Merge pull request #1489 from utmstack/backlog/add-sql-query-support-to-logexplorer-via-opensearch

Backlog/add sql query support to logexplorer via opensearch

Author: mjabascal10

backend/pom.xml

@@ -278,7 +278,7 @@
         <dependency>
             <groupId>com.utmstack</groupId>
             <artifactId>opensearch-connector</artifactId>
-            <version>1.0.2</version>
+            <version>1.0.3</version>
         </dependency>
         <dependency>
             <groupId>jakarta.json</groupId>

backend/src/main/java/com/park/utmstack/service/dto/elastic/SqlSearchDto.java

@@ -0,0 +1,24 @@
+package com.park.utmstack.service.dto.elastic;
+
+import com.park.utmstack.validation.elasticsearch.SqlSelectOnly;
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import javax.validation.constraints.NotNull;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+public class SqlSearchDto {
+
+    @SqlSelectOnly
+    private String query;
+
+    /**
+     * Specifies the maximum number of results to fetch per query execution.
+     * Acceptable values are positive integers; if null or not set, the default fetch size will be used.
+     * This parameter can be used to limit the number of records returned by the SQL query.
+     */
+    private Integer fetchSize;
+}

backend/src/main/java/com/park/utmstack/service/elasticsearch/ElasticsearchService.java

@@ -5,7 +5,6 @@
 import com.park.utmstack.domain.UtmSpaceNotificationControl;
 import com.park.utmstack.domain.application_events.enums.ApplicationEventType;
 import com.park.utmstack.domain.chart_builder.types.query.FilterType;
-import com.park.utmstack.domain.chart_builder.types.query.OperatorType;
 import com.park.utmstack.domain.index_pattern.enums.SystemIndexPattern;
 import com.park.utmstack.repository.UserRepository;
 import com.park.utmstack.service.MailService;
@@ -19,11 +18,10 @@
 import com.utmstack.opensearch_connector.exceptions.OpenSearchException;
 import com.utmstack.opensearch_connector.types.ElasticCluster;
 import com.utmstack.opensearch_connector.types.IndexSort;
-import org.elasticsearch.index.query.BoolQueryBuilder;
-import org.opensearch.client.json.JsonData;
+import com.utmstack.opensearch_connector.types.SearchSqlResponse;
+import com.utmstack.opensearch_connector.types.SqlQueryRequest;
 import org.opensearch.client.opensearch._types.SortOrder;
 import org.opensearch.client.opensearch._types.query_dsl.Query;
-import org.opensearch.client.opensearch.cat.CountResponse;
 import org.opensearch.client.opensearch.cat.indices.IndicesRecord;
 import org.opensearch.client.opensearch.core.*;
 import org.slf4j.Logger;
@@ -396,4 +394,13 @@ private SearchRequest buildQuery(String pattern, List<FilterType> filters, Integ
             throw new UtmElasticsearchException(ctx + ": " + e.getMessage());
         }
     }
-}
+
+    public <T> SearchSqlResponse<T> searchBySql(SqlQueryRequest request, Class<T> responseType) {
+        final String ctx = CLASSNAME + ".searchBySql";
+        try {
+            return client.getClient().searchBySqlQuery(request, responseType);
+        } catch (Exception e) {
+            throw new RuntimeException(ctx + ": " + e.getMessage());
+        }
+    }
+}

backend/src/main/java/com/park/utmstack/util/elastic/SqlPaginationUtil.java

@@ -0,0 +1,28 @@
+package com.park.utmstack.util.elastic;
+
+import org.springframework.data.domain.Pageable;
+
+public class SqlPaginationUtil {
+
+    public static String applyPagination(String query, Pageable pageable) {
+        String upper = query.toUpperCase();
+
+        boolean hasLimit = upper.contains("LIMIT");
+        boolean hasOffset = upper.contains("OFFSET");
+
+        if (hasLimit && hasOffset) {
+            return query;
+        } else if (hasLimit && !hasOffset) {
+            int offset = pageable.getPageNumber() * pageable.getPageSize();
+            return query + " OFFSET " + offset;
+        } else if (!hasLimit && hasOffset) {
+            int pageSize = pageable.getPageSize();
+            return query + " LIMIT " + pageSize;
+        } else {
+            int pageSize = pageable.getPageSize();
+            int offset = (pageable.getPageNumber() - 1) * pageSize;
+            return query + " LIMIT " + pageSize + " OFFSET " + offset;
+        }
+    }
+}
+

