REST API to find models using a filter

[bajtos]

This pull request leverages the recently added @param.query.object() decorator (see #1667) to add support for querying a subset of models using a Filter object.

For example:

GET /todos?filter[where][isCompleted]=false

The OpenAPI spec contains a reasonably-minimal description of the Filter object.

Done

• infrastructure to describe filter and where parameters
• updated todo example
• update todo-list example
• update CRUD Controller template in CLI
• doc updates

See also #100

Checklist

• npm test passes on your machine
• New tests added or existing tests modified to cover all changes
• Code conforms with the style guide
• API Documentation in code was updated
• Documentation in /docs/site was updated
• Affected artifact templates in packages/cli were updated
• Affected example projects in examples/* were updated

[bajtos]

Regarding API Explorer/swagger-ui - I am not able to send a request with a filter value, it looks like the UI is somehow not passing the filter through. I'll have to investigate. According to swagger-api/swagger-ui#4216, style: deepObject should be working.

[b-admike]

Can we define models at the bottom of the test file?

[b-admike]

I'm curious; why are we doing ajv.errors || [] here?

[bajtos]

When ajv.validate returns true, ajv.errors is set to null. As a result, shouldjs produced error message that seemed to me as more difficult to understand.

I am open to suggestions on how to improve this assertion and/or make the code easier to understand!

[raymondfeng]

Regarding API Explorer/swagger-ui - I am not able to send a request with a filter value

What about stringified json? For qs style such as filter[where][isCompleted]=false, I don't know if possible to type into the filter text in the form.

[bajtos]

Regarding API Explorer/swagger-ui - I am not able to send a request with a filter value

I did some more investigation. It seems that we need to upgrade our api-explorer with the latest swagger-ui version to bring in deepObject fix from swagger-api/swagger-js#1235. I opened a pull request for that - see loopbackio/loopback.io#736

We should also set explode: true in a deep-object parameter definition, I'll fix that as part of this pull request.

With those changes in place, I am able to send a request like ?filter[where]=true by entering {"where": true} to the input box:

Unfortunately, when I provide a value with nested properties, e.g. {"where":{"id: 1}}, swagger-ui ignores such parameter value :(

Based on the following discussions, I think it may be up to us to contribute serialization of deeply nested objects:

swagger-api/swagger-js#1140

Limitations:
deepObject does not handle nested objects. The specification and swagger.io documentation does not provide an example for serializing deep objects. Flat objects will be serialized into the deepObject style just fine.

swagger-api/swagger-js#1140 (comment)

As for deepObject and nested objects - that was explicitly left out of the spec, and it's ok to just Not Support It™.

Related issues: swagger-api/swagger-ui#4216 and swagger-api/swagger-ui#4064

What about stringified json? For qs style such as filter[where][isCompleted]=false, I don't know if possible to type into the filter text in the form.

Unfortunately not. Because the OAS says filter is an object, the user has to enter valid JSON.

When I tried to enter a string containing the JSON, e.g. "{\"where\":{\"id\":1}}, it triggered a validation error in swagger-ui's user interface.

[bajtos]

I left a comment in a swagger-ui issue to discuss this problem further, see swagger-api/swagger-ui#4064 (comment)

@raymondfeng @strongloop/sq-lb-apex what's your opinion on the next steps in this pull request? Should I continue adding filter parameter described as {type: 'object', style: 'deepObject', explode: true}, despite the fact that swagger-ui does not support such filter values at the moment? Should we put this pull request on hold until swagger-ui supports our parameter style?

Here is my concern with landing these changes: users trying out LoopBack 4 and the API Explorer will quickly discover that they cannot send filter values. Because swagger-ui does not provide any hints on what's wrong, I expect a lot of confusion among our users, which may cast bad light on our new major version.

Thoughts?

UPDATE 2018-09-13 I opened a new issue in swagger-js with the hope that it will get more attention. See swagger-api/swagger-js#1385

[virkt25]

It will definitely be an annoyance of not being able to test a filter from the explorer because it doesn't support deepObject serialization. I think the next steps should be to put this PR on hold ... possibly contribute a patch to swagger-ui and then continue work on this PR. Without support for this in swagger-ui this change to our code doesn't necessarily help users looking to test changes via the explorer.

[jannyHou]

LGTM! 🚢
Wait I open the PR a few days ago and didn't see the new discussion regarding swagger-ui.
The code change in this PR LGTM but if it causes the explorer ignoring the filter then let's fix the swagger-ui first.

[jannyHou]

Not involved in this PR:
I think we can use a $ref here and append the related model's filter schema in spec.components.schemas when work on describing the filter for the related model.

[jannyHou]

nitpick: not a necessary part of this PR, we can update this test to call deserializedFromJson as well :)

[jannyHou]

LGTM! 🚢
Wait I open the PR a few days ago and didn't see the new discussion regarding swagger-ui.
The code change in this PR LGTM but if it causes the explorer ignoring the filter then let's fix the swagger-ui first.

[raymondfeng]

Maybe we should start with what LB3 allows - when the openapi spec is generated, we mark filter as a string with x-format or x-style as json.

