chore: merge from dev

[ymc9]

Summary by CodeRabbit

• New Features
  • Added Zod schema validation for create and update operations in policy handling.
  • Introduced a new environment variable ZENSTACK_TEST.
  • Added a @lower directive for slug field validation and a @trim directive to various model fields.
  • Enhanced input validation logic and added support for field-level override policy guards.
• Bug Fixes
  • Corrected spelling errors in error messages for data model validation.
  • Adjusted handling of scalar types and enums in data model validation.
• Refactor
  • Updated the search method for locating package.json files to improve package discovery.
  • Refined input validation and post-operation logic in policy handling for better data integrity.
  • Standardized email case to lowercase and trimmed titles in various test scenarios for consistency.
• Tests
  • Added integration tests for new validation directives and policies.
  • Introduced tests for specific issues related to data updating and model relationships.
• Chores
  • Updated test environment setup procedures and configurations.

[coderabbitai]

Walkthrough

Walkthrough

The recent updates span across configuration, runtime enhancements, schema management, and integration tests. Key changes include adjustments in Jest configuration paths, enhanced input validation and policy compliance in runtime operations, refined schema location retrieval using findUp, and improvements in data model validation. Additionally, new testing directives and modifications in test scenarios reflect a focus on data integrity, policy enforcement, and schema correctness. These changes collectively aim to improve the project's robustness and developer experience.

Changes

File(s)	Summary
jest.config.ts	Updated paths for globalSetup and setupFiles.
packages/runtime/.../policy/handler.ts packages/runtime/.../policy/policy-utils.ts	Enhanced input validation logic and policy compliance in PolicyProxyHandler, added methods and logic in PolicyUtil.
packages/schema/.../cli-util.ts packages/schema/.../schema-generator.ts packages/schema/.../pkg-utils.ts	Replaced findPackageJson with findUp for schema location retrieval and modified findUp function.
packages/schema/.../validator/datamodel-validator.ts packages/schema/tests/.../datamodel-validation.test.ts	Improved data model validation logic and test formatting.
script/set-test-env.ts script/test-global-setup.ts	Introduced environment variable and setup checks.
tests/integration/tests/enhancements/... tests/integration/tests/regression/... tests/integration/tests/schema/refactor-pg.zmodel	Added new validation directives, refined test scenarios for data integrity and policy enforcement, and updated model directives.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

---

Tips

Chat

There are 3 ways to chat with CodeRabbit:

Note: Auto-reply has been disabled for this repository by the repository owner. The CodeRabbit bot will not respond to your comments unless it is explicitly tagged.

• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit tests for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository from git and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit tests.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• The JSON schema for the configuration file is available here.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.v2.json

CodeRabbit Discord Community

Join our Discord Community to get help, request features, and share feedback.

[coderabbitai]

Review Status

Actionable comments generated: 5

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between e5b5a0f and 3136840.

Files ignored due to path filters (9)

• package.json is excluded by: !**/*.json
• packages/plugins/openapi/package.json is excluded by: !**/*.json
• packages/plugins/swr/package.json is excluded by: !**/*.json
• packages/plugins/tanstack-query/package.json is excluded by: !**/*.json
• packages/plugins/trpc/package.json is excluded by: !**/*.json
• packages/schema/package.json is excluded by: !**/*.json
• packages/server/package.json is excluded by: !**/*.json
• tests/integration/package.json is excluded by: !**/*.json
• tests/integration/tests/tsconfig.template.json is excluded by: !**/*.json

Files selected for processing (15)

