UNPKG

@sap/cds-mtxs

Version:

SAP Cloud Application Programming Model - Multitenancy library

cap.cloud.sap

402 lines (349 loc) 16.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
const cds = require('@sap/cds/lib'), {db} = cds.env.requires const path = require('path') const { promisify } = require('util') const { retry } = require('../../lib/utils') const TEMP_DIR = require('fs').realpathSync(require('os').tmpdir()) module.exports = exports = { resources4, build, _imCreateParams, directory4 } const { cacheBindings = true, t0 = 't0' } = cds.requires.multitenancy ?? {} const { existsSync } = require('fs') const { mkdirp } = cds.utils const main = require('../config') const { readData } = require('../../lib/utils') const migration = require('../../lib/migration/migration') if (db?.kind === 'hana') { if (!db.credentials?.sm_url) cds.error('No Service Manager credentials found. Make sure the application is bound to a BTP Service Manager instance.') const hana = require('./hana/srv-mgr') exports.activated = 'HANA Database' // Add HANA-specific handlers to DeploymentService... cds.on ('serving:cds.xt.DeploymentService', ds => { ds.on ('subscribe', async req => { const { tenant:t, options: { _: params } = {}, metadata } = req.data let existingContainer try { existingContainer = await hana.get(t, { disableCache: true }) } catch (e) { if (e.status === 404) return _deploy(req, hana.create(t, _imCreateParams(t, params, metadata)), { skipExt: true }) else throw e } return _deploy(req, existingContainer) }) ds.on (['upgrade', 'extend'], req => { const { tenant:t, options } = req.data return _deploy(req, hana.get(t), options) }) ds.on ('deploy', async req => { const { tenant:t, options: { _: params, container, out } } = req.data await hana.deploy (container, t, out, _hdiDeployParams(t, params), params?.hdi?.deployEnv) LOG.info(`successfully deployed to tenant ${t}`) }) ds.on ('unsubscribe', req => { const { tenant:t } = req.data if (cds.db) cds.db.disconnect(t) // Clean pool with active connections return hana.delete(t) }) ds.on ('getTables', async req => { const { tenant:t } = req.data const { schema } = (t === t0 ? await hana.acquire(t, _imCreateParams(t)) : await hana.get(t)).credentials return (await cds.tx({ tenant: t }, tx => tx.run('SELECT TABLE_NAME FROM TABLES WHERE SCHEMA_NAME = ?', [schema]) )).map(({ TABLE_NAME }) => TABLE_NAME) }) ds.on ('getTablesDeep', async req => { const { tenant:t } = req.data const { schema } = (t === t0 ? await hana.acquire(t, _imCreateParams(t)) : await hana.get(t)).credentials const tables = await cds.tx({ tenant: t }, tx => tx.run('SELECT TABLE_NAME FROM TABLES WHERE SCHEMA_NAME = ?', [schema]) ) const deepTables = {} for (const { TABLE_NAME } of tables) { const columns = await cds.tx({ tenant: t }, tx => tx.run('SELECT COLUMN_NAME FROM TABLE_COLUMNS WHERE SCHEMA_NAME = ? AND TABLE_NAME = ?', [schema, TABLE_NAME]) ) deepTables[TABLE_NAME] = columns.map(({ COLUMN_NAME }) => COLUMN_NAME) } return deepTables }) ds.on ('getColumns', async req => { const { tenant:t, table, params } = req.data const { schema } = (t === t0 ? await hana.acquire(t, _imCreateParams(t, params)) : await hana.get(t)).credentials return (await cds.tx({ tenant: t }, tx => tx.run('SELECT * FROM TABLE_COLUMNS WHERE SCHEMA_NAME = ? AND TABLE_NAME = ?', [schema, table]) )).map(({ COLUMN_NAME }) => COLUMN_NAME) }) ds.on ('getContainers', async () => { const bindings = await hana.getAll() const tenantIds = bindings.map(({ labels: { tenant_id } }) => tenant_id[0]) return [...new Set(tenantIds)] }) ds.on ('tenantsByDb', async req => { const tenantsInT0 = await ds.getTenants() const mtxTenants = await migration.getMissingMtxTenants(tenantsInT0) const tenants = req.data.tenants ?? [...tenantsInT0, ...mtxTenants] const hana = require('../plugins/hana/srv-mgr') const toTenantId = t => t.tenant_id ?? t.labels.tenant_id[0] const smTenants = (await hana.getAll(tenants.length > 0 ? tenants : '*')).filter(Boolean).filter(t => toTenantId(t) !