backend/src/main/java/com/park/utmstack/validation/elasticsearch/SqlSelectOnly.java

@@ -0,0 +1,20 @@
+package com.park.utmstack.validation.elasticsearch;
+
+import javax.validation.Constraint;
+import javax.validation.Payload;
+import java.lang.annotation.Documented;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.*;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+@Documented
+@Constraint(validatedBy = SqlSelectOnlyValidator.class)
+@Target({ FIELD, PARAMETER })
+@Retention(RUNTIME)
+public @interface SqlSelectOnly {
+    String message() default "Only SELECT queries are allowed";
+    Class<?>[] groups() default {};
+    Class<? extends Payload>[] payload() default {};
+}

backend/src/main/java/com/park/utmstack/validation/elasticsearch/SqlSelectOnlyValidator.java

@@ -0,0 +1,171 @@
+package com.park.utmstack.validation.elasticsearch;
+
+import javax.validation.ConstraintValidator;
+import javax.validation.ConstraintValidatorContext;
+import java.util.HashSet;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+import java.util.Set;
+
+public class SqlSelectOnlyValidator implements ConstraintValidator<SqlSelectOnly, String> {
+
+    private static final Pattern START_PATTERN =
+            Pattern.compile("(?is)^\\s*select\\b.*", Pattern.DOTALL);
+
+    private static final Pattern FORBIDDEN_PATTERN =
+            Pattern.compile("(?is)\\b(insert|update|delete|drop|alter|create|replace|truncate|" +
+                    "merge|grant|revoke|exec|execute|commit|rollback|into)\\b");
+
+    private static final Pattern COMMENT_PATTERN =
+            Pattern.compile("(?s)(--.*?$|/\\*.*?\\*/)", Pattern.MULTILINE);
+
+    private static final Set<String> ALLOWED_FUNCTIONS = Set.of(
+            "COUNT", "AVG", "MIN", "MAX", "SUM"
+    );
+
+    private static final Set<String> KEYWORDS_TO_IGNORE = Set.of(
+            "AS"
+    );
+
+    @Override
+    public boolean isValid(String value, ConstraintValidatorContext context) {
+        if (value == null || value.trim().isEmpty()) {
+            return true;
+        }
+
+        String query = value.trim().replaceAll(";+$", "").trim();
+        String upper = query.toUpperCase();
+
+        if (!START_PATTERN.matcher(query).matches()) {
+            return addConstraintViolation(context, "Query must start with SELECT.");
+        }
+
+        if (FORBIDDEN_PATTERN.matcher(query).find()) {
+            return addConstraintViolation(context, "Query contains forbidden SQL keywords.");
+        }
+
+        if (COMMENT_PATTERN.matcher(query).find()) {
+            return addConstraintViolation(context, "Query must not contain SQL comments (-- or /* */).");
+        }
+
+        if (query.contains(";")) {
+            return addConstraintViolation(context, "Query must not contain internal semicolons.");
+        }
+
+        if (!isBalancedQuotes(query)) {
+            return addConstraintViolation(context, "Quotes are not balanced.");
+        }
+
+        if (!isBalancedParentheses(query)) {
+            return addConstraintViolation(context, "Parentheses are not balanced.");
+        }
+
+        if (query.toUpperCase().matches("(?i).*FROM\\s+(GROUP|WHERE|ORDER|$).*")) {
+            return addConstraintViolation(context, "FROM clause must contain a valid index or pattern.");
+        }
+
+        if (hasMisplacedCommas(query)) {
+            return addConstraintViolation(context, "Query contains misplaced commas.");
