Merge pull request #2560 from Budibase/fix/multi-tenancy-prod
Fixing issues with multi-tenancy breaking various server endpoints in prod
This commit is contained in:
commit
cfa1ab8971
|
@ -2,12 +2,13 @@ const { setTenantId } = require("../tenancy")
|
||||||
const ContextFactory = require("../tenancy/FunctionContext")
|
const ContextFactory = require("../tenancy/FunctionContext")
|
||||||
const { buildMatcherRegex, matches } = require("./matchers")
|
const { buildMatcherRegex, matches } = require("./matchers")
|
||||||
|
|
||||||
module.exports = (allowQueryStringPatterns, noTenancyPatterns) => {
|
module.exports = (allowQueryStringPatterns, noTenancyPatterns, opts = {}) => {
|
||||||
const allowQsOptions = buildMatcherRegex(allowQueryStringPatterns)
|
const allowQsOptions = buildMatcherRegex(allowQueryStringPatterns)
|
||||||
const noTenancyOptions = buildMatcherRegex(noTenancyPatterns)
|
const noTenancyOptions = buildMatcherRegex(noTenancyPatterns)
|
||||||
|
|
||||||
return ContextFactory.getMiddleware(ctx => {
|
return ContextFactory.getMiddleware(ctx => {
|
||||||
const allowNoTenant = !!matches(ctx, noTenancyOptions)
|
const allowNoTenant =
|
||||||
|
opts.noTenancyRequired || !!matches(ctx, noTenancyOptions)
|
||||||
const allowQs = !!matches(ctx, allowQsOptions)
|
const allowQs = !!matches(ctx, allowQsOptions)
|
||||||
setTenantId(ctx, { allowQs, allowNoTenant })
|
setTenantId(ctx, { allowQs, allowNoTenant })
|
||||||
})
|
})
|
||||||
|
|
|
@ -6,8 +6,16 @@ import {
|
||||||
SearchFilters,
|
SearchFilters,
|
||||||
SortJson,
|
SortJson,
|
||||||
} from "../../../definitions/datasource"
|
} from "../../../definitions/datasource"
|
||||||
import {Datasource, FieldSchema, Row, Table} from "../../../definitions/common"
|
import {
|
||||||
import {breakRowIdField, generateRowIdField} from "../../../integrations/utils"
|
Datasource,
|
||||||
|
FieldSchema,
|
||||||
|
Row,
|
||||||
|
Table,
|
||||||
|
} from "../../../definitions/common"
|
||||||
|
import {
|
||||||
|
breakRowIdField,
|
||||||
|
generateRowIdField,
|
||||||
|
} from "../../../integrations/utils"
|
||||||
import { RelationshipTypes } from "../../../constants"
|
import { RelationshipTypes } from "../../../constants"
|
||||||
|
|
||||||
interface ManyRelationship {
|
interface ManyRelationship {
|
||||||
|
@ -348,7 +356,7 @@ module External {
|
||||||
* information.
|
* information.
|
||||||
*/
|
*/
|
||||||
async lookupRelations(tableId: string, row: Row) {
|
async lookupRelations(tableId: string, row: Row) {
|
||||||
const related: {[key: string]: any} = {}
|
const related: { [key: string]: any } = {}
|
||||||
const { tableName } = breakExternalTableId(tableId)
|
const { tableName } = breakExternalTableId(tableId)
|
||||||
const table = this.tables[tableName]
|
const table = this.tables[tableName]
|
||||||
// @ts-ignore
|
// @ts-ignore
|
||||||
|
@ -387,7 +395,11 @@ module External {
|
||||||
* isn't supposed to exist anymore and delete those. This is better than the usual method of delete them
|
* isn't supposed to exist anymore and delete those. This is better than the usual method of delete them
|
||||||
* all and then re-create, as theres no chance of losing data (e.g. delete succeed, but write fail).
|
* all and then re-create, as theres no chance of losing data (e.g. delete succeed, but write fail).
