npm - @sap/cds - Versions diffs - 5.5.2 → 5.6.0 - Mend

@sap/cds 5.5.2 → 5.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (228) hide show

package/CHANGELOG.md +150 -17
package/apis/services.d.ts +27 -1
package/app/index.js +22 -11
package/bin/build/buildTaskFactory.js +1 -1
package/bin/build/provider/buildTaskProviderInternal.js +1 -1
package/bin/build/provider/fiori/index.js +1 -1
package/bin/build/provider/hana/2migration.js +8 -7
package/bin/build/provider/java-cf/index.js +1 -1
package/bin/deploy/to-hana/hana.js +1 -17
package/common.cds +8 -0
package/lib/compile/index.js +1 -1
package/lib/compile/to/sql.js +22 -2
package/lib/connect/bindings.js +2 -1
package/lib/connect/index.js +1 -1
package/lib/core/infer.js +1 -1
package/lib/core/reflect.js +3 -1
package/lib/env/index.js +175 -41
package/lib/env/requires.js +24 -3
package/lib/i18n/localize.js +31 -4
package/lib/index.js +7 -6
package/lib/log/format/kibana.js +6 -2
package/lib/ql/DELETE.js +1 -1
package/lib/ql/INSERT.js +1 -1
package/lib/ql/Query.js +13 -10
package/lib/ql/SELECT.js +15 -8
package/lib/ql/UPDATE.js +1 -1
package/lib/ql/Whereable.js +5 -0
package/lib/req/context.js +87 -37
package/lib/req/{impl.js → request.js} +1 -1
package/lib/req/{res.js → response.js} +0 -0
package/lib/serve/Service-api.js +1 -1
package/lib/serve/Service-dispatch.js +12 -2
package/lib/serve/Service-handlers.js +21 -7
package/lib/serve/Service-methods.js +1 -1
package/lib/serve/Transaction.js +7 -6
package/lib/serve/index.js +1 -1
package/lib/utils/axios.js +7 -0
package/lib/utils/data.js +1 -1
package/lib/utils/tests.js +5 -3
package/libx/_runtime/audit/Service.js +18 -18
package/libx/_runtime/audit/generic/personal/access.js +1 -1
package/libx/_runtime/audit/generic/personal/modification.js +3 -2
package/libx/_runtime/audit/generic/personal/utils.js +23 -63
package/libx/_runtime/cds-services/adapter/odata-v4/Dispatcher.js +6 -0
package/libx/_runtime/cds-services/adapter/odata-v4/OData.js +37 -35
package/libx/_runtime/cds-services/adapter/odata-v4/ODataRequest.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/create.js +3 -1
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/error.js +5 -5
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/metadata.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/read.js +13 -7
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/update.js +84 -34
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/ExpressionToCQN.js +10 -4
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/applyToCQN.js +9 -3
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/expandToCQN.js +8 -6
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/index.js +1 -3
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/readToCQN.js +13 -11
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/selectHelper.js +11 -95
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/uri/ResourcePathParser.js +17 -11
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/uri/UriParser.js +2 -1
package/libx/_runtime/cds-services/adapter/odata-v4/to.js +6 -2
package/libx/_runtime/cds-services/adapter/odata-v4/utils/data.js +3 -34
package/libx/_runtime/cds-services/adapter/odata-v4/utils/handlerUtils.js +3 -3
package/libx/_runtime/cds-services/adapter/odata-v4/utils/result.js +48 -18
package/libx/_runtime/cds-services/adapter/odata-v4/utils/stream.js +10 -5
package/libx/_runtime/cds-services/adapter/rest/handlers/operation.js +1 -1
package/libx/_runtime/cds-services/adapter/rest/handlers/update.js +1 -1
package/libx/_runtime/cds-services/adapter/rest/rest-to-cqn/index.js +1 -3
package/libx/_runtime/cds-services/adapter/rest/utils/parse-url.js +9 -2
package/libx/_runtime/cds-services/adapter/rest/utils/validation-checks.js +14 -19
package/libx/_runtime/cds-services/services/utils/columns.js +6 -1
package/libx/_runtime/cds-services/services/utils/compareJson.js +1 -8
package/libx/_runtime/cds-services/services/utils/differ.js +7 -26
package/libx/_runtime/cds-services/services/utils/handlerUtils.js +2 -4
