feat: Implement server-side BatchCheck using /batch-check endpoint (#150)

* feat: Implement server-side BatchCheck using /batch-check endpoint

Implements server-side batch check functionality to address issue #94.

Changes:
- Add new BatchCheck() method using the server-side /batch-check API endpoint
- Rename existing BatchCheck() to ClientBatchCheck() (fully supported, not deprecated)
- Add ClientBatchCheckRequest, ClientBatchCheckItem models for user-friendly API
- Add ClientBatchCheckResponse, ClientBatchCheckSingleResponse for result mapping
- Add ClientUtils helper methods (UUID correlation ID generation, list chunking, transformations)
- Add MaxBatchSize property to IClientBatchCheckOptions (default: 50)
- Update ListRelations to use renamed ClientBatchCheck method

Features:
- Auto-generates UUID correlation IDs (cross-SDK compatible with JS SDK)
- Validates correlation IDs are unique
- Chunks requests by MaxBatchSize (default: 50 checks per batch)
- Executes batches in parallel with MaxParallelRequests (default: 10)
- Supports all target frameworks (netstandard2.0, net48, net8.0, net9.0)
- Returns empty result for empty checks (matches JS SDK behavior)
- Fail-fast error handling

Tests:
- Add 18 unit tests for new models and utilities
- Update existing tests to use renamed ClientBatchCheck method
- Integration tested against live OpenFGA server

Fixes #94

* fix: Address PR feedback for BatchCheck implementation

Addresses CodeRabbit and CodeQL feedback from PR #150.

Changes:
- Add validation to prevent MaxBatchSize <= 0 and MaxParallelRequests <= 0
  - Prevents potential deadlock in NETSTANDARD2.0/NET48 builds
  - Throws FgaValidationError with descriptive message
- Create IClientServerBatchCheckOptions for server-side BatchCheck
  - Includes MaxBatchSize and MaxParallelRequests properties
  - Removes MaxBatchSize from IClientBatchCheckOptions (unused by ClientBatchCheck)
  - Removes MaxBatchSize from ClientListRelationsOptions (unused by ListRelations)
- Fix Equals(object) methods to use exact type checking
  - Changed from 'is' pattern to obj.GetType() == this.GetType()
  - Prevents improper equality checks with subclasses (CodeQL warning)
  - Applied to ClientBatchCheckItem, ClientBatchCheckRequest, ClientBatchCheckSingleResponse, ClientBatchCheckResponse
- Update CHANGELOG.md with unreleased features

All fixes validated with no linter errors.

* docs: update BatchCheck README to match JS SDK format

- Update BatchCheck example to show new server-side API
- Use ClientBatchCheckRequest with ClientBatchCheckItem
- Show correlation ID generation and filtering by ID
- Add MaxBatchSize option example
- Simplify example for clarity (2 checks instead of 4)
- Add note about ClientBatchCheck() for older servers
- Align with JS SDK README structure

Addresses feedback from PR #150

* refactor: remove unused ChunkArray method

- Remove ChunkArray<T> method (not used anywhere)
- Keep ChunkList<T> which is actively used by BatchCheck

Addresses feedback from PR #150

* perf: use Enumerable.Chunk for .NET 6+ in ChunkList

- Use built-in Enumerable.Chunk for .NET 6.0 and greater
- Fall back to manual implementation for older frameworks
- Improves performance on modern .NET versions

Addresses feedback from PR #150

* test: add integration test for BatchCheck bulk request ID header

- Verify X-OpenFGA-Client-Bulk-Request-Id header is present
- Validate header value is a valid GUID
- Add missing FgaConstants using statement
- Follows existing header test patterns

Addresses feedback from PR #150

* refactor: use discard for unused mockHandler variable

- Change mockHandler to _ in BatchCheck header test
- Unused variable doesn't need to be captured
- Improves code cleanliness

Addresses code review feedback

* refactor: rename options classes to match Java SDK naming

- Rename ClientServerBatchCheckOptions to ClientBatchCheckOptions
- Create ClientBatchCheckClientOptions for client-side ClientBatchCheck()
- ClientBatchCheckOptions (server-side) has MaxBatchSize + MaxParallelRequests
- ClientBatchCheckClientOptions (client-side) has only MaxParallelRequests
- Update ClientListRelationsOptions to inherit from IClientBatchCheckClientOptions
- Fix README casing: batchCheck -> BatchCheck, correlationId -> CorrelationId
- Update all tests to use correct option types