|
||||||
*/
|
*/
|
||||||
async handleManyRelationships(mainTableId: string, row: Row, relationships: ManyRelationship[]) {
|
async handleManyRelationships(
|
||||||
|
mainTableId: string,
|
||||||
|
row: Row,
|
||||||
|
relationships: ManyRelationship[]
|
||||||
|
) {
|
||||||
const { appId } = this
|
const { appId } = this
|
||||||
// if we're creating (in a through table) need to wipe the existing ones first
|
// if we're creating (in a through table) need to wipe the existing ones first
|
||||||
const promises = []
|
const promises = []
|
||||||
|
@ -399,8 +411,10 @@ module External {
|
||||||
// @ts-ignore
|
// @ts-ignore
|
||||||
const linkPrimary = linkTable.primary[0]
|
const linkPrimary = linkTable.primary[0]
|
||||||
const rows = related[key].rows || []
|
const rows = related[key].rows || []
|
||||||
const found = rows.find((row: { [key: string]: any }) =>
|
const found = rows.find(
|
||||||
row[linkPrimary] === relationship.id || row[linkPrimary] === body[linkPrimary]
|
(row: { [key: string]: any }) =>
|
||||||
|
row[linkPrimary] === relationship.id ||
|
||||||
|
row[linkPrimary] === body[linkPrimary]
|
||||||
)
|
)
|
||||||
const operation = isUpdate
|
const operation = isUpdate
|
||||||
? DataSourceOperation.UPDATE
|
? DataSourceOperation.UPDATE
|
||||||
|
@ -420,13 +434,17 @@ module External {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
// finally cleanup anything that needs to be removed
|
// finally cleanup anything that needs to be removed
|
||||||
for (let [colName, {isMany, rows, tableId}] of Object.entries(related)) {
|
for (let [colName, { isMany, rows, tableId }] of Object.entries(
|
||||||
|
related
|
||||||
|
)) {
|
||||||
const table = this.getTable(tableId)
|
const table = this.getTable(tableId)
|
||||||
for (let row of rows) {
|
for (let row of rows) {
|
||||||
const filters = buildFilters(generateIdForRow(row, table), {}, table)
|
const filters = buildFilters(generateIdForRow(row, table), {}, table)
|
||||||
// safety check, if there are no filters on deletion bad things happen
|
// safety check, if there are no filters on deletion bad things happen
|
||||||
if (Object.keys(filters).length !== 0) {
|
if (Object.keys(filters).length !== 0) {
|
||||||
const op = isMany ? DataSourceOperation.DELETE : DataSourceOperation.UPDATE
|
const op = isMany
|
||||||
|
? DataSourceOperation.DELETE
|
||||||
|
: DataSourceOperation.UPDATE
|
||||||
const body = isMany ? null : { [colName]: null }
|
const body = isMany ? null : { [colName]: null }
|
||||||
promises.push(
|
promises.push(
|
||||||
makeExternalQuery(this.appId, {
|
makeExternalQuery(this.appId, {
|
||||||
|
@ -448,7 +466,10 @@ module External {
|
||||||
* Creating the specific list of fields that we desire, and excluding the ones that are no use to us
|
* Creating the specific list of fields that we desire, and excluding the ones that are no use to us
|
||||||
* is more performant and has the added benefit of protecting against this scenario.
|
* is more performant and has the added benefit of protecting against this scenario.
