Azure
[Bug]: GraphQL response issue with Role based Authentication
What happened?
When I create a schema like in the given file sql scripts.txt
And create a dab-config file like this config.json
And I use graphql,
- when I query like this with authentication provider as Simulator and role for all the entities as anonymous, it works perfectly well.
query Contacts {
contacts(filter: { num: { eq: "1234567890" } }) {
items {
contactParty {
items {
fname
mname
lname
partyContact {
items {
num
}
}
partyCoverage {
items {
type
coveragePolicy {
policyNum
}
}
}
}
}
}
}
}
- Now change the role to read.contact for entities and pass the header while requesting the above request will give error like
{
"errors": [
{
"message": "The given key 'coveragePolicy' was not present in the dictionary.",
"locations": [
{
"line": 17,
"column": 29
}
],
"path": [
"contacts",
"items",
0,
"contactParty",
"items",
0,
"partyCoverage",
"items",
0,
"coveragePolicy"
]
}
],
"data": {
"contacts": {
"items": [
{
"contactParty": {
"items": [
{
"fname": "John",
"mname": "A",
"lname": "Doe",
"partyContact": {
"items": [
{
"num": "1234567890"
}
]
},
"partyCoverage": {
"items": [
{
"type": "TypeA",
"coveragePolicy": null
}
]
}
}
]
}
}
]
}
}
}
- Now change the request as the below, calling partyCoverage before. Then this works perfectly well.
query Contacts {
contacts(filter: { num: { eq: "1234567890" } }) {
items {
contactParty {
items {
fname
mname
lname
partyCoverage {
items {
type
coveragePolicy {
policyNum
}
}
}
partyContact {
items {
num
}
}
}
}
}
}
}
I'm scared when this scenario happens for two of this requesting with similar structure things will break.
Do let me know, if you need more information.
Version
Microsoft.DataApiBuilder 1.4.26+647f344af9fe5c1079b27c00d0e3d3d0f44cb777
What database are you using?
Azure SQL
What hosting model are you using?
Local (including CLI)
Which API approach are you accessing DAB through?
GraphQL
Relevant log output
Azure.DataApiBuilder.Service.Startup[0]
A GraphQL request execution error occurred.
System.Collections.Generic.KeyNotFoundException: The given key 'coveragePolicy' was not present in the dictionary.
at System.Collections.Generic.Dictionary`2.get_Item(TKey key)
at Azure.DataApiBuilder.Core.Resolvers.SqlQueryEngine.ResolveObject(JsonElement element, IObjectField fieldSchema, IMetadata& metadata) in /_/src/Core/Resolvers/SqlQueryEngine.cs:line 221
at Azure.DataApiBuilder.Service.Services.ExecutionHelper.ExecuteObjectField(IPureResolverContext context) in /_/src/Core/Services/ExecutionHelper.cs:line 203
at ResolverTypeInterceptor.<>c__DisplayClass5_0.<.ctor>b__3(IPureResolverContext ctx) in /_/src/Core/Services/ResolverTypeInterceptor.cs:line 36
at HotChocolate.Resolvers.FieldResolverDelegates.<>c__DisplayClass0_0.<.ctor>b__0(IResolverContext context)
at HotChocolate.Types.Helpers.FieldMiddlewareCompiler.<>c__DisplayClass9_0.<<CreateResolverMiddleware>b__0>d.MoveNext()
--- End of stack trace from previous location ---
at HotChocolate.AspNetCore.Authorization.AuthorizeMiddleware.InvokeAsync(IDirectiveContext context)
at HotChocolate.Utilities.MiddlewareCompiler`1.ExpressionHelper.AwaitTaskHelper(Task task)
at HotChocolate.Execution.Processing.Tasks.ResolverTask.ExecuteResolverPipelineAsync(CancellationToken cancellationToken)
at HotChocolate.Execution.Processing.Tasks.ResolverTask.TryExecuteAsync(CancellationToken cancellationToken)
Code of Conduct
- [x] I agree to follow this project's Code of Conduct
Hi. Okay, I see your problem pertains to GraphQL responses when using role-based authentication. Specifically, with the authentication provider set to 'Simulator' and all entities assigned the 'anonymous' role, your queries function correctly. However, when switching the authentication provider to 'StaticWebApps' and assigning roles accordingly, the queries fail to return any data.
We will be looking into this. Reply here with any additional information you may have. Thank you.
This might be the same, no? https://github.com/Azure/data-api-builder/issues/2374
