Skip to content

feat(driver-turso): Multi-Tenant Router + Schema Diff Engine + Driver Plugin #407

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
hotlong merged 3 commits into from
Feb 24, 2026
Merged

feat(driver-turso): Multi-Tenant Router + Schema Diff Engine + Driver Plugin #407

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
37fa90b
Initial plan
Copilot Feb 24, 2026
139540b
feat(driver-turso): add multi-tenant router, platform API, schema dif…
Copilot Feb 24, 2026
cf12004
docs: update ROADMAP.md with driver-turso Phase B completion
Copilot Feb 24, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions ROADMAP.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -87,6 +87,7 @@ ObjectQL is the **Standard Protocol for AI Software Generation** — a universal
- ✅ 31 of 31 packages have test suites (plugin-optimizations: 103 tests, plugin-query: 99 tests — previously 0)
- ✅ 67 documentation files (.mdx) across 12 sections
- ✅ `@objectql/driver-turso` — Turso/libSQL driver (Phase A: Core Driver) with 125 tests, 3 connection modes (remote, local, embedded replica)
- ✅ `@objectql/driver-turso` — Phase B: Multi-Tenant Router, Schema Diff Engine, Platform API Client, Driver Plugin (52 new tests, 177 total)

---

Expand Down
4 changes: 4 additions & 0 deletions packages/drivers/turso/src/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,10 @@ export { TursoDriver, type TursoDriverConfig } from './turso-driver';
export { compileFilter, compileSelect, parseSort, quoteIdentifier, type CompiledQuery, type SelectQueryOptions } from './query-compiler';
export { fieldTypeToSqlite, isJsonFieldType, isBooleanFieldType } from './type-mapper';
export { mapRow, mapRows, serializeValue, serializeRecord } from './result-mapper';
export { createMultiTenantRouter, type MultiTenantConfig, type MultiTenantRouter } from './multi-tenant-router';
export { TursoPlatformAPI, type TursoPlatformConfig, type CreateDatabaseResult, type CreateTokenResult, type DatabaseInfo } from './turso-platform-api';
export { diffSchema, generateMigration, type SchemaDiff, type SchemaDiffAction, type SchemaMigration, type ColumnDef, type ObjectSchema, type FieldDef } from './schema-diff';
export { TursoDriverPlugin, type TursoDriverPluginConfig } from './turso-driver-plugin';

import { TursoDriver, type TursoDriverConfig } from './turso-driver';

Expand Down
274 changes: 274 additions & 0 deletions packages/drivers/turso/src/multi-tenant-router.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,274 @@
/**
* ObjectQL
* Copyright (c) 2026-present ObjectStack Inc.
*
* This source code is licensed under the MIT license found in the
* LICENSE file in the root directory of this source tree.
*/

import { ObjectQLError } from '@objectql/types';
import { TursoDriver, type TursoDriverConfig } from './turso-driver';

// ============================================================================
// Multi-Tenant Router Configuration
// ============================================================================

/**
* Configuration for the multi-tenant router.
*
* Uses a URL template with `{tenant}` placeholder that is replaced
* with the tenantId at runtime. Each tenant gets its own TursoDriver
* instance backed by a process-level cache with configurable TTL.
*
* @example
* ```typescript
* const router = createMultiTenantRouter({
* urlTemplate: 'libsql://{tenant}-myorg.turso.io',
* groupAuthToken: process.env.TURSO_GROUP_TOKEN,
* clientCacheTTL: 300_000, // 5 minutes
* });
*
* const driver = await router.getDriverForTenant('acme');
* // → connects to libsql://acme-myorg.turso.io
* ```
*/
export interface MultiTenantConfig {
/**
* URL template with `{tenant}` placeholder.
* Example: `'libsql://{tenant}-org.turso.io'`
*/
urlTemplate: string;

/**
* Shared auth token for the Turso group (used for all tenant databases).
* Individual tenant tokens can be provided via `driverConfigOverrides`.
*/
groupAuthToken?: string;

/**
* Cache TTL in milliseconds. Cached drivers are evicted after this period.
* Default: 300_000 (5 minutes).
*/
clientCacheTTL?: number;

/**
* Optional callback invoked when a new tenant driver is created.
* Useful for provisioning tenant databases via the Turso Platform API.
*/
onTenantCreate?: (tenantId: string) => Promise<void>;

/**
* Optional callback invoked before a tenant driver is removed from cache.
*/
onTenantDelete?: (tenantId: string) => Promise<void>;

/**
* Additional TursoDriverConfig fields merged into every tenant driver config.
* `url` and `authToken` are overridden by the template and groupAuthToken.
*/
driverConfigOverrides?: Omit<Partial<TursoDriverConfig>, 'url'>;
}

// ============================================================================
// Cache Entry
// ============================================================================

interface CacheEntry {
driver: TursoDriver;
expiresAt: number;
}

// ============================================================================
// Multi-Tenant Router Result
// ============================================================================

/**
* Return type of `createMultiTenantRouter`.
*/
export interface MultiTenantRouter {
/**
* Get (or create) a connected TursoDriver for the given tenant.
* Drivers are cached and automatically reconnected on TTL expiry.
*/
getDriverForTenant(tenantId: string): Promise<TursoDriver>;

/**
* Immediately invalidate and disconnect a cached tenant driver.
*/
invalidateCache(tenantId: string): void;

/**
* Disconnect and destroy all cached tenant drivers. Call on process shutdown.
*/
destroyAll(): Promise<void>;

/**
* Returns the number of currently cached tenant drivers.
*/
getCacheSize(): number;
}