+        }
+
+        if (hasSubqueryWithoutAlias(query)) {
+            return addConstraintViolation(context, "Subquery in FROM must have an alias.");
+        }
+
+        for (String func : extractFunctions(upper)) {
+            if (!ALLOWED_FUNCTIONS.contains(func)) {
+                return addConstraintViolation(context, "Unsupported SQL function: " + func + ".");
+            }
+        }
+
+        if (upper.contains("HAVING") && !upper.contains("GROUP BY")) {
+            return addConstraintViolation(context, "HAVING clause requires GROUP BY.");
+        }
+
+        return true;
+    }
+
+    private boolean addConstraintViolation(ConstraintValidatorContext context, String msg) {
+        context.disableDefaultConstraintViolation();
+        context.buildConstraintViolationWithTemplate(msg).addConstraintViolation();
+        return false;
+    }
+
+    private boolean isBalancedParentheses(String query) {
+        int count = 0;
+        for (char c : query.toCharArray()) {
+            if (c == '(') count++;
+            else if (c == ')') count--;
+            if (count < 0) return false;
+        }
+        return count == 0;
+    }
+
+    private boolean isBalancedQuotes(String query) {
+        int sq = 0;
+        int dq = 0;
+        boolean escaped = false;
+
+        for (char c : query.toCharArray()) {
+            if (escaped) { escaped = false; continue; }
+            if (c == '\\') { escaped = true; continue; }
+            if (c == '\'') sq++;
+            else if (c == '"') dq++;
+        }
+
+        return (sq % 2 == 0) && (dq % 2 == 0);
+    }
+
+    private Set<String> extractFunctions(String upperQuery) {
+        Pattern funcPattern = Pattern.compile("\\b(COUNT|AVG|MIN|MAX|SUM)\\s*\\(");
+        Matcher matcher = funcPattern.matcher(upperQuery);
+
+        Set<String> funcs = new HashSet<>();
+        while (matcher.find()) {
+            String func = matcher.group(1);
+            funcs.add(func);
+        }
+        return funcs;
+    }
+
+    private boolean hasMisplacedCommas(String query) {
+        String upperQuery = query.toUpperCase();
+
+        if (upperQuery.startsWith("SELECT ,") || upperQuery.contains(",,")) {
+            return true;
+        }
+
+        if (upperQuery.matches(".*\\,\\s*FROM.*")) {
+            return true;
+        }
+
+        String selectPart = query.replaceAll("(?i)^SELECT\\s+", "")
+                .replaceAll("(?i)\\s+FROM.*", "")
+                .trim();
+
+        if (selectPart.startsWith(",") || selectPart.endsWith(",")) {
+            return true;
+        }
+
+        String[] fields = selectPart.split(",");
+        for (String f : fields) {
+            if (f.trim().isEmpty()) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
+    private boolean hasSubqueryWithoutAlias(String query) {
+        Pattern subqueryPattern = Pattern.compile("(?i)FROM\\s*\\([^)]*\\)");
+        Matcher subqueryMatcher = subqueryPattern.matcher(query);
+        if (!subqueryMatcher.find()) {
+            return false;
+        }
+
+        Pattern aliasPattern = Pattern.compile("(?i)FROM\\s*\\([^)]*\\)\\s+(AS\\s+\\w+|\\w+)");
+        Matcher aliasMatcher = aliasPattern.matcher(query);
+        return !aliasMatcher.find();
+    }
+}

backend/src/main/java/com/park/utmstack/web/rest/elasticsearch/ElasticsearchResource.java