package/libx/_runtime/cds-services/util/assert.js +29 -13
package/libx/_runtime/cds.js +2 -1
package/libx/_runtime/common/aspects/Association.js +72 -0
package/libx/_runtime/common/aspects/any.js +8 -45
package/libx/_runtime/common/aspects/entity.js +0 -1
package/libx/_runtime/common/aspects/relation.js +40 -0
package/libx/_runtime/common/aspects/utils.js +73 -1
package/libx/_runtime/common/auth/strategies/utils/uaa.js +1 -12
package/libx/_runtime/common/composition/data.js +3 -2
package/libx/_runtime/common/composition/delete.js +3 -1
package/libx/_runtime/common/composition/tree.js +23 -18
package/libx/_runtime/common/composition/utils.js +34 -8
package/libx/_runtime/common/error/frontend.js +6 -1
package/libx/_runtime/common/generic/auth.js +15 -13
package/libx/_runtime/common/generic/crud.js +2 -2
package/libx/_runtime/common/generic/etag.js +11 -8
package/libx/_runtime/common/generic/input.js +3 -3
package/libx/_runtime/common/generic/paging.js +9 -5
package/libx/_runtime/common/generic/put.js +3 -2
package/libx/_runtime/common/generic/sorting.js +3 -3
package/libx/_runtime/common/generic/temporal.js +3 -3
package/libx/_runtime/common/toggles/alpha.js +1 -1
package/libx/_runtime/common/utils/cqn.js +20 -1
package/libx/_runtime/common/utils/cqn2cqn4sql.js +125 -139
package/libx/_runtime/common/utils/csn.js +50 -52
package/libx/_runtime/common/utils/foreignKeyPropagations.js +41 -176
package/libx/_runtime/common/utils/generateOnCond.js +40 -70
package/libx/_runtime/common/utils/{enrichWithKeysFromWhere.js → keys.js} +29 -28
package/libx/_runtime/common/utils/postProcessing.js +3 -0
package/libx/_runtime/common/utils/propagateForeignKeys.js +84 -0
package/libx/_runtime/common/utils/resolveStructured.js +1 -1
package/libx/_runtime/common/utils/resolveView.js +20 -10
package/libx/_runtime/common/utils/rewriteAsterisks.js +94 -0
package/libx/_runtime/common/utils/search2cqn4sql.js +9 -8
package/libx/_runtime/common/utils/template.js +54 -46
package/libx/_runtime/db/Service.js +9 -2
package/libx/_runtime/db/expand/expandCQNToJoin.js +11 -25
package/libx/_runtime/db/expand/rawToExpanded.js +2 -1
package/libx/_runtime/db/generic/create.js +1 -0
package/libx/_runtime/db/generic/input.js +7 -11
package/libx/_runtime/db/generic/integrity.js +2 -2
package/libx/_runtime/db/generic/rewrite.js +2 -5
package/libx/_runtime/db/generic/update.js +1 -0
package/libx/_runtime/db/query/read.js +10 -5
package/libx/_runtime/db/sql-builder/ExpressionBuilder.js +6 -0
package/libx/_runtime/db/sql-builder/SelectBuilder.js +7 -2
package/libx/_runtime/db/sql-builder/annotations.js +1 -0
package/libx/_runtime/db/utils/columns.js +14 -43
package/libx/_runtime/db/utils/deep.js +5 -7
package/libx/_runtime/fiori/generic/activate.js +3 -2
package/libx/_runtime/fiori/generic/before.js +2 -2
package/libx/_runtime/fiori/generic/cancel.js +3 -2
package/libx/_runtime/fiori/generic/delete.js +3 -2
package/libx/_runtime/fiori/generic/edit.js +2 -2
package/libx/_runtime/fiori/generic/new.js +2 -2
package/libx/_runtime/fiori/generic/patch.js +2 -2
package/libx/_runtime/fiori/generic/prepare.js +2 -2
package/libx/_runtime/fiori/generic/read.js +17 -63
package/libx/_runtime/fiori/generic/readOverDraft.js +4 -4
package/libx/_runtime/fiori/uiflex/extensibility/index.cds +15 -0
package/libx/_runtime/fiori/uiflex/extensibility/index.js +148 -0
package/libx/_runtime/fiori/uiflex/handler/transformREAD.js +119 -0
package/libx/_runtime/fiori/uiflex/handler/transformRESULT.js +43 -0
package/libx/_runtime/fiori/uiflex/handler/transformWRITE.js +62 -0
package/libx/_runtime/fiori/uiflex/index.js +35 -0
package/libx/_runtime/fiori/uiflex/utils.js +78 -0
package/libx/_runtime/fiori/utils/handler.js +3 -13
package/libx/_runtime/fiori/utils/where.js +6 -1
package/libx/_runtime/hana/Service.js +5 -2
package/libx/_runtime/hana/execute.js +1 -1
package/libx/_runtime/hana/pool.js +12 -11
package/libx/_runtime/hana/search2cqn4sql.js +34 -43
package/libx/_runtime/hana/searchToContains.js +3 -3
package/libx/_runtime/index.js +5 -2
