hasura/graphql-engine
1
0
Fork 0
mirror of https://github.com/hasura/graphql-engine.git synced 2024-12-15 17:31:56 +03:00
Code Issues Projects Releases Wiki Activity
1,285 Commits 138 Branches 441 Tags 4.4 GiB
e1b4184fea
Commit Graph

274 Commits

Author SHA1 Message Date
Anon Ray
a3e7a20a44 add notices in jwt docs regarding audience check (#2557) 
- also update firebase sample-app README with correct JWT conf
 2019-07-16 11:13:00 +00:00
Alexis King
8f9a41ff88 Support casting between PostGIS geometry and geography types in where expressions (close #1983) (#2495) 
* server: Bump dependencies to allow Haddock to run successfully

* Support casting between PostGIS geometry and geography types in filters
 2019-07-15 14:22:45 +05:30
Tobias Törnros
88a1be4a04 Use the event object in trigger payload (#2500) 
Broken example. The data object is located in the event object in trigger payload. Info: https://docs.hasura.io/1.0/graphql/manual/event-triggers/payload.html
 2019-07-12 14:08:53 +05:30
Anon Ray
f2f14e727b Merge pull request from GHSA-2j98-fw5g-j43v 
* fix bug in audience check while verifying JWT

  - previously the check was converting the audience type into a string
  and then comparing with the conf value. all audience types (as it is a
  string or URI) will convert to plain strings
  - use the Audience type from the jose library for comparing

* add docs for audience

* add issuer check as well

* docs minor syntax fix

* skip audience check if not given in conf

* minor docs update

* qualify import jose library
 2019-07-11 09:58:39 +00:00
Anon Ray
8f1e7dbc8d breaking: server logging changes (close #507, close #2171) (#1835) 2019-07-11 05:37:06 +00:00
Vamshi Surabhi
f1cf6d0b17
allow session variables in operators which expect array input (#2475) 2019-07-10 15:49:58 +05:30
Anon Ray
d2867cea0c add docs for JWT audience and issuer (#2496) 2019-07-09 15:09:32 +00:00
Rakesh Emmadi
9eb38e6c96 cache remote schema's introspection query response (fix #1679) (#2089) 2019-07-08 11:21:41 +05:30
Rikin Kachhia
9675e036ea
update jwt spec info (#2457) 2019-07-05 14:13:02 +05:30
Aravind Shankar
0aefbd0822 infer relationship type using uniqueness constraint of foreign key (close #969) (#2347) 2019-07-02 19:05:27 +05:30
matt
f7ac664cc4 update postgres permission documentation (fix #2404) (#2405) 2019-07-02 13:19:29 +05:30
Shahidh K Muhammed
aae68873da add note on exporting multiple schemas as migration (#2436) 2019-06-27 17:04:19 +05:30
Ajeet D'Souza
08df38aa8c add name of ci environment to telemetry data (#2382) 2019-06-26 11:53:40 +05:30
Shahidh K Muhammed
a8dd3b3deb add api to get server config details (close #1831); add jwt-analyzer (close #1369) (#1925) 2019-06-11 18:59:03 +05:30
Rakesh Emmadi
eff952dc3a update run_sql metadata API documentation (#2350) 2019-06-11 14:44:19 +05:30
Aravind Shankar
be5316a984 support multi-column manual relationships from console (close #2007) (#2332) 2019-06-10 20:18:15 +05:30
Rakesh Emmadi
c3c01beccc support null and default values for function arguments (close #2176, close #2250) (#2282) 2019-06-04 18:13:28 +05:30
Anon Ray
278f26b073 forward set-cookie headers from remote servers (fix #1654) (#2305) 2019-06-04 15:40:28 +05:30
Jason McCallister
26da7fb73b add soft delete docs (#1980) 2019-06-03 21:36:32 +05:30
Rikin Kachhia
918e11730c
update server flags docs (#2292) 2019-05-28 22:55:47 +05:30
Aravind Shankar
2cdb1a1508 refactor schema management in console and misc fixes (#2016) 
close #1704, #2174, #2188, #2006, #2031, #1617, #1882
 2019-05-24 19:30:44 +05:30
dsandip
5ef5fff860 update screenshot for admin secret (#2235) 2019-05-20 19:15:49 +05:30
Rikin Kachhia
998acd51dd docs: fix auth links, fix version tags (#2231) 2019-05-20 15:12:36 +05:30
Nicolas Azari
f3ff3ba9aa fix typo in server flags reference (#2220) 2019-05-20 13:18:43 +05:30
dsandip
6a5f17c3a0 update auth docs (#1796) 2019-05-17 17:33:35 +05:30
Anon Ray
81bdfafd69 ignore content-type header in auth webhook (#2197) 2019-05-16 14:41:15 +05:30
Shahidh K Muhammed
76ceb707f4
bundle console assets into server (close #516, close #521, close #2130) (#2192) 
This PR builds console static assets into the server docker image at `/srv/console-assets`. When env var `HASURA_GRAPHQL_CONSOLE_ASSETS_DIR=/srv/console-assets` or flag `--console-assets-dir=/srv/console-assets` is set on the server, the files in this directory are served at `/console/assets/*`.

