github/directus
1
1
Fork 0
mirror of https://github.com/directus/directus.git synced 2026-04-25 03:00:53 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc997d2dfc348cf4906374ae20cb5cf8690ad608
directus/api/src/services/specifications.ts
Brainslug abf0cba75d Fixed GraphQL SDL Error (#20535) 
* Fixed missing accountability

* Add changeset

---------

Co-authored-by: Rijk van Zanten <rijkvanzanten@me.com>
2023-11-27 10:23:05 -05:00

596 lines
16 KiB
TypeScript
Raw Blame History

import formatTitle from '@directus/format-title';
import { spec } from '@directus/specs';
import type { Accountability, FieldOverview, Permission, SchemaOverview, Type } from '@directus/types';
import type { Knex } from 'knex';
import { cloneDeep, mergeWith } from 'lodash-es';
import type {
OpenAPIObject,
ParameterObject,
PathItemObject,
ReferenceObject,
SchemaObject,
TagObject,
} from 'openapi3-ts/oas30';
import { OAS_REQUIRED_SCHEMAS } from '../constants.js';
import getDatabase from '../database/index.js';
import env from '../env.js';
import type { AbstractServiceOptions } from '../types/index.js';
import { getRelationType } from '../utils/get-relation-type.js';
import { version } from '../utils/package.js';
import { GraphQLService } from './graphql/index.js';
import { reduceSchema } from '../utils/reduce-schema.js';
export class SpecificationService {
accountability: Accountability | null;
knex: Knex;
schema: SchemaOverview;
oas: OASSpecsService;
graphql: GraphQLSpecsService;
constructor({ accountability, knex, schema }: AbstractServiceOptions) {
this.accountability = accountability || null;
this.knex = knex || getDatabase();
this.schema = schema;
this.oas = new OASSpecsService({ knex, schema, accountability });
this.graphql = new GraphQLSpecsService({ knex, schema, accountability });
}
}
interface SpecificationSubService {
generate: (_?: any) => Promise<any>;
}
class OASSpecsService implements SpecificationSubService {
accountability: Accountability | null;
knex: Knex;
schema: SchemaOverview;
constructor({ knex, schema, accountability }: AbstractServiceOptions) {
this.accountability = accountability || null;
this.knex = knex || getDatabase();
this.schema =
this.accountability?.admin === true ? schema : reduceSchema(schema, accountability?.permissions || null);
}
async generate(host?: string) {
const permissions = this.accountability?.permissions ?? [];
const tags = await this.generateTags();
const paths = await this.generatePaths(permissions, tags);
const components = await this.generateComponents(tags);
const isDefaultPublicUrl = env['PUBLIC_URL'] === '/';
const url = isDefaultPublicUrl && host ? host : env['PUBLIC_URL'];
const spec: OpenAPIObject = {
openapi: '3.0.1',
info: {
title: 'Dynamic API Specification',
description:
'This is a dynamically generated API specification for all endpoints existing on the current project.',
version: version,
},
servers: [
{
url,
description: 'Your current Directus instance.',
},
],
paths,
};
if (tags) spec.tags = tags;
if (components) spec.components = components;
return spec;
}
private async generateTags(): Promise<OpenAPIObject['tags']> {
const systemTags = cloneDeep(spec.tags)!;
const collections = Object.values(this.schema.collections);
const tags: OpenAPIObject['tags'] = [];
for (const systemTag of systemTags) {
// Check if necessary authentication level is given
if (systemTag['x-authentication'] === 'admin' && !this.accountability?.admin) continue;
if (systemTag['x-authentication'] === 'user' && !this.accountability?.user) continue;
// Remaining system tags that don't have an associated collection are publicly available
if (!systemTag['x-collection']) {
tags.push(systemTag);
}
}
for (const collection of collections) {
const isSystem = collection.collection.startsWith('directus_');
// If the collection is one of the system collections, pull the tag from the static spec
if (isSystem) {
for (const tag of spec.tags!) {
if (tag['x-collection'] === collection.collection) {
tags.push(tag);
break;
}
}
} else {
const tag: TagObject = {
name: 'Items' + formatTitle(collection.collection).replace(/ /g, ''),
'x-collection': collection.collection,
};
if (collection.note) {
tag.description = collection.note;
}
tags.push(tag);
}
}
// Filter out the generic Items information
return tags.filter((tag) => tag.name !== 'Items');
}
private async generatePaths(permissions: Permission[], tags: OpenAPIObject['tags']): Promise<OpenAPIObject['paths']> {
const paths: OpenAPIObject['paths'] = {};
if (!tags) return paths;
for (const tag of tags) {
const isSystem = 'x-collection' in tag === false || tag['x-collection'].startsWith('directus_');
if (isSystem) {
for (const [path, pathItem] of Object.entries<PathItemObject>(spec.paths)) {
