mirror of
https://github.com/johndoe6345789/metabuilder.git
synced 2026-04-25 06:14:59 +00:00
johndoe6345789
49f40177b5
README.md
LICENSE
AGENTS.md
api/ # Language-agnostic contract (source of truth)
schema/
entities/ # Entity definitions (conceptual models)
user.yaml
session.yaml
...
operations/ # CRUD + domain operations (semantic, not SQL)
user.ops.yaml
...
errors.yaml # Standard error codes (conflict, not_found, etc.)
capabilities.yaml # Feature flags per backend (tx, joins, ttl, etc.)
idl/
dbal.proto # Optional: RPC/IPC contract if needed
dbal.fbs # Optional: FlatBuffers schema if you prefer
versioning/
compat.md # Compatibility rules across TS/C++
common/ # Shared test vectors + fixtures + golden results
fixtures/
seed/
datasets/
golden/
query_results/
contracts/
conformance_cases.yaml
ts/ # Development implementation in TypeScript
package.json
tsconfig.json
src/
index.ts # Public entrypoint (creates client)
core/
client.ts # DBAL client facade
types.ts # TS types mirroring api/schema
errors.ts # Error mapping to api/errors.yaml
validation/ # Runtime validation (zod/io-ts/etc.)
input.ts
output.ts
capabilities.ts # Capability negotiation
telemetry/
logger.ts
metrics.ts
tracing.ts
adapters/ # Backend implementations (TS)
prisma/
index.ts
prisma_client.ts # Wraps Prisma client (server-side only)
mapping.ts # DB <-> entity mapping, select shaping
migrations/ # Optional: Prisma migration helpers
sqlite/
index.ts
sqlite_driver.ts
schema.ts
migrations/
mongodb/
index.ts
mongo_driver.ts
schema.ts
query/ # Query builder / AST (no backend leakage)
ast.ts
builder.ts
normalize.ts
optimize.ts
runtime/
config.ts # DBAL config (env, URLs, pool sizes)
secrets.ts # Secret loading boundary (server-only)
util/
assert.ts
retry.ts
backoff.ts
time.ts
tests/
unit/
integration/
conformance/ # Runs common/contract vectors on TS adapters
harness/
setup.ts
cpp/ # Production implementation in C++
CMakeLists.txt
include/
dbal/
dbal.hpp # Public API
client.hpp # Facade
types.hpp # Entity/DTO types
errors.hpp
capabilities.hpp
telemetry.hpp
query/
ast.hpp
builder.hpp
normalize.hpp
adapters/
adapter.hpp # Adapter interface
sqlite/
sqlite_adapter.hpp
mongodb/
mongodb_adapter.hpp
prisma/
prisma_adapter.hpp # Usually NOT direct; see note below
util/
expected.hpp
result.hpp
uuid.hpp
src/
client.cpp
errors.cpp
capabilities.cpp
telemetry.cpp
query/
ast.cpp
builder.cpp
normalize.cpp
adapters/
sqlite/
sqlite_adapter.cpp
sqlite_pool.cpp
sqlite_migrations.cpp
mongodb/
mongodb_adapter.cpp
mongo_pool.cpp
prisma/
prisma_adapter.cpp # See note below (often an RPC bridge)
util/
uuid.cpp
backoff.cpp
tests/
unit/
integration/
conformance/ # Runs common/contract vectors on C++ adapters
harness/
main.cpp
backends/ # Backend-specific assets not tied to one lang
sqlite/
schema.sql
migrations/
mongodb/
indexes.json
prisma/
schema.prisma
migrations/
tools/ # Codegen + build helpers (prefer Python)
codegen/
gen_types.py # api/schema -> ts/core/types.ts and cpp/types.hpp
gen_errors.py
gen_capabilities.py
conformance/
run_all.py # runs TS + C++ conformance suites
dev/
lint.py
format.py
scripts/ # Cross-platform entrypoints (Python per your pref)
build.py
test.py
conformance.py
package.py
dist/ # Build outputs (gitignored)
.github/
workflows/
ci.yml
.gitignore
.editorconfig
C++ Implementation Guide
Building the DBAL Daemon
Prerequisites
- CMake 3.20+
- C++17 compatible compiler (GCC 9+, Clang 10+, MSVC 2019+)
- SQLite3 development libraries
- Optional: MongoDB C++ driver, gRPC
Build Instructions
cd dbal/cpp
mkdir build && cd build
cmake ..
