diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 3a4f32499..3c157cf31 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -90,12 +90,3 @@ jobs:
-d "{\"ref\":\"v1.0.4\",\"inputs\":{\"version\": \"${{ github.ref_name }}\"}}" \
"https://api.github.com/repos/emqx/emqx-ci-helper/actions/workflows/update_emqx_homebrew.yaml/dispatches"
fi
- - uses: emqx/push-helm-action@v1
- if: github.event_name == 'release' || inputs.publish_release_artefacts
- with:
- charts_dir: "${{ github.workspace }}/deploy/charts/${{ steps.profile.outputs.profile }}"
- version: ${{ steps.profile.outputs.version }}
- aws_access_key_id: ${{ secrets.AWS_ACCESS_KEY_ID }}
- aws_secret_access_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
- aws_region: "us-west-2"
- aws_bucket_name: "repos-emqx-io"
diff --git a/.github/workflows/upload-helm-charts.yaml b/.github/workflows/upload-helm-charts.yaml
new file mode 100644
index 000000000..319b50e24
--- /dev/null
+++ b/.github/workflows/upload-helm-charts.yaml
@@ -0,0 +1,52 @@
+name: Upload helm charts
+on:
+ release:
+ types:
+ - published
+ workflow_dispatch:
+ inputs:
+ tag:
+ type: string
+ required: true
+
+jobs:
+ upload:
+ runs-on: ubuntu-20.04
+ strategy:
+ fail-fast: false
+ steps:
+ - uses: aws-actions/configure-aws-credentials@v1-node16
+ with:
+ aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+ aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+ aws-region: ${{ secrets.AWS_DEFAULT_REGION }}
+ - uses: actions/checkout@v3
+ with:
+ ref: ${{ github.event.inputs.tag }}
+ - name: Detect profile
+ id: profile
+ run: |
+ if git describe --tags --match '[v|e]*' --exact; then
+ REF=$(git describe --tags --match '[v|e]*' --exact)
+ else
+ echo "Only release tags matching '[v|e]*' are supported"
+ exit 1
+ fi
+ case "$REF" in
+ v*)
+ echo "profile=emqx" >> $GITHUB_OUTPUT
+ echo "version=$(./pkg-vsn.sh emqx)" >> $GITHUB_OUTPUT
+ ;;
+ e*)
+ echo "profile=emqx-enterprise" >> $GITHUB_OUTPUT
+ echo "version=$(./pkg-vsn.sh emqx-enterprise)" >> $GITHUB_OUTPUT
+ ;;
+ esac
+ - uses: emqx/push-helm-action@v1
+ with:
+ charts_dir: "${{ github.workspace }}/deploy/charts/${{ steps.profile.outputs.profile }}"
+ version: ${{ steps.profile.outputs.version }}
+ aws_access_key_id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+ aws_secret_access_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+ aws_region: "us-west-2"
+ aws_bucket_name: "repos-emqx-io"
diff --git a/Makefile b/Makefile
index 246a2d522..02bcbf458 100644
--- a/Makefile
+++ b/Makefile
@@ -6,7 +6,7 @@ export EMQX_DEFAULT_BUILDER = ghcr.io/emqx/emqx-builder/5.0-17:1.13.4-24.2.1-1-d
export EMQX_DEFAULT_RUNNER = debian:11-slim
export OTP_VSN ?= $(shell $(CURDIR)/scripts/get-otp-vsn.sh)
export ELIXIR_VSN ?= $(shell $(CURDIR)/scripts/get-elixir-vsn.sh)
-export EMQX_DASHBOARD_VERSION ?= v1.1.1
+export EMQX_DASHBOARD_VERSION ?= v1.1.2
export EMQX_EE_DASHBOARD_VERSION ?= e1.0.0
export EMQX_REL_FORM ?= tgz
export QUICER_DOWNLOAD_FROM_RELEASE = 1
diff --git a/apps/emqx/i18n/emqx_schema_i18n.conf b/apps/emqx/i18n/emqx_schema_i18n.conf
index 714a08704..e7c4890f7 100644
--- a/apps/emqx/i18n/emqx_schema_i18n.conf
+++ b/apps/emqx/i18n/emqx_schema_i18n.conf
@@ -2045,12 +2045,18 @@ Type of the rate limit.
base_listener_enable_authn {
desc {
en: """
-Set true (default) to enable client authentication on this listener.
-When set to false clients will be allowed to connect without authentication.
+Set true (default) to enable client authentication on this listener, the authentication
+process goes through the configured authentication chain.
+When set to false to allow any clients with or without authentication information such as username or password to log in.
+When set to quick_deny_anonymous, it behaves like when set to true but clients will be
+denied immediately without going through any authenticators if username is not provided. This is useful to fence off
+anonymous clients early.
"""
zh: """
-配置 true (默认值)启用客户端进行身份认证。
-配置 false 时,将不对客户端做任何认证。
+配置 true (默认值)启用客户端进行身份认证,通过检查认配置的认认证器链来决定是否允许接入。
+配置 false 时,将不对客户端做任何认证,任何客户端,不论是不是携带用户名等认证信息,都可以接入。
+配置 quick_deny_anonymous 时,行为跟 true 类似,但是会对匿名
+客户直接拒绝,不做使用任何认证器对客户端进行身份检查。
"""
}
label: {
diff --git a/apps/emqx/include/emqx_release.hrl b/apps/emqx/include/emqx_release.hrl
index 1335ed700..1dfb1bd61 100644
--- a/apps/emqx/include/emqx_release.hrl
+++ b/apps/emqx/include/emqx_release.hrl
@@ -32,7 +32,7 @@
%% `apps/emqx/src/bpapi/README.md'
%% Community edition
--define(EMQX_RELEASE_CE, "5.0.10").
+-define(EMQX_RELEASE_CE, "5.0.11").
%% Enterprise edition
-define(EMQX_RELEASE_EE, "5.0.0-alpha.1").
diff --git a/apps/emqx/src/emqx.app.src b/apps/emqx/src/emqx.app.src
index 3d1fe32d3..e687e9905 100644
--- a/apps/emqx/src/emqx.app.src
+++ b/apps/emqx/src/emqx.app.src
@@ -3,7 +3,7 @@
{id, "emqx"},
{description, "EMQX Core"},
% strict semver, bump manually!
- {vsn, "5.0.11"},
+ {vsn, "5.0.12"},
{modules, []},
{registered, []},
{applications, [
diff --git a/apps/emqx/src/emqx_access_control.erl b/apps/emqx/src/emqx_access_control.erl
index d99699a9a..30d56f257 100644
--- a/apps/emqx/src/emqx_access_control.erl
+++ b/apps/emqx/src/emqx_access_control.erl
@@ -38,11 +38,22 @@
| {ok, map(), binary()}
| {continue, map()}
| {continue, binary(), map()}
- | {error, term()}.
+ | {error, not_authorized}.
authenticate(Credential) ->
- case run_hooks('client.authenticate', [Credential], {ok, #{is_superuser => false}}) of
+ %% pre-hook quick authentication or
+ %% if auth backend returning nothing but just 'ok'
+ %% it means it's not a superuser, or there is no way to tell.
+ NotSuperUser = #{is_superuser => false},
+ case emqx_authentication:pre_hook_authenticate(Credential) of
ok ->
- {ok, #{is_superuser => false}};
+ {ok, NotSuperUser};
+ continue ->
+ case run_hooks('client.authenticate', [Credential], {ok, #{is_superuser => false}}) of
+ ok ->
+ {ok, NotSuperUser};
+ Other ->
+ Other
+ end;
Other ->
Other
end.
diff --git a/apps/emqx/src/emqx_alarm.erl b/apps/emqx/src/emqx_alarm.erl
index a89063870..7368b442d 100644
--- a/apps/emqx/src/emqx_alarm.erl
+++ b/apps/emqx/src/emqx_alarm.erl
@@ -41,7 +41,8 @@
delete_all_deactivated_alarms/0,
get_alarms/0,
get_alarms/1,
- format/1
+ format/1,
+ format/2
]).
%% gen_server callbacks
@@ -169,12 +170,15 @@ get_alarms(activated) ->
get_alarms(deactivated) ->
gen_server:call(?MODULE, {get_alarms, deactivated}).
-format(#activated_alarm{name = Name, message = Message, activate_at = At, details = Details}) ->
+format(Alarm) ->
+ format(node(), Alarm).
+
+format(Node, #activated_alarm{name = Name, message = Message, activate_at = At, details = Details}) ->
Now = erlang:system_time(microsecond),
%% mnesia db stored microsecond for high frequency alarm
%% format for dashboard using millisecond
#{
- node => node(),
+ node => Node,
name => Name,
message => Message,
%% to millisecond
@@ -182,7 +186,7 @@ format(#activated_alarm{name = Name, message = Message, activate_at = At, detail
activate_at => to_rfc3339(At),
details => Details
};
-format(#deactivated_alarm{
+format(Node, #deactivated_alarm{
name = Name,
message = Message,
activate_at = At,
@@ -190,7 +194,7 @@ format(#deactivated_alarm{
deactivate_at = DAt
}) ->
#{
- node => node(),
+ node => Node,
name => Name,
message => Message,
%% to millisecond
diff --git a/apps/emqx/src/emqx_authentication.erl b/apps/emqx/src/emqx_authentication.erl
index 964a97dfb..749f5bfd7 100644
--- a/apps/emqx/src/emqx_authentication.erl
+++ b/apps/emqx/src/emqx_authentication.erl
@@ -29,9 +29,13 @@
-include_lib("stdlib/include/ms_transform.hrl").
-define(CONF_ROOT, ?EMQX_AUTHENTICATION_CONFIG_ROOT_NAME_ATOM).
+-define(IS_UNDEFINED(X), (X =:= undefined orelse X =:= <<>>)).
%% The authentication entrypoint.
--export([authenticate/2]).
+-export([
+ pre_hook_authenticate/1,
+ authenticate/2
+]).
%% Authenticator manager process start/stop
-export([
@@ -221,10 +225,23 @@ when
%%------------------------------------------------------------------------------
%% Authenticate
%%------------------------------------------------------------------------------
-
-authenticate(#{enable_authn := false}, _AuthResult) ->
+-spec pre_hook_authenticate(emqx_types:clientinfo()) ->
+ ok | continue | {error, not_authorized}.
+pre_hook_authenticate(#{enable_authn := false}) ->
inc_authenticate_metric('authentication.success.anonymous'),
- ?TRACE_RESULT("authentication_result", ignore, enable_authn_false);
+ ?TRACE_RESULT("authentication_result", ok, enable_authn_false);
+pre_hook_authenticate(#{enable_authn := quick_deny_anonymous} = Credential) ->
+ case maps:get(username, Credential, undefined) of
+ U when ?IS_UNDEFINED(U) ->
+ ?TRACE_RESULT(
+ "authentication_result", {error, not_authorized}, enable_authn_false
+ );
+ _ ->
+ continue
+ end;
+pre_hook_authenticate(_) ->
+ continue.
+
authenticate(#{listener := Listener, protocol := Protocol} = Credential, _AuthResult) ->
case get_authenticators(Listener, global_chain(Protocol)) of
{ok, ChainName, Authenticators} ->
diff --git a/apps/emqx/src/emqx_cm.erl b/apps/emqx/src/emqx_cm.erl
index d39f43686..5adc7a811 100644
--- a/apps/emqx/src/emqx_cm.erl
+++ b/apps/emqx/src/emqx_cm.erl
@@ -650,8 +650,8 @@ init([]) ->
TabOpts = [public, {write_concurrency, true}],
ok = emqx_tables:new(?CHAN_TAB, [bag, {read_concurrency, true} | TabOpts]),
ok = emqx_tables:new(?CHAN_CONN_TAB, [bag | TabOpts]),
- ok = emqx_tables:new(?CHAN_INFO_TAB, [set, compressed | TabOpts]),
- ok = emqx_tables:new(?CHAN_LIVE_TAB, [set, {write_concurrency, true} | TabOpts]),
+ ok = emqx_tables:new(?CHAN_INFO_TAB, [ordered_set, compressed | TabOpts]),
+ ok = emqx_tables:new(?CHAN_LIVE_TAB, [ordered_set, {write_concurrency, true} | TabOpts]),
ok = emqx_stats:update_interval(chan_stats, fun ?MODULE:stats_fun/0),
State = #{chan_pmon => emqx_pmon:new()},
{ok, State}.
diff --git a/apps/emqx/src/emqx_map_lib.erl b/apps/emqx/src/emqx_map_lib.erl
index c714d7dbc..b01391c7b 100644
--- a/apps/emqx/src/emqx_map_lib.erl
+++ b/apps/emqx/src/emqx_map_lib.erl
@@ -23,6 +23,7 @@
deep_force_put/3,
deep_remove/2,
deep_merge/2,
+ binary_key_map/1,
safe_atom_key_map/1,
unsafe_atom_key_map/1,
jsonable_map/1,
@@ -153,6 +154,17 @@ deep_convert(Val, _, _Args) ->
unsafe_atom_key_map(Map) ->
covert_keys_to_atom(Map, fun(K) -> binary_to_atom(K, utf8) end).
+-spec binary_key_map(map()) -> map().
+binary_key_map(Map) ->
+ deep_convert(
+ Map,
+ fun
+ (K, V) when is_atom(K) -> {atom_to_binary(K, utf8), V};
+ (K, V) when is_binary(K) -> {K, V}
+ end,
+ []
+ ).
+
-spec safe_atom_key_map(#{binary() | atom() => any()}) -> #{atom() => any()}.
safe_atom_key_map(Map) ->
covert_keys_to_atom(Map, fun(K) -> binary_to_existing_atom(K, utf8) end).
diff --git a/apps/emqx/src/emqx_schema.erl b/apps/emqx/src/emqx_schema.erl
index 1024cef48..eb5238cfe 100644
--- a/apps/emqx/src/emqx_schema.erl
+++ b/apps/emqx/src/emqx_schema.erl
@@ -1668,7 +1668,7 @@ base_listener(Bind) ->
)},
{"enable_authn",
sc(
- boolean(),
+ hoconsc:enum([true, false, quick_deny_anonymous]),
#{
desc => ?DESC(base_listener_enable_authn),
default => true
diff --git a/apps/emqx/test/emqx_access_control_SUITE.erl b/apps/emqx/test/emqx_access_control_SUITE.erl
index 7b6b4f463..c079ac125 100644
--- a/apps/emqx/test/emqx_access_control_SUITE.erl
+++ b/apps/emqx/test/emqx_access_control_SUITE.erl
@@ -37,7 +37,8 @@ init_per_testcase(_, Config) ->
Config.
end_per_testcase(_, _Config) ->
- ok = emqx_hooks:del('client.authorize', {?MODULE, authz_stub}).
+ ok = emqx_hooks:del('client.authorize', {?MODULE, authz_stub}),
+ ok = emqx_hooks:del('client.authenticate', {?MODULE, quick_deny_anonymous_authn}).
t_authenticate(_) ->
?assertMatch({ok, _}, emqx_access_control:authenticate(clientinfo())).
@@ -60,6 +61,37 @@ t_delayed_authorize(_) ->
?assertEqual(deny, emqx_access_control:authorize(clientinfo(), Publish2, InvalidTopic)),
ok.
+t_quick_deny_anonymous(_) ->
+ ok = emqx_hooks:put(
+ 'client.authenticate',
+ {?MODULE, quick_deny_anonymous_authn, []},
+ ?HP_AUTHN
+ ),
+
+ RawClient0 = clientinfo(),
+ RawClient = RawClient0#{username => undefined},
+
+ %% No name, No authn
+ Client1 = RawClient#{enable_authn => false},
+ ?assertMatch({ok, _}, emqx_access_control:authenticate(Client1)),
+
+ %% No name, With quick_deny_anonymous
+ Client2 = RawClient#{enable_authn => quick_deny_anonymous},
+ ?assertMatch({error, _}, emqx_access_control:authenticate(Client2)),
+
+ %% Bad name, With quick_deny_anonymous
+ Client3 = RawClient#{enable_authn => quick_deny_anonymous, username => <<"badname">>},
+ ?assertMatch({error, _}, emqx_access_control:authenticate(Client3)),
+
+ %% Good name, With quick_deny_anonymous
+ Client4 = RawClient#{enable_authn => quick_deny_anonymous, username => <<"goodname">>},
+ ?assertMatch({ok, _}, emqx_access_control:authenticate(Client4)),
+
+ %% Name, With authn
+ Client5 = RawClient#{enable_authn => true, username => <<"badname">>},
+ ?assertMatch({error, _}, emqx_access_control:authenticate(Client5)),
+ ok.
