apunkt/omnigraph
1
0
Fork 0
mirror of https://github.com/ModernRelay/omnigraph.git synced 2026-06-24 02:38:06 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Initial public Omnigraph repository

Browse source
This commit is contained in:
andrew 2026-04-10 20:49:41 +03:00
commit 338289656a
110 changed files with 60747 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

28
crates/omnigraph-cli/Cargo.toml Normal file
View file

@ -0,0 +1,28 @@
[package]
name = "omnigraph-cli"
version = "0.4.0"
edition = "2024"
description = "CLI for the Omnigraph graph database."
license = "MIT"
[[bin]]
name = "omnigraph"
path = "src/main.rs"
[dependencies]
omnigraph = { path = "../omnigraph", version = "0.4.0" }
omnigraph-compiler = { path = "../omnigraph-compiler", version = "0.4.0" }
omnigraph-server = { path = "../omnigraph-server", version = "0.4.0" }
clap = { workspace = true }
color-eyre = { workspace = true }
serde = { workspace = true }
serde_json = { workspace = true }
serde_yaml = { workspace = true }
tokio = { workspace = true }
reqwest = { workspace = true, features = ["blocking"] }
[dev-dependencies]
assert_cmd = "2"
predicates = "3"
serde_json = { workspace = true }
tempfile = { workspace = true }