• jest.config.ts (1 hunks)
• packages/runtime/src/enhancements/policy/handler.ts (7 hunks)
• packages/runtime/src/enhancements/policy/policy-utils.ts (4 hunks)
• packages/schema/src/cli/cli-util.ts (2 hunks)
• packages/schema/src/language-server/validator/datamodel-validator.ts (4 hunks)
• packages/schema/src/plugins/prisma/schema-generator.ts (2 hunks)
• packages/schema/src/utils/pkg-utils.ts (3 hunks)
• packages/schema/tests/schema/validation/datamodel-validation.test.ts (2 hunks)
• script/set-test-env.ts (1 hunks)
• script/test-global-setup.ts (1 hunks)
• tests/integration/tests/enhancements/with-policy/field-validation.test.ts (2 hunks)
• tests/integration/tests/enhancements/with-policy/refactor.test.ts (14 hunks)
• tests/integration/tests/regression/issue-1014.test.ts (1 hunks)
• tests/integration/tests/regression/issue-177.test.ts (1 hunks)
• tests/integration/tests/schema/refactor-pg.zmodel (3 hunks)

Files skipped from review due to trivial changes (1)

• script/set-test-env.ts

Additional comments: 34

script/test-global-setup.ts (1)

• 4-8: The global setup function correctly checks for the existence of the test scaffold and exits the process if not found, ensuring tests do not run without the necessary setup. Consider making the path to the test scaffold configurable to increase flexibility and maintainability.

tests/integration/tests/regression/issue-177.test.ts (1)

• 3-26: The regression test is well-structured and correctly uses asynchronous testing patterns to check for a specific error message. Ensure that the error message being tested for is stable to avoid brittle tests.

jest.config.ts (1)

• 12-14: The updates to jest.config.ts correctly use path.join for defining paths to globalSetup and setupFiles, ensuring cross-platform compatibility. Verify that these paths accurately point to the intended setup scripts.

tests/integration/tests/regression/issue-1014.test.ts (1)

• 3-51: The test cases for issue 1014 are well-structured and make appropriate use of asynchronous testing patterns. Ensure that the schema and operations used in the tests accurately reflect real use cases and that the assertions are robust enough to catch potential regressions.

tests/integration/tests/schema/refactor-pg.zmodel (1)

• 8-8: The addition of @lower and @trim directives to the User, Post, and Comment models is a good practice for ensuring data integrity and consistency. Review the application logic to ensure it accounts for these automatic data transformations.

Also applies to: 55-55, 70-70

packages/schema/src/utils/pkg-utils.ts (1)

• 7-37: The enhancements to the findUp function introduce valuable flexibility and utility for locating files. The deprecation of findPackageJson in favor of findUp is a logical step to consolidate functionality. Ensure thorough testing of the findUp function to confirm its reliability across various use cases.

packages/schema/src/cli/cli-util.ts (1)

• 292-292: The replacement of findPackageJson with findUp for schema location retrieval improves flexibility. Verify that this change correctly handles various project structures and does not introduce regressions in determining schema locations.

packages/schema/src/language-server/validator/datamodel-validator.ts (2)

• 124-124: The validation error message for an empty "fields" value in a relation is clear and informative. This change enhances the robustness of the model validation by ensuring that relations are correctly defined.
• 134-134: Similar to the previous comment, the validation for an empty "references" value is a good addition. It ensures the integrity of relation definitions between models, which is crucial for maintaining data consistency.

tests/integration/tests/enhancements/with-policy/field-validation.test.ts (3)

• 48-48: The addition of the @lower directive to the slug field validation rule is a good enhancement. It ensures that the slug values are stored in a consistent format, which is important for data integrity and usability. This change aligns with best practices for handling user-generated identifiers.
• 528-536: The update operation for userData that tests string transformations, including the @lower directive, is correctly implemented. This test case effectively validates the transformation logic for string fields. It's a good practice to include such detailed tests to ensure the application behaves as expected after data transformations.
• 579-593: The test case for the upsert operation with the @lower directive on the slug field demonstrates a good understanding of testing complex operations. It effectively tests both the creation and update paths of the upsert operation, ensuring that the @lower directive is applied correctly in both scenarios. This is crucial for maintaining data consistency.

packages/schema/tests/schema/validation/datamodel-validation.test.ts (2)