|
||||||
*/
|
*/
|
||||||
buildFields(table: Table, includeRelations: IncludeRelationships = IncludeRelationships.INCLUDE) {
|
buildFields(
|
||||||
|
table: Table,
|
||||||
|
includeRelations: IncludeRelationships = IncludeRelationships.INCLUDE
|
||||||
|
) {
|
||||||
function extractNonLinkFieldNames(table: Table, existing: string[] = []) {
|
function extractNonLinkFieldNames(table: Table, existing: string[] = []) {
|
||||||
return Object.entries(table.schema)
|
return Object.entries(table.schema)
|
||||||
.filter(
|
.filter(
|
||||||
|
@ -523,7 +544,10 @@ module External {
|
||||||
// can't really use response right now
|
// can't really use response right now
|
||||||
const response = await makeExternalQuery(appId, json)
|
const response = await makeExternalQuery(appId, json)
|
||||||
// handle many to many relationships now if we know the ID (could be auto increment)
|
// handle many to many relationships now if we know the ID (could be auto increment)
|
||||||
if (operation !== DataSourceOperation.READ && processed.manyRelationships) {
|
if (
|
||||||
|
operation !== DataSourceOperation.READ &&
|
||||||
|
processed.manyRelationships
|
||||||
|
) {
|
||||||
await this.handleManyRelationships(
|
await this.handleManyRelationships(
|
||||||
table._id || "",
|
table._id || "",
|
||||||
response[0],
|
response[0],
|
||||||
|
|
|
@ -10,27 +10,6 @@ const env = require("../environment")
|
||||||
|
|
||||||
const router = new Router()
|
const router = new Router()
|
||||||
|
|
||||||
const NO_TENANCY_ENDPOINTS = [
|
|
||||||
{
|
|
||||||
route: "/api/analytics",
|
|
||||||
method: "GET",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
route: "/builder",
|
|
||||||
method: "GET",
|
|
||||||
},
|
|
||||||
// when using this locally there can be pass through, need
|
|
||||||
// to allow all pass through endpoints to go without tenancy
|
|
||||||
{
|
|
||||||
route: "/api/global",
|
|
||||||
method: "ALL",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
route: "/api/system",
|
|
||||||
method: "ALL",
|
|
||||||
},
|
|
||||||
]
|
|
||||||
|
|
||||||
router
|
router
|
||||||
.use(
|
.use(
|
||||||
compress({
|
compress({
|
||||||
|
@ -53,13 +32,21 @@ router
|
||||||
})
|
})
|
||||||
.use("/health", ctx => (ctx.status = 200))
|
.use("/health", ctx => (ctx.status = 200))
|
||||||
.use("/version", ctx => (ctx.body = pkg.version))
|
.use("/version", ctx => (ctx.body = pkg.version))
|
||||||
|
// re-direct before any middlewares occur
|
||||||
|
.redirect("/", "/builder")
|
||||||
.use(
|
.use(
|
||||||
buildAuthMiddleware(null, {
|
buildAuthMiddleware(null, {
|
||||||
publicAllowed: true,
|
publicAllowed: true,
|
||||||
})
|
})
|
||||||
)
|
)
|
||||||
// nothing in the server should allow query string tenants
|
// nothing in the server should allow query string tenants
|
||||||
.use(buildTenancyMiddleware(null, NO_TENANCY_ENDPOINTS))
|
// the server can be public anywhere, so nowhere should throw errors
|
||||||
|
// if the tenancy has not been set, it'll have to be discovered at application layer
|
||||||
|
.use(
|
||||||
|
buildTenancyMiddleware(null, null, {
|
||||||
|
noTenancyRequired: true,
|
||||||
|
})
|
||||||
|
)
|
||||||
.use(currentApp)
|
.use(currentApp)
|
||||||
.use(auditLog)
|
.use(auditLog)
|
||||||
|
|
||||||
|
@ -93,7 +80,4 @@ for (let route of mainRoutes) {
|
||||||
router.use(staticRoutes.routes())
|
router.use(staticRoutes.routes())
|
||||||
router.use(staticRoutes.allowedMethods())
|
router.use(staticRoutes.allowedMethods())
|
||||||
|
|
||||||
// add a redirect for when hitting server directly
|
|
||||||
router.redirect("/", "/builder")
|
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -42,7 +42,7 @@ export enum SourceNames {
|
||||||
|
|
||||||
export enum IncludeRelationships {
|
export enum IncludeRelationships {
|
||||||
INCLUDE = 1,
|
INCLUDE = 1,
|
||||||
EXCLUDE = 0
|
EXCLUDE = 0,
|
||||||
}
|
}
|
||||||
|
|
||||||
export interface QueryDefinition {
|
export interface QueryDefinition {
|
||||||
|
|
Loading…
Reference in New Issue