npm - @sap/cds - Versions diffs - 5.9.8 → 6.0.1 - Mend

@sap/cds 5.9.8 → 6.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (381) hide show

package/CHANGELOG.md +252 -20
package/apis/services.d.ts +1 -1
package/app/fiori/preview.js +2 -6
package/app/index.js +3 -3
package/bin/build/buildTaskEngine.js +17 -15
package/bin/build/buildTaskFactory.js +29 -19
package/bin/build/buildTaskHandler.js +27 -11
package/bin/build/buildTaskProvider.js +2 -4
package/bin/build/buildTaskProviderFactory.js +11 -16
package/bin/build/constants.js +14 -6
package/bin/build/csv-reader.js +2 -1
package/bin/build/index.js +12 -18
package/bin/build/provider/buildTaskHandlerEdmx.js +3 -39
package/bin/build/provider/buildTaskHandlerFeatureToggles.js +149 -0
package/bin/build/provider/buildTaskHandlerInternal.js +2 -3
package/bin/build/provider/buildTaskProviderInternal.js +108 -239
package/bin/build/provider/fiori/index.js +2 -2
package/bin/build/provider/hana/2migration.js +11 -11
package/bin/build/provider/hana/2tabledata.js +3 -3
package/bin/build/provider/hana/index.js +89 -99
package/bin/build/provider/hana/migrationtable.js +4 -3
package/bin/build/provider/java/index.js +101 -0
package/bin/build/provider/java-cf/index.js +1 -101
package/bin/build/provider/mtx/index.js +83 -41
package/bin/build/provider/mtx/resourcesTarBuilder.js +68 -0
package/bin/build/provider/mtx-sidecar/index.js +80 -0
package/bin/build/provider/node-cf/index.js +1 -308
package/bin/build/provider/nodejs/index.js +189 -0
package/bin/build/util.js +19 -31
package/bin/cds.js +5 -3
package/bin/deploy/to-hana/cfUtil.js +31 -6
package/bin/deploy/to-hana/gitUtil.js +5 -3
package/bin/deploy/to-hana/hana.js +9 -10
package/bin/{build → deploy/to-hana}/mtaUtil.js +10 -9
package/bin/mtx/in-cds.js +19 -7
package/bin/serve.js +56 -21
package/bin/utils/log.js +13 -30
package/bin/version.js +4 -3
package/common.cds +61 -16
package/lib/compile/cdsc.js +3 -2
package/lib/compile/etc/_localized.js +15 -14
package/lib/compile/for/drafts.js +3 -4
package/lib/compile/for/java.js +13 -10
package/lib/compile/for/nodejs.js +8 -8
package/lib/compile/for/odata.js +7 -12
package/lib/compile/for/sql.js +5 -6
package/lib/compile/index.js +5 -4
package/lib/compile/load.js +9 -11
package/lib/compile/minify.js +8 -5
package/lib/compile/parse.js +4 -2
package/lib/compile/resolve.js +18 -15
package/lib/compile/to/edm.js +0 -1
package/lib/compile/to/gql.js +3 -2
package/lib/compile/to/json.js +24 -17
package/lib/connect/bindings.js +3 -2
package/lib/connect/index.js +5 -5
package/lib/core/classes.js +74 -2
package/lib/core/entities.js +52 -3
package/lib/core/reflect.js +2 -1
package/lib/deploy.js +11 -8
package/lib/env/defaults.js +4 -3
package/lib/env/index.js +71 -31
package/lib/env/presets.js +1 -14
package/lib/env/requires.js +70 -20
package/lib/env/serviceBindings.js +147 -0
package/lib/i18n/localize.js +22 -23
package/lib/index.js +148 -144
package/lib/log/errors.js +55 -12
package/lib/log/format/kibana.js +1 -1
package/lib/log/index.js +4 -0
package/lib/ql/SELECT.js +7 -2
package/lib/ql/Whereable.js +8 -2
package/lib/ql/index.js +2 -2
package/lib/req/assert.js +71 -0
package/lib/req/cds-context.js +38 -70
package/lib/req/context.js +34 -21
package/lib/req/request.js +12 -18
package/lib/req/response.js +6 -2
package/lib/req/user.js +30 -22
package/lib/serve/Service-api.js +17 -12
package/lib/serve/Service-dispatch.js +5 -9
package/lib/serve/Service-methods.js +4 -3
package/lib/serve/Transaction.js +24 -21
package/lib/serve/adapters.js +15 -5
package/lib/serve/factory.js +23 -20
package/lib/serve/index.js +51 -54
package/lib/utils/axios.js +8 -12
package/lib/utils/index.js +3 -3
package/lib/utils/resources/index.js +1 -44
package/lib/utils/resources/tar.js +2 -1
package/lib/utils/tests.js +13 -15
package/libx/_runtime/.eslintrc +1 -1
package/libx/_runtime/audit/Service.js +6 -4
package/libx/_runtime/audit/generic/personal/access.js +19 -43
package/libx/_runtime/audit/generic/personal/index.js +40 -34
package/libx/_runtime/audit/generic/personal/modification.js +11 -9
package/libx/_runtime/audit/generic/personal/utils.js +13 -6
package/libx/_runtime/audit/utils/v2.js +6 -3
package/libx/_runtime/auth/index.js +71 -66
package/libx/_runtime/auth/strategies/JWT.js +3 -2
package/libx/_runtime/auth/strategies/mock.js +54 -53
package/libx/_runtime/auth/strategies/xssecUtils.js +3 -4
package/libx/_runtime/auth/strategies/xsuaa.js +3 -2
package/libx/_runtime/auth/utils.js +2 -15
package/libx/_runtime/cds-services/adapter/odata-v4/Dispatcher.js +127 -41
package/libx/_runtime/cds-services/adapter/odata-v4/OData.js +6 -3
package/libx/_runtime/cds-services/adapter/odata-v4/ODataRequest.js +93 -73
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/action.js +10 -45
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/create.js +5 -9
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/error.js +9 -5
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/metadata.js +4 -2
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/read.js +60 -53
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/request.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/update.js +15 -21
