Oracle DB client (#46)

* centralized pool of pools

* exports pools

* make it driver agnostic, use callback to setup pool into pools

* use controller to abort all

* Apply suggestions from code review

Co-authored-by: Fabian Iwand <[email protected]>

* no need to monkey patch close

* keyOf + key in closure

* mssql signal to handle closing and deleting

* Update lib/mssql.js

Co-authored-by: Fabian Iwand <[email protected]>

* install oracledb

* basic oracle routing

* WIP

* WIP

* oracle check method

* add queryStream sql query

* basic streaming test

* sql query stream pipe

* tweaked integer mapping

* cleaned up unused var

* singleton initialized + bind params syntax friendly

* adjustments to pool

* oracle db dep

* oracledb to peer dep

* update yarn lock

* oracle pools setup

* clean up logs

* remove pool of pools for mssql

* imports

* await for the connection

* remove pools from exports

* bump node version for Dockerfile

* no pool to test

* no pools of pool

* adjust oracle to only import if used

* add a start command

* cleanup + comment

* comments

* fixed oraclesingletong invokation

* typo

* fix BLOB schema mapping

* use same payload validation

* refacotred the OracleSingleton initialize step to not be async

Co-authored-by: Fabian Iwand <[email protected]>

Author: Sylvestre

lib/config.js

@@ -21,11 +21,18 @@ export function readDecodedConfig(name) {
   if (name) {
     const raw = config && config[name];
     if (!raw) exit(`No configuration found for "${name}"`);
-    return {...decodeSecret(raw.secret), url: raw.url};
+    return {
+      ...decodeSecret(raw.secret),
+      url: raw.url,
+      username: raw.username || "", // oracle client requires username
+      password: raw.password || "", // oracle client requires password
+    };
   } else {
     return Object.values(config).map((c) => ({
       ...decodeSecret(c.secret),
       url: c.url,
+      username: c.username || "", // oracle client requires username
+      password: c.password || "", // oracle client requires password
     }));
   }
 }

lib/mssql.js

@@ -1,32 +1,21 @@
-import Ajv from "ajv";
 import JSONStream from "JSONStream";
 import {json} from "micro";
 import mssql from "mssql";
 import {Transform} from "stream";
 
 import {failedCheck, badRequest, notImplemented} from "./errors.js";
+import {validateQueryPayload} from "./validate.js";
 
 const TYPES = mssql.TYPES;
 const READ_ONLY = new Set(["SELECT", "USAGE", "CONNECT"]);
 
-const ajv = new Ajv();
-const validate = ajv.compile({
-  type: "object",
-  additionalProperties: false,
-  required: ["sql"],
-  properties: {
-    sql: {type: "string", minLength: 1},
-    params: {type: "array"},
-  },
-});
-
 export async function queryStream(req, res, pool) {
   const connection = await pool;
   const db = await connection.connect();
 
   const body = await json(req);
 
-  if (!validate(body)) throw badRequest();
+  if (!validateQueryPayload(body)) throw badRequest();
 
   res.setHeader("Content-Type", "text/plain");
   const keepAlive = setInterval(() => res.write("\n"), 25e3);

