graphql-engine/server/src-lib/Hasura/RQL/DML/Internal.hs

335 lines
10 KiB
Haskell
Raw Normal View History

2018-06-27 16:11:32 +03:00
module Hasura.RQL.DML.Internal where
import qualified Database.PG.Query as Q
import qualified Database.PG.Query.Connection as Q
import qualified Hasura.SQL.DML as S
import Hasura.Prelude
2018-06-27 16:11:32 +03:00
import Hasura.RQL.GBoolExp
import Hasura.RQL.Types
import Hasura.SQL.Types
import Hasura.SQL.Value
2018-06-27 16:11:32 +03:00
import Control.Lens
import Data.Aeson.Types
import qualified Data.HashMap.Strict as M
import qualified Data.HashSet as HS
import qualified Data.Sequence as DS
import qualified Data.Text as T
newtype DMLP1 a
= DMLP1 {unDMLP1 :: StateT (DS.Seq Q.PrepArg) P1 a}
deriving ( Functor, Applicative
, Monad
, MonadState (DS.Seq Q.PrepArg)
, MonadError QErr
)
liftDMLP1
:: (QErrM m, UserInfoM m, CacheRM m, HasSQLGenCtx m)
=> DMLP1 a -> m (a, DS.Seq Q.PrepArg)
liftDMLP1 =
liftP1 . flip runStateT DS.empty . unDMLP1
2018-06-27 16:11:32 +03:00
instance CacheRM DMLP1 where
askSchemaCache = DMLP1 $ lift askSchemaCache
2018-06-27 16:11:32 +03:00
instance UserInfoM DMLP1 where
askUserInfo = DMLP1 $ lift askUserInfo
2018-06-27 16:11:32 +03:00
instance HasSQLGenCtx DMLP1 where
askSQLGenCtx = DMLP1 $ lift askSQLGenCtx
mkAdminRolePermInfo :: TableInfo PGColInfo -> RolePermInfo
2018-06-27 16:11:32 +03:00
mkAdminRolePermInfo ti =
RolePermInfo (Just i) (Just s) (Just u) (Just d)
where
pgCols = map pgiName $ getCols $ _tiFieldInfoMap ti
2018-06-27 16:11:32 +03:00
tn = _tiName ti
i = InsPermInfo (HS.fromList pgCols) tn annBoolExpTrue M.empty []
s = SelPermInfo (HS.fromList pgCols) tn annBoolExpTrue
Nothing True []
u = UpdPermInfo (HS.fromList pgCols) tn annBoolExpTrue M.empty []
d = DelPermInfo tn annBoolExpTrue []
2018-06-27 16:11:32 +03:00
askPermInfo'
:: (UserInfoM m)
2018-06-27 16:11:32 +03:00
=> PermAccessor c
-> TableInfo PGColInfo
2018-06-27 16:11:32 +03:00
-> m (Maybe c)
askPermInfo' pa tableInfo = do
roleName <- askCurRole
let mrpi = getRolePermInfo roleName
return $ mrpi >>= (^. permAccToLens pa)
where
rpim = _tiRolePermInfoMap tableInfo
2018-06-27 16:11:32 +03:00
getRolePermInfo roleName
| roleName == adminRole = Just $ mkAdminRolePermInfo tableInfo
| otherwise = M.lookup roleName rpim
askPermInfo
:: (UserInfoM m, QErrM m)
2018-06-27 16:11:32 +03:00
=> PermAccessor c
-> TableInfo PGColInfo
2018-06-27 16:11:32 +03:00
-> m c
askPermInfo pa tableInfo = do
roleName <- askCurRole
mPermInfo <- askPermInfo' pa tableInfo
case mPermInfo of
Just c -> return c
Nothing -> throw400 PermissionDenied $ mconcat
[ pt <> " on " <>> _tiName tableInfo
2018-06-27 16:11:32 +03:00
, " for role " <>> roleName
, " is not allowed. "
]
where
pt = permTypeToCode $ permAccToType pa