• 13-13: The adjustment in spacing within the template literal in the safelyLoadModel call enhances readability and consistency with the rest of the codebase. This change is purely stylistic and does not impact the functionality of the test.
• 131-131: Similar to the previous comment, the adjustment in spacing within the template literal here also improves consistency and readability. It's a good practice to maintain consistent code formatting throughout the project.

packages/schema/src/plugins/prisma/schema-generator.ts (2)

• 60-60: The import statement for findUp from ../../utils/pkg-utils correctly replaces the previous findPackageJson function. This change is expected to enhance the flexibility and reliability of locating package.json files by supporting multiple paths and levels.
• 669-669: The usage of findUp(['package.json'], path.dirname(schemaPath)) to locate the package.json file is a significant improvement over the previous method. It allows for a more flexible search that can accommodate various project structures. However, it's important to ensure that the findUp function is thoroughly tested in different scenarios to confirm its reliability in locating the package.json file in all expected cases.

tests/integration/tests/enhancements/with-policy/refactor.test.ts (11)

• 147-155: The test case for user creation correctly enforces email case conversion to lowercase. This is a good practice for ensuring consistency in email handling. However, it's important to ensure that this behavior is documented and expected across all parts of the application to avoid confusion or mismatches in other areas where email addresses are used or validated.
• 216-229: > 📝 NOTE

This review was outside the diff hunks and was mapped to the diff hunk with the greatest overlap. Original lines [208-226]

Trimming whitespace from the title during post creation is a good practice for data cleanliness. However, ensure that this trimming behavior is consistently applied across all endpoints that accept a title input to maintain data integrity and user experience consistency.

• 409-418: > 📝 NOTE

This review was outside the diff hunks and was mapped to the diff hunk with the greatest overlap. Original lines [401-415]

The handling of createMany with skipDuplicates option and subsequent trimming of the title is correctly implemented. This approach helps in avoiding errors due to duplicate entries and ensures data consistency. It's important to verify that the skipDuplicates logic aligns with the application's data integrity requirements and does not inadvertently ignore important data conflicts.

• 427-438: The test for createMany operation correctly demonstrates the trimming of whitespace from titles. This consistency in handling titles is crucial for maintaining data quality. Ensure that similar data sanitization steps are applied to all relevant fields across the application to prevent data inconsistencies.
• 524-525: Updating the user's email and enforcing lowercase conversion is consistent with the application's handling of email addresses. It's crucial to ensure that all parts of the application that interact with email addresses are aware of and adhere to this normalization rule to prevent issues with email matching or validation.
• 583-586: Trimming the title during an update operation and ensuring the updated data matches the expected format is a good practice. This test case reinforces the importance of consistent data handling rules across create and update operations. It's important to ensure that these data sanitization practices are documented and consistently applied across the application.
• 611-628: The test case demonstrates creating a new post with comments, including trimming whitespace from the comment content. This is a good practice for maintaining clean data. However, ensure that the application consistently applies similar data sanitization practices across all entities and operations to maintain overall data quality.
• 660-668: The createMany operation with title trimming and successful creation of multiple posts demonstrates consistent data handling practices. It's important to ensure that the application's data integrity rules support the intended behavior of createMany, especially regarding handling duplicates and data validation.
• 748-754: The test case for updating a post's title with trimming applied is consistent with the application's data handling practices. This reinforces the importance of consistent data sanitization across different operations. Ensure that these practices are well-documented and understood by all developers working on the application to maintain data integrity.
• 825-832: The use of upsert to either update or create a post, with title trimming applied, demonstrates a flexible approach to handling data. This operation's success is contingent on correctly identifying when to create versus update. Ensure that the logic for determining the existence of records is robust and accounts for all necessary conditions to prevent unintended data duplication or loss.
• 1120-1123: The updateMany operation with title trimming applied to multiple posts reinforces the application's commitment to clean data. This operation's success highlights the importance of consistent data handling rules across the application. Ensure that bulk update operations like this are carefully monitored to prevent unintended data modifications, especially in large datasets.

