stackql
diff --git a/‎.vscode/launch.json‎
Lines changed: 5 additions & 1 deletion b/‎.vscode/launch.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎Dockerfile‎
Lines changed: 1 addition & 1 deletion b/‎Dockerfile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎docker-compose.yml‎
Lines changed: 1 addition & 0 deletions b/‎docker-compose.yml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎go.mod‎
Lines changed: 1 addition & 1 deletion b/‎go.mod‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎go.sum‎
Lines changed: 2 additions & 2 deletions b/‎go.sum‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎internal/stackql/execution/mono_valent_execution.go‎
Lines changed: 146 additions & 39 deletions b/‎internal/stackql/execution/mono_valent_execution.go‎
Lines changed: 146 additions & 39 deletions
@@ -167,6 +167,10 @@
         "EXEC aws.transfer.servers.stop_server  @region = 'ap-southeast-2'  @@json='{ \"ServerId\": \"s-0000000001\" }' ;",
         "exec aws.ec2.instances.instances_Stop  @region = 'ap-southeast-2',  @InstanceId = 'id-001' ;",
         "begin;  insert into googleadmin.directory.users(data__primaryEmail) values ('[email protected]'); rollback;",
+        "show methods in local_openssl.keys.rsa;",
+        "insert into  local_openssl.keys.rsa(config_file, key_out_file, cert_out_file, days) select '${workspaceFolder}/test/server/mtls/openssl.cnf', '${workspaceFolder}/test/tmp/manual_key.pem', '${workspaceFolder}/test/tmp/manuial_cert.pem', 90;",
+        "describe local_openssl.keys.x509;",
+        "select * from local_openssl.keys.x509 where cert_file = '/Users/admin/stackql/stackql-devel/test/tmp/manual_cert.pem';",
       ],
       "default": "show providers;"
     },
@@ -195,7 +199,7 @@
       "description": "Auth Input arg String",
       "default": "{}",
       "options": [
-        "{ \"azure\": { \"type\": \"azure_default\" }, \"digitalocean\": { \"type\": \"bearer\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/digitalocean-key.txt\" }, \"google\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/stackql-security-reviewer.json\" },  \"googleadmin\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/ryuk-it-query.json\" }, \"okta\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/okta-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"SSWS \" }, \"github\": { \"type\": \"basic\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/github-key.txt\" }, \"aws\": { \"type\": \"aws_signing_v4\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/aws-secret-key.txt\", \"keyID\": \"AKIA376P4FQSS2ONB2NS\" }, \"netlify\": { \"type\": \"api_key\", \"valuePrefix\": \"Bearer \", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/netlify-token.txt\"  }, \"k8s\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/k8s-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"Bearer \" }, \"sumologic\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/sumologic-token.txt\", \"type\": \"basic\" } }",
+        "{ \"local_openssl\": { \"type\": \"null_auth\"}, \"azure\": { \"type\": \"azure_default\" }, \"digitalocean\": { \"type\": \"bearer\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/digitalocean-key.txt\" }, \"google\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/stackql-security-reviewer.json\" },  \"googleadmin\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/ryuk-it-query.json\" }, \"okta\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/okta-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"SSWS \" }, \"github\": { \"type\": \"basic\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/github-key.txt\" }, \"aws\": { \"type\": \"aws_signing_v4\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/aws-secret-key.txt\", \"keyID\": \"AKIA376P4FQSS2ONB2NS\" }, \"netlify\": { \"type\": \"api_key\", \"valuePrefix\": \"Bearer \", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/netlify-token.txt\"  }, \"k8s\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/k8s-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"Bearer \" }, \"sumologic\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/sumologic-token.txt\", \"type\": \"basic\" } }",
         "{ \"google\": { \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/google/functional-test-dummy-sa-key.json\" }, \"googleadmin\": { \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/google/functional-test-dummy-sa-key.json\" },s \"okta\": { \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/okta/api-key.txt\", \"type\": \"api_key\", \"valuePrefix\": \"SSWS \" }, \"github\": { \"type\": \"basic\", \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/okta/api-key.txt\" }, \"aws\": { \"type\": \"aws_signing_v4\", \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/aws/functional-test-dummy-aws-key.txt\", \"keyID\": \"AKIA376P4FQSS2ONB2NS\" }, \"netlify\": { \"type\": \"api_key\", \"valuePrefix\": \"Bearer \", \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/netlify/netlify-token.txt\"  }, \"k8s\": { \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/k8s/k8s-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"Bearer \" }, \"sumologic\": { \"credentialsfilepath\": \"${workspaceFolder}/test/assets/credentials/dummy/sumologic/sumologic-token.txt\", \"type\": \"basic\" } }",
         "{ \"pgi\": { \"type\": \"sql_data_source::postgres\", \"sqlDataSource\": { \"dsn\": \"postgres://stackql:[email protected]:8432\" } }, \"azure\": { \"type\": \"azure_default\" }, \"google\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/stackql-security-reviewer.json\" }, \"okta\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/okta-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"SSWS \" }, \"github\": { \"type\": \"basic\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/github-key.txt\" }, \"aws\": { \"type\": \"aws_signing_v4\", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/aws-secret-key.txt\", \"keyID\": \"AKIA376P4FQSS2ONB2NS\" }, \"netlify\": { \"type\": \"api_key\", \"valuePrefix\": \"Bearer \", \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/netlify-token.txt\"  }, \"k8s\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/k8s-token.txt\", \"type\": \"api_key\", \"valuePrefix\": \"Bearer \" }, \"sumologic\": { \"credentialsfilepath\": \"${workspaceFolder}/cicd/keys/integration/sumologic-token.txt\", \"type\": \"basic\" } }",
         "{ \"digitalocean\": { \"username_var\": \"DUMMY_DIGITALOCEAN_USERNAME\", \"password_var\": \"DUMMY_DIGITALOCEAN_PASSWORD\", \"type\": \"bearer\" }, \"azure\": {\"type\": \"api_key\", \"valuePrefix\": \"Bearer \", \"credentialsenvvar\": \"AZ_ACCESS_TOKEN\"} }",
 
