constructed in a role-invariant way, so that we have a single object that can be used for all roles. In particular, this means that the schema building blocks _need_ to be constructed in a role-invariant way. While this PR doesn't accomplish that, it does reduce the amount of role-specific arguments being passed, thus fixing hasura/graphql-engine-mono#3068.
Concretely, this PR simply drops the `xPermInfo b` argument from almost all schema building blocks. Instead these objects are looked up from the `TableInfo b` as-needed. The resulting code is considerably simpler and shorter.
One way to interpret this change is as follows. Before this PR, we figured out permissions at the top-level in `Hasura.GraphQL.Schema`, passing down the obtained `xPermInfo` objects as required. After this PR, we have a bottom-up approach where the schema building blocks themselves decide whether they want to be included for a particular role.
So this moves some permission logic out of `Hasura.GraphQL.Schema`, which is very complex.
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/3608
GitOrigin-RevId: 51a744f34ec7d57bc8077667ae7f9cb9c4f6c962
2022-02-17 11:16:20 +03:00
|
|
|
msComputedField _sourceName _fieldInfo _table _tableInfo = pure Nothing
|
2021-02-23 20:37:27 +03:00
|
|
|
|
2022-04-18 22:43:00 +03:00
|
|
|
{-
|
|
|
|
|
NOTE: Unused, should we remove?
|
|
|
|
|
|
2021-02-23 20:37:27 +03:00
|
|
|
-- | Remote join field parser.
|
|
|
|
|
-- Currently unsupported: returns Nothing for now.
|
2021-09-24 01:56:37 +03:00
|
|
|
msRemoteRelationshipField ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
2021-12-22 02:14:56 +03:00
|
|
|
RemoteFieldInfo (DBJoinField 'MSSQL) ->
|
2021-09-24 01:56:37 +03:00
|
|
|
m (Maybe [FieldParser n (AnnotatedField 'MSSQL)])
|
2021-02-23 20:37:27 +03:00
|
|
|
msRemoteRelationshipField _remoteFieldInfo = pure Nothing
|
2022-04-18 22:43:00 +03:00
|
|
|
-}
|
2021-02-23 20:37:27 +03:00
|
|
|
|
|
|
|
|
-- | The 'node' root field of a Relay request. Relay is currently unsupported on MSSQL,
|
|
|
|
|
-- meaning this parser will never be called: any attempt to create this parser should
|
|
|
|
|
-- therefore fail.
|
2021-09-24 01:56:37 +03:00
|
|
|
msNode ::
|
|
|
|
|
MonadBuildSchema 'MSSQL r m n =>
|
|
|
|
|
m
|
|
|
|
|
( Parser
|
|
|
|
|
'Output
|
|
|
|
|
n
|
|
|
|
|
( HashMap
|
|
|
|
|
(TableName 'MSSQL)
|
|
|
|
|
( SourceName,
|
|
|
|
|
SourceConfig 'MSSQL,
|
|
|
|
|
SelPermInfo 'MSSQL,
|
|
|
|
|
PrimaryKeyColumns 'MSSQL,
|
|
|
|
|
AnnotatedFields 'MSSQL
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
)
|
2021-02-23 20:37:27 +03:00
|
|
|
msNode = throw500 "MSSQL does not support relay; `node` should never be exposed in the schema."
|