586
crates/omnigraph-cli/src/embed.rs Normal file
View file

@ -0,0 +1,586 @@
use std::collections::{BTreeMap, HashSet};
use std::fs::{self, File};
use std::io::{BufRead, BufReader, BufWriter, Write};
use std::path::{Path, PathBuf};
use clap::Args;
use color_eyre::eyre::{Result, bail, eyre};
use omnigraph::embedding::EmbeddingClient;
use serde::{Deserialize, Serialize};
use serde_json::{Map, Value, json};
const DEFAULT_EMBED_MODEL: &str = "gemini-embedding-2-preview";
#[derive(Debug, Args, Clone)]
pub(crate) struct EmbedArgs {
/// Seed manifest path
#[arg(long, conflicts_with_all = ["input", "output", "spec"])]
pub seed: Option<PathBuf>,
/// Raw seed JSONL input path
#[arg(long, requires_all = ["output", "spec"], conflicts_with = "seed")]
pub input: Option<PathBuf>,
/// Embedded JSONL output path
#[arg(long)]
pub output: Option<PathBuf>,
/// Embedding spec JSON path
#[arg(long, requires_all = ["input", "output"], conflicts_with = "seed")]
pub spec: Option<PathBuf>,
/// Remove embedding fields instead of generating embeddings
#[arg(long, conflicts_with = "reembed_all")]
pub clean: bool,
/// Regenerate embeddings for all matching rows
#[arg(long, conflicts_with = "clean")]
pub reembed_all: bool,
/// Restrict processing to these type names
#[arg(long = "type")]
pub types: Vec<String>,
/// Reembed or clean matching rows only. Syntax: Type:field=value or field=value
#[arg(long = "select")]
pub selectors: Vec<String>,
/// Print JSON summary
#[arg(long)]
pub json: bool,
}
#[derive(Debug, Clone, Serialize)]
pub(crate) struct EmbedOutput {
pub input: String,
pub output: String,
pub rows: usize,
pub selected_rows: usize,
pub embedded_rows: usize,
pub cleaned_rows: usize,
pub mode: &'static str,
pub dimension: usize,
pub model: String,
}
#[derive(Debug, Clone)]
pub(crate) struct EmbedJob {
input: PathBuf,
output: PathBuf,
spec: EmbedSpec,
mode: EmbedMode,
type_filter: HashSet<String>,
selectors: Vec<RowSelector>,
}
#[derive(Debug, Clone, Copy)]
enum EmbedMode {
FillMissing,
ReembedAll,
Clean,
}
impl EmbedMode {
fn as_str(self, selectors_present: bool) -> &'static str {
match self {
Self::FillMissing if selectors_present => "reembed_selected",
Self::FillMissing => "fill_missing",
Self::ReembedAll => "reembed_all",
Self::Clean => "clean",
}
}
}
#[derive(Debug, Clone, Deserialize)]
struct EmbedSpec {
#[serde(default = "default_embed_model")]
model: String,
dimension: usize,
types: BTreeMap<String, EmbedTypeSpec>,
}
#[derive(Debug, Clone, Deserialize)]
struct EmbedTypeSpec {
target: String,
fields: Vec<String>,
}
#[derive(Debug, Clone, Deserialize)]
struct SeedManifest {
#[serde(default)]
sources: Option<SeedSources>,
#[serde(default)]
artifacts: Option<SeedArtifacts>,
#[serde(default)]
embeddings: Option<EmbedSpec>,
#[serde(default)]
seed: Option<LegacySeed>,
}
#[derive(Debug, Clone, Deserialize)]
struct SeedSources {
raw_seed: PathBuf,
}
#[derive(Debug, Clone, Deserialize)]
struct SeedArtifacts {
embedded_seed: PathBuf,
}
#[derive(Debug, Clone, Deserialize)]
struct LegacySeed {
data: PathBuf,
}
#[derive(Debug, Clone)]
struct RowSelector {
type_name: Option<String>,
field: String,
expected: String,
}
#[derive(Debug)]
enum EmbedRow {
Entity {
type_name: String,
data: Map<String, Value>,
root: Map<String, Value>,
},
Passthrough(Map<String, Value>),
}
pub(crate) fn resolve_embed_job(args: &EmbedArgs) -> Result<EmbedJob> {
let mode = if args.clean {
EmbedMode::Clean
} else if args.reembed_all {
EmbedMode::ReembedAll
} else {
EmbedMode::FillMissing
};
let selectors = args
.selectors
.iter()
.map(|selector| RowSelector::parse(selector))
.collect::<Result<Vec<_>>>()?;
let type_filter = args.types.iter().cloned().collect::<HashSet<_>>();
let (input, output, spec) = if let Some(seed_path) = &args.seed {
let manifest = load_seed_manifest(seed_path)?;
(
manifest.raw_seed,
args.output.clone().unwrap_or(manifest.embedded_seed),
manifest.spec,
)
} else {
let input = args
.input
.clone()
.ok_or_else(|| eyre!("--input is required when --seed is not provided"))?;
let output = args
.output
.clone()
.ok_or_else(|| eyre!("--output is required when --seed is not provided"))?;
let spec_path = args
.spec
.clone()
.ok_or_else(|| eyre!("--spec is required when --seed is not provided"))?;
let spec = load_embed_spec(&spec_path)?;
(input, output, spec)
};
if spec.model != DEFAULT_EMBED_MODEL {
bail!(
"only {} is supported for explicit seed embeddings right now",
DEFAULT_EMBED_MODEL
);
}
Ok(EmbedJob {
input,
output,
spec,
mode,
type_filter,
selectors,
})
}
pub(crate) async fn execute_embed(args: &EmbedArgs) -> Result<EmbedOutput> {
let job = resolve_embed_job(args)?;
run_embed_job(&job).await
}
pub(crate) async fn run_embed_job(job: &EmbedJob) -> Result<EmbedOutput> {
if !job.input.exists() {
bail!("seed input does not exist: {}", job.input.display());
}
if let Some(parent) = job.output.parent() {
fs::create_dir_all(parent)?;
}
let temp_output = temp_output_path(&job.output);
let mut reader = BufReader::new(File::open(&job.input)?);
let mut writer = BufWriter::new(File::create(&temp_output)?);
let client = match job.mode {
EmbedMode::Clean => None,
_ => Some(EmbeddingClient::from_env()?),
};
let mut line = String::new();
let mut rows = 0usize;
let mut selected_rows = 0usize;
let mut embedded_rows = 0usize;
let mut cleaned_rows = 0usize;
loop {
line.clear();
let bytes = reader.read_line(&mut line)?;
if bytes == 0 {
break;
}
let raw = line.trim();
if raw.is_empty() {
continue;
}
rows += 1;
let mut row = parse_row(raw, rows)?;
let selected = row_matches_selection(&row, &job.type_filter, &job.selectors);
if selected {
selected_rows += 1;
}
if let Some(type_spec) = row
.type_name()
.and_then(|type_name| job.spec.types.get(type_name))
{
match job.mode {
EmbedMode::Clean => {
if selected
&& row
.data_mut()
.is_some_and(|data| data.remove(&type_spec.target).is_some())
{
cleaned_rows += 1;
}
}
EmbedMode::ReembedAll => {
if selected {
embed_row(
&mut row,
type_spec,
job.spec.dimension,
client.as_ref().unwrap(),
)
.await?;
embedded_rows += 1;
}
}
EmbedMode::FillMissing => {
let reembed_selected = !job.selectors.is_empty();
if selected
&& (reembed_selected
|| embedding_missing(
row.data().and_then(|data| data.get(&type_spec.target)),
))
{
embed_row(
&mut row,
type_spec,
job.spec.dimension,
client.as_ref().unwrap(),
)
.await?;
embedded_rows += 1;
}
}
}
}
writer.write_all(serde_json::to_string(&row.into_value())?.as_bytes())?;
writer.write_all(b"\n")?;
}
writer.flush()?;
fs::rename(&temp_output, &job.output)?;
Ok(EmbedOutput {
input: job.input.display().to_string(),
output: job.output.display().to_string(),
