First pass (incomplete) of "rich" JSONB indexing docs #13
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -229,6 +229,8 @@ EQL provides specialized functions to interact with encrypted data: | |
| - **`cs_unique_v1(val JSONB)`**: Retrieves the unique index for enforcing uniqueness. | ||
| - **`cs_ore_v1(val JSONB)`**: Retrieves the Order-Revealing Encryption index for range queries. | ||
| - **`cs_ste_vec_v1(val JSONB)`**: Retrieves the Structured Encryption Vector for containment queries. | ||
| - **`cs_rich_jsonb_v1(val JSONB)`**: Retrieves the encrypted materialised JSONB index for rich JSONB queries. | ||
|
|
||
|
|
||
| ### Index functions | ||
|
|
||
|
|
@@ -320,13 +322,13 @@ An ste_vec index on a encrypted JSONB column enables the use of PostgreSQL's `@> | |
|
|
||
| An ste_vec index requires one piece of configuration: the `prefix` (a string) which is functionally similar to a salt for the hashing process. | ||
|
|
||
| Within a dataset, encrypted columns indexed using an ste_vec that use different prefixes can never compare as equal. | ||
| Containment queries that manage to mix index terms from multiple columns will never return a positive result. | ||
| This is by design. | ||
|
|
||
| The index is generated from a JSONB document by first flattening the structure of the document such that a hash can be generated for each unique path prefix to a node. | ||
|
|
||
| The complete set of JSON types is supported by the indexer. | ||
| Null values are ignored by the indexer. | ||
|
|
||
| - Object `{ ... }` | ||
|
|
@@ -373,7 +375,7 @@ Using the first entry to illustrate how an entry is converted to hashes: | |
|
|
||
| The hashes would be generated for all prefixes of the full path to the leaf node. | ||
|
|
||
| ```rust | ||
| [ | ||
| [Obj], | ||
| [Obj, Key("account")], | ||
|
|
@@ -396,7 +398,7 @@ The expression `cs_ste_vec_v1(encrypted_account) @> cs_ste_vec_v1($query)` would | |
|
|
||
| When reduced to a prefix list, it would look like this: | ||
|
|
||
| ```rust | ||
| [ | ||
| [Obj], | ||
| [Obj, Key("account")], | ||
|
|
@@ -411,6 +413,62 @@ When reduced to a prefix list, it would look like this: | |
|
|
||
| Which is then turned into an ste_vec of hashes which can be directly queries against the index. | ||
|
|
||
| ##### rich_jsonb opts | ||
|
|
||
| A rich_jsonb index supports a richer set of JSONB functions and operators than an ste_vec index. | ||
|
|
||
| Leaf nodes of the indexed JSONB document are also stored inline in the index which means that subsets of the document (down to individual fields and array elements) can be selected and returned to the client, avoiding the need for the client application to fetch the entire JSONB document. | ||
|
|
||
| ###### Supported functions & operators | ||
|
|
||
| `cs_binop_v1(jsonb, '->', integer)` | ||
|
|
||
| Extracts n'th element of JSON array (array elements are indexed from zero, but negative integers count from the end). | ||
|
|
||
| `cs_binop_v1(jsonb, '->', text)` | ||
|
|
||
| Extracts JSON object field with the given key. | ||
|
|
||
| `cs_binop_v1(jsonb, '->>', integer)` | ||
|
|
||
| Extracts n'th element of JSON array, as text. | ||
|
|
||
| `cs_binop_v1(jsonb, '->>', text)` | ||
|
|
||
| Extracts JSON object field with the given key, as text. | ||
|
|
||
| `cs_binop_v1(jsonb, '<', jsonb)` | ||
|
There was a problem hiding this comment. How would Or is There was a problem hiding this comment. @CDThomas given that a function can be polymorphic - I think that means |
||
|
|
||
| Returns `true` if left jsonb is less than right jsonb, else `false`. | ||
|
|
||
| Left jsonb and right jsonb must be materialised values with an associated ORE index. | ||
|
|
||
| `cs_binop_v1(jsonb, '>', jsonb)` | ||
|
|
||
| Returns `true` if left jsonb is greater than right jsonb, else `false`. | ||
|
|
||
| Left jsonb and right jsonb must be values with an associated ORE index. | ||
|
|
||
| `cs_binop_v1(jsonb, '<=', jsonb)` | ||
|
|
||
| Returns `true` if left jsonb is less than or equal right jsonb, else `false`. | ||
|
|
||
| Left jsonb and right jsonb must be values with an associated ORE index. | ||
|
|
||
| `cs_binop_v1(jsonb, '>=', jsonb)` | ||
|
|
||
| Returns `true` if left jsonb is greater than or equal to right jsonb, else `false`. | ||
|
|
||
| Left jsonb and right jsonb must be values with an associated ORE index. | ||
|
|
||
| `cs_jsonb_array_elements_v1(jsonb)` → setof jsonb | ||
|
|
||
| Expands the top-level JSON array into a set of JSON values. | ||
|
|
||
| `cs_jsonb_array_elements_text_v1(jsonb)` → setof text | ||
|
|
||
| Expands the top-level JSON array into a set of text values. | ||
|
|
||
| #### cs_modify_index | ||
|
|
||
| ```sql | ||
|
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How would
cs_binop_v1handle the different return types between operators (jsonb,text, orbool)? Can Pl/pgSQL handle multiple return types for a single function?Uh oh!
There was an error while loading. Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@CDThomas that is a very good question!
Postgres does support limited polymorphism via
anyelement,anyarray,anynonarray,anyenum, oranyrange.The way it works is that if you have a function
foo(anyelement) -> anyelementthenanyelementbecomes the same type everywhere it appears.So
foo(text) -> textwould be allowed, butfoo(text) -> integerwould not.I think that is sufficient to express all of the variations required by
cs_binop_v1but I will need to double check.