The console html template will have a variable called `cdnAssets: false` when this flag is set and it loads assets from server itself instead of CDN.

The assets are moved to a new bucket with a new naming scheme:

```
graphql-engine-cdn.hasura.io/console/assets/
   /common/{}
   /versioned/<version/{}
   /channel/<channel>/<version>/{}
```

Console served by CLI will still load assets from CDN - will fix that in the next release.
 2019-05-16 13:15:29 +05:30
Rikin Kachhia
8b21ccbb0b add version requirement notes for features in docs (#2196) 2019-05-16 11:49:22 +05:30
Rakesh Emmadi
0b210cc245 support allow-list for graphql queries (closes #989) (#2075) 2019-05-16 11:43:25 +05:30
Tirumarai Selvan
36e49ea75b manual event triggers (close #1687) (#2077) 2019-05-13 15:11:07 +05:30
Anon Ray
a21f6cd648 introduce v1/graphql (fix #1368) (#2064) 
Changes compared to `/v1alpha1/graphql`

* Changed all graphql responses in **/v1/graphql** endpoint to be 200. All graphql clients expect responses to be HTTP 200. Non-200 responses are considered transport layer errors. 

* Errors in http and websocket layer are now consistent and have similar structure.
 2019-05-10 11:35:10 +05:30
Praveen Durairaj
3080100d8f update auth0 guide (#2145) 2019-05-09 13:02:42 +05:30
Vamshi Surabhi
fd85d0ba5b document subscriptions related config parameters (#2126) 2019-05-07 17:51:37 +05:30
Anon Ray
dfaf7d3a1f fix duplicate headers being sent to remote schema (#2118) 2019-05-06 16:57:34 +05:30
Shahidh K Muhammed
71cf017197 add an api to dump postgres schema (close #1939) (#1967) 2019-04-30 14:04:08 +05:30
Rikin Kachhia
85995503fe fix docs dependency vulnerability (#2048) 
urllib3 to 1.24.2
 2019-04-23 13:54:48 +05:30
Evert Smit
b0d68df1cf add example for using Apollo CLI to export schema (#2037) 2019-04-22 13:27:02 +05:30
Rikin Kachhia
d740de9ae2 update docs (#2033) 2019-04-19 16:18:18 +05:30
Rakesh Emmadi
1d7cbc7f24 recover from inconsistent database state (closes #231) (#1863) 2019-04-17 21:59:39 +05:30
Rikin Kachhia
afc2331951
update docs (#2023) 
* add missing column error to troubleshooting
* update subscription headers section
* docs for using {} expression
* fix create foreign-key section
 2019-04-17 19:07:42 +05:30
Rikin Kachhia
f833191939 update docs dependency (#2005) 2019-04-15 12:19:10 +05:30
Petr Kohut
ba4451fa29 update auto apply migrations doc with latest tag (#1984) 2019-04-10 19:04:32 +05:30
Rikin Kachhia
1330382960
fix width of docs for larger screens (close #1955) (#1982) 2019-04-10 18:04:45 +05:30
Clément
fd959cc63b add scroll to literal blocks in docs (close #1954) (#1978) 2019-04-10 17:08:50 +05:30
Shahidh K Muhammed
883646334a
update regex to delete event triggers in edit-pg-dump (close #1959) (#1960) 2019-04-08 15:59:11 +05:30
Gordon Johnston
a7eabe034c mention required key length for HMAC encryption to user (#1956) 