== t0) if (tenants.length !== smTenants.length) { const smSet = new Set(smTenants.map(toTenantId)) const inconsistent = tenants.filter(t => !smSet.has(t)) if (!inconsistent.length) LOG.warn(`Tenants ${smTenants.map(toTenantId).join(', ')} are subscribed in Service Manager but not in t0. Make sure to re-subscribe the tenants.`) else if (inconsistent.length === 1) LOG.warn(`Warning: Tenant ${inconsistent[0]} does not exist in Service Manager any more and is therefore ignored. Make sure to unsubscribe the tenant.`) else LOG.warn(`Warning: Tenants ${inconsistent.join(', ')} do not exist in Service Manager any more and are therefore ignored. Make sure to unsubscribe the tenants.`) } const tenantToDbUrl = smTenants.reduce((res, t) => { const id = toTenantId(t) if (!t.credentials) throw new Error('Credentials for tenant ' + id + ' are not available.') return { ...res, [id]: `${t.credentials.host}:${t.credentials.port}` } } , {}) const byDb = {} for (const tenant of Object.keys(tenantToDbUrl)) { const dbUrl = tenantToDbUrl[tenant] if (!byDb[dbUrl]) byDb[dbUrl] = new Set byDb[dbUrl].add(tenant) } if (req.data.metadata) { const all = await cds.tx({ tenant: t0 }, tx => tx.run(SELECT.from('cds.xt.Tenants').columns(['ID', 'metadata'])) ) for (const dbUrl in byDb) { byDb[dbUrl] = Array.from(byDb[dbUrl]).map(tenant => { const metadata = all.find(({ ID }) => ID === tenant)?.metadata return { ...JSON.parse(metadata || '{}') } }) } } return byDb }) // check migration before upgrade ds.before('upgrade', async (req) => { await migration.checkMigration(req) }) }) } function _imCreateParams(tenant, params = {}, metadata) { const createParamsFromEnv = cds.env.requires['cds.xt.DeploymentService']?.hdi?.create ?? {} const createParamsFromTenantOptions = cds.env.requires['cds.xt.DeploymentService']?.for?.[tenant]?.hdi?.create ?? {} const createParams = { ...createParamsFromEnv, ...createParamsFromTenantOptions, ...params?.hdi?.create } // @sap/instance-manager API compat const compat = 'provisioning_parameters' in createParams || 'binding_parameters' in createParams if (compat) { createParams.provisioning_parameters = { ..._encryptionParams(metadata), ...createParams.provisioning_parameters } return createParams } // flatter @sap/cds-mtxs config const bindParamsFromEnv = cds.env.requires['cds.xt.DeploymentService']?.hdi?.bind ?? {} const bindParamsFromTenantOptions = cds.env.requires['cds.xt.DeploymentService']?.for?.[tenant]?.hdi?.bind ?? {} const bindParams = { ...bindParamsFromEnv, ...bindParamsFromTenantOptions, ...params?.hdi?.bind } const final = {} const provisioningParams = { ..._encryptionParams(metadata), ...createParams } if (Object.keys(provisioningParams).length > 0) final.provisioning_parameters = provisioningParams if (Object.keys(bindParams).length > 0) final.binding_parameters = bindParams if (tenant === t0) delete final.provisioning_parameters?.dataEncryption return Object.keys(final).length > 0 ? final : null } // REVISIT: Move to provisioning services function _encryptionParams(data) { return (data?.globalAccountGUID ?? data?.subscriber?.globalAccountId) ? { subscriptionContext: { // crmId: '', globalAccountID: data.globalAccountGUID ?? data.subscriber.globalAccountId, subAccountID: data.subscribedSubaccountId ?? data.subscriber.subaccountId, applicationName: data.subscriptionAppName ?? data.rootApplication?.appName } } : {} } function _hdiDeployParams(tenant, params = {}) { const paramsFromEnv = cds.env.requires['cds.xt.DeploymentService']?.hdi?.deploy || {} const paramsFromTenantOptions = cds.env.requires['cds.xt.DeploymentService']?.for?.