for (const [method, operation] of Object.entries(pathItem)) {
if (operation.tags?.includes(tag.name)) {
if (!paths[path]) {
paths[path] = {};
}
const hasPermission =
this.accountability?.admin === true ||
'x-collection' in tag === false ||
!!permissions.find(
(permission) =>
permission.collection === tag['x-collection'] &&
permission.action === this.getActionForMethod(method),
);
if (hasPermission) {
if ('parameters' in pathItem) {
paths[path]![method as keyof PathItemObject] = {
...operation,
parameters: [...(pathItem.parameters ?? []), ...(operation?.parameters ?? [])],
};
} else {
paths[path]![method as keyof PathItemObject] = operation;
}
}
}
}
}
} else {
const listBase = cloneDeep(spec.paths['/items/{collection}']);
const detailBase = cloneDeep(spec.paths['/items/{collection}/{id}']);
const collection = tag['x-collection'];
const methods: (keyof PathItemObject)[] = ['post', 'get', 'patch', 'delete'];
for (const method of methods) {
const hasPermission =
this.accountability?.admin === true ||
!!permissions.find(
(permission) =>
permission.collection === collection && permission.action === this.getActionForMethod(method),
);
if (hasPermission) {
if (!paths[`/items/${collection}`]) paths[`/items/${collection}`] = {};
if (!paths[`/items/${collection}/{id}`]) paths[`/items/${collection}/{id}`] = {};
if (listBase?.[method]) {
paths[`/items/${collection}`]![method] = mergeWith(
cloneDeep(listBase[method]),
{
description: listBase[method].description.replace('item', collection + ' item'),
tags: [tag.name],
parameters: 'parameters' in listBase ? this.filterCollectionFromParams(listBase.parameters) : [],
operationId: `${this.getActionForMethod(method)}${tag.name}`,
requestBody: ['get', 'delete'].includes(method)
? undefined
: {
content: {
'application/json': {
schema: {
oneOf: [
{
type: 'array',
items: {
$ref: `#/components/schemas/${tag.name}`,
},
},
{
$ref: `#/components/schemas/${tag.name}`,
},
],
},
},
},
},
responses: {
'200': {
description: 'Successful request',
content:
method === 'delete'
? undefined
: {
'application/json': {
schema: {
properties: {
data: {
items: {
$ref: `#/components/schemas/${tag.name}`,
},
},
},
},
},
},
},
},
},
(obj, src) => {
if (Array.isArray(obj)) return obj.concat(src);
return undefined;
},
);
}
if (detailBase?.[method]) {
paths[`/items/${collection}/{id}`]![method] = mergeWith(
cloneDeep(detailBase[method]),
{
description: detailBase[method].description.replace('item', collection + ' item'),
tags: [tag.name],
operationId: `${this.getActionForMethod(method)}Single${tag.name}`,
parameters: 'parameters' in detailBase ? this.filterCollectionFromParams(detailBase.parameters) : [],
requestBody: ['get', 'delete'].includes(method)
? undefined
: {
content: {
'application/json': {
schema: {
$ref: `#/components/schemas/${tag.name}`,
},
},
},
},
responses: {
'200': {
content:
method === 'delete'
? undefined
: {
'application/json': {
schema: {
properties: {
data: {
$ref: `#/components/schemas/${tag.name}`,
},
},
},
},
},
},
},
},
(obj, src) => {
if (Array.isArray(obj)) return obj.concat(src);
return undefined;
},
);
}
}
}
}
}
return paths;
}
private async generateComponents(tags: OpenAPIObject['tags']): Promise<OpenAPIObject['components']> {
if (!tags) return;
let components: OpenAPIObject['components'] = cloneDeep(spec.components);
if (!components) components = {};
components.schemas = {};
const tagSchemas = tags.reduce(
(schemas, tag) => [...schemas, ...(tag['x-schemas'] ? tag['x-schemas'] : [])],
[] as string[],
);
const requiredSchemas = [...OAS_REQUIRED_SCHEMAS, ...tagSchemas];
for (const [name, schema] of Object.entries(spec.components?.schemas ?? {})) {
if (requiredSchemas.includes(name)) {
const collection = spec.tags?.find((tag) => tag.name === name)?.['x-collection'];
components.schemas[name] = {
...cloneDeep(schema),
...(collection && { 'x-collection': collection }),
};
}
}
const collections = Object.values(this.schema.collections);
for (const collection of collections) {
const tag = tags.find((tag) => tag['x-collection'] === collection.collection);
if (!tag) continue;
const isSystem = collection.collection.startsWith('directus_');
const fieldsInCollection = Object.values(collection.fields);
if (isSystem) {
const schemaComponent = cloneDeep(spec.components!.schemas![tag.name]) as SchemaObject;
schemaComponent.properties = {};
schemaComponent['x-collection'] = collection.collection;
for (const field of fieldsInCollection) {
schemaComponent.properties[field.field] =
(cloneDeep(
(spec.components!.schemas![tag.name] as SchemaObject).properties![field.field],
) as SchemaObject) || this.generateField(collection.collection, field, tags);
}
components.schemas[tag.name] = schemaComponent;
} else {
const schemaComponent: SchemaObject = {
type: 'object',
