Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add database_privileges.replace_for_roles RPC function. #3781

Merged
merged 15 commits into from
Aug 26, 2024
Merged

Add database_privileges.replace_for_roles RPC function. #3781

merged 15 commits into from
Aug 26, 2024

Conversation

mathemancer
Copy link
Contributor

Fixes #3773

Adds the database_privileges.replace_for_roles RPC function.

Technical details

The function is documented, and its use should be self-explanatory.

Screenshots

Checklist

  • My pull request has a descriptive title (not a vague title like Update index.md).
  • My pull request targets the develop branch of the repository
  • My commit messages follow best practices.
  • My code follows the established code style of the repository.
  • I added tests for the changes I made (if applicable).
  • I added or updated documentation (if applicable).
  • I tried running the project locally and verified that there are no
    visible errors.

Developer Certificate of Origin

Developer Certificate of Origin 
Developer Certificate of Origin
Version 1.1

Copyright (C) 2004, 2006 The Linux Foundation and its contributors.
1 Letterman Drive
Suite D4700
San Francisco, CA, 94129

Everyone is permitted to copy and distribute verbatim copies of this
license document, but changing it is not allowed.


Developer's Certificate of Origin 1.1

By making a contribution to this project, I certify that:

(a) The contribution was created in whole or in part by me and I
    have the right to submit it under the open source license
    indicated in the file; or

(b) The contribution is based upon previous work that, to the best
    of my knowledge, is covered under an appropriate open source
    license and I have the right under that license to submit that
    work with modifications, whether created in whole or in part
    by me, under the same open source license (unless I am
    permitted to submit under a different license), as indicated
    in the file; or

(c) The contribution was provided directly to me by some other
    person who certified (a), (b) or (c) and I have not modified
    it.

(d) I understand and agree that this project and the contribution
    are public and that a record of the contribution (including all
    personal information I submit with it, including my sign-off) is
    maintained indefinitely and may be redistributed consistent with
    this project or the open source license(s) involved.

@mathemancer mathemancer added the pr-status: review A PR awaiting review label Aug 26, 2024
@mathemancer mathemancer added this to the Beta milestone Aug 26, 2024
Anish9901
Anish9901 approved these changes Aug 26, 2024
View reviewed changes
Copy link
Member

@Anish9901 Anish9901 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great, I've added a minor suggestion.

db/sql/00_msar.sql
Comment on lines +1145 to +1148
msar.build_database_privilege_replace_expr(role_oid, direct),
E';\n'
) || ';'
FROM jsonb_to_recordset(priv_spec) AS x(role_oid regrole, direct jsonb);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
msar.build_database_privilege_replace_expr(role_oid, direct),
E';\n'
) || ';'
FROM jsonb_to_recordset(priv_spec) AS x(role_oid regrole, direct jsonb);
msar.build_database_privilege_replace_expr(role_oid, privileges_),
E';\n'
) || ';'
FROM jsonb_to_recordset(priv_spec) AS x(role_oid regrole, privileges_ jsonb);

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this will work, will it? I'd need to check, but I'm pretty sure jsonb_to_recordset needs accurate key names in the AS clause. So, we need to leave it as direct to match with what we expect in the spec when called.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I checked. It won't work that way without either making some adapter in Python to convert the JSON between formats (do not want) or changing the API spec (also do not want).

@mathemancer mathemancer added this pull request to the merge queue Aug 26, 2024
Merged via the queue into develop with commit 168f9e9 Aug 26, 2024
39 checks passed
@mathemancer mathemancer deleted the replace_db_priv_rpc branch August 26, 2024 23:51
@kgodey kgodey modified the milestones: Beta, Pre-beta test build #1 Sep 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Anish9901 Anish9901 Anish9901 approved these changes

@pavish pavish Awaiting requested review from pavish

Assignees

@pavish pavish

@Anish9901 Anish9901

Labels
pr-status: review A PR awaiting review
Projects
None yet
Milestone
v0.2.0-testing.1
Development

Successfully merging this pull request may close these issues.

database_privileges.set_for_roles
4 participants
@mathemancer @Anish9901 @kgodey @pavish