Following on from a discussion in discord, a small tweak to make the required key length for a HMAC key more obvious
 2019-04-06 08:20:16 +05:30
Rikin Kachhia
56c67509aa
update track relationship text in console (#1927) 2019-04-03 15:07:14 +05:30
Rikin Kachhia
29d6e85e42
add better upsert example to docs (#1930) 2019-04-03 15:05:51 +05:30
Rikin Kachhia
1c6e962776
remove remote schema env var note (#1932) 2019-04-02 16:44:02 +05:30
Evert Smit
503190d1dc Fix Docker for Mac DNS name in remote schema docs (#1923) 2019-04-02 07:25:58 +05:30
dsandip
d451b56d78 update permissions ref docs to include all config keys (#1918) 2019-04-01 14:28:39 +05:30
Aravind Shankar
ca7d8b3df5 rename metadata reset to metadta clear (close #1851) (#1893) 
The word "reset" is little ambiguous (reset to scratch or reset to last known consistent state). metadata reset clears the all the metadata to mimic a freshly installed hasura instance. This actually invokes the clear_metadata API in the backend and hence should also be called metadata clear for perfect clarity.

All references to metadata reset should be changed to metadata clear.
 2019-03-29 10:44:56 +05:30
Shahidh K Muhammed
7bfcc764db update migration, api-reference docs (close #766) (close #1345) (close #1496) (#1701) 2019-03-28 16:21:58 +05:30
Simone Busoli
f6c11e545d fix bash completion example docs on cli (#1832) 2019-03-28 07:28:20 +05:30
Rishichandra Wawhal
9dc833c808 add visual studio code integration guide to docs (close #1656) (#1828) 
add visual studio code guide to docs (close #1656)
 2019-03-27 14:07:54 +05:30
samuela
0f57e4cb4d update jwt docs (#1850) 2019-03-27 14:02:47 +05:30
Tirumarai Selvan
36781199d0 breaking: drop id from event_triggers table (fix #1840) (#1857) 2019-03-25 22:40:52 +05:30
Toan Nguyen
560c31f9fd add a json path argument to query values inside json columns (close #1598) (#1661) 2019-03-25 19:15:35 +05:30
Shahidh K Muhammed
b8700cce70
add spatial predicates for geography columns (close #1674) (#1735) 
This PR adds support for PostGIS spatial predicates on geography columns. The predicates are _st_d_within and _st_intersects.
 2019-03-25 17:59:52 +05:30
Rikin Kachhia
1ba382193e update console and docs favicons (close #1485) (#1760) 2019-03-25 15:42:56 +05:30
Rakesh Emmadi
5bafdce9a3 fix delete mutation returning incorrect data (fix #1794) (fix #1763) (#1827) 
From `alpha-40` we've been using a `WHERE` clause to fetch required rows and generate mutation response. This has a few limitations like the requirement of a primary key/unique constraint. This also returns inconsistent data on `delete` mutation as mentioned in #1794. 
Now, we're using `VALUES (..)` (refer [here](https://www.postgresql.org/docs/current/sql-values.html)) expression to form virtual table rows in `SQL` to generate mutation response.

