feat: add queryables cache and optional validation for search parameters

Andrzej Pijanowski · Andrzej Pijanowski · commit c488a390e8ab · 2025-11-19T14:26:06.000+01:00
diff --git a/stac_fastapi/core/stac_fastapi/core/core.py b/stac_fastapi/core/stac_fastapi/core/core.py
@@ -39,6 +39,11 @@
     BulkTransactionMethod,
     Items,
 )
+from stac_fastapi.sfeos_helpers.queryables import (
+    get_properties_from_cql2_filter,
+    initialize_queryables_cache,
+    validate_queryables,
+)
 from stac_fastapi.types import stac as stac_types
 from stac_fastapi.types.conformance import BASE_CONFORMANCE_CLASSES
 from stac_fastapi.types.core import AsyncBaseCoreClient
@@ -88,6 +93,10 @@ class CoreClient(AsyncBaseCoreClient):
     title: str = attr.ib(default="stac-fastapi")
     description: str = attr.ib(default="stac-fastapi")
 
+    def __attrs_post_init__(self):
+        """Initialize the queryables cache."""
+        initialize_queryables_cache(self.database)
+
     def _landing_page(
         self,
         base_url: str,
@@ -815,6 +824,8 @@ async def post_search(
             )
 
         if hasattr(search_request, "query") and getattr(search_request, "query"):
+            query_fields = set(getattr(search_request, "query").keys())
+            await validate_queryables(query_fields)
             for field_name, expr in getattr(search_request, "query").items():
                 field = "properties__" + field_name
                 for op, value in expr.items():
@@ -833,7 +844,11 @@ async def post_search(
 