// ============================================================================
// Default Constants
// ============================================================================

const DEFAULT_CACHE_TTL = 300_000; // 5 minutes
const TENANT_ID_PATTERN = /^[a-zA-Z0-9][a-zA-Z0-9_-]{0,62}[a-zA-Z0-9]$/;

// ============================================================================
// Factory
// ============================================================================

/**
* Creates a multi-tenant router that manages per-tenant TursoDriver instances.
*
* - `urlTemplate` must contain `{tenant}` which is replaced with the tenantId.
* - Drivers are lazily created and cached in a process-level Map.
* - Expired entries are evicted on next access (lazy expiration).
* - Serverless-safe: no global intervals, no leaked state.
*
* @example
* ```typescript
* const router = createMultiTenantRouter({
* urlTemplate: 'libsql://{tenant}-myorg.turso.io',
* groupAuthToken: process.env.TURSO_GROUP_TOKEN,
* });
*
* // In a request handler:
* const driver = await router.getDriverForTenant(req.tenantId);
* const users = await driver.find('users', {});
* ```
*/
export function createMultiTenantRouter(config: MultiTenantConfig): MultiTenantRouter {
if (!config.urlTemplate) {
throw new ObjectQLError({
code: 'CONFIG_ERROR',
message: 'MultiTenantConfig requires a "urlTemplate".'
});
}
if (!config.urlTemplate.includes('{tenant}')) {
throw new ObjectQLError({
code: 'CONFIG_ERROR',
message: 'urlTemplate must contain a "{tenant}" placeholder.'
});
}

const ttl = config.clientCacheTTL ?? DEFAULT_CACHE_TTL;
const cache = new Map<string, CacheEntry>();

function validateTenantId(tenantId: string): void {
if (!tenantId || typeof tenantId !== 'string') {
throw new ObjectQLError({
code: 'INVALID_REQUEST',
message: 'tenantId must be a non-empty string.'
});
}
if (!TENANT_ID_PATTERN.test(tenantId)) {
throw new ObjectQLError({
code: 'INVALID_REQUEST',
message: `Invalid tenantId "${tenantId}". Must be 2-64 alphanumeric characters, hyphens, or underscores.`
});
}
}

function buildUrl(tenantId: string): string {
return config.urlTemplate.replace(/\{tenant\}/g, tenantId);
}

async function evictEntry(tenantId: string, entry: CacheEntry): Promise<void> {
cache.delete(tenantId);
try {
await entry.driver.disconnect();
} catch {
// Disconnect failure is non-fatal during eviction
}
if (config.onTenantDelete) {
try {
await config.onTenantDelete(tenantId);
} catch {
// Callback failure is non-fatal
}
}
}

async function getDriverForTenant(tenantId: string): Promise<TursoDriver> {
validateTenantId(tenantId);

const existing = cache.get(tenantId);
if (existing) {
if (Date.now() < existing.expiresAt) {
return existing.driver;
}
// Expired — evict and recreate
await evictEntry(tenantId, existing);
}

// Create new driver
const url = buildUrl(tenantId);
const driverConfig: TursoDriverConfig = {
...config.driverConfigOverrides,
url,
authToken: config.groupAuthToken ?? config.driverConfigOverrides?.authToken,
};

const driver = new TursoDriver(driverConfig);

if (config.onTenantCreate) {
await config.onTenantCreate(tenantId);
}

await driver.connect();

cache.set(tenantId, {
driver,
expiresAt: Date.now() + ttl,
});

return driver;
}
Comment on lines +194 to +228
Copy link

Copilot AI Feb 24, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Potential race condition in concurrent driver creation. If multiple requests call getDriverForTenant for the same tenant simultaneously before the first request completes, each will see a cache miss and create separate driver instances for the same tenant.

This can lead to:

  1. Multiple active connections to the same tenant database
  2. Wasted resources (multiple TursoDriver instances)
  3. Cache thrashing if requests arrive during the connection phase

Consider implementing a promise-based locking mechanism or using a pattern like "promise deduplication" where concurrent requests for the same tenant wait for the first creation to complete. For example, maintain a Map of in-flight creation promises and have subsequent requests await the same promise.

Example pattern:

const creationPromises = new Map<string, Promise<TursoDriver>>();

// In getDriverForTenant:
let creationPromise = creationPromises.get(tenantId);
if (creationPromise) {
  return creationPromise;
}

creationPromise = createNewDriver(tenantId);
creationPromises.set(tenantId, creationPromise);
try {
  const driver = await creationPromise;
  return driver;
} finally {
  creationPromises.delete(tenantId);
}

Copilot uses AI. Check for mistakes.

function invalidateCache(tenantId: string): void {
const entry = cache.get(tenantId);
if (entry) {
cache.delete(tenantId);
// Fire-and-forget disconnect
entry.driver.disconnect().catch(() => {});
if (config.onTenantDelete) {
config.onTenantDelete(tenantId).catch(() => {});
}
}
}

async function destroyAll(): Promise<void> {
const entries = Array.from(cache.entries());
cache.clear();

await Promise.allSettled(
entries.map(async ([tenantId, entry]) => {
try {
await entry.driver.disconnect();
} catch {
// Non-fatal
}
if (config.onTenantDelete) {
try {
await config.onTenantDelete(tenantId);
} catch {
// Non-fatal
}
}
})
);
}

function getCacheSize(): number {
return cache.size;
}

return {
getDriverForTenant,
invalidateCache,
destroyAll,
getCacheSize,
};
}
Loading