make -j$(nproc)
Running Tests
# From build directory
./unit_tests
./integration_tests
./conformance_tests
Installing
sudo make install
This installs:
/usr/local/bin/dbal_daemon- The daemon executable/usr/local/include/dbal/- Public headers
Daemon Architecture
Security Model
The daemon runs with minimal privileges:
- Process Isolation: Runs in separate process from application
- File System: Restricted to
/var/lib/dbal/and/var/log/dbal/ - Network: Only connects to database, no outbound internet
- User: Runs as dedicated
dbaluser (not root) - Capabilities: Only
CAP_NET_BIND_SERVICEfor port 50051
Configuration
# /etc/dbal/config.yaml
server:
bind: "127.0.0.1:50051"
tls:
enabled: true
cert: "/etc/dbal/certs/server.crt"
key: "/etc/dbal/certs/server.key"
database:
adapter: "prisma"
url: "${DATABASE_URL}"
pool_size: 20
connection_timeout: 30
security:
sandbox: "strict"
audit_log: "/var/log/dbal/audit.log"
max_query_time: 30
max_result_size: 1048576
acl:
rules_file: "/etc/dbal/acl.yaml"
enforce_row_level: true
Running the Daemon
Development
./dbal_daemon --config=../config/dev.yaml --mode=development
Production (systemd)
# /etc/systemd/system/dbal.service
[Unit]
Description=DBAL Daemon
After=network.target
[Service]
Type=simple
User=dbal
Group=dbal
ExecStart=/usr/local/bin/dbal_daemon --config=/etc/dbal/config.yaml
Restart=on-failure
RestartSec=5
PrivateTmp=true
NoNewPrivileges=true
ProtectSystem=strict
ProtectHome=true
ReadWritePaths=/var/lib/dbal /var/log/dbal
[Install]
WantedBy=multi-user.target
Start the service:
sudo systemctl enable dbal
sudo systemctl start dbal
sudo systemctl status dbal
Docker
# Dockerfile
FROM alpine:3.18
RUN apk add --no-cache \
libstdc++ \
sqlite-libs
COPY --from=builder /app/build/dbal_daemon /usr/local/bin/
COPY config/prod.yaml /etc/dbal/config.yaml
RUN adduser -D -u 1000 dbal && \
mkdir -p /var/lib/dbal /var/log/dbal && \
chown -R dbal:dbal /var/lib/dbal /var/log/dbal
USER dbal
EXPOSE 50051
ENTRYPOINT ["/usr/local/bin/dbal_daemon"]
CMD ["--config=/etc/dbal/config.yaml"]
Code Structure
Public API (include/dbal/)
client.hpp - Main client interface
dbal::Client client(config);
auto result = client.createUser({
.username = "john",
.email = "john@example.com",
.role = dbal::UserRole::User
});
if (result.isOk()) {
std::cout << "Created user: " << result.value().id << std::endl;
}
errors.hpp - Error handling with Result type
dbal::Result<User> getUser(const std::string& id) {
if (!exists(id)) {
return dbal::Error::notFound("User not found");
}
return user;
}
types.hpp - Entity definitions (generated from YAML)
Implementation (src/)
adapters/ - Backend implementations
sqlite/- Direct SQLite accessprisma/- Bridge to Prisma (via RPC)mongodb/- MongoDB driver
query/ - Query builder and optimizer
- Independent of backend
- Translates to SQL/NoSQL
daemon/ - Daemon server
- gRPC/WebSocket server
- Authentication/ACL enforcement
- Request routing
Testing (tests/)
unit/ - Unit tests for individual components integration/ - Tests with real databases conformance/ - Cross-implementation tests
Adding a New Adapter
- Create header in
include/dbal/adapters/mydb/ - Implement in