+
%%--------------------------------------------------------------------
%% Helper functions
%%--------------------------------------------------------------------
@@ -67,6 +99,11 @@ t_delayed_authorize(_) ->
authz_stub(_Client, _PubSub, ValidTopic, _DefaultResult, ValidTopic) -> {stop, #{result => allow}};
authz_stub(_Client, _PubSub, _Topic, _DefaultResult, _ValidTopic) -> {stop, #{result => deny}}.
+quick_deny_anonymous_authn(#{username := <<"badname">>}, _AuthResult) ->
+ {stop, {error, not_authorized}};
+quick_deny_anonymous_authn(_ClientInfo, _AuthResult) ->
+ {stop, {ok, #{is_superuser => false}}}.
+
clientinfo() -> clientinfo(#{}).
clientinfo(InitProps) ->
maps:merge(
diff --git a/apps/emqx/test/emqx_bpapi_static_checks.erl b/apps/emqx/test/emqx_bpapi_static_checks.erl
index d87258201..69cede2bc 100644
--- a/apps/emqx/test/emqx_bpapi_static_checks.erl
+++ b/apps/emqx/test/emqx_bpapi_static_checks.erl
@@ -62,9 +62,10 @@
%% List of business-layer functions that are exempt from the checks:
%% erlfmt-ignore
-define(EXEMPTIONS,
- "emqx_mgmt_api:do_query/6" % Reason: legacy code. A fun and a QC query are
- % passed in the args, it's futile to try to statically
- % check it
+ % Reason: legacy code. A fun and a QC query are
+ % passed in the args, it's futile to try to statically
+ % check it
+ "emqx_mgmt_api:do_query/2, emqx_mgmt_api:collect_total_from_tail_nodes/3"
).
-define(XREF, myxref).
diff --git a/apps/emqx/test/emqx_common_test_helpers.erl b/apps/emqx/test/emqx_common_test_helpers.erl
index f195e083c..2d51f6f14 100644
--- a/apps/emqx/test/emqx_common_test_helpers.erl
+++ b/apps/emqx/test/emqx_common_test_helpers.erl
@@ -519,21 +519,51 @@ ensure_quic_listener(Name, UdpPort) ->
%% Clusterisation and multi-node testing
%%
+-type cluster_spec() :: [node_spec()].
+-type node_spec() :: role() | {role(), shortname()} | {role(), shortname(), node_opts()}.
+-type role() :: core | replicant.
+-type shortname() :: atom().
+-type nodename() :: atom().
+-type node_opts() :: #{
+ %% Need to loaded apps. These apps will be loaded once the node started
+ load_apps => list(),
+ %% Need to started apps. It is the first arg passed to emqx_common_test_helpers:start_apps/2
+ apps => list(),
+ %% Extras app starting handler. It is the second arg passed to emqx_common_test_helpers:start_apps/2
+ env_handler => fun((AppName :: atom()) -> term()),
+ %% Application env preset before calling `emqx_common_test_helpers:start_apps/2`
+ env => {AppName :: atom(), Key :: atom(), Val :: term()},
+ %% Whether to execute `emqx_config:init_load(SchemaMod)`
+ %% default: true
+ load_schema => boolean(),
+ %% Eval by emqx_config:put/2
+ conf => [{KeyPath :: list(), Val :: term()}],
+ %% Fast option to config listener port
+ %% default rule:
+ %% - tcp: base_port
+ %% - ssl: base_port + 1
+ %% - ws : base_port + 3
+ %% - wss: base_port + 4
+ listener_ports => [{Type :: tcp | ssl | ws | wss, inet:port_number()}]
+}.
+
+-spec emqx_cluster(cluster_spec()) -> [{shortname(), node_opts()}].
emqx_cluster(Specs) ->
emqx_cluster(Specs, #{}).
+-spec emqx_cluster(cluster_spec(), node_opts()) -> [{shortname(), node_opts()}].
emqx_cluster(Specs, CommonOpts) when is_list(CommonOpts) ->
emqx_cluster(Specs, maps:from_list(CommonOpts));
emqx_cluster(Specs0, CommonOpts) ->
Specs1 = lists:zip(Specs0, lists:seq(1, length(Specs0))),
Specs = expand_node_specs(Specs1, CommonOpts),
- CoreNodes = [node_name(Name) || {{core, Name, _}, _} <- Specs],
- %% Assign grpc ports:
+ %% Assign grpc ports
GenRpcPorts = maps:from_list([
{node_name(Name), {tcp, gen_rpc_port(base_port(Num))}}
|| {{_, Name, _}, Num} <- Specs
]),
%% Set the default node of the cluster:
+ CoreNodes = [node_name(Name) || {{core, Name, _}, _} <- Specs],
JoinTo =
case CoreNodes of
[First | _] -> First;
@@ -554,6 +584,8 @@ emqx_cluster(Specs0, CommonOpts) ->
].
%% Lower level starting API
+
+-spec start_slave(shortname(), node_opts()) -> nodename().
start_slave(Name, Opts) ->
{ok, Node} = ct_slave:start(
list_to_atom(atom_to_list(Name) ++ "@" ++ host()),
@@ -590,6 +622,7 @@ epmd_path() ->
%% Node initialization
+-spec setup_node(nodename(), node_opts()) -> ok.
setup_node(Node, Opts) when is_list(Opts) ->
setup_node(Node, maps:from_list(Opts));
setup_node(Node, Opts) when is_map(Opts) ->
diff --git a/apps/emqx_authn/src/enhanced_authn/emqx_enhanced_authn_scram_mnesia.erl b/apps/emqx_authn/src/enhanced_authn/emqx_enhanced_authn_scram_mnesia.erl
index cb3fad7dc..ddc1bb464 100644
--- a/apps/emqx_authn/src/enhanced_authn/emqx_enhanced_authn_scram_mnesia.erl
+++ b/apps/emqx_authn/src/enhanced_authn/emqx_enhanced_authn_scram_mnesia.erl
@@ -47,7 +47,8 @@
]).
-export([
- query/4,
+ qs2ms/2,
+ run_fuzzy_filter/2,
format_user_info/1,
group_match_spec/1
]).
@@ -66,7 +67,6 @@
{<<"user_group">>, binary},
{<<"is_superuser">>, atom}
]).
--define(QUERY_FUN, {?MODULE, query}).
-type user_group() :: binary().
@@ -262,42 +262,30 @@ lookup_user(UserID, #{user_group := UserGroup}) ->
list_users(QueryString, #{user_group := UserGroup}) ->
NQueryString = QueryString#{<<"user_group">> => UserGroup},
- emqx_mgmt_api:node_query(node(), NQueryString, ?TAB, ?AUTHN_QSCHEMA, ?QUERY_FUN).
-
-%%--------------------------------------------------------------------
-%% Query Functions
-
-query(Tab, {QString, []}, Continuation, Limit) ->
- Ms = ms_from_qstring(QString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_user_info/1
- );
-query(Tab, {QString, FuzzyQString}, Continuation, Limit) ->
- Ms = ms_from_qstring(QString),
- FuzzyFilterFun = fuzzy_filter_fun(FuzzyQString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_user_info/1
+ emqx_mgmt_api:node_query(
+ node(),
+ ?TAB,
+ NQueryString,
+ ?AUTHN_QSCHEMA,
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_user_info/1
).
%%--------------------------------------------------------------------
-%% Match funcs
+%% QueryString to MatchSpec
+
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {QString, Fuzzy}) ->
+ #{
+ match_spec => ms_from_qstring(QString),
+ fuzzy_fun => fuzzy_filter_fun(Fuzzy)
+ }.
%% Fuzzy username funcs
+fuzzy_filter_fun([]) ->
+ undefined;
fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
run_fuzzy_filter(_, []) ->
true;
diff --git a/apps/emqx_authn/src/simple_authn/emqx_authn_mnesia.erl b/apps/emqx_authn/src/simple_authn/emqx_authn_mnesia.erl
index 7276ad428..415d23c25 100644
--- a/apps/emqx_authn/src/simple_authn/emqx_authn_mnesia.erl
+++ b/apps/emqx_authn/src/simple_authn/emqx_authn_mnesia.erl
@@ -49,7 +49,8 @@
]).
-export([
- query/4,
+ qs2ms/2,
+ run_fuzzy_filter/2,
format_user_info/1,
group_match_spec/1
]).
@@ -84,7 +85,6 @@
{<<"user_group">>, binary},
{<<"is_superuser">>, atom}
]).
--define(QUERY_FUN, {?MODULE, query}).
%%------------------------------------------------------------------------------
%% Mnesia bootstrap
@@ -288,42 +288,30 @@ lookup_user(UserID, #{user_group := UserGroup}) ->
list_users(QueryString, #{user_group := UserGroup}) ->
NQueryString = QueryString#{<<"user_group">> => UserGroup},
- emqx_mgmt_api:node_query(node(), NQueryString, ?TAB, ?AUTHN_QSCHEMA, ?QUERY_FUN).
-
-%%--------------------------------------------------------------------
-%% Query Functions
-
-query(Tab, {QString, []}, Continuation, Limit) ->
- Ms = ms_from_qstring(QString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_user_info/1
- );
-query(Tab, {QString, FuzzyQString}, Continuation, Limit) ->
- Ms = ms_from_qstring(QString),
- FuzzyFilterFun = fuzzy_filter_fun(FuzzyQString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_user_info/1
+ emqx_mgmt_api:node_query(
+ node(),
+ ?TAB,
+ NQueryString,
+ ?AUTHN_QSCHEMA,
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_user_info/1
).
%%--------------------------------------------------------------------
-%% Match funcs
+%% QueryString to MatchSpec
+
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {QString, FuzzyQString}) ->
+ #{
+ match_spec => ms_from_qstring(QString),
+ fuzzy_fun => fuzzy_filter_fun(FuzzyQString)
+ }.
%% Fuzzy username funcs
+fuzzy_filter_fun([]) ->
+ undefined;
fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
run_fuzzy_filter(_, []) ->
true;
diff --git a/apps/emqx_authn/test/emqx_authn_mnesia_SUITE.erl b/apps/emqx_authn/test/emqx_authn_mnesia_SUITE.erl
index 2ab9efb1d..d9fa225bb 100644
--- a/apps/emqx_authn/test/emqx_authn_mnesia_SUITE.erl
+++ b/apps/emqx_authn/test/emqx_authn_mnesia_SUITE.erl
@@ -213,7 +213,7 @@ t_list_users(_) ->
#{
data := [#{is_superuser := false, user_id := <<"u3">>}],
- meta := #{page := 1, limit := 20, count := 1}
+ meta := #{page := 1, limit := 20, count := 0}
} = emqx_authn_mnesia:list_users(
#{
<<"page">> => 1,
diff --git a/apps/emqx_authn/test/emqx_enhanced_authn_scram_mnesia_SUITE.erl b/apps/emqx_authn/test/emqx_enhanced_authn_scram_mnesia_SUITE.erl
index 41fa5a38c..a0b5ce980 100644
--- a/apps/emqx_authn/test/emqx_enhanced_authn_scram_mnesia_SUITE.erl
+++ b/apps/emqx_authn/test/emqx_enhanced_authn_scram_mnesia_SUITE.erl
@@ -319,7 +319,7 @@ t_list_users(_) ->
is_superuser := _
}
],
- meta := #{page := 1, limit := 3, count := 1}
+ meta := #{page := 1, limit := 3, count := 0}
} = emqx_enhanced_authn_scram_mnesia:list_users(
#{
<<"page">> => 1,
diff --git a/apps/emqx_authz/src/emqx_authz.app.src b/apps/emqx_authz/src/emqx_authz.app.src
index 6ec14ac3b..e98e8c6b3 100644
--- a/apps/emqx_authz/src/emqx_authz.app.src
+++ b/apps/emqx_authz/src/emqx_authz.app.src
@@ -1,7 +1,7 @@
%% -*- mode: erlang -*-
{application, emqx_authz, [
{description, "An OTP application"},
- {vsn, "0.1.7"},
+ {vsn, "0.1.8"},
{registered, []},
{mod, {emqx_authz_app, []}},
{applications, [
diff --git a/apps/emqx_authz/src/emqx_authz_api_mnesia.erl b/apps/emqx_authz/src/emqx_authz_api_mnesia.erl
index 609974e98..090f9d1e2 100644
--- a/apps/emqx_authz/src/emqx_authz_api_mnesia.erl
+++ b/apps/emqx_authz/src/emqx_authz_api_mnesia.erl
@@ -24,8 +24,8 @@
-import(hoconsc, [mk/1, mk/2, ref/1, ref/2, array/1, enum/1]).
--define(QUERY_USERNAME_FUN, {?MODULE, query_username}).
--define(QUERY_CLIENTID_FUN, {?MODULE, query_clientid}).
+-define(QUERY_USERNAME_FUN, fun ?MODULE:query_username/2).
+-define(QUERY_CLIENTID_FUN, fun ?MODULE:query_clientid/2).
-define(ACL_USERNAME_QSCHEMA, [{<<"like_username">>, binary}]).
-define(ACL_CLIENTID_QSCHEMA, [{<<"like_clientid">>, binary}]).
@@ -49,12 +49,12 @@
%% query funs
-export([
- query_username/4,
- query_clientid/4
+ query_username/2,
+ query_clientid/2,
+ run_fuzzy_filter/2,
+ format_result/1
]).
--export([format_result/1]).
-
-define(BAD_REQUEST, 'BAD_REQUEST').
-define(NOT_FOUND, 'NOT_FOUND').
-define(ALREADY_EXISTS, 'ALREADY_EXISTS').
@@ -405,10 +405,11 @@ users(get, #{query_string := QueryString}) ->
case
emqx_mgmt_api:node_query(
node(),
- QueryString,
?ACL_TABLE,
+ QueryString,
?ACL_USERNAME_QSCHEMA,
- ?QUERY_USERNAME_FUN
+ ?QUERY_USERNAME_FUN,
+ fun ?MODULE:format_result/1
)
of
{error, page_limit_invalid} ->
@@ -440,10 +441,11 @@ clients(get, #{query_string := QueryString}) ->
case
emqx_mgmt_api:node_query(
node(),
- QueryString,
?ACL_TABLE,
+ QueryString,
?ACL_CLIENTID_QSCHEMA,
- ?QUERY_CLIENTID_FUN
+ ?QUERY_CLIENTID_FUN,
+ fun ?MODULE:format_result/1
)
of
{error, page_limit_invalid} ->
@@ -574,59 +576,27 @@ purge(delete, _) ->
end.
%%--------------------------------------------------------------------
-%% Query Functions
+%% QueryString to MatchSpec
-query_username(Tab, {_QString, []}, Continuation, Limit) ->
- Ms = emqx_authz_mnesia:list_username_rules(),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_result/1
- );
-query_username(Tab, {_QString, FuzzyQString}, Continuation, Limit) ->
- Ms = emqx_authz_mnesia:list_username_rules(),
- FuzzyFilterFun = fuzzy_filter_fun(FuzzyQString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_result/1
- ).
+-spec query_username(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+query_username(_Tab, {_QString, FuzzyQString}) ->
+ #{
+ match_spec => emqx_authz_mnesia:list_username_rules(),
+ fuzzy_fun => fuzzy_filter_fun(FuzzyQString)
+ }.
-query_clientid(Tab, {_QString, []}, Continuation, Limit) ->
- Ms = emqx_authz_mnesia:list_clientid_rules(),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_result/1
- );
-query_clientid(Tab, {_QString, FuzzyQString}, Continuation, Limit) ->
- Ms = emqx_authz_mnesia:list_clientid_rules(),
- FuzzyFilterFun = fuzzy_filter_fun(FuzzyQString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_result/1
- ).