Addresses PR feedback from @ewanharris and @curfew-marathon

* fix: address PR feedback for BatchCheck implementation

Address review feedback from PR #150:

1. Use hash code constants instead of magic numbers
   - Replace hardcoded 9661/9923 with FgaConstants references
   - Applied to all GetHashCode() methods in batch check models

2. Reduce code duplication in parallel processing
   - Extract ProcessBatchAsync() helper method
   - Share logic between NET6+ and older framework paths

3. Update documentation
   - Add OpenFGA server v1.8.0+ requirement to CHANGELOG
   - Regenerate README with correct examples from updated templates
   - Fix response property names and model usage

All tests passing (274/274 on .NET 9.0).

* feat: update equals

* fix: revert unnecessary readme changes

* feat: address comments

---------

Co-authored-by: Anurag Bandyopadhyay <angbpy@gmail.com>

Author: daniel-jonathan

.openapi-generator-ignore

@@ -1,8 +1,10 @@
 appveyor.yml
 git_push.sh
 api/openapi.yaml
+src/OpenFga.Sdk/ApiClient.cs
+src/OpenFga.Sdk/Client/*
 src/OpenFga.Sdk.Test/Api/*
 src/OpenFga.Sdk.Test/Client/*
 src/OpenFga.Sdk.Test/Model/*
-src/OpenFga.Sdk/ApiClient.cs
-src/OpenFga.Sdk/Client/*
+src/OpenFga.Sdk.Test/OpenFga.Sdk.Test.csproj
+src/OpenFga.Sdk/OpenFga.Sdk.csproj

.openapi-generator/FILES

@@ -96,7 +96,6 @@ docs/WriteAuthorizationModelResponse.md
 docs/WriteRequest.md
 docs/WriteRequestDeletes.md
 docs/WriteRequestWrites.md
-src/OpenFga.Sdk.Test/OpenFga.Sdk.Test.csproj
 src/OpenFga.Sdk/Api/OpenFgaApi.cs
 src/OpenFga.Sdk/Constants/FgaConstants.cs
 src/OpenFga.Sdk/Model/AbortedMessageResponse.cs
@@ -155,7 +154,6 @@ src/OpenFga.Sdk/Model/ReadResponse.cs
 src/OpenFga.Sdk/Model/RelationMetadata.cs
 src/OpenFga.Sdk/Model/RelationReference.cs
 src/OpenFga.Sdk/Model/RelationshipCondition.cs
-src/OpenFga.Sdk/Model/RequestOptions.cs
 src/OpenFga.Sdk/Model/SourceInfo.cs
 src/OpenFga.Sdk/Model/Status.cs
 src/OpenFga.Sdk/Model/Store.cs
@@ -187,4 +185,3 @@ src/OpenFga.Sdk/Model/WriteAuthorizationModelResponse.cs
 src/OpenFga.Sdk/Model/WriteRequest.cs
 src/OpenFga.Sdk/Model/WriteRequestDeletes.cs
 src/OpenFga.Sdk/Model/WriteRequestWrites.cs
-src/OpenFga.Sdk/OpenFga.Sdk.csproj

CHANGELOG.md

@@ -2,6 +2,16 @@
 
 ## [Unreleased](https://github.com/openfga/dotnet-sdk/compare/v0.8.0...HEAD)
 
+### Added
+- feat: add server-side `BatchCheck()` method using `/batch-check` API endpoint
+  - See [Batch Check documentation](README.md#batch-check) for usage examples and configuration
+
+### Changed
+- **BREAKING**: Existing `BatchCheck()` renamed to `ClientBatchCheck()`
+  - New server-side `BatchCheck()` method requires [OpenFGA server v1.8.0+](https://github.com/openfga/openfga/releases/tag/v1.8.0)
+  - For configuration options and behavior details, see [README documentation](README.md#batch-check)
+
+### Fixed
 - fix: ApiToken credentials no longer cause reserved header exception (#146)
 
 ## v0.8.0

README.md

@@ -38,6 +38,7 @@ This is an autogenerated SDK for OpenFGA. It provides a wrapper around the [Open
     - [Relationship Queries](#relationship-queries)
       - [Check](#check)
       - [Batch Check](#batch-check)
+      - [Client Batch Check](#client-batch-check)
       - [Expand](#expand)
       - [List Objects](#list-objects)
       - [List Relations](#list-relations)
@@ -642,8 +643,15 @@ var response = await fgaClient.Check(body, options);
 
