2020-06-29 15:36:01 +00:00
|
|
|
use crate::sql::comment::shouldbespace;
|
|
|
|
use crate::sql::common::commas;
|
2022-09-04 09:51:06 +00:00
|
|
|
use crate::sql::common::commasorspace;
|
2022-01-16 20:31:50 +00:00
|
|
|
use crate::sql::error::IResult;
|
2022-01-13 17:36:41 +00:00
|
|
|
use crate::sql::value::{value, Value};
|
2020-06-29 15:36:01 +00:00
|
|
|
use nom::branch::alt;
|
|
|
|
use nom::bytes::complete::tag_no_case;
|
|
|
|
use nom::combinator::map;
|
2022-01-16 20:31:50 +00:00
|
|
|
use nom::{multi::separated_list0, sequence::tuple};
|
2020-06-29 15:36:01 +00:00
|
|
|
use serde::{Deserialize, Serialize};
|
|
|
|
use std::fmt;
|
|
|
|
use std::str;
|
|
|
|
|
2021-03-29 15:43:37 +00:00
|
|
|
#[derive(Clone, Debug, Default, Eq, PartialEq, Serialize, Deserialize)]
|
2020-06-29 15:36:01 +00:00
|
|
|
pub struct Permissions {
|
|
|
|
pub select: Permission,
|
|
|
|
pub create: Permission,
|
|
|
|
pub update: Permission,
|
|
|
|
pub delete: Permission,
|
|
|
|
}
|
|
|
|
|
|
|
|
impl Permissions {
|
2022-07-26 16:04:53 +00:00
|
|
|
pub fn none() -> Self {
|
2020-06-29 15:36:01 +00:00
|
|
|
Permissions {
|
|
|
|
select: Permission::None,
|
|
|
|
create: Permission::None,
|
|
|
|
update: Permission::None,
|
|
|
|
delete: Permission::None,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-07-26 16:04:53 +00:00
|
|
|
pub fn full() -> Self {
|
2020-06-29 15:36:01 +00:00
|
|
|
Permissions {
|
|
|
|
select: Permission::Full,
|
|
|
|
create: Permission::Full,
|
|
|
|
update: Permission::Full,
|
|
|
|
delete: Permission::Full,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn is_none(&self) -> bool {
|
|
|
|
self.select == Permission::None
|
|
|
|
&& self.create == Permission::None
|
|
|
|
&& self.update == Permission::None
|
|
|
|
&& self.delete == Permission::None
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn is_full(&self) -> bool {
|
|
|
|
self.select == Permission::Full
|
|
|
|
&& self.create == Permission::Full
|
|
|
|
&& self.update == Permission::Full
|
|
|
|
&& self.delete == Permission::Full
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
impl fmt::Display for Permissions {
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
|
|
|
|
write!(f, "PERMISSIONS")?;
|
|
|
|
if self.is_none() {
|
|
|
|
return write!(f, " NONE");
|
|
|
|
}
|
|
|
|
if self.is_full() {
|
|
|
|
return write!(f, " FULL");
|
|
|
|
}
|
|
|
|
write!(
|
|
|
|
f,
|
|
|
|
" FOR select {}, FOR create {}, FOR update {}, FOR delete {}",
|
|
|
|
self.select, self.create, self.update, self.delete
|
|
|
|
)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub fn permissions(i: &str) -> IResult<&str, Permissions> {
|
|
|
|
let (i, _) = tag_no_case("PERMISSIONS")(i)?;
|
|
|
|
let (i, _) = shouldbespace(i)?;
|
|
|
|
alt((none, full, specific))(i)
|
|
|
|
}
|
|
|
|
|
|
|
|