package/libx/_runtime/messaging/AMQPWebhookMessaging.js +1 -1
package/libx/_runtime/messaging/common-utils/AMQPClient.js +9 -1
package/libx/_runtime/messaging/common-utils/connections.js +11 -14
package/libx/_runtime/messaging/common-utils/naming-conventions.js +1 -1
package/libx/_runtime/messaging/enterprise-messaging-utils/registerEndpoints.js +2 -1
package/libx/_runtime/messaging/enterprise-messaging.js +1 -1
package/libx/_runtime/messaging/message-queuing.js +18 -0
package/libx/_runtime/remote/Service.js +14 -2
package/libx/_runtime/remote/utils/client-types.d.ts +7 -0
package/libx/_runtime/remote/utils/client.js +117 -23
package/libx/_runtime/sqlite/Service.js +4 -3
package/libx/_runtime/sqlite/convertAssocToOneManaged.js +1 -3
package/libx/_runtime/sqlite/execute.js +1 -1
package/libx/gql/GraphQLAdapter.js +33 -0
package/libx/gql/constants/adapter.js +69 -0
package/libx/gql/constants/cds.js +18 -0
package/libx/gql/constants/graphql.js +33 -0
package/libx/gql/resolvers/crud/create.js +15 -0
package/libx/gql/resolvers/crud/delete.js +24 -0
package/libx/gql/resolvers/crud/index.js +6 -0
package/libx/gql/resolvers/crud/read.js +25 -0
package/libx/gql/resolvers/crud/update.js +31 -0
package/libx/gql/resolvers/crud/utils/index.js +36 -0
package/libx/gql/resolvers/field.js +5 -0
package/libx/gql/resolvers/index.js +7 -0
package/libx/gql/resolvers/mutation.js +23 -0
package/libx/gql/resolvers/parse/ast/enrich.js +51 -0
package/libx/gql/resolvers/parse/ast/fragment.js +11 -0
package/libx/gql/resolvers/parse/ast/fromObject.js +39 -0
package/libx/gql/resolvers/parse/ast/index.js +3 -0
package/libx/gql/resolvers/parse/ast/meta.js +4 -0
package/libx/gql/resolvers/parse/ast/variable.js +7 -0
package/libx/gql/resolvers/parse/ast2cqn/columns.js +42 -0
package/libx/gql/resolvers/parse/ast2cqn/entries.js +31 -0
package/libx/gql/resolvers/parse/ast2cqn/index.js +8 -0
package/libx/gql/resolvers/parse/ast2cqn/limit.js +6 -0
package/libx/gql/resolvers/parse/ast2cqn/orderBy.js +24 -0
package/libx/gql/resolvers/parse/ast2cqn/utils/index.js +3 -0
package/libx/gql/resolvers/parse/ast2cqn/where.js +70 -0
package/libx/gql/resolvers/parse/utils/index.js +8 -0
package/libx/gql/resolvers/query.js +13 -0
package/libx/gql/resolvers/root.js +34 -0
package/libx/gql/schema/generate.js +18 -0
package/libx/gql/schema/index.js +5 -0
package/libx/gql/schema/mutation.js +76 -0
package/libx/gql/schema/query.js +108 -0
package/libx/gql/schema/typeDefMap.js +45 -0
package/libx/gql/schema/utils/index.js +54 -0
package/libx/gql/utils/index.js +12 -0
package/libx/{_runtime/odata/cqn2odata.js → odata/cqn2odata/index.js} +39 -100
package/libx/odata/index.js +80 -0
package/libx/odata/odata2cqn/afterburner.js +170 -0
package/libx/{_runtime/odata/odata2cqn.pegjs → odata/odata2cqn/grammar.pegjs} +102 -123
package/libx/odata/odata2cqn/index.js +3 -0
package/libx/odata/odata2cqn/parser.js +1 -0
package/libx/odata/utils/index.js +64 -0
package/libx/rest/RestAdapter.js +101 -0
package/libx/rest/RestRequest.js +30 -0
package/libx/rest/index.js +3 -0
package/libx/rest/middleware/auth.js +22 -0
package/libx/rest/middleware/content.js +15 -0
package/libx/rest/middleware/create.js +40 -0
package/libx/rest/middleware/delete.js +20 -0
package/libx/rest/middleware/error.js +56 -0
package/libx/rest/middleware/operation.js +39 -0
package/libx/rest/middleware/parse.js +90 -0
package/libx/rest/middleware/read.js +29 -0
package/libx/rest/middleware/update.js +42 -0
package/libx/rest/utils/data.js +65 -0
package/package.json +4 -1
package/server.js +42 -29
package/lib/req/cls.js +0 -39
package/libx/_runtime/cds-services/services/utils/diff.js +0 -53
package/libx/_runtime/cds-services/util/auditlog.js +0 -247
package/libx/_runtime/cds-services/util/xsenv.js +0 -51
package/libx/_runtime/common/utils/backlinks.js +0 -83
package/libx/_runtime/common/utils/rewriteAsterisk.js +0 -72
package/libx/_runtime/odata/index.js +0 -55
package/libx/_runtime/odata/odata2cqn.js +0 -1
package/libx/_runtime/odata/readToCqn.js +0 -129
package/libx/_runtime/remote/cqn2odata/index.js +0 -2

