kylefang/apollo
1
0
Fork 0
mirror of https://github.com/zhigang1992/apollo.git synced 2026-05-13 17:30:47 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
07e00f90556bccf1ac27fe052d09fd847f80beda
apollo/docs/source/platform/schema-validation.md
adamatorres 07e00f9055 Removing more Here links. 
Removed here links across all platform docs.
2019-04-16 16:51:00 -07:00

18 KiB
Raw Blame History

title, description
title description
Validating schema changes Check if proposed schema changes are safe or breaking by comparing against live server traffic

As GraphQL scales within an organization, it's important in schema evolution to keep current queries and clients in mind and avoid breaking changes. Some organizations take the approach of never making schema changes that might be breaking, which leads to an ever-growing schema and reduced api accessibility. In reality, removing field removal and updating return types is safe with tools to guarantee that no change will ever break an active query.

As such, schema change validation is one of the cornerstones of the Apollo Platform and we've built a set of tools to make the workflow possible.

Note: Schema validation is an Apollo Platform feature available on the Team and Enterprise plans. To get started with the Apollo Platform, begin with the documentation. If you already have an Engine account, upgrade to a Team plan.

How it works

The schema validation mechanism utilizes both Apollo's schema registry and Apollo's trace warehouse. The schema registry is used to compute a "schema diff" with changes between schema versions. The trace warehouse is used to identify which schema fields have been recently used by clients and operations seen in a deployed system. We compare each change in the schema diff against the live usage data to determine if that change is "breaking change" for any clients.

Here's how it works:

  1. You run apollo service:check locally or in CI. The proposed schema is sent to Engine's schema registry.
  2. Engine creates a diff between the local schema and the most recently published schema in the registry.
  3. Engine fetches a list of all operations sent to your service in your plan's maximum time window (time window is configurable).
  4. Engine walks through the schema diff change-by-change and compares against the operation list to see if the changes will affect the behavior of any operations.
  5. Engine will return the schema diff and indicate any breaking changes found.
  6. The CLI will print the output of this check with a link to view more details in the Engine UI.

Breaking change detection

Engine's cloud service uses an algorithm to detect breaking changes in a schema diff. The following sections describe the rules that determine when a change type fails the apollo service:check command, which returns a non-0 exit code. If these changes are deployed without additional scrutiny, clients could experience unexpected behavior.

Removals

Each of these changes removes a schema element. If the element is actively used by an operation and removed, the GraphQL layer will return an error to the dependent operation.

  • FIELD_REMOVED Field used by at least one operation was removed
  • TYPE_REMOVED Type(scalar, object) used by at least one operation was removed
  • ARG_REMOVED Argument was removed from a field used by at least one operation
  • TYPE_REMOVED_FROM_UNION Type was removed from a union used by at least one operation
  • INPUT_FIELD_REMOVED Field removed from an input type referenced by an argument on a field used by at least one operation
  • VALUE_REMOVED_FROM_ENUM A value removed from an enum used by at least one operation
  • TYPE_REMOVED_FROM_INTERFACE An object removed from an interface used by at least one operation

Required arguments

Each of these changes adds a required input to a schema element. If an existing operation uses the schema element, the GraphQL layer will return an error to the dependent operation.

  • REQUIRED_ARG_ADDED Non-nullable argument added to field used by at least one operation
  • NON_NULL_INPUT_FIELD_ADDED Non-null field added to an input object used by at least one operation

In-place updates

Each of these changes updates an existing schema element. Any operation that uses the schema element could receive an error or in some cases an unexpected result.

Note: in some rare cases, these changes are compatible with the client at runtime, such as a type rename or an object to interface conversion with the same fields. Schema validation marks these breaking changes, since validation does not have enough information to ensure safety and the changes deserve extra scrutiny, such as their impact on type generation.

  • FIELD_CHANGED_TYPE Field used by at least one operation changed return type
  • INPUT_FIELD_CHANGED_TYPE Field in input object changed type and is referenced by argument on field used by at least one operation
  • TYPE_CHANGED_KIND Type used by at least one operation changed, ex: scalar to object or enum to union
  • ARG_CHANGED_TYPE Argument changed type on field used by at least one operation

Type extensions

These changes add a type to an existing union or interface. Any operation that uses the union or interface could receive an unexpected result depending on the fragment spreads requested.

