Skip to content

al-ce/gopgrest

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

354 Commits
api
api
 
 
apperrors
apperrors
 
 
assert
assert
 
 
database
database
 
 
repatterns
repatterns
 
 
repository
repository
 
 
rsql
rsql
 
 
service
service
 
 
tests
tests
 
 
types
types
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
justfile
justfile
 
 
main.go
main.go
 
 

Repository files navigation

gopgrest

A dynamic RESTful HTTP server for a Postgres database. The app will adapt its URL routing and SQL queries to the provided table schemas. Supports an RSQL based query language.

API

Endpoint Method Description Request Response
/ GET Get structure of all tables --- application/json tables and their columns
/{tablename} POST Insert new row(s) application/json application/json new row id(s)
/{tablename}/{id} GET Get a row by ID --- application/json found row
/{tablename}?{querystring} GET Get rows by query params --- application/json matching rows
/{tablename}/{id} PUT Update a row by ID application/json application/json array of updated row id
/{tablename}?{querystring} PUT Update rows by query params application/json application/json array of updated row ids
/{tablename}/{id} DELETE Delete a row by ID --- application/json array of deleted row id
/{tablename}?{querystring} DELETE Delete rows by query params --- application/json array of deleted row ids

REST Query language (based on restSQL)

This project is aiming to implement a URL query parameter parser similar to restSQL.

Query parameters can be added to a GET request after a ? query separator. Keys and their values are separated by =. Multiple subqueries can be joined with &.

The following example contains:

  • a select subquery to select columns to return, with qualifiers and aliases on some columns
  • a left_join subquery to add two join relations
  • a where subquery to add conditions to the query
  • a limit and offset subquery to limit and offset the rows returned by the SQL query
curl -X GET -s 'http://localhost:8090/books?select=title,genres.name:genre,authors.surname:author&left_join=authors:books.author_id==authors.id;genres:books.genre_id==genres.id&where=born<1900&limit=3&offset=2' | jq

This endpoint responds with an array of JSON objects:

[
  {
    "author": "Woolf",
    "genre": null,
    "title": "Mrs. Dalloway"
  },
  // etc.
]

The JSON output from the request is marshalled from the rows returned by this SQL query:

SELECT title,name AS genre, surname AS author FROM books
LEFT JOIN authors ON books.author_id = authors.id
LEFT JOIN genres ON books.genre_id = genres.id
WHERE authors.born < 1900
LIMIT 3
OFFSET 2

The following query keys are supported:

Key Description
where add WHERE conditions to a SELECT query
select columns to return in a SELECT query
inner join add INNER JOIN relations to a SELECT query
join add INNER JOIN relations to a SELECT query
left_join add LEFT JOIN relations to a SELECT query
right_join add RIGHT JOIN relations to a SELECT query
limit add LIMIT to a SELECT query
offset add OFFSET to a SELECT query

Query parameters matching the where format for an RSQL query can be added to PUT and DELETE requests to update/delete rows matching the conditions.

curl -X PUT 'http://localhost:8090/authors?forename==Anne;born<1900' --data '{"forename": "Emily"}'
rows updated in table authors: 1

Unlike a GET request, query parameters in a POST or DELETE request do not require the where key or a = separator before the column/value conditionals.

Encoding in the URL query parameters

Percent-encoded characters will be decoded as defined at MDN Web Docs: Percent-encoding

For example, here is a query where space ' ' characters are encoded with + and + characters are encoded with %2B:

curl -X GET -s 'http://localhost:8090/books?select=title&where=title==Programming:+Principles+and+Practice+Using+C%2B%2B' | jq
[
  {
    "title": "Programming: Principles and Practice Using C++"
  }
]

Query parameter specifications

Where

A where key can be added to a GET URL's query parameters to match a SQL WHERE clause.

A where subquery is in the following format:

where={column_name}{operator}{value};...

where the right of the = is a ; separated list of conditional expressions equivalent to a WHERE clause.

For example, the following SQL query and GET request are equivalent:

curl -X GET -s 'http://localhost:8090/authors?where=forename==Anne;born>=1900'
SELECT * FROM author
WHERE forename = 'Anne' AND born >= 1900
 id | surname | forename | born | died
----+---------+----------+------+------
  1 | Carson  | Anne     | 1950 |
(1 row)

These are the currently supported conditional operators:

Operator SQL equivalent
== =
!= !=
=in= IN
=out= NOT IN
=like= LIKE
=!like= NOT LIKE
=notlike= NOT LIKE
=nk= NOT LIKE
=isnull= IS NULL
=na= IS NULL
=isnotnull= IS NOT NULL
=notnull= IS NOT NULL
=nn= IS NOT NULL
=!null= IS NOT NULL
=le= <=
<= <=
=ge= >=
>= >=
=lt= <
< <
=gt= >
> >

As noted above, a list of ; separated conditionals can be added to PUT and DELETE requests without the preceding where= key/assignment to add a WHERE clause to UPDATE or DELETE queries.

