Skip to main content
Module

x/postgres/connection/connection_params.ts

PostgreSQL driver for Deno
denodrivers/postgres
Extremely Popular
Go to Latest
File
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249
import { parseDsn } from "../utils/utils.ts";import { ConnectionParamsError } from "../client/error.ts";
/** * The connection string must match the following URI structure * * ```ts * const connection = "postgres://user:password@hostname:port/database?application_name=application_name"; * ``` * * Password, port and application name are optional parameters */export type ConnectionString = string;
/** * This function retrieves the connection options from the environmental variables * as they are, without any extra parsing * * It will throw if no env permission was provided on startup */function getPgEnv(): ClientOptions {  return {    database: Deno.env.get("PGDATABASE"),    hostname: Deno.env.get("PGHOST"),    port: Deno.env.get("PGPORT"),    user: Deno.env.get("PGUSER"),    password: Deno.env.get("PGPASSWORD"),    applicationName: Deno.env.get("PGAPPNAME"),  };}
export interface ConnectionOptions {  /**   * By default, any client will only attempt to stablish   * connection with your database once. Setting this parameter   * will cause the client to attempt reconnection as many times   * as requested before erroring   *   * default: `1`   */  attempts: number;}
// TODO// Refactor enabled and enforce into one single option for 1.0export interface TLSOptions {  /**   * If TLS support is enabled or not. If the server requires TLS,   * the connection will fail.   */  enabled: boolean;  /**   * This will force the connection to run over TLS   * If the server doesn't support TLS, the connection will fail   *   * default: `false`   */  enforce: boolean;  /**   * A custom CA file to use for the TLS connection to the server.   */  caFile?: string;}
export interface ClientOptions {  applicationName?: string;  connection?: Partial<ConnectionOptions>;  database?: string;  hostname?: string;  password?: string;  port?: string | number;  tls?: Partial<TLSOptions>;  user?: string;}
export interface ClientConfiguration {  applicationName: string;  connection: ConnectionOptions;  database: string;  hostname: string;  password?: string;  port: number;  tls: TLSOptions;  user: string;}
function formatMissingParams(missingParams: string[]) {  return `Missing connection parameters: ${    missingParams.join(      ", ",    )  }`;}
/** * This validates the options passed are defined and have a value other than null * or empty string, it throws a connection error otherwise * * @param has_env_access This parameter will change the error message if set to true, * telling the user to pass env permissions in order to read environmental variables */function assertRequiredOptions(  options: Partial<ClientConfiguration>,  requiredKeys: (keyof ClientOptions)[],  has_env_access: boolean,): asserts options is ClientConfiguration {  const missingParams: (keyof ClientOptions)[] = [];  for (const key of requiredKeys) {    if (      options[key] === "" ||      options[key] === null ||      options[key] === undefined    ) {      missingParams.push(key);    }  }
  if (missingParams.length) {    let missing_params_message = formatMissingParams(missingParams);    if (!has_env_access) {      missing_params_message +=        "\nConnection parameters can be read from environment variables only if Deno is run with env permission";    }
    throw new ConnectionParamsError(missing_params_message);  }}
function parseOptionsFromDsn(connString: string): ClientOptions {  const dsn = parseDsn(connString);
  if (dsn.driver !== "postgres" && dsn.driver !== "postgresql") {    throw new ConnectionParamsError(      `Supplied DSN has invalid driver: ${dsn.driver}.`,    );  }
  let tls: TLSOptions = { enabled: true, enforce: false };  if (dsn.params.sslmode) {    const sslmode = dsn.params.sslmode;    delete dsn.params.sslmode;
    if (!["disable", "require", "prefer"].includes(sslmode)) {      throw new ConnectionParamsError(        `Supplied DSN has invalid sslmode '${sslmode}'. Only 'disable', 'require', and 'prefer' are supported`,      );    }
    if (sslmode === "require") {      tls = { enabled: true, enforce: true };    }
    if (sslmode === "disable") {      tls = { enabled: false, enforce: false };    }  }
  return {    ...dsn,    applicationName: dsn.params.application_name,    tls,  };}
const DEFAULT_OPTIONS: Omit<ClientConfiguration, "database" | "user"> = {  applicationName: "deno_postgres",  connection: {    attempts: 1,  },  hostname: "127.0.0.1",  port: 5432,  tls: {    enabled: true,    enforce: false,  },};
export function createParams(  params: string | ClientOptions = {},): ClientConfiguration {  if (typeof params === "string") {    params = parseOptionsFromDsn(params);  }
  let pgEnv: ClientOptions = {};  let has_env_access = true;  try {    pgEnv = getPgEnv();  } catch (e) {    if (e instanceof Deno.errors.PermissionDenied) {      has_env_access = false;    } else {      throw e;    }  }
  let port: number;  if (params.port) {    port = Number(params.port);  } else if (pgEnv.port) {    port = Number(pgEnv.port);  } else {    port = DEFAULT_OPTIONS.port;  }  if (Number.isNaN(port) || port === 0) {    throw new ConnectionParamsError(      `"${params.port ?? pgEnv.port}" is not a valid port number`,    );  }
  const tls_enabled = !!(params?.tls?.enabled ?? DEFAULT_OPTIONS.tls.enabled);  const tls_enforced = !!(params?.tls?.enforce ?? DEFAULT_OPTIONS.tls.enforce);
  if (!tls_enabled && tls_enforced) {    throw new ConnectionParamsError(      "Can't enforce TLS when client has TLS encryption is disabled",    );  }
  // TODO  // Perhaps username should be taken from the PC user as a default?  const connection_options = {    applicationName: params.applicationName ?? pgEnv.applicationName ??      DEFAULT_OPTIONS.applicationName,    connection: {      attempts: params?.connection?.attempts ??        DEFAULT_OPTIONS.connection.attempts,    },    database: params.database ?? pgEnv.database,    hostname: params.hostname ?? pgEnv.hostname ?? DEFAULT_OPTIONS.hostname,    password: params.password ?? pgEnv.password,    port,    tls: {      enabled: tls_enabled,      enforce: tls_enforced,      caFile: params?.tls?.caFile,    },    user: params.user ?? pgEnv.user,  };
  assertRequiredOptions(    connection_options,    ["applicationName", "database", "hostname", "port", "user"],    has_env_access,  );
  return connection_options;}