[tenant]?.hdi?.deploy ?? {} return { ...paramsFromEnv, ...paramsFromTenantOptions, ...params?.hdi?.deploy } } const { fs, tar, rimraf } = cds.utils const LOG = cds.log('mtx'), DEBUG = cds.debug('mtx') function csn4 (tenant) { const { 'cds.xt.ModelProviderService': mp } = cds.services return mp.getCsn ({ tenant, toggles: ['*'], activated: true }) } async function resources4 (out) { const { 'cds.xt.ModelProviderService': mp } = cds.services try { const rscs = await mp.getResources() await tar.xz(rscs).to(out) return out } catch (error) { if (error.code === 404) return false // No deployment resources else error.code = 500 // avoid error codes bubble up to response if (!error.message) { error.message = 'Could not get additional deployment resources' } throw error } } module.exports.resources4 = resources4 // required in abstract provisioning service to prepare shared deployment directory async function csvs4(tenant, outRoot) { const csvs = await _readExtCsvs(tenant) if (!csvs) return const out = await fs.mkdirp (outRoot,'src','gen','data'), gen = [] for (const [filename,csv] of Object.entries(csvs)) { // store files in src/gen/data const filepath = path.join(out, filename) gen.push (fs.promises.writeFile(filepath, csv)) } return Promise.all (gen) } module.exports.csvs4 = csvs4 // required in abstract provisioning service to prepare shared deployment directory async function _readExtCsvs(tenant) { if (!main.requires.extensibility) return const { 'cds.xt.ModelProviderService': mp } = cds.services const extensions = await mp.getExtResources(tenant) if (!extensions) return null const out = await fs.promises.mkdtemp(`${TEMP_DIR}${path.sep}extension-`) try { const { csvs } = await readData(extensions, out) return csvs } finally { await rimraf(out) } } async function build (outRoot, csn, updateCsvs, tenant) { const out = await fs.mkdirp(outRoot,'src','gen'), gen = [] const hanaArtifacts = _compileToHana(csn, tenant) const { getArtifactCdsPersistenceName } = cds.compiler const migrationTables = new Set(cds.reflect(csn) .all(item => item.kind === 'entity' && item['@cds.persistence.journal']) .map(entity => getArtifactCdsPersistenceName(entity.name, 'quoted', csn, 'hana')) ) for (const { name, suffix, sql } of hanaArtifacts) { if (suffix !== '.hdbtable' || !migrationTables.has(name)) { gen.push(fs.promises.writeFile(path.join(out, name + suffix), sql)) } } // (re-) generate hdbtabledata files, only if csvs have to be added (extension) if (updateCsvs) { const toHdbtabledata = cds.compile.to.hdbtabledata ?? require(path.join(cds.home, 'bin/build/provider/hana/2tabledata')) // cds@6 compatibility const tdata = await toHdbtabledata(csn, { dirs: [path.join(out, 'data')] }) for (const [data, { file, csvFolder }] of tdata) { gen.push (fs.promises.writeFile(path.join(csvFolder,file), JSON.stringify(data))) } } return Promise.all (gen) } async function directory4(tenant, stable) { // generate suffix if not stable const folderSuffix = !stable ? `-${cds.utils.uuid()}` : '' const defaultDir = path.join(cds.root, 'gen', `${tenant}${folderSuffix}`) try { if (!existsSync(defaultDir)) await mkdirp(defaultDir) return defaultDir } catch (e) { if (e.code !== 'EACCES') throw e LOG?.(`using temporary directory ${TEMP_DIR} for build result`) const out = path.join(TEMP_DIR, 'gen', `${tenant}${folderSuffix}`) await mkdirp(out) return out } } async function _deploy (req, _container, { skipExt = false, skipResources = false } = {}) { const { tenant, options: { _: params = {}, csn: csnFromParameter } = {} } = req.data // avoid undeploy if csn is passed - would potentially delete all tables if (csnFromParameter) params.hdi = { ...params.hdi, deploy: { ...params.hdi?.deploy, auto_undeploy: false }} if (!cds.db) cds.db = cds.services.db = await cds.connect.to(db) const out = await fs.mkdirp (await directory4(skipResources ? 