-
-%%--------------------------------------------------------------------
-%% Match funcs
+-spec query_clientid(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+query_clientid(_Tab, {_QString, FuzzyQString}) ->
+ #{
+ match_spec => emqx_authz_mnesia:list_clientid_rules(),
+ fuzzy_fun => fuzzy_filter_fun(FuzzyQString)
+ }.
%% Fuzzy username funcs
+fuzzy_filter_fun([]) ->
+ undefined;
fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
run_fuzzy_filter(_, []) ->
true;
diff --git a/apps/emqx_bridge/src/emqx_bridge_app.erl b/apps/emqx_bridge/src/emqx_bridge_app.erl
index 3fc4d57ba..958bbf288 100644
--- a/apps/emqx_bridge/src/emqx_bridge_app.erl
+++ b/apps/emqx_bridge/src/emqx_bridge_app.erl
@@ -58,7 +58,8 @@ pre_config_update(Path, Conf, _OldConfig) when is_map(Conf) ->
post_config_update(Path, '$remove', _, OldConf, _AppEnvs) ->
_ = emqx_connector_ssl:clear_certs(filename:join(Path), OldConf);
-post_config_update(_Path, _Req, _, _OldConf, _AppEnvs) ->
+post_config_update(Path, _Req, NewConf, OldConf, _AppEnvs) ->
+ _ = emqx_connector_ssl:try_clear_certs(filename:join(Path), NewConf, OldConf),
ok.
%% internal functions
diff --git a/apps/emqx_bridge/test/data/certs/cafile b/apps/emqx_bridge/test/data/certs/cafile
new file mode 100644
index 000000000..8a9dafccd
--- /dev/null
+++ b/apps/emqx_bridge/test/data/certs/cafile
@@ -0,0 +1,29 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/apps/emqx_bridge/test/data/certs/certfile b/apps/emqx_bridge/test/data/certs/certfile
new file mode 100644
index 000000000..a198faf61
--- /dev/null
+++ b/apps/emqx_bridge/test/data/certs/certfile
@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----
+MIID/jCCAeagAwIBAgIJAKTICmq1Lg6dMA0GCSqGSIb3DQEBCwUAMDQxEjAQBgNV
+BAoMCUVNUVggVGVzdDEeMBwGA1UEAwwVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4X
+DTIxMTIzMDA4NDExMloXDTQ5MDUxNzA4NDExMlowJTESMBAGA1UECgwJRU1RWCBU
+ZXN0MQ8wDQYDVQQDDAZjbGllbnQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
+AoIBAQDzrujfx6XZTH0MWqLO6kNAeHndUZ+OGaURXvxKMPMF5dA40lxNG6cEzzlq
+0Rm61adlv8tF4kRJrs6EnRjEVoMImrdh07vGFdOTYqP01LjiBhErAzyRtSn2X8FT
+Te8ExoCRs3x61SPebGY2hOvFxuO6YDPVOSDvbbxvRgqIlM1ZXC8dOvPSSGZ+P8hV
+56EPayRthfu1FVptnkW9CyZCRI0gg95Hv8RC7bGG+tuWpkN9ZrRvohhgGR1+bDUi
+BNBpncEsSh+UgWaj8KRN8D16H6m/Im6ty467j0at49FvPx5nACL48/ghtYvzgKLc
+uKHtokKUuuzebDK/hQxN3mUSAJStAgMBAAGjIjAgMAsGA1UdDwQEAwIFoDARBglg
+hkgBhvhCAQEEBAMCB4AwDQYJKoZIhvcNAQELBQADggIBAIlVyPhOpkz3MNzQmjX7
+xgJ3vGPK5uK11n/wfjRwe2qXwZbrI2sYLVtTpUgvLDuP0gB73Vwfu7xAMdue6TRm
+CKr9z0lkQsVBtgoqzZCjd4PYLfHm4EhsOMi98OGKU5uOGD4g3yLwQWXHhbYtiZMO
+Jsj0hebYveYJt/BYTd1syGQcIcYCyVExWvSWjidfpAqjT6EF7whdubaFtuF2kaGF
+IO9yn9rWtXB5yK99uCguEmKhx3fAQxomzqweTu3WRvy9axsUH3WAUW9a4DIBSz2+
+ZSJNheFn5GktgggygJUGYqpSZHooUJW0UBs/8vX6AP+8MtINmqOGZUawmNwLWLOq
+wHyVt2YGD5TXjzzsWNSQ4mqXxM6AXniZVZK0yYNjA4ATikX1AtwunyWBR4IjyE/D
+FxYPORdZCOtywRFE1R5KLTUq/C8BNGCkYnoO78DJBO+pT0oagkQGQb0CnmC6C1db
+4lWzA9K0i4B0PyooZA+gp+5FFgaLuX1DkyeaY1J204QhHR1z/Vcyl5dpqR9hqnYP
+t8raLk9ogMDKqKA9iG0wc3CBNckD4sjVWAEeovXhElG55fD21wwhF+AnDCvX8iVK
+cBfKV6z6uxfKjGIxc2I643I5DiIn+V3DnPxYyY74Ln1lWFYmt5JREhAxPu42zq74
+e6+eIMYFszB+5gKgt6pa6ZNI
+-----END CERTIFICATE-----
diff --git a/apps/emqx_bridge/test/data/certs/keyfile b/apps/emqx_bridge/test/data/certs/keyfile
new file mode 100644
index 000000000..2f0af5d41
--- /dev/null
+++ b/apps/emqx_bridge/test/data/certs/keyfile
@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----
diff --git a/apps/emqx_bridge/test/emqx_bridge_SUITE.erl b/apps/emqx_bridge/test/emqx_bridge_SUITE.erl
index d8266f83a..dca14b829 100644
--- a/apps/emqx_bridge/test/emqx_bridge_SUITE.erl
+++ b/apps/emqx_bridge/test/emqx_bridge_SUITE.erl
@@ -156,3 +156,98 @@ setup_fake_telemetry_data() ->
{ok, _} = snabbkaffe_collector:receive_events(Sub),
ok = snabbkaffe:stop(),
ok.
+
+t_update_ssl_conf(_) ->
+ Path = [bridges, <<"mqtt">>, <<"ssl_update_test">>],
+ EnableSSLConf = #{
+ <<"connector">> =>
+ #{
+ <<"bridge_mode">> => false,
+ <<"clean_start">> => true,
+ <<"keepalive">> => <<"60s">>,
+ <<"mode">> => <<"cluster_shareload">>,
+ <<"proto_ver">> => <<"v4">>,
+ <<"server">> => <<"127.0.0.1:1883">>,
+ <<"ssl">> =>
+ #{
+ <<"cacertfile">> => cert_file("cafile"),
+ <<"certfile">> => cert_file("certfile"),
+ <<"enable">> => true,
+ <<"keyfile">> => cert_file("keyfile"),
+ <<"verify">> => <<"verify_peer">>
+ }
+ },
+ <<"direction">> => <<"ingress">>,
+ <<"local_qos">> => 1,
+ <<"payload">> => <<"${payload}">>,
+ <<"remote_qos">> => 1,
+ <<"remote_topic">> => <<"t/#">>,
+ <<"retain">> => false
+ },
+
+ emqx:update_config(Path, EnableSSLConf),
+ ?assertMatch({ok, [_, _, _]}, list_pem_dir(Path)),
+ NoSSLConf = #{
+ <<"connector">> =>
+ #{
+ <<"bridge_mode">> => false,
+ <<"clean_start">> => true,
+ <<"keepalive">> => <<"60s">>,
+ <<"max_inflight">> => 32,
+ <<"mode">> => <<"cluster_shareload">>,
+ <<"password">> => <<>>,
+ <<"proto_ver">> => <<"v4">>,
+ <<"reconnect_interval">> => <<"15s">>,
+ <<"replayq">> =>
+ #{<<"offload">> => false, <<"seg_bytes">> => <<"100MB">>},
+ <<"retry_interval">> => <<"15s">>,
+ <<"server">> => <<"127.0.0.1:1883">>,
+ <<"ssl">> =>
+ #{
+ <<"ciphers">> => <<>>,
+ <<"depth">> => 10,
+ <<"enable">> => false,
+ <<"reuse_sessions">> => true,
+ <<"secure_renegotiate">> => true,
+ <<"user_lookup_fun">> => <<"emqx_tls_psk:lookup">>,
+ <<"verify">> => <<"verify_peer">>,
+ <<"versions">> =>
+ [
+ <<"tlsv1.3">>,
+ <<"tlsv1.2">>,
+ <<"tlsv1.1">>,
+ <<"tlsv1">>
+ ]
+ },
+ <<"username">> => <<>>
+ },
+ <<"direction">> => <<"ingress">>,
+ <<"enable">> => true,
+ <<"local_qos">> => 1,
+ <<"payload">> => <<"${payload}">>,
+ <<"remote_qos">> => 1,
+ <<"remote_topic">> => <<"t/#">>,
+ <<"retain">> => false
+ },
+
+ emqx:update_config(Path, NoSSLConf),
+ ?assertMatch({error, not_dir}, list_pem_dir(Path)),
+ emqx:remove_config(Path),
+ ok.
+
+list_pem_dir(Path) ->
+ Dir = filename:join([emqx:mutable_certs_dir() | Path]),
+ case filelib:is_dir(Dir) of
+ true ->
+ file:list_dir(Dir);
+ _ ->
+ {error, not_dir}
+ end.
+
+data_file(Name) ->
+ Dir = code:lib_dir(emqx_bridge, test),
+ {ok, Bin} = file:read_file(filename:join([Dir, "data", Name])),
+ Bin.
+
+cert_file(Name) ->
+ data_file(filename:join(["certs", Name])).
diff --git a/apps/emqx_connector/src/emqx_connector_ssl.erl b/apps/emqx_connector/src/emqx_connector_ssl.erl
index 7f2fc537b..7dc6179e1 100644
--- a/apps/emqx_connector/src/emqx_connector_ssl.erl
+++ b/apps/emqx_connector/src/emqx_connector_ssl.erl
@@ -16,9 +16,12 @@
-module(emqx_connector_ssl).
+-include_lib("emqx/include/logger.hrl").
+
-export([
convert_certs/2,
- clear_certs/2
+ clear_certs/2,
+ try_clear_certs/3
]).
%% TODO: rm `connector` case after `dev/ee5.0` merged into `master`.
@@ -27,12 +30,12 @@
convert_certs(RltvDir, #{<<"connector">> := Connector} = Config) when
is_map(Connector)
->
- SSL = map_get_oneof([<<"ssl">>, ssl], Connector, undefined),
+ SSL = maps:get(<<"ssl">>, Connector, undefined),
new_ssl_config(RltvDir, Config, SSL);
convert_certs(RltvDir, #{connector := Connector} = Config) when
is_map(Connector)
->
- SSL = map_get_oneof([<<"ssl">>, ssl], Connector, undefined),
+ SSL = maps:get(ssl, Connector, undefined),
new_ssl_config(RltvDir, Config, SSL);
%% for bridges without `connector` field. i.e. webhook
convert_certs(RltvDir, #{<<"ssl">> := SSL} = Config) ->
@@ -43,21 +46,37 @@ convert_certs(RltvDir, #{ssl := SSL} = Config) ->
convert_certs(_RltvDir, Config) ->
{ok, Config}.
-clear_certs(RltvDir, #{<<"connector">> := Connector} = _Config) when
+clear_certs(RltvDir, Config) ->
+ clear_certs2(RltvDir, normalize_key_to_bin(Config)).
+
+clear_certs2(RltvDir, #{<<"connector">> := Connector} = _Config) when
is_map(Connector)
->
- OldSSL = map_get_oneof([<<"ssl">>, ssl], Connector, undefined),
+ %% TODO remove the 'connector' clause after dev/ee5.0 is merged back to master
+ %% The `connector` config layer will be removed.
+ %% for bridges with `connector` field. i.e. `mqtt_source` and `mqtt_sink`
+ OldSSL = maps:get(<<"ssl">>, Connector, undefined),
ok = emqx_tls_lib:delete_ssl_files(RltvDir, undefined, OldSSL);
-clear_certs(RltvDir, #{connector := Connector} = _Config) when
- is_map(Connector)
-->
- OldSSL = map_get_oneof([<<"ssl">>, ssl], Connector, undefined),
+clear_certs2(RltvDir, #{<<"ssl">> := OldSSL} = _Config) ->
ok = emqx_tls_lib:delete_ssl_files(RltvDir, undefined, OldSSL);
-clear_certs(RltvDir, #{<<"ssl">> := OldSSL} = _Config) ->
- ok = emqx_tls_lib:delete_ssl_files(RltvDir, undefined, OldSSL);
-clear_certs(RltvDir, #{ssl := OldSSL} = _Config) ->
- ok = emqx_tls_lib:delete_ssl_files(RltvDir, undefined, OldSSL);
-clear_certs(_RltvDir, _) ->
+clear_certs2(_RltvDir, _) ->
+ ok.
+
+try_clear_certs(RltvDir, NewConf, OldConf) ->
+ try_clear_certs2(
+ RltvDir,
+ normalize_key_to_bin(NewConf),
+ normalize_key_to_bin(OldConf)
+ ).
+
+try_clear_certs2(RltvDir, #{<<"connector">> := NewConnector}, #{<<"connector">> := OldConnector}) ->
+ NewSSL = maps:get(<<"ssl">>, NewConnector, undefined),
+ OldSSL = maps:get(<<"ssl">>, OldConnector, undefined),
+ try_clear_certs2(RltvDir, NewSSL, OldSSL);
+try_clear_certs2(RltvDir, NewSSL, OldSSL) when is_map(NewSSL) andalso is_map(OldSSL) ->
+ ok = emqx_tls_lib:delete_ssl_files(RltvDir, NewSSL, OldSSL);
+try_clear_certs2(RltvDir, NewConf, OldConf) ->
+ ?SLOG(debug, #{msg => "unexpected_conf", path => RltvDir, new => NewConf, OldConf => OldConf}),
ok.
new_ssl_config(RltvDir, Config, SSL) ->
@@ -79,12 +98,5 @@ new_ssl_config(#{<<"ssl">> := _} = Config, NewSSL) ->
new_ssl_config(Config, _NewSSL) ->
Config.
-map_get_oneof([], _Map, Default) ->
- Default;
-map_get_oneof([Key | Keys], Map, Default) ->
- case maps:find(Key, Map) of
- error ->
- map_get_oneof(Keys, Map, Default);
- {ok, Value} ->
- Value
- end.
+normalize_key_to_bin(Map) ->
+ emqx_map_lib:binary_key_map(Map).
diff --git a/apps/emqx_dashboard/src/emqx_dashboard_swagger.erl b/apps/emqx_dashboard/src/emqx_dashboard_swagger.erl
index 5ea2e0773..5af1aee89 100644
--- a/apps/emqx_dashboard/src/emqx_dashboard_swagger.erl
+++ b/apps/emqx_dashboard/src/emqx_dashboard_swagger.erl
@@ -138,7 +138,12 @@ fields(limit) ->
Meta = #{in => query, desc => Desc, default => ?DEFAULT_ROW, example => 50},
[{limit, hoconsc:mk(range(1, ?MAX_ROW_LIMIT), Meta)}];
fields(count) ->
- Meta = #{desc => <<"Results count.">>, required => true},
+ Desc = <<
+ "Total number of records counted.
"
+ "Note: this field is 0 when the queryed table is empty, "
+ "or if the query can not be optimized and requires a full table scan."