@@ -5,6 +5,7 @@
 import com.park.utmstack.domain.chart_builder.types.query.OperatorType;
 import com.park.utmstack.domain.shared_types.CsvExportingParams;
 import com.park.utmstack.service.application_events.ApplicationEventService;
+import com.park.utmstack.service.dto.elastic.SqlSearchDto;
 import com.park.utmstack.service.elasticsearch.ElasticsearchService;
 import com.park.utmstack.service.elasticsearch.processor.SearchProcessorRegistry;
 import com.park.utmstack.service.elasticsearch.processor.SearchResultProcessor;
@@ -13,10 +14,13 @@
 import com.park.utmstack.util.ResponseUtil;
 import com.park.utmstack.util.chart_builder.IndexPropertyType;
 import com.park.utmstack.util.chart_builder.IndexType;
+import com.park.utmstack.util.elastic.SqlPaginationUtil;
 import com.park.utmstack.util.exceptions.OpenSearchIndexNotFoundException;
 import com.park.utmstack.web.rest.util.HeaderUtil;
 import com.park.utmstack.web.rest.util.PaginationUtil;
 import com.utmstack.opensearch_connector.types.ElasticCluster;
+import com.utmstack.opensearch_connector.types.SearchSqlResponse;
+import com.utmstack.opensearch_connector.types.SqlQueryRequest;
 import lombok.RequiredArgsConstructor;
 import org.opensearch.client.opensearch.cat.indices.IndicesRecord;
 import org.opensearch.client.opensearch.core.SearchResponse;
@@ -210,6 +214,40 @@ public ResponseEntity<Void> searchToCsv(@RequestBody @Valid CsvExportingParams p
         }
     }
 
+    @PostMapping("/search/sql")
+    public ResponseEntity<List<Map>> searchBySql(@RequestBody @Valid SqlSearchDto request,
+                                                                     Pageable pageable) {
+        final String ctx = CLASSNAME + ".searchBySql";
+        try {
+            String sanitizedQuery = request.getQuery()
+                    .trim()
+                    .replaceAll(";+$", "")
+                    .trim();
+
+            String sqlQuery = SqlPaginationUtil.applyPagination(sanitizedQuery, pageable);
+
+            SearchSqlResponse<Map> response = elasticsearchService
+                    .searchBySql(new SqlQueryRequest(sqlQuery, null), Map.class);
+
+            String countQuery = "SELECT COUNT(*) FROM (" + sanitizedQuery + ") AS total_count";
+            SearchSqlResponse<Map> countResponse = elasticsearchService
+                    .searchBySql(new SqlQueryRequest(countQuery, null), Map.class);
+
+            String countString = countResponse.getData().get(0).get("COUNT(*)").toString();
+            int totalElements = (int) Double.parseDouble(countString);
+
+            HttpHeaders headers = UtilPagination.generatePaginationHttpHeaders((long) Math.min(totalElements, 10000),
+                    pageable.getPageNumber(), pageable.getPageSize(), "/api/elasticsearch/search");
+
+            return ResponseEntity.ok().headers(headers).body(response.getData());
+        } catch (Exception e) {
+            String msg = ctx + ": " + e.getMessage();
+            log.error(msg);
+            applicationEventService.createEvent(msg, ApplicationEventType.ERROR);
+            return ResponseUtil.buildErrorResponse(HttpStatus.INTERNAL_SERVER_ERROR, msg);
+        }
+    }
+
     @PostMapping("/generic-search")
     public ResponseEntity<List<Map>> genericSearch(@Valid @RequestBody GenericSearchBody body, Pageable pageable) {
         final String ctx = CLASSNAME + ".genericSearch";

frontend/angular.json

@@ -24,7 +24,12 @@
             "tsConfig": "src/tsconfig.app.json",
             "assets": [
               "src/favicon.ico",
-              "src/assets"
+              "src/assets",
+              {
+                "glob": "**/*",
+                "input": "node_modules/monaco-editor/min/vs",
+                "output": "/assets/monaco/vs"
+              }
             ],
             "styles": [
               "node_modules/bootstrap/dist/css/bootstrap.min.css",