packages/runtime/src/enhancements/policy/policy-utils.ts (4)

• 320-320: The method hasAuthGuard no longer explicitly returns a boolean type. While this change simplifies the code, ensure that all usages of this method correctly handle its return values, especially in conditional statements where explicit boolean checks might be expected.
• 329-342: The addition of the hasOverrideAuthGuard method enhances the flexibility of policy handling by checking for field-level override guards. This is a valuable addition for more granular access control. Ensure that this method is properly integrated and used wherever field-level policy checks are necessary.
• 650-650: The logic within checkPolicyForUnique method now considers field-level override guards when determining if an operation is allowed. This is a crucial update for supporting more complex policy scenarios. However, ensure that the integration of this new check does not inadvertently alter the intended behavior of policy enforcement in edge cases.
• 823-823: The tryReject method's logic has been updated to consider field-level override guards. This change is consistent with the overall enhancement of policy handling mechanisms in this class. Verify that this update aligns with the intended policy enforcement flow and does not introduce any unintended side effects.

packages/runtime/src/enhancements/policy/handler.ts (3)

• 484-484: The introduction of Zod schema validation for create operations enhances data integrity and validation logic. However, ensure that all potential edge cases are covered, especially with complex nested structures or when dealing with optional fields.
• 814-819: The validation of update payloads using Zod schemas within nested updates is a robust addition. However, ensure that the validation logic correctly handles complex nested updates and respects optional fields and Prisma-specific update operations (e.g., increment).
• 1063-1084: The approach to only validate literal fields in update payloads is prudent, given Prisma's support for non-literal update operations. However, ensure that this filtering does not inadvertently exclude fields that should be validated or transform the data in unexpected ways.

[coderabbitai]

While iterating over args.data for createMany operations, the validation and input check logic is sound. However, consider optimizing this loop to avoid potential performance issues with large datasets by minimizing the number of times validateCreateInputSchema and checkInputGuard are called.

- for (const item of enumerate(args.data)) {
+ for (const [index, item] of enumerate(args.data).entries()) {

---

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	// go through create items, statically check input to determine if post-create
	// check is needed, and also validate zod schema
	let needPostCreateCheck = false;
	for (const item of enumerate(args.data)) {
	const validationResult = this.validateCreateInputSchema(this.model, item);
	if (validationResult !== item) {
	this.policyUtils.replace(item, validationResult);
	}
	const inputCheck = this.policyUtils.checkInputGuard(this.model, item, 'create');
	if (inputCheck === false) {
	// unconditionally deny
	throw this.policyUtils.deniedByPolicy(
	this.model,
	'create',
	undefined,
	CrudFailureReason.ACCESS_POLICY_VIOLATION
	);
	} else if (inputCheck === true) {
	const r = this.validateCreateInputSchema(this.model, item);
	if (r !== item) {
	this.policyUtils.replace(item, r);
	}
	// unconditionally allow
	// go through create items, statically check input to determine if post-create
	// check is needed, and also validate zod schema
	let needPostCreateCheck = false;
	for (const [index, item] of enumerate(args.data).entries()) {
	const validationResult = this.validateCreateInputSchema(this.model, item);
	if (validationResult !== item) {
	this.policyUtils.replace(item, validationResult);
	}
	const inputCheck = this.policyUtils.checkInputGuard(this.model, item, 'create');
	if (inputCheck === false) {
	// unconditionally deny
	throw this.policyUtils.deniedByPolicy(
	this.model,
	'create',
	undefined,
	CrudFailureReason.ACCESS_POLICY_VIOLATION
	);
	} else if (inputCheck === true) {
	// unconditionally allow

[coderabbitai]

Applying Zod schema validation to updateMany operations is consistent with the approach for single updates. However, consider the impact on performance and ensure that the validation logic is optimized for handling bulk operations efficiently.