isTabUpdatable :: RoleName -> TableInfo PGColInfo -> Bool
isTabUpdatable role ti
| role == adminRole = True
| otherwise = isJust $ M.lookup role rpim >>= _permUpd
where
rpim = _tiRolePermInfoMap ti
2018-06-27 16:11:32 +03:00
askInsPermInfo
:: (UserInfoM m, QErrM m)
=> TableInfo PGColInfo -> m InsPermInfo
2018-06-27 16:11:32 +03:00
askInsPermInfo = askPermInfo PAInsert
askSelPermInfo
:: (UserInfoM m, QErrM m)
=> TableInfo PGColInfo -> m SelPermInfo
2018-06-27 16:11:32 +03:00
askSelPermInfo = askPermInfo PASelect
askUpdPermInfo
:: (UserInfoM m, QErrM m)
=> TableInfo PGColInfo -> m UpdPermInfo
2018-06-27 16:11:32 +03:00
askUpdPermInfo = askPermInfo PAUpdate
askDelPermInfo
:: (UserInfoM m, QErrM m)
=> TableInfo PGColInfo -> m DelPermInfo
2018-06-27 16:11:32 +03:00
askDelPermInfo = askPermInfo PADelete
verifyAsrns :: (MonadError QErr m) => [a -> m ()] -> [a] -> m ()
verifyAsrns preds xs = indexedForM_ xs $ \a -> mapM_ ($ a) preds
checkSelOnCol :: (UserInfoM m, QErrM m)
=> SelPermInfo -> PGCol -> m ()
checkSelOnCol selPermInfo =
checkPermOnCol PTSelect (spiCols selPermInfo)
checkPermOnCol
:: (UserInfoM m, QErrM m)
=> PermType
-> HS.HashSet PGCol
-> PGCol
-> m ()
checkPermOnCol pt allowedCols pgCol = do
roleName <- askCurRole
unless (HS.member pgCol allowedCols) $
throw400 PermissionDenied $ permErrMsg roleName
where
permErrMsg roleName
| roleName == adminRole = "no such column exists : " <>> pgCol
| otherwise = mconcat
[ "role " <>> roleName
, " does not have permission to "
, permTypeToCode pt <> " column " <>> pgCol
]
2018-06-27 16:11:32 +03:00
binRHSBuilder
:: PGColumnType -> Value -> DMLP1 S.SQLExp
2018-06-27 16:11:32 +03:00
binRHSBuilder colType val = do
preparedArgs <- get
scalarValue <- parsePGScalarValue colType val
put (preparedArgs DS.|> toBinaryValue scalarValue)
return $ toPrepParam (DS.length preparedArgs + 1) (pstType scalarValue)
2018-06-27 16:11:32 +03:00
fetchRelTabInfo
:: (QErrM m, CacheRM m)
2018-06-27 16:11:32 +03:00
=> QualifiedTable
-> m (TableInfo PGColInfo)
2018-06-27 16:11:32 +03:00
fetchRelTabInfo refTabName =
-- Internal error
modifyErrAndSet500 ("foreign " <> ) $ askTabInfo refTabName
type SessVarBldr m = PGType PGScalarType -> SessVar -> m S.SQLExp
2019-04-17 12:48:41 +03:00
2018-06-27 16:11:32 +03:00
fetchRelDet
:: (UserInfoM m, QErrM m, CacheRM m)
2018-06-27 16:11:32 +03:00
=> RelName -> QualifiedTable
-> m (FieldInfoMap PGColInfo, SelPermInfo)
2018-06-27 16:11:32 +03:00
fetchRelDet relName refTabName = do
roleName <- askCurRole
-- Internal error
refTabInfo <- fetchRelTabInfo refTabName
-- Get the correct constraint that applies to the given relationship
refSelPerm <- modifyErr (relPermErr refTabName roleName) $
askSelPermInfo refTabInfo
return (_tiFieldInfoMap refTabInfo, refSelPerm)