package/libx/rest/middleware/update.js ADDED Viewed

@@ -0,0 +1,42 @@
+const cds = require('../../_runtime/cds')
+const { INSERT } = cds.ql
+const RestRequest = require('../RestRequest')
+const UPSERT_ALLOWED = !(cds.env.runtime && cds.env.runtime.allow_upsert === false)
+const { deepCopyObject } = require('../../_runtime/common/utils/copy')
+module.exports = async (_req, _res, next) => {
+  let { _srv: srv, _query: query, _target, _data, _params } = _req
+  let result,
+    status = 200
+  // unfortunately, express doesn't catch async errors -> try catch needed
+  try {
+    // if upsert it allowed, we need to catch 404 and retry with create
+    try {
+      // add the data (as copy, if upsert allowed)
+      query.with(UPSERT_ALLOWED ? deepCopyObject(_data) : _data)
+      // REVISIT: if PUT, req.method should be PUT -> Crud2Http maps UPSERT to PUT
+      result = await srv.dispatch(new RestRequest({ query, _target, method: _req.method }))
+      if (_params) Object.assign(result, _params[_params.length - 1])
+    } catch (e) {
+      if ((e.code === 404 || e.status === 404 || e.statusCode === 404) && UPSERT_ALLOWED) {
+        query = INSERT.into(query.UPDATE.entity).entries(
+          _params ? Object.assign(_data, _params[_params.length - 1]) : _data
+        )
+        result = await srv.dispatch(new RestRequest({ query, _target }))
+        status = 201
+      } else {
+        throw e
+      }
+    }
+  } catch (e) {
+    return next(e)
+  }
+  _req._result = { result, status }
+  next()
+}

