UNPKG

@azure/cosmos

Version:

Microsoft Azure Cosmos DB Service Node.js SDK for NOSQL API

github.com/Azure/azure-sdk-for-js/tree/main/sdk/cosmosdb/cosmos/README.md

Azure/azure-sdk-for-js

478 lines • 17.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.jsonStringifyAndEscapeNonASCII = jsonStringifyAndEscapeNonASCII; exports.parseLink = parseLink; exports.isReadRequest = isReadRequest; exports.sleep = sleep; exports.getContainerLink = getContainerLink; exports.prepareURL = prepareURL; exports.trimSlashes = trimSlashes; exports.getHexaDigit = getHexaDigit; exports.parsePath = parsePath; exports.isResourceValid = isResourceValid; exports.isItemResourceValid = isItemResourceValid; exports.getIdFromLink = getIdFromLink; exports.getPathFromLink = getPathFromLink; exports.isStringNullOrEmpty = isStringNullOrEmpty; exports.trimSlashFromLeftAndRight = trimSlashFromLeftAndRight; exports.validateResourceId = validateResourceId; exports.validateItemResourceId = validateItemResourceId; exports.getResourceIdFromPath = getResourceIdFromPath; exports.parseConnectionString = parseConnectionString; exports.copyObject = copyObject; exports.createDeserializer = createDeserializer; exports.extractPath = extractPath; exports.createSerializer = createSerializer; exports.validateClientEncryptionPolicy = validateClientEncryptionPolicy; exports.canApplyExcludedLocations = canApplyExcludedLocations; const index_js_1 = require("../encryption/Serializers/index.js"); const EncryptionType_js_1 = require("../encryption/enums/EncryptionType.js"); const TypeMarker_js_1 = require("../encryption/enums/TypeMarker.js"); const ErrorResponse_js_1 = require("../request/ErrorResponse.js"); const constants_js_1 = require("./constants.js"); const trimLeftSlashes = new RegExp("^[/]+"); const trimRightSlashes = new RegExp("[/]+$"); const illegalResourceIdCharacters = new RegExp("[/\\\\?#]"); const illegalItemResourceIdCharacters = new RegExp("[/\\\\#]"); /** @hidden */ function jsonStringifyAndEscapeNonASCII(arg) { // TODO: better way for this? Not sure. // escapes non-ASCII characters as \uXXXX return JSON.stringify(arg).replace(/[\u007F-\uFFFF]/g, (m) => { return "\\u" + ("0000" + m.charCodeAt(0).toString(16)).slice(-4); }); } /** * @hidden */ function parseLink(resourcePath) { if (resourcePath.length === 0) { /* for DatabaseAccount case, both type and objectBody will be undefined. */ return { type: undefined, objectBody: undefined, }; } if (resourcePath[resourcePath.length - 1] !== "/") { resourcePath = resourcePath + "/"; } if (resourcePath[0] !== "/") { resourcePath = "/" + resourcePath; } /* The path will be in the form of /[resourceType]/[resourceId]/ .... /[resourceType]//[resourceType]/[resourceId]/ .... /[resourceType]/[resourceId]/ or /[resourceType]/[resourceId]/ .... /[resourceType]/[resourceId]/[resourceType]/[resourceId]/ .... /[resourceType]/[resourceId]/ The result of split will be in the form of [[[resourceType], [resourceId] ... ,[resourceType], [resourceId], ""] In the first case, to extract the resourceId it will the element before last ( at length -2 ) and the type will be before it ( at length -3 ) In the second case, to extract the resource type it will the element before last ( at length -2 ) */ const pathParts = resourcePath.split("/"); let id; let type; if (pathParts.length % 2 === 0) { // request in form /[resourceType]/[resourceId]/ .... /[resourceType]/[resourceId]. id = pathParts[pathParts.length - 2]; type = pathParts[pathParts.length - 3]; } else { // request in form /[resourceType]/[resourceId]/ .... /[resourceType]/. id = pathParts[pathParts.length - 3]; type = pathParts[pathParts.length - 2]; } const result = { type, objectBody: { id, self: resourcePath, }, }; return result; } /** * @hidden */ function isReadRequest(operationType) { return operationType === constants_js_1.OperationType.Read || operationType === constants_js_1.OperationType.Query; } /** * @hidden */ function sleep(time) { return new Promise((resolve) => { setTimeout(() => { resolve(); }, time); }); } /** * @hidden */ function getContainerLink(link) { return link.split("/").slice(0, 4).join("/"); } /** * @hidden */ function prepareURL(endpoint, path) { return trimSlashes(endpoint) + path; } /** * @hidden */ function trimSlashes(source) { return source.replace(trimLeftSlashes, "").replace(trimRightSlashes, ""); } /** * @hidden */ function getHexaDigit() { return Math.floor(Math.random() * 16).toString(16); } /** * @hidden */ function parsePath(path) { const pathParts = []; let currentIndex = 0; const throwError = () => { throw new Error("Path " + path + " is invalid at index " + currentIndex); }; const getEscapedToken = () => { const quote = path[currentIndex]; let newIndex = ++currentIndex; for (;;) { newIndex = path.indexOf(quote, newIndex); if (newIndex === -1) { throwError(); } if (path[newIndex - 1] !== "\\") { break; } ++newIndex; } const token = path.substr(currentIndex, newIndex - currentIndex); currentIndex = newIndex + 1; return token; }; const getToken = () => { const newIndex = path.indexOf("/", currentIndex); let token = null; if (newIndex === -1) { token = path.substr(currentIndex); currentIndex = path.length; } else { token = path.substr(currentIndex, newIndex - currentIndex); currentIndex = newIndex; } token = token.trim(); return token; }; while (currentIndex < path.length) { if (path[currentIndex] !== "/") { throwError(); } if (++currentIndex === path.length) { break; } if (path[currentIndex] === '"' || path[currentIndex] === "'") { pathParts.push(getEscapedToken()); } else { pathParts.push(getToken()); } } return pathParts; } /** * @hidden */ function isResourceValid(resource, err) { // TODO: fix strictness issues so that caller contexts respects the types of the functions if (resource.id) { if (typeof resource.id !== "string") { err.message = "Id must be a string."; return false; } if (resource.id.indexOf("/") !== -1 || resource.id.indexOf("\\") !== -1 || resource.id.indexOf("?") !== -1 || resource.id.indexOf("#") !== -1) { err.message = "Id contains illegal chars."; return false; } if (resource.id[resource.id.length - 1] === " ") { err.message = "Id ends with a space."; return false; } } return true; } /** * @hidden */ function isItemResourceValid(resource, err) { // TODO: fix strictness issues so that caller contexts respects the types of the functions if (resource.id) { if (typeof resource.id !== "string") { err.message = "Id must be a string."; return false; } if (resource.id.indexOf("/") !== -1 || resource.id.indexOf("\\") !== -1 || resource.id.indexOf("#") !== -1) { err.message = "Id contains illegal chars."; return false; } } return true; } /** @hidden */ function getIdFromLink(resourceLink) { resourceLink = trimSlashes(resourceLink); return resourceLink; } /** @hidden */ function getPathFromLink(resourceLink, resourceType) { resourceLink = trimSlashes(resourceLink); if (resourceType) { return "/" + encodeURI(resourceLink) + "/" + resourceType; } else { return "/" + encodeURI(resourceLink); } } /** * @hidden */ function isStringNullOrEmpty(inputString) { // checks whether string is null, undefined, empty or only contains space return !inputString || /^\s*$/.test(inputString); } /** * @hidden */ function trimSlashFromLeftAndRight(inputString) { if (typeof inputString !== "string") { throw new Error("invalid input: input is not string"); } return inputString.replace(trimLeftSlashes, "").replace(trimRightSlashes, ""); } /** * @hidden */ function validateResourceId(resourceId) { // if resourceId is not a string or is empty throw an error if (typeof resourceId !