2018-06-27 16:11:32 +03:00
where
relPermErr rTable roleName _ =
mconcat
[ "role " <>> roleName
, " does not have permission to read relationship " <>> relName
, "; no permission on"
, " table " <>> rTable
]
checkOnColExp
:: (UserInfoM m, QErrM m, CacheRM m)
=> SelPermInfo
2019-04-17 12:48:41 +03:00
-> SessVarBldr m
-> AnnBoolExpFldSQL
-> m AnnBoolExpFldSQL
2019-04-17 12:48:41 +03:00
checkOnColExp spi sessVarBldr annFld = case annFld of
AVCol (PGColInfo cn _ _) _ -> do
checkSelOnCol spi cn
return annFld
AVRel relInfo nesAnn -> do
relSPI <- snd <$> fetchRelDet (riName relInfo) (riRTable relInfo)
2019-04-17 12:48:41 +03:00
modAnn <- checkSelPerm relSPI sessVarBldr nesAnn
resolvedFltr <- convAnnBoolExpPartialSQL sessVarBldr $ spiFilter relSPI
return $ AVRel relInfo $ andAnnBoolExps modAnn resolvedFltr
convAnnBoolExpPartialSQL
:: (Applicative f)
=> SessVarBldr f
-> AnnBoolExpPartialSQL
-> f AnnBoolExpSQL
convAnnBoolExpPartialSQL f =
traverseAnnBoolExp (convPartialSQLExp f)
convPartialSQLExp
:: (Applicative f)
=> SessVarBldr f
-> PartialSQLExp
-> f S.SQLExp
convPartialSQLExp f = \case
PSESQLExp sqlExp -> pure sqlExp
PSESessVar colTy sessVar -> f colTy sessVar
sessVarFromCurrentSetting
:: (Applicative f) => PGType PGScalarType -> SessVar -> f S.SQLExp
sessVarFromCurrentSetting pgType sessVar =
pure $ sessVarFromCurrentSetting' pgType sessVar
sessVarFromCurrentSetting' :: PGType PGScalarType -> SessVar -> S.SQLExp
sessVarFromCurrentSetting' ty sessVar =
flip S.SETyAnn (S.mkTypeAnn ty) $
case ty of
PGTypeSimple baseTy -> withGeoVal baseTy sessVarVal
PGTypeArray _ -> sessVarVal
2019-04-17 12:48:41 +03:00
where
curSess = S.SEUnsafe "current_setting('hasura.user')::json"
sessVarVal = S.SEOpApp (S.SQLOp "->>")
[curSess, S.SELit $ T.toLower sessVar]
checkSelPerm
:: (UserInfoM m, QErrM m, CacheRM m)
=> SelPermInfo
-> SessVarBldr m
-> AnnBoolExpSQL
-> m AnnBoolExpSQL
2019-04-17 12:48:41 +03:00
checkSelPerm spi sessVarBldr =
traverse (checkOnColExp spi sessVarBldr)
2018-06-27 16:11:32 +03:00
2019-04-17 12:48:41 +03:00
convBoolExp
:: (UserInfoM m, QErrM m, CacheRM m)
=> FieldInfoMap PGColInfo
2018-06-27 16:11:32 +03:00
-> SelPermInfo
-> BoolExp
-> SessVarBldr m
-> (PGColumnType -> Value -> m S.SQLExp)
-> m AnnBoolExpSQL
2019-04-17 12:48:41 +03:00
convBoolExp cim spi be sessVarBldr prepValBldr = do
abe <- annBoolExp rhsParser cim be
2019-04-17 12:48:41 +03:00
checkSelPerm spi sessVarBldr abe
where
rhsParser pgType val = case pgType of
PGTypeSimple ty -> prepValBldr ty val
PGTypeArray ofTy -> do
-- for arrays, we don't use the prepared builder
vals <- runAesonParser parseJSON val
PGScalarTyped scalarType scalarValues <- parsePGScalarValues ofTy vals
return $ S.SETyAnn
(S.SEArray $ map (toTxtValue . PGScalarTyped scalarType) scalarValues)