fn none(i: &str) -> IResult<&str, Permissions> {
|
|
|
|
let (i, _) = tag_no_case("NONE")(i)?;
|
|
|
|
Ok((i, Permissions::none()))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn full(i: &str) -> IResult<&str, Permissions> {
|
|
|
|
let (i, _) = tag_no_case("FULL")(i)?;
|
|
|
|
Ok((i, Permissions::full()))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn specific(i: &str) -> IResult<&str, Permissions> {
|
2022-09-04 09:51:06 +00:00
|
|
|
let (i, perms) = separated_list0(commasorspace, permission)(i)?;
|
2020-06-29 15:36:01 +00:00
|
|
|
Ok((
|
|
|
|
i,
|
|
|
|
Permissions {
|
|
|
|
select: perms
|
|
|
|
.iter()
|
|
|
|
.find_map(|x| {
|
|
|
|
x.iter().find_map(|y| match y {
|
2022-04-04 21:37:16 +00:00
|
|
|
('s', ref v) => Some(v.to_owned()),
|
2020-06-29 15:36:01 +00:00
|
|
|
_ => None,
|
|
|
|
})
|
|
|
|
})
|
2022-03-04 16:01:32 +00:00
|
|
|
.unwrap_or_default(),
|
2020-06-29 15:36:01 +00:00
|
|
|
create: perms
|
|
|
|
.iter()
|
|
|
|
.find_map(|x| {
|
|
|
|
x.iter().find_map(|y| match y {
|
2022-04-04 21:37:16 +00:00
|
|
|
('c', ref v) => Some(v.to_owned()),
|
2020-06-29 15:36:01 +00:00
|
|
|
_ => None,
|
|
|
|
})
|
|
|
|
})
|
2022-03-04 16:01:32 +00:00
|
|
|
.unwrap_or_default(),
|
2020-06-29 15:36:01 +00:00
|
|
|
update: perms
|
|
|
|
.iter()
|
|
|
|
.find_map(|x| {
|
|
|
|
x.iter().find_map(|y| match y {
|
2022-04-04 21:37:16 +00:00
|
|
|
('u', ref v) => Some(v.to_owned()),
|
2020-06-29 15:36:01 +00:00
|
|
|
_ => None,
|
|
|
|
})
|
|
|
|
})
|
2022-03-04 16:01:32 +00:00
|
|
|
.unwrap_or_default(),
|
2020-06-29 15:36:01 +00:00
|
|
|
delete: perms
|
|
|
|
.iter()
|
|
|
|
.find_map(|x| {
|
|
|
|
x.iter().find_map(|y| match y {
|
2022-04-04 21:37:16 +00:00
|
|
|
('d', ref v) => Some(v.to_owned()),
|
2020-06-29 15:36:01 +00:00
|
|
|
_ => None,
|
|
|
|
})
|
|
|
|
})
|
2022-03-04 16:01:32 +00:00
|
|
|
.unwrap_or_default(),
|
2020-06-29 15:36:01 +00:00
|
|
|
},
|
|
|
|
))
|
|
|
|
}
|
|
|
|
|
2021-03-29 15:43:37 +00:00
|
|
|
#[derive(Clone, Debug, Eq, PartialEq, Serialize, Deserialize)]
|
2020-06-29 15:36:01 +00:00
|
|
|
pub enum Permission {
|
|
|
|
None,
|
|
|
|
Full,
|
2022-01-13 17:36:41 +00:00
|
|
|
Specific(Value),
|
2020-06-29 15:36:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
impl Default for Permission {
|
|
|
|
fn default() -> Self {
|
2022-10-04 21:51:18 +00:00
|
|
|
Self::Full
|
2020-06-29 15:36:01 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
impl fmt::Display for Permission {
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
|
|
|
|
match self {
|
2022-10-04 21:51:18 +00:00
|
|
|
Self::None => f.write_str("NONE"),
|
|
|
|
Self::Full => f.write_str("FULL"),
|
|
|
|
Self::Specific(ref v) => write!(f, "WHERE {}", v),
|
2020-06-29 15:36:01 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-04-04 21:37:16 +00:00
|
|
|