- args.data = this.validateUpdateInputSchema(this.model, args.data);
+ // Consider batching or optimizing validation for bulk operations

---

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	args.data = this.validateUpdateInputSchema(this.model, args.data);
	// Consider batching or optimizing validation for bulk operations

[coderabbitai]

The logic for determining if a field's type is scalar or an enum is correctly implemented. However, consider adding a comment explaining why these specific checks are necessary for fields with @id attributes, as it might not be immediately clear to someone unfamiliar with the domain-specific rules.

+ // Ensure @id fields are either scalar types or enums for database compatibility
  const isScalar = SCALAR_TYPES.includes(idField.type.type as (typeof SCALAR_TYPES)[number]);
  const isValidType = isScalar || isEnum(idField.type.reference?.ref);

---

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	const isScalar = SCALAR_TYPES.includes(idField.type.type as (typeof SCALAR_TYPES)[number]);
	const isValidType = isScalar || isEnum(idField.type.reference?.ref);
	// Ensure @id fields are either scalar types or enums for database compatibility
	const isScalar = SCALAR_TYPES.includes(idField.type.type as (typeof SCALAR_TYPES)[number]);
	const isValidType = isScalar || isEnum(idField.type.reference?.ref);

[coderabbitai]

This block of code introduces a validation check to ensure that if a relation is not optional, then the foreign key field must not be nullable. This is an important check for data integrity and consistency. However, consider adding a brief comment to explain the rationale behind this check for future maintainability.

+ // Validate non-optional relations to ensure foreign key fields are not nullable
  if (!field.type.optional && fields[i].$resolvedType?.nullable) {
      if (accept) {
          accept(
              'error',
              `relation "${field.name}" is not optional, but field "${fields[i].target.$refText}" is optional`,
              { node: fields[i].target.ref! }
          );
      }
  }

---

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	if (!field.type.optional && fields[i].$resolvedType?.nullable) {
	// if relation is not optional, then fk field must not be nullable
	if (accept) {
	accept(
	'error',
	`relation "${field.name}" is not optional, but field "${fields[i].target.$refText}" is optional`,
	{ node: fields[i].target.ref! }
	);
	// Validate non-optional relations to ensure foreign key fields are not nullable
	if (!field.type.optional && fields[i].$resolvedType?.nullable) {
	// if relation is not optional, then fk field must not be nullable
	if (accept) {
	accept(
	'error',
	`relation "${field.name}" is not optional, but field "${fields[i].target.$refText}" is optional`,
	{ node: fields[i].target.ref! }
	);

[coderabbitai]

The test case for creating userData with various validations, including the new @lower directive, is well-implemented. It effectively tests the validation logic for optional and transformed string fields. However, ensure that the test descriptions accurately reflect the specific validations being tested, including the new @lower directive for text6.

+ // Test description should mention testing the @lower directive for text6
  let ud = await db.userData.create({
      data: {
          userId: '1',
          a: 1,
          b: 0,
          c: -1,
          d: 0,
          text1: 'abc123',
          text2: 'def',
          text3: 'aaa',
          text4: 'abcab',
          text6: ' AbC ',
          text7: 'abc',
      },
  });

---

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	let ud = await db.userData.create({
	data: {
	userId: '1',
	a: 1,
	b: 0,
	c: -1,
	d: 0,
	text1: 'abc123',
	text2: 'def',
	text3: 'aaa',
	text4: 'abcab',
	text6: ' AbC ',
	text7: 'abc',
	},
	});
	expect(ud).toMatchObject({ text6: 'abc', text7: 'ABC' });
	// Test description should mention testing the @lower directive for text6
	let ud = await db.userData.create({
	data: {
	userId: '1',
	a: 1,
	b: 0,
	c: -1,
	d: 0,
	text1: 'abc123',
	text2: 'def',
	text3: 'aaa',
	text4: 'abcab',
	text6: ' AbC ',
	text7: 'abc',
	},
	});
	expect(ud).toMatchObject({ text6: 'abc', text7: 'ABC' });