package/libx/rest/utils/data.js ADDED Viewed

@@ -0,0 +1,65 @@
+const cds = require('../../_runtime/cds')
+const { deepCopyObject } = require('../../_runtime/common/utils/copy')
+const { checkKeys, checkStatic } = require('../../_runtime/cds-services/util/assert')
+const { MULTIPLE_ERRORS } = require('../../_runtime/common/error/constants')
+// this can be reused for flattening data on db layer, if necessary
+// const _getFlattenedCopy = (data, key, entity) => {
+//   const d = {}
+//   const prefix = key + '_'
+//   // TODO: ignore or preserve unknown?
+//   const matches = Object.keys(entity.elements)
+//     .filter(ele => ele.startsWith(prefix))
+//     .map(ele => ele.replace(prefix, ''))
+//   if (matches.length) {
+//     const current = data[key]
+//     for (const k of matches) if (current[k] !== undefined) d[prefix + k] = current[k]
+//     const nested = Object.keys(current).filter(k => current[k] && typeof current[k] === 'object')
+//     for (const k of nested) Object.assign(d, _getFlattenedCopy({ [prefix + k]: current[k] }, prefix + k, entity))
+//   }
+//   return d
+// }
+const _getDeepCopy = (data, definition, model, validations, skipKeys) => {
+  skipKeys || (definition.keys && validations.push(...checkKeys(definition, data)))
+  validations.push(...checkStatic(definition, data, true))
+  const d = {}
+  for (const k in data) {
+    const element = (definition.elements && definition.elements[k]) || (definition.params && definition.params[k])
+    if (!element) {
+      const { additional_properties } = cds.env.features
+      if (additional_properties === 'ignore' || !additional_properties) {
+        // ignore input (the default)
+      } else if (additional_properties === 'error') {
+        validations.push({ message: `Unknown property "${k}"`, code: 400 })
+      } else {
+        d[k] = data[k] && typeof data[k] === 'object' ? deepCopyObject(data[k]) : data[k]
+      }
+    } else if (element.isAssociation) {
+      d[k] = Array.isArray(data[k])
+        ? data[k].map(d => _getDeepCopy(d, model.definitions[element.target], model, validations))
+        : _getDeepCopy(data[k], model.definitions[element.target], model, validations)
+    } else if (element._isStructured) {
+      d[k] = _getDeepCopy(data[k], element, model, validations)
+    } else {
+      d[k] = data[k]
+    }
+  }
+  return d
+}
+const getDeepCopy = (data, definition, model, skipKeys) => {
+  const validations = []
+  const copy = Array.isArray(data)
+    ? data.map(d => _getDeepCopy(d, definition, model, validations, skipKeys))
+    : _getDeepCopy(data, definition, model, validations, skipKeys)
+  if (!validations.length) return [undefined, copy]
+  if (validations.length === 1) return [validations[0]]
+  return [Object.assign(new Error(MULTIPLE_ERRORS), { details: validations })]
+}
+module.exports = {
+  getDeepCopy
+}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sap/cds",
-  "version": "5.5.2",
+  "version": "5.6.0",
   "description": "SAP Cloud Application Programming Model - CDS for Node.js",
   "homepage": "https://cap.cloud.sap/",
   "keywords": [
@@ -40,6 +40,9 @@
     }
   },
   "lint-staged": {
+    "libx/odata/odata2cqn/grammar.pegjs": [
+      "npm run pegjs:odata2cqn && git add libx/odata/odata2cqn/parser.js"
+    ],
     "{libx,tests/_runtime}/**/*.js": [
       "npx prettier --write"
     ]

package/server.js CHANGED Viewed

@@ -40,16 +40,23 @@ module.exports = async function cds_server (options, o = { ...options, __proto__
   if (o.logger)    app.use (o.logger)                   //> basic request logging
   if (o.toggler)   app.use (o.toggler)                  //> feature toggler
+  // give uiflex a chance to plug into everything
+  if (cds.requires.extensibility) await require('./libx/_runtime/fiori/uiflex')() // REVISIT: later this should be a ext umbrella service
   // load specified models or all in project
   const csn = await cds.load (o.from||'*', {mocked:o.mocked})
-  cds.model = o.from = cds.linked (cds.compile.for.odata(csn))
+  const m = cds.linked(csn).minified()
+  cds.model = o.from = cds.linked (cds.compile.for.odata(m))
   // connect to essential framework services if required
-  const _init = o.in_memory && (db => cds.deploy(csn).to(db,o))
+  const _init = o.in_memory && (db => cds.deploy(m).to(db,o))
   if (cds.requires.db) cds.db =  await cds.connect.to ('db') .then (_init)
   if (cds.requires.messaging)    await cds.connect.to ('messaging')
   if (cds.requires.multitenancy) await cds.mtx.in (app)
+  // serve graphql
+  if (cds.env.features.graphql) serve_graphql(app)
   // serve all services declared in models
   await cds.serve (o.service,o).in (app)
   await cds.emit ('served', cds.services)               //> hook for listeners
@@ -66,18 +73,9 @@ module.exports = async function cds_server (options, o = { ...options, __proto__
 //
 const defaults = {
-  // CORS
-  get cors() {
-    return (req, res, next) => {
-      const { origin } = req.headers
-      if (origin) res.set('access-control-allow-origin', origin)
-      if (origin && req.method === 'OPTIONS')
-        return res.set('access-control-allow-methods', 'GET,HEAD,PUT,PATCH,POST,DELETE').end()
-      next()
-    }
-  },
+  cors, correlate,
-  get static()  { return cds.env.folders.app },  //> defaults to ./app
+  get static() { return cds.env.folders.app },  //> defaults to ./app
   // default generic index.html page
   get index() {
@@ -91,22 +89,6 @@ const defaults = {
     return express.static (favicon, {maxAge:'14d'})
   },
-  // REVISIT: we need to align that with lib/req/context.js#L68 and remove redundancies
-  // ensure correlation id and set intermediate or augment cds.context until tx opened in protocol adpater
-  get correlate() {
-    return (req,_,next) => {
-      if (!cds.context) cds.context = {}
-      const id = cds.context.id
-        || req.headers['x-correlation-id'] || req.headers['x-correlationid']
-        || req.headers['x-request-id'] || req.headers['x-vcap-request-id']
-        || cds.utils.uuid()
-      cds.context.id = req.headers['x-correlation-id'] = id
-      if (!cds.context._) cds.context._ = {}
-      if (!cds.context._.req) cds.context._.req = req
-      next()
-    }
-  },
   // default request logger
   get logger() {
     const LOG = cds.log(), DEBUG = cds.debug('server')
@@ -138,5 +120,36 @@ const _app_serve = function (endpoint) { return {
 }}
+// register graphql router on served event
+function serve_graphql (app) {
+  cds.on('served', services => {
+    const GraphQLAdapter = require('./libx/gql/GraphQLAdapter')
+    app.use(new GraphQLAdapter(services, { graphiql: true }))
+    cds.log()("serving GraphQL endpoint for all services { at: '/graphql' }")
+  })
+}
+function cors (req, res, next) {
+  const { origin } = req.headers
+  if (origin) res.set('access-control-allow-origin', origin)
+  if (origin && req.method === 'OPTIONS')
+    return res.set('access-control-allow-methods', 'GET,HEAD,PUT,PATCH,POST,DELETE').end()
+  next()
+}
+function correlate (req,_,next) {
+  if (!cds.context) cds.context = {}
+  const id = cds.context.id
+    || req.headers['x-correlation-id'] || req.headers['x-correlationid']
+    || req.headers['x-request-id'] || req.headers['x-vcap-request-id']
+    || cds.utils.uuid()
+  cds.context.id = req.headers['x-correlation-id'] = id
+  if (!cds.context._) cds.context._ = {}
+  if (!cds.context._.req) cds.context._.req = req
+  next()
+}
 // -------------------------------------------------------------------------
 if (!module.parent)  module.exports ({from:process.argv[2]})