rows,
selected_rows,
embedded_rows,
cleaned_rows,
mode: job.mode.as_str(!job.selectors.is_empty()),
dimension: job.spec.dimension,
model: job.spec.model.clone(),
})
}
fn temp_output_path(output: &Path) -> PathBuf {
let mut temp = output.as_os_str().to_os_string();
temp.push(".tmp");
PathBuf::from(temp)
}
fn default_embed_model() -> String {
DEFAULT_EMBED_MODEL.to_string()
}
fn load_embed_spec(path: &Path) -> Result<EmbedSpec> {
Ok(serde_json::from_str(&fs::read_to_string(path)?)?)
}
struct ResolvedSeedManifest {
raw_seed: PathBuf,
embedded_seed: PathBuf,
spec: EmbedSpec,
}
fn load_seed_manifest(path: &Path) -> Result<ResolvedSeedManifest> {
let base_dir = path
.parent()
.map(Path::to_path_buf)
.unwrap_or(std::env::current_dir()?);
let manifest: SeedManifest = serde_yaml::from_str(&fs::read_to_string(path)?)?;
let raw_seed = manifest
.sources
.as_ref()
.map(|sources| sources.raw_seed.clone())
.or_else(|| manifest.seed.as_ref().map(|seed| seed.data.clone()))
.ok_or_else(|| eyre!("seed manifest is missing sources.raw_seed"))?;
let embedded_seed = manifest
.artifacts
.as_ref()
.map(|artifacts| artifacts.embedded_seed.clone())
.unwrap_or_else(|| PathBuf::from("./build/seed.embedded.jsonl"));
let spec = manifest
.embeddings
.ok_or_else(|| eyre!("seed manifest is missing embeddings"))?;
Ok(ResolvedSeedManifest {
raw_seed: base_dir.join(raw_seed),
embedded_seed: base_dir.join(embedded_seed),
spec,
})
}
impl RowSelector {
fn parse(value: &str) -> Result<Self> {
let (lhs, expected) = value
.split_once('=')
.ok_or_else(|| eyre!("selector must be field=value or Type:field=value"))?;
let (type_name, field) = if let Some((type_name, field)) = lhs.split_once(':') {
(
Some(type_name.trim().to_string()).filter(|value| !value.is_empty()),
field.trim().to_string(),
)
} else {
(None, lhs.trim().to_string())
};
if field.is_empty() {
bail!("selector field cannot be empty");
}
Ok(Self {
type_name,
field,
expected: expected.trim().to_string(),
})
}
fn matches(&self, type_name: &str, data: &Map<String, Value>) -> bool {
if self
.type_name
.as_deref()
.is_some_and(|expected| expected != type_name)
{
return false;
}
data.get(&self.field)
.map(render_value)
.is_some_and(|value| value == self.expected)
}
}
fn parse_row(raw: &str, line_number: usize) -> Result<EmbedRow> {
let mut root = serde_json::from_str::<Map<String, Value>>(raw)
.map_err(|err| eyre!("line {} is not valid JSON: {}", line_number, err))?;
let Some(type_name) = root.get("type").and_then(Value::as_str).map(str::to_string) else {
return Ok(EmbedRow::Passthrough(root));
};
let data = root
.remove("data")
.and_then(|value| value.as_object().cloned())
.ok_or_else(|| eyre!("line {} is missing object field 'data'", line_number))?;
Ok(EmbedRow::Entity {
type_name,
data,
root,
})
}
impl EmbedRow {
fn into_value(self) -> Value {
match self {
Self::Entity {
type_name,
data,
mut root,
} => {
root.insert("type".to_string(), Value::String(type_name));
root.insert("data".to_string(), Value::Object(data));
Value::Object(root)
}
Self::Passthrough(root) => Value::Object(root),
}
}
fn type_name(&self) -> Option<&str> {
match self {
Self::Entity { type_name, .. } => Some(type_name.as_str()),
Self::Passthrough(_) => None,
}
}
fn data(&self) -> Option<&Map<String, Value>> {
match self {
Self::Entity { data, .. } => Some(data),
Self::Passthrough(_) => None,
}
}
fn data_mut(&mut self) -> Option<&mut Map<String, Value>> {
match self {
Self::Entity { data, .. } => Some(data),
Self::Passthrough(_) => None,
}
}
}
fn row_matches_selection(
row: &EmbedRow,
type_filter: &HashSet<String>,
selectors: &[RowSelector],
) -> bool {
let Some(type_name) = row.type_name() else {
return false;
};
let Some(data) = row.data() else {
return false;
};
let matches_type = type_filter.is_empty() || type_filter.contains(type_name);
if !matches_type {
return false;
}
if selectors.is_empty() {
return true;
}
selectors
.iter()
.any(|selector| selector.matches(type_name, data))
}
fn embedding_missing(value: Option<&Value>) -> bool {
match value {
None | Some(Value::Null) => true,
Some(Value::Array(values)) => values.is_empty(),
_ => false,
}
}
fn render_value(value: &Value) -> String {
match value {
Value::Null => String::new(),
Value::String(value) => value.trim().to_string(),
Value::Bool(value) => {
if *value {
"true".to_string()
} else {
"false".to_string()
}
}
Value::Number(value) => value.to_string(),
Value::Array(values) => values
.iter()
.map(render_value)
.filter(|value| !value.is_empty())
.collect::<Vec<_>>()
.join(", "),
other => other.to_string(),
}
}
fn build_embedding_text(type_name: &str, data: &Map<String, Value>, fields: &[String]) -> String {
let mut parts = vec![format!("type: {}", type_name)];
for field in fields {
if let Some(value) = data.get(field) {
let rendered = render_value(value);
if !rendered.is_empty() {
parts.push(format!("{}: {}", field, rendered));
}
}
}
parts.join("\n")
}
async fn embed_row(
row: &mut EmbedRow,
spec: &EmbedTypeSpec,
dimension: usize,
client: &EmbeddingClient,
) -> Result<()> {
let type_name = row
.type_name()
.ok_or_else(|| eyre!("cannot embed non-entity seed rows"))?
.to_string();
let data = row
.data_mut()
.ok_or_else(|| eyre!("cannot embed non-entity seed rows"))?;
let text = build_embedding_text(&type_name, data, &spec.fields);
if text.trim().is_empty() {
return Ok(());
}
let embedding = client.embed_document_text(&text, dimension).await?;
data.insert(spec.target.clone(), json!(embedding));
Ok(())
}
#[cfg(test)]
mod tests {
use super::{RowSelector, build_embedding_text, render_value};
use serde_json::json;
#[test]
fn selector_parses_type_and_field_forms() {
let typed = RowSelector::parse("Decision:slug=dec-1").unwrap();
assert_eq!(typed.type_name.as_deref(), Some("Decision"));
assert_eq!(typed.field, "slug");
assert_eq!(typed.expected, "dec-1");
let plain = RowSelector::parse("slug=dec-2").unwrap();
assert_eq!(plain.type_name, None);
assert_eq!(plain.field, "slug");
assert_eq!(plain.expected, "dec-2");
}
#[test]
fn render_value_handles_lists_and_scalars() {
assert_eq!(render_value(&json!(["a", "b"])), "a, b");
assert_eq!(render_value(&json!(true)), "true");
assert_eq!(render_value(&json!(3)), "3");
}
#[test]
fn build_embedding_text_prefixes_type_and_fields() {
let data = json!({
"slug": "dec-1",
"intent": "Ship it"
});
let object = data.as_object().unwrap();
let text = build_embedding_text(
"Decision",
object,
&["slug".to_string(), "intent".to_string()],
);
assert!(text.contains("type: Decision"));
assert!(text.contains("slug: dec-1"));
assert!(text.contains("intent: Ship it"));
}
}