src/adapters/mydb/ - Inherit from
adapters::Adapterinterface - Implement all CRUD methods
- Add to CMakeLists.txt
- Write integration tests
- Run conformance tests
Example:
// include/dbal/adapters/mydb/mydb_adapter.hpp
#ifndef DBAL_ADAPTERS_MYDB_ADAPTER_HPP
#define DBAL_ADAPTERS_MYDB_ADAPTER_HPP
#include "../adapter.hpp"
namespace dbal::adapters {
class MyDBAdapter : public Adapter {
public:
explicit MyDBAdapter(const std::string& connection_string);
Result<Entity> create(const std::string& entity,
const Json& data) override;
Result<Entity> read(const std::string& entity,
const std::string& id) override;
// ... other methods
private:
MyDBConnection conn_;
};
}
#endif
Debugging
Enable Debug Logging
DBAL_LOG_LEVEL=debug ./dbal_daemon --config=config.yaml
GDB Debugging
gdb ./dbal_daemon
(gdb) break dbal::Client::createUser
(gdb) run --config=dev.yaml
Valgrind Memory Check
valgrind --leak-check=full ./dbal_daemon --config=config.yaml
Performance Optimization
Connection Pooling
Adjust pool size based on workload:
database:
pool_size: 50 # Increase for high concurrency
min_idle: 10
max_lifetime: 3600
Query Optimization
Enable query caching:
performance:
query_cache: true
cache_size_mb: 256
cache_ttl: 300
Batch Operations
Use batch APIs for bulk inserts:
std::vector<CreateUserInput> users = {...};
auto result = client.batchCreateUsers(users);
Security Hardening
1. Run as Non-Root
sudo useradd -r -s /bin/false dbal
sudo chown -R dbal:dbal /var/lib/dbal
2. Enable SELinux/AppArmor
# SELinux policy
semanage fcontext -a -t dbal_db_t "/var/lib/dbal(/.*)?"
restorecon -R /var/lib/dbal
3. Use TLS
server:
tls:
enabled: true
cert: "/etc/dbal/certs/server.crt"
key: "/etc/dbal/certs/server.key"
client_auth: true # mTLS
4. Audit Logging
security:
audit_log: "/var/log/dbal/audit.log"
log_all_queries: false
log_sensitive_operations: true
Troubleshooting
Daemon Won't Start
Check logs:
journalctl -u dbal -n 50
Common issues:
- Port already in use: Change
bindin config - Permission denied: Check file ownership
- Database unreachable: Verify
DATABASE_URL
High Memory Usage
Monitor with:
pmap -x $(pgrep dbal_daemon)
Reduce:
- Connection pool size
- Query cache size
- Result set limits
Slow Queries
Enable query timing:
logging:
slow_query_threshold_ms: 1000
Check logs for slow queries and add indexes.
CI/CD Integration
GitHub Actions
- name: Build C++ DBAL
run: |
cd dbal/cpp
cmake -B build -DCMAKE_BUILD_TYPE=Release
cmake --build build --parallel
- name: Run Tests
run: |
cd dbal/cpp/build
ctest --output-on-failure
Docker Build
docker build -t dbal-daemon:latest -f dbal/cpp/Dockerfile .
docker push dbal-daemon:latest
Monitoring
Prometheus Metrics
Expose metrics on :9090/metrics:
dbal_queries_total{entity="User",operation="create"} 1234
dbal_query_duration_seconds{entity="User",operation="create",quantile="0.99"} 0.045
dbal_connection_pool_size{adapter="sqlite"} 20
dbal_connection_pool_idle{adapter="sqlite"} 15
Health Checks
curl http://localhost:50051/health
# {"status": "healthy", "uptime": 3600, "connections": 15}
Resources
- API Documentation: docs.metabuilder.io/dbal/cpp
- Examples: cpp/examples/
- Architecture: docs/architecture.md