The following tutorial will set up a server with SurrealDB and Rocket that has a few endpoints:
person table in a database,First, open up a terminal window and use the following command to start an empty database.
surreal start --user root --pass root
You can also use the Start serving button on Surrealist to do the same if you have it installed locally.
The database initiated by the surreal start command stores data in memory by default, which then disappears every time the database is shut down. As such, you can simply use Ctrl+C every time you want to start the database anew with no existing definitions or data. To save data to disk which will persist after shutting down, add a positional argument for one of the storage backends such as rocksdb://mydatabase or surrealkv://mydatabase.
With the database running, we will now connect to the database “test” located in the namespace “test”. You can connect to it by creating a connection inside Surrealist, or by using the following command to start an interactive shell.
surreal sql --user root --pass root --ns test --db test --pretty
Next, create a new Rust project with the command cargo new your_project_name, go into the newly created directory, and use cargo add to add each of the following dependencies:
surrealdb (of course),rocket,serde, for serializing and deserializing Rust structs passed to and from the database and Rocket,thiserror, to make it easy to convert between SurrealDB’s error type, other errors and Rocket’s response types,rand and faker_rand, to create random user names that can be used to sign in to the database as a record user.The serde crate will need the derive flag, and rocket will need the json flag enabled. Your cargo.toml dependencies should look like this:
The first thing to do is a bit of groundwork to convert database errors into an error type of our own. Implementing From<surrealdb::Error> for this type will let it be used with the ? operator when handling results. Finally, it will also need to implement Rocket’s Responder trait so that it can be used as output for the server. All of this can be done manually if you prefer, but the thiserror crate saves a certain amount of typing.
Next, we will put the database client together. Rocket provides a .manage() method when starting a router that would give us access to the database inside its functions. However, for simplicity we can instead wrap the client inside a LazyLock to make it into a global static.
use std::sync::LazyLock; static DB: LazyLock<Surreal<Client>> = LazyLock::new(Surreal::init);
Inside a method called init() to initiate the database, we will do the following:
localhost:8000surreal start command.query() method to pass in a few definitions for the database.
The first item that stands out with the definitions above is that they all contain a IF NOT EXISTS clause. As the DEFINE statements will be executed every time the app starts, it is possible that they might be executed on a database that already has the definitions in place. Since version 2.0, SurrealDB simply returns an error if a definition already exists, requiring the OVERWRITE clause if a definition needs to be redone. Without IF NOT EXISTS, the message “The table ‘person’ already exists” will be returned.
Note that this would not affect our app, as this would still be a successful usage of the .query() method. Instead, its output would contain a number of error results that could be handled individually:
Response { client: Surreal { router: OnceLock(Router { sender: Sender { .. }, last_id: 4, features: {LiveQueries} }), engine: PhantomData<surrealdb::api::engine::any::Any> }, results: {0: (Stats { execution_time: Some(252.625µs) }, Err(Api(Query("The table 'person' already exists")))), 1: (Stats { execution_time: Some(79.167µs) }, Err(Api(Query("The field 'name' already exists")))), 2: (Stats { execution_time: Some(69.5µs) }, Err(Api(Query("The field 'created_by' already exists")))), 3: (Stats { execution_time: Some(73.625µs) }, Err(Api(Query("The index 'unique_name' already exists")))), 4: (Stats { execution_time: Some(73.583µs) }, Err(Api(Query("The access method 'account' already exists in the database 'test'"))))}, live_queries: {} }
However, adding IF NOT EXISTS is a nice way to change the results from errors into successful results, and to avoid the rare case in which they end up applied to some other version 1.x database that would rewrite its definitions if IF NOT EXISTS is present. So while not necessary in our case, it is a good practice to follow and makes for cleaner output.
Now let’s go over each of the definitions to see what they do.
The first three statements define a person table. This table is schemaless, but has one required field name, which must be present and must be a string. This table has defined permissions by which a record user is able to use CREATE and SELECT on the person table, but can only UPDATE and DELETE records that it has created. The root user, however, is not subject to permissions rules.
The way these permissions are set is by using the $auth parameter. This parameter has a value whenever a record user is set as the authorized used for the database. The WHERE $auth clause simply means “where a value exists for the parameter $auth” (WHERE $auth IS NOT NONE would also work in this case). But for UPDATE and DELETE queries, it is not enough for $auth to just be present, the created_by field of a person record must also match the ID of the currently authenticated user.
