1 package Koha::REST::Plugin::Query;
3 # This file is part of Koha.
5 # Koha is free software; you can redistribute it and/or modify it
6 # under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 3 of the License, or
8 # (at your option) any later version.
10 # Koha is distributed in the hope that it will be useful, but
11 # WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with Koha; if not, see <http://www.gnu.org/licenses>.
20 use Mojo::Base 'Mojolicious::Plugin';
21 use List::MoreUtils qw(any);
22 use Scalar::Util qw(reftype);
23 use JSON qw(decode_json);
29 Koha::REST::Plugin::Query
33 =head2 Mojolicious::Plugin methods
40 my ( $self, $app ) = @_;
44 =head3 extract_reserved_params
46 my ( $filtered_params, $reserved_params ) = $c->extract_reserved_params($params);
48 Generates the DBIC query from the query parameters.
53 'extract_reserved_params' => sub {
54 my ( $c, $params ) = @_;
60 my $reserved_words = _reserved_words();
61 my @query_param_names = keys %{$c->req->params->to_hash};
63 foreach my $param ( keys %{$params} ) {
64 if ( grep { $param eq $_ } @{$reserved_words} ) {
65 $reserved_params->{$param} = $params->{$param};
67 elsif ( grep { $param eq $_ } @query_param_names ) {
68 $filtered_params->{$param} = $params->{$param};
71 $path_params->{$param} = $params->{$param};
75 return ( $filtered_params, $reserved_params, $path_params );
79 =head3 dbic_merge_sorting
81 $attributes = $c->dbic_merge_sorting({ attributes => $attributes, params => $params });
83 Generates the DBIC order_by attributes based on I<$params>, and merges into I<$attributes>.
88 'dbic_merge_sorting' => sub {
89 my ( $c, $args ) = @_;
90 my $attributes = $args->{attributes};
91 my $result_set = $args->{result_set};
93 my @order_by_styles = (
99 foreach my $order_by_style ( @order_by_styles ) {
100 if ( defined $args->{params}->{$order_by_style} and ref($args->{params}->{$order_by_style}) eq 'ARRAY' ) {
101 push( @order_by_params, @{$args->{params}->{$order_by_style} });
104 push @order_by_params, $args->{params}->{$order_by_style}
105 if defined $args->{params}->{$order_by_style};
111 foreach my $order_by_param ( @order_by_params ) {
113 $order_by = [ split(/,/, $order_by_param) ]
114 if ( !reftype($order_by_param) && index(',',$order_by_param) == -1);
117 if ( reftype($order_by) and reftype($order_by) eq 'ARRAY' ) {
118 my @order_by = map { _build_order_atom({ string => $_, result_set => $result_set }) } @{ $order_by };
119 push( @THE_order_by, @order_by);
122 push @THE_order_by, _build_order_atom({ string => $order_by, result_set => $result_set });
127 $attributes->{order_by} = \@THE_order_by
128 if scalar @THE_order_by > 0;
134 =head3 dbic_merge_prefetch
136 $attributes = $c->dbic_merge_prefetch({ attributes => $attributes, result_set => $result_set });
138 Generates the DBIC prefetch attribute based on embedded relations, and merges into I<$attributes>.
143 'dbic_merge_prefetch' => sub {
144 my ( $c, $args ) = @_;
145 my $attributes = $args->{attributes};
146 my $result_set = $args->{result_set};
147 my $embed = $c->stash('koha.embed');
149 return unless defined $embed;
152 foreach my $key (sort keys(%{$embed})) {
153 my $parsed = _parse_prefetch($key, $embed, $result_set);
154 push @prefetches, $parsed if defined $parsed;
157 if(scalar(@prefetches)) {
158 $attributes->{prefetch} = \@prefetches;
163 =head3 _build_query_params_from_api
165 my $params = _build_query_params_from_api( $filtered_params, $reserved_params );
167 Builds the params for searching on DBIC based on the selected matching algorithm.
168 Valid options are I<contains>, I<starts_with>, I<ends_with> and I<exact>. Default is
169 I<contains>. If other value is passed, a Koha::Exceptions::WrongParameter exception
175 'build_query_params' => sub {
177 my ( $c, $filtered_params, $reserved_params ) = @_;
180 my $match = $reserved_params->{_match} // 'contains';
182 foreach my $param ( keys %{$filtered_params} ) {
183 if ( $match eq 'contains' ) {
185 { like => '%' . $filtered_params->{$param} . '%' };
187 elsif ( $match eq 'starts_with' ) {
188 $params->{$param} = { like => $filtered_params->{$param} . '%' };
190 elsif ( $match eq 'ends_with' ) {
191 $params->{$param} = { like => '%' . $filtered_params->{$param} };
193 elsif ( $match eq 'exact' ) {
194 $params->{$param} = $filtered_params->{$param};
197 # We should never reach here, because the OpenAPI plugin should
198 # prevent invalid params to be passed
199 Koha::Exceptions::WrongParameter->throw(
200 "Invalid value for _match param ($match)");
208 =head3 merge_q_params
210 $c->merge_q_params( $filtered_params, $q_params, $result_set );
212 Merges parameters from $q_params into $filtered_params.
217 'merge_q_params' => sub {
219 my ( $c, $filtered_params, $q_params, $result_set ) = @_;
221 $q_params = decode_json($q_params) unless reftype $q_params;
223 my $params = _parse_dbic_query($q_params, $result_set);
225 return $params unless scalar(keys %{$filtered_params});
226 return {'-and' => [$params, $filtered_params ]};
232 $c->stash_embed( $c->match->endpoint->pattern->defaults->{'openapi.op_spec'} );
237 'stash_embed' => sub {
239 my ( $c, $args ) = @_;
241 my $spec = $args->{spec} // {};
243 my $embed_spec = $spec->{'x-koha-embed'};
244 my $embed_header = $c->req->headers->header('x-koha-embed');
246 Koha::Exceptions::BadParameter->throw("Embedding objects is not allowed on this endpoint.")
247 if $embed_header and !defined $embed_spec;
249 if ( $embed_header ) {
251 foreach my $embed_req ( split /\s*,\s*/, $embed_header ) {
252 my $matches = grep {lc $_ eq lc $embed_req} @{ $embed_spec };
254 Koha::Exceptions::BadParameter->throw(
255 error => 'Embeding '.$embed_req. ' is not authorised. Check your x-koha-embed headers or remove it.'
