Fix __typename inside router response #6009
Conversation
This comment has been minimized.
This comment has been minimized.
| if include_skip.should_skip(parameters.variables) { | ||
| continue; | ||
| } | ||
|
|
||
| self.apply_selection_set( |
There was a problem hiding this comment.
We are still inside root selection, even if we go inside an inline fragment.
So it should be apply_root_selection_set
There was a problem hiding this comment.
this sounds reasonable but looks like a dangerous change. Do you have a test that would show what happens before and after that change?
There was a problem hiding this comment.
yes it tested here:
router/apollo-router/tests/integration/subgraph_response.rs
Lines 34 to 82 in e871c93
| .unwrap_or_else(|| { | ||
| Value::String(ByteString::from( | ||
| current_type.inner_named_type().as_str().to_owned(), | ||
| )) |
There was a problem hiding this comment.
here, we tried to use __typename values returned by the subgraph but didn't validate them. I assume (not tested) it can even be the name of the interface if the subgraph uses @interfaceObject
According to the GraphQL spec, __typename should always use an object name (interfaces and unions are forbidden), so I changed the code to first use current_type (which is always valid) and then fallback to using the subgraph's value only if current_type is not an object type.
There was a problem hiding this comment.
this should be checked with what the output rewriting code in the QP is doing
There was a problem hiding this comment.
Not sure what to do here.
Realistically, I can't inspect QP in the scope of this PR.
I can revert this particular change, because it separated from other fixes.
@Geal Do you think it worth to revert it?
| @@ -311,6 +311,8 @@ impl PlanNode { | |||
| let _ = primary_sender.send((value.clone(), errors.clone())); | |||
| } else { | |||
| let _ = primary_sender.send((value.clone(), errors.clone())); | |||
| // primary response should be an empty object | |||
| value.deep_merge(Value::Object(Default::default())); | |||
There was a problem hiding this comment.
here is a test case from graphql-js:
https://github.com/graphql/graphql-js/blob/2b42a70191243d0ca0e0e4f1d580d6794718fbd5/src/execution/__tests__/defer-test.ts#L371-L384
There was a problem hiding this comment.
if the data field should ve an enpty object (unless it contained a non nullable field that was nullified), then I think this should be fixed here:
to set it to an object instead of
Value::Null by default
There was a problem hiding this comment.
You right, it should be correct.
I hesitated to do it since I'm less familiar with how QP executes and also I don't have capacity to test all possible scenarios in context of this PR.
So I choose to do it just inside this specific branch that I'm 100% sure is correct.
@Geal Do you think it safe to make this change for entire QP execution?
Or I can create issue for that I do it in separate PR?
There was a problem hiding this comment.
maybe in a separate PR, considering the timing
There was a problem hiding this comment.
I created a router issue for it.
| @@ -311,6 +311,8 @@ impl PlanNode { | |||
| let _ = primary_sender.send((value.clone(), errors.clone())); | |||
| } else { | |||
| let _ = primary_sender.send((value.clone(), errors.clone())); | |||
| // primary response should be an empty object | |||
| value.deep_merge(Value::Object(Default::default())); | |||
There was a problem hiding this comment.
if the data field should ve an enpty object (unless it contained a non nullable field that was nullified), then I think this should be fixed here:
to set it to an object instead of
Value::Null by default
| assert_eq!(response.status(), 200); | ||
| assert_eq!( | ||
| serde_json::from_str::<serde_json::Value>(&response.text().await?)?, | ||
| json!({ "data": null }) |
There was a problem hiding this comment.
why should { __typename topProducts { name } } return a null data if the subgraph returns null? topProducts is a nullable field, right?
Is it for the case where the subgraph would nullify because there was a non nullable field?
There was a problem hiding this comment.
You are right, it was mainly to test null propagation that goes up to data.
However, graphql servers can return data: null if execution is started by no resolvers executed:
https://spec.graphql.org/October2021/#sel-FAPHPHCAACEBr6C
For example, here is the test from graphql-js:
https://github.com/graphql/graphql-js/blob/993d7ce2ee6db2a13973b037817f3eac60607b8a/src/execution/__tests__/executor-test.ts#L971-L981
These cases are but could happen, so we should keep semantics.
There was a problem hiding this comment.
I guess the "right" way would be to detect from errors if we got a null because a non null field was nullified by the subgraph, but that may be too complex
There was a problem hiding this comment.
If we switch default value to execute_recursively to be an object as discussed earlier that would mean we would get empty object in most of the cases.
But we should inspect QP execution to see all possible scenarios.
| } | ||
|
|
||
| #[tokio::test(flavor = "multi_thread")] | ||
| async fn test_subgraph_returning_different_typename_on_query_root() -> Result<(), BoxError> { |
There was a problem hiding this comment.
are we sure in this test that the __typename selections got all the way to the subgraph? If that's the case, we are supposed to have some field rewriting driven by the query plan fetch nodes (input_rewrites and output_rewrites). Is that test exercising that rewriting, or what is happening in query formatting?
There was a problem hiding this comment.
Happening in query formatting, that's test that answer your comment here: #6009 (comment)
By switching to apply_root_selection_set we always execute this code (even if parts of root selection is wrapped in fragments):
router/apollo-router/src/spec/query.rs
Lines 783 to 786 in ddeed8d
So now we 100% sure __typename on root type is valid independently from anything that QP will return.