2410
crates/omnigraph-cli/src/main.rs Normal file
View file

File diff suppressed because it is too large Load diff

356
crates/omnigraph-cli/src/read_format.rs Normal file
View file

@ -0,0 +1,356 @@
use color_eyre::eyre::Result;
use omnigraph_server::ReadOutputFormat;
use omnigraph_server::api::ReadOutput;
use omnigraph_server::config::TableCellLayout;
use serde_json::{Map, Value};
pub struct ReadRenderOptions {
pub max_column_width: usize,
pub cell_layout: TableCellLayout,
}
pub fn render_read(
output: &ReadOutput,
format: ReadOutputFormat,
options: &ReadRenderOptions,
) -> Result<String> {
match format {
ReadOutputFormat::Json => Ok(serde_json::to_string_pretty(output)?),
ReadOutputFormat::Jsonl => render_jsonl(output),
ReadOutputFormat::Csv => render_csv(output),
ReadOutputFormat::Kv => Ok(render_kv(output)),
ReadOutputFormat::Table => Ok(render_table(output, options)),
}
}
fn render_jsonl(output: &ReadOutput) -> Result<String> {
let mut lines = Vec::new();
lines.push(serde_json::to_string(&serde_json::json!({
"kind": "metadata",
"query_name": output.query_name,
"target": output.target,
"row_count": output.row_count,
}))?);
for row in rows(output) {
lines.push(serde_json::to_string(&row)?);
}
Ok(lines.join("\n"))
}
fn render_csv(output: &ReadOutput) -> Result<String> {
let rows = rows(output);
let columns = columns(output, &rows);
let mut lines = Vec::new();
lines.push(
columns
.iter()
.map(|column| csv_escape(column))
.collect::<Vec<_>>()
.join(","),
);
for row in rows {
lines.push(
columns
.iter()
.map(|column| csv_escape(&stringify_value(row.get(column).unwrap_or(&Value::Null))))
.collect::<Vec<_>>()
.join(","),
);
}
Ok(lines.join("\n"))
}
fn render_kv(output: &ReadOutput) -> String {
let mut lines = vec![header_line(output)];
let rows = rows(output);
if rows.is_empty() {
lines.push("(no rows)".to_string());
return lines.join("\n");
}
for (idx, row) in rows.iter().enumerate() {
if idx > 0 {
lines.push(String::new());
}
lines.push(format!("row {}", idx + 1));
for column in columns(output, &rows) {
lines.push(format!(
"{}: {}",
column,
stringify_value(row.get(&column).unwrap_or(&Value::Null))
));
}
}
lines.join("\n")
}
fn render_table(output: &ReadOutput, options: &ReadRenderOptions) -> String {
let mut lines = vec![header_line(output)];
let rows = rows(output);
let columns = columns(output, &rows);
if columns.is_empty() {
lines.push("(no rows)".to_string());
return lines.join("\n");
}
let widths = columns
.iter()
.map(|column| {
let mut width = column.chars().count();
for row in &rows {
let rendered =
normalize_cell(&stringify_value(row.get(column).unwrap_or(&Value::Null)));
let longest = rendered
.lines()
.map(|line| line.chars().count())
.max()
.unwrap_or(0);
width = width.max(longest.min(options.max_column_width));
}
width.min(options.max_column_width.max(8))
})
.collect::<Vec<_>>();
lines.push(render_table_line(&columns, &widths));
lines.push(
widths
.iter()
.map(|width| "-".repeat(*width))
.collect::<Vec<_>>()
.join("-+-"),
);
for row in rows {
let cell_lines = columns
.iter()
.zip(widths.iter())
.map(|(column, width)| {
split_cell(
&normalize_cell(&stringify_value(row.get(column).unwrap_or(&Value::Null))),
*width,
options.cell_layout,
)
})
.collect::<Vec<_>>();
let line_count = cell_lines.iter().map(Vec::len).max().unwrap_or(1);
for line_idx in 0..line_count {
let rendered = cell_lines
.iter()
.zip(widths.iter())
.map(|(segments, width)| {
let segment = segments.get(line_idx).cloned().unwrap_or_default();
pad_to_width(&segment, *width)
})
.collect::<Vec<_>>();
lines.push(rendered.join(" | "));
}
}
lines.join("\n")
}
fn render_table_line(columns: &[String], widths: &[usize]) -> String {
columns
.iter()
.zip(widths.iter())
.map(|(column, width)| pad_to_width(column, *width))
.collect::<Vec<_>>()
.join(" | ")
}
fn header_line(output: &ReadOutput) -> String {
format!(
"{} rows from {} via {}",
output.row_count,
output
.target
.snapshot
.as_deref()
.map(|id| format!("snapshot {}", id))
.or_else(|| {
output
.target
.branch
.as_deref()
.map(|branch| format!("branch {}", branch))
})
.unwrap_or_else(|| "target".to_string()),
output.query_name
)
}
fn rows(output: &ReadOutput) -> Vec<Map<String, Value>> {
output
.rows
.as_array()
.into_iter()
.flatten()
.map(|row| match row {
Value::Object(map) => map.clone(),
other => {
let mut map = Map::new();
map.insert("value".to_string(), other.clone());
map
}
})
.collect()
}
fn columns(output: &ReadOutput, rows: &[Map<String, Value>]) -> Vec<String> {
if !output.columns.is_empty() {
return output.columns.clone();
}
let mut columns = rows
.iter()
.flat_map(|row| row.keys().cloned())
.collect::<Vec<_>>();
columns.sort();
columns.dedup();
columns
}
fn stringify_value(value: &Value) -> String {
match value {
Value::Null => "null".to_string(),
Value::String(text) => text.clone(),
Value::Bool(boolean) => boolean.to_string(),
Value::Number(number) => number.to_string(),
other => serde_json::to_string(other).unwrap_or_else(|_| "<invalid json>".to_string()),
}
}
fn normalize_cell(value: &str) -> String {
value.replace('\n', "\\n")
}
fn split_cell(value: &str, width: usize, layout: TableCellLayout) -> Vec<String> {
if value.is_empty() {
return vec![String::new()];
}
if value.chars().count() <= width {
return vec![value.to_string()];
}
match layout {
TableCellLayout::Truncate => vec![truncate(value, width)],
TableCellLayout::Wrap => wrap(value, width),
}
}
fn truncate(value: &str, width: usize) -> String {
if width <= 1 {
return value.chars().take(width).collect();
}
let keep = width.saturating_sub(1);
let mut out = value.chars().take(keep).collect::<String>();
out.push('…');
out
}
fn wrap(value: &str, width: usize) -> Vec<String> {
let chars = value.chars().collect::<Vec<_>>();
chars
.chunks(width.max(1))
.map(|chunk| chunk.iter().collect::<String>())
.collect()
}
fn pad_to_width(value: &str, width: usize) -> String {
let value_width = value.chars().count();
if value_width >= width {
value.to_string()
} else {
format!("{}{}", value, " ".repeat(width - value_width))
}
}
fn csv_escape(value: &str) -> String {
if value.contains(',') || value.contains('"') || value.contains('\n') || value.contains('\r') {
format!("\"{}\"", value.replace('"', "\"\""))
} else {
value.to_string()
}
}
#[cfg(test)]
mod tests {
use omnigraph_server::api::{ReadOutput, ReadTargetOutput};
use super::*;
fn sample_output() -> ReadOutput {
ReadOutput {
query_name: "get_person".to_string(),
target: ReadTargetOutput {
branch: Some("main".to_string()),
snapshot: None,
},
row_count: 1,
columns: vec!["name".to_string(), "age".to_string()],
rows: serde_json::json!([{ "name": "Alice", "age": 30 }]),
}
}
#[test]
fn csv_format_outputs_header_and_rows() {
let rendered = render_read(
&sample_output(),
ReadOutputFormat::Csv,
&ReadRenderOptions {
max_column_width: 80,
cell_layout: TableCellLayout::Truncate,
},
)
.unwrap();
assert!(rendered.lines().next().unwrap().contains("name,age"));
assert!(rendered.contains("Alice,30"));
}
#[test]
fn jsonl_format_emits_metadata_first() {
let rendered = render_read(
&sample_output(),
ReadOutputFormat::Jsonl,
&ReadRenderOptions {
max_column_width: 80,
cell_layout: TableCellLayout::Truncate,
},
)
.unwrap();
let first = rendered.lines().next().unwrap();
assert!(first.contains("\"kind\":\"metadata\""));
assert!(
rendered
.lines()
.nth(1)
.unwrap()
.contains("\"name\":\"Alice\"")
);
}
#[test]
fn render_falls_back_to_discovered_columns_for_legacy_payloads() {
let mut output = sample_output();
output.columns.clear();
let rendered = render_read(
&output,
ReadOutputFormat::Csv,
&ReadRenderOptions {
max_column_width: 80,
cell_layout: TableCellLayout::Truncate,
},
)
.unwrap();
assert!(rendered.lines().next().unwrap().contains("age,name"));
}
#[test]
fn csv_quotes_carriage_returns() {
assert_eq!(csv_escape("hello\rworld"), "\"hello\rworld\"");
}
}