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/ExpressionToCQN.js +8 -15
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/expandToCQN.js +29 -41
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/index.js +1 -4
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/readToCQN.js +13 -13
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/selectToCQN.js +0 -7
package/libx/_runtime/cds-services/adapter/odata-v4/odata-to-cqn/utils.js +24 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/edm/EdmEntityContainer.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/uri/UriHelper.js +4 -3
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/utils/PrimitiveValueDecoder.js +4 -5
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/utils/ValueConverter.js +4 -3
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-commons/validator/ValueValidator.js +5 -3
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/core/ResponseHeaderSetter.js +2 -0
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/invocation/DebugSerializingCommand.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/invocation/PresetResponseHeadersCommand.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/invocation/SerializingCommand.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/invocation/SetResponseHeadersCommand.js +1 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/serializer/ContextURLFactory.js +3 -2
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/serializer/ErrorJsonSerializer.js +3 -1
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/serializer/SerializerFactory.js +1 -0
package/libx/_runtime/cds-services/adapter/odata-v4/okra/odata-server/serializer/TrustedResourceJsonSerializer.js +3 -3
package/libx/_runtime/cds-services/adapter/odata-v4/utils/data.js +36 -25
package/libx/_runtime/cds-services/adapter/odata-v4/utils/handlerUtils.js +100 -91
package/libx/_runtime/cds-services/adapter/odata-v4/utils/metaInfo.js +382 -0
package/libx/_runtime/cds-services/adapter/odata-v4/utils/oDataConfiguration.js +1 -4
package/libx/_runtime/cds-services/adapter/odata-v4/utils/omitValues.js +5 -6
package/libx/_runtime/cds-services/adapter/odata-v4/utils/readAfterWrite.js +77 -21
package/libx/_runtime/cds-services/adapter/odata-v4/utils/request.js +3 -11
package/libx/_runtime/cds-services/adapter/odata-v4/utils/result.js +91 -69
package/libx/_runtime/cds-services/adapter/odata-v4/utils/stream.js +27 -6
package/libx/_runtime/cds-services/adapter/rest/utils/validation-checks.js +7 -17
package/libx/_runtime/cds-services/services/Service.js +17 -76
package/libx/_runtime/cds-services/services/utils/columns.js +6 -4
package/libx/_runtime/cds-services/services/utils/compareJson.js +1 -53
package/libx/_runtime/cds-services/services/utils/differ.js +15 -19
package/libx/_runtime/cds-services/util/assert.js +107 -34
package/libx/_runtime/cds.js +1 -31
package/libx/_runtime/common/aspects/Association.js +40 -54
package/libx/_runtime/common/aspects/any.js +61 -6
package/libx/_runtime/common/aspects/entity.js +19 -79
package/libx/_runtime/common/composition/data.js +2 -2
package/libx/_runtime/common/composition/delete.js +8 -7
package/libx/_runtime/common/composition/tree.js +10 -10
package/libx/_runtime/common/composition/update.js +3 -2
package/libx/_runtime/common/constants/events.js +15 -0
package/libx/_runtime/common/error/entry.js +9 -3
package/libx/_runtime/common/error/frontend.js +13 -19
package/libx/_runtime/common/error/index.js +8 -3
package/libx/_runtime/common/generic/auth/capabilities.js +2 -1
package/libx/_runtime/common/generic/auth/constants.js +1 -4
package/libx/_runtime/common/generic/auth/requires.js +1 -1
package/libx/_runtime/common/generic/auth/restrict.js +12 -28
package/libx/_runtime/common/generic/auth/restrictions.js +12 -4
package/libx/_runtime/common/generic/auth/utils.js +2 -1
package/libx/_runtime/common/generic/crud.js +9 -60
package/libx/_runtime/common/generic/etag.js +41 -7
package/libx/_runtime/common/generic/input.js +128 -66
package/libx/_runtime/common/generic/paging.js +9 -3
package/libx/_runtime/common/generic/put.js +2 -2
package/libx/_runtime/common/generic/sorting.js +7 -3
package/libx/_runtime/common/generic/temporal.js +0 -5
package/libx/_runtime/common/i18n/messages.properties +2 -1
package/libx/_runtime/common/utils/binary.js +69 -0
package/libx/_runtime/common/utils/cqn.js +39 -14
package/libx/_runtime/common/utils/cqn2cqn4sql.js +93 -59
package/libx/_runtime/common/utils/csn.js +87 -85
package/libx/_runtime/common/utils/dollar.js +8 -7
package/libx/_runtime/common/utils/draft.js +1 -1
package/libx/_runtime/common/utils/foreignKeyPropagations.js +23 -7
package/libx/_runtime/common/utils/generateOnCond.js +2 -1
package/libx/_runtime/common/utils/keys.js +30 -13
package/libx/_runtime/common/utils/postProcessing.js +6 -1
package/libx/_runtime/common/utils/quotingStyles.js +0 -23
package/libx/_runtime/common/utils/resolveStructured.js +23 -26
package/libx/_runtime/common/utils/resolveView.js +4 -1
package/libx/_runtime/common/utils/rewriteAsterisks.js +3 -0
package/libx/_runtime/common/utils/search2cqn4sql.js +4 -13
package/libx/_runtime/common/utils/searchToLike.js +9 -13
package/libx/_runtime/common/utils/streamProp.js +35 -0
package/libx/_runtime/common/utils/structured.js +12 -18
package/libx/_runtime/common/utils/template.js +3 -5
package/libx/_runtime/common/utils/templateProcessor.js +22 -14
package/libx/_runtime/common/utils/unionCqnTemplate.js +4 -14
package/libx/_runtime/db/Service.js +2 -1
package/libx/_runtime/db/expand/expand-v2.js +2 -2
package/libx/_runtime/db/expand/expandCQNToJoin.js +7 -6
package/libx/_runtime/db/generic/input.js +14 -17
package/libx/_runtime/db/generic/integrity.js +1 -2
package/libx/_runtime/db/generic/update.js +14 -1
package/libx/_runtime/db/query/read.js +0 -1
package/libx/_runtime/db/query/update.js +1 -1
package/libx/_runtime/db/sql-builder/BaseBuilder.js +1 -1
package/libx/_runtime/db/sql-builder/ExpressionBuilder.js +5 -31
package/libx/_runtime/db/sql-builder/InsertBuilder.js +1 -1
package/libx/_runtime/db/sql-builder/ReferenceBuilder.js +0 -9
package/libx/_runtime/db/sql-builder/SelectBuilder.js +11 -10
package/libx/_runtime/db/sql-builder/UpdateBuilder.js +2 -2
package/libx/_runtime/db/sql-builder/annotations.js +1 -2
package/libx/_runtime/db/utils/coloredTxCommands.js +5 -0
package/libx/_runtime/db/utils/columns.js +1 -1
package/libx/_runtime/db/utils/propagateForeignKeys.js +10 -2
package/libx/_runtime/extensibility/activate.js +69 -0
package/libx/_runtime/extensibility/add.js +41 -0
package/libx/_runtime/extensibility/addExtension.js +68 -0
package/libx/_runtime/extensibility/defaults.js +39 -0
package/libx/_runtime/extensibility/{uiflex/handler → handler}/transformREAD.js +0 -0
package/libx/_runtime/extensibility/{uiflex/handler → handler}/transformRESULT.js +2 -2
package/libx/_runtime/extensibility/{uiflex/handler → handler}/transformWRITE.js +2 -2
package/libx/_runtime/extensibility/push.js +61 -0
package/libx/_runtime/extensibility/service.js +21 -0
package/libx/_runtime/extensibility/{uiflex/utils.js → utils.js} +39 -3
package/libx/_runtime/extensibility/validation.js +53 -0
package/libx/_runtime/extensibility/views.js +12 -0
package/libx/_runtime/fiori/generic/activate.js +6 -4
package/libx/_runtime/fiori/generic/before.js +17 -29
package/libx/_runtime/fiori/generic/cancel.js +2 -4
package/libx/_runtime/fiori/generic/delete.js +2 -4
package/libx/_runtime/fiori/generic/edit.js +3 -7
package/libx/_runtime/fiori/generic/index.js +31 -0
package/libx/_runtime/fiori/generic/new.js +2 -4
package/libx/_runtime/fiori/generic/patch.js +4 -8
package/libx/_runtime/fiori/generic/prepare.js +2 -4
package/libx/_runtime/fiori/generic/read.js +137 -162
package/libx/_runtime/fiori/generic/readOverDraft.js +10 -4
package/libx/_runtime/fiori/utils/handler.js +10 -5
package/libx/_runtime/fiori/utils/where.js +1 -4
package/libx/_runtime/hana/Service.js +14 -7
package/libx/_runtime/hana/customBuilder/CustomSelectBuilder.js +1 -1
package/libx/_runtime/hana/dynatrace.js +2 -2
package/libx/_runtime/hana/localized.js +7 -6
package/libx/_runtime/hana/pool.js +9 -6
package/libx/_runtime/hana/search.js +2 -3
package/libx/_runtime/hana/{searchToContains.js → search2Contains.js} +5 -2
package/libx/_runtime/hana/search2cqn4sql.js +20 -17
package/libx/_runtime/index.js +2 -6
package/libx/_runtime/messaging/AMQPWebhookMessaging.js +11 -2
package/libx/_runtime/messaging/common-utils/AMQPClient.js +4 -3
package/libx/_runtime/messaging/common-utils/appId.js +9 -0
package/libx/_runtime/messaging/common-utils/authorizedRequest.js +2 -18
package/libx/_runtime/messaging/common-utils/connections.js +1 -1
package/libx/_runtime/messaging/enterprise-messaging-shared.js +2 -2
package/libx/_runtime/messaging/enterprise-messaging-utils/EMManagement.js +305 -231
package/libx/_runtime/messaging/enterprise-messaging-utils/cloudEvents.js +2 -2
package/libx/_runtime/messaging/enterprise-messaging-utils/options-management.js +15 -8
package/libx/_runtime/messaging/enterprise-messaging-utils/options-messaging.js +57 -14
package/libx/_runtime/messaging/enterprise-messaging.js +14 -19
package/libx/_runtime/messaging/file-based.js +2 -1
package/libx/_runtime/messaging/http-utils/token.js +18 -6
package/libx/_runtime/messaging/message-queuing-utils/options-management.js +22 -12
package/libx/_runtime/messaging/message-queuing-utils/options-messaging.js +27 -14
package/libx/_runtime/messaging/message-queuing.js +138 -85
package/libx/_runtime/messaging/outbox/utils.js +13 -7
package/libx/_runtime/messaging/redis-messaging.js +0 -1
package/libx/_runtime/messaging/service.js +4 -1
package/libx/_runtime/remote/Service.js +24 -18
package/libx/_runtime/remote/utils/client.js +84 -46
package/libx/_runtime/remote/utils/data.js +23 -6
package/libx/_runtime/sqlite/Service.js +14 -13
package/libx/_runtime/sqlite/convertAssocToOneManaged.js +2 -0
package/libx/_runtime/sqlite/customBuilder/CustomSelectBuilder.js +1 -0
package/libx/_runtime/sqlite/execute.js +3 -9
package/libx/_runtime/types/api.js +23 -11
package/libx/common/utils/ucsn.js +15 -9
package/libx/odata/afterburner.js +109 -29
package/libx/odata/cqn2odata.js +48 -9
package/libx/odata/grammar.pegjs +261 -157
package/libx/odata/index.js +21 -9
package/libx/odata/parseToCqn.js +8 -5
package/libx/odata/parser.js +1 -1
package/libx/odata/utils.js +13 -3
package/libx/rest/RestAdapter.js +173 -113
package/libx/rest/RestRequest.js +3 -2
package/libx/rest/middleware/create.js +8 -6
package/libx/rest/middleware/delete.js +6 -13
package/libx/rest/middleware/error.js +1 -1
package/libx/rest/middleware/input.js +6 -6
package/libx/rest/middleware/operation.js +8 -3
package/libx/rest/middleware/parse.js +3 -3
package/libx/rest/middleware/payload.js +12 -0
package/libx/rest/middleware/read.js +12 -2
package/libx/rest/middleware/update.js +3 -3
package/package.json +4 -6
package/server.js +3 -44
package/srv/extensibility-service.cds +56 -0
package/srv/extensibility-service.js +1 -0
package/srv/extensions.cds +8 -0
package/srv/model-provider.cds +59 -0
package/srv/model-provider.js +163 -0
package/srv/mtx.cds +2 -0
package/srv/mtx.js +22 -0
package/srv/outbox.cds +2 -0
package/tasks/enterprise-messaging-deploy.js +19 -12
package/lib/serve/Service-compat.js +0 -36
package/libx/_runtime/audit/generic/personal/constants.js +0 -4
package/libx/_runtime/auth/strategies/dwc.js +0 -45
package/libx/_runtime/cds-services/adapter/odata-v4/utils/dispatcherUtils.js +0 -56
package/libx/_runtime/cds-services/adapter/rest/Rest.js +0 -183
package/libx/_runtime/cds-services/adapter/rest/RestRequest.js +0 -67
package/libx/_runtime/cds-services/adapter/rest/handlers/create.js +0 -82
package/libx/_runtime/cds-services/adapter/rest/handlers/delete.js +0 -39
package/libx/_runtime/cds-services/adapter/rest/handlers/operation.js +0 -63
package/libx/_runtime/cds-services/adapter/rest/handlers/read.js +0 -52
package/libx/_runtime/cds-services/adapter/rest/handlers/update.js +0 -81
package/libx/_runtime/cds-services/adapter/rest/rest-to-cqn/index.js +0 -56
package/libx/_runtime/cds-services/adapter/rest/rest-to-cqn/utils.js +0 -33
package/libx/_runtime/cds-services/adapter/rest/to.js +0 -8
package/libx/_runtime/cds-services/adapter/rest/utils/binary.js +0 -50
package/libx/_runtime/cds-services/adapter/rest/utils/data.js +0 -117
package/libx/_runtime/cds-services/adapter/rest/utils/header-checks.js +0 -14
package/libx/_runtime/cds-services/adapter/rest/utils/key-value-utils.js +0 -30
package/libx/_runtime/cds-services/adapter/rest/utils/parse-url.js +0 -250
package/libx/_runtime/cds-services/adapter/rest/utils/result.js +0 -26
package/libx/_runtime/cds-services/services/utils/handlerUtils.js +0 -200
package/libx/_runtime/common/aspects/utils.js +0 -152
package/libx/_runtime/common/toggles/handler.js +0 -21
package/libx/_runtime/common/utils/extensibilityUtils.js +0 -18
package/libx/_runtime/extensibility/mps/index.js +0 -5
package/libx/_runtime/extensibility/mps/service.js +0 -111
package/libx/_runtime/extensibility/mps/tar.js +0 -42
package/libx/_runtime/extensibility/mps/utils.js +0 -11
package/libx/_runtime/extensibility/uiflex/index.js +0 -54
package/libx/_runtime/extensibility/uiflex/service.js +0 -276
package/libx/_runtime/messaging/common-utils/naming-conventions.js +0 -20
package/libx/_runtime/remote/utils/client-types.d.ts +0 -7
package/libx/gql/GraphQLAdapter.js +0 -33
package/libx/gql/constants/adapter.js +0 -69
package/libx/gql/constants/cds.js +0 -18
package/libx/gql/constants/graphql.js +0 -33
package/libx/gql/readme.md +0 -1
package/libx/gql/resolvers/crud/create.js +0 -20
package/libx/gql/resolvers/crud/delete.js +0 -29
package/libx/gql/resolvers/crud/index.js +0 -6
package/libx/gql/resolvers/crud/read.js +0 -30
package/libx/gql/resolvers/crud/update.js +0 -42
package/libx/gql/resolvers/crud/utils/index.js +0 -36
package/libx/gql/resolvers/field.js +0 -5
package/libx/gql/resolvers/index.js +0 -7
package/libx/gql/resolvers/mutation.js +0 -23
package/libx/gql/resolvers/parse/ast/enrich.js +0 -52
package/libx/gql/resolvers/parse/ast/fragment.js +0 -11
package/libx/gql/resolvers/parse/ast/fromObject.js +0 -39
package/libx/gql/resolvers/parse/ast/index.js +0 -3
package/libx/gql/resolvers/parse/ast/meta.js +0 -4
package/libx/gql/resolvers/parse/ast/variable.js +0 -7
package/libx/gql/resolvers/parse/ast2cqn/columns.js +0 -44
package/libx/gql/resolvers/parse/ast2cqn/entries.js +0 -31
package/libx/gql/resolvers/parse/ast2cqn/index.js +0 -8
package/libx/gql/resolvers/parse/ast2cqn/limit.js +0 -6
package/libx/gql/resolvers/parse/ast2cqn/orderBy.js +0 -24
package/libx/gql/resolvers/parse/ast2cqn/utils/index.js +0 -3
package/libx/gql/resolvers/parse/ast2cqn/where.js +0 -70
package/libx/gql/resolvers/parse/utils/index.js +0 -8
package/libx/gql/resolvers/query.js +0 -13
package/libx/gql/resolvers/root.js +0 -34
package/libx/gql/schema/generate.js +0 -18
package/libx/gql/schema/index.js +0 -5
package/libx/gql/schema/mutation.js +0 -76
package/libx/gql/schema/query.js +0 -108
package/libx/gql/schema/typeDefMap.js +0 -45
package/libx/gql/schema/utils/index.js +0 -54
package/libx/gql/utils/index.js +0 -12
package/libx/rest/middleware/auth.js +0 -20
package/libx/rest/middleware/content.js +0 -19
package/srv/flex.cds +0 -21
package/srv/flex.js +0 -1
package/srv/mps.cds +0 -23
package/srv/mps.js +0 -1
package/srv/outbox.js +0 -0