+ >>,
+ Meta = #{desc => Desc, required => true},
[{count, hoconsc:mk(non_neg_integer(), Meta)}];
fields(meta) ->
fields(page) ++ fields(limit) ++ fields(count).
diff --git a/apps/emqx_gateway/src/emqx_gateway.app.src b/apps/emqx_gateway/src/emqx_gateway.app.src
index 24cb76630..6376af6ff 100644
--- a/apps/emqx_gateway/src/emqx_gateway.app.src
+++ b/apps/emqx_gateway/src/emqx_gateway.app.src
@@ -1,7 +1,7 @@
%% -*- mode: erlang -*-
{application, emqx_gateway, [
{description, "The Gateway management application"},
- {vsn, "0.1.8"},
+ {vsn, "0.1.9"},
{registered, []},
{mod, {emqx_gateway_app, []}},
{applications, [kernel, stdlib, grpc, emqx, emqx_authn]},
diff --git a/apps/emqx_gateway/src/emqx_gateway_api_clients.erl b/apps/emqx_gateway/src/emqx_gateway_api_clients.erl
index 5f6cc25b6..d219d07cd 100644
--- a/apps/emqx_gateway/src/emqx_gateway_api_clients.erl
+++ b/apps/emqx_gateway/src/emqx_gateway_api_clients.erl
@@ -55,8 +55,10 @@
%% internal exports (for client query)
-export([
- query/4,
- format_channel_info/1
+ qs2ms/2,
+ run_fuzzy_filter/2,
+ format_channel_info/1,
+ format_channel_info/2
]).
-define(TAGS, [<<"Gateway Clients">>]).
@@ -97,8 +99,6 @@ paths() ->
{<<"lte_lifetime">>, integer}
]).
--define(QUERY_FUN, {?MODULE, query}).
-
clients(get, #{
bindings := #{name := Name0},
query_string := QString
@@ -109,10 +109,11 @@ clients(get, #{
case maps:get(<<"node">>, QString, undefined) of
undefined ->
emqx_mgmt_api:cluster_query(
- QString,
TabName,
+ QString,
?CLIENT_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_channel_info/2
);
Node0 ->
case emqx_misc:safe_to_existing_atom(Node0) of
@@ -120,10 +121,11 @@ clients(get, #{
QStringWithoutNode = maps:without([<<"node">>], QString),
emqx_mgmt_api:node_query(
Node1,
- QStringWithoutNode,
TabName,
+ QStringWithoutNode,
?CLIENT_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_channel_info/2
);
{error, _} ->
{error, Node0, {badrpc, <<"invalid node">>}}
@@ -264,27 +266,11 @@ extra_sub_props(Props) ->
).
%%--------------------------------------------------------------------
-%% query funcs
+%% QueryString to MatchSpec
-query(Tab, {Qs, []}, Continuation, Limit) ->
- Ms = qs2ms(Qs),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_channel_info/1
- );
-query(Tab, {Qs, Fuzzy}, Continuation, Limit) ->
- Ms = qs2ms(Qs),
- FuzzyFilterFun = fuzzy_filter_fun(Fuzzy),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_channel_info/1
- ).
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {Qs, Fuzzy}) ->
+ #{match_spec => qs2ms(Qs), fuzzy_fun => fuzzy_filter_fun(Fuzzy)}.
qs2ms(Qs) ->
{MtchHead, Conds} = qs2ms(Qs, 2, {#{}, []}),
@@ -339,13 +325,10 @@ ms(lifetime, X) ->
%%--------------------------------------------------------------------
%% Fuzzy filter funcs
+fuzzy_filter_fun([]) ->
+ undefined;
fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
run_fuzzy_filter(_, []) ->
true;
@@ -363,8 +346,11 @@ run_fuzzy_filter(
%%--------------------------------------------------------------------
%% format funcs
-format_channel_info({_, Infos, Stats} = R) ->
- Node = maps:get(node, Infos, node()),
+format_channel_info(ChannInfo) ->
+ format_channel_info(node(), ChannInfo).
+
+format_channel_info(WhichNode, {_, Infos, Stats} = R) ->
+ Node = maps:get(node, Infos, WhichNode),
ClientInfo = maps:get(clientinfo, Infos, #{}),
ConnInfo = maps:get(conninfo, Infos, #{}),
SessInfo = maps:get(session, Infos, #{}),
diff --git a/apps/emqx_gateway/src/mqttsn/emqx_sn_channel.erl b/apps/emqx_gateway/src/mqttsn/emqx_sn_channel.erl
index b5e051193..df3b4018e 100644
--- a/apps/emqx_gateway/src/mqttsn/emqx_sn_channel.erl
+++ b/apps/emqx_gateway/src/mqttsn/emqx_sn_channel.erl
@@ -2319,5 +2319,4 @@ returncode_name(?SN_RC2_EXCEED_LIMITATION) -> rejected_exceed_limitation;
returncode_name(?SN_RC2_REACHED_MAX_RETRY) -> reached_max_retry_times;
returncode_name(_) -> accepted.
-name_to_returncode(not_authorized) -> ?SN_RC2_NOT_AUTHORIZE;
-name_to_returncode(_) -> ?SN_RC2_NOT_AUTHORIZE.
+name_to_returncode(not_authorized) -> ?SN_RC2_NOT_AUTHORIZE.
diff --git a/apps/emqx_management/i18n/emqx_mgmt_api_publish_i18n.conf b/apps/emqx_management/i18n/emqx_mgmt_api_publish_i18n.conf
index 2a7c9def8..d845bff4b 100644
--- a/apps/emqx_management/i18n/emqx_mgmt_api_publish_i18n.conf
+++ b/apps/emqx_management/i18n/emqx_mgmt_api_publish_i18n.conf
@@ -124,4 +124,49 @@ MQTT 消息发布的错误码,这些错误码也是 MQTT 规范中 PUBACK 消
zh: "失败的详细原因。"
}
}
+ message_properties {
+ desc {
+ en: "The Properties of the PUBLISH message."
+ zh: "PUBLISH 消息里的 Property 字段。"
+ }
+ }
+ msg_payload_format_indicator {
+ desc {
+ en: """0 (0x00) Byte Indicates that the Payload is unspecified bytes, which is equivalent to not sending a Payload Format Indicator.
+
+1 (0x01) Byte Indicates that the Payload is UTF-8 Encoded Character Data. The UTF-8 data in the Payload MUST be well-formed UTF-8 as defined by the Unicode specification and restated in RFC 3629.
+"""
+ zh: "载荷格式指示标识符,0 表示载荷是未指定格式的数据,相当于没有发送载荷格式指示;1 表示载荷是 UTF-8 编码的字符数据,载荷中的 UTF-8 数据必须是按照 Unicode 的规范和 RFC 3629 的标准要求进行编码的。"
+ }
+ }
+ msg_message_expiry_interval {
+ desc {
+ en: "Identifier of the Message Expiry Interval. If the Message Expiry Interval has passed and the Server has not managed to start onward delivery to a matching subscriber, then it MUST delete the copy of the message for that subscriber."
+ zh: "消息过期间隔标识符,以秒为单位。当消失已经过期时,如果服务端还没有开始向匹配的订阅者投递该消息,则服务端会删除该订阅者的消息副本。如果不设置,则消息永远不会过期"
+ }
+ }
+ msg_response_topic {
+ desc {
+ en: "Identifier of the Response Topic.The Response Topic MUST be a UTF-8 Encoded, It MUST NOT contain wildcard characters."
+ zh: "响应主题标识符, UTF-8 编码的字符串,用作响应消息的主题名。响应主题不能包含通配符,也不能包含多个主题,否则将造成协议错误。当存在响应主题时,消息将被视作请求报文。服务端在收到应用消息时必须将响应主题原封不动的发送给所有的订阅者。"
+ }
+ }
+ msg_correlation_data {
+ desc {
+ en: "Identifier of the Correlation Data. The Server MUST send the Correlation Data unaltered to all subscribers receiving the Application Message."
+ zh: "对比数据标识符,服务端在收到应用消息时必须原封不动的把对比数据发送给所有的订阅者。对比数据只对请求消息(Request Message)的发送端和响应消息(Response Message)的接收端有意义。"
+ }
+ }
+ msg_user_properties {
+ desc {
+ en: "The User-Property key-value pairs. Note: in case there are duplicated keys, only the last one will be used."
+ zh: "指定 MQTT 消息的 User Property 键值对。注意,如果出现重复的键,只有最后一个会保留。"
+ }
+ }
+ msg_content_type {
+ desc {
+ en: "The Content Type MUST be a UTF-8 Encoded String."
+ zh: "内容类型标识符,以 UTF-8 格式编码的字符串,用来描述应用消息的内容,服务端必须把收到的应用消息中的内容类型原封不动的发送给所有的订阅者。"
+ }
+ }
}
diff --git a/apps/emqx_management/src/emqx_management.app.src b/apps/emqx_management/src/emqx_management.app.src
index ab726cbb2..a74d411f9 100644
--- a/apps/emqx_management/src/emqx_management.app.src
+++ b/apps/emqx_management/src/emqx_management.app.src
@@ -2,7 +2,7 @@
{application, emqx_management, [
{description, "EMQX Management API and CLI"},
% strict semver, bump manually!
- {vsn, "5.0.8"},
+ {vsn, "5.0.9"},
{modules, []},
{registered, [emqx_management_sup]},
{applications, [kernel, stdlib, emqx_plugins, minirest, emqx]},
diff --git a/apps/emqx_management/src/emqx_mgmt_api.erl b/apps/emqx_management/src/emqx_mgmt_api.erl
index 342228b19..9f69ed3f0 100644
--- a/apps/emqx_management/src/emqx_mgmt_api.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api.erl
@@ -21,6 +21,7 @@
-elvis([{elvis_style, dont_repeat_yourself, #{min_complexity => 100}}]).
-define(FRESH_SELECT, fresh_select).
+-define(LONG_QUERY_TIMEOUT, 50000).
-export([
paginate/3,
@@ -29,13 +30,34 @@
%% first_next query APIs
-export([
- node_query/5,
- cluster_query/4,
- select_table_with_count/5,
+ node_query/6,
+ cluster_query/5,
b2i/1
]).
--export([do_query/6]).
+-export_type([
+ match_spec_and_filter/0
+]).
+
+-type query_params() :: list() | map().
+
+-type query_schema() :: [
+ {Key :: binary(), Type :: atom | binary | integer | timestamp | ip | ip_port}
+].
+
+-type query_to_match_spec_fun() :: fun((list(), list()) -> match_spec_and_filter()).
+
+-type match_spec_and_filter() :: #{match_spec := ets:match_spec(), fuzzy_fun := fuzzy_filter_fun()}.
+
+-type fuzzy_filter_fun() :: undefined | {fun(), list()}.
+
+-type format_result_fun() ::
+ fun((node(), term()) -> term())
+ | fun((term()) -> term()).
+
+-type query_return() :: #{meta := map(), data := [term()]}.
+
+-export([do_query/2, apply_total_query/1]).
paginate(Tables, Params, {Module, FormatFun}) ->
Qh = query_handle(Tables),
@@ -117,171 +139,289 @@ limit(Params) when is_map(Params) ->
limit(Params) ->
proplists:get_value(<<"limit">>, Params, emqx_mgmt:max_row_limit()).
-init_meta(Params) ->
- Limit = b2i(limit(Params)),
- Page = b2i(page(Params)),
- #{
- page => Page,
- limit => Limit,
- count => 0
- }.
-
%%--------------------------------------------------------------------
%% Node Query
%%--------------------------------------------------------------------
-node_query(Node, QString, Tab, QSchema, QueryFun) ->
- {_CodCnt, NQString} = parse_qstring(QString, QSchema),
- page_limit_check_query(
- init_meta(QString),
- {fun do_node_query/5, [Node, Tab, NQString, QueryFun, init_meta(QString)]}
- ).
+-spec node_query(
+ node(),
+ atom(),
+ query_params(),
+ query_schema(),
+ query_to_match_spec_fun(),
+ format_result_fun()
+) -> {error, page_limit_invalid} | {error, atom(), term()} | query_return().
+node_query(Node, Tab, QString, QSchema, MsFun, FmtFun) ->
+ case parse_pager_params(QString) of
+ false ->
+ {error, page_limit_invalid};
+ Meta ->
+ {_CodCnt, NQString} = parse_qstring(QString, QSchema),
+ ResultAcc = init_query_result(),
+ QueryState = init_query_state(Tab, NQString, MsFun, Meta),
+ NResultAcc = do_node_query(
+ Node, QueryState, ResultAcc
+ ),
+ format_query_result(FmtFun, Meta, NResultAcc)
+ end.
%% @private
-do_node_query(Node, Tab, QString, QueryFun, Meta) ->
- do_node_query(Node, Tab, QString, QueryFun, _Continuation = ?FRESH_SELECT, Meta, _Results = []).
-
do_node_query(
Node,
- Tab,
- QString,
- QueryFun,
- Continuation,
- Meta = #{limit := Limit},
- Results
+ QueryState,
+ ResultAcc
) ->
- case do_query(Node, Tab, QString, QueryFun, Continuation, Limit) of
+ case do_query(Node, QueryState) of
{error, {badrpc, R}} ->
{error, Node, {badrpc, R}};
- {Len, Rows, ?FRESH_SELECT} ->
- {NMeta, NResults} = sub_query_result(Len, Rows, Limit, Results, Meta),
- #{meta => NMeta, data => NResults};
- {Len, Rows, NContinuation} ->
- {NMeta, NResults} = sub_query_result(Len, Rows, Limit, Results, Meta),
- do_node_query(Node, Tab, QString, QueryFun, NContinuation, NMeta, NResults)
+ {Rows, NQueryState = #{continuation := ?FRESH_SELECT}} ->
+ {_, NResultAcc} = accumulate_query_rows(Node, Rows, NQueryState, ResultAcc),
+ NResultAcc;
+ {Rows, NQueryState} ->
+ case accumulate_query_rows(Node, Rows, NQueryState, ResultAcc) of
+ {enough, NResultAcc} ->
+ NResultAcc;
+ {more, NResultAcc} ->
+ do_node_query(Node, NQueryState, NResultAcc)
+ end
end.
%%--------------------------------------------------------------------
%% Cluster Query
%%--------------------------------------------------------------------
-
-cluster_query(QString, Tab, QSchema, QueryFun) ->
- {_CodCnt, NQString} = parse_qstring(QString, QSchema),
- Nodes = mria_mnesia:running_nodes(),
- page_limit_check_query(
- init_meta(QString),
- {fun do_cluster_query/5, [Nodes, Tab, NQString, QueryFun, init_meta(QString)]}
- ).
+-spec cluster_query(
+ atom(),
+ query_params(),
+ query_schema(),
+ query_to_match_spec_fun(),
+ format_result_fun()
+) -> {error, page_limit_invalid} | {error, atom(), term()} | query_return().
+cluster_query(Tab, QString, QSchema, MsFun, FmtFun) ->
+ case parse_pager_params(QString) of
+ false ->
+ {error, page_limit_invalid};
+ Meta ->
+ {_CodCnt, NQString} = parse_qstring(QString, QSchema),
+ Nodes = mria_mnesia:running_nodes(),
+ ResultAcc = init_query_result(),
+ QueryState = init_query_state(Tab, NQString, MsFun, Meta),
+ NResultAcc = do_cluster_query(
+ Nodes, QueryState, ResultAcc
+ ),
+ format_query_result(FmtFun, Meta, NResultAcc)
+ end.
%% @private
-do_cluster_query(Nodes, Tab, QString, QueryFun, Meta) ->
- do_cluster_query(
- Nodes,
- Tab,
- QString,
- QueryFun,
- _Continuation = ?FRESH_SELECT,
- Meta,
- _Results = []
- ).
-
-do_cluster_query([], _Tab, _QString, _QueryFun, _Continuation, Meta, Results) ->
- #{meta => Meta, data => Results};
+do_cluster_query([], _QueryState, ResultAcc) ->
+ ResultAcc;
do_cluster_query(
[Node | Tail] = Nodes,
- Tab,
- QString,
- QueryFun,
- Continuation,
- Meta = #{limit := Limit},
- Results
+ QueryState,
+ ResultAcc
) ->
- case do_query(Node, Tab, QString, QueryFun, Continuation, Limit) of
+ case do_query(Node, QueryState) of
{error, {badrpc, R}} ->
- {error, Node, {bar_rpc, R}};
- {Len, Rows, ?FRESH_SELECT} ->
- {NMeta, NResults} = sub_query_result(Len, Rows, Limit, Results, Meta),
- do_cluster_query(Tail, Tab, QString, QueryFun, ?FRESH_SELECT, NMeta, NResults);
- {Len, Rows, NContinuation} ->
- {NMeta, NResults} = sub_query_result(Len, Rows, Limit, Results, Meta),
- do_cluster_query(Nodes, Tab, QString, QueryFun, NContinuation, NMeta, NResults)
+ {error, Node, {badrpc, R}};
+ {Rows, NQueryState} ->
+ case accumulate_query_rows(Node, Rows, NQueryState, ResultAcc) of
+ {enough, NResultAcc} ->
+ maybe_collect_total_from_tail_nodes(Tail, NQueryState, NResultAcc);
+ {more, NResultAcc} ->
+ NextNodes =
+ case NQueryState of
+ #{continuation := ?FRESH_SELECT} -> Tail;
+ _ -> Nodes
+ end,
+ do_cluster_query(NextNodes, NQueryState, NResultAcc)
+ end
+ end.
+
+maybe_collect_total_from_tail_nodes([], _QueryState, ResultAcc) ->
+ ResultAcc;
+maybe_collect_total_from_tail_nodes(Nodes, QueryState, ResultAcc) ->
+ case counting_total_fun(QueryState) of
+ false ->
+ ResultAcc;
+ _Fun ->
+ collect_total_from_tail_nodes(Nodes, QueryState, ResultAcc)
+ end.
+
+collect_total_from_tail_nodes(Nodes, QueryState, ResultAcc = #{total := TotalAcc}) ->
+ %% XXX: badfun risk? if the FuzzyFun is an anonumous func in local node
+ case rpc:multicall(Nodes, ?MODULE, apply_total_query, [QueryState], ?LONG_QUERY_TIMEOUT) of
+ {_, [Node | _]} ->
+ {error, Node, {badrpc, badnode}};
+ {ResL0, []} ->
+ ResL = lists:zip(Nodes, ResL0),
+ case lists:filter(fun({_, I}) -> not is_integer(I) end, ResL) of
+ [{Node, {badrpc, Reason}} | _] ->
+ {error, Node, {badrpc, Reason}};
+ [] ->
+ ResultAcc#{total => ResL ++ TotalAcc}
+ end
end.
%%--------------------------------------------------------------------
%% Do Query (or rpc query)
%%--------------------------------------------------------------------
+%% QueryState ::
+%% #{continuation := ets:continuation(),
+%% page := pos_integer(),
+%% limit := pos_integer(),
+%% total := [{node(), non_neg_integer()}],
+%% table := atom(),
+%% qs := {Qs, Fuzzy} %% parsed query params
+%% msfun := query_to_match_spec_fun()
+%% }
+init_query_state(Tab, QString, MsFun, _Meta = #{page := Page, limit := Limit}) ->
+ #{match_spec := Ms, fuzzy_fun := FuzzyFun} = erlang:apply(MsFun, [Tab, QString]),
+ %% assert FuzzyFun type
+ _ =
+ case FuzzyFun of
+ undefined ->
+ ok;
+ {NamedFun, Args} ->
+ true = is_list(Args),
+ {type, external} = erlang:fun_info(NamedFun, type)
+ end,
+ #{
+ page => Page,
+ limit => Limit,
+ table => Tab,
+ qs => QString,
+ msfun => MsFun,
+ mactch_spec => Ms,
+ fuzzy_fun => FuzzyFun,
+ total => [],
+ continuation => ?FRESH_SELECT
+ }.
+
%% @private This function is exempt from BPAPI
-do_query(Node, Tab, QString, {M, F}, Continuation, Limit) when Node =:= node() ->
- erlang:apply(M, F, [Tab, QString, Continuation, Limit]);
-do_query(Node, Tab, QString, QueryFun, Continuation, Limit) ->
+do_query(Node, QueryState) when Node =:= node() ->
+ do_select(Node, QueryState);
+do_query(Node, QueryState) ->
case
rpc:call(
Node,
?MODULE,
do_query,
- [Node, Tab, QString, QueryFun, Continuation, Limit],
- 50000
+ [Node, QueryState],
+ ?LONG_QUERY_TIMEOUT
)
of
{badrpc, _} = R -> {error, R};
Ret -> Ret
end.
-sub_query_result(Len, Rows, Limit, Results, Meta) ->
- {Flag, NMeta} = judge_page_with_counting(Len, Meta),
- NResults =
- case Flag of
- more ->
- [];
- cutrows ->
- {SubStart, NeedNowNum} = rows_sub_params(Len, NMeta),
- ThisRows = lists:sublist(Rows, SubStart, NeedNowNum),
- lists:sublist(lists:append(Results, ThisRows), SubStart, Limit);
- enough ->
- lists:sublist(lists:append(Results, Rows), 1, Limit)
+do_select(
+ Node,
+ QueryState0 = #{
+ table := Tab,
+ mactch_spec := Ms,
+ fuzzy_fun := FuzzyFun,
+ continuation := Continuation,
+ limit := Limit
+ }
+) ->
+ QueryState = maybe_apply_total_query(Node, QueryState0),
+ Result =
+ case Continuation of
+ ?FRESH_SELECT ->
+ ets:select(Tab, Ms, Limit);
+ _ ->
+ %% XXX: Repair is necessary because we pass Continuation back
+ %% and forth through the nodes in the `do_cluster_query`
+ ets:select(ets:repair_continuation(Continuation, Ms))
end,
- {NMeta, NResults}.
+ case Result of
+ '$end_of_table' ->
+ {[], QueryState#{continuation => ?FRESH_SELECT}};
+ {Rows, NContinuation} ->
+ NRows =
+ case FuzzyFun of
+ undefined ->
+ Rows;
+ {FilterFun, Args0} when is_function(FilterFun), is_list(Args0) ->
+ lists:filter(
+ fun(E) -> erlang:apply(FilterFun, [E | Args0]) end,
+ Rows
+ )
+ end,
+ {NRows, QueryState#{continuation => NContinuation}}
+ end.
-%%--------------------------------------------------------------------
-%% Table Select
-%%--------------------------------------------------------------------
+maybe_apply_total_query(Node, QueryState = #{total := TotalAcc}) ->
+ case proplists:get_value(Node, TotalAcc, undefined) of
+ undefined ->
+ Total = apply_total_query(QueryState),
+ QueryState#{total := [{Node, Total} | TotalAcc]};
+ _ ->
+ QueryState
+ end.
-select_table_with_count(Tab, {Ms, FuzzyFilterFun}, ?FRESH_SELECT, Limit, FmtFun) when
- is_function(FuzzyFilterFun) andalso Limit > 0
-->
- case ets:select(Tab, Ms, Limit) of
- '$end_of_table' ->
- {0, [], ?FRESH_SELECT};
- {RawResult, NContinuation} ->
- Rows = FuzzyFilterFun(RawResult),
- {length(Rows), lists:map(FmtFun, Rows), NContinuation}
+apply_total_query(QueryState = #{table := Tab}) ->
+ case counting_total_fun(QueryState) of
+ false ->
+ %% return a fake total number if the query have any conditions
+ 0;
+ Fun ->
+ Fun(Tab)
+ end.
+
+counting_total_fun(_QueryState = #{qs := {[], []}}) ->
+ fun(Tab) -> ets:info(Tab, size) end;
+counting_total_fun(_QueryState = #{mactch_spec := Ms, fuzzy_fun := undefined}) ->
+ %% XXX: Calculating the total number of data that match a certain
+ %% condition under a large table is very expensive because the
+ %% entire ETS table needs to be scanned.
+ %%
+ %% XXX: How to optimize it? i.e, using:
+ [{MatchHead, Conditions, _Return}] = Ms,
+ CountingMs = [{MatchHead, Conditions, [true]}],
+ fun(Tab) ->
+ ets:select_count(Tab, CountingMs)
end;
-select_table_with_count(_Tab, {Ms, FuzzyFilterFun}, Continuation, _Limit, FmtFun) when
- is_function(FuzzyFilterFun)
-->
- case ets:select(ets:repair_continuation(Continuation, Ms)) of
- '$end_of_table' ->
- {0, [], ?FRESH_SELECT};
- {RawResult, NContinuation} ->
- Rows = FuzzyFilterFun(RawResult),
- {length(Rows), lists:map(FmtFun, Rows), NContinuation}
- end;
-select_table_with_count(Tab, Ms, ?FRESH_SELECT, Limit, FmtFun) when
- Limit > 0
-->
- case ets:select(Tab, Ms, Limit) of
- '$end_of_table' ->
- {0, [], ?FRESH_SELECT};
- {RawResult, NContinuation} ->
- {length(RawResult), lists:map(FmtFun, RawResult), NContinuation}
- end;
-select_table_with_count(_Tab, Ms, Continuation, _Limit, FmtFun) ->
- case ets:select(ets:repair_continuation(Continuation, Ms)) of
- '$end_of_table' ->
- {0, [], ?FRESH_SELECT};
- {RawResult, NContinuation} ->
- {length(RawResult), lists:map(FmtFun, RawResult), NContinuation}
+counting_total_fun(_QueryState = #{fuzzy_fun := FuzzyFun}) when FuzzyFun =/= undefined ->
+ %% XXX: Calculating the total number for a fuzzy searching is very very expensive
+ %% so it is not supported now
+ false.
+
+%% ResultAcc :: #{count := integer(),
+%% cursor := integer(),
+%% rows := [{node(), Rows :: list()}],
+%% total := [{node() => integer()}]
+%% }
+init_query_result() ->
+ #{cursor => 0, count => 0, rows => [], total => []}.
+
+accumulate_query_rows(
+ Node,
+ Rows,
+ _QueryState = #{page := Page, limit := Limit, total := TotalAcc},
+ ResultAcc = #{cursor := Cursor, count := Count, rows := RowsAcc}
+) ->
+ PageStart = (Page - 1) * Limit + 1,
+ PageEnd = Page * Limit,
+ Len = length(Rows),
+ case Cursor + Len of
+ NCursor when NCursor < PageStart ->
+ {more, ResultAcc#{cursor => NCursor, total => TotalAcc}};
+ NCursor when NCursor < PageEnd ->
+ {more, ResultAcc#{
+ cursor => NCursor,
+ count => Count + length(Rows),
+ total => TotalAcc,
+ rows => [{Node, Rows} | RowsAcc]
+ }};
+ NCursor when NCursor >= PageEnd ->
+ SubRows = lists:sublist(Rows, Limit - Count),
+ {enough, ResultAcc#{
+ cursor => NCursor,
+ count => Count + length(SubRows),
+ total => TotalAcc,
+ rows => [{Node, SubRows} | RowsAcc]
+ }}
end.
%%--------------------------------------------------------------------
@@ -295,6 +435,7 @@ parse_qstring(QString, QSchema) ->
{length(NQString) + length(FuzzyQString), {NQString, FuzzyQString}}.
do_parse_qstring([], _, Acc1, Acc2) ->
+ %% remove fuzzy keys if present in accurate query
NAcc2 = [E || E <- Acc2, not lists:keymember(element(1, E), 1, Acc1)],
{lists:reverse(Acc1), lists:reverse(NAcc2)};
do_parse_qstring([{Key, Value} | RestQString], QSchema, Acc1, Acc2) ->
@@ -379,40 +520,41 @@ is_fuzzy_key(<<"match_", _/binary>>) ->
is_fuzzy_key(_) ->
false.
-page_start(1, _) -> 1;
-page_start(Page, Limit) -> (Page - 1) * Limit + 1.
+format_query_result(_FmtFun, _Meta, Error = {error, _Node, _Reason}) ->
+ Error;
+format_query_result(
+ FmtFun, Meta, _ResultAcc = #{total := TotalAcc, rows := RowsAcc}
+) ->
+ Total = lists:foldr(fun({_Node, T}, N) -> N + T end, 0, TotalAcc),
+ #{
+ %% The `count` is used in HTTP API to indicate the total number of
+ %% queries that can be read
+ meta => Meta#{count => Total},
+ data => lists:flatten(
+ lists:foldl(
+ fun({Node, Rows}, Acc) ->
+ [lists:map(fun(Row) -> exec_format_fun(FmtFun, Node, Row) end, Rows) | Acc]
+ end,
+ [],
+ RowsAcc
+ )
+ )
+ }.
-judge_page_with_counting(Len, Meta = #{page := Page, limit := Limit, count := Count}) ->
- PageStart = page_start(Page, Limit),
- PageEnd = Page * Limit,
- case Count + Len of
- NCount when NCount < PageStart ->
- {more, Meta#{count => NCount}};
- NCount when NCount < PageEnd ->
- {cutrows, Meta#{count => NCount}};
- NCount when NCount >= PageEnd ->
- {enough, Meta#{count => NCount}}
+exec_format_fun(FmtFun, Node, Row) ->
+ case erlang:fun_info(FmtFun, arity) of
+ {arity, 1} -> FmtFun(Row);
+ {arity, 2} -> FmtFun(Node, Row)
end.
-rows_sub_params(Len, _Meta = #{page := Page, limit := Limit, count := Count}) ->
- PageStart = page_start(Page, Limit),
- case (Count - Len) < PageStart of
+parse_pager_params(Params) ->
+ Page = b2i(page(Params)),
+ Limit = b2i(limit(Params)),
+ case Page > 0 andalso Limit > 0 of
true ->
- NeedNowNum = Count - PageStart + 1,
- SubStart = Len - NeedNowNum + 1,
- {SubStart, NeedNowNum};
+ #{page => Page, limit => Limit, count => 0};
false ->
- {_SubStart = 1, _NeedNowNum = Len}
- end.
-
-page_limit_check_query(Meta, {F, A}) ->
- case Meta of
- #{page := Page, limit := Limit} when
- Page < 1; Limit < 1
- ->
- {error, page_limit_invalid};
- _ ->
- erlang:apply(F, A)
+ false
end.
%%--------------------------------------------------------------------
@@ -458,6 +600,11 @@ to_ip_port(IPAddress) ->
Port = list_to_integer(Port0),
{IP, Port}.
+b2i(Bin) when is_binary(Bin) ->
+ binary_to_integer(Bin);
+b2i(Any) ->
+ Any.
+
%%--------------------------------------------------------------------
%% EUnits
%%--------------------------------------------------------------------
@@ -502,8 +649,3 @@ params2qs_test() ->
{0, {[], []}} = parse_qstring([{not_a_predefined_params, val}], QSchema).
-endif.
-
-b2i(Bin) when is_binary(Bin) ->
- binary_to_integer(Bin);
-b2i(Any) ->
- Any.
diff --git a/apps/emqx_management/src/emqx_mgmt_api_alarms.erl b/apps/emqx_management/src/emqx_mgmt_api_alarms.erl
index 36845e4e7..80f93ffe4 100644
--- a/apps/emqx_management/src/emqx_mgmt_api_alarms.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api_alarms.erl
@@ -24,12 +24,12 @@
-export([api_spec/0, paths/0, schema/1, fields/1]).
--export([alarms/2]).
+-export([alarms/2, format_alarm/2]).
-define(TAGS, [<<"Alarms">>]).
%% internal export (for query)
--export([query/4]).
+-export([qs2ms/2]).
api_spec() ->
emqx_dashboard_swagger:spec(?MODULE, #{check_schema => true}).
@@ -112,7 +112,15 @@ alarms(get, #{query_string := QString}) ->
true -> ?ACTIVATED_ALARM;
false -> ?DEACTIVATED_ALARM
end,
- case emqx_mgmt_api:cluster_query(QString, Table, [], {?MODULE, query}) of
+ case
+ emqx_mgmt_api:cluster_query(
+ Table,
+ QString,
+ [],
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_alarm/2
+ )
+ of
{error, page_limit_invalid} ->
{400, #{code => <<"INVALID_PARAMETER">>, message => <<"page_limit_invalid">>}};
{error, Node, {badrpc, R}} ->
@@ -128,11 +136,9 @@ alarms(delete, _Params) ->
%%%==============================================================================================
%% internal
-query(Table, _QsSpec, Continuation, Limit) ->
- Ms = [{'$1', [], ['$1']}],
- emqx_mgmt_api:select_table_with_count(Table, Ms, Continuation, Limit, fun format_alarm/1).
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {_Qs, _Fuzzy}) ->
+ #{match_spec => [{'$1', [], ['$1']}], fuzzy_fun => undefined}.
-format_alarm(Alarms) when is_list(Alarms) ->
- [emqx_alarm:format(Alarm) || Alarm <- Alarms];
-format_alarm(Alarm) ->
- emqx_alarm:format(Alarm).