         if cql2_filter is not None:
             try:
+                query_fields = get_properties_from_cql2_filter(cql2_filter)
+                await validate_queryables(query_fields)
                 search = await self.database.apply_cql2_filter(search, cql2_filter)
+            except HTTPException:
+                raise
             except Exception as e:
                 raise HTTPException(
                     status_code=400, detail=f"Error with cql2 filter: {e}"
diff --git a/stac_fastapi/sfeos_helpers/stac_fastapi/sfeos_helpers/queryables.py b/stac_fastapi/sfeos_helpers/stac_fastapi/sfeos_helpers/queryables.py
@@ -0,0 +1,131 @@
+"""A module for managing queryable attributes."""
+
+import asyncio
+import os
+import time
+from typing import Any, Dict, List, Optional, Set
+
+from fastapi import HTTPException
+
+from stac_fastapi.core.base_database_logic import BaseDatabaseLogic
+
+
+class QueryablesCache:
+    """A thread-safe, time-based cache for queryable properties."""
+
+    def __init__(self, database_logic: Any):
+        """
+        Initialize the QueryablesCache.
+
+        Args:
+            database_logic: An instance of a class with a `get_queryables_mapping` method.
+        """
+        self._db_logic = database_logic
+        self._cache: Dict[str, List[str]] = {}
+        self._all_queryables: Set[str] = set()
+        self._last_updated: float = 0
+        self._lock = asyncio.Lock()
+        self.validation_enabled: bool = False
+        self.cache_ttl: int = 3600  # How often to refresh cache (in seconds)
+        self.reload_settings()
+
+    def reload_settings(self):
+        """Reload settings from environment variables."""
+        self.validation_enabled = (
+            os.getenv("VALIDATE_QUERYABLES", "false").lower() == "true"
+        )
+        self.cache_ttl = int(os.getenv("QUERYABLES_CACHE_TTL", "3600"))
+
+    async def _update_cache(self):
+        """Update the cache with the latest queryables from the database."""
+        if not self.validation_enabled:
+            return
+
+        async with self._lock:
+            if (time.time() - self._last_updated < self.cache_ttl) and self._cache:
+                return
+
+            queryables_mapping = await self._db_logic.get_queryables_mapping()
+            all_queryables_set = set(queryables_mapping.keys())
+
+            self._all_queryables = all_queryables_set
+
+            self._cache = {"*": list(all_queryables_set)}
+            self._last_updated = time.time()
+
+    async def get_all_queryables(self) -> Set[str]:
+        """
+        Return a set of all queryable attributes across all collections.
+
+        This method will update the cache if it's stale or has been cleared.
+        """
+        if not self.validation_enabled:
+            return set()
+
+        if (time.time() - self._last_updated >= self.cache_ttl) or not self._cache:
+            await self._update_cache()
+        return self._all_queryables
+
+    async def validate(self, fields: Set[str]) -> None:
+        """
+        Validate if the provided fields are queryable.
+
+        Raises HTTPException if invalid fields are found.
+        """
+        if not self.validation_enabled:
+            return
+
+        allowed_fields = await self.get_all_queryables()
+        invalid_fields = fields - allowed_fields
+        if invalid_fields:
+            raise HTTPException(
+                status_code=400,
+                detail=f"Invalid query fields: {', '.join(invalid_fields)}. Allowed fields are: {', '.join(allowed_fields)}",
+            )
+
+
+_queryables_cache_instance: Optional[QueryablesCache] = None
+
+
+def initialize_queryables_cache(database_logic: BaseDatabaseLogic):
+    """
+    Initialize the global queryables cache.
+
+    :param database_logic: An instance of DatabaseLogic.
+    """
+    global _queryables_cache_instance
+    if _queryables_cache_instance is None:
+        _queryables_cache_instance = QueryablesCache(database_logic)
+
+
+async def all_queryables() -> Set[str]:
+    """Get all queryable properties from the cache."""
+    if _queryables_cache_instance is None:
+        raise Exception("Queryables cache not initialized.")
+    return await _queryables_cache_instance.get_all_queryables()
+
+
+async def validate_queryables(fields: Set[str]) -> None:
+    """Validate if the provided fields are queryable."""
+    if _queryables_cache_instance is None:
+        return
+    await _queryables_cache_instance.validate(fields)
+
+
+def reload_queryables_settings():
+    """Reload queryables settings from environment variables."""
+    if _queryables_cache_instance:
+        _queryables_cache_instance.reload_settings()
+
+
+def get_properties_from_cql2_filter(cql2_filter: Dict[str, Any]) -> Set[str]:
+    """Recursively extract property names from a CQL2 filter."""
+    props: Set[str] = set()
+    if "op" in cql2_filter and "args" in cql2_filter:
+        for arg in cql2_filter["args"]:
+            if isinstance(arg, dict):
+                if "op" in arg:
+                    props.update(get_properties_from_cql2_filter(arg))
+                elif "property" in arg:
+                    props.add(arg["property"])
+    return props
diff --git a/stac_fastapi/tests/api/test_api_query_validation.py b/stac_fastapi/tests/api/test_api_query_validation.py
@@ -0,0 +1,67 @@
+import json
+import os
+from unittest import mock
+
+import pytest
+
+from stac_fastapi.sfeos_helpers.queryables import reload_queryables_settings
+
+
+@pytest.fixture(autouse=True)
+def enable_validation():
+    with mock.patch.dict(os.environ, {"VALIDATE_QUERYABLES": "true"}):
+        reload_queryables_settings()
+        yield
+    reload_queryables_settings()
+
+
+@pytest.mark.asyncio
+async def test_search_post_query_valid_param(app_client, ctx):
+    """Test POST /search with a valid query parameter"""
+    query = {"query": {"eo:cloud_cover": {"lt": 10}}}
+    resp = await app_client.post("/search", json=query)
+    assert resp.status_code == 200
+
+
+@pytest.mark.asyncio
+async def test_search_post_query_invalid_param(app_client, ctx):
+    """Test POST /search with an invalid query parameter"""
+    query = {"query": {"invalid_param": {"eq": "test"}}}
+    resp = await app_client.post("/search", json=query)
+    assert resp.status_code == 400
+    resp_json = resp.json()
+    assert "Invalid query fields: invalid_param" in resp_json["detail"]
+
+
+@pytest.mark.asyncio
+async def test_item_collection_get_filter_valid_param(app_client, ctx):
+    """Test GET /collections/{collection_id}/items with a valid filter parameter"""
+    collection_id = ctx.item["collection"]
+    filter_body = {
+        "op": "<",
+        "args": [{"property": "eo:cloud_cover"}, 10],
+    }
+    params = {
+        "filter-lang": "cql2-json",
+        "filter": json.dumps(filter_body),
+    }
+    resp = await app_client.get(f"/collections/{collection_id}/items", params=params)
+    assert resp.status_code == 200
+
+
+@pytest.mark.asyncio
+async def test_item_collection_get_filter_invalid_param(app_client, ctx):
+    """Test GET /collections/{collection_id}/items with an invalid filter parameter"""
+    collection_id = ctx.item["collection"]
+    filter_body = {
+        "op": "=",
+        "args": [{"property": "invalid_param"}, "test"],
+    }
+    params = {
+        "filter-lang": "cql2-json",
+        "filter": json.dumps(filter_body),
+    }
+    resp = await app_client.get(f"/collections/{collection_id}/items", params=params)
+    assert resp.status_code == 400
+    resp_json = resp.json()
+    assert "Invalid query fields: invalid_param" in resp_json["detail"]
diff --git a/stac_fastapi/tests/data/test_collection.json b/stac_fastapi/tests/data/test_collection.json
@@ -6,6 +6,11 @@
   "type": "Collection",
   "description": "Landat 8 imagery radiometrically calibrated and orthorectified using gound points and Digital Elevation Model (DEM) data to correct relief displacement.",
   "stac_version": "1.0.0",
+  "queryables": {
+    "eo:cloud_cover": {
+      "$ref": "https://stac-extensions.github.io/eo/v1.0.0/schema.json#/definitions/fields/properties/eo:cloud_cover"
+    }
+  },
   "license": "PDDL-1.0",
   "summaries": {
     "platform": [
diff --git a/stac_fastapi/tests/sfeos_helpers/test_queryables.py b/stac_fastapi/tests/sfeos_helpers/test_queryables.py