258 _merge_embed( _parse_embed($embed_req), $THE_embed);
261 $c->stash( 'koha.embed' => $THE_embed )
269 =head3 stash_overrides
271 $c->stash_overrides();
276 'stash_overrides' => sub {
280 my $override_header = $c->req->headers->header('x-koha-override') || q{};
282 my $overrides = { map { $_ => 1 } split /\s*,\s*/, $override_header };
284 $c->stash( 'koha.overrides' => $overrides );
291 =head2 Internal methods
293 =head3 _reserved_words
295 my $reserved_words = _reserved_words();
299 sub _reserved_words {
301 my @reserved_words = qw( _match _order_by _order_by[] _page _per_page q query x-koha-query);
302 return \@reserved_words;
305 =head3 _build_order_atom
307 my $order_atom = _build_order_atom( $string );
309 Parses I<$string> and outputs data valid for using in SQL::Abstract order_by attribute
310 according to the following rules:
313 +string -> I<{ -asc => string }>
314 -string -> I<{ -desc => string }>
318 sub _build_order_atom {
320 my $string = $args->{string};
321 my $result_set = $args->{result_set};
324 $param =~ s/^(\+|\-|\s)//;
326 my $model_param = _from_api_param($param, $result_set);
327 $param = $model_param if defined $model_param;
330 if ( $string =~ m/^\+/ or
331 $string =~ m/^\s/ ) {
332 # asc order operator present
333 return { -asc => $param };
335 elsif ( $string =~ m/^\-/ ) {
336 # desc order operator present
337 return { -desc => $param };
340 # no order operator present
347 my $embed = _parse_embed( $string );
349 Parses I<$string> and outputs data valid for passing to the Kohaa::Object(s)->to_api
358 my ( $curr, $next ) = split /\s*\.\s*/, $string, 2;
361 $result->{$curr} = { children => _parse_embed( $next ) };
364 if ( $curr =~ m/^(?<relation>.*)\+count/ ) {
365 my $key = $+{relation} . "_count";
366 $result->{$key} = { is_count => 1 };
369 $result->{$curr} = {};
378 _merge_embed( $parsed_embed, $global_embed );
380 Merges the hash referenced by I<$parsed_embed> into I<$global_embed>.
385 my ( $structure, $embed ) = @_;
387 my ($root) = keys %{ $structure };
389 if ( any { $root eq $_ } keys %{ $embed } ) {
391 _merge_embed( $structure->{$root}, $embed->{$root} );
395 $embed->{$root} = $structure->{$root};
399 sub _parse_prefetch {
400 my ( $key, $embed, $result_set) = @_;
403 $pref_key =~ s/_count$// if $embed->{$key}->{is_count};
404 return unless exists $result_set->prefetch_whitelist->{$pref_key};
406 my $ko_class = $result_set->prefetch_whitelist->{$pref_key};
407 return $pref_key unless defined $embed->{$key}->{children} && defined $ko_class;
410 foreach my $child (sort keys(%{$embed->{$key}->{children}})) {
411 my $parsed = _parse_prefetch($child, $embed->{$key}->{children}, $ko_class->new);
412 push @prefetches, $parsed if defined $parsed;
415 return $pref_key unless scalar(@prefetches);
417 return {$pref_key => $prefetches[0]} if scalar(@prefetches) eq 1;
419 return {$pref_key => \@prefetches};
422 sub _from_api_param {
423 my ($key, $result_set) = @_;
427 my ($curr, $next) = split /\s*\.\s*/, $key, 2;
429 return $curr.'.'._from_api_param($next, $result_set) if $curr eq 'me';
431 my $ko_class = $result_set->prefetch_whitelist->{$curr};
433 Koha::Exceptions::BadParameter->throw("Cannot find Koha::Object class for $curr")
434 unless defined $ko_class;
436 $result_set = $ko_class->new;
439 return _from_api_param($next, $result_set);
441 return $curr.'.'.($result_set->from_api_mapping && defined $result_set->from_api_mapping->{$next} ? $result_set->from_api_mapping->{$next}:$next);
444 return defined $result_set->from_api_mapping->{$key} ? $result_set->from_api_mapping->{$key} : $key;
448 sub _parse_dbic_query {
449 my ($q_params, $result_set) = @_;
451 if(reftype($q_params) && reftype($q_params) eq 'HASH') {
453 foreach my $key (keys %{$q_params}) {
454 if($key =~ /-?(not_?)?bool/i ) {
455 $parsed_hash->{$key} = _from_api_param($q_params->{$key}, $result_set);
458 my $k = _from_api_param($key, $result_set);
459 $parsed_hash->{$k} = _parse_dbic_query($q_params->{$key}, $result_set);
462 } elsif (reftype($q_params) && reftype($q_params) eq 'ARRAY') {
463 my @mapped = map{ _parse_dbic_query($_, $result_set) } @$q_params;