hs.hsadmin.ng/src/main/resources/db/changelog/054-rbac-context.sql

--liquibase formatted sql


-- ============================================================================
--changeset rbac-context-DETERMINE:1 endDelimiter:--//
-- ----------------------------------------------------------------------------

create or replace function determineCurrentUserUuid(currentUser varchar)
    returns uuid
    stable leakproof
    language plpgsql as $$
declare
    currentUserUuid uuid;
begin
    if currentUser = '' then
        return null;
    end if;

    select uuid from RbacUser where name = currentUser into currentUserUuid;
    -- TODO: maybe this should be changed, and in this case no user name defined in context?
    -- no exception if user does not exist because users can register themselves
    return currentUserUuid;
end; $$;

create or replace function determineCurrentSubjectsUuids(currentUserUuid uuid, assumedRoles varchar)
    returns uuid[]
    stable leakproof
    language plpgsql as $$
declare
    roleName            varchar(63);
    roleNameParts       varchar(63);
    objectTableToAssume varchar(63);
    objectNameToAssume  varchar(63);
    objectUuidToAssume  uuid;
    roleTypeToAssume    RbacRoleType;
    roleIdsToAssume     uuid[];
    roleUuidToAssume    uuid;
begin
    if currentUserUuid is null then
        if  length(coalesce(assumedRoles, '')) > 0 then
            raise exception '[403] undefined has no permission to assume role %', assumedRoles;
        else
            return array[]::uuid[];
        end if;
    end if;
    if  length(coalesce(assumedRoles, '')) = 0 then
        return array [currentUserUuid];
    end if;

    foreach roleName in array string_to_array(assumedRoles, ';')
        loop
            roleNameParts = overlay(roleName placing '#' from length(roleName) + 1 - strpos(reverse(roleName), '.'));
            objectTableToAssume = split_part(roleNameParts, '#', 1);
            objectNameToAssume = split_part(roleNameParts, '#', 2);
            roleTypeToAssume = split_part(roleNameParts, '#', 3);

            objectUuidToAssume = findObjectUuidByIdName(objectTableToAssume, objectNameToAssume);

            select uuid as roleuuidToAssume
                from RbacRole r
                where r.objectUuid = objectUuidToAssume
                  and r.roleType = roleTypeToAssume
                into roleUuidToAssume;
            if roleUuidToAssume is null then
                raise exception '[403] role % not accessible for user %', roleName, currentUser();
            end if;
            if not isGranted(currentUserUuid, roleUuidToAssume) then
                raise exception '[403] user % has no permission to assume role %', currentUser(), roleName;
            end if;
            roleIdsToAssume := roleIdsToAssume || roleUuidToAssume;
        end loop;

    return roleIdsToAssume;
end; $$;

-- ============================================================================
--changeset rbac-context-CONTEXT-DEFINED:1 endDelimiter:--//
-- ----------------------------------------------------------------------------
/*
    Callback which is called after the context has been (re-) defined.
    This function will be overwritten by later changesets.
 */
create or replace procedure contextDefined(
    currentTask varchar,
    currentRequest varchar,
    currentUser varchar,
    assumedRoles varchar
)
    language plpgsql as $$
declare
    currentUserUuid uuid;
begin
    execute format('set local hsadminng.currentTask to %L', currentTask);

    execute format('set local hsadminng.currentRequest to %L', currentRequest);

    execute format('set local hsadminng.currentUser to %L', currentUser);
    select determineCurrentUserUuid(currentUser) into currentUserUuid;
    execute format('set local hsadminng.currentUserUuid to %L', coalesce(currentUserUuid::text, ''));

    execute format('set local hsadminng.assumedRoles to %L', assumedRoles);
    execute format('set local hsadminng.currentSubjectsUuids to %L',
       (select array_to_string(determinecurrentSubjectsUuids(currentUserUuid, assumedRoles), ';')));

    raise notice 'Context defined as: %, %, %, [%]', currentTask, currentRequest, currentUser, assumedRoles;
end; $$;


-- ============================================================================
--changeset rbac-context-CURRENT-USER-ID:1 endDelimiter:--//
-- ----------------------------------------------------------------------------
/*
    Returns the uuid of the current user as set via `defineContext(...)`.
 */

create or replace function currentUserUuid()
    returns uuid
    stable leakproof
    language plpgsql as $$
declare
    currentUserUuid text;
    currentUserName text;
begin
    begin
        currentUserUuid := current_setting('hsadminng.currentUserUuid');
    exception
        when others then
            currentUserUuid := null;
    end;
    if (currentUserUuid is null or currentUserUuid = '') then
        currentUserName := currentUser();
        if (length(currentUserName) > 0) then
            raise exception '[401] currentUserUuid cannot be determined, unknown user name "%"', currentUserName;
        else
            raise exception '[401] currentUserUuid cannot be determined, please call `defineContext(...)` first;"';
        end if;
    end if;
    return currentUserUuid::uuid;
end; $$;
--//