For example, the following SQL query and PUT request are equivalent:

curl -X PUT 'http://localhost:8090/authors?forename==Anne;born<1900' --data '{"forename": "Emily"}'
UPDATE authors SET forename = 'Emily' WHERE forename = 'Anne' AND born < 1900

And the following SQL query and DELETE request are equivalent:

curl -X DELETE 'http://localhost:8090/books?title=like=Autobiography%'
DELETE FROM books WHERE title LIKE

Select

A select key can be added to the URL query to specify columns for the SQL SELECT clause. If no columns are specified, the query will be SELECT *.

A select subquery is in the following format:

select=[{column_name}:{alias},... ]

where the right of the = is a , separated list of valid column names and an optional alias, with the column name and alias separated by a :.

For example, the following queries and GET request are equivalent:

curl -X GET -s 'http://localhost:8090/authors?select=surname:last_name,forename' | jq
SELECT surname AS last_name, forename FROM authors
 surname | forename
---------+----------
 Woolf   | Virginia
 Brontë  | Anne
 Carson  | Anne
(3 rows)

Joins

Joins can be added to the URL query to add a Join statement to the SELECT query.

A join subquery is in the following format:

{join_keyword}=[{table}:{left_qualifier}.{left_column}=={right_qualifier}.{right_coulmn};...

where right hand side of the subquery ; separated list of join relations.

The following join keywords are supported:

  • join
  • inner_join
  • left_join
  • right_join

For example, the following queries and GET request are equivalent:

curl -X GET -s 'http://localhost:8090/books?select=title,name,surname&left_join=authors:books.author_id==authors.id;genres:books.genre_id==genres.id' | jq
SELECT name, surname, title FROM books
LEFT JOIN authors on books.author_id=authors.id
LEFT JOIN genres ON books.genre_id=genres.id"
    name    | surname |            title
------------+---------+-----------------------------
 Romance    | Carson  | Autobiography of Red
 Epistolary | Brontë  | The Tenant of Wildfell Hall
 Modernism  | Woolf   | To The Lighthouse
            | Woolf   | Mrs. Dalloway
(4 rows)

Limits and Offsets

Queries can be limited and offset with the limit= and select= keywords.

For example, the following query and GET request are equivalent:

curl -X GET -s 'http://localhost:8090/books?limit=1'
SELECT * FROM books LIMIT 12 OFFSET 12

Example usage

Get table structures

Get a JSON object that describes all the tables in the database with their column names and column types:

GET http://{HOST}:{PORT}/

Example:

curl -X GET 'http://localhost:8090/' | jq
{
  "authors": [
    {
      "col_name": "id",
      "col_type": "int32"
    },
    {
      "col_name": "surname",
      "col_type": "string"
    },
    {
      "col_name": "forename",
      "col_type": "string"
    },
    {
      "col_name": "born",
      "col_type": "int16"
    },
    {
      "col_name": "died",
      "col_type": "int16"
    }
  ],
  "books": [
    {
      "col_name": "id",
      "col_type": "int32"
    },
    {
      "col_name": "title",
      "col_type": "string"
    },
    {
      "col_name": "author_id",
      "col_type": "int32"
    }
  ]
}

Insert

Insert a new row or rows into an existing table. Responds with array of new ids.

POST http://{HOST}:{PORT}/{tablename}
Accept: application/json

Example (single JSON object):

curl -X POST -s http://localhost:8090/authors \
      --data '{ "surname": "Woolf", "forename": "Virginia" }'
[3]

Example (multiple rows from array of JSON objects):

curl -X POST http://localhost:8090/authors \
      --data '[{ "surname": "Groton", "forename": "Anne" }, { "surname": "Plato" }]'
[4, 5]

Get Row (pick)

Get a single row from a table by id as a JSON object.

GET http://{HOST}:{PORT}/{tablename}/{id}

Example:

curl -X GET -s http://localhost:8090/authors/1 | jq
{
  "forename": "",
  "id": 1,
  "surname": "Plato"
}

Get Rows (list)

Get all rows from a table matching a list of optional query parameters as an array of JSON objects.