 ##### Batch Check
 
-Run a set of [checks](#check). Batch Check will return `allowed: false` if it encounters an error, and will return the error in the body.
-If 429s or 5xxs are encountered, the underlying check will retry up to 3 times before giving up.
+Similar to [check](#check), but instead of checking a single user-object relationship, accepts a list of relationships to check. Requires OpenFGA server version [1.8.0](https://github.com/openfga/openfga/releases/tag/v1.8.0) or greater.
+
+This method automatically handles:
+- Generating correlation IDs for checks that don't have one
+- Validating that correlation IDs are unique
+- Chunking requests based on `MaxBatchSize` (default: 50)
+- Executing batches in parallel based on `MaxParallelRequests` (default: 10)
+
+If 429s or 5xxs are encountered, the underlying requests will retry up to 3 times before giving up.
 
 > **Note**: The order of `BatchCheck` results is not guaranteed to match the order of the checks provided. Use `correlationId` to pair responses with requests.
 
@@ -652,87 +660,139 @@ var options = new ClientBatchCheckOptions {
     // You can rely on the model id set in the configuration or override it for this specific request
     AuthorizationModelId = "01GXSA8YR785C4FYS3C0RTG7B1",
     MaxParallelRequests = 5, // Max number of requests to issue in parallel, defaults to 10
+    MaxBatchSize = 20, // Max number of checks per batch request, defaults to 50
 };
-var body = new List<ClientCheckRequest>(){
-    new() {
-        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-        Relation = "viewer",
-        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-        ContextualTuples = new List<ClientTupleKey>() {
-            new() {
-                User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-                Relation = "editor",
-                Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-            }
+var body = new ClientBatchCheckRequest {
+    Checks = new List<ClientBatchCheckItem>() {
+        new() {
+            User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+            Relation = "viewer",
+            Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+            ContextualTuples = new ContextualTupleKeys {
+                TupleKeys = new List<TupleKey>() {
+                    new() {
+                        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+                        Relation = "editor",
+                        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+                    }
+                }
+            },
+            // CorrelationId is optional - will be auto-generated if not provided
         },
-    },
-    new() {
-        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-        Relation = "admin",
-        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-        ContextualTuples = new List<ClientTupleKey>() {
-            new() {
-                User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-                Relation = "editor",
-                Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-            }
+        new() {
+            User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+            Relation = "admin",
+            Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+            ContextualTuples = new ContextualTupleKeys {
+                TupleKeys = new List<TupleKey>() {
+                    new() {
+                        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+                        Relation = "editor",
+                        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+                    }
+                }
+            },
+            CorrelationId = "check-admin-01234", // Custom correlation ID
         },
-    },
-    new() {
-        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-        Relation = "creator",
-        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-    },
-    new() {
-        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-        Relation = "deleter",
-        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+        new() {
+            User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+            Relation = "creator",
+            Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+        },
+        new() {
+            User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+            Relation = "deleter",
+            Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+        }
     }
 };
 
 var response = await fgaClient.BatchCheck(body, options);
 
