Release0.7 with bug fix (#1516)

## Why make this change?

- This is for cherry-pick the bug fix from main into the release 0.7

## What is this change?

Here is the PR merged in main for the fix. 
#1501

Author: tarazou9

config-generators/cosmosdb_nosql-commands.txt

@@ -12,4 +12,6 @@ add Earth --config "dab-config.CosmosDb_NoSql.json" --source "graphqldb.earth" -
 update Earth --config "dab-config.CosmosDb_NoSql.json" --permissions "anonymous:create" --fields.include "id" --fields.exclude "name"
 update Earth --config "dab-config.CosmosDb_NoSql.json" --permissions "anonymous:read" --fields.include "id,type" --fields.exclude "name"
 update Earth --config "dab-config.CosmosDb_NoSql.json" --permissions "anonymous:update" --fields.exclude "*"
-update Earth --config "dab-config.CosmosDb_NoSql.json" --permissions "authenticated:create,read,update,delete"
+update Earth --config "dab-config.CosmosDb_NoSql.json" --permissions "authenticated:create,read,update,delete"
+add Sun --config "dab-config.CosmosDb_NoSql.json" --source "graphqldb.sun" --permissions "anonymous:create,update,delete" --graphql true
+update Sun --config "dab-config.CosmosDb_NoSql.json" --permissions "anonymous:read" --fields.include "*" --fields.exclude "name"

src/Config/RuntimeConfig.cs

@@ -237,6 +237,7 @@ public void MapGraphQLSingularTypeToEntityName(ILogger? logger)
                 if (entity.GraphQL is null || entity.GraphQL is true)
                 {
                     // Use entity name since GraphQL type unavailable
+                    GraphQLSingularTypeToEntityNameMap.TryAdd(entityName, entityName);
                     logger?.LogInformation($"GraphQL type for {entityName} is {entityName}");
                 }
             }

src/Service.Tests/CosmosTests/QueryFilterTests.cs

@@ -36,7 +36,7 @@ public static void TestFixtureSetup(TestContext context)
             OverrideEntityContainer("Planet", _containerName);
             OverrideEntityContainer("Earth", _containerName);
             OverrideEntityContainer("StarAlias", _containerName);
-            OverrideEntityContainer("TagAlias", _containerName);
+            OverrideEntityContainer("Sun", _containerName);
         }
 
         /// <summary>
@@ -834,6 +834,61 @@ public async Task TestQueryFieldAuthConflictingWithFilterFieldAuth_Unauthorized(
             string errorMessage = response.ToString();
             Assert.IsTrue(errorMessage.Contains("The current user is not authorized to access this resource."));
         }
+
+        /// <summary>
+        /// Tests that the field level query filter succeeds requests
+        /// when GraphQL is set to true without setting singular type in runtime config and
+        /// when include fields are WILDCARD,
+        /// all the columns are able to be retrieved for authorization validation. 
+        /// </summary>
+        [TestMethod]
+        public async Task TestQueryFilterFieldAuthWithoutSingularType()
+        {
+            string gqlQuery = @"{
+                suns(first: 1, " + QueryBuilder.FILTER_FIELD_NAME + @" : {id : {eq : """ + _idList[0] + @"""}})
+                { 
+                    items {
+                        id
+                        name
+                    }
+                }
+            }";
+
+            string dbQuery = $"SELECT top 1 c.id, c.name FROM c where c.id = \"{_idList[0]}\"";
+            await ExecuteAndValidateResult("suns", gqlQuery, dbQuery);
+        }
+
+        /// <summary>
+        /// Tests that the field level query filter failed authorization validation
+        /// when include fields are WILDCARD and exclude fields specifies fields,
+        /// exclude fields takes precedence over include fields. 
+        /// </summary>
+        [TestMethod]
+        public async Task TestQueryFilterFieldAuth_ExcludeTakesPredecence()
+        {
+            string gqlQuery = @"{
+                suns(first: 1, " + QueryBuilder.FILTER_FIELD_NAME + @" : {name : {eq : ""test name""}})
+                { 
+                    items {
+                        id
+                        name
+                    }
+                }
+            }";
+
+            string clientRoleHeader = AuthorizationType.Anonymous.ToString();
+            JsonElement response = await ExecuteGraphQLRequestAsync(
+                queryName: "suns",
+                query: gqlQuery,
+                variables: new() { { "name", "test name" } },
+                authToken: AuthTestHelper.CreateStaticWebAppsEasyAuthToken(specificRole: clientRoleHeader),
+                clientRoleHeader: clientRoleHeader);
+
+            // Validate the result contains the GraphQL authorization error code.
+            string errorMessage = response.ToString();
+            Assert.IsTrue(errorMessage.Contains(DataApiBuilderException.GRAPHQL_FILTER_FIELD_AUTHZ_FAILURE));
+
+        }
         #endregion
 
         [ClassCleanup]

src/Service.Tests/CosmosTests/TestBase.cs

@@ -72,6 +72,11 @@ type Earth @model(name:""Earth"") {
     id : ID,
     name : String,
     type: String @authorize(roles: [""authenticated""])
+}
+
+type Sun @model(name:""Sun"") {
+    id : ID,
+    name : String
 }";
 
         private static string[] _planets = { "Earth", "Mars", "Jupiter", "Tatooine", "Endor", "Dagobah", "Hoth", "Bespin", "Spec%ial" };

src/Service.Tests/dab-config.CosmosDb_NoSql.json

@@ -148,6 +148,31 @@
         }
       }
     },
+    "Sun": {
+      "source": "graphqldb.sun",
+      "permissions": [
+        {
+          "role": "anonymous",
+          "actions": [
+            "create",
+            {
+              "action": "read",
+              "fields": {
+                "include": [
+                  "*"
+                ],
+                "exclude": [
+                  "name"
+                ]
+              }
+            },
+            "update",
+            "delete"
+          ]
+      }
+      ],
+      "graphql": true
+    },
     "Moon": {
       "source": "graphqldb.moon",
       "permissions": [