@@ -161,7 +161,7 @@ ENV PATH="${APP_DIR}:${PATH}"
 COPY --from=integration ${TEST_ROOT_DIR}/build/stackql ${APP_DIR}/
 
 RUN apt-get update \
-    && apt-get install -y ca-certificates \
+    && apt-get install -y ca-certificates openssl \
     && update-ca-certificates
 
 EXPOSE ${STACKQL_PG_PORT}/tcp
 
@@ -47,6 +47,7 @@ services:
       - ./test/assets/credentials/dummy:/opt/stackql/credentials/dummy:ro
       - ./test/assets/input:/opt/stackql/input:ro
       - ./test/tmp:/opt/test/tmp:rw
+      - ./test/server:/opt/test/server:ro
       - ${DB_SETUP_SRC:-./test/db/sqlite}:/opt/stackql/db:ro
       - ${REGISTRY_SRC:-./test/registry-mocked}:/opt/stackql/registry:ro
       - ./cicd/vol/stackql/config:/opt/stackql/.stackql:rw 
 
@@ -19,7 +19,7 @@ require (
 	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
 	github.com/spf13/viper v1.10.1
-	github.com/stackql/any-sdk v0.1.1-alpha11
+	github.com/stackql/any-sdk v0.1.2-alpha37
 	github.com/stackql/go-suffix-map v0.0.1-alpha01
 	github.com/stackql/psql-wire v0.1.1-alpha07
 	github.com/stackql/stackql-parser v0.0.14-alpha05
 
@@ -482,8 +482,8 @@ github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.10.1 h1:nuJZuYpG7gTj/XqiUwg8bA0cp1+M2mC3J4g5luUYBKk=
 github.com/spf13/viper v1.10.1/go.mod h1:IGlFPqhNAPKRxohIzWpI5QEy4kuI7tcl5WvR+8qy1rU=
-github.com/stackql/any-sdk v0.1.1-alpha11 h1:jaJ4vjQ1Vm+1zUGBQ9HTWjWAqzCIJ9qdmuSMi3AQoFM=
-github.com/stackql/any-sdk v0.1.1-alpha11/go.mod h1:4jYKpPoX2GWEK+qBnlGLvr8SUfndiYwHMIkg1dn9tFM=
+github.com/stackql/any-sdk v0.1.2-alpha37 h1:bvU576YCwqtjztMD4wSpgj//StNH8qGoBRBnN6uOH1I=
+github.com/stackql/any-sdk v0.1.2-alpha37/go.mod h1:4jYKpPoX2GWEK+qBnlGLvr8SUfndiYwHMIkg1dn9tFM=
 github.com/stackql/go-suffix-map v0.0.1-alpha01 h1:TDUDS8bySu41Oo9p0eniUeCm43mnRM6zFEd6j6VUaz8=
 github.com/stackql/go-suffix-map v0.0.1-alpha01/go.mod h1:QAi+SKukOyf4dBtWy8UMy+hsXXV+yyEE4vmBkji2V7g=
 github.com/stackql/psql-wire v0.1.1-alpha07 h1:LQWVUlx4Bougk6dztDNG5tmXxpIVeeTSsInTj801xCs=
 