1408
crates/omnigraph-cli/tests/cli.rs Normal file
View file

File diff suppressed because it is too large Load diff

292
crates/omnigraph-cli/tests/support/mod.rs Normal file
View file

@ -0,0 +1,292 @@
#![allow(dead_code)]
use std::fs;
use std::net::TcpListener;
use std::path::{Path, PathBuf};
use std::process::{Child, Command as StdCommand, Output, Stdio};
use std::thread::sleep;
use std::time::Duration;
use assert_cmd::Command;
use omnigraph::db::Omnigraph;
use omnigraph::loader::LoadMode;
use reqwest::blocking::Client;
use serde_json::Value;
use tempfile::{TempDir, tempdir};
pub fn cli() -> Command {
Command::cargo_bin("omnigraph").unwrap()
}
pub fn cli_process() -> StdCommand {
StdCommand::new(assert_cmd::cargo::cargo_bin("omnigraph"))
}
fn server_process() -> StdCommand {
if let Some(path) = std::env::var_os("CARGO_BIN_EXE_omnigraph-server") {
StdCommand::new(path)
} else if let Some(path) = built_server_binary() {
StdCommand::new(path)
} else {
let cargo = std::env::var_os("CARGO").unwrap_or_else(|| "cargo".into());
let mut cmd = StdCommand::new(cargo);
cmd.arg("run")
.arg("--quiet")
.arg("-p")
.arg("omnigraph-server")
.arg("--");
cmd
}
}
fn built_server_binary() -> Option<PathBuf> {
let workspace_root = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
let candidate = workspace_root
.join("target")
.join("debug")
.join(format!("omnigraph-server{}", std::env::consts::EXE_SUFFIX));
candidate.exists().then_some(candidate)
}
pub fn fixture(name: &str) -> PathBuf {
PathBuf::from(env!("CARGO_MANIFEST_DIR"))
.join("../omnigraph/tests/fixtures")
.join(name)
}
pub fn repo_path(root: &Path) -> PathBuf {
root.join("demo.omni")
}
pub fn output_success(cmd: &mut Command) -> Output {
let output = cmd.output().unwrap();
assert!(
output.status.success(),
"command failed\nstdout:\n{}\nstderr:\n{}",
String::from_utf8_lossy(&output.stdout),
String::from_utf8_lossy(&output.stderr)
);
output
}
pub fn output_failure(cmd: &mut Command) -> Output {
let output = cmd.output().unwrap();
assert!(
!output.status.success(),
"command unexpectedly succeeded\nstdout:\n{}\nstderr:\n{}",
String::from_utf8_lossy(&output.stdout),
String::from_utf8_lossy(&output.stderr)
);
output
}
pub fn stdout_string(output: &Output) -> String {
String::from_utf8(output.stdout.clone()).unwrap()
}
pub fn parse_stdout_json(output: &Output) -> Value {
serde_json::from_slice(&output.stdout).unwrap()
}
pub fn init_repo(repo: &Path) {
let schema = fixture("test.pg");
output_success(cli().arg("init").arg("--schema").arg(&schema).arg(repo));
}
pub fn load_fixture(repo: &Path) {
let data = fixture("test.jsonl");
output_success(cli().arg("load").arg("--data").arg(&data).arg(repo));
}
pub fn write_jsonl(path: &Path, rows: &str) {
fs::write(path, rows).unwrap();
}
pub fn write_query_file(path: &Path, source: &str) {
fs::write(path, source).unwrap();
}
pub fn write_config(path: &Path, source: &str) {
fs::write(path, source).unwrap();
}
fn yaml_string(value: &str) -> String {
format!("'{}'", value.replace('\'', "''"))
}
pub fn local_yaml_config(repo: &Path) -> String {
format!(
"\
targets:
local:
uri: {}
cli:
target: local
branch: main
query:
roots:
- .
policy: {{}}
",
yaml_string(&repo.to_string_lossy())
)
}
pub fn remote_yaml_config(url: &str) -> String {
format!(
"\
targets:
dev:
uri: {}
cli:
target: dev
branch: main
query:
roots:
- .
policy: {{}}
",
yaml_string(url)
)
}
pub struct TestServer {
child: Child,
pub base_url: String,
}
impl Drop for TestServer {
fn drop(&mut self) {
let _ = self.child.kill();
let _ = self.child.wait();
}
}
fn free_port() -> u16 {
let listener = TcpListener::bind("127.0.0.1:0").unwrap();
let port = listener.local_addr().unwrap().port();
drop(listener);
port
}
fn spawn_server_process(mut command: StdCommand) -> TestServer {
let port = free_port();
let bind = format!("127.0.0.1:{}", port);
let mut child = command
.arg("--bind")
.arg(&bind)
.stdout(Stdio::null())
.stderr(Stdio::null())
.spawn()
.unwrap();
let base_url = format!("http://{}", bind);
let client = Client::new();
for _ in 0..300 {
if client
.get(format!("{}/healthz", base_url))
.send()
.map(|response| response.status().is_success())
.unwrap_or(false)
{
return TestServer { child, base_url };
}
if let Some(status) = child.try_wait().unwrap() {
panic!("server exited before becoming healthy: {status}");
}
sleep(Duration::from_millis(100));
}
panic!("server did not become healthy");
}
pub fn spawn_server(repo: &Path) -> TestServer {
let mut command = server_process();
command.arg(repo);
spawn_server_process(command)
}
pub fn spawn_server_with_config(config: &Path) -> TestServer {
let mut command = server_process();
command.arg("--config").arg(config);
spawn_server_process(command)
}
pub fn spawn_server_with_config_env(config: &Path, envs: &[(&str, &str)]) -> TestServer {
let mut command = server_process();
command.arg("--config").arg(config);
for (name, value) in envs {
command.env(name, value);
}
spawn_server_process(command)
}
pub async fn begin_manual_run(repo: &Path, target_branch: &str) -> String {
let mut db = Omnigraph::open(repo.to_str().unwrap()).await.unwrap();
let run = db
.begin_run(target_branch, Some("cli-test-run"))
.await
.unwrap();
db.load(
&run.run_branch,
r#"{"type":"Person","data":{"name":"Eve","age":29}}"#,
LoadMode::Append,
)
.await
.unwrap();
run.run_id.as_str().to_string()
}
pub struct SystemRepo {
_temp: TempDir,
repo: PathBuf,
}
impl SystemRepo {
pub fn initialized() -> Self {
let temp = tempdir().unwrap();
let repo = repo_path(temp.path());
init_repo(&repo);
Self { _temp: temp, repo }
}
pub fn loaded() -> Self {
let temp = tempdir().unwrap();
let repo = repo_path(temp.path());
init_repo(&repo);
load_fixture(&repo);
Self { _temp: temp, repo }
}
pub fn path(&self) -> &Path {
&self.repo
}
pub fn write_query(&self, name: &str, source: &str) -> PathBuf {
let path = self.repo.parent().unwrap().join(name);
write_query_file(&path, source);
path
}
pub fn write_jsonl(&self, name: &str, rows: &str) -> PathBuf {
let path = self.repo.parent().unwrap().join(name);
write_jsonl(&path, rows);
path
}
pub fn write_config(&self, name: &str, source: &str) -> PathBuf {
let path = self.repo.parent().unwrap().join(name);
write_config(&path, source);
path
}
pub fn spawn_server(&self) -> TestServer {
spawn_server(&self.repo)
}
pub fn spawn_server_with_config(&self, config: &Path) -> TestServer {
spawn_server_with_config(config)
}
pub fn spawn_server_with_config_env(&self, config: &Path, envs: &[(&str, &str)]) -> TestServer {
spawn_server_with_config_env(config, envs)
}
}