-- ============================================================================
--changeset rbac-context-CURRENT-SUBJECT-UUIDS:1 endDelimiter:--//
-- ----------------------------------------------------------------------------
/*
    Returns the uuid of the current user as set via `defineContext(...)`,
    or, if any, the uuids of all assumed roles as set via `defineContext(...)`
    or empty array, if context is not defined.
 */
create or replace function currentSubjectsUuids()
    returns uuid[]
    stable leakproof
    language plpgsql as $$
declare
    currentSubjectsUuids text;
    currentUserName text;
begin
    begin
        currentSubjectsUuids := current_setting('hsadminng.currentSubjectsUuids');
    exception
        when others then
            currentSubjectsUuids := null;
    end;
    if (currentSubjectsUuids is null or length(currentSubjectsUuids) = 0 ) then
        currentUserName := currentUser();
        if (length(currentUserName) > 0) then
            raise exception '[401] currentSubjectsUuids (%) cannot be determined, unknown user name "%"', currentSubjectsUuids, currentUserName;
        else
            raise exception '[401] currentSubjectsUuids cannot be determined, please call `defineContext(...)` first;"';
        end if;
    end if;
    return string_to_array(currentSubjectsUuids, ';');
end; $$;
--//
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`--liquibase formatted sql`

introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`-- ============================================================================`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`--changeset rbac-context-DETERMINE:1 endDelimiter:--//`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`-- ----------------------------------------------------------------------------`

introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`create or replace function determineCurrentUserUuid(currentUser varchar)`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`returns uuid`
			`stable leakproof`
			`language plpgsql as $$`
			`declare`
rename currentUserId->currentUserUuid + currentSubjectIds->currentSubjectsUuids 2022-08-30 09:18:52 +02:00			`currentUserUuid uuid;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`begin`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`if currentUser = '' then`
			`return null;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`end if;`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00
			`select uuid from RbacUser where name = currentUser into currentUserUuid;`
			`-- TODO: maybe this should be changed, and in this case no user name defined in context?`
			`-- no exception if user does not exist because users can register themselves`
rename currentUserId->currentUserUuid + currentSubjectIds->currentSubjectsUuids 2022-08-30 09:18:52 +02:00			`return currentUserUuid;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`end; $$;`

introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`create or replace function determineCurrentSubjectsUuids(currentUserUuid uuid, assumedRoles varchar)`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`returns uuid[]`
			`stable leakproof`
			`language plpgsql as $$`
			`declare`
			`roleName varchar(63);`
improve test code coverage and generic array return from native queries 2022-08-30 13:08:29 +02:00			`roleNameParts varchar(63);`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`objectTableToAssume varchar(63);`
			`objectNameToAssume varchar(63);`
			`objectUuidToAssume uuid;`
			`roleTypeToAssume RbacRoleType;`
			`roleIdsToAssume uuid[];`
			`roleUuidToAssume uuid;`
			`begin`
rename currentUserId->currentUserUuid + currentSubjectIds->currentSubjectsUuids 2022-08-30 09:18:52 +02:00			`if currentUserUuid is null then`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`if length(coalesce(assumedRoles, '')) > 0 then`
			`raise exception '[403] undefined has no permission to assume role %', assumedRoles;`
			`else`
			`return array[]::uuid[];`
			`end if;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`end if;`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`if length(coalesce(assumedRoles, '')) = 0 then`
rename currentUserId->currentUserUuid + currentSubjectIds->currentSubjectsUuids 2022-08-30 09:18:52 +02:00			`return array [currentUserUuid];`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`end if;`

introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`foreach roleName in array string_to_array(assumedRoles, ';')`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`loop`
improve test code coverage and generic array return from native queries 2022-08-30 13:08:29 +02:00			`roleNameParts = overlay(roleName placing '#' from length(roleName) + 1 - strpos(reverse(roleName), '.'));`
			`objectTableToAssume = split_part(roleNameParts, '#', 1);`
			`objectNameToAssume = split_part(roleNameParts, '#', 2);`
			`roleTypeToAssume = split_part(roleNameParts, '#', 3);`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00
			`objectUuidToAssume = findObjectUuidByIdName(objectTableToAssume, objectNameToAssume);`