+format_alarm(WhichNode, Alarm) ->
+ emqx_alarm:format(WhichNode, Alarm).
diff --git a/apps/emqx_management/src/emqx_mgmt_api_clients.erl b/apps/emqx_management/src/emqx_mgmt_api_clients.erl
index f4fe0387f..588031fc1 100644
--- a/apps/emqx_management/src/emqx_mgmt_api_clients.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api_clients.erl
@@ -46,8 +46,10 @@
]).
-export([
- query/4,
- format_channel_info/1
+ qs2ms/2,
+ run_fuzzy_filter/2,
+ format_channel_info/1,
+ format_channel_info/2
]).
%% for batch operation
@@ -73,7 +75,6 @@
{<<"lte_connected_at">>, timestamp}
]).
--define(QUERY_FUN, {?MODULE, query}).
-define(FORMAT_FUN, {?MODULE, format_channel_info}).
-define(CLIENT_ID_NOT_FOUND,
@@ -642,10 +643,11 @@ list_clients(QString) ->
case maps:get(<<"node">>, QString, undefined) of
undefined ->
emqx_mgmt_api:cluster_query(
- QString,
?CLIENT_QTAB,
+ QString,
?CLIENT_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_channel_info/2
);
Node0 ->
case emqx_misc:safe_to_existing_atom(Node0) of
@@ -653,10 +655,11 @@ list_clients(QString) ->
QStringWithoutNode = maps:without([<<"node">>], QString),
emqx_mgmt_api:node_query(
Node1,
- QStringWithoutNode,
?CLIENT_QTAB,
+ QStringWithoutNode,
?CLIENT_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_channel_info/2
);
{error, _} ->
{error, Node0, {badrpc, <<"invalid node">>}}
@@ -780,32 +783,16 @@ do_unsubscribe(ClientID, Topic) ->
Res
end.
-%%--------------------------------------------------------------------
-%% Query Functions
-
-query(Tab, {QString, []}, Continuation, Limit) ->
- Ms = qs2ms(QString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format_channel_info/1
- );
-query(Tab, {QString, FuzzyQString}, Continuation, Limit) ->
- Ms = qs2ms(QString),
- FuzzyFilterFun = fuzzy_filter_fun(FuzzyQString),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format_channel_info/1
- ).
-
%%--------------------------------------------------------------------
%% QueryString to Match Spec
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {QString, FuzzyQString}) ->
+ #{
+ match_spec => qs2ms(QString),
+ fuzzy_fun => fuzzy_filter_fun(FuzzyQString)
+ }.
+
-spec qs2ms(list()) -> ets:match_spec().
qs2ms(Qs) ->
{MtchHead, Conds} = qs2ms(Qs, 2, {#{}, []}),
@@ -855,13 +842,10 @@ ms(created_at, X) ->
%%--------------------------------------------------------------------
%% Match funcs
+fuzzy_filter_fun([]) ->
+ undefined;
fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
run_fuzzy_filter(_, []) ->
true;
@@ -876,12 +860,11 @@ run_fuzzy_filter(E = {_, #{clientinfo := ClientInfo}, _}, [{Key, like, SubStr} |
%%--------------------------------------------------------------------
%% format funcs
-format_channel_info({_, ClientInfo0, ClientStats}) ->
- Node =
- case ClientInfo0 of
- #{node := N} -> N;
- _ -> node()
- end,
+format_channel_info(ChannInfo = {_, _ClientInfo, _ClientStats}) ->
+ format_channel_info(node(), ChannInfo).
+
+format_channel_info(WhichNode, {_, ClientInfo0, ClientStats}) ->
+ Node = maps:get(node, ClientInfo0, WhichNode),
ClientInfo1 = emqx_map_lib:deep_remove([conninfo, clientid], ClientInfo0),
ClientInfo2 = emqx_map_lib:deep_remove([conninfo, username], ClientInfo1),
StatsMap = maps:without(
diff --git a/apps/emqx_management/src/emqx_mgmt_api_publish.erl b/apps/emqx_management/src/emqx_mgmt_api_publish.erl
index 1678c56e0..b1b1f1b5e 100644
--- a/apps/emqx_management/src/emqx_mgmt_api_publish.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api_publish.erl
@@ -114,6 +114,11 @@ fields(message) ->
required => true,
example => <<"hello emqx api">>
})},
+ {properties,
+ hoconsc:mk(hoconsc:ref(?MODULE, message_properties), #{
+ desc => ?DESC(message_properties),
+ required => false
+ })},
{retain,
hoconsc:mk(boolean(), #{
desc => ?DESC(retain),
@@ -130,6 +135,43 @@ fields(publish_message) ->
default => plain
})}
] ++ fields(message);
+fields(message_properties) ->
+ [
+ {'payload_format_indicator',
+ hoconsc:mk(typerefl:range(0, 1), #{
+ desc => ?DESC(msg_payload_format_indicator),
+ required => false,
+ example => 0
+ })},
+ {'message_expiry_interval',
+ hoconsc:mk(integer(), #{
+ desc => ?DESC(msg_message_expiry_interval),
+ required => false
+ })},
+ {'response_topic',
+ hoconsc:mk(binary(), #{
+ desc => ?DESC(msg_response_topic),
+ required => false,
+ example => <<"some_other_topic">>
+ })},
+ {'correlation_data',
+ hoconsc:mk(binary(), #{
+ desc => ?DESC(msg_correlation_data),
+ required => false
+ })},
+ {'user_properties',
+ hoconsc:mk(map(), #{
+ desc => ?DESC(msg_user_properties),
+ required => false,
+ example => #{<<"foo">> => <<"bar">>}
+ })},
+ {'content_type',
+ hoconsc:mk(binary(), #{
+ desc => ?DESC(msg_content_type),
+ required => false,
+ example => <<"text/plain">>
+ })}
+ ];
fields(publish_ok) ->
[
{id,
@@ -288,13 +330,23 @@ make_message(Map) ->
QoS = maps:get(<<"qos">>, Map, 0),
Topic = maps:get(<<"topic">>, Map),
Retain = maps:get(<<"retain">>, Map, false),
+ Headers =
+ case maps:get(<<"properties">>, Map, #{}) of
+ Properties when
+ is_map(Properties) andalso
+ map_size(Properties) > 0
+ ->
+ #{properties => to_msg_properties(Properties)};
+ _ ->
+ #{}
+ end,
try
_ = emqx_topic:validate(name, Topic)
catch
error:_Reason ->
throw(invalid_topic_name)
end,
- Message = emqx_message:make(From, QoS, Topic, Payload, #{retain => Retain}, #{}),
+ Message = emqx_message:make(From, QoS, Topic, Payload, #{retain => Retain}, Headers),
Size = emqx_message:estimate_size(Message),
(Size > size_limit()) andalso throw(packet_too_large),
{ok, Message};
@@ -302,6 +354,20 @@ make_message(Map) ->
{error, R}
end.
+to_msg_properties(Properties) ->
+ maps:fold(
+ fun to_property/3,
+ #{},
+ Properties
+ ).
+
+to_property(<<"payload_format_indicator">>, V, M) -> M#{'Payload-Format-Indicator' => V};
+to_property(<<"message_expiry_interval">>, V, M) -> M#{'Message-Expiry-Interval' => V};
+to_property(<<"response_topic">>, V, M) -> M#{'Response-Topic' => V};
+to_property(<<"correlation_data">>, V, M) -> M#{'Correlation-Data' => V};
+to_property(<<"user_properties">>, V, M) -> M#{'User-Property' => maps:to_list(V)};
+to_property(<<"content_type">>, V, M) -> M#{'Content-Type' => V}.
+
%% get the global packet size limit since HTTP API does not belong to any zone.
size_limit() ->
try
diff --git a/apps/emqx_management/src/emqx_mgmt_api_subscriptions.erl b/apps/emqx_management/src/emqx_mgmt_api_subscriptions.erl
index 062b915b2..ed2aa0c6d 100644
--- a/apps/emqx_management/src/emqx_mgmt_api_subscriptions.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api_subscriptions.erl
@@ -32,8 +32,9 @@
-export([subscriptions/2]).
-export([
- query/4,
- format/1
+ qs2ms/2,
+ run_fuzzy_filter/2,
+ format/2
]).
-define(SUBS_QTABLE, emqx_suboption).
@@ -47,8 +48,6 @@
{<<"match_topic">>, binary}
]).
--define(QUERY_FUN, {?MODULE, query}).
-
api_spec() ->
emqx_dashboard_swagger:spec(?MODULE, #{check_schema => true}).
@@ -139,20 +138,22 @@ subscriptions(get, #{query_string := QString}) ->
case maps:get(<<"node">>, QString, undefined) of
undefined ->
emqx_mgmt_api:cluster_query(
- QString,
?SUBS_QTABLE,
+ QString,
?SUBS_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format/2
);
Node0 ->
case emqx_misc:safe_to_existing_atom(Node0) of
{ok, Node1} ->
emqx_mgmt_api:node_query(
Node1,
- QString,
?SUBS_QTABLE,
+ QString,
?SUBS_QSCHEMA,
- ?QUERY_FUN
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format/2
);
{error, _} ->
{error, Node0, {badrpc, <<"invalid node">>}}
@@ -168,16 +169,12 @@ subscriptions(get, #{query_string := QString}) ->
{200, Result}
end.
-format(Items) when is_list(Items) ->
- [format(Item) || Item <- Items];
-format({{Subscriber, Topic}, Options}) ->
- format({Subscriber, Topic, Options});
-format({_Subscriber, Topic, Options}) ->
+format(WhichNode, {{_Subscriber, Topic}, Options}) ->
maps:merge(
#{
topic => get_topic(Topic, Options),
clientid => maps:get(subid, Options),
- node => node()
+ node => WhichNode
},
maps:with([qos, nl, rap, rh], Options)
).
@@ -188,53 +185,21 @@ get_topic(Topic, _) ->
Topic.
%%--------------------------------------------------------------------
-%% Query Function
+%% QueryString to MatchSpec
%%--------------------------------------------------------------------
-query(Tab, {Qs, []}, Continuation, Limit) ->
- Ms = qs2ms(Qs),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- Ms,
- Continuation,
- Limit,
- fun format/1
- );
-query(Tab, {Qs, Fuzzy}, Continuation, Limit) ->
- Ms = qs2ms(Qs),
- FuzzyFilterFun = fuzzy_filter_fun(Fuzzy),
- emqx_mgmt_api:select_table_with_count(
- Tab,
- {Ms, FuzzyFilterFun},
- Continuation,
- Limit,
- fun format/1
- ).
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {Qs, Fuzzy}) ->
+ #{match_spec => gen_match_spec(Qs), fuzzy_fun => fuzzy_filter_fun(Fuzzy)}.
-fuzzy_filter_fun(Fuzzy) ->
- fun(MsRaws) when is_list(MsRaws) ->
- lists:filter(
- fun(E) -> run_fuzzy_filter(E, Fuzzy) end,
- MsRaws
- )
- end.
-
-run_fuzzy_filter(_, []) ->
- true;
-run_fuzzy_filter(E = {{_, Topic}, _}, [{topic, match, TopicFilter} | Fuzzy]) ->
- emqx_topic:match(Topic, TopicFilter) andalso run_fuzzy_filter(E, Fuzzy).
-
-%%--------------------------------------------------------------------
-%% Query String to Match Spec
-
-qs2ms(Qs) ->
- MtchHead = qs2ms(Qs, {{'_', '_'}, #{}}),
+gen_match_spec(Qs) ->
+ MtchHead = gen_match_spec(Qs, {{'_', '_'}, #{}}),
[{MtchHead, [], ['$_']}].
-qs2ms([], MtchHead) ->
+gen_match_spec([], MtchHead) ->
MtchHead;
-qs2ms([{Key, '=:=', Value} | More], MtchHead) ->
- qs2ms(More, update_ms(Key, Value, MtchHead)).
+gen_match_spec([{Key, '=:=', Value} | More], MtchHead) ->
+ gen_match_spec(More, update_ms(Key, Value, MtchHead)).
update_ms(clientid, X, {{Pid, Topic}, Opts}) ->
{{Pid, Topic}, Opts#{subid => X}};
@@ -244,3 +209,13 @@ update_ms(share_group, X, {{Pid, Topic}, Opts}) ->
{{Pid, Topic}, Opts#{share => X}};
update_ms(qos, X, {{Pid, Topic}, Opts}) ->
{{Pid, Topic}, Opts#{qos => X}}.
+
+fuzzy_filter_fun([]) ->
+ undefined;
+fuzzy_filter_fun(Fuzzy) ->
+ {fun ?MODULE:run_fuzzy_filter/2, [Fuzzy]}.
+
+run_fuzzy_filter(_, []) ->
+ true;
+run_fuzzy_filter(E = {{_, Topic}, _}, [{topic, match, TopicFilter} | Fuzzy]) ->
+ emqx_topic:match(Topic, TopicFilter) andalso run_fuzzy_filter(E, Fuzzy).
diff --git a/apps/emqx_management/src/emqx_mgmt_api_topics.erl b/apps/emqx_management/src/emqx_mgmt_api_topics.erl
index c357855b2..5e2bd1ea0 100644
--- a/apps/emqx_management/src/emqx_mgmt_api_topics.erl
+++ b/apps/emqx_management/src/emqx_mgmt_api_topics.erl
@@ -34,7 +34,7 @@
topic/2
]).
--export([query/4]).
+-export([qs2ms/2, format/1]).
-define(TOPIC_NOT_FOUND, 'TOPIC_NOT_FOUND').
@@ -109,7 +109,12 @@ topic(get, #{bindings := Bindings}) ->
do_list(Params) ->
case
emqx_mgmt_api:node_query(
- node(), Params, emqx_route, ?TOPICS_QUERY_SCHEMA, {?MODULE, query}
+ node(),
+ emqx_route,
+ Params,
+ ?TOPICS_QUERY_SCHEMA,
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format/1
)
of
{error, page_limit_invalid} ->
@@ -138,16 +143,19 @@ generate_topic(Params = #{topic := Topic}) ->
generate_topic(Params) ->
Params.
-query(Tab, {Qs, _}, Continuation, Limit) ->
- Ms = qs2ms(Qs, [{{route, '_', '_'}, [], ['$_']}]),
- emqx_mgmt_api:select_table_with_count(Tab, Ms, Continuation, Limit, fun format/1).
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {Qs, _}) ->
+ #{
+ match_spec => gen_match_spec(Qs, [{{route, '_', '_'}, [], ['$_']}]),
+ fuzzy_fun => undefined
+ }.
-qs2ms([], Res) ->
+gen_match_spec([], Res) ->
Res;
-qs2ms([{topic, '=:=', T} | Qs], [{{route, _, N}, [], ['$_']}]) ->
- qs2ms(Qs, [{{route, T, N}, [], ['$_']}]);
-qs2ms([{node, '=:=', N} | Qs], [{{route, T, _}, [], ['$_']}]) ->
- qs2ms(Qs, [{{route, T, N}, [], ['$_']}]).
+gen_match_spec([{topic, '=:=', T} | Qs], [{{route, _, N}, [], ['$_']}]) ->
+ gen_match_spec(Qs, [{{route, T, N}, [], ['$_']}]);
+gen_match_spec([{node, '=:=', N} | Qs], [{{route, T, _}, [], ['$_']}]) ->
+ gen_match_spec(Qs, [{{route, T, N}, [], ['$_']}]).
format(#route{topic = Topic, dest = {_, Node}}) ->
#{topic => Topic, node => Node};
diff --git a/apps/emqx_management/test/emqx_mgmt_api_SUITE.erl b/apps/emqx_management/test/emqx_mgmt_api_SUITE.erl
new file mode 100644
index 000000000..a065b9c83
--- /dev/null
+++ b/apps/emqx_management/test/emqx_mgmt_api_SUITE.erl
@@ -0,0 +1,143 @@
+%%--------------------------------------------------------------------
+%% Copyright (c) 2022 EMQ Technologies Co., Ltd. All Rights Reserved.
+%%
+%% Licensed under the Apache License, Version 2.0 (the "License");
+%% you may not use this file except in compliance with the License.