1162
crates/omnigraph-cli/tests/system_local.rs Normal file
View file

File diff suppressed because it is too large Load diff

810
crates/omnigraph-cli/tests/system_remote.rs Normal file
View file

@ -0,0 +1,810 @@
mod support;
use std::fs;
use reqwest::blocking::Client;
use serde_json::json;
use support::*;
const REMOTE_POLICY_E2E_YAML: &str = r#"
version: 1
groups:
team: [act-bruno]
admins: [act-ragnor]
protected_branches: [main]
rules:
- id: team-read
allow:
actors: { group: team }
actions: [read]
branch_scope: any
- id: team-branch-create
allow:
actors: { group: team }
actions: [branch_create]
target_branch_scope: unprotected
- id: team-write-unprotected
allow:
actors: { group: team }
actions: [change]
branch_scope: unprotected
- id: admins-promote
allow:
actors: { group: admins }
actions: [branch_merge, run_publish]
target_branch_scope: protected
"#;
fn yaml_string(value: &str) -> String {
format!("'{}'", value.replace('\'', "''"))
}
fn remote_policy_server_config(repo: &SystemRepo) -> String {
format!(
"\
project:
name: remote-policy-e2e
targets:
local:
uri: {}
server:
target: local
policy:
file: ./policy.yaml
",
yaml_string(&repo.path().to_string_lossy())
)
}
fn remote_policy_client_config(url: &str) -> String {
format!(
"\
targets:
dev:
uri: {}
bearer_token_env: POLICY_TEST_TOKEN
cli:
target: dev
branch: main
query:
roots:
- .
auth:
env_file: ./.env.omni
",
yaml_string(url)
)
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_server_and_cli_end_to_end_flow() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
let mutation_file = repo.write_query(
"system-remote-change.gq",
r#"
query insert_person($name: String, $age: I32) {
insert Person { name: $name, age: $age }
}
"#,
);
let client = Client::new();
let health = client
.get(format!("{}/healthz", server.base_url))
.send()
.unwrap()
.error_for_status()
.unwrap()
.json::<serde_json::Value>()
.unwrap();
assert_eq!(health["status"], "ok");
let local_snapshot = parse_stdout_json(&output_success(
cli().arg("snapshot").arg(repo.path()).arg("--json"),
));
let snapshot = parse_stdout_json(&output_success(
cli()
.arg("snapshot")
.arg("--config")
.arg(&config)
.arg("--json"),
));
assert_eq!(snapshot["branch"], "main");
assert_eq!(snapshot["tables"], local_snapshot["tables"]);
let local_read = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg(repo.path())
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"Alice"}"#)
.arg("--json"),
));
let read_payload = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"Alice"}"#)
.arg("--json"),
));
assert_eq!(read_payload, local_read);
assert_eq!(read_payload["row_count"], 1);
assert_eq!(read_payload["rows"][0]["p.name"], "Alice");
let change_payload = parse_stdout_json(&output_success(
cli()
.arg("change")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&mutation_file)
.arg("--params")
.arg(r#"{"name":"Mina","age":28}"#)
.arg("--json"),
));
assert_eq!(change_payload["affected_nodes"], 1);
let query_source = fs::read_to_string(fixture("test.gq")).unwrap();
let http_read = client
.post(format!("{}/read", server.base_url))
.json(&json!({
"branch": "main",
"query_source": query_source,
"query_name": "get_person",
"params": { "name": "Mina" }
}))
.send()
.unwrap()
.error_for_status()
.unwrap()
.json::<serde_json::Value>()
.unwrap();
assert_eq!(http_read["row_count"], 1);
assert_eq!(http_read["rows"][0]["p.name"], "Mina");
let local_verify = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg(repo.path())
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"Mina"}"#)
.arg("--json"),
));
assert_eq!(local_verify["row_count"], 1);
assert_eq!(local_verify["rows"][0]["p.name"], "Mina");
let manual_run = tokio::runtime::Runtime::new()
.unwrap()
.block_on(begin_manual_run(repo.path(), "main"));
let publish_payload = parse_stdout_json(&output_success(
cli()
.arg("run")
.arg("publish")
.arg("--config")
.arg(&config)
.arg(&manual_run)
.arg("--json"),
));
assert_eq!(publish_payload["run_id"], manual_run);
assert_eq!(publish_payload["status"], "published");
let runs_payload = parse_stdout_json(&output_success(
cli()
.arg("run")
.arg("list")
.arg("--config")
.arg(&config)
.arg("--json"),
));
assert!(runs_payload["runs"].as_array().unwrap().len() >= 2);
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_read_preserves_projection_order_in_json_and_csv() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
let ordered_query = repo.write_query(
"ordered-remote.gq",
r#"
query ordered_person($name: String) {
match {
$p: Person { name: $name }
}
return { $p.age, $p.name }
}
"#,
);
let json_payload = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&ordered_query)
.arg("--name")
.arg("ordered_person")
.arg("--params")
.arg(r#"{"name":"Alice"}"#)
.arg("--json"),
));
let columns = json_payload["columns"]
.as_array()
.unwrap()
.iter()
.map(|value| value.as_str().unwrap())
.collect::<Vec<_>>();
assert_eq!(columns, vec!["p.age", "p.name"]);
let csv = stdout_string(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&ordered_query)
.arg("--name")
.arg("ordered_person")
.arg("--params")
.arg(r#"{"name":"Alice"}"#)
.arg("--format")
.arg("csv"),
));
let mut lines = csv.lines();
assert_eq!(lines.next().unwrap(), "p.age,p.name");