fn permission(i: &str) -> IResult<&str, Vec<(char, Permission)>> {
|
2020-06-29 15:36:01 +00:00
|
|
|
let (i, _) = tag_no_case("FOR")(i)?;
|
|
|
|
let (i, _) = shouldbespace(i)?;
|
2021-03-29 15:43:37 +00:00
|
|
|
let (i, kind) = separated_list0(
|
2020-06-29 15:36:01 +00:00
|
|
|
commas,
|
|
|
|
alt((
|
2022-04-04 21:37:16 +00:00
|
|
|
map(tag_no_case("SELECT"), |_| 's'),
|
|
|
|
map(tag_no_case("CREATE"), |_| 'c'),
|
|
|
|
map(tag_no_case("UPDATE"), |_| 'u'),
|
|
|
|
map(tag_no_case("DELETE"), |_| 'd'),
|
2020-06-29 15:36:01 +00:00
|
|
|
)),
|
|
|
|
)(i)?;
|
|
|
|
let (i, _) = shouldbespace(i)?;
|
|
|
|
let (i, expr) = alt((
|
|
|
|
map(tag_no_case("NONE"), |_| Permission::None),
|
|
|
|
map(tag_no_case("FULL"), |_| Permission::Full),
|
2022-01-13 17:36:41 +00:00
|
|
|
map(tuple((tag_no_case("WHERE"), shouldbespace, value)), |(_, _, v)| {
|
2020-06-29 15:36:01 +00:00
|
|
|
Permission::Specific(v)
|
|
|
|
}),
|
|
|
|
))(i)?;
|
2022-04-04 21:37:16 +00:00
|
|
|
Ok((i, kind.into_iter().map(|k| (k, expr.clone())).collect()))
|
2020-06-29 15:36:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
mod tests {
|
|
|
|
|
|
|
|
use super::*;
|
2022-01-13 17:36:41 +00:00
|
|
|
use crate::sql::expression::Expression;
|
|
|
|
use crate::sql::test::Parse;
|
2020-06-29 15:36:01 +00:00
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn permissions_none() {
|
|
|
|
let sql = "PERMISSIONS NONE";
|
|
|
|
let res = permissions(sql);
|
|
|
|
assert!(res.is_ok());
|
|
|
|
let out = res.unwrap().1;
|
|
|
|
assert_eq!("PERMISSIONS NONE", format!("{}", out));
|
|
|
|
assert_eq!(out, Permissions::none());
|
|
|
|
}
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn permissions_full() {
|
|
|
|
let sql = "PERMISSIONS FULL";
|
|
|
|
let res = permissions(sql);
|
|
|
|
assert!(res.is_ok());
|
|
|
|
let out = res.unwrap().1;
|
|
|
|
assert_eq!("PERMISSIONS FULL", format!("{}", out));
|
|
|
|
assert_eq!(out, Permissions::full());
|
|
|
|
}
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn permissions_specific() {
|
|
|
|
let sql =
|
|
|
|
"PERMISSIONS FOR select FULL, FOR create, update WHERE public = true, FOR delete NONE";
|
|
|
|
let res = permissions(sql);
|
|
|
|
assert!(res.is_ok());
|
|
|
|
let out = res.unwrap().1;
|
|
|
|
assert_eq!(
|
|
|
|
"PERMISSIONS FOR select FULL, FOR create WHERE public = true, FOR update WHERE public = true, FOR delete NONE",
|
|
|
|
format!("{}", out)
|
|
|
|
);
|
|
|
|
assert_eq!(
|
|
|
|
out,
|
|
|
|
Permissions {
|
|
|
|
select: Permission::Full,
|
2022-01-13 17:36:41 +00:00
|
|
|
create: Permission::Specific(Value::from(Expression::parse("public = true"))),
|
|
|
|
update: Permission::Specific(Value::from(Expression::parse("public = true"))),
|
2020-06-29 15:36:01 +00:00
|
|
|
delete: Permission::None,
|
|
|
|
}
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|