 /*
-response.Responses = [{
+response.Result = [{
+  CorrelationId: "01JA8PM3QM7VBPGB8KMPK8SBD5", // Auto-generated
   Allowed: false,
   Request: {
     User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
     Relation: "viewer",
     Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-    ContextualTuples: [{
-      User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-      Relation: "editor",
-      Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a"
-    }]
+    ContextualTuples: { ... }
   }
 }, {
+  CorrelationId: "check-admin-01234", // Custom ID
   Allowed: false,
   Request: {
     User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
     Relation: "admin",
     Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-    ContextualTuples: [{
-      User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
-      Relation: "editor",
-      Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a"
-    }]
+    ContextualTuples: { ... }
   }
 }, {
+  CorrelationId: "01JA8PMM6A90NV5ET0F28CYSZQ",
   Allowed: false,
   Request: {
     User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
     Relation: "creator",
     Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
   },
-  Error: <FgaError ...>
+  Error: { Message: "...", InputError: "..." } // Error details if check failed
 }, {
+  CorrelationId: "01JA8PN7K2XBVW9R3FQMH5JZTA",
   Allowed: true,
   Request: {
     User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
     Relation: "deleter",
     Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
-  }},
-]
+  }
+}]
+*/
+```
+
+##### Client Batch Check
+
+Run a set of [checks](#check) by making individual `/check` API calls in parallel on the client side. This is useful for small batches (< 10 checks) when you want more control over each individual request.
+
+For larger batches or to use the server-side batch endpoint, use [`BatchCheck`](#batch-check) instead.
+
+```csharp
+var options = new ClientBatchCheckClientOptions {
+    AuthorizationModelId = "01GXSA8YR785C4FYS3C0RTG7B1",
+    MaxParallelRequests = 5, // Max number of requests to issue in parallel, defaults to 10
+};
+var body = new List<ClientCheckRequest>() {
+    new() {
+        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+        Relation = "viewer",
+        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+    },
+    new() {
+        User = "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+        Relation = "admin",
+        Object = "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a",
+    }
+};
+
+var response = await fgaClient.ClientBatchCheck(body, options);
+
+/*
+response.Responses = [{
+  Allowed: false,
+  Request: {
+    User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+    Relation: "viewer",
+    Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a"
+  },
+  Error: null
+}, {
+  Allowed: true,
+  Request: {
+    User: "user:81684243-9356-4421-8fbf-a4f8d36aa31b",
+    Relation: "admin",
+    Object: "document:0192ab2a-d83f-756d-9397-c5ed9f3cb69a"
+  },
+  Error: null
+}]
 */
 ```
 

example/Example1/Example1.cs

@@ -232,17 +232,42 @@ await fgaClient.Write(new ClientWriteRequest {
             });
             Console.WriteLine("Allowed: " + checkResponse.Allowed);
 
-            // Batch checking for access with context
-            Console.WriteLine("Batch checking for access with context");
-            var batchCheckResponse = await fgaClient.BatchCheck(new List<ClientCheckRequest>() {
+            // Client-side batch checking (individual check calls in parallel)
+            Console.WriteLine("Client-side batch checking for access with context");
+            var clientBatchCheckResponse = await fgaClient.ClientBatchCheck(new List<ClientCheckRequest>() {
                 new () {
                     User = "user:anne",
                     Relation = "viewer",
                     Object = "document:roadmap",
                     Context = new { ViewCount = 100 }
                 }
             });
-            Console.WriteLine("Responses[0].Allowed: " + batchCheckResponse.Responses[0].Allowed);
+            Console.WriteLine("ClientBatchCheck - Responses[0].Allowed: " + clientBatchCheckResponse.Responses[0].Allowed);
+
+            // Server-side batch checking (using /batch-check endpoint)
+            Console.WriteLine("Server-side batch checking for access with context");
+            var batchCheckResponse = await fgaClient.BatchCheck(new ClientBatchCheckRequest {
+                Checks = new List<ClientBatchCheckItem>() {
+                    new () {
+                        User = "user:anne",
+                        Relation = "viewer",
+                        Object = "document:roadmap",
+                        Context = new { ViewCount = 100 },
+                        // CorrelationId is optional - will be auto-generated if not provided
+                    },
+                    new () {
+                        User = "user:anne",
+                        Relation = "writer",
+                        Object = "document:roadmap",
+                        Context = new { ViewCount = 100 },
+                        CorrelationId = "custom-correlation-id-123"
+                    }
+                }
+            });
+            Console.WriteLine("BatchCheck - Result count: " + batchCheckResponse.Result.Count);
+            foreach (var result in batchCheckResponse.Result) {
+                Console.WriteLine($"  CorrelationId: {result.CorrelationId}, Allowed: {result.Allowed}");
+            }
 
             // Listing relations with context
             Console.WriteLine("Listing relations with context");

example/Example1/Example1.csproj

@@ -9,10 +9,16 @@
   </PropertyGroup>
 
   <!--  To target the released version, uncomment this section -->
+
   <ItemGroup>
     <PackageReference Include="OpenFga.Sdk" Version="0.8.0"><PrivateAssets>all</PrivateAssets></PackageReference>
   </ItemGroup>
 
+  <!--  To target the local build, use project reference -->
+  <ItemGroup>
+    <ProjectReference Include="..\..\src\OpenFga.Sdk\OpenFga.Sdk.csproj" />
+  </ItemGroup>
+
   <!--  To target the local build, uncomment this section (make sure to build that project first) -->
   <!--  <ItemGroup>-->
   <!--    <Reference Include="OpenFga.Sdk">-->