1 package Koha::REST::Plugin::Query;
3 # This file is part of Koha.
5 # Koha is free software; you can redistribute it and/or modify it
6 # under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 3 of the License, or
8 # (at your option) any later version.
10 # Koha is distributed in the hope that it will be useful, but
11 # WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with Koha; if not, see <http://www.gnu.org/licenses>.
20 use Mojo::Base 'Mojolicious::Plugin';
21 use List::MoreUtils qw( any );
22 use Scalar::Util qw( reftype );
23 use JSON qw( decode_json );
29 Koha::REST::Plugin::Query
33 =head2 Mojolicious::Plugin methods
40 my ( $self, $app ) = @_;
44 =head3 extract_reserved_params
46 my ( $filtered_params, $reserved_params ) = $c->extract_reserved_params($params);
48 Generates the DBIC query from the query parameters.
53 'extract_reserved_params' => sub {
54 my ( $c, $params ) = @_;
60 my $reserved_words = _reserved_words();
61 my @query_param_names = keys %{$c->req->params->to_hash};
63 foreach my $param ( keys %{$params} ) {
64 if ( grep { $param eq $_ } @{$reserved_words} ) {
65 $reserved_params->{$param} = $params->{$param};
67 elsif ( grep { $param eq $_ } @query_param_names ) {
68 $filtered_params->{$param} = $params->{$param};
71 $path_params->{$param} = $params->{$param};
75 return ( $filtered_params, $reserved_params, $path_params );
79 =head3 dbic_merge_sorting
81 $attributes = $c->dbic_merge_sorting({ attributes => $attributes, params => $params });
83 Generates the DBIC order_by attributes based on I<$params>, and merges into I<$attributes>.
88 'dbic_merge_sorting' => sub {
89 my ( $c, $args ) = @_;
90 my $attributes = $args->{attributes};
91 my $result_set = $args->{result_set};
93 my @order_by_styles = (
99 foreach my $order_by_style ( @order_by_styles ) {
100 if ( defined $args->{params}->{$order_by_style} and ref($args->{params}->{$order_by_style}) eq 'ARRAY' ) {
101 push( @order_by_params, @{$args->{params}->{$order_by_style} });
104 push @order_by_params, $args->{params}->{$order_by_style}
105 if defined $args->{params}->{$order_by_style};
111 foreach my $order_by_param ( @order_by_params ) {
113 $order_by = [ split(/,/, $order_by_param) ]
114 if ( !reftype($order_by_param) && index(',',$order_by_param) == -1);
117 if ( reftype($order_by) and reftype($order_by) eq 'ARRAY' ) {
118 my @order_by = map { _build_order_atom({ string => $_, result_set => $result_set }) } @{ $order_by };
119 push( @THE_order_by, @order_by);
122 push @THE_order_by, _build_order_atom({ string => $order_by, result_set => $result_set });
127 $attributes->{order_by} = \@THE_order_by
128 if scalar @THE_order_by > 0;
134 =head3 dbic_merge_prefetch
136 $attributes = $c->dbic_merge_prefetch({ attributes => $attributes, result_set => $result_set });
138 Generates the DBIC prefetch attribute based on embedded relations, and merges into I<$attributes>.
143 'dbic_merge_prefetch' => sub {
144 my ( $c, $args ) = @_;
145 my $attributes = $args->{attributes};
146 my $result_set = $args->{result_set};
147 my $embed = $c->stash('koha.embed');
149 return unless defined $embed;
152 foreach my $key (sort keys(%{$embed})) {
153 my $parsed = _parse_prefetch($key, $embed, $result_set);
154 push @prefetches, $parsed if defined $parsed;
157 if(scalar(@prefetches)) {
158 $attributes->{prefetch} = \@prefetches;
163 =head3 _build_query_params_from_api
165 my $params = _build_query_params_from_api( $filtered_params, $reserved_params );
167 Builds the params for searching on DBIC based on the selected matching algorithm.
168 Valid options are I<contains>, I<starts_with>, I<ends_with> and I<exact>. Default is
169 I<contains>. If other value is passed, a Koha::Exceptions::WrongParameter exception
175 'build_query_params' => sub {
177 my ( $c, $filtered_params, $reserved_params ) = @_;
180 my $match = $reserved_params->{_match} // 'contains';
182 foreach my $param ( keys %{$filtered_params} ) {
183 if ( $match eq 'contains' ) {
185 { like => '%' . $filtered_params->{$param} . '%' };
187 elsif ( $match eq 'starts_with' ) {
188 $params->{$param} = { like => $filtered_params->{$param} . '%' };
190 elsif ( $match eq 'ends_with' ) {
191 $params->{$param} = { like => '%' . $filtered_params->{$param} };
193 elsif ( $match eq 'exact' ) {
194 $params->{$param} = $filtered_params->{$param};
197 # We should never reach here, because the OpenAPI plugin should
198 # prevent invalid params to be passed
199 Koha::Exceptions::WrongParameter->throw(
200 "Invalid value for _match param ($match)");
208 =head3 merge_q_params
210 $c->merge_q_params( $filtered_params, $q_params, $result_set );
212 Merges parameters from $q_params into $filtered_params.
217 'merge_q_params' => sub {
219 my ( $c, $filtered_params, $q_params, $result_set ) = @_;
221 $q_params = decode_json($q_params) unless reftype $q_params;
223 my $params = _parse_dbic_query($q_params, $result_set);
225 return $params unless scalar(keys %{$filtered_params});
226 return {'-and' => [$params, $filtered_params ]};
232 $c->stash_embed( $c->match->endpoint->pattern->defaults->{'openapi.op_spec'} );
237 'stash_embed' => sub {
239 my ( $c, $args ) = @_;
241 my $spec = $args->{spec} // {};
243 my $embed_spec = $spec->{'x-koha-embed'};
244 my $embed_header = $c->req->headers->header('x-koha-embed');
246 Koha::Exceptions::BadParameter->throw("Embedding objects is not allowed on this endpoint.")
247 if $embed_header and !defined $embed_spec;
249 if ( $embed_header ) {
251 foreach my $embed_req ( split /\s*,\s*/, $embed_header ) {
252 my $matches = grep {lc $_ eq lc $embed_req} @{ $embed_spec };
254 Koha::Exceptions::BadParameter->throw(
255 error => 'Embeding '.$embed_req. ' is not authorised. Check your x-koha-embed headers or remove it.'
258 _merge_embed( _parse_embed($embed_req), $THE_embed);
261 $c->stash( 'koha.embed' => $THE_embed )
269 =head3 stash_overrides
271 # Stash the overrides
272 $c->stash_overrides();
274 my $overrides = $c->stash('koha.overrides');
275 if ( $overrides->{pickup_location} ) { ... }
277 This helper method parses 'x-koha-override' headers and stashes the passed overriders
278 in the for of a I<hashref> for easy use in controller methods.
280 FIXME: With the currently used JSON::Validator version we use, it is not possible to
281 use the validated and coerced data (it doesn't validate array-type headers) so this
282 implementation relies on manual parsing. Look at the JSON::Validator changelog for
283 reference: https://metacpan.org/changes/distribution/JSON-Validator#L14
288 'stash_overrides' => sub {
292 my $override_header = $c->req->headers->header('x-koha-override') || q{};
294 my $overrides = { map { $_ => 1 } split /\s*,\s*/, $override_header };
296 $c->stash( 'koha.overrides' => $overrides );
303 =head2 Internal methods
305 =head3 _reserved_words
307 my $reserved_words = _reserved_words();
311 sub _reserved_words {
313 my @reserved_words = qw( _match _order_by _order_by[] _page _per_page q query x-koha-query);
314 return \@reserved_words;
317 =head3 _build_order_atom
319 my $order_atom = _build_order_atom( $string );
321 Parses I<$string> and outputs data valid for using in SQL::Abstract order_by attribute
322 according to the following rules:
325 +string -> I<{ -asc => string }>
326 -string -> I<{ -desc => string }>
330 sub _build_order_atom {
332 my $string = $args->{string};
333 my $result_set = $args->{result_set};
336 $param =~ s/^(\+|\-|\s)//;
338 my $model_param = _from_api_param($param, $result_set);
339 $param = $model_param if defined $model_param;
342 if ( $string =~ m/^\+/ or
343 $string =~ m/^\s/ ) {
344 # asc order operator present
345 return { -asc => $param };
347 elsif ( $string =~ m/^\-/ ) {
348 # desc order operator present
349 return { -desc => $param };
352 # no order operator present
359 my $embed = _parse_embed( $string );
361 Parses I<$string> and outputs data valid for passing to the Kohaa::Object(s)->to_api
370 my ( $curr, $next ) = split /\s*\.\s*/, $string, 2;
373 $result->{$curr} = { children => _parse_embed( $next ) };
376 if ( $curr =~ m/^(?<relation>.*)\+count/ ) {
377 my $key = $+{relation} . "_count";
378 $result->{$key} = { is_count => 1 };
381 $result->{$curr} = {};
390 _merge_embed( $parsed_embed, $global_embed );
392 Merges the hash referenced by I<$parsed_embed> into I<$global_embed>.
397 my ( $structure, $embed ) = @_;
399 my ($root) = keys %{ $structure };
401 if ( any { $root eq $_ } keys %{ $embed } ) {
403 _merge_embed( $structure->{$root}, $embed->{$root} );
407 $embed->{$root} = $structure->{$root};
411 sub _parse_prefetch {
412 my ( $key, $embed, $result_set) = @_;
415 $pref_key =~ s/_count$// if $embed->{$key}->{is_count};
416 return unless exists $result_set->prefetch_whitelist->{$pref_key};
418 my $ko_class = $result_set->prefetch_whitelist->{$pref_key};
419 return $pref_key unless defined $embed->{$key}->{children} && defined $ko_class;
422 foreach my $child (sort keys(%{$embed->{$key}->{children}})) {
423 my $parsed = _parse_prefetch($child, $embed->{$key}->{children}, $ko_class->new);
424 push @prefetches, $parsed if defined $parsed;
427 return $pref_key unless scalar(@prefetches);
429 return {$pref_key => $prefetches[0]} if scalar(@prefetches) eq 1;
431 return {$pref_key => \@prefetches};
434 sub _from_api_param {
435 my ($key, $result_set) = @_;
439 my ($curr, $next) = split /\s*\.\s*/, $key, 2;
441 return $curr.'.'._from_api_param($next, $result_set) if $curr eq 'me';
443 my $ko_class = $result_set->prefetch_whitelist->{$curr};
445 Koha::Exceptions::BadParameter->throw("Cannot find Koha::Object class for $curr")
446 unless defined $ko_class;
448 $result_set = $ko_class->new;
451 return _from_api_param($next, $result_set);
453 return $curr.'.'.($result_set->from_api_mapping && defined $result_set->from_api_mapping->{$next} ? $result_set->from_api_mapping->{$next}:$next);
456 return defined $result_set->from_api_mapping->{$key} ? $result_set->from_api_mapping->{$key} : $key;
460 sub _parse_dbic_query {
461 my ($q_params, $result_set) = @_;
463 if(reftype($q_params) && reftype($q_params) eq 'HASH') {
465 foreach my $key (keys %{$q_params}) {
466 if($key =~ /-?(not_?)?bool/i ) {
467 $parsed_hash->{$key} = _from_api_param($q_params->{$key}, $result_set);
470 my $k = _from_api_param($key, $result_set);
471 $parsed_hash->{$k} = _parse_dbic_query($q_params->{$key}, $result_set);
474 } elsif (reftype($q_params) && reftype($q_params) eq 'ARRAY') {
475 my @mapped = map{ _parse_dbic_query($_, $result_set) } @$q_params;