  • TYPE_ADDED_TO_UNION Type added to a union used by at least one operation
  • TYPE_ADDED_TO_INTERFACE Interface added to an object used by at least one operation

Default arguments

These changes update the default value for an argument. If an operation does not specify a value for this argument and relies on the value, the operation can experience unexpected results, which can lead to modified client behavior.

  • ARG_DEFAULT_VALUE_CHANGE Default value added or changed for argument on a field used by at least one operation

For the rest of the changes returned by service:check, see the list of compatible changes

A failed apollo service:check command will exit with a non-0 exit code and fail CI checks! There are many cases where it is safe to make a potentially breaking change, as long as the change is made intentionally with an understanding of its impact.

Since breaking changes are detected using live traffic, your service will need active metrics for the change algorithm to detect failures. If there are no metrics associated with your service, all changes will be assigned the NOTICE severity as opposed to the FAILURE severity.

Validation output

Running a schema validation check is as simple as running apollo service:check on the command line from within a service repository that has been configured to be an Apollo project.

Note: Skip to the setup section for details on how to configure your project for schema change validation.

Running the apollo service:check command will output the diff of all schema changes found and highlight changes determined to be breaking as FAILURE. Here's an example:

~example$ npx apollo service:check --tag=prod
  ✔ Loading Apollo Project
  ✔ Validated local schema against tag prod on service engine
  ✔ Compared 8 schema changes against 110 operations over the last 24 hours
  ✖ Found 3 breaking changes and 5 compatible changes
    → breaking changes found

FAIL    ARG_REMOVED                `ServiceMutation.checkSchema` arg `gitContext` was removed
FAIL    FIELD_REMOVED              `Schema.fieldCount` was removed
FAIL    FIELD_REMOVED              `Schema.typeCount` was removed

PASS    FIELD_ADDED                `SchemaTag.schemaRepoID` was added
PASS    FIELD_CHANGED_TYPE         `ServiceMutation.uploadPartialSchema` changed type from `UploadPartialSchemaResponse!` to `CompositionResult!`
PASS    FIELD_DEPRECATION_REMOVED  `IntrospectionSchema.fieldCount` is no longer deprecated
PASS    FIELD_DEPRECATION_REMOVED  `IntrospectionSchema.typeCount` is no longer deprecated
PASS    TYPE_REMOVED               `UploadPartialSchemaResponse` removed

View full details at: https://engine.apollographql.com/service/example-1234/check/<DETAILS>

If there are any changes to the schema, FAILURE or NOTICE, a URL to Engine will be generated with details showing which clients and operations are affected by the changes specifically:

Service check page in the Engine UI

The Service Check page in Engine will have full details on the changes in the diff and which clients are affected by the changes, if any.

Note: If you set up your checks on GitHub, the "Details" link in your checks will take you to this special URL as well.

Set up schema validation

You will need to be actively sending traces to the Apollo trace warehouse and registering schemas to the Apollo schema registry to properly use schema validation. Follow these guides to set those up:

  1. Set up trace reporting to Apollo Engine (either through Apollo Server 2+ or the Engine proxy).
  2. Set up schema registration in your continuous delivery pipeline.

For the apollo service:check command to be configured properly, you will also need:

  1. A .env file with an ENGINE_API_KEY.
  2. An apollo.config.js file with a service configured.

If you have set up schema registration, your project may already have its .env file and apollo.config.js file configured. Once you've got these set up, running your schema check is as simple as running:

$ npm install apollo
$ npx apollo service:check

The command can be placed in any continuous integration pipeline. To surface results, apollo emits an exit code and integrates with GitHub statuses. The check command validates against traffic from the past day by default, but this time window can be configured to be a longer range.

Note: The Apollo CLI will be looking in your Apollo config for a location from which to fetch your local schema and using your ENGINE_API_KEY to authenticate its requests with the Engine service.

Run validation on each commit

We highly recommended that you add validation to your continuous integration workflow (e.g. Jenkins, CircleCI, etc.). In doing so, you can detect potential problems automatically and display the results of checks directly on pull requests.