There was a problem hiding this comment.
that's good to make sure of that but probably we need a test that exercise the entire pipeline, not only the formatting
There was a problem hiding this comment.
yes, it's done in this test:
router/apollo-router/tests/integration/subgraph_response.rs
Lines 34 to 82 in e871c93
There was a problem hiding this comment.
it testing all possible scenario for how __typename can be nested and tests that __typename returned by subgraph are ignored.
| .unwrap_or_else(|| { | ||
| Value::String(ByteString::from( | ||
| current_type.inner_named_type().as_str().to_owned(), | ||
| )) |
There was a problem hiding this comment.
this should be checked with what the output rewriting code in the QP is doing
| if include_skip.should_skip(parameters.variables) { | ||
| continue; | ||
| } | ||
|
|
||
| self.apply_selection_set( |
There was a problem hiding this comment.
this sounds reasonable but looks like a dangerous change. Do you have a test that would show what happens before and after that change?
IvanGoncharov
requested review from
dariuszkuc,
sachindshinde,
goto-bus-stop,
SimonSapin,
lrlna,
TylerBloom and
duckki
as code owners
This PR fixes the following edge cases:
1. The initial response of the query containing
@defershould be an empty objectFor a query like this:
{ ... @defer { me { name } } }The initial response should have
dataset to an empty object, as in this graphql-js test case:https://github.com/graphql/graphql-js/blob/2b42a70191243d0ca0e0e4f1d580d6794718fbd5/src/execution/__tests__/defer-test.ts#L371-L384
2.
data: nullsemantic should be maintainedAccording to GraphQL spec, null can be propagated to
data: https://spec.graphql.org/draft/#sel-FANTNRCAACGBrwaBut the fix:
router/apollo-router/src/spec/query.rs
Lines 241 to 257 in b443ad0
Added in #2253, resulted
data: nullbeing replaced withdata: { __typename: "<some typename>" }, for queries like this:{ nonNullFieldThatErrors __typename }3. Handle cases where query with
@deferalso have__typenameinside fragmentFix added in #2253, here:
router/apollo-router/src/spec/query.rs
Lines 241 to 257 in b443ad0
And here:
router/apollo-router/src/spec/query.rs
Lines 149 to 160 in b443ad0
Only worked for cases where __typename is specified directly in the topmost selection set, but didn't work for __typenames wrapped in fragments, e.g.:
{ ... { __typename } ... defer { me { name } } }Because of
#1,#2and#3fix added in #2253 was removed and but fix for#4also fixes issues with @defer4. Remaping subgraph's root type names to supergraph names didn't work for __typename wrapped in fragments
Subgraphs could have their root types named differently than supergraphs.
Moreover, different subgraphs could have different names for root types.
QP removes __typename from the topmost selection set, so in combination with:
router/apollo-router/src/spec/query.rs
Lines 840 to 843 in b443ad0
This issue is fixed for queries like this:
But QP doesn't delete __typename wrapped in fragments like so (same true for named fragment):
That means
router/apollo-router/src/spec/query.rs
Lines 840 to 843 in b443ad0
Can't be reached because subgraph will return __typename value for root, and it will trigger this "if" instead:
router/apollo-router/src/spec/query.rs
Line 814 in b443ad0
That's why I changed the order of these if branches, so the subgraph's value of __typename for the root type is always ignored, and the supergraph's root type names are always used. Also, the exact same order of if branches are already used inside
apply_selection_set.However, this code is not reachable for __typenames wrapped in fragments because
apply_root_selection_setincorrectly callsapply_selection_setfor selection sets wrapped in fragments:router/apollo-router/src/spec/query.rs
Lines 873 to 882 in b443ad0
router/apollo-router/src/spec/query.rs
Lines 909 to 918 in b443ad0
If root fields are wrapped in fragments, they are still applied on root type, e.g.:
{ ... { a: __typename # applied on query root ... { b: __typename # still query root me { __typename # not a root } } } } }So, I switch those calls to be
apply_root_selection_set.All of the above steps in combination fixed
#45. Incorrect errors on inline fragments using root's interfaces
Root type can implement interfaces and it's legal to use those interfaces in queries, like so:
with query:
{ ... on Foo { foo } }But before my change, this query would error here:
router/apollo-router/src/spec/query.rs
Lines 865 to 867 in b443ad0
6. __typename with alias returned by subgraph is not validated
__typename is validated here:
router/apollo-router/src/spec/query.rs
Lines 547 to 561 in b443ad0
And is used to assign
current_typehere:router/apollo-router/src/spec/query.rs
Lines 574 to 586 in b443ad0
But aliased __typename handled here (same code for non-aliased, but they already validated by code above):
router/apollo-router/src/spec/query.rs
Lines 574 to 586 in b443ad0
This code guarantees that the aliased __typename contains the name of the object type from the supergraph schema.
But it doesn't guarantee that all __typenames (aliased and not) have the same value that is compatible with
current_type.As
#4proves, we can't trust the subgraph to return the correct names, and QP doesn't guarantee that either.So, since we already use
current_typeto track the type of the current selection set, it makes sense to use it as a source of truth for all __typenames but fallback to subgraph's __typename ifcurrent_typeis not an object (shouldn't happen unless QP has bugs).Fixes #issue_number
Checklist
Complete the checklist (and note appropriate exceptions) before the PR is marked ready-for-review.
Exceptions
Note any exceptions here
Notes
Footnotes
It may be appropriate to bring upcoming changes to the attention of other (impacted) groups. Please endeavour to do this before seeking PR approval. The mechanism for doing this will vary considerably, so use your judgement as to how and when to do this. ↩
Configuration is an important part of many changes. Where applicable please try to document configuration examples. ↩
Tick whichever testing boxes are applicable. If you are adding Manual Tests, please document the manual testing (extensively) in the Exceptions. ↩