package/libx/_runtime/auth/strategies/mock.js CHANGED Viewed

@@ -1,57 +1,14 @@
 const cds = require('../../cds')
 const CHALLENGE = 'Basic realm="Users"'
-const _getUser = (users, id) => {
-  let user
-  for (const k in users) {
-    if (k === id || users[k].ID === id) {
-      user = users[k]
-      break
-    }
-  }
-  if (!user && users['*']) user = { id }
-  return user
-}
-const _getRoles = user => {
-  const _roles = ['any', 'identified-user', 'authenticated-user']
-  if (user.roles) {
-    _roles.push(...user.roles)
-  }
-  if (user.jwt) {
-    const scopes = user.jwt.scope || user.jwt.scopes || []
-    const aud = user.jwt.aud || []
-    _roles.push(
-      ...scopes.map(s => {
-        for (const each of aud) {
-          s = s.replace(`${each}.`, '')
-        }
-        return s
-      })
-    )
-  }
-  if (user.jwt && (user.jwt.grant_type === 'client_credentials' || user.jwt.grant_type === 'client_x509')) {
-    _roles.push('system-user')
-  }
-  return _roles
-}
 class MockStrategy {
-  constructor(users, name = 'mock') {
+  constructor({ users, tenants }, name = 'mock') {
     this.name = name
-    this.users = users || cds.env.requires.auth.users || {}
+    this.users = _init_users(users || cds.env.requires.auth.users || {}, tenants)
   }
   authenticate(req) {
-    const authorization = req.headers.authorization
+    const { authorization } = req.headers
     if (!authorization) return this.fail(CHALLENGE)
     const [scheme, base64] = authorization.split(' ')
@@ -59,18 +16,62 @@ class MockStrategy {
     if (!base64) return this.fail(CHALLENGE)
     const [id, password] = Buffer.from(base64, 'base64').toString().split(':')
-    let user = _getUser(this.users, id)
+    const user = this.users[id] || ('*' in this.users && { id })
     if (!user) return this.fail(CHALLENGE)
     if (user.password && user.password !== password) return this.fail(CHALLENGE)
-    const _roles = _getRoles(user)
-    const attr = Object.assign({}, user.userAttributes, user.jwt && user.jwt.userInfo, user.jwt && user.jwt.attributes)
-    const tenant = user.tenant || (user.jwt && user.jwt.zid) || null
+    const { features } = req.headers
+    this.success(new cds.User(features ? { ...user, features } : user))
+  }
+}
-    user = new cds.User({ id: user.ID || id, _roles, attr, tenant })
-    this.success(user)
+// eslint-disable-next-line complexity
+const _init_users = (users, tenants = {}) => {
+  if (!users._initialized) {
+    Object.defineProperty(users, '_initialized', { value: true })
+    for (let [id, user] of Object.entries(users)) {
+      if (id !== '*') user.id = user.ID || user.id || id // fill in user ids
+      if (id !== user.id) users[user.id] = user
+      if (user.jwt) {
+        let scopes = user.jwt.scope || user.jwt.scopes
+        if (scopes) {
+          const aud = user.jwt.aud
+          if (aud)
+            scopes = scopes.map(s => {
+              for (const each of aud) s = s.replace(`${each}.`, '')
+              return s
+            })
+          Array.isArray(user.roles) ? user.roles.push(...scopes) : (user.roles = scopes)
+        }
+        if (user.jwt.grant_type === 'client_credentials' || user.jwt.grant_type === 'client_x509') {
+          user.roles.push('system-user')
+        }
+        if (!user.tenant && user.jwt.zid) user.tenant = user.jwt.zid
+      }
+      // optimization:
+      if (user.roles)
+        user.roles = user.roles.reduce((p, n) => {
+          p[n] = 1
+          return p
+        }, {})
+      // apply tenant info if any
+      if (!user.features) {
+        const features = tenants[user.tenant]?.features
+        if (features) user.features = features
+      }
+      const attr = Object.assign(
+        {},
+        user.userAttributes,
+        user.jwt && user.jwt.userInfo,
+        user.jwt && user.jwt.attributes
+      )
+      if (Object.keys(attr).length > 0) user.attr = attr
+    }
   }
+  return users
 }
 module.exports = MockStrategy

package/libx/_runtime/auth/strategies/xssecUtils.js CHANGED Viewed

@@ -25,10 +25,9 @@ const getRoles = (roles, info, credentials) => {
   if (info && info.checkLocalScope && typeof info.checkLocalScope === 'function') {
     // > xssec v3
-    const _roles = roles
-    roles = new Proxy(_roles, {
-      get: function (_, role) {
-        return role in _roles ? _roles[role] : info.checkLocalScope(role)
+    roles = new Proxy(roles, {
+      get: function (t, role) {
+        return role in t ? t[role] : info.checkLocalScope(role)
       }
     })
   }

package/libx/_runtime/auth/strategies/xsuaa.js CHANGED Viewed

@@ -22,10 +22,11 @@ class XSUAAStrategy extends JS {
       // create cds.User
       user = new cds.User({
         id: xssecUtils.getUserId(user, info),
-        tenant: xssecUtils.getTenant(info) || null,
-        _roles: xssecUtils.getRoles(['any', 'identified-user'], info, credentials),
+        roles: xssecUtils.getRoles(['any', 'identified-user'], info, credentials),
         attr: xssecUtils.getAttrForXSSEC(info)
       })
+      const tenant = xssecUtils.getTenant(info)
+      if (tenant) user.tenant = tenant
       // call "super.success"
       _success(user, info)
     }

