Catalog_Namespace::anonymous_namespace{SysCatalog.cpp} Namespace Reference

Functions
void	deleteObjectPrivileges (std::unique_ptr< SqliteConnector > &sqliteConnector, std::string roleName, bool userRole, DBObject &object)
void	insertOrUpdateObjectPrivileges (std::unique_ptr< SqliteConnector > &sqliteConnector, std::string roleName, bool userRole, const DBObject &object)
auto	get_users (SysCatalog &syscat, std::unique_ptr< SqliteConnector > &sqliteConnector, const int32_t dbId=-1)

Variables
auto	append_with_commas

Function Documentation

void Catalog_Namespace::anonymous_namespace{SysCatalog.cpp}::deleteObjectPrivileges	(	std::unique_ptr< SqliteConnector > &	sqliteConnector,
		std::string	roleName,
		bool	userRole,
		DBObject &	object
	)

Definition at line 495 of file SysCatalog.cpp.

References DBObjectKey::dbId, DBObjectKey::objectId, DBObjectKey::permissionType, and to_string().

Referenced by Catalog_Namespace::SysCatalog::revokeDBObjectPrivileges_unsafe().

                                              {
  DBObjectKey key = object.getObjectKey();

  sqliteConnector->query_with_text_params(
      "DELETE FROM mapd_object_permissions WHERE roleName = ?1 and roleType = ?2 and "
      "objectPermissionsType = ?3 and "
      "dbId = "
      "?4 "
      "and objectId = ?5",
      std::vector<std::string>{roleName,
                               std::to_string(userRole),
                               std::to_string(key.permissionType),
                               std::to_string(key.dbId),
                               std::to_string(key.objectId)});
}

Here is the call graph for this function:

Here is the caller graph for this function:

auto Catalog_Namespace::anonymous_namespace{SysCatalog.cpp}::get_users	(	SysCatalog &	syscat,
		std::unique_ptr< SqliteConnector > &	sqliteConnector,
		const int32_t	dbId = -1
	)

Definition at line 1746 of file SysCatalog.cpp.

References Catalog_Namespace::SysCatalog::getUserGrantee(), Grantee::hasAnyPrivilegesOnDb(), Catalog_Namespace::SysCatalog::name(), Catalog_Namespace::parseUserMetadataFromSQLite(), Catalog_Namespace::SysCatalog::temporary_users_by_id_, and Catalog_Namespace::UserMetadata::userName.

Referenced by Catalog_Namespace::SysCatalog::getAllUserMetadata().

                                        {
  // Normal users.
  sqliteConnector->query(
      "SELECT userid, name, passwd_hash, issuper, default_db, can_login FROM mapd_users");
  int numRows = sqliteConnector->getNumRows();
  list<UserMetadata> user_list;
  const bool return_all_users = dbId == -1;
  auto has_any_privilege = [&return_all_users, &dbId, &syscat](const std::string& name) {
    if (!return_all_users) {
      const auto grantee = syscat.getUserGrantee(name);
      return grantee ? grantee->hasAnyPrivilegesOnDb(dbId, false) : false;
    }
    return true;
  };
  for (int r = 0; r < numRows; ++r) {
    Catalog_Namespace::UserMetadata user;
    parseUserMetadataFromSQLite(sqliteConnector, user, r);
    if (has_any_privilege(user.userName)) {
      user_list.emplace_back(std::move(user));
    }
  }

  // Temporary users.
  for (const auto& [id, userptr] : syscat.temporary_users_by_id_) {
    if (has_any_privilege(userptr->userName)) {
      user_list.emplace_back(*userptr);
    }
  }

  return user_list;
}

Here is the call graph for this function:

Here is the caller graph for this function:

void Catalog_Namespace::anonymous_namespace{SysCatalog.cpp}::insertOrUpdateObjectPrivileges	(	std::unique_ptr< SqliteConnector > &	sqliteConnector,
		std::string	roleName,
		bool	userRole,
		const DBObject &	object
	)

Definition at line 514 of file SysCatalog.cpp.

References CHECK, DBObjectKey::dbId, DBObjectKey::objectId, DBObjectKey::permissionType, and to_string().

Referenced by Catalog_Namespace::SysCatalog::createRole_unsafe(), Catalog_Namespace::SysCatalog::grantDBObjectPrivileges_unsafe(), Catalog_Namespace::SysCatalog::migrateDBAccessPrivileges(), Catalog_Namespace::SysCatalog::migratePrivileges(), Catalog_Namespace::SysCatalog::populateRoleDbObjects(), and Catalog_Namespace::SysCatalog::revokeDBObjectPrivileges_unsafe().

                                                            {
  CHECK(object.valid());
  DBObjectKey key = object.getObjectKey();

  sqliteConnector->query_with_text_params(
      "INSERT OR REPLACE INTO mapd_object_permissions("
      "roleName, "
      "roleType, "
      "objectPermissionsType, "
      "dbId, "
      "objectId, "
      "objectPermissions, "
      "objectOwnerId,"
      "objectName) "
      "VALUES (?1, ?2, ?3, "
      "?4, ?5, ?6, ?7, ?8)",
      std::vector<std::string>{
          roleName,                                           // roleName
          userRole ? "1" : "0",                               // roleType
          std::to_string(key.permissionType),                 // permissionType
          std::to_string(key.dbId),                           // dbId
          std::to_string(key.objectId),                       // objectId
          std::to_string(object.getPrivileges().privileges),  // objectPrivileges
          std::to_string(object.getOwner()),                  // objectOwnerId
          object.getName()                                    // name
      });
}

Here is the call graph for this function:

Here is the caller graph for this function:

Variable Documentation

auto Catalog_Namespace::anonymous_namespace{SysCatalog.cpp}::append_with_commas

Initial value:

= [](string& s, const string& t) {
  if (!s.empty()) {
    s += ", ";
  }
  s += t;
}

Definition at line 1159 of file SysCatalog.cpp.

Referenced by Catalog_Namespace::SysCatalog::alterUser().