			`select uuid as roleuuidToAssume`
			`from RbacRole r`
			`where r.objectUuid = objectUuidToAssume`
			`and r.roleType = roleTypeToAssume`
			`into roleUuidToAssume;`
improve test code coverage and generic array return from native queries 2022-08-30 13:08:29 +02:00			`if roleUuidToAssume is null then`
			`raise exception '[403] role % not accessible for user %', roleName, currentUser();`
			`end if;`
			`if not isGranted(currentUserUuid, roleUuidToAssume) then`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`raise exception '[403] user % has no permission to assume role %', currentUser(), roleName;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`end if;`
			`roleIdsToAssume := roleIdsToAssume \|\| roleUuidToAssume;`
			`end loop;`

			`return roleIdsToAssume;`
			`end; $$;`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00
			`-- ============================================================================`
			`--changeset rbac-context-CONTEXT-DEFINED:1 endDelimiter:--//`
			`-- ----------------------------------------------------------------------------`
			`/*`
			`Callback which is called after the context has been (re-) defined.`
			`This function will be overwritten by later changesets.`
			`*/`
			`create or replace procedure contextDefined(`
			`currentTask varchar,`
			`currentRequest varchar,`
			`currentUser varchar,`
			`assumedRoles varchar`
			`)`
			`language plpgsql as $$`
			`declare`
			`currentUserUuid uuid;`
			`begin`
			`execute format('set local hsadminng.currentTask to %L', currentTask);`

			`execute format('set local hsadminng.currentRequest to %L', currentRequest);`

			`execute format('set local hsadminng.currentUser to %L', currentUser);`
			`select determineCurrentUserUuid(currentUser) into currentUserUuid;`
			`execute format('set local hsadminng.currentUserUuid to %L', coalesce(currentUserUuid::text, ''));`

			`execute format('set local hsadminng.assumedRoles to %L', assumedRoles);`
			`execute format('set local hsadminng.currentSubjectsUuids to %L',`
			`(select array_to_string(determinecurrentSubjectsUuids(currentUserUuid, assumedRoles), ';')));`

			`raise notice 'Context defined as: %, %, %, [%]', currentTask, currentRequest, currentUser, assumedRoles;`
			`end; $$;`


			`-- ============================================================================`
			`--changeset rbac-context-CURRENT-USER-ID:1 endDelimiter:--//`
			`-- ----------------------------------------------------------------------------`
			`/*`
			Returns the uuid of the current user as set via `defineContext(...)`.
			`*/`

			`create or replace function currentUserUuid()`
			`returns uuid`
			`stable leakproof`
			`language plpgsql as $$`
			`declare`
			`currentUserUuid text;`
			`currentUserName text;`
			`begin`
			`begin`
			`currentUserUuid := current_setting('hsadminng.currentUserUuid');`
			`exception`
			`when others then`
			`currentUserUuid := null;`
			`end;`
			`if (currentUserUuid is null or currentUserUuid = '') then`
			`currentUserName := currentUser();`
			`if (length(currentUserName) > 0) then`
			`raise exception '[401] currentUserUuid cannot be determined, unknown user name "%"', currentUserName;`
			`else`
			raise exception '[401] currentUserUuid cannot be determined, please call `defineContext(...)` first;"';
			`end if;`
			`end if;`
			`return currentUserUuid::uuid;`
			`end; $$;`
			`--//`

			`-- ============================================================================`
			`--changeset rbac-context-CURRENT-SUBJECT-UUIDS:1 endDelimiter:--//`
			`-- ----------------------------------------------------------------------------`
			`/*`
			Returns the uuid of the current user as set via `defineContext(...)`,
			or, if any, the uuids of all assumed roles as set via `defineContext(...)`
			`or empty array, if context is not defined.`
			`*/`
			`create or replace function currentSubjectsUuids()`
			`returns uuid[]`
			`stable leakproof`
			`language plpgsql as $$`
			`declare`
			`currentSubjectsUuids text;`
			`currentUserName text;`
			`begin`
			`begin`
			`currentSubjectsUuids := current_setting('hsadminng.currentSubjectsUuids');`
			`exception`
			`when others then`
			`currentSubjectsUuids := null;`
			`end;`
			`if (currentSubjectsUuids is null or length(currentSubjectsUuids) = 0 ) then`
			`currentUserName := currentUser();`
			`if (length(currentUserName) > 0) then`
improve test code coverage and generic array return from native queries 2022-08-30 13:08:29 +02:00			`raise exception '[401] currentSubjectsUuids (%) cannot be determined, unknown user name "%"', currentSubjectsUuids, currentUserName;`
introduce defineContext replacing explicit "set local current..." 2022-08-30 09:35:59 +02:00			`else`
			raise exception '[401] currentSubjectsUuids cannot be determined, please call `defineContext(...)` first;"';
			`end if;`
			`end if;`
			`return string_to_array(currentSubjectsUuids, ';');`
			`end; $$;`
re-numbering rbac db-migration scripts while extracting context (currentUser etc.) 2022-08-23 14:36:22 +02:00			`--//`