package/libx/_runtime/auth/utils.js CHANGED Viewed

@@ -1,25 +1,12 @@
-const cds = require('../cds')
 const UNAUTHORIZED = { statusCode: 401, code: '401', message: 'Unauthorized' }
 const FORBIDDEN = { statusCode: 403, code: '403', message: 'Forbidden' }
 const getRequiresAsArray = definition => {
-  const requires = []
-  if (definition['@requires']) {
-    if (Array.isArray(definition['@requires'])) requires.push(...definition['@requires'])
-    else requires.push(definition['@requires'])
-  }
-  const { restrict_all_services: restrictAllServices } = cds.env.requires.auth || {}
-  if (!requires.length && definition.kind === 'service' && restrictAllServices) requires.push('authenticated-user')
-  return requires
+  const requires = definition['@requires']
+  if (requires) return Array.isArray(requires) ? requires : [requires]
 }
 const isRestricted = srv => {
-  const envAuth = cds.env.requires.auth
-  if (envAuth && envAuth.restrict_all_services) return true
   if (srv.definition['@requires']) return true
   const entities = srv.entities

package/libx/_runtime/cds-services/adapter/odata-v4/Dispatcher.js CHANGED Viewed

@@ -1,12 +1,13 @@
 const cds = require('../../../cds')
 const LOG = cds.log('odata')
-const { BASE_TENANT, channelName } = require('../../../common/utils/extensibilityUtils')
-const { SYSTEM_SERVICES, createOdataService, createNewService, getModelHash } = require('./utils/dispatcherUtils')
 const { normalizeError } = require('../../../common/error/frontend')
-class Dispatcher {
+const _run4 = (tenant, query) => (tenant ? cds.tx({ tenant }, tx => tx.run(query)) : query)
+const getError = require('../../../common/error')
+// REVISIT: this is always active, even without mtx -> do that better
+module.exports = class Dispatcher {
   /**
    * Constructs an Dispatcher for cds service.
    * New OData services will be created.
@@ -18,25 +19,44 @@ class Dispatcher {
     this._options = service.options
     this._extMap = new Map()
-    this._extMap.set(getModelHash(BASE_TENANT, []), createOdataService(service))
-    if (cds.requires.extensibility && !SYSTEM_SERVICES.includes(this._serviceName)) {
-      cds.services['mtx-messaging'].on(channelName(), async msg => {
-        const tenant = msg.data.tenant
-        const hash = getModelHash(tenant, [])
-        for (const entry of this._extMap.entries()) {
-          if (entry[0].startsWith(hash)) {
-            this._extMap.delete(entry[0])
-          }
-        }
-      })
-    }
+    this._extMap.set(getModelHash(), createOdataService(service))
+    this._intervalMap = new Map()
+    this._intervalMap.set(undefined, Date.now())
-    if (cds._mtxEnabled) {
+    if (cds.mtx) {
+      cds.mtx._nodejs_models = {}
       cds.mtx.eventEmitter.on(cds.mtx.events.TENANT_UPDATED, async tenant => {
         this._extMap.delete(getModelHash(tenant))
+        delete cds.mtx._nodejs_models[tenant]
       })
     }
+    this._tenantCheckInterval = cds.requires.extensibility && cds.requires.extensibility.tenantCheckInterval
+  }
+  _deleteService(tenant) {
+    const hash = getModelHash(tenant)
+    for (const entry of this._extMap.entries()) {
+      if (entry[0].startsWith(hash)) {
+        this._extMap.delete(entry[0])
+      }
+    }
+    this._intervalMap.delete(tenant)
+  }
+  async _checkTenantExt(tenant, last) {
+    try {
+      const rs = await _run4(tenant, SELECT(1).from('cds.xt.Extensions').where('timestamp >=', last))
+      if (!this._mps) this._mps = await cds.connect.to('cds.xt.ModelProviderService')
+      if (rs.length) {
+        this._deleteService(tenant)
+        this._mps.invalidateCache(tenant)
+      } else {
+        this._intervalMap.set(tenant, Date.now())
+      }
+    } catch (_) {
+      this._deleteService(tenant)
+    }
   }
   async _getService4Tenant(req) {
@@ -45,42 +65,46 @@ class Dispatcher {
     const isExtended = await cds.mtx.isExtended(tenant) // REVISIT: avoid await
     if (!isExtended) return false
-    const csn = await cds.mtx.getCsn(tenant)
-    const model = cds.compile.for.nodejs(csn)
+    let model = cds.mtx._nodejs_models[tenant]
+    if (!model) {
+      const raw = await cds.mtx.getCsn(tenant)
+      model = cds.mtx._nodejs_models[tenant] = cds.compile.for.nodejs(raw)
+    }
     const service = await createNewService(this._serviceName, model, this._options)
     service._cdsService._isExtended = true
     return service
   }
   async _getService4(tenant, features) {
-    const csn = await this._mps.getCsn(tenant, features || [], 'nodejs')
-    const model = cds.compile.for.nodejs(csn)
+    const model = await this._mps.getCsn(tenant, features || [], 'nodejs')
     return createNewService(this._serviceName, model, this._options)
   }
   async _getService(tenant, features, hash, req) {
-    if (cds._mtxEnabled) {
+    if (cds.mtx) {
       const service = await this._getService4Tenant(req)
       if (service) return service
-      return this._extMap.get(getModelHash(BASE_TENANT, []))
+      return this._extMap.get(getModelHash())
     }
-    if (!this._mps) this._mps = await cds.connect.to('cds_r.ModelProviderService')