properties: {},
'x-collection': collection.collection,
};
for (const field of fieldsInCollection) {
schemaComponent.properties![field.field] = this.generateField(collection.collection, field, tags);
}
components.schemas[tag.name] = schemaComponent;
}
}
return components;
}
private filterCollectionFromParams(
parameters: (ParameterObject | ReferenceObject)[],
): (ParameterObject | ReferenceObject)[] {
return parameters.filter((param) => (param as ReferenceObject)?.$ref !== '#/components/parameters/Collection');
}
private getActionForMethod(method: string): 'create' | 'read' | 'update' | 'delete' {
switch (method) {
case 'post':
return 'create';
case 'patch':
return 'update';
case 'delete':
return 'delete';
case 'get':
default:
return 'read';
}
}
private generateField(collection: string, field: FieldOverview, tags: TagObject[]): SchemaObject {
let propertyObject: SchemaObject = {};
propertyObject.nullable = field.nullable;
if (field.note) {
propertyObject.description = field.note;
}
const relation = this.schema.relations.find(
(relation) =>
(relation.collection === collection && relation.field === field.field) ||
(relation.related_collection === collection && relation.meta?.one_field === field.field),
);
if (!relation) {
propertyObject = {
...propertyObject,
...this.fieldTypes[field.type],
};
} else {
const relationType = getRelationType({
relation,
field: field.field,
collection: collection,
});
if (relationType === 'm2o') {
const relatedTag = tags.find((tag) => tag['x-collection'] === relation.related_collection);
if (
!relatedTag ||
!relation.related_collection ||
relation.related_collection in this.schema.collections === false
) {
return propertyObject;
}
const relatedCollection = this.schema.collections[relation.related_collection]!;
const relatedPrimaryKeyField = relatedCollection.fields[relatedCollection.primary]!;
propertyObject.oneOf = [
{
...this.fieldTypes[relatedPrimaryKeyField.type],
},
{
$ref: `#/components/schemas/${relatedTag.name}`,
},
];
} else if (relationType === 'o2m') {
const relatedTag = tags.find((tag) => tag['x-collection'] === relation.collection);
if (!relatedTag || !relation.related_collection || relation.collection in this.schema.collections === false) {
return propertyObject;
}
const relatedCollection = this.schema.collections[relation.collection]!;
const relatedPrimaryKeyField = relatedCollection.fields[relatedCollection.primary]!;
if (!relatedTag || !relatedPrimaryKeyField) return propertyObject;
propertyObject.type = 'array';
propertyObject.items = {
oneOf: [
{
...this.fieldTypes[relatedPrimaryKeyField.type],
},
{
$ref: `#/components/schemas/${relatedTag.name}`,
},
],
};
} else if (relationType === 'a2o') {
const relatedTags = tags.filter((tag) => relation.meta!.one_allowed_collections!.includes(tag['x-collection']));
propertyObject.type = 'array';
propertyObject.items = {
oneOf: [
{
type: 'string',
},
...(relatedTags.map((tag) => ({
$ref: `#/components/schemas/${tag.name}`,
})) as any),
],
};
}
}
return propertyObject;
}
private fieldTypes: Record<Type, Partial<SchemaObject>> = {
alias: {
type: 'string',
},
bigInteger: {
type: 'integer',
format: 'int64',
},
binary: {
type: 'string',
format: 'binary',
},
boolean: {
type: 'boolean',
},
csv: {
type: 'array',
items: {
type: 'string',
},
},
date: {
type: 'string',
format: 'date',
},
dateTime: {
type: 'string',
format: 'date-time',
},
decimal: {
type: 'number',
},
float: {
type: 'number',
format: 'float',
},
hash: {
type: 'string',
},
integer: {
type: 'integer',
},
json: {},
string: {
type: 'string',
},
text: {
type: 'string',
},
time: {
type: 'string',
format: 'time',
},
timestamp: {
type: 'string',
format: 'timestamp',
},
unknown: {},
uuid: {
type: 'string',
format: 'uuid',
},
geometry: {
type: 'object',
},
'geometry.Point': {
type: 'object',
},
'geometry.LineString': {
type: 'object',
},
'geometry.Polygon': {
type: 'object',
},
'geometry.MultiPoint': {
type: 'object',
},
'geometry.MultiLineString': {
type: 'object',
},
'geometry.MultiPolygon': {
type: 'object',
},
};
}
class GraphQLSpecsService implements SpecificationSubService {
accountability: Accountability | null;
knex: Knex;
schema: SchemaOverview;
items: GraphQLService;
system: GraphQLService;
constructor(options: AbstractServiceOptions) {
this.accountability = options.accountability || null;
this.knex = options.knex || getDatabase();
this.schema = options.schema;
this.items = new GraphQLService({ ...options, scope: 'items' });
this.system = new GraphQLService({ ...options, scope: 'system' });
}
async generate(scope: 'items' | 'system') {
if (scope === 'items') return this.items.getSchema('sdl');
if (scope === 'system') return this.system.getSchema('sdl');
return null;
}
}
Reference in New Issue View Git Blame Copy Permalink