+%% You may obtain a copy of the License at
+%%
+%% http://www.apache.org/licenses/LICENSE-2.0
+%%
+%% Unless required by applicable law or agreed to in writing, software
+%% distributed under the License is distributed on an "AS IS" BASIS,
+%% WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+%% See the License for the specific language governing permissions and
+%% limitations under the License.
+%%--------------------------------------------------------------------
+-module(emqx_mgmt_api_SUITE).
+
+-compile(export_all).
+-compile(nowarn_export_all).
+
+-include_lib("eunit/include/eunit.hrl").
+
+%%--------------------------------------------------------------------
+%% setup
+%%--------------------------------------------------------------------
+
+all() ->
+ emqx_common_test_helpers:all(?MODULE).
+
+init_per_suite(Config) ->
+ Config.
+
+end_per_suite(_) ->
+ ok.
+
+%%--------------------------------------------------------------------
+%% cases
+%%--------------------------------------------------------------------
+
+t_cluster_query(_Config) ->
+ net_kernel:start(['master@127.0.0.1', longnames]),
+ ct:timetrap({seconds, 120}),
+ snabbkaffe:fix_ct_logging(),
+ [{Name, Opts}, {Name1, Opts1}] = cluster_specs(),
+ Node1 = emqx_common_test_helpers:start_slave(Name, Opts),
+ Node2 = emqx_common_test_helpers:start_slave(Name1, Opts1),
+ try
+ process_flag(trap_exit, true),
+ ClientLs1 = [start_emqtt_client(Node1, I, 2883) || I <- lists:seq(1, 10)],
+ ClientLs2 = [start_emqtt_client(Node2, I, 3883) || I <- lists:seq(1, 10)],
+
+ %% returned list should be the same regardless of which node is requested
+ {200, ClientsAll} = query_clients(Node1, #{}),
+ ?assertEqual({200, ClientsAll}, query_clients(Node2, #{})),
+ ?assertMatch(
+ #{page := 1, limit := 100, count := 20},
+ maps:get(meta, ClientsAll)
+ ),
+ ?assertMatch(20, length(maps:get(data, ClientsAll))),
+ %% query the first page, counting in entire cluster
+ {200, ClientsPage1} = query_clients(Node1, #{<<"limit">> => 5}),
+ ?assertMatch(
+ #{page := 1, limit := 5, count := 20},
+ maps:get(meta, ClientsPage1)
+ ),
+ ?assertMatch(5, length(maps:get(data, ClientsPage1))),
+
+ %% assert: AllPage = Page1 + Page2 + Page3 + Page4
+ %% !!!Note: this equation requires that the queried tables must be ordered_set
+ {200, ClientsPage2} = query_clients(Node1, #{<<"page">> => 2, <<"limit">> => 5}),
+ {200, ClientsPage3} = query_clients(Node2, #{<<"page">> => 3, <<"limit">> => 5}),
+ {200, ClientsPage4} = query_clients(Node1, #{<<"page">> => 4, <<"limit">> => 5}),
+ GetClientIds = fun(L) -> lists:map(fun(#{clientid := Id}) -> Id end, L) end,
+ ?assertEqual(
+ GetClientIds(maps:get(data, ClientsAll)),
+ GetClientIds(
+ maps:get(data, ClientsPage1) ++ maps:get(data, ClientsPage2) ++
+ maps:get(data, ClientsPage3) ++ maps:get(data, ClientsPage4)
+ )
+ ),
+
+ %% exact match can return non-zero total
+ {200, ClientsNode1} = query_clients(Node2, #{<<"username">> => <<"corenode1@127.0.0.1">>}),
+ ?assertMatch(
+ #{count := 10},
+ maps:get(meta, ClientsNode1)
+ ),
+
+ %% fuzzy searching can't return total
+ {200, ClientsNode2} = query_clients(Node2, #{<<"like_username">> => <<"corenode2">>}),
+ ?assertMatch(
+ #{count := 0},
+ maps:get(meta, ClientsNode2)
+ ),
+ ?assertMatch(10, length(maps:get(data, ClientsNode2))),
+
+ _ = lists:foreach(fun(C) -> emqtt:disconnect(C) end, ClientLs1),
+ _ = lists:foreach(fun(C) -> emqtt:disconnect(C) end, ClientLs2)
+ after
+ emqx_common_test_helpers:stop_slave(Node1),
+ emqx_common_test_helpers:stop_slave(Node2)
+ end,
+ ok.
+
+%%--------------------------------------------------------------------
+%% helpers
+%%--------------------------------------------------------------------
+
+cluster_specs() ->
+ Specs =
+ %% default listeners port
+ [
+ {core, corenode1, #{listener_ports => [{tcp, 2883}]}},
+ {core, corenode2, #{listener_ports => [{tcp, 3883}]}}
+ ],
+ CommOpts =
+ [
+ {env, [{emqx, boot_modules, all}]},
+ {apps, []},
+ {conf, [
+ {[listeners, ssl, default, enabled], false},
+ {[listeners, ws, default, enabled], false},
+ {[listeners, wss, default, enabled], false}
+ ]}
+ ],
+ emqx_common_test_helpers:emqx_cluster(
+ Specs,
+ CommOpts
+ ).
+
+start_emqtt_client(Node0, N, Port) ->
+ Node = atom_to_binary(Node0),
+ ClientId = iolist_to_binary([Node, "-", integer_to_binary(N)]),
+ {ok, C} = emqtt:start_link([{clientid, ClientId}, {username, Node}, {port, Port}]),
+ {ok, _} = emqtt:connect(C),
+ C.
+
+query_clients(Node, Qs0) ->
+ Qs = maps:merge(
+ #{<<"page">> => 1, <<"limit">> => 100},
+ Qs0
+ ),
+ rpc:call(Node, emqx_mgmt_api_clients, clients, [get, #{query_string => Qs}]).
diff --git a/apps/emqx_management/test/emqx_mgmt_api_publish_SUITE.erl b/apps/emqx_management/test/emqx_mgmt_api_publish_SUITE.erl
index 0ebaf7195..7622b0d17 100644
--- a/apps/emqx_management/test/emqx_mgmt_api_publish_SUITE.erl
+++ b/apps/emqx_management/test/emqx_mgmt_api_publish_SUITE.erl
@@ -20,9 +20,7 @@
-include_lib("eunit/include/eunit.hrl").
-include_lib("emqx/include/emqx_mqtt.hrl").
-
--define(CLIENTID, <<"api_clientid">>).
--define(USERNAME, <<"api_username">>).
+-include_lib("common_test/include/ct.hrl").
-define(TOPIC1, <<"api_topic1">>).
-define(TOPIC2, <<"api_topic2">>).
@@ -44,25 +42,56 @@ end_per_testcase(Case, Config) ->
?MODULE:Case({'end', Config}).
t_publish_api({init, Config}) ->
- Config;
-t_publish_api({'end', _Config}) ->
- ok;
-t_publish_api(_) ->
- {ok, Client} = emqtt:start_link(#{
- username => <<"api_username">>, clientid => <<"api_clientid">>
- }),
+ {ok, Client} = emqtt:start_link(
+ #{
+ username => <<"api_username">>,
+ clientid => <<"api_clientid">>,
+ proto_ver => v5
+ }
+ ),
{ok, _} = emqtt:connect(Client),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC1),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC2),
+ [{client, Client} | Config];
+t_publish_api({'end', Config}) ->
+ Client = ?config(client, Config),
+ emqtt:stop(Client),
+ ok;
+t_publish_api(_) ->
Payload = <<"hello">>,
Path = emqx_mgmt_api_test_util:api_path(["publish"]),
Auth = emqx_mgmt_api_test_util:auth_header_(),
- Body = #{topic => ?TOPIC1, payload => Payload},
+ UserProperties = #{<<"foo">> => <<"bar">>},
+ Properties =
+ #{
+ <<"payload_format_indicator">> => 0,
+ <<"message_expiry_interval">> => 1000,
+ <<"response_topic">> => ?TOPIC2,
+ <<"correlation_data">> => <<"some_correlation_id">>,
+ <<"user_properties">> => UserProperties,
+ <<"content_type">> => <<"application/json">>
+ },
+ Body = #{topic => ?TOPIC1, payload => Payload, properties => Properties},
{ok, Response} = emqx_mgmt_api_test_util:request_api(post, Path, "", Auth, Body),
ResponseMap = decode_json(Response),
?assertEqual([<<"id">>], lists:sort(maps:keys(ResponseMap))),
- ?assertEqual(ok, receive_assert(?TOPIC1, 0, Payload)),
- emqtt:stop(Client).
+ {ok, Message} = receive_assert(?TOPIC1, 0, Payload),
+ RecvProperties = maps:get(properties, Message),
+ UserPropertiesList = maps:to_list(UserProperties),
+ #{
+ 'Payload-Format-Indicator' := 0,
+ 'Message-Expiry-Interval' := RecvMessageExpiry,
+ 'Correlation-Data' := <<"some_correlation_id">>,
+ 'User-Property' := UserPropertiesList,
+ 'Content-Type' := <<"application/json">>
+ } = RecvProperties,
+ ?assert(RecvMessageExpiry =< 1000),
+ %% note: without props this time
+ Body2 = #{topic => ?TOPIC2, payload => Payload},
+ {ok, Response2} = emqx_mgmt_api_test_util:request_api(post, Path, "", Auth, Body2),
+ ResponseMap2 = decode_json(Response2),
+ ?assertEqual([<<"id">>], lists:sort(maps:keys(ResponseMap2))),
+ ?assertEqual(ok, element(1, receive_assert(?TOPIC2, 0, Payload))).
t_publish_no_subscriber({init, Config}) ->
Config;
@@ -163,16 +192,18 @@ t_publish_bad_topic_bulk(_Config) ->
).
t_publish_bulk_api({init, Config}) ->
- Config;
-t_publish_bulk_api({'end', _Config}) ->
- ok;
-t_publish_bulk_api(_) ->
{ok, Client} = emqtt:start_link(#{
username => <<"api_username">>, clientid => <<"api_clientid">>
}),
{ok, _} = emqtt:connect(Client),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC1),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC2),
+ [{client, Client} | Config];
+t_publish_bulk_api({'end', Config}) ->
+ Client = ?config(client, Config),
+ emqtt:stop(Client),
+ ok;
+t_publish_bulk_api(_) ->
Payload = <<"hello">>,
Path = emqx_mgmt_api_test_util:api_path(["publish", "bulk"]),
Auth = emqx_mgmt_api_test_util:auth_header_(),
@@ -199,9 +230,8 @@ t_publish_bulk_api(_) ->
end,
ResponseList
),
- ?assertEqual(ok, receive_assert(?TOPIC1, 0, Payload)),
- ?assertEqual(ok, receive_assert(?TOPIC2, 0, Payload)),
- emqtt:stop(Client).
+ ?assertEqual(ok, element(1, receive_assert(?TOPIC1, 0, Payload))),
+ ?assertEqual(ok, element(1, receive_assert(?TOPIC2, 0, Payload))).
t_publish_no_subscriber_bulk({init, Config}) ->
Config;
@@ -232,8 +262,8 @@ t_publish_no_subscriber_bulk(_) ->
],
ResponseList
),
- ?assertEqual(ok, receive_assert(?TOPIC1, 0, Payload)),
- ?assertEqual(ok, receive_assert(?TOPIC2, 0, Payload)),
+ ?assertEqual(ok, element(1, receive_assert(?TOPIC1, 0, Payload))),
+ ?assertEqual(ok, element(1, receive_assert(?TOPIC2, 0, Payload))),
emqtt:stop(Client).
t_publish_bulk_dispatch_one_message_invalid_topic({init, Config}) ->
@@ -267,17 +297,19 @@ t_publish_bulk_dispatch_one_message_invalid_topic(Config) when is_list(Config) -
t_publish_bulk_dispatch_failure({init, Config}) ->
meck:new(emqx, [no_link, passthrough, no_history]),
meck:expect(emqx, is_running, fun() -> false end),
- Config;
-t_publish_bulk_dispatch_failure({'end', _Config}) ->
- meck:unload(emqx),
- ok;
-t_publish_bulk_dispatch_failure(Config) when is_list(Config) ->
{ok, Client} = emqtt:start_link(#{
username => <<"api_username">>, clientid => <<"api_clientid">>
}),
{ok, _} = emqtt:connect(Client),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC1),
{ok, _, [0]} = emqtt:subscribe(Client, ?TOPIC2),
+ [{client, Client} | Config];
+t_publish_bulk_dispatch_failure({'end', Config}) ->
+ meck:unload(emqx),
+ Client = ?config(client, Config),
+ emqtt:stop(Client),
+ ok;
+t_publish_bulk_dispatch_failure(Config) when is_list(Config) ->
Payload = <<"hello">>,
Path = emqx_mgmt_api_test_util:api_path(["publish", "bulk"]),
Auth = emqx_mgmt_api_test_util:auth_header_(),
@@ -303,8 +335,7 @@ t_publish_bulk_dispatch_failure(Config) when is_list(Config) ->
#{<<"reason_code">> := ?RC_NO_MATCHING_SUBSCRIBERS}
],
decode_json(ResponseBody)
- ),
- emqtt:stop(Client).
+ ).
receive_assert(Topic, Qos, Payload) ->
receive
@@ -312,12 +343,12 @@ receive_assert(Topic, Qos, Payload) ->
ReceiveTopic = maps:get(topic, Message),
ReceiveQos = maps:get(qos, Message),
ReceivePayload = maps:get(payload, Message),
- ?assertEqual(ReceiveTopic, Topic),
- ?assertEqual(ReceiveQos, Qos),
- ?assertEqual(ReceivePayload, Payload),
- ok
+ ?assertEqual(Topic, ReceiveTopic),
+ ?assertEqual(Qos, ReceiveQos),
+ ?assertEqual(Payload, ReceivePayload),
+ {ok, Message}
after 5000 ->
- timeout
+ {error, timeout}
end.
decode_json(In) ->
diff --git a/apps/emqx_management/test/emqx_mgmt_api_subscription_SUITE.erl b/apps/emqx_management/test/emqx_mgmt_api_subscription_SUITE.erl
index d1cf4e418..9a6de9938 100644
--- a/apps/emqx_management/test/emqx_mgmt_api_subscription_SUITE.erl
+++ b/apps/emqx_management/test/emqx_mgmt_api_subscription_SUITE.erl
@@ -93,6 +93,7 @@ t_subscription_api(_) ->
{"match_topic", "t/#"}
]),
Headers = emqx_mgmt_api_test_util:auth_header_(),
+
{ok, ResponseTopic2} = emqx_mgmt_api_test_util:request_api(get, Path, QS, Headers),
DataTopic2 = emqx_json:decode(ResponseTopic2, [return_maps]),
Meta2 = maps:get(<<"meta">>, DataTopic2),
@@ -114,7 +115,8 @@ t_subscription_api(_) ->
MatchMeta = maps:get(<<"meta">>, MatchData),
?assertEqual(1, maps:get(<<"page">>, MatchMeta)),
?assertEqual(emqx_mgmt:max_row_limit(), maps:get(<<"limit">>, MatchMeta)),
- ?assertEqual(1, maps:get(<<"count">>, MatchMeta)),
+ %% count equals 0 in fuzzy searching
+ ?assertEqual(0, maps:get(<<"count">>, MatchMeta)),
MatchSubs = maps:get(<<"data">>, MatchData),
?assertEqual(1, length(MatchSubs)),
diff --git a/apps/emqx_management/test/emqx_mgmt_api_topics_SUITE.erl b/apps/emqx_management/test/emqx_mgmt_api_topics_SUITE.erl
index a06154400..419c17adf 100644
--- a/apps/emqx_management/test/emqx_mgmt_api_topics_SUITE.erl
+++ b/apps/emqx_management/test/emqx_mgmt_api_topics_SUITE.erl
@@ -31,6 +31,7 @@ end_per_suite(_) ->
emqx_mgmt_api_test_util:end_suite().
t_nodes_api(_) ->
+ Node = atom_to_binary(node(), utf8),
Topic = <<"test_topic">>,
{ok, Client} = emqtt:start_link(#{
username => <<"routes_username">>, clientid => <<"routes_cid">>
@@ -49,11 +50,30 @@ t_nodes_api(_) ->
Data = maps:get(<<"data">>, RoutesData),
Route = erlang:hd(Data),
?assertEqual(Topic, maps:get(<<"topic">>, Route)),
- ?assertEqual(atom_to_binary(node(), utf8), maps:get(<<"node">>, Route)),
+ ?assertEqual(Node, maps:get(<<"node">>, Route)),
+
+ %% exact match
+ Topic2 = <<"test_topic_2">>,
+ {ok, _, _} = emqtt:subscribe(Client, Topic2),
+ QS = uri_string:compose_query([
+ {"topic", Topic2},
+ {"node", atom_to_list(node())}
+ ]),
+ Headers = emqx_mgmt_api_test_util:auth_header_(),
+ {ok, MatchResponse} = emqx_mgmt_api_test_util:request_api(get, Path, QS, Headers),
+ MatchData = emqx_json:decode(MatchResponse, [return_maps]),
+ ?assertMatch(
+ #{<<"count">> := 1, <<"page">> := 1, <<"limit">> := 100},
+ maps:get(<<"meta">>, MatchData)
+ ),
+ ?assertMatch(
+ [#{<<"topic">> := Topic2, <<"node">> := Node}],
+ maps:get(<<"data">>, MatchData)
+ ),
%% get topics/:topic
RoutePath = emqx_mgmt_api_test_util:api_path(["topics", Topic]),
{ok, RouteResponse} = emqx_mgmt_api_test_util:request_api(get, RoutePath),
RouteData = emqx_json:decode(RouteResponse, [return_maps]),
?assertEqual(Topic, maps:get(<<"topic">>, RouteData)),
- ?assertEqual(atom_to_binary(node(), utf8), maps:get(<<"node">>, RouteData)).
