deleteObject in db adapter

drew-gross · drew-gross · commit 85667341a161 · 2016-04-21T18:57:47.000-07:00
diff --git a/spec/ParseHooks.spec.js b/spec/ParseHooks.spec.js
@@ -37,50 +37,43 @@ describe('Hooks', () => {
      });
    });
 
-   it("should CRUD a function registration", (done) => {
-     // Create
-     Parse.Hooks.createFunction("My-Test-Function", "http://someurl").then((res) => {
-       expect(res.functionName).toBe("My-Test-Function");
-       expect(res.url).toBe("http://someurl")
-       // Find
-       return Parse.Hooks.getFunction("My-Test-Function");
-     }, (err) => {
-       fail(err);
-       done();
-     }).then((res) => {
-       expect(res).not.toBe(null);
-       expect(res).not.toBe(undefined);
-       expect(res.url).toBe("http://someurl");
-       // delete
-        return Parse.Hooks.updateFunction("My-Test-Function", "http://anotherurl");
-     }, (err) => {
-       fail(err);
-       done();
-     }).then((res) => {
-       expect(res.functionName).toBe("My-Test-Function");
-       expect(res.url).toBe("http://anotherurl")
-
-       return Parse.Hooks.deleteFunction("My-Test-Function");
-     }, (err) => {
-       fail(err);
-       done();
-     }).then((res) => {
-       // Find again! but should be deleted
-       return Parse.Hooks.getFunction("My-Test-Function");
-     }, (err) => {
-       fail(err);
-       done();
-     }).then((res) => {
-       fail("Should not succeed")
-       done();
-     }, (err) => {
-       expect(err).not.toBe(null);
-       expect(err).not.toBe(undefined);
-       expect(err.code).toBe(143);
-       expect(err.error).toBe("no function named: My-Test-Function is defined")
-       done();
-     })
-   });
+  it("should CRUD a function registration", (done) => {
+    // Create
+    Parse.Hooks.createFunction("My-Test-Function", "http://someurl")
+    .then(response => {
+      expect(response.functionName).toBe("My-Test-Function");
+      expect(response.url).toBe("http://someurl")
+      // Find
+      return Parse.Hooks.getFunction("My-Test-Function")
+    }).then(response => {
+      expect(response.url).toBe("http://someurl");
+      return Parse.Hooks.updateFunction("My-Test-Function", "http://anotherurl");
+    })
+    .then((res) => {
+      expect(res.functionName).toBe("My-Test-Function");
+      expect(res.url).toBe("http://anotherurl")
+      // delete
+      return Parse.Hooks.deleteFunction("My-Test-Function")
+    })
+    .then((res) => {
+      // Find again! but should be deleted
+      return Parse.Hooks.getFunction("My-Test-Function")
+      .then((res) => {
+        fail("Failed to delete hook")
+        done();
+        return Promise.resolve();
+      }, (err) => {
+        expect(err.code).toBe(143);
+        expect(err.error).toBe("no function named: My-Test-Function is defined")
+        done();
+        return Promise.resolve();
+      })
+    })
+    .catch(error => {
+      fail(error);
+      done();
+    })
+  });
 
    it("should CRUD a trigger registration", (done) => {
      // Create
diff --git a/src/Adapters/Storage/Mongo/MongoStorageAdapter.js b/src/Adapters/Storage/Mongo/MongoStorageAdapter.js
@@ -159,6 +159,27 @@ export class MongoStorageAdapter {
     .then(collection => collection.insertOne(mongoObject));
   }
 
+  // Remove the object with the given ID. If the object does not exist, reject with OBJECT_NOT_FOUND.
+  // If there is a different type of error, reject with INTERNAL_SERVER_ERROR and a message
+  // that doesn't leak info to the client.
+  deleteObject(className, objectId) {
+    return this.adaptiveCollection(className)
+    .then(collection => collection.deleteOne({ _id: objectId }))
+    .then(({ deletedCount }) => {
+      if (deletedCount === 1) {
+        return Promise.resolve();
+      } else {
+        throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Object not found.');
+      }
+    }, error => {
+      throw new Parse.Error(Parse.Error.INTERNAL_SERVER_ERROR, 'Database adapter error.');
+    });
+  }
+
+  //
+  deleteObjectsByQuery(className, query) {
+  }
+
   get transform() {
     return transform;
   }
diff --git a/src/Controllers/DatabaseController.js b/src/Controllers/DatabaseController.js
@@ -156,7 +156,7 @@ DatabaseController.prototype.update = function(className, query, update, {
     .then(() => this.adapter.adaptiveCollection(className))
     .then(collection => {
       if (!isMaster) {
-        query = this.addPointerPermissions(schema, className, 'update', query, aclGroup); 
+        query = this.addPointerPermissions(schema, className, 'update', query, aclGroup);
       }
       if (!query) {
         return Promise.resolve();
@@ -284,40 +284,56 @@ DatabaseController.prototype.removeRelation = function(key, fromClassName, fromI
 //   acl:  a list of strings. If the object to be updated has an ACL,
 //         one of the provided strings must provide the caller with
 //         write permissions.
-DatabaseController.prototype.destroy = function(className, query, { acl } = {}) {
-  var isMaster = acl !== undefined;
-  var aclGroup = acl || [];
+DatabaseController.prototype.destroy = function(className, { objectId, ...query}, { acl } = {}) {
+  const isMaster = acl !== undefined;
+  const aclGroup = acl || [];
 