Internal changes:-
- Not to use primary key/unique constraint columns:-
  - Revert back to `ConstraintName` from `TableConstraint` in `TableInfo` type
  - Remove `tcCols` field in `TableConstraint` type
  - Modify `table_info.sql` and `fetchTableMeta` function `SQL`
- A test case to perform `delete` mutation and returning relational objects.
 2019-03-22 12:38:42 +05:30
Aravind Shankar
8043ddeebf accept a json or yaml file for metadata apply command (close #1698) (#1746) 2019-03-20 10:40:06 +05:30
Anon Ray
6e464a1342 pg permission docs: make hasura user owner of system schemas (fix #1697) (#1727) 
There was a postgres permission issue in the docs. The hasura user
  needed to be owner of the system schemas (hdb_catalog), otherwise it
  won't be able to table schema changes during version upgrades.
 2019-03-19 10:06:40 +05:30
Aravind Shankar
040bef2fd5 add options to create migration from files from sql and server (close #1699) (#1761) 2019-03-18 22:10:04 +05:30
Rakesh Emmadi
4970fde767 document unique/primary key constraint requirement for mutation response (#1776) 2019-03-18 13:51:58 +05:30
Tanmai Gopal
75ec309e8a update auth0 jwt guide to add debug instructions (close #1769) (#1771) 2019-03-14 14:10:13 +05:30
Rikin Kachhia
6c2f64b68a
update docs (#1748) 
* increase roles TOC depth
* update enum docs page
* open external links in docs in new tabs
* update nested object sort docs
 2019-03-13 15:34:40 +05:30
Rikin Kachhia
c753426934
add image zoom in docs (close #1483) (#1752) 2019-03-13 15:33:45 +05:30
Shahidh K Muhammed
efc97c0b5c update digitalocean guide to include marketplace (#1706) 2019-03-07 12:40:16 +05:30
Rikin Kachhia
c35753932f
update docs (#1696) 2019-03-06 14:28:04 +05:30
Anon Ray
02d80c9ac6 read cookie while initialising websocket connection (fix #1660) (#1668) 
* read cookie while initialising websocket connection (fix #1660)

* add tests for cookie on websocket init

* fix logic for tests

* enforce cors, and flag to force read cookie when cors disabled

  - as browsers don't enforce SOP on websockets, we enforce CORS policy
  on websocket handshake
  - if CORS is disabled, by default cookie is not read (because XSS
  risk!). Add special flag to force override this behaviour

* add log and forward origin header to webhook

  - add log notice when cors is disabled, and cookie is not read on
  websocket handshake
  - forward origin header to webhook in POST mode. So that when CORS is
  disabled, webhook can also enforce CORS independently.

* add docs, and forward all client headers to webhook
 2019-03-04 13:16:53 +05:30
Rakesh Emmadi
377290a058 breaking: correct (de)serialisation of postgres numeric types in json (fix #1523) (#1662) 2019-03-01 17:15:04 +05:30
nizar-m
1fa66dc622 add option to disable metadata and graphql apis (close #1088) (#1650) 2019-02-28 19:23:03 +05:30
Shahidh K Muhammed
097bfb6bfa revert "forward response headers from remote servers (#1664)" 
This reverts commit c19fe35f4e.
 2019-02-28 17:20:56 +05:30
Anon Ray
c19fe35f4e forward response headers from remote servers (fix #1654) (#1664) 2019-02-28 17:15:07 +05:30
Nathan Waters
9cfdef3645 add fuzzy match search example to custom function docs (#1555) 2019-02-28 15:30:16 +05:30
Jonathan Chhabra
7d61422888 add section for unauthorized role in auth0 guide (#1484) 2019-02-28 15:08:16 +05:30
Anne Ogborn
6eae576e79 update dependencies needed for apollo in apollo-subscriptions guide (close #1643) (#1644) 2019-02-22 12:00:52 +05:30
Shahidh K Muhammed
d3b994885e add google cloud gke cloud sql deployment guide to docs (close #1386) (#1628) 2019-02-20 14:09:50 +05:30
Rikin Kachhia
875076939c
update cli install instructions in migrations docs (#1607) 2019-02-17 17:15:34 +05:30
Rikin Kachhia
75674859b3
update console permissions (close #1503, #1529, #1567, #1470) (#1605) 
* show roles from all tables/views in the schema
* show operators and set values based on field type in permission builder
* add support for jsonb and postgis operators in permission builder
* add note for permissions for relationships
* enable only one Save permissions button if apply to other roles is selected
 2019-02-17 16:06:29 +05:30
Rakesh Emmadi
7334c65087 update operators in metadata api docs (#1610) 2019-02-15 18:18:18 +05:30
Rikin Kachhia
c90b03dbc7
fix docs content (#1603) 2019-02-14 16:44:25 +05:30
nizar-m
f83a8e591f rename access-key to admin-secret (close #1347) (#1540) 
Rename the admin secret key header used to access GraphQL engine from X-Hasura-Access-Key to X-Hasura-Admin-Secret.