lib/oracle.js

@@ -0,0 +1,221 @@
+import {json} from "micro";
+import JSONStream from "JSONStream";
+import {Transform} from "stream";
+
+import {badRequest, failedCheck} from "./errors.js";
+import {validateQueryPayload} from "./validate.js";
+
+const READ_ONLY = new Set(["SELECT", "USAGE", "CONNECT"]);
+
+export class OracleSingleton {
+  static instance = null;
+  constructor() {
+    throw new Error(
+      "Do not use new OracleSingleton(). Call OracleSingleton.initialize() instead."
+    );
+  }
+  static initialize() {
+    if (!OracleSingleton.instance) {
+      try {
+        OracleSingleton.instance = import("oracledb").then((module) => {
+          const oracledb = module.default;
+          oracledb.initOracleClient({
+            libDir: process.env.LIB_DIR_PATH,
+          });
+          return oracledb;
+        });
+      } catch (err) {
+        console.error(err);
+      }
+    }
+  }
+  static getInstance() {
+    if (!OracleSingleton.instance)
+      throw new Error(
+        "OracleSingleton not initialized. Call OracleSingleton.initialize() first."
+      );
+    return OracleSingleton.instance;
+  }
+}
+
+export async function queryStream(req, res, pool) {
+  const db = await pool;
+  const connection = await db.getConnection();
+  const body = await json(req);
+
+  if (!validateQueryPayload(body)) throw badRequest();
+
+  res.setHeader("Content-Type", "text/plain");
+  const keepAlive = setInterval(() => res.write("\n"), 25e3);
+
+  let {sql, params = []} = body;
+
+  try {
+    await new Promise((resolve, reject) => {
+      const columnNameMap = new Map();
+      const stream = connection.queryStream(sql, params, {
+        extendedMetaData: true,
+      });
+
+      stream
+        .on("error", function (e) {
+          this.destroy();
+          reject(e);
+        })
+        .on("metadata", (columns) => {
+          clearInterval(keepAlive);
+
+          const schema = {
+            type: "array",
+            items: {
+              type: "object",
+              properties: columns.reduce((schema, {dbType, name}, idx) => {
+                columnNameMap.set(idx, name);
+                return {
+                  ...schema,
+                  ...{[name]: dataTypeSchema({type: dbType})},
+                };
+              }, {}),
+            },
+          };
+          res.write(`${JSON.stringify(schema)}`);
+          res.write("\n");
+        })
+        .on("end", function () {
+          this.destroy();
+        })
+        .on("close", resolve)
+        .pipe(
+          new Transform({
+            objectMode: true,
+            transform(chunk, encoding, cb) {
+              let row = null;
+              try {
+                row = chunk.reduce((acc, r, idx) => {
+                  const key = columnNameMap.get(idx);
+                  return {...acc, [key]: r};
+                }, {});
+              } catch (e) {
+                console.error("row has unexpected format");
+                // TODO: Add error handling once server supports handling error for in flight streamed response
+                // cb(new Error(e));
+              }
+              cb(null, row);
+            },
+          })
+        )
+        .pipe(JSONStream.stringify("", "\n", "\n"))
+        .pipe(res);
+    });
+  } catch (error) {
+    if (!error.statusCode) error.statusCode = 400;
+    throw error;
+  } finally {
+    clearInterval(keepAlive);
+    if (connection) {
+      try {
+        await connection.close();
+      } catch (err) {
+        console.error(err);
+      }
+    }
+  }
+
+  res.end();
+}
+
+/*
+ * This function is checking for the permission of the given credentials. It alerts the user setting
+ * them up that these may be too permissive.
+ * */
+export async function check(req, res, pool) {
+  let connection;
+  try {
+    const db = await pool;
+    connection = await db.getConnection();
+
+    // see: https://docs.oracle.com/en/database/oracle/oracle-database/12.2/refrn/SESSION_PRIVS.html
+    const {rows} = await connection.execute(`SELECT * FROM session_privs`);
+
+    const permissive = rows
+      .map(([permission]) => permission)
+      .filter((g) => !READ_ONLY.has(g));
+
+    if (permissive.length)
+      throw failedCheck(
+        `User has too permissive grants: ${permissive.join(", ")}`
+      );
+
+    return {ok: true};
+  } catch (e) {
+    throw e;
+  } finally {
+    if (connection) {
+      try {
+        await connection.close();
+      } catch (err) {
+        console.error(err.message);
+      }
+    }
+  }
+}
+
+export default async ({url, username, password}) => {
+  OracleSingleton.initialize();
+  // We do not want to import the oracledb library until we are sure that the user is looking to use Oracle.
+  // Installing the oracledb library is a pain, so we want to avoid it if possible.
+  const config = {
+    username: username,
+    password: password,
+    connectionString: decodeURI(url),
+  };
+
+  const oracledb = await OracleSingleton.getInstance();
+  const pool = oracledb.createPool(config);
+
+  return async (req, res) => {
+    return queryStream(req, res, pool);
+  };
+};
+
+// See https://oracle.github.io/node-oracledb/doc/api.html#-312-oracle-database-type-constants
+const boolean = ["null", "boolean"],
+  number = ["null", "number"],
+  object = ["null", "object"],
+  string = ["null", "string"];
+export function dataTypeSchema({type}) {
+  const oracledb = OracleSingleton.getInstance();
+
+  switch (type) {
+    case oracledb.DB_TYPE_BOOLEAN:
+      return {type: boolean};
+    case oracledb.DB_TYPE_NUMBER:
+    case oracledb.DB_TYPE_BINARY_DOUBLE:
+    case oracledb.DB_TYPE_BINARY_FLOAT:
+    case oracledb.DB_TYPE_BINARY_INTEGER:
+      return {type: number};
+    case oracledb.DB_TYPE_TIMESTAMP:
+    case oracledb.DB_TYPE_DATE:
+    case oracledb.DB_TYPE_TIMESTAMP_TZ:
+    case oracledb.DB_TYPE_TIMESTAMP_LTZ:
+    case oracledb.DB_TYPE_INTERVAL_DS:
+    case oracledb.DB_TYPE_INTERVAL_YM:
+      return {type: string, date: true};
+    case oracledb.DB_TYPE_BLOB:
+      return {type: object, buffer: true};
+    case oracledb.DB_TYPE_CHAR:
+    case oracledb.DB_TYPE_BFILE:
+    case oracledb.DB_TYPE_CLOB:
+    case oracledb.DB_TYPE_NCLOB:
+    case oracledb.DB_TYPE_CURSOR:
+    case oracledb.DB_TYPE_LONG_RAW:
+    case oracledb.DB_TYPE_NCHAR:
+    case oracledb.DB_TYPE_NVARCHAR:
+    case oracledb.DB_TYPE_OBJECT:
+    case oracledb.DB_TYPE_RAW:
+    case oracledb.DB_TYPE_ROWID:
+    case oracledb.DB_TYPE_VARCHAR:
+    default:
+      return {type: string};
+  }
+}