-    const hashBase = getModelHash(BASE_TENANT, features)
-    if (tenant && tenant !== BASE_TENANT && hash !== hashBase) {
+    if (!this._mps) this._mps = await cds.connect.to('cds.xt.ModelProviderService')
+    const hashBase = getModelHash(undefined, features)
+    if (tenant && tenant !== undefined && hash !== hashBase) {
       const isExtended = cds.requires.extensibility && (await this._mps.isExtended(tenant))
       if (isExtended) {
         return this._getService4(tenant, features)
       } else {
         if (!this._extMap.has(hashBase)) {
-          this._extMap.set(hashBase, this._getService4(BASE_TENANT, features))
+          this._extMap.set(hashBase, this._getService4(undefined, features))
+          this._intervalMap.set(tenant, Date.now())
         }
         return this._extMap.get(hashBase)
       }
     } else {
-      return this._getService4(BASE_TENANT, features)
+      return this._getService4(undefined, features)
     }
   }
@@ -92,11 +116,16 @@ class Dispatcher {
     // clear map entry
     this._extMap.delete(hash)
     // return 503 to client
-    const { error } = normalizeError(Object.assign(err, { statusCode: 503 }), req)
+    err = getError(Object.assign(err, { statusCode: 503 }))
+    const { error } = normalizeError(err, req)
     return res.status(503).send({ error })
   }
+  _hasModelProvider() {
+    return 'cds.xt.ModelProviderService' in cds.services || 'cds.xt.ModelProviderService' in cds.requires
+  }
   /**
    * Dispatch request in case of extensibility to other odata adapters.
    *
@@ -107,26 +136,34 @@ class Dispatcher {
    */
   async dispatch(req, res) {
     // here, req is express' req -> req.tenant not available
+    // REVISIT: rethink authentication
     const tenant = req.user && req.user.tenant
-    if (SYSTEM_SERVICES.includes(this._serviceName) || (!tenant && !cds._mpsEnabled)) {
-      const service = this._extMap.get(getModelHash(BASE_TENANT, []))
+    // single tenant w/o features
+    if (!cds.mtx && !this._hasModelProvider()) {
+      const service = this._extMap.get(getModelHash())
       return service.process(req, res)
     }
-    // ensure features is an array (some stakeholders set req.features themselves)
-    const features = req.features
-      ? Array.isArray(req.features)
-        ? req.features
-        : Object.keys(req.features)
-            .filter(k => req.features[k])
-            .sort()
-      : []
+    // old mtx does not support feature toggles
+    const features = cds.mtx ? [] : _features4(req.features || req.user.features)
     const hash = getModelHash(tenant, features)
+    // check for extensions
+    if (cds.requires.extensibility && !this._inCheckTenant) {
+      this._inCheckTenant = true
+      if (this._intervalMap.has(tenant)) {
+        const last = this._intervalMap.get(tenant)
+        if (Date.now() - last > this._tenantCheckInterval)
+          await this._checkTenantExt(tenant, new Date(last).toISOString())
+      }
+      this._inCheckTenant = false
+    }
     // set promise into the map to avoid conflicts
     if (!this._extMap.has(hash)) {
       this._extMap.set(hash, this._getService(tenant, features, hash, req))
+      this._intervalMap.set(tenant, Date.now())
     }
     let service
@@ -151,4 +188,53 @@ class Dispatcher {
   }
 }
-module.exports = Dispatcher
+// -----------------------------------------------------
+// Private utils...
+const OData = require('./OData')
+const DEBUG = cds.debug('extensibility')
+const { alias2ref } = require('../../../common/utils/csn')
+function createOdataService(service) {
+  const name = (service.definition && service.definition.name) || service.name
+  const edm = cds.compile.to.edm(service.model, { service: name })
+  alias2ref(service, edm)
+  const odataService = new OData(edm, service.model, service.options)
+  odataService.addCDSServiceToChannel(service)
+  return odataService
+}
+async function createNewService(name, model, options) {
+  const { constructor: Service, path } = cds.services[name]
+  const service = new Service(name, model, { ...options }) // cloning options to be safe
+  if (service.init) await service.prepend(service.init)
+  if (options.impl) await service.prepend(options.impl)
+  if (path) service.path = path
+  DEBUG &&
+    DEBUG('Created tenant-specific service:', service.name, '= new', Service.name, {
+      _handlers: {
+        on: service._handlers.on.map(h => ({ on: h.on, handler: () => {} }))
+      }
+    })
+  return createOdataService(service)
+}
+const getModelHash = (tenant, features) => {
+  // ignore tenant in single tenant mode - use default (undefined) hash
+  const hash = cds.requires.multitenancy ? `${tenant}:` : 'undefined:'
+  return !features ? hash : hash + features.join(';')
+}
+const _features4 = features => {
+  // ensure features is an array
+  if (!features) return []
+  if (Array.isArray(features)) return features
+  if (typeof features === 'string') return features.split(',')
+  if (typeof features === 'object')
+    return Object.keys(features)
+      .filter(k => features[k])
+      .sort()
+}