package/lib/req/cls.js DELETED Viewed

@@ -1,39 +0,0 @@
-/**
- * Continuation Local Storage support for req.context -> used through cds.context.
- */
- module.exports = (cds,v) => {
-  if (cds.env.features.cls) {
-    const { executionAsyncResource:current, createHook } = module.require ('async_hooks')
-    const _context = Symbol('cds.context')
-    createHook ({ init(id,t,tid, res) {
-      const cr = current(); if (!cr) return
-      const ctx = cr[_context]
-      if (ctx) res[_context] = ctx
-    }}).enable()
-    Reflect.defineProperty (cds,'context',{ enumerable:1,
-      set(v) {
-        const cr = current()
-        if (cr) cr[_context] = v && v.context || v
-      },
-      get() {
-        const cr = current()
-        return cr ? cr[_context] : undefined
-      },
-    })
-  } else {
-    Reflect.defineProperty (cds,'context',{ enumerable:1,
-      get:()=> undefined,
-      set:()=> {},
-    })
-  }
-  return v ? cds.context = v : cds.context
-}

package/libx/_runtime/cds-services/services/utils/diff.js DELETED Viewed

@@ -1,53 +0,0 @@
-/* istanbul ignore file */
-// REVISIT: probably needed for personal data handling
-const _getDiff = (data, status) => {
-  const diffs = []
-  for (const key in data) {
-    if (!key.startsWith('*@odata.')) {
-      diffs.push({ name: key, [status]: data[key] })
-    }
-  }
-  return diffs
-}
-const _getDiffForUpdate = (oldData, newData) => {
-  const diffs = []
-  // Diff added if field in newData is not present or has a different value in oldData.
-  // No diff added if a field is not present in newData.
-  for (const key in newData) {
-    if (!key.startsWith('*@odata.') && oldData[key] !== newData[key]) {
-      diffs.push({ name: key, old: oldData[key], new: newData[key] })
-    }
-  }
-  return diffs
-}
-/**
- * Compare to objects on first level.
- * Returns a list of changes like {name: 'key', old: 'val', new: 'val'}
- *
- * @param {string} event
- * @param {object} oldData
- * @param {object} newData
- * @returns {Array}
- */
-const diff = (event, oldData = {}, newData = {}) => {
-  switch (event) {
-    case 'CREATE':
-      return _getDiff(newData, 'new')
-    case 'UPDATE':
-      return _getDiffForUpdate(oldData, newData)
-    case 'DELETE':
-      return _getDiff(oldData, 'old')
-    default:
-      return []
-  }
-}
-module.exports = diff