lib/server.js

@@ -12,8 +12,9 @@ import mysql from "./mysql.js";
 import postgres from "./postgres.js";
 import snowflake from "./snowflake.js";
 import mssql from "./mssql.js";
+import oracle from "./oracle.js";
 
-export function server(config, argv) {
+export async function server(config, argv) {
   const development = process.env.NODE_ENV === "development";
   const developmentOrigin = "https://worker.test:5000";
 
@@ -24,6 +25,8 @@ export function server(config, argv) {
     ssl = "disabled",
     host = "127.0.0.1",
     port = 2899,
+    username,
+    password,
   } = config;
 
   const handler =
@@ -35,6 +38,8 @@ export function server(config, argv) {
       ? snowflake(url)
       : type === "mssql"
       ? mssql(url)
+      : type === "oracle"
+      ? await oracle({url, username, password})
       : null;
   if (!handler) {
     return exit(`Unknown database type: ${type}`);

lib/validate.js

@@ -0,0 +1,13 @@
+import Ajv from "ajv";
+
+const ajv = new Ajv();
+
+export const validateQueryPayload = ajv.compile({
+  type: "object",
+  additionalProperties: false,
+  required: ["sql"],
+  properties: {
+    sql: {type: "string", minLength: 1, maxLength: 32 * 1000},
+    params: {type: ["object", "array"]},
+  },
+});

package.json

@@ -10,7 +10,8 @@
     "./postgres.js": "./lib/postgres.js",
     "./mysql.js": "./lib/mysql.js",
     "./snowflake.js": "./lib/snowflake.js",
-    "./mssql.js": "./lib/mssql.js"
+    "./mssql.js": "./lib/mssql.js",
+    "./oracle.js": "./lib/oracle.js"
   },
   "bin": {
     "observable-database-proxy": "./bin/observable-database-proxy.js"
@@ -39,7 +40,11 @@
     "nodemon": "^1.19.1",
     "wait-on": "^6.0.1"
   },
+  "peerDependencies": {
+    "oracledb": "https://github.com/oracle/node-oracledb/releases/download/v5.5.0/oracledb-src-5.5.0.tgz"
+  },
   "scripts": {
+    "start": "nodemon bin/observable-database-proxy.js",
     "dev": "NODE_ENV=development nodemon bin/observable-database-proxy.js",
     "test": "mocha",
     "test:local": "docker-compose -f docker-compose.yml -f docker-compose.local.yml up --build",