== "string" || isStringNullOrEmpty(resourceId)) { throw new Error("Resource ID must be a string and cannot be undefined, null or empty"); } // if resource id contains illegal characters throw an error if (illegalResourceIdCharacters.test(resourceId)) { throw new Error("Illegal characters ['/', '\\', '#', '?'] cannot be used in Resource ID"); } return true; } /** * @hidden */ function validateItemResourceId(resourceId) { // if resourceId is not a string or is empty throw an error if (typeof resourceId !== "string" || isStringNullOrEmpty(resourceId)) { throw new Error("Resource ID must be a string and cannot be undefined, null or empty"); } // if resource id contains illegal characters throw an error if (illegalItemResourceIdCharacters.test(resourceId)) { throw new Error("Illegal characters ['/', '\\', '#'] cannot be used in Resource ID"); } return true; } /** * @hidden */ function getResourceIdFromPath(resourcePath) { if (!resourcePath || typeof resourcePath !== "string") { return null; } const trimmedPath = trimSlashFromLeftAndRight(resourcePath); const pathSegments = trimmedPath.split("/"); // number of segments of a path must always be even if (pathSegments.length % 2 !== 0) { return null; } return pathSegments[pathSegments.length - 1]; } /** * @hidden */ function parseConnectionString(connectionString) { const keyValueStrings = connectionString.split(";"); const { AccountEndpoint, AccountKey } = keyValueStrings.reduce((connectionObject, keyValueString) => { const [key, ...value] = keyValueString.split("="); connectionObject[key] = value.join("="); return connectionObject; }, {}); if (!AccountEndpoint || !AccountKey) { throw new Error("Could not parse the provided connection string"); } return { endpoint: AccountEndpoint, key: AccountKey, }; } /** * utility function to return copy of object to avoid encryption of original object passed * in the CRUD methods. * @hidden */ /* eslint-disable @typescript-eslint/no-explicit-any, @typescript-eslint/explicit-module-boundary-types, @typescript-eslint/no-shadow, no-prototype-builtins */ function copyObject(obj) { return JSON.parse(JSON.stringify(obj, (_, value) => { if (typeof value === "bigint") { throw new Error(`BigInt type is not supported`); } return value; })); } /** * @hidden */ function createDeserializer(typeMarker) { switch (typeMarker) { case TypeMarker_js_1.TypeMarker.Long: { // return instance return new index_js_1.NumberSerializer(); } case TypeMarker_js_1.TypeMarker.Double: return new index_js_1.FloatSerializer(); case TypeMarker_js_1.TypeMarker.String: return new index_js_1.StringSerializer(); case TypeMarker_js_1.TypeMarker.Boolean: return new index_js_1.BooleanSerializer(); default: throw new Error("Invalid or Unsupported data type passed."); } } /** * @hidden * extracts the top-level path */ function extractPath(path) { const secondSlashIndex = path.indexOf("/", path.indexOf("/") + 1); return secondSlashIndex === -1 ? path : path.substring(0, secondSlashIndex); } function createSerializer(propertyValue, type) { if (type) { if (type === TypeMarker_js_1.TypeMarker.Long) { return [TypeMarker_js_1.TypeMarker.Long, new index_js_1.NumberSerializer()]; } else if (type === TypeMarker_js_1.TypeMarker.Double) { return [TypeMarker_js_1.TypeMarker.Double, new index_js_1.FloatSerializer()]; } else if (type === TypeMarker_js_1.TypeMarker.String) { return [TypeMarker_js_1.TypeMarker.String, new index_js_1.StringSerializer()]; } else if (type === TypeMarker_js_1.TypeMarker.Boolean) { return [TypeMarker_js_1.TypeMarker.Boolean, new index_js_1.BooleanSerializer()]; } else { throw new Error("Invalid or Unsupported data type passed."); } } else { switch (typeof propertyValue) { case "boolean": return [TypeMarker_js_1.TypeMarker.Boolean, new index_js_1.BooleanSerializer()]; case "string": return [TypeMarker_js_1.TypeMarker.String, new index_js_1.StringSerializer()]; case "object": if (propertyValue.constructor === Date) { return [TypeMarker_js_1.TypeMarker.String, new