GET http://{HOST}:{PORT}/{tablename}?{querystring}

Example (no parameters):

curl -X GET -s http://localhost:8090/authors
[
  {
    "born": 1882,
    "died": 1941,
    "forename": "Virginia",
    "id": 3,
    "surname": "Woolf"
  },
  {
    "born": 1820,
    "died": 1849,
    "forename": "Anne",
    "id": 2,
    "surname": "Brontë"
  },
  {
    "born": 1950,
    "died": null,
    "forename": "Anne",
    "id": 1,
    "surname": "Carson"
  }
]

Example (multiple where parameters connected by ;):

curl -X GET -s 'http://localhost:8090/authors?where=forename==Anne;born>=1900'
[
  {
    "born": 1950,
    "died": null,
    "forename": "Anne",
    "id": 1,
    "surname": "Carson"
  }
]

Update

Update a row by ID or by query parameters, responding with an array of IDs of the updated rows as JSON.

By id:

PUT http://{HOST}:{PORT}/{tablename}/{id}
Accept: application/json
curl -X PUT -s http://localhost:8090/authors/3 --data '{"surname" : "Woolf"}'

responds with:

[3]

By query parameters:

PUT http://{HOST}:{PORT}/{tablename}?{querystring}
curl -X PUT 'http://localhost:8090/authors?forename==Anne;born<1900' --data '{"forename": "Emily"}'

responds with:

[1, 2]

Delete

Delete a row by ID, responding with a message confirming the deleted row.

DELETE http://{HOST}:{PORT}/{tablename}/{id}
curl -X DELETE -s http://localhost:8090/authors/5

responds with

[1]

By query parameters:

PUT http://{HOST}:{PORT}/{tablename}?{querystring}
curl -X DELETE 'http://localhost:8090/books?title=like=Autobiography%'

responds with

[1, 2]

Setup

Build and run the project with the following environment variables:

go build -o gopgrest
export HOST={{ HOST }}          # The host for your server, e.g. localhost
export API_PORT={{ API_PORT }}  # The port to run the server on, e.g. 8090
export DB_NAME={{ DB_NAME }}    # The name of your Postgres database
export DB_PASS={{ DB_PASS }}    # The password to your Postgres database

./gopgrest                      # Run the build output

Quick setup/usage

Use recipes in the justfile with casey/just as a task runner.

  • Define a schema (e.g. as above) in ./database/schema.sql
  • just run (initialize a docker container database and run the program)
  • just insert authors '{"surname": "Woolf", "forename": "Virginia" }'
  • just list authors 'surname=Carson
  • just exec "select * from authors" (query the container database directly)
  • etc.
Available recipes:
    default               # list recipes

    [api]
    delete table id       # Delete a row in the database by id
    insert table data     # Insert a row in a table e.g. `insert authors '{"surname": "Plato"}'`
    list table params=''  # list sets with optional query params e.g. `list authors 'surname=Plato'`
    pick table id         # pick a single row by id
    update table id data  # Update a a row in by id e.g. `update authors 1 '{"surname": "Carson"}'`

    [app]
    run                   # Run the app
    start                 # Start the container
    stop                  # Stop the container

    [db]
    exec command flags="" # Execute a psql command in the container database
    init                  # Initialize database with schema
    remove                # Remove the database container

    [dev]
    build                 # Build the program
    rain                  # Open database with rainfrog
    watch                 # Run the application and watch for changes, recompile/restart on changes

    [helpers]
    jqparse               # parse JSON with jq and handle invalid JSON

    [test]
    test path=""          # Run tests
    tstart                # Start test database container
    tstop                 # Stop test database container

Why this project?

This project allows me to get a backend server going as soon as I have my tables defined for a database. If I decide I need to make changes to the table structures, then I don't need to make any changes to the backend. This allows me to perform simple CRUD operations right away and put off writing a more robust backend until I know exactly what I need.

This makes gopgrest good for simple data retrieval on a home server, like tracking exercise data, managing a personal library, language learning, etc.; or as a placeholder backend for local development on a frontend application.

I would not use this for a project that publicly exposes sensitive personal data.

Security measures

  • The app will route a request with a RESTful HTTP method + path combination for any valid table found in the following example query:
SELECT tablename FROM Pg_catalog.pg_tables
WHERE schemaname='public'"
 tablename
-----------
 authors
 books
(2 rows)
  • Requests with JSON content (insert/update) or query params (list) must use valid column names and corresponding column types

About

Dynamic Postgres REST API

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages