Feat #4329: Add on_subscription_result hook to SchemaExtension
#4330
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| Release type: minor | ||
|
|
||
| Adds a new `on_subscription_result` hook to `SchemaExtension` that allows extensions to interact with and mutate the stream of events yielded by GraphQL subscriptions. | ||
|
|
||
| Previously, extensions were only triggered during the initial setup phase of a subscription, meaning transport layers (like WebSockets) bypassed them during the actual data streaming phase. This new hook solves this by executing right before each result is yielded to the client. | ||
|
|
||
| As part of this architectural update, the built-in `MaskErrors` extension has been updated to use this new hook, ensuring that sensitive exceptions are now correctly masked during WebSocket subscriptions. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,7 +9,7 @@ | |
| if TYPE_CHECKING: | ||
| from graphql import GraphQLResolveInfo | ||
|
|
||
| from strawberry.types import ExecutionContext, ExecutionResult | ||
|
|
||
|
|
||
| class LifecycleStep(Enum): | ||
|
|
@@ -51,6 +51,14 @@ def on_execute( # type: ignore | |
| """Called before and after the execution step.""" | ||
| yield None | ||
|
|
||
| def on_subscription_result( | ||
| self, result: ExecutionResult | ||
| ) -> None | AwaitableOrValue[None]: | ||
| """Called exactly once for every event/result yielded by a GraphQL subscription. | ||
|
|
||
| Extensions can mutate the `result` object directly (e.g., masking errors). | ||
| """ | ||
|
||
|
|
||
| def resolve( | ||
| self, | ||
| _next: Callable, | ||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
|
|
@@ -59,3 +59,7 @@ def on_operation(self) -> Iterator[None]: | |||||
| self._process_result(result) | ||||||
| elif result: | ||||||
| self._process_result(result.initial_result) | ||||||
|
|
||||||
| def on_subscription_result(self, result: StrawberryExecutionResult) -> None: | ||||||
|
||||||
| def on_subscription_result(self, result: StrawberryExecutionResult) -> None: | |
| def on_subscription_result(self, result: GraphQLExecutionResult) -> None: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -875,20 +875,29 @@ async def _subscribe( | |
| try: | ||
| async with aclosing(aiter_or_result): | ||
| async for result in aiter_or_result: | ||
| extension_result = await self._handle_execution_result( | ||
| execution_context, | ||
| result, | ||
| extensions_runner, | ||
| ) | ||
|
|
||
| await extensions_runner.on_subscription_result( | ||
| extension_result | ||
| ) | ||
|
|
||
| yield extension_result | ||
|
|
||
| # graphql-core doesn't handle exceptions raised while executing. | ||
| except Exception as exc: # noqa: BLE001 | ||
| execution_result = await self._handle_execution_result( | ||
| execution_context, | ||
| OriginalExecutionResult( | ||
| data=None, errors=[_coerce_error(exc)] | ||
| ), | ||
| extensions_runner, | ||
| ) | ||
| await extensions_runner.on_subscription_result(execution_result) | ||
| yield execution_result | ||
| # catch exceptions raised in `on_execute` hook. | ||
| except Exception as exc: # noqa: BLE001 | ||
| origin_result = OriginalExecutionResult( | ||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,87 @@ | ||
| from collections.abc import AsyncGenerator | ||
|
|
||
| import pytest | ||
|
|
||
| import strawberry | ||
| from strawberry.extensions import SchemaExtension | ||
| from strawberry.extensions.mask_errors import MaskErrors | ||
| from strawberry.types import ExecutionResult | ||
|
|
||
|
|
||
| # Dummy extension that uses the new hook | ||
| class StreamModifierExtension(SchemaExtension): | ||
| def on_subscription_result(self, result: ExecutionResult) -> None: | ||
| if result.data and "count" in result.data: | ||
| # Mutate the outgoing data stream | ||
| result.data["count"] = f"Modified: {result.data['count']}" | ||
|
Comment on lines
+14
to
+18
Contributor
There was a problem hiding this comment. suggestion (testing): Consider adding a test that covers an async Current tests only cover the synchronous implementation. Since Suggested implementation: import asyncio
import pytest
import strawberry
from strawberry.extensions import SchemaExtension
from strawberry.extensions.mask_errors import MaskErrors
from strawberry.types import ExecutionResult
# Dummy extension that uses the new hook
class StreamModifierExtension(SchemaExtension):
def on_subscription_result(self, result: ExecutionResult) -> None:
if result.data and "count" in result.data:
# Mutate the outgoing data stream
result.data["count"] = f"Modified: {result.data['count']}"
class AsyncStreamModifierExtension(SchemaExtension):
side_effect_ran = False
async def _side_effect(self) -> None:
# Simulate an async dependency / side effect
await asyncio.sleep(0)
AsyncStreamModifierExtension.side_effect_ran = True
async def on_subscription_result(self, result: ExecutionResult) -> None:
# This should be awaited by extensions_runner.on_subscription_result
await self._side_effect()
if result.data and "count" in result.data:
# Mutate the outgoing data stream after the async side effect
result.data["count"] = f"Modified: {result.data['count']}"
@strawberry.type
class Query:
# Minimal Query type; field is unused but required by Strawberry
example: str = "example"
@strawberry.type
class Subscription:
@strawberry.subscription
async def count(self) -> int:
for i in range(3):
yield i
@pytest.mark.asyncio
async def test_async_on_subscription_result_is_awaited() -> None:
# Reset class-level flag before running the subscription
AsyncStreamModifierExtension.side_effect_ran = False
schema = strawberry.Schema(
query=Query,
subscription=Subscription,
extensions=[AsyncStreamModifierExtension],
)
results = schema.subscribe("subscription { count }")
# Consume first result from the async iterator
first_result = await results.__anext__()
assert first_result.errors is None
assert first_result.data == {"count": "Modified: 0"}
assert AsyncStreamModifierExtension.side_effect_ran is TrueIf this file already defines
|
||
|
|
||
|
|
||
| # Create a basic schema with a subscription | ||
| @strawberry.type | ||
| class Query: | ||
| hello: str = "world" | ||
|
|
||
|
|
||
| @strawberry.type | ||
| class Subscription: | ||
| @strawberry.subscription | ||
| async def count(self) -> AsyncGenerator[int, None]: | ||
| yield 1 | ||
| yield 2 | ||
|
|
||
| @strawberry.subscription | ||
| async def dangerous_stream(self) -> AsyncGenerator[int, None]: | ||
| yield 1 | ||
| raise ValueError("Secret database credentials leaked!") | ||
|
|
||
|
|
||
| # Tests | ||
| @pytest.mark.asyncio | ||
| async def test_extension_modifies_subscription_stream(): | ||
| schema = strawberry.Schema( | ||
| query=Query, subscription=Subscription, extensions=[StreamModifierExtension] | ||
| ) | ||
|
|
||
| query = "subscription { count }" | ||
|
|
||
| sub_generator = await schema.subscribe(query) | ||
|
|
||
| # Get all yielded results | ||
| results = [result async for result in sub_generator] | ||
|
|
||
| assert len(results) == 2 | ||
|
|
||
| # Assert that the extension successfully intercepted and modified the stream | ||
| assert results[0].data["count"] == "Modified: 1" | ||
| assert results[1].data["count"] == "Modified: 2" | ||
|
|
||
|
|
||
| @pytest.mark.asyncio | ||
| async def test_mask_errors_scrubs_subscription_exceptions(): | ||
| # Initialize schema with the MaskErrors extension | ||
| schema = strawberry.Schema( | ||
| query=Query, subscription=Subscription, extensions=[MaskErrors()] | ||
| ) | ||
|
|
||
| query = "subscription { dangerousStream }" | ||
|
|
||
| sub_generator = await schema.subscribe(query) | ||
|
|
||
| # Get all yielded results | ||
| results = [result async for result in sub_generator] | ||
|
|
||
| # We expect 2 results: the successful yield, and the error | ||
| assert len(results) == 2 | ||
|
|
||
| # Assert the first yield worked normally | ||
| assert results[0].data["dangerousStream"] == 1 | ||
| assert not results[0].errors | ||
|
|
||
| # Assert the error was caught and MASKED | ||
| assert results[1].data is None | ||
| assert len(results[1].errors) == 1 | ||
|
|
||
| # The crucial check: The raw exception message MUST NOT be exposed | ||
| error_message = results[1].errors[0].message | ||
| assert error_message == "Unexpected error." | ||
| assert "Secret database credentials" not in error_message | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think we should follow the same patterns as the others here, using
yield None, which would allow extensions to do something before and afterWdyt?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi.
I agree. I think it makes sense to follow the patterns as the other methods, and this change allows for more flexibility for the extensions.
I have just made a new commit and pushed the updates to implement this. Thank you for your review.