[virkt25]

Excellent PR! Thinking more about my previous comment, I think it's probably better to not wait for swagger-ui to be fixed and this PR should be landed as most users creating apps will not be consuming the APIs using the explorer (its great for testing) but not real life usage. For real life usage I think it's best to land the ability to filter a Model ASAP. :)

[virkt25]

When do we expect a modelCtor to be an EmptyModel. Not sure I follow this logic.

[bajtos]

When a model has relations configured, the filter can provide include property to describe which related models to include in the result. Think about object-tree traversal in GraphQL.

So for example, when a Customer has many Order instances, and Order instance belongs to a Customer, it's possible to craft the following Customer query:

{
  where: {
    email: 'mbajtoss@gmail.com'
  },
  include: [{
    relation: 'orders',
    scope: {
      // a full Filter for Order model
      where: {totalPrice: {gte: 100}},
      // we can do recursion too!
      include: [{
        relation: 'customer',
      }],
  },
}

Ideally, we would like to describe include[].filter property as a Filter schema tailored to the properties and relations available at the target model of the relation. I decided to leave that out of the initial implementation and describe filter as a Filter object for a model with no pre-defined properties but allowing any extra properties:

const scopeFilter = getFilterJsonSchemaFor(EmptyObject);

However, this creates a recursion - in order to build schema for scopeFilter, I need to describe include[].filter property as scopeFilter too.

The check modelCtor !== EmptyModel is just a quick way how to detect this situation, avoid infinite recursion and also leave out the property include from the nested include[].filter object (for better or worse).

My takeaway is that I should fix this condition to check the actual relations defined on the model, and do that before this pull request is landed.

[bajtos]

The patch is ready for final review and landing.

@raymondfeng @virkt25 @jannyHou @b-admike PTAL

[bajtos]

This is from #1733, git should remove it after #1733 lands and this patch is rebased on top of the new master.

[bajtos]

Ditto: This is from #1733, git should remove it after #1733 lands and this patch is rebased on top of the new master.

[virkt25]

Looks great! Excited to see functional filter support. Left some comments but overall looks good.

[virkt25]

Not a big deal but I personally prefer not using a generic name like data since it would repeat multiple times and as such would much rather have it be the model name ... todo: Todo.

[bajtos]

Makes sense, will go with todo: Todo.

Before my change, we were using the controller name as the argument name, e.g. TodoController: Todo.

[virkt25]

WIll this be a part of this PR?

[bajtos]

I prefer to leave it out, I feel I am already beyond the scope described in #100.

Here is the follow-up issue I created, I'll mention it in the code comment too:
#1748

[virkt25]

Shouldn't this be changed to @param.query.object('where')?

[bajtos]

Good point!

[virkt25]

obj => data as per the new CLI template.

[virkt25]

This should be @param.query.object

[virkt25]

Will this be a part of this PR?

[bajtos]

No, see #1748

[jannyHou]

shouldn't where an object instead of string?

[bajtos]

shouldn't where an object instead of string?

Good point, will fix.

[jannyHou]

@bajtos Great effort!
I left a few nitpick for updating the doc.
And one design question regarding the relation metadata (don't think it's this in PR's scope to address it, we can discuss in a new issue if you also think my concern is valid, thanks!)

[jannyHou]

same here @param.query.object('where')

[jannyHou]

@param.query.object('where')

[jannyHou]

wouldn't it be customerId?
Otherwise when we have multiple models extend User, they will share the same fk which is userId...

[bajtos]

No, it's userId because Customer inherited the relation the User class.

In LB 3.x, we call this a "polymorphic relation" and add another property to accessToken to distinguish between different targets that can have the same userId. For example, accessToken can have two properties: userId for the id (PK/FK) value, userModel for a name of the target model class (User, Customer, etc.)

The purpose of the test is just to verify that the new function returns all relations - defined on the model and inherited from parents.

[jannyHou]

we call this a "polymorphic relation"

oh ok I got it 👍 it's polymorphic.

[bajtos]

@jannyHou @virkt25 thank you for a thorough review, you spotted important places to fix!

In order to support where parameters, I added a new helper getWhereSchemaFor.

Then I used this new helper in all controller-related code and docs, plus addressed your other comments too.

Could you please take another look and let me know if the changes LGTY now?

[bajtos]

I have also created two follow-up stories (post 4.0 GA):

• Enumerate model properties in Filter/Where schema Enumerate model properties in Filter/Where schema #1748
• Sugar decorators for Filter and Where parameters Sugar decorators for Filter and Where parameters #1749

[virkt25]

Since we include getWhereSchemaFor in this file, would it rename this file to get-partial-schema? or something along those lines?

[bajtos]

This file contains functions to build schema of Filter and Where objects. I feel get-partial-schema is misleading, because both Filter and Where are much more than just an object allowing a subset of model properties. For example, Where can contain conditions like and and custom operators like neq, gte, etc.

As I see it, both Filter and Where are related to querying/filtering model instances. Where describes condition(s) to apply, Filter provides additional query instructions like pagination and which fields & relations to fetch.

That's why I think filter-schema is a good file name.

[virkt25]

ditto: Should we consider renaming the file?

[virkt25]

LGTM. A non-blocker comment on file names.

[hadasiddhant]

It would be of great help if anyone here can answer this question for me. Thanks a lot
https://stackoverflow.com/questions/55996451/how-do-i-query-a-particular-field-in-loopback-4-through-the-repository