package/libx/_runtime/cds-services/adapter/odata-v4/OData.js CHANGED Viewed

@@ -27,7 +27,6 @@ const _delete = require('./handlers/delete')
 const _read = require('./handlers/read')
 const _action = require('./handlers/action')
 const { normalizeError, isClientError } = require('../../../common/error/frontend')
 const { getErrorMessage } = require('../../../common/error/utils')
 function _log(level, arg) {
@@ -51,7 +50,6 @@ function _log(level, arg) {
     // reduce 4xx to warning
     if (isClientError(obj)) {
       if (!LOG._warn) {
-        // restore
         return
       }
       level = 'warn'
@@ -264,8 +262,13 @@ class OData {
     // this._startPerfMeasurementOData(req)
     this._odataService.process(req, res).catch(err => {
+      LOG.warn(err)
       // REVISIT: use i18n
-      res.status(500).send({ error: { code: 'null', message: err.message } })
+      //do not reply with error, if response already processed (streaming)
+      if (!res.headersSent) {
+        const { error, statusCode } = normalizeError(err, req)
+        res.status(statusCode).send({ error })
+      }
     })
   }
 }

package/libx/_runtime/cds-services/adapter/odata-v4/ODataRequest.js CHANGED Viewed

@@ -11,11 +11,10 @@ const {
 } = require('./okra/odata-server')
 const { findCsnTargetFor } = require('../../../common/utils/csn')
+const metaInfo = require('./utils/metaInfo')
 const odataToCQN = require('./odata-to-cqn')
 const { getData, getParams } = require('./utils/data')
 const { isCustomOperation } = require('./utils/request')
-const { flattenDeepToOneAssociations } = require('../../services/utils/handlerUtils')
 function _isCorrectCallToViewWithParams(csdlStructuredType) {
   return (
@@ -55,6 +54,12 @@ function _getTarget(service, segments) {
   return _getTarget(service, segments)
 }
+function _add4Odata(query) {
+  if (Array.isArray(query))
+    for (let i = 0; i < query.length; i++) Object.defineProperty(query[i].SELECT, '_4odata', { value: true })
+  else Object.defineProperty(query.SELECT, '_4odata', { value: true })
+}
 /**
  * Class representing an OData request.
  * @extends cds.Request
@@ -71,86 +76,101 @@ class ODataRequest extends cds.Request {
       : odataReq.getIncomingRequest()
     const res = req.res
-    /*
-     * target
-     */
-    const target = _getTarget(service, [...odataReq.getUriInfo().getPathSegments()])
-    /*
-     * data
-     */
-    const data = getData(type, odataReq, service, target)
-    /*
-     * query
-     */
-    const operation = isCustomOperation(odataReq.getUriInfo().getPathSegments())
-      ? odataReq.getUriInfo().getLastSegment().getKind()
-      : type
-    const query = odataToCQN(operation, service, target, data, odataReq, upsert)
-    /*
-     * event
-     */
-    let event = type
+    if (cds.env.features.odata_new_parser) {
+      // REVISIT need to resolve target after replacing okra <= maybe just take one from afterburner?
+      const target = _getTarget(service, [...odataReq.getUriInfo().getPathSegments()])
+      // REVISIT payload after replacing okra
+      const data = getData(type, odataReq, service, target)
+      const query = odataToCQN(type, service, target, data, odataReq, upsert)
+      const headers = Object.assign({}, req.headers, odataReq.getHeaders())
+      // REVISIT needed in case of $batch, replace after removing okra
+      const method = odataReq.getIncomingRequest().method
+      const { user } = req
+      const info = metaInfo(query, type, service, data, req, upsert)
+      const { event, unbound } = info
+      if (event === 'READ') _add4Odata(query)
+      const _queryOptions = odataReq.getQueryOptions()
+      super({ event, target, data, query: unbound ? {} : query, user, method, headers, req, res, _queryOptions })
+      this._metaInfo = info.metadata
+    } else {
+      /*
+       * target
+       */
+      const target = _getTarget(service, [...odataReq.getUriInfo().getPathSegments()])
+      /*
+       * data
+       */
+      const data = getData(type, odataReq, service, target)
+      /*
+       * query
+       */
+      const operation = isCustomOperation(odataReq.getUriInfo().getPathSegments())
+        ? odataReq.getUriInfo().getLastSegment().getKind()
+        : type
+      const query = odataToCQN(operation, service, target, data, odataReq, upsert)
+      /*
+       * event
+       */
+      let event = type
+      // actions & functions
+      const uriInfoLastSegment = odataReq.getUriInfo().getLastSegment()
+      switch (uriInfoLastSegment && uriInfoLastSegment.getKind()) {
+        case 'BOUND.ACTION':
+          event = uriInfoLastSegment.getAction().getName()
+          break
+        case 'ACTION.IMPORT':
+          event = uriInfoLastSegment.getActionImport().getName()
+          break
+        case 'BOUND.FUNCTION':
+          event = uriInfoLastSegment.getFunction().getName()
+          break
+        case 'FUNCTION.IMPORT':
+          event = uriInfoLastSegment.getFunctionImport().getName()
+          break
+        // no default
+      }
-    // actions & functions
-    const uriInfoLastSegment = odataReq.getUriInfo().getLastSegment()
+      // draft
+      if (target && target._isDraftEnabled) {
+        if (type === 'CREATE') event = 'NEW'
+        else if (event === 'draftEdit') event = 'EDIT'
+        else if (type === 'UPDATE') event = 'PATCH'
+        else if (type === 'DELETE' && data.IsActiveEntity !== true) event = 'CANCEL'
+      }
-    switch (uriInfoLastSegment && uriInfoLastSegment.getKind()) {
-      case 'BOUND.ACTION':
-        event = uriInfoLastSegment.getAction().getName()
-        break
+      // mark query as for an OData READ
+      if (event === 'READ') Object.defineProperty(query.SELECT, '_4odata', { value: true })
-      case 'ACTION.IMPORT':
-        event = uriInfoLastSegment.getActionImport().getName()
-        break
+      /*
+       * method, headers
+       */
+      const method = odataReq.getMethod()
-      case 'BOUND.FUNCTION':
-        event = uriInfoLastSegment.getFunction().getName()
-        break
+      // REVISIT: Why do we mix headers of $batch and batched request headers??
+      const headers = Object.assign({}, req.headers, odataReq.getHeaders())
-      case 'FUNCTION.IMPORT':
-        event = uriInfoLastSegment.getFunctionImport().getName()
-        break
+      /*
+       * super
+       */
+      const { user } = req
-      // no default
-    }
+      // REVISIT: _model should not be necessary
+      const _model = service.model
-    // draft
-    if (target && target._isDraftEnabled) {
-      if (type === 'CREATE') event = 'NEW'
-      else if (event === 'draftEdit') event = 'EDIT'
-      else if (type === 'UPDATE') event = 'PATCH'
-      else if (type === 'DELETE' && data.IsActiveEntity !== 'true') event = 'CANCEL'
+      // REVISIT: public API for query options (express style req.query already in use)?
+      const _queryOptions = odataReq.getQueryOptions()
+      super({ event, target, data, query, user, method, headers, req, res, _model, _queryOptions })
     }
-    // mark query as for an OData READ
-    if (event === 'READ') Object.defineProperty(query.SELECT, '_4odata', { value: true })
-    /*
-     * method, headers
-     */
-    const method = odataReq.getMethod()
-    // REVISIT: Why do we mix headers of $batch and batched request headers??
-    const headers = Object.assign({}, req.headers, odataReq.getHeaders())
-    /*
-     * super
-     */
-    const { user } = req
-    // REVISIT: _model should not be necessary
-    const _model = service.model
-    // REVISIT: public API for query options (express style req.query already in use)?
-    const _queryOptions = odataReq.getQueryOptions()
-    super({ event, target, data, query, user, method, headers, req, res, _model, _queryOptions })
-    // REVISIT: validate associations for deep insert
-    flattenDeepToOneAssociations(this, this.model)
     /*
      * req.run
      */