'base' : tenant, skipResources)) DEBUG?.('preparing HANA deployment artifacts') let container = await _container // csn4 accesses tenant tables, container has to exist // Note: currently the hana files are created twice, first from getResources, // then from local compile -2 hana. This has to be adapted depending on if // the project is extended or not. Ideally the base hana files would have to // be filtered already when getting the resources. // Can already start getting the csn if later required const requiresCsn = main.requires.extensibility && !csnFromParameter && !skipExt const _csn = requiresCsn ? csn4(tenant) : csnFromParameter // 1. Unpack what comes from getResources() if (!csnFromParameter && !skipResources) { const result = await resources4(out) if (result === false) { LOG.info('No deployment resources found - skipping deployment') return } } // 2. Get csvs from extensions const updateCsvs = !csnFromParameter && !skipExt && !!await csvs4(tenant, out) if (_csn) { // 3. Run cds compile -2 hana with potentially extended model from getCsn() const csn = await _csn if (csn) try { await build(out, csn, updateCsvs, tenant) DEBUG?.('finished HANA build') } catch (e) { if (e.code !== 'ERR_CDS_COMPILATION_FAILURE') throw e req.reject(422, e.message) } } if (csnFromParameter) { await fs.write ({ file_suffixes: { csv: { plugin_name: 'com.sap.hana.di.tabledata.source' }, hdbconstraint: { plugin_name: 'com.sap.hana.di.constraint' }, hdbindex: { plugin_name: 'com.sap.hana.di.index' }, hdbtable: { plugin_name: 'com.sap.hana.di.table' }, hdbtabledata: { plugin_name: 'com.sap.hana.di.tabledata' }, hdbview: { plugin_name: 'com.sap.hana.di.view' }, hdbcalculationview: { plugin_name: 'com.sap.hana.di.calculationview' }, hdbeshconfig: { plugin_name: 'com.sap.hana.di.eshconfig' } }}) .to (out,'src','gen','.hdiconfig') } LOG.info('deploying HANA artifacts in', { path: out }) try { // 3. hdi-deploy final build content const { 'cds.xt.DeploymentService': ds } = cds.services if (cacheBindings) { // health-check credentials for DB connection, get uncached if stale const driver = require('@sap/cds/libx/_runtime/hana/driver') const client = require(driver.name).createClient(container.credentials) const connect = promisify(client.connect.bind(client)) const disconnect = promisify(client.disconnect.bind(client)) const checkAndRefreshCredentials = async(container, tenant) => { try { await connect() await disconnect() return container } catch (e) { if (/authentication failed/i.test(e.message) || /SSL certificate validation failed/i.test(e.message)) { const hana = require('./hana/srv-mgr') return hana.get(tenant, { disableCache: true }) } else { LOG.error('refreshing credentials failed with', e) throw e } } } container = await retry(() => checkAndRefreshCredentials(container, tenant)) } return await ds.deploy({ tenant, options: { container, out, _: params } }) } finally { if (!out.endsWith('gen' + path.sep + 'base')) await fs.rimraf (out) // REVISIT: keep that for caching later on } } function _compileToHana(csn, tenant) { const options = { messages: [], sql_mapping: cds.env.sql.names } if (tenant === t0) Object.assign(options, { assertIntegrity: false }) if (tenant !== t0) Object.assign(options, main.env.cdsc) let definitions = [] if (cds.compile.to.hana) { const files = cds.compile.to.hana(csn, options); for (const [content, { file }] of files) { if (path.extname(file) !== '.json') { const { name, ext: suffix } = path.parse(file) definitions.push({ name, suffix, sql: content }) } } } else { // compatibility with cds 7 const r = cds.compiler.to.hdi.migration(csn, options) definitions = r.definitions } if (options.messages.length > 0) { // REVISIT: how to deal with compiler info and warning messages DEBUG?.('cds compilation messages:', options.messages) } return definitions }