@@ -1,6 +1,8 @@
 package execution
 
 import (
+	"bytes"
+	"encoding/json"
 	"fmt"
 	"io"
 	"net/http"
@@ -11,8 +13,10 @@ import (
 	"github.com/stackql/any-sdk/pkg/client"
 	"github.com/stackql/any-sdk/pkg/dto"
 	"github.com/stackql/any-sdk/pkg/httpelement"
+	"github.com/stackql/any-sdk/pkg/local_template_executor"
 	"github.com/stackql/any-sdk/pkg/logging"
 	"github.com/stackql/any-sdk/pkg/response"
+	"github.com/stackql/any-sdk/pkg/stream_transform"
 	"github.com/stackql/any-sdk/pkg/streaming"
 	"github.com/stackql/stackql-parser/go/vt/sqlparser"
 	"github.com/stackql/stackql/internal/stackql/acid/binlog"
@@ -1232,7 +1236,7 @@ func (sp *standardProcessor) Process() ProcessorResponse {
 	return newHTTPProcessorResponse(nil, reversalStream, false, nil)
 }
 
-//nolint:revive // TODO: investigate
+//nolint:revive,nestif,funlen,gocognit // TODO: investigate
 func (mv *monoValentExecution) GetExecutor() (func(pc primitive.IPrimitiveCtx) internaldto.ExecutorOutput, error) {
 	prov, err := mv.tableMeta.GetProvider()
 	if err != nil {
@@ -1261,47 +1265,150 @@ func (mv *monoValentExecution) GetExecutor() (func(pc primitive.IPrimitiveCtx) i
 		polyHandler := NewStandardPolyHandler(
 			mv.handlerCtx,
 		)
-		agnosticatePayload := newHTTPAgnosticatePayload(
-			mv.tableMeta,
-			provider,
-			m,
-			tableName,
-			authCtx,
-			mv.handlerCtx.GetRuntimeContext(),
-			mv.handlerCtx.GetOutErrFile(),
-			mr,
-			mv.elideActionIfPossible(
-				currentTcc,
-				tableName,
-				"", // late binding, should remove AOT reference
-			),
-			true,
-			polyHandler,
-			mv.tableMeta.GetSelectItemsKey(),
-			mv,
-			mv.isSkipResponse,
-			mv.isMutation,
-		)
-		processorResponse, agnosticErr := agnosticate(agnosticatePayload)
-		if agnosticErr != nil {
-			return internaldto.NewErroneousExecutorOutput(agnosticErr)
-		}
-		messages := polyHandler.GetMessages()
-		var castMessages internaldto.BackendMessages
-		if len(messages) > 0 {
-			castMessages = internaldto.NewBackendMessages(messages)
+		protocolType, protocolTypeErr := provider.GetProtocolType()
+		if protocolTypeErr != nil {
+			return internaldto.NewErroneousExecutorOutput(protocolTypeErr)
 		}
-		if processorResponse != nil && len(processorResponse.GetSuccessMessages()) > 0 {
-			if len(messages) == 0 {
-				castMessages = internaldto.NewBackendMessages(processorResponse.GetSuccessMessages())
-			} else {
-				castMessages.AppendMessages(processorResponse.GetSuccessMessages())
+		//nolint:exhaustive // acceptable for now
+		switch protocolType {
+		case client.LocalTemplated:
+			inlines := m.GetInline()
+			if len(inlines) == 0 {
+				return internaldto.NewErroneousExecutorOutput(fmt.Errorf("no inlines found"))
 			}
+			executor := local_template_executor.NewLocalTemplateExecutor(
+				inlines[0],
+				inlines[1:],
+				nil,
+			)
+			armoury, armouryErr := mv.tableMeta.GetHTTPArmoury()
+			if armouryErr != nil {
+				return internaldto.NewErroneousExecutorOutput(armouryErr)
+			}
+			requestParams := armoury.GetRequestParams()
+			logging.GetLogger().Infoln(fmt.Sprintf("requestParams = %v", requestParams))
+			flatInlineParams := make(map[string]interface{})
+			for _, p := range requestParams {
+				foundInlineParams, loopErr := p.GetParameters().GetInlineParameterFlatMap()
+				if loopErr == nil {
+					flatInlineParams = foundInlineParams
+				}
+				break //nolint:staticcheck // acceptable for now
+			}
+			// if mapsErr != nil {
+			// 	return internaldto.NewErroneousExecutorOutput(mapsErr)
+			// }
+			// paramMap := interestingMaps.getParameterMap()
+			// params := paramMap[0]
+			resp, exErr := executor.Execute(
+				map[string]any{"parameters": flatInlineParams},
+			)
+			if exErr != nil {
+				return internaldto.NewErroneousExecutorOutput(exErr)
+			}
+			var backendMessages []string
