Skip to content

docs(query-language): add normative Query Evaluation Semantics#585

Open
aorzelskiGH wants to merge 1 commit intoIDTA-01002-3-2_workingfrom
docs/query-evaluation-semantics
Open

docs(query-language): add normative Query Evaluation Semantics#585
aorzelskiGH wants to merge 1 commit intoIDTA-01002-3-2_workingfrom
docs/query-evaluation-semantics

Conversation

@aorzelskiGH
Copy link
Copy Markdown
Contributor

@aorzelskiGH aorzelskiGH commented Apr 17, 2026

Summary

Add a normative "Query Evaluation Semantics" clause to query-language.adoc so that parse, field resolution, casting, list handling and interaction with Access Rules (IDTA-01004) behave deterministically across implementations.

Problem

The query language currently leaves several runtime questions implicit:

  • what happens when a FieldIdentifier does not resolve on a candidate?
  • what is the HTTP mapping of a parse error vs. an unsupported operator combination?
  • how do queries behave on a profile that does not expose a given FieldIdentifier prefix?
  • what is the interaction with access rules that are "not applicable" for a candidate?

Implementations disagree (some 500, some 200/empty, some 400), which blocks interoperability and conformance testing.

Solution

Introduce a new section Query Evaluation Semantics (normative) just before the JSON Schema clause. It specifies:

  • parse errors => 400 Bad Request; unsupported combinations => 422 Unprocessable Entity;
  • unresolved FieldIdentifier on a candidate excludes the candidate without raising an error;
  • non-applicable prefix (per the profile applicability table added in docs(profiles): add FieldIdentifier applicability table per profile #584) behaves like "field not present";
  • list-valued FieldIdentifiers use existential (any-element) matching unless an index is provided;
  • casting errors exclude the candidate;
  • when Access Rules are enforced (IDTA-01004), "not applicable" rules do not fail the query.

Affected files

  • documentation/IDTA-01002-3/modules/ROOT/pages/query-language.adoc

Review notes

  • Paired Security PR admin-shell-io/aas-specs-security#... adds the equivalent Evaluation Semantics section for the Access Rule Model and mirrors the error-handling conventions.
  • No grammar or schema changes.

Refs: Review Finding T-15

@aorzelskiGH
docs(query-language): add normative "Query Evaluation Semantics"
5a5a053 
Specify how AAS queries MUST be evaluated, covering:

- parse and schema validation (400 / 422 mapping),
- behaviour of FieldIdentifiers that do not resolve on the target
  (candidate excluded, no error),
- behaviour under profile restrictions (non-applicable prefix is
  treated like "field not present"),
- semantics of list-valued FieldIdentifiers (existential match),
- behaviour on casting errors (candidate excluded, query stays green),
- interaction with Access Rules (IDTA-01004): applicable ALLOW rules
  filter the candidate set; "not applicable" rules do not fail the
  query.

Refs: Review Finding T-15
Made-with: Cursor
github-advanced-security[bot]
github-advanced-security AI found potential problems Apr 17, 2026
View reviewed changes
Comment thread documentation/IDTA-01002-3/modules/ROOT/pages/query-language.adoc
=== Evaluation of FieldIdentifiers

* A FieldIdentifier that does not resolve to any value on a candidate object (because the field does not exist on that target) produces *no comparison match*: the candidate is excluded from the result set. This MUST NOT raise an error.
* A FieldIdentifier that is not applicable for the active profile (see xref:http-rest-api/service-specifications-and-profiles.adoc#fieldidentifier-applicability[FieldIdentifier Applicability per Profile]) is treated like "field does not exist": the candidate is excluded, no error is raised.
Comment thread documentation/IDTA-01002-3/modules/ROOT/pages/query-language.adoc
=== Casting Errors

* An explicit cast that fails on the current candidate (e.g. `num("abc")`) MUST exclude the candidate from the result set; it MUST NOT fail the whole query.
* Implicit casts between the types listed in clause xref:_casting[] follow the same rule.
Comment thread documentation/IDTA-01002-3/modules/ROOT/pages/query-language.adoc

=== Combination with Access Rules

When a query is evaluated by a service that also enforces Access Rules (see IDTA-01004), the query's candidate set MUST be filtered through the applicable access rules before being returned. Access rules that evaluate to `not applicable` for a candidate (e.g. because a referenced FieldIdentifier does not exist in the current profile) MUST NOT cause the query to fail; such rules simply do not contribute an ALLOW for the candidate.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sebbader-sap sebbader-sap Awaiting requested review from sebbader-sap sebbader-sap is a code owner

@BirgitBoss BirgitBoss Awaiting requested review from BirgitBoss BirgitBoss is a code owner

@alexgordtop alexgordtop Awaiting requested review from alexgordtop alexgordtop is a code owner

@mjacoby mjacoby Awaiting requested review from mjacoby mjacoby is a code owner

@danielporta danielporta Awaiting requested review from danielporta danielporta is a code owner

@g1zzm0 g1zzm0 Awaiting requested review from g1zzm0 g1zzm0 is a code owner

@waltersve waltersve Awaiting requested review from waltersve waltersve is a code owner

@zrgt zrgt Awaiting requested review from zrgt zrgt is a code owner

1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aorzelskiGH @github-advanced-security