Server CLI and console all support the older flag but marks it as deprecated.
 2019-02-14 15:07:47 +05:30
Anon Ray
199a24d050 add support for multiple domains in cors config (close #1436) (#1536) 
Support for multiple domains (as CSV) in the `--cors-domain` flag and `HASURA_GRAPHQL_CORS_DOMAIN` env var.

Following are all valid configurations (must include scheme and optional port):
```shell
HASURA_GRAPHQL_CORS_DOMAIN="https://*.foo.bar.com:8080"
HASURA_GRAPHQL_CORS_DOMAIN="https://*.foo.bar.com, http://*.localhost, https://example.com"
HASURA_GRAPHQL_CORS_DOMAIN="*"
HASURA_GRAPHQL_CORS_DOMAIN="http://example.com, http://*.localhost, http://localhost:3000, https://*.foo.bar.com, https://foo.bar.com"
```

**Note**: top-level domains are not considered as part of wildcard domains. You have to add them separately. E.g - `https://*.foo.com` doesn't include `https://foo.com`.

The default (if the flag or env var is not specified) is `*`. Which means CORS headers are sent for all domains.
 2019-02-14 11:28:38 +05:30
Rikin Kachhia
e8e0168da7 docs update (#1535) 2019-02-06 12:09:36 +05:30
Shahidh K Muhammed
55cc5fb044
cli: add new install script, commands (#1556) 2019-02-05 18:21:21 +05:30
Anon Ray
4f6462e98f add config for stringified hasura claims in JWT (fix #1176) (#1538) 2019-02-05 17:34:16 +05:30
Rikin Kachhia
729ed5b22f
fix docs footer for mobile (#1557) 2019-02-04 19:42:09 +05:30
Rikin Kachhia
6fc78d2a3d
update docs footer (#1519) 2019-01-29 21:24:56 +05:30
samuela
f5bf7c961b update create relationship docs (#1481) 2019-01-29 20:10:13 +05:30
Rikin Kachhia
29b2922394
update using existing database docs (close #1417) (#1460) 2019-01-29 14:57:15 +05:30
Tanmai Gopal
c6e5add28a update telemetry docs (#1499) 2019-01-28 22:27:39 +05:30
Anon Ray
4ae44f7b5d add functions to server telemetry (#1500) 2019-01-28 22:16:44 +05:30
nizar-m
32387ba964 support union and interface types in remote schema (close #1276) (#1361) 2019-01-28 22:15:10 +05:30
Shahidh K Muhammed
11e7c3f9d6 add anonymous telemetry (#1401) 2019-01-28 19:25:28 +05:30
Tirumarai Selvan
e590144d02 send session variables in event trigger payload (close #1328) (#1458) 2019-01-28 11:42:52 +05:30
Rakesh Emmadi
0bf2457e23 allow exposing postgres functions through GraphQL interface (close #333) (#1073) 2019-01-25 09:01:54 +05:30
Rikin Kachhia
5b66ca8c42 docs: cli related and syntax fix (#1463) 2019-01-24 19:46:34 +05:30
Rikin Kachhia
a39fd047f0
update docs footer (#1445) 2019-01-23 20:36:37 +05:30