assert_eq!(lines.next().unwrap(), "30,Alice");
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_branch_create_list_merge_flow() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
let mutation_file = repo.write_query(
"system-remote-branch-change.gq",
r#"
query insert_person($name: String, $age: I32) {
insert Person { name: $name, age: $age }
}
"#,
);
let initial = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("list")
.arg("--config")
.arg(&config)
.arg("--json"),
));
assert_eq!(initial["branches"], json!(["main"]));
let created = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("create")
.arg("--config")
.arg(&config)
.arg("--from")
.arg("main")
.arg("feature")
.arg("--json"),
));
assert_eq!(created["from"], "main");
assert_eq!(created["name"], "feature");
let listed = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("list")
.arg("--config")
.arg(&config)
.arg("--json"),
));
assert_eq!(listed["branches"], json!(["feature", "main"]));
let changed = parse_stdout_json(&output_success(
cli()
.arg("change")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&mutation_file)
.arg("--branch")
.arg("feature")
.arg("--params")
.arg(r#"{"name":"Zoe","age":33}"#)
.arg("--json"),
));
assert_eq!(changed["branch"], "feature");
assert_eq!(changed["affected_nodes"], 1);
let merged = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("merge")
.arg("--config")
.arg(&config)
.arg("feature")
.arg("--into")
.arg("main")
.arg("--json"),
));
assert_eq!(merged["source"], "feature");
assert_eq!(merged["target"], "main");
assert_eq!(merged["outcome"], "fast_forward");
let verify = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"Zoe"}"#)
.arg("--json"),
));
assert_eq!(verify["row_count"], 1);
assert_eq!(verify["rows"][0]["p.name"], "Zoe");
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_branch_delete_removes_branch() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("create")
.arg("--config")
.arg(&config)
.arg("--from")
.arg("main")
.arg("feature")
.arg("--json"),
));
let deleted = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("delete")
.arg("--config")
.arg(&config)
.arg("feature")
.arg("--json"),
));
assert_eq!(deleted["name"], "feature");
let listed = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("list")
.arg("--config")
.arg(&config)
.arg("--json"),
));
assert_eq!(listed["branches"], json!(["main"]));
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_export_round_trips_full_branch_graph() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
let mutation_file = repo.write_query(
"system-remote-export-change.gq",
r#"
query insert_person($name: String, $age: I32) {
insert Person { name: $name, age: $age }
}
query add_friend($from: String, $to: String) {
insert Knows { from: $from, to: $to }
}
"#,
);
output_success(
cli()
.arg("branch")
.arg("create")
.arg("--config")
.arg(&config)
.arg("--from")
.arg("main")
.arg("feature"),
);
output_success(
cli()
.arg("change")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&mutation_file)
.arg("--name")
.arg("insert_person")
.arg("--branch")
.arg("feature")
.arg("--params")
.arg(r#"{"name":"Eve","age":29}"#)
.arg("--json"),
);
output_success(
cli()
.arg("change")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(&mutation_file)
.arg("--name")
.arg("add_friend")
.arg("--branch")
.arg("feature")
.arg("--params")
.arg(r#"{"from":"Alice","to":"Eve"}"#)
.arg("--json"),
);
let exported = stdout_string(&output_success(
cli()
.arg("export")
.arg("--config")
.arg(&config)
.arg("--branch")
.arg("feature")
.arg("--jsonl"),
));
let export_path = repo.write_jsonl("system-remote-exported.jsonl", &exported);
let imported_repo = repo
.path()
.parent()
.unwrap()
.join("imported-remote-export.omni");
output_success(
cli()
.arg("init")
.arg("--schema")
.arg(fixture("test.pg"))
.arg(&imported_repo),
);
output_success(
cli()
.arg("load")
.arg("--data")
.arg(&export_path)
.arg(&imported_repo),
);
let snapshot = parse_stdout_json(&output_success(
cli().arg("snapshot").arg(&imported_repo).arg("--json"),
));
assert_eq!(
snapshot["tables"]
.as_array()
.unwrap()
.iter()
.find(|table| table["table_key"] == "node:Person")
.unwrap()["row_count"],
5
);
assert_eq!(
snapshot["tables"]
.as_array()
.unwrap()
.iter()
.find(|table| table["table_key"] == "edge:Knows")
.unwrap()["row_count"],
4
);
let eve = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg(&imported_repo)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"Eve"}"#)
.arg("--json"),
));
assert_eq!(eve["row_count"], 1);
assert_eq!(eve["rows"][0]["p.name"], "Eve");
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_ingest_creates_review_branch_and_keeps_it_readable() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
let ingest_data = repo.write_jsonl(
"system-remote-ingest.jsonl",
r#"{"type":"Person","data":{"name":"Zoe","age":33}}
{"type":"Person","data":{"name":"Bob","age":26}}"#,
);
let ingest_payload = parse_stdout_json(&output_success(
cli()
.arg("ingest")
.arg("--config")
.arg(&config)
.arg("--data")
.arg(&ingest_data)
.arg("--branch")
.arg("feature-ingest")
.arg("--json"),
));
assert_eq!(ingest_payload["branch"], "feature-ingest");
assert_eq!(ingest_payload["base_branch"], "main");