+			stdOut, stdOutExists := resp.GetStdOut()
+			var stdoutStr string
+			if stdOutExists {
+				stdoutStr = stdOut.String()
+				expectedResponse, isExpectedResponse := m.GetResponse()
+				if isExpectedResponse {
+					responseTransform, responseTransformExists := expectedResponse.GetTransform()
+					if responseTransformExists && responseTransform.GetType() == "golang_template_v0.1.0" {
+						input := stdoutStr
+						tmpl := responseTransform.GetBody()
+						inStream := stream_transform.NewTextReader(bytes.NewBufferString(input))
+						outStream := bytes.NewBuffer(nil)
+						tfm, setupErr := stream_transform.NewTemplateStreamTransformer(tmpl, inStream, outStream)
+						if setupErr != nil {
+							return internaldto.NewErroneousExecutorOutput(fmt.Errorf("template stream transform error: %w", setupErr))
+						}
+						if tfErr := tfm.Transform(); tfErr != nil {
+							return internaldto.NewErroneousExecutorOutput(fmt.Errorf("failed to transform: %w", tfErr))
+						}
+						outputStr := outStream.String()
+						stdoutStr = outputStr
+					}
+				}
+				var res []map[string]interface{}
+				resErr := json.Unmarshal([]byte(stdoutStr), &res)
+				itemisationResult := itemise(res, resErr, "")
+				insertPrepResult := mv.ActionInsertPreparation(
+					newHTTPActionInsertPayload(
+						itemisationResult,
+						false,
+						tableName,
+						flatInlineParams,
+						"",
+					),
+				)
+				insertErr, hasErr := insertPrepResult.GetError()
+				if hasErr {
+					return internaldto.NewErroneousExecutorOutput(insertErr)
+				}
+				// fmt.Fprintf(os.Stdout, "%s", stdoutStr)
+			}
+			// if stdOutExists {
+			// 	backendMessages = append(backendMessages, stdOut.String())
+			// }
+			stdErr, stdErrExists := resp.GetStdErr()
+			if stdErrExists {
+				backendMessages = append(backendMessages, stdErr.String())
+			}
+			backendMessages = append(backendMessages, "OK")
+			return internaldto.NewExecutorOutput(
+				nil,
+				nil,
+				nil,
+				internaldto.NewBackendMessages(backendMessages),
+				nil,
+			)
+		case client.HTTP:
+			agnosticatePayload := newHTTPAgnosticatePayload(
+				mv.tableMeta,
+				provider,
+				m,
+				tableName,
+				authCtx,
+				mv.handlerCtx.GetRuntimeContext(),
+				mv.handlerCtx.GetOutErrFile(),
+				mr,
+				mv.elideActionIfPossible(
+					currentTcc,
+					tableName,
+					"", // late binding, should remove AOT reference
+				),
+				true,
+				polyHandler,
+				mv.tableMeta.GetSelectItemsKey(),
+				mv,
+				mv.isSkipResponse,
+				mv.isMutation,
+			)
+			processorResponse, agnosticErr := agnosticate(agnosticatePayload)
+			if agnosticErr != nil {
+				return internaldto.NewErroneousExecutorOutput(agnosticErr)
+			}
+			messages := polyHandler.GetMessages()
+			var castMessages internaldto.BackendMessages
+			if len(messages) > 0 {
+				castMessages = internaldto.NewBackendMessages(messages)
+			}
+			if processorResponse != nil && len(processorResponse.GetSuccessMessages()) > 0 {
+				if len(messages) == 0 {
+					castMessages = internaldto.NewBackendMessages(processorResponse.GetSuccessMessages())
+				} else {
+					castMessages.AppendMessages(processorResponse.GetSuccessMessages())
+				}
+			}
+			if processorResponse == nil {
+				return internaldto.NewExecutorOutput(nil, nil, nil, castMessages, nil)
+			}
+			return internaldto.NewExecutorOutput(nil, processorResponse.GetSingletonBody(), nil, castMessages, err)
+		default:
+			return internaldto.NewErroneousExecutorOutput(
+				fmt.Errorf("unsupported protocol type '%v'", protocolType))
 		}
-		if processorResponse == nil {
-			return internaldto.NewExecutorOutput(nil, nil, nil, castMessages, nil)
-		}
-		return internaldto.NewExecutorOutput(nil, processorResponse.GetSingletonBody(), nil, castMessages, err)
 	}
 	return ex, nil
 }