-
Notifications
You must be signed in to change notification settings - Fork 2.8k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Support remote relationship in permission filter (#904)
<!-- The PR description should answer 2 (maybe 3) important questions: --> Closes: https://linear.app/hasura/issue/APIPG-397/support-remote-relationship-predicates-in-permission-filters ### What <!-- What is this PR trying to accomplish (and why, if it's not obvious)? --> <!-- Consider: do we need to add a changelog entry? --> Allow defining permission filters with remote relationships in their predicates. ### How <!-- How is it trying to accomplish it (what are the implementation steps)? --> - Lift metadata resolve restriction for remote relationships in permission predicates - Abstract out the remote relationship resolving logic, in query filter, into a new function and re-use it while resolving permission filters. - Tests: - A metadata build test to check the presence of essential equal operator on source fields in relationship mapping. - Ported all `select_many/relationship_predicate/`* tests to a new `select_many/remote_relationship_predicate/*` with appropriate metadata changes. --------- Co-authored-by: Anon Ray <ecthiender@users.noreply.github.com> V3_GIT_ORIGIN_REV_ID: 9c496ecdc9829ed626354ef85e776e1afcb0dfc7
1 parent
736def0
commit 7177a42
Showing
46 changed files
with
10,935 additions
and
245 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
157 changes: 157 additions & 0 deletions
157
...ests/execute/models/select_many/remote_relationship_predicates/array/nested/expected.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,157 @@ | ||
| [ | ||
| { | ||
| "data": { | ||
| "Album": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Tracks": [ | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 1, | ||
| "Title": "For Those About To Rock We Salute You" | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "AlbumId": 2, | ||
| "Tracks": [ | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 2, | ||
| "Title": "Balls to the Wall" | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| } | ||
| ], | ||
| "AlbumWithFilterAndPredicate": [ | ||
| { | ||
| "AlbumId": 3, | ||
| "Tracks": [ | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 3, | ||
| "Title": "Restless and Wild" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 3, | ||
| "Title": "Restless and Wild" | ||
| } | ||
| ] | ||
| }, | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 3, | ||
| "Title": "Restless and Wild" | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| } | ||
| }, | ||
| { | ||
| "data": { | ||
| "Album": [ | ||
| { | ||
| "AlbumId": 2, | ||
| "Tracks": [ | ||
| { | ||
| "TrackAlbums": [ | ||
| { | ||
| "AlbumId": 2, | ||
| "Title": "Balls to the Wall" | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| } | ||
| ], | ||
| "AlbumWithFilterAndPredicate": [] | ||
| } | ||
| } | ||
| ] |
91 changes: 91 additions & 0 deletions
91
...ests/execute/models/select_many/remote_relationship_predicates/array/nested/metadata.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,91 @@ | ||
| { | ||
| "version": "v2", | ||
| "subgraphs": [ | ||
| { | ||
| "name": "default", | ||
| "objects": [ | ||
| { | ||
| "definition": { | ||
| "modelName": "Albums", | ||
| "permissions": [ | ||
| { | ||
| "role": "admin", | ||
| "select": { | ||
| "filter": null | ||
| } | ||
| }, | ||
| { | ||
| "role": "user", | ||
| "select": { | ||
| "filter": { | ||
| "relationship": { | ||
| "name": "Tracks", | ||
| "predicate": { | ||
| "relationship": { | ||
| "name": "TrackAlbumsRemote", | ||
| "predicate": { | ||
| "fieldComparison": { | ||
| "field": "AlbumId", | ||
| "operator": "_eq", | ||
| "value": { | ||
| "sessionVariable": "x-hasura-user-id" | ||
| } | ||
| } | ||
| } | ||
| } | ||
| } | ||
| } | ||
| } | ||
| } | ||
| } | ||
| ] | ||
| }, | ||
| "version": "v1", | ||
| "kind": "ModelPermissions" | ||
| }, | ||
| { | ||
| "definition": { | ||
| "modelName": "Tracks", | ||
| "permissions": [ | ||
| { | ||
| "role": "admin", | ||
| "select": { | ||
| "filter": null | ||
| } | ||
| }, | ||
| { | ||
| "role": "user", | ||
| "select": { | ||
| "filter": null | ||
| } | ||
| } | ||
| ] | ||
| }, | ||
| "version": "v1", | ||
| "kind": "ModelPermissions" | ||
| }, | ||
| { | ||
| "definition": { | ||
| "modelName": "Artist", | ||
| "permissions": [ | ||
| { | ||
| "role": "admin", | ||
| "select": { | ||
| "filter": null | ||
| } | ||
| }, | ||
| { | ||
| "role": "user", | ||
| "select": { | ||
| "filter": null | ||
| } | ||
| } | ||
| ] | ||
| }, | ||
| "version": "v1", | ||
| "kind": "ModelPermissions" | ||
| } | ||
| ] | ||
| } | ||
| ] | ||
| } |
23 changes: 23 additions & 0 deletions
23
.../tests/execute/models/select_many/remote_relationship_predicates/array/nested/request.gql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,23 @@ | ||
| query MyQuery { | ||
| Album(limit: 2) { | ||
| AlbumId | ||
| Tracks { | ||
| TrackAlbums { | ||
| AlbumId | ||
| Title | ||
| } | ||
| } | ||
| } | ||
| AlbumWithFilterAndPredicate: Album( | ||
| limit: 2 | ||
| where: { Tracks: { TrackId: { _eq: 3 } } } | ||
| ) { | ||
| AlbumId | ||
| Tracks { | ||
| TrackAlbums { | ||
| AlbumId | ||
| Title | ||
| } | ||
| } | ||
| } | ||
| } |
9 changes: 9 additions & 0 deletions
9
...ute/models/select_many/remote_relationship_predicates/array/nested/session_variables.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,9 @@ | ||
| [ | ||
| { | ||
| "x-hasura-role": "admin" | ||
| }, | ||
| { | ||
| "x-hasura-role": "user", | ||
| "x-hasura-user-id": "2" | ||
| } | ||
| ] |
23 changes: 23 additions & 0 deletions
23
...els/select_many/remote_relationship_predicates/array/nested_multiple_fields/expected.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,23 @@ | ||
| [ | ||
| { | ||
| "data": { | ||
| "Artist": [ | ||
| { | ||
| "Name": "AC/DC" | ||
| } | ||
| ] | ||
| } | ||
| }, | ||
| { | ||
| "data": { | ||
| "Artist": [ | ||
| { | ||
| "Name": "AC/DC" | ||
| }, | ||
| { | ||
| "Name": "The Rolling Stones" | ||
| } | ||
| ] | ||
| } | ||
| } | ||
| ] |
Oops, something went wrong.