package/libx/_runtime/cds-services/util/auditlog.js DELETED Viewed

@@ -1,247 +0,0 @@
-/* istanbul ignore file */
-const { getAuditLogNotWrittenError } = require('./errors')
-const _getCredentials = auditLog => {
-  return require('./xsenv')('auditlog', auditLog)
-}
-const _keysToString = keys => {
-  const strings = []
-  for (const key in keys) {
-    strings.push(`${key}: ${keys[key]}`)
-  }
-  return strings.join(', ')
-}
-const _logAttributes = (log, attributes) => {
-  for (const attribute in attributes) {
-    log = log.attribute({ name: attribute })
-  }
-}
-const _logTenant = (log, tenant) => {
-  log = tenant ? log.tenant(tenant) : log
-}
-/**
- * Logs securityMessage that user is not authorized.
- *
- * @param auditLogger - the audit logger
- * @param credentials - credentials for audit log instance
- * @param logger - logger object
- * @param {object} args - user if provided via basic auth, if not  => ip address
- * @param args.user
- * @param args.ip ip address of the user
- * @private
- */
-const _logUnauthorized = (auditLogger, credentials, logger, { user, ip }) => {
-  auditLogger.v2(credentials, function (err, auditLog) {
-    if (err) {
-      // TODO: Decide for a more meaningful error message
-      return logger.error(`Error occurred while writing audit log: ${err}`)
-    }
-    let log = auditLog.securityMessage('Unsuccessful login attempt').by(user)
-    log = ip ? log.externalIP(ip) : log
-    log.log(function (err) {
-      if (err) {
-        return logger.error(`Error occurred while writing audit log: ${err}`)
-      }
-    })
-  })
-}
-/**
- * Logs securityMessage that user does not have sufficient permissions.
- *
- * @param auditLogger - the audit logger
- * @param credentials - credentials for audit log instance
- * @param logger - logger object
- * @param {object} args
- * @param args.user - user that has not sufficient privileges
- * @param args.ip - ip address of the user
- * @param args.tenant - tenant of the user
- * @private
- */
-const _logMissingPermissions = (auditLogger, credentials, logger, { user, ip, tenant }) => {
-  auditLogger.v2(credentials, function (err, auditLog) {
-    if (err) {
-      return logger.error(`Error occurred while writing audit log: ${err}`)
-    }
-    let log = auditLog.securityMessage('User does not have required permissions').by(user)
-    log = ip ? log.externalIP(ip) : log
-    log = tenant ? log.tenant(tenant) : log
-    log.log(function (err) {
-      if (err) {
-        return logger.error(`Error occurred while writing audit log: ${err}`)
-      }
-    })
-  })
-}
-/**
- *
- * Logs data read access.
- *
- * @param auditLogger - the audit logger
- * @param credentials - credentials for audit log instance
- * @param auditLogData - audit log input like dataSubject, the changed sensitive attributes or the user and tenant
- * @returns {Promise} which rejects if audit log cannot be written
- * @private
- */
-const _logReadAccess = (auditLogger, credentials, auditLogData) => {
-  return new Promise((resolve, reject) => {
-    auditLogger.v2(credentials, function (err, auditLog) {
-      if (err) {
-        return reject(getAuditLogNotWrittenError(err, 'before commit', 'READ'))
-      }
-      const { dataSubject, attributes, auditObject, user, tenant } = auditLogData
-      try {
-        let log = auditLog.read({
-          type: auditObject.type,
-          id: { key: _keysToString(auditObject.keys) }
-        })
-        _logAttributes(log, attributes)
-        log = log.dataSubject({
-          type: dataSubject.type,
-          id: dataSubject.keys,
-          role: dataSubject.role
-        })
-        _logTenant(log, tenant)
-        log = log.by(user)
-        log.log(function (err) {
-          if (err) {
-            return reject(getAuditLogNotWrittenError(err, 'before commit', 'READ'))
-          }
-          resolve()
-        })
-      } catch (err) {
-        return reject(getAuditLogNotWrittenError(err, 'before commit', 'READ'))
-      }
-    })
-  })
-}
-/**
- *
- * Logs diff of a data manipulation event.
- *
- * @param auditLogger - the audit logger
- * @param credentials - credentials for audit log instance
- * @param {object} args
- * @param args.context - the context object
- * @param args.auditLogData - audit log input like dataSubject, the changed sensitive attributes or the user and tenant