+ ?assertEqual(Node, maps:get(<<"node">>, RouteData)).
diff --git a/apps/emqx_modules/src/emqx_delayed.erl b/apps/emqx_modules/src/emqx_delayed.erl
index f511d74d9..241ac5a8a 100644
--- a/apps/emqx_modules/src/emqx_delayed.erl
+++ b/apps/emqx_modules/src/emqx_delayed.erl
@@ -56,16 +56,20 @@
get_delayed_message/2,
delete_delayed_message/1,
delete_delayed_message/2,
- cluster_list/1,
- cluster_query/4
+ cluster_list/1
+]).
+
+%% exports for query
+-export([
+ qs2ms/2,
+ format_delayed/1,
+ format_delayed/2
]).
-export([
post_config_update/5
]).
--export([format_delayed/1]).
-
%% exported for `emqx_telemetry'
-export([get_basic_usage_info/0]).
@@ -166,16 +170,29 @@ list(Params) ->
emqx_mgmt_api:paginate(?TAB, Params, ?FORMAT_FUN).
cluster_list(Params) ->
- emqx_mgmt_api:cluster_query(Params, ?TAB, [], {?MODULE, cluster_query}).
+ emqx_mgmt_api:cluster_query(
+ ?TAB,
+ Params,
+ [],
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_delayed/2
+ ).
-cluster_query(Table, _QsSpec, Continuation, Limit) ->
- Ms = [{'$1', [], ['$1']}],
- emqx_mgmt_api:select_table_with_count(Table, Ms, Continuation, Limit, fun format_delayed/1).
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Table, {_Qs, _Fuzzy}) ->
+ #{
+ match_spec => [{'$1', [], ['$1']}],
+ fuzzy_fun => undefined
+ }.
format_delayed(Delayed) ->
- format_delayed(Delayed, false).
+ format_delayed(node(), Delayed).
+
+format_delayed(WhichNode, Delayed) ->
+ format_delayed(WhichNode, Delayed, false).
format_delayed(
+ WhichNode,
#delayed_message{
key = {ExpectTimeStamp, Id},
delayed = Delayed,
@@ -195,7 +212,7 @@ format_delayed(
RemainingTime = ExpectTimeStamp - ?NOW,
Result = #{
msgid => emqx_guid:to_hexstr(Id),
- node => node(),
+ node => WhichNode,
publish_at => PublishTime,
delayed_interval => Delayed,
delayed_remaining => RemainingTime div 1000,
@@ -222,7 +239,7 @@ get_delayed_message(Id) ->
{error, not_found};
Rows ->
Message = hd(Rows),
- {ok, format_delayed(Message, true)}
+ {ok, format_delayed(node(), Message, true)}
end.
get_delayed_message(Node, Id) when Node =:= node() ->
diff --git a/apps/emqx_modules/src/emqx_modules.app.src b/apps/emqx_modules/src/emqx_modules.app.src
index e2a142a99..29a7d0362 100644
--- a/apps/emqx_modules/src/emqx_modules.app.src
+++ b/apps/emqx_modules/src/emqx_modules.app.src
@@ -1,7 +1,7 @@
%% -*- mode: erlang -*-
{application, emqx_modules, [
{description, "EMQX Modules"},
- {vsn, "5.0.6"},
+ {vsn, "5.0.7"},
{modules, []},
{applications, [kernel, stdlib, emqx]},
{mod, {emqx_modules_app, []}},
diff --git a/apps/emqx_rule_engine/src/emqx_rule_engine_api.erl b/apps/emqx_rule_engine/src/emqx_rule_engine_api.erl
index 597ee838f..01d819a69 100644
--- a/apps/emqx_rule_engine/src/emqx_rule_engine_api.erl
+++ b/apps/emqx_rule_engine/src/emqx_rule_engine_api.erl
@@ -34,7 +34,7 @@
-export(['/rule_events'/2, '/rule_test'/2, '/rules'/2, '/rules/:id'/2, '/rules/:id/reset_metrics'/2]).
%% query callback
--export([query/4]).
+-export([qs2ms/2, run_fuzzy_match/2, format_rule_resp/1]).
-define(ERR_NO_RULE(ID), list_to_binary(io_lib:format("Rule ~ts Not Found", [(ID)]))).
-define(ERR_BADARGS(REASON), begin
@@ -274,10 +274,11 @@ param_path_id() ->
case
emqx_mgmt_api:node_query(
node(),
- QueryString,
?RULE_TAB,
+ QueryString,
?RULE_QS_SCHEMA,
- {?MODULE, query}
+ fun ?MODULE:qs2ms/2,
+ fun ?MODULE:format_rule_resp/1
)
of
{error, page_limit_invalid} ->
@@ -552,38 +553,40 @@ filter_out_request_body(Conf) ->
],
maps:without(ExtraConfs, Conf).
-query(Tab, {Qs, Fuzzy}, Start, Limit) ->
- Ms = qs2ms(),
- FuzzyFun = fuzzy_match_fun(Qs, Ms, Fuzzy),
- emqx_mgmt_api:select_table_with_count(
- Tab, {Ms, FuzzyFun}, Start, Limit, fun format_rule_resp/1
- ).
-
-%% rule is not a record, so everything is fuzzy filter.
-qs2ms() ->
- [{'_', [], ['$_']}].
-
-fuzzy_match_fun(Qs, Ms, Fuzzy) ->
- MsC = ets:match_spec_compile(Ms),
- fun(Rows) ->
- Ls = ets:match_spec_run(Rows, MsC),
- lists:filter(
- fun(E) ->
- run_qs_match(E, Qs) andalso
- run_fuzzy_match(E, Fuzzy)
- end,
- Ls
- )
+-spec qs2ms(atom(), {list(), list()}) -> emqx_mgmt_api:match_spec_and_filter().
+qs2ms(_Tab, {Qs, Fuzzy}) ->
+ case lists:keytake(from, 1, Qs) of
+ false ->
+ #{match_spec => generate_match_spec(Qs), fuzzy_fun => fuzzy_match_fun(Fuzzy)};
+ {value, {from, '=:=', From}, Ls} ->
+ #{
+ match_spec => generate_match_spec(Ls),
+ fuzzy_fun => fuzzy_match_fun([{from, '=:=', From} | Fuzzy])
+ }
end.
-run_qs_match(_, []) ->
- true;
-run_qs_match(E = {_Id, #{enable := Enable}}, [{enable, '=:=', Pattern} | Qs]) ->
- Enable =:= Pattern andalso run_qs_match(E, Qs);
-run_qs_match(E = {_Id, #{from := From}}, [{from, '=:=', Pattern} | Qs]) ->
- lists:member(Pattern, From) andalso run_qs_match(E, Qs);
-run_qs_match(E, [_ | Qs]) ->
- run_qs_match(E, Qs).
+generate_match_spec(Qs) ->
+ {MtchHead, Conds} = generate_match_spec(Qs, 2, {#{}, []}),
+ [{{'_', MtchHead}, Conds, ['$_']}].
+
+generate_match_spec([], _, {MtchHead, Conds}) ->
+ {MtchHead, lists:reverse(Conds)};
+generate_match_spec([Qs | Rest], N, {MtchHead, Conds}) ->
+ Holder = binary_to_atom(iolist_to_binary(["$", integer_to_list(N)]), utf8),
+ NMtchHead = emqx_mgmt_util:merge_maps(MtchHead, ms(element(1, Qs), Holder)),
+ NConds = put_conds(Qs, Holder, Conds),
+ generate_match_spec(Rest, N + 1, {NMtchHead, NConds}).
+
+put_conds({_, Op, V}, Holder, Conds) ->
+ [{Op, Holder, V} | Conds].
+
+ms(enable, X) ->
+ #{enable => X}.
+
+fuzzy_match_fun([]) ->
+ undefined;
+fuzzy_match_fun(Fuzzy) ->
+ {fun ?MODULE:run_fuzzy_match/2, [Fuzzy]}.
run_fuzzy_match(_, []) ->
true;
@@ -591,6 +594,8 @@ run_fuzzy_match(E = {Id, _}, [{id, like, Pattern} | Fuzzy]) ->
binary:match(Id, Pattern) /= nomatch andalso run_fuzzy_match(E, Fuzzy);
run_fuzzy_match(E = {_Id, #{description := Desc}}, [{description, like, Pattern} | Fuzzy]) ->
binary:match(Desc, Pattern) /= nomatch andalso run_fuzzy_match(E, Fuzzy);
+run_fuzzy_match(E = {_, #{from := Topics}}, [{from, '=:=', Pattern} | Fuzzy]) ->
+ lists:member(Pattern, Topics) /= false andalso run_fuzzy_match(E, Fuzzy);
run_fuzzy_match(E = {_Id, #{from := Topics}}, [{from, match, Pattern} | Fuzzy]) ->
lists:any(fun(For) -> emqx_topic:match(For, Pattern) end, Topics) andalso
run_fuzzy_match(E, Fuzzy);
diff --git a/apps/emqx_rule_engine/test/emqx_rule_engine_api_SUITE.erl b/apps/emqx_rule_engine/test/emqx_rule_engine_api_SUITE.erl
index da4e299f9..93912dd6c 100644
--- a/apps/emqx_rule_engine/test/emqx_rule_engine_api_SUITE.erl
+++ b/apps/emqx_rule_engine/test/emqx_rule_engine_api_SUITE.erl
@@ -133,23 +133,23 @@ t_list_rule_api(_Config) ->
QueryStr2 = #{query_string => #{<<"like_description">> => <<"也能"/utf8>>}},
{200, Result2} = emqx_rule_engine_api:'/rules'(get, QueryStr2),
- ?assertEqual(Result1, Result2),
+ ?assertEqual(maps:get(data, Result1), maps:get(data, Result2)),
QueryStr3 = #{query_string => #{<<"from">> => <<"t/1">>}},
- {200, #{meta := #{count := Count3}}} = emqx_rule_engine_api:'/rules'(get, QueryStr3),
- ?assertEqual(19, Count3),
+ {200, #{data := Data3}} = emqx_rule_engine_api:'/rules'(get, QueryStr3),
+ ?assertEqual(19, length(Data3)),
QueryStr4 = #{query_string => #{<<"like_from">> => <<"t/1/+">>}},
{200, Result4} = emqx_rule_engine_api:'/rules'(get, QueryStr4),
- ?assertEqual(Result1, Result4),
+ ?assertEqual(maps:get(data, Result1), maps:get(data, Result4)),
QueryStr5 = #{query_string => #{<<"match_from">> => <<"t/+/+">>}},
{200, Result5} = emqx_rule_engine_api:'/rules'(get, QueryStr5),
- ?assertEqual(Result1, Result5),
+ ?assertEqual(maps:get(data, Result1), maps:get(data, Result5)),
QueryStr6 = #{query_string => #{<<"like_id">> => RuleID}},
{200, Result6} = emqx_rule_engine_api:'/rules'(get, QueryStr6),
- ?assertEqual(Result1, Result6),
+ ?assertEqual(maps:get(data, Result1), maps:get(data, Result6)),
%% clean up
lists:foreach(
diff --git a/changes/v5.0.11-en.md b/changes/v5.0.11-en.md
index e53c5785e..4b35aa5f4 100644
--- a/changes/v5.0.11-en.md
+++ b/changes/v5.0.11-en.md
@@ -23,6 +23,12 @@
- Keep MQTT v5 User-Property pairs from bridge ingested MQTT messsages to bridge target [#9398](https://github.com/emqx/emqx/pull/9398).
+- Add a new config `quick_deny_anonymous` to allow quick deny of anonymous clients (without username) so the auth backend checks can be skipped [#8516](https://github.com/emqx/emqx/pull/8516).
+
+- Support message properties in `/publish` API [#9401](https://github.com/emqx/emqx/pull/9401).
+
+- Optimize client query performance for HTTP APIs [#9374](https://github.com/emqx/emqx/pull/9374).
+
## Bug fixes
- Fix `ssl.existingName` option of helm chart not working [#9307](https://github.com/emqx/emqx/issues/9307).
@@ -36,3 +42,5 @@
- Fix that `/configs/global_zone` API cannot get the default value of the configuration [#9392](https://github.com/emqx/emqx/pull/9392).
- Fix mountpoint not working for will-msg [#9399](https://github.com/emqx/emqx/pull/9399).
+
+- Fix that the obsolete SSL files aren't deleted after the bridge configuration update [#9411](https://github.com/emqx/emqx/pull/9411).
diff --git a/changes/v5.0.11-zh.md b/changes/v5.0.11-zh.md
index 3ea516dad..ab9f5a0d4 100644
--- a/changes/v5.0.11-zh.md
+++ b/changes/v5.0.11-zh.md
@@ -21,6 +21,12 @@
- 为桥接收到的 MQTT v5 消息再转发时保留 User-Property 列表 [#9398](https://github.com/emqx/emqx/pull/9398)。
+- 添加了一个名为 `quick_deny_anonymous` 的新配置,用来在不调用认证链的情况下,快速的拒绝掉匿名用户,从而提高认证效率 [#8516](https://github.com/emqx/emqx/pull/8516)。
+
+- 支持在 /publish API 中添加消息属性 [#9401](https://github.com/emqx/emqx/pull/9401)。
+
+- 优化查询客户端列表的 HTTP API 性能 [#9374](https://github.com/emqx/emqx/pull/9374)。
+
## 修复
- 修复 helm chart 的 `ssl.existingName` 选项不起作用 [#9307](https://github.com/emqx/emqx/issues/9307)。
@@ -34,3 +40,5 @@
- 修复 `/configs/global_zone` API 无法正确获取配置的默认值问题 [#9392](https://github.com/emqx/emqx/pull/9392)。
- 修复 mountpoint 配置未对遗嘱消息生效的问题 [#9399](https://github.com/emqx/emqx/pull/9399)
+
+- 修复桥接配置更新 SSL 相关配置后,过时的 SSL 文件没有被删除的问题 [#9411](https://github.com/emqx/emqx/pull/9411)。
diff --git a/deploy/charts/emqx/Chart.yaml b/deploy/charts/emqx/Chart.yaml
index b42ca84d0..f3f33c984 100644
--- a/deploy/charts/emqx/Chart.yaml
+++ b/deploy/charts/emqx/Chart.yaml
@@ -14,8 +14,8 @@ type: application
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
-version: 5.0.10
+version: 5.0.11
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application.
-appVersion: 5.0.10
+appVersion: 5.0.11