index_js_1.StringSerializer()]; } throw new Error("Invalid or Unsupported data type passed."); case "number": if (!Number.isInteger(propertyValue)) { return [TypeMarker_js_1.TypeMarker.Double, new index_js_1.FloatSerializer()]; } else { return [TypeMarker_js_1.TypeMarker.Long, new index_js_1.NumberSerializer()]; } default: throw new Error("Invalid or Unsupported data type passed."); } } } /** * @hidden * verifies policy format version, included paths and ensures that id and partition key paths specified in the client encryption policy * for encryption are encrypted using Deterministic encryption algorithm. */ function validateClientEncryptionPolicy(clientEncryptionPolicy, partitionKey) { const policyFormatVersion = clientEncryptionPolicy.policyFormatVersion; if (policyFormatVersion < 1 || policyFormatVersion > 2) { throw new ErrorResponse_js_1.ErrorResponse("Supported versions of client encryption policy are 1 and 2."); } const paths = new Set(); // checks for duplicate paths and validates the path format and clientEncryptionKeyId for (const includedPath of clientEncryptionPolicy.includedPaths) { if (paths.has(includedPath.path)) { throw new ErrorResponse_js_1.ErrorResponse(`Duplicate path found: ${includedPath.path} in client encryption policy.`); } if (includedPath.path === undefined || includedPath.path === null || includedPath.path === "" || includedPath.path === "/") { throw new ErrorResponse_js_1.ErrorResponse("Path needs to be defined in ClientEncryptionIncludedPath."); } if (includedPath.clientEncryptionKeyId === undefined || includedPath.clientEncryptionKeyId === null || includedPath.clientEncryptionKeyId === "" || typeof includedPath.clientEncryptionKeyId !== "string") { throw new ErrorResponse_js_1.ErrorResponse("ClientEncryptionKeyId needs to be defined as string type in ClientEncryptionIncludedPath."); } if (includedPath.path[0] !== "/") { throw new ErrorResponse_js_1.ErrorResponse("Path in ClientEncryptionIncludedPath must start with '/'."); } const pathSegments = includedPath.path.split("/").filter((segment) => segment.length > 0); if (pathSegments.length > 1) { throw new ErrorResponse_js_1.ErrorResponse("Only top-level paths are currently supported for encryption"); } paths.add(includedPath.path); } // checks if id and partition key paths are encrypted using Deterministic encryption algorithm. const encryptedPaths = clientEncryptionPolicy.includedPaths; const partitionKeyPaths = partitionKey.paths.map(extractPath); let isPartitionKeyEncrypted = false; let isIdEncrypted = false; for (const encryptedPath of encryptedPaths) { if (encryptedPath.path === "/id") { isIdEncrypted = true; if (encryptedPath.encryptionType !== EncryptionType_js_1.EncryptionType.DETERMINISTIC) { throw new ErrorResponse_js_1.ErrorResponse("The '/id' property must be encrypted using Deterministic encryption."); } } if (partitionKeyPaths.includes(encryptedPath.path)) { isPartitionKeyEncrypted = true; if (encryptedPath.encryptionType !== EncryptionType_js_1.EncryptionType.DETERMINISTIC) { throw new ErrorResponse_js_1.ErrorResponse(`Path: ${encryptedPath.path} which is part of the partition key has to be encrypted with Deterministic type Encryption.`); } } } // Ensures that the policy format version is 2 if id or partition key paths are encrypted. if ((isPartitionKeyEncrypted || isIdEncrypted) && clientEncryptionPolicy.policyFormatVersion === 1) { throw new ErrorResponse_js_1.ErrorResponse("Encryption of partition key or id is only supported with policy format version 2."); } } /** * Checks if excluded locations can be applied to the given resource type * @param resourceType - The resource type to check * @returns true if excluded locations can be applied, false otherwise */ function canApplyExcludedLocations(resourceType) { return resourceType === constants_js_1.ResourceType.item; } //# sourceMappingURL=helper.js.map