assert_eq!(ingest_payload["branch_created"], true);
assert_eq!(ingest_payload["mode"], "merge");
assert_eq!(ingest_payload["tables"][0]["table_key"], "node:Person");
assert_eq!(ingest_payload["tables"][0]["rows_loaded"], 2);
let feature_snapshot = parse_stdout_json(&output_success(
cli()
.arg("snapshot")
.arg("--config")
.arg(&config)
.arg("--branch")
.arg("feature-ingest")
.arg("--json"),
));
assert_eq!(feature_snapshot["branch"], "feature-ingest");
let zoe = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--branch")
.arg("feature-ingest")
.arg("--params")
.arg(r#"{"name":"Zoe"}"#)
.arg("--json"),
));
assert_eq!(zoe["row_count"], 1);
assert_eq!(zoe["rows"][0]["p.name"], "Zoe");
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_ingest_reuses_existing_branch_and_merges_updates() {
let repo = SystemRepo::loaded();
let server = repo.spawn_server();
let config = repo.write_config("omnigraph.yaml", &remote_yaml_config(&server.base_url));
output_success(
cli()
.arg("branch")
.arg("create")
.arg("--config")
.arg(&config)
.arg("--from")
.arg("main")
.arg("feature-ingest"),
);
let ingest_data = repo.write_jsonl(
"system-remote-ingest-merge.jsonl",
r#"{"type":"Person","data":{"name":"Bob","age":26}}
{"type":"Person","data":{"name":"Zoe","age":33}}"#,
);
let ingest_payload = parse_stdout_json(&output_success(
cli()
.arg("ingest")
.arg("--config")
.arg(&config)
.arg("--data")
.arg(&ingest_data)
.arg("--branch")
.arg("feature-ingest")
.arg("--from")
.arg("missing-base")
.arg("--json"),
));
assert_eq!(ingest_payload["branch"], "feature-ingest");
assert_eq!(ingest_payload["base_branch"], "missing-base");
assert_eq!(ingest_payload["branch_created"], false);
assert_eq!(ingest_payload["mode"], "merge");
assert_eq!(ingest_payload["tables"][0]["table_key"], "node:Person");
assert_eq!(ingest_payload["tables"][0]["rows_loaded"], 2);
let bob = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--branch")
.arg("feature-ingest")
.arg("--params")
.arg(r#"{"name":"Bob"}"#)
.arg("--json"),
));
assert_eq!(bob["row_count"], 1);
assert_eq!(bob["rows"][0]["p.age"], 26);
let zoe = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--branch")
.arg("feature-ingest")
.arg("--params")
.arg(r#"{"name":"Zoe"}"#)
.arg("--json"),
));
assert_eq!(zoe["row_count"], 1);
assert_eq!(zoe["rows"][0]["p.name"], "Zoe");
}
#[test]
#[ignore = "requires loopback socket permissions in sandboxed runners"]
fn remote_policy_enforces_branch_first_cli_workflow() {
let repo = SystemRepo::loaded();
let server_config =
repo.write_config("server-policy.yaml", &remote_policy_server_config(&repo));
repo.write_config("policy.yaml", REMOTE_POLICY_E2E_YAML);
let server = repo.spawn_server_with_config_env(
&server_config,
&[(
"OMNIGRAPH_SERVER_BEARER_TOKENS_JSON",
r#"{"act-bruno":"team-token","act-ragnor":"admin-token"}"#,
)],
);
let client_config = repo.write_config(
"omnigraph-policy.yaml",
&remote_policy_client_config(&server.base_url),
);
repo.write_config(".env.omni", "POLICY_TEST_TOKEN=team-token\n");
let mutation_file = repo.write_query(
"system-remote-policy-change.gq",
r#"
query insert_person($name: String, $age: I32) {
insert Person { name: $name, age: $age }
}
"#,
);
let snapshot = parse_stdout_json(&output_success(
cli()
.arg("snapshot")
.arg("--config")
.arg(&client_config)
.arg("--json"),
));
assert_eq!(snapshot["branch"], "main");
let denied_main_change = output_failure(
cli()
.arg("change")
.arg("--config")
.arg(&client_config)
.arg("--query")
.arg(&mutation_file)
.arg("--params")
.arg(r#"{"name":"PolicyRemote","age":41}"#)
.arg("--json"),
);
let denied_main_stderr = String::from_utf8(denied_main_change.stderr).unwrap();
assert!(denied_main_stderr.contains("policy denied action 'change' on branch 'main'"));
let created = parse_stdout_json(&output_success(
cli()
.arg("branch")
.arg("create")
.arg("--config")
.arg(&client_config)
.arg("--from")
.arg("main")
.arg("feature")
.arg("--json"),
));
assert_eq!(created["name"], "feature");
let changed = parse_stdout_json(&output_success(
cli()
.arg("change")
.arg("--config")
.arg(&client_config)
.arg("--query")
.arg(&mutation_file)
.arg("--branch")
.arg("feature")
.arg("--params")
.arg(r#"{"name":"PolicyRemote","age":41}"#)
.arg("--json"),
));
assert_eq!(changed["branch"], "feature");
assert_eq!(changed["affected_nodes"], 1);
let denied_merge = output_failure(
cli()
.arg("branch")
.arg("merge")
.arg("--config")
.arg(&client_config)
.arg("feature")
.arg("--into")
.arg("main")
.arg("--json"),
);
let denied_merge_stderr = String::from_utf8(denied_merge.stderr).unwrap();
assert!(denied_merge_stderr.contains("policy denied action 'branch_merge'"));
let merged = parse_stdout_json(&output_success(
cli()
.env("POLICY_TEST_TOKEN", "admin-token")
.arg("branch")
.arg("merge")
.arg("--config")
.arg(&client_config)
.arg("feature")
.arg("--into")
.arg("main")
.arg("--json"),
));
assert_eq!(merged["target"], "main");
let verify = parse_stdout_json(&output_success(
cli()
.arg("read")
.arg("--config")
.arg(&client_config)
.arg("--query")
.arg(fixture("test.gq"))
.arg("--name")
.arg("get_person")
.arg("--params")
.arg(r#"{"name":"PolicyRemote"}"#)
.arg("--json"),
));
assert_eq!(verify["row_count"], 1);
assert_eq!(verify["rows"][0]["p.name"], "PolicyRemote");
}