Here's a example of how to add a schema validation check to CircleCI:

version: 2

jobs:
  build:
    docker:
      - image: circleci/node:8

    steps:
      - checkout

      - run: npm install

      # Start the GraphQL server.  If a different command is used to
      # start the server, use it in place of `npm start` here.
      - run:
          name: Starting server
          command: npm start
          background: true

      # make sure the server has enough time to start up before running
      # commands against it
      - run: sleep 5

      # This will authenticate using the `ENGINE_API_KEY` environment
      # variable. Configure your endpoint's location in your Apollo config.
      - run: npx apollo service:check

Note: With a GitHub status check, to allow continuous integration to complete without failing early, ignore the exit code of the apollo service:check command. The exit code can be ignored by appending || echo 'validation failed' to the command call.

GitHub integration

GitHub Status View

Like most tools, schema validation is best used when it is integrated directly into the rest of your workflow. If you're using GitHub, you can install the Apollo Engine GitHub app. This will enable Apollo's systems to send a webhook back to your project on each apollo service:check, providing built-in pass/fail status checks on your pull requests.

Go to https://github.com/apps/apollo-engine and click the Configure button to install the Apollo Engine integration on the appropriate GitHub profile or organization.

Multiple environments

Product cycles move fast, and its common for schemas to be slightly different across environments as changes make their way through your system. To accommodate for this, schemas can be registered under specific schema tags and checks can be performed against specific schema tags.

Tags mostly commonly represent environments and can also indicate branches or future schemas. Passing the --tag flag to apollo service:check specifies which schema to compare against, such as prod or staging. It's common to run checks against multiple different schema tags during continuous integration to ensure that all important deployments are accounted for. Checking multiple tags will result in check statuses similar to:

multiple service checks

Adjusting validation parameters

Depending on the requirements of your application, you may want to configure the timeframe to validate operations against. You can do so by providing a validationPeriod flag to the CLI. The timeframe will always end at "now", and go back in time by the amount specified.

apollo service:check --validationPeriod=P2W

Valid durations are represented in ISO 8601. It can also be provided as a number in seconds, i.e. 86400 for a single day.

Two other parameters for customizing the results of service:check are threshold values. For example, you may wish to drop support for an old version of an app in order to remove some deprecated fields. Using these parameters, you can decide what amount of breakage is acceptable before shipping any breaking changes.

  • queryCountThreshold - This flag will only validate the schema against operations that have been executed at least the specified number of times within the provided duration.
  • queryCountThresholdPercentage - Similar to queryCountThreshold, but expressed as a percentage of all operation volume.

    Note: these flags are compatible with each other. In the case that both are provided, an operation must meet or exceed both thresholds.

If you have requests for other filtering or threshold mechanisms, we'd love to hear them! Please feel free to submit a feature request or PR to the apollo-tooling repo.

npx apollo service:check \
# Validate the schema against operations that have run in the last 5 days
--validationPeriod=P5D \
# Only validate against operations that have run at least 5 times during the 5 day duration
--queryCountThreshold=5 \
# Only validate against operations that account for at least 3% of total operation volume
--queryCountThresholdPercentage=3

Compatible Changes

The following changes are compatible with existing clients by default, since they will not affect the behavior of clients.

Optional arguments

Optional arguments include changes that add any input that can be nullable. Existing operations will not include the new value. The behavior of the clients will stay the same provided the result of the operation remains the same with a null input.

  • OPTIONAL_ARG_ADDED Nullable argument added to a field
  • NULLABLE_FIELD_ADDED_TO_INPUT_OBJECT Nullable field added to an input object

Additions

Additions are changes that will not affect client behavior, since clients will not access the new schema elements.

  • FIELD_ADDED Field added to a type
  • TYPE_ADDED Type added to the schema
  • VALUE_ADDED_TO_ENUM Value added to an enum. If clients contain a switch case on the enum and do not include the `default`, this change could cause unexpected behavior

Deprecations

Deprecations will not affect the behavior of the clients directly, since they are a signal to developer to avoid the schema element rather than a behavior change.

  • FIELD_DEPRECATED Field deprecated
  • FIELD_DEPRECATION_REMOVED Field no longer deprecated
  • FIELD_DEPRECATED_REASON_CHANGE Reason for deprecation changed
  • ENUM_DEPRECATED Enum deprecated
  • ENUM_DEPRECATION_REMOVED Enum no longer deprecated
  • ENUM_DEPRECATED_REASON_CHANGE Reason for enum deprecation changed