(S.mkTypeAnn $ PGTypeArray scalarType)
2018-06-27 16:11:32 +03:00
dmlTxErrorHandler :: Q.PGTxErr -> QErr
dmlTxErrorHandler p2Res =
case err of
Nothing -> defaultTxErrorHandler p2Res
Just (code, msg) -> err400 code msg
2018-06-27 16:11:32 +03:00
where err = simplifyError p2Res
toJSONableExp :: Bool -> PGColumnType -> S.SQLExp -> S.SQLExp
toJSONableExp strfyNum colTy expn
| isScalarColumnWhere isGeoType colTy =
S.SEFnApp "ST_AsGeoJSON"
[ expn
, S.SEUnsafe "15" -- max decimal digits
, S.SEUnsafe "4" -- to print out crs
] Nothing
`S.SETyAnn` S.jsonTypeAnn
| isScalarColumnWhere isBigNum colTy && strfyNum =
expn `S.SETyAnn` S.textTypeAnn
| otherwise = expn
2018-06-27 16:11:32 +03:00
-- validate headers
validateHeaders :: (UserInfoM m, QErrM m) => [T.Text] -> m ()
2018-06-27 16:11:32 +03:00
validateHeaders depHeaders = do
headers <- getVarNames . userVars <$> askUserInfo
2018-06-27 16:11:32 +03:00
forM_ depHeaders $ \hdr ->
unless (hdr `elem` map T.toLower headers) $
throw400 NotFound $ hdr <<> " header is expected but not found"
simplifyError :: Q.PGTxErr -> Maybe (Code, T.Text)
2018-06-27 16:11:32 +03:00
simplifyError txErr = do
stmtErr <- Q.getPGStmtErr txErr
codeMsg <- getPGCodeMsg stmtErr
extractError codeMsg
where
getPGCodeMsg pged =
(,) <$> Q.edStatusCode pged <*> Q.edMessage pged
extractError = \case
-- restrict violation
("23001", msg) ->
return (ConstraintViolation, "Can not delete or update due to data being referred. " <> msg)
2018-06-27 16:11:32 +03:00
-- not null violation
("23502", msg) ->
return (ConstraintViolation, "Not-NULL violation. " <> msg)
2018-06-27 16:11:32 +03:00
-- foreign key violation
("23503", msg) ->
return (ConstraintViolation, "Foreign key violation. " <> msg)
2018-06-27 16:11:32 +03:00
-- unique violation
("23505", msg) ->
return (ConstraintViolation, "Uniqueness violation. " <> msg)
2018-06-27 16:11:32 +03:00
-- check violation
("23514", msg) ->
return (PermissionError, "Check constraint violation. " <> msg)
2018-06-27 16:11:32 +03:00
-- invalid text representation
("22P02", msg) -> return (DataException, msg)
-- invalid parameter value
("22023", msg) -> return (DataException, msg)
2018-06-27 16:11:32 +03:00
-- no unique constraint on the columns
("42P10", _) ->
return (ConstraintError, "there is no unique or exclusion constraint on target column(s)")
2018-06-27 16:11:32 +03:00
-- no constraint
("42704", msg) -> return (ConstraintError, msg)
-- invalid input values
("22007", msg) -> return (DataException, msg)
-- invalid escape sequence
("22025", msg) -> return (BadRequest, msg)
2018-06-27 16:11:32 +03:00
_ -> Nothing
-- validate limit and offset int values
onlyPositiveInt :: MonadError QErr m => Int -> m ()
onlyPositiveInt i = when (i < 0) $ throw400 NotSupported
"unexpected negative value"