-  var schema;
   return this.loadSchema()
-    .then(s => {
-      schema = s;
-      if (!isMaster) {
-        return schema.validatePermission(className, aclGroup, 'delete');
-      }
-      return Promise.resolve();
-    })
-    .then(() => this.adapter.adaptiveCollection(className))
-    .then(collection => {
-      if (!isMaster) {
-        query = this.addPointerPermissions(schema, className, 'delete', query, aclGroup); 
-        if (!query) {
-          throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Object not found.');
+  .then(schemaController => {
+    return (isMaster ? Promise.resolve() : schemaController.validatePermission(className, aclGroup, 'delete'))
+    .then(() => {
+      if (query !== {} || !objectId) {
+        if (objectId) {
+          query.objectId = objectId;
         }
-      }
-      let mongoWhere = this.transform.transformWhere(schema, className, query, {validate: !this.skipValidation});
-      if (acl) {
-        mongoWhere = this.transform.addWriteACL(mongoWhere, acl);
-      }
-      return collection.deleteMany(mongoWhere);
-    })
-    .then(resp => {
-      //Check _Session to avoid changing password failed without any session.
-      // TODO: @nlutsenko Stop relying on `result.n`
-      if (resp.result.n === 0 && className !== "_Session") {
-        throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Object not found.');
+
+        // delete by query
+        return this.adapter.adaptiveCollection(className)
+        .then(collection => {
+          if (!isMaster) {
+            query = this.addPointerPermissions(schema, className, 'delete', query, aclGroup);
+            if (!query) {
+              throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Object not found.');
+            }
+          }
+          let mongoWhere = this.transform.transformWhere(schemaController, className, query, {validate: !this.skipValidation});
+          if (acl) {
+            mongoWhere = this.transform.addWriteACL(mongoWhere, acl);
+          }
+          return collection.deleteMany(mongoWhere)
+          .then(resp => {
+            //Check _Session to avoid changing password failed without any session.
+            // TODO: @nlutsenko Stop relying on `result.n`
+            if (resp.result.n === 0 && className !== "_Session") {
+              throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Object not found.');
+            }
+          });
+        });
+      } else {
+        // delete by objectId
+        return this.adapter.deleteObject(className, objectId)
+        .catch(error => {
+          if (className === '_Session' && error.code === Parse.Error.OBJECT_NOT_FOUND) {
+            // When deleting sessions while changing passwords, don't throw an error.
+            // I suspect this isn't necessary, as sessions should only be deleted by query
+            // when changing password, but we'll see.
+            return Promise.resolve();
+          }
+          throw error;
+        });
       }
     });
+  });
 };
 
 // Inserts an object into the database.
@@ -612,7 +628,7 @@ DatabaseController.prototype.find = function(className, query, {
   .then(() => this.adapter.adaptiveCollection(className))
   .then(collection => {
     if (!isMaster) {
-      query = this.addPointerPermissions(schema, className, op, query, aclGroup); 
+      query = this.addPointerPermissions(schema, className, op, query, aclGroup);
     }
     if (!query) {
       if (op == 'get') {
diff --git a/src/cloud-code/Parse.Hooks.js b/src/cloud-code/Parse.Hooks.js
@@ -1,6 +1,6 @@
 var request = require("request");
 const send = function(method, path, body) {
-  
+
   var Parse = require("parse/node").Parse;
 
   var options = {
@@ -12,15 +12,15 @@ const send = function(method, path, body) {
         'Content-Type': 'application/json'
       },
   };
-  
+
   if (body) {
     if (typeof body == "object") {
       options.body = JSON.stringify(body);
     } else {
       options.body = body;
     }
   }
-  
+
   var promise = new Parse.Promise();
   request(options, function(err, response, body){
       if (err) {