- * @param args.phase - the phase the logDataChange handler was triggered in
- * @returns {Promise}
- * @private
- */
-const _logDataChange = (auditLogger, credentials, { context, auditLogData, phase }) => {
-  const { dataSubject, attributes, auditObject, diff, user, tenant } = auditLogData
-  return new Promise((resolve, reject) => {
-    auditLogger.v2(credentials, function (err, auditLog) {
-      if (err) {
-        return reject(getAuditLogNotWrittenError(err, phase))
-      }
-      try {
-        let log = auditLog.update({
-          type: auditObject.type,
-          id: { key: _keysToString(auditObject.keys) }
-        })
-        for (const difference of diff) {
-          if (attributes[difference.name]) {
-            log = log.attribute(Object.assign({ new: 'null', old: 'null' }, difference))
-          }
-        }
-        log = log.dataSubject({
-          type: dataSubject.type,
-          id: dataSubject.keys,
-          role: dataSubject.role
-        })
-        log = tenant ? log.tenant(tenant) : log
-        log = log.by(user)
-        log.logPrepare(function (err) {
-          if (err) {
-            return reject(getAuditLogNotWrittenError(err, phase))
-          }
-          context._.auditLogContinuation = log
-          resolve()
-        })
-      } catch (err) {
-        return reject(getAuditLogNotWrittenError(err, phase))
-      }
-    })
-  })
-}
-/**
- * Initializes the audit log object.
- * If options.auditLog provided, it looks via xsenv for a configured audit log instance.
- * If not, logs the audit events to the logger object (if provided via options, if not to console).
- *
- * @param {object} auditLog - the service options
- * @param {object} logger - the logger object
- * @returns {object} - with convenience methods logUnauthorized and logMissingPermissions to write audit logs
- */
-const initialize = (auditLog, logger) => {
-  // REVISIT: use xsenv directly and remove xsenv util
-  let auditLogConfig = _getCredentials(auditLog)
-  try {
-    const auditLogger = require('@sap/audit-logging')
-    if (!auditLogConfig) {
-      auditLogConfig = { logToConsole: true }
-    }
-    return {
-      logDataChange: info => {
-        return _logDataChange(auditLogger, auditLogConfig, info)
-      },
-      logReadAccess: info => {
-        return _logReadAccess(auditLogger, auditLogConfig, info)
-      },
-      logUnauthorized: info => {
-        return _logUnauthorized(auditLogger, auditLogConfig, logger, info)
-      },
-      logMissingPermissions: info => {
-        return _logMissingPermissions(auditLogger, auditLogConfig, logger, info)
-      }
-    }
-  } catch (err) {
-    if (auditLogConfig) {
-      // this should crash the app if audit log was defined in VCAP and module could not be loaded
-      setImmediate(() => {
-        throw err
-      })
-    }
-    return {
-      logDataChange: info => {
-        logger.log(info)
-        return Promise.resolve()
-      },
-      logReadAccess: info => {
-        logger.log(info)
-        return Promise.resolve()
-      },
-      logUnauthorized: logger.warn,
-      logMissingPermissions: logger.warn
-    }
-  }
-}
-module.exports = initialize

package/libx/_runtime/cds-services/util/xsenv.js DELETED Viewed

@@ -1,51 +0,0 @@
-/* istanbul ignore file */
-const _findByType = type => {
-  try {
-    return require('@sap/xsenv').getServices({
-      [type]: {
-        tag: type
-      }
-    })
-  } catch (e) {}
-}
-const _structured = filter => {
-  return Object.keys(filter).some(key => {
-    return typeof filter[key] === 'object'
-  })
-}
-const _filter = (serviceName, filter) => {
-  if (_structured(filter)) {
-    return filter
-  }
-  return { [serviceName]: filter }
-}
-const _getServices = (serviceName, filter) => {
-  if (typeof filter === 'object') {
-    return require('@sap/xsenv').getServices(_filter(serviceName, filter))
-  }
-  return _findByType(serviceName)
-}
-/**
- * Get credentials for service by name and/or filter object.
- *
- * @param {string} serviceName
- * @param {object} [filter]
- * @returns {*}
- * @private
- */
-const getCredentialsFromXsEnv = (serviceName, filter) => {
-  const services = _getServices(serviceName, filter)
-  if (services) {
-    return services[Object.keys(services)[0]]
-  }
-}
-module.exports = getCredentialsFromXsEnv