This created_by field is automatically generated from its definition in the DEFINE FIELD statement. It is given the value of $auth, and is READONLY and thus cannot be changed. When logged in as a system user (like a root user), its value will be NONE. But when logged in as a record user, its value will be something like user:qx2apv5oc8mh03wtah0q.
So where does an ID like user:qx2apv5oc8mh03wtah0q come from? This is thanks to the following definitions that set the signup and signin behaviour of the record users. A typical DEFINE ACCESS statement will create some sort of record on signup (in this case, a user) record, and will compare it against a password during signin. Note that the access has a name that we gave it (account), so that it can be referenced elsewhere.
In addition, a DEFINE INDEX statement with a UNIQUE clause is used to ensure that no two users can have the same name.
For an actual user in production, you would probably want to require an email and some other fields. Functions like string::is::email can be used to ensure that the value passed in is valid.
DEFINE FIELD email ON TABLE user TYPE string ASSERT $value.is_email();
However, for this simple example, each user will simply have a unique name and a password. The password will be stored in hashed and salted form on the database, making it unique and unreadable every time it is generated. The only way to check if it is correct is by using a compare function of the output with an attempted password. Here is a short SurrealQL sample to show how the process works.
The last step is where the majority of the work takes place: setting up the paths for Rocket to handle, and writing the functions that handle the endpoints and (usually) access the database to handle the request. To start, we’ll create a function for the "/" root path to display a helpful message to anybody giving the server a try via the browser or an app like curl or Postman. These paths and curl examples can all be seen on the page for SurrealDB’s HTTP endpoints.
Each of these functions will be put into a mod called routes, leading to the following code inside Rocket’s rocket() function (its equivalent of main()).
Many functions require some JSON data from the user, which will be deserialized into a PersonData struct. The database can then use it in methods like .create().content(). The output returned will now have a name and an id, which the Person struct holds.
Each of these functions are pretty straightforward: obtain some user input, initiate a query, feed the user input into it, and return it as JSON.
The session() function is also quite small, and is just a convenience for a user curious about the current session data. As the .query() method can take more than one statement, it returns each of these responses in order with an index for each (starting at 0). The .take() method can then be used to access the response at that index, and turn it into anything that can be deserialized back into a Rust type. In our case, a String is all we need here as the output will only be used to show the user the current session info.
Two most interesting function is the one used to create a new record user. To make it really easy to try out the experience of logging in as a record user, this function will use create a random name and password each time it is accessed. It will then pass in a Record struct which is used to sign up a new record user. Note the following:
"account", which is the name we chose in the DEFINE ACCESS statement above.params field takes anything that implements Serialize, in this case a struct we put together called Params..signup() method returns a redacted Jwt by default. To make the token visible, you can use the .into_insecure_token() method as we have done here. As a small guide to getting started, this example is not concerned about security. However, if you are looking to create something more production-worthy, do take a look at the security section of the documentation and the security best practices page.The function will then end with an output showing the username, password, token, and instructions for how to log in using the CLI. This can be copied and pasted to begin making queries immediately.
A record user with an expired token can use the /signin endpoint to get a new token. Since this requires passing in a username and password, we’ll just have this function return a String that contains a curl example to get a new token.
The final code looks like this:
As the database client is logged in as a root user, the /person/ routes can be used to perform any operation on the person records of the database.
You can also log in to the CLI or Surrealist as a root user and separately as a record user using the output of the /new_user endpoint to compare the experience between the two.
For example, the output when creating a person record as a root user will look like this:
But as a record user, it will include a created_by field, set by the value found at the $auth paremeter.
As a result, a DELETE person RETURN BEFORE statement (which deletes all person records and returns the records deleted) used by a record user will only delete the single record that it created earlier. The following SELECT statement shows that the person record created by the root user cannot be deleted or modified by the record user.
Also note that the root user is able to see the user tables and their information. A record user cannot, as a record user by default has no permissions except what it is given by the PERMISSIONS clause. If you create a record user using the /new_user endpoint, the root user will be able to view it. However, the password has been obscured by the crypto::argon2::generate function so that nobody else can use it.
Now that you have a running Rocket server with SurrealDB as the backend, here are some other ideas that you might want to explore.
AUTHENTICATE clause inside the DEFINE ACCESS statement. This will result in increased performance thanks to only being executed once, compared to permissions checks which are executed for each query.