ClickHouse/dbms/Interpreters/InterpreterDropAccessEntityQuery.cpp

#include <Interpreters/InterpreterDropAccessEntityQuery.h>
#include <Parsers/ASTDropAccessEntityQuery.h>
#include <Interpreters/Context.h>
#include <Access/AccessControlManager.h>
#include <Access/AccessFlags.h>
#include <Access/User.h>
#include <Access/Role.h>
#include <Access/Quota.h>
#include <Access/RowPolicy.h>
#include <Access/SettingsProfile.h>
#include <boost/range/algorithm/transform.hpp>


namespace DB
{
namespace
{
    using Kind = ASTDropAccessEntityQuery::Kind;

    std::type_index getType(Kind kind)
    {
        switch (kind)
        {
            case Kind::USER: return typeid(User);
            case Kind::ROLE: return typeid(Role);
            case Kind::QUOTA: return typeid(Quota);
            case Kind::ROW_POLICY: return typeid(RowPolicy);
            case Kind::SETTINGS_PROFILE: return typeid(SettingsProfile);
        }
        __builtin_unreachable();
    }

    AccessType getRequiredAccessType(Kind kind)
    {
        switch (kind)
        {
            case Kind::USER: return AccessType::DROP_USER;
            case Kind::ROLE: return AccessType::DROP_ROLE;
            case Kind::QUOTA: return AccessType::DROP_QUOTA;
            case Kind::ROW_POLICY: return AccessType::DROP_POLICY;
            case Kind::SETTINGS_PROFILE: return AccessType::DROP_SETTINGS_PROFILE;
        }
        __builtin_unreachable();
    }
}

BlockIO InterpreterDropAccessEntityQuery::execute()
{
    const auto & query = query_ptr->as<const ASTDropAccessEntityQuery &>();
    auto & access_control = context.getAccessControlManager();

    std::type_index type = getType(query.kind);
    context.checkAccess(getRequiredAccessType(query.kind));

    if (query.kind == Kind::ROW_POLICY)
    {
        Strings full_names;
        boost::range::transform(
            query.row_policies_names, std::back_inserter(full_names),
            [this](const RowPolicy::FullNameParts & row_policy_name) { return row_policy_name.getFullName(context); });
        if (query.if_exists)
            access_control.tryRemove(access_control.find<RowPolicy>(full_names));
        else
            access_control.remove(access_control.getIDs<RowPolicy>(full_names));
        return {};
    }

    if (query.if_exists)
        access_control.tryRemove(access_control.find(type, query.names));
    else
        access_control.remove(access_control.getIDs(type, query.names));
    return {};
}

}
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`#include <Interpreters/InterpreterDropAccessEntityQuery.h>`
			`#include <Parsers/ASTDropAccessEntityQuery.h>`
			`#include <Interpreters/Context.h>`
			`#include <Access/AccessControlManager.h>`
Rewrite the User class to be controlled by AccessControlManager. 2020-01-26 09:49:53 +00:00			`#include <Access/AccessFlags.h>`
Implement SQL queries for creating and controlling roles. 2020-02-17 02:59:56 +00:00			`#include <Access/User.h>`
			`#include <Access/Role.h>`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`#include <Access/Quota.h>`
Add DCL to manage row policies. 2019-11-29 17:22:56 +00:00			`#include <Access/RowPolicy.h>`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`#include <Access/SettingsProfile.h>`
Add DCL to manage row policies. 2019-11-29 17:22:56 +00:00			`#include <boost/range/algorithm/transform.hpp>`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00

			`namespace DB`
			`{`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`namespace`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`{`
			`using Kind = ASTDropAccessEntityQuery::Kind;`

Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`std::type_index getType(Kind kind)`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`{`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`switch (kind)`
Implement SQL queries to manipulate users and grants. 2020-02-04 22:37:04 +00:00			`{`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`case Kind::USER: return typeid(User);`
			`case Kind::ROLE: return typeid(Role);`
			`case Kind::QUOTA: return typeid(Quota);`
			`case Kind::ROW_POLICY: return typeid(RowPolicy);`
			`case Kind::SETTINGS_PROFILE: return typeid(SettingsProfile);`
Implement SQL queries for creating and controlling roles. 2020-02-17 02:59:56 +00:00			`}`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`__builtin_unreachable();`
			`}`
Implement SQL queries for creating and controlling roles. 2020-02-17 02:59:56 +00:00
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`AccessType getRequiredAccessType(Kind kind)`
			`{`
			`switch (kind)`
Implement SQL queries for creating and controlling roles. 2020-02-17 02:59:56 +00:00			`{`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`case Kind::USER: return AccessType::DROP_USER;`
			`case Kind::ROLE: return AccessType::DROP_ROLE;`
			`case Kind::QUOTA: return AccessType::DROP_QUOTA;`
			`case Kind::ROW_POLICY: return AccessType::DROP_POLICY;`
			`case Kind::SETTINGS_PROFILE: return AccessType::DROP_SETTINGS_PROFILE;`
Implement SQL queries to manipulate users and grants. 2020-02-04 22:37:04 +00:00			`}`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`__builtin_unreachable();`
			`}`
			`}`
Implement SQL queries to manipulate users and grants. 2020-02-04 22:37:04 +00:00
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`BlockIO InterpreterDropAccessEntityQuery::execute()`
			`{`
			`const auto & query = query_ptr->as<const ASTDropAccessEntityQuery &>();`
			`auto & access_control = context.getAccessControlManager();`
Implement SQL queries to manipulate users and grants. 2020-02-04 22:37:04 +00:00
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`std::type_index type = getType(query.kind);`
			`context.checkAccess(getRequiredAccessType(query.kind));`

			`if (query.kind == Kind::ROW_POLICY)`
			`{`
			`Strings full_names;`
			`boost::range::transform(`
			`query.row_policies_names, std::back_inserter(full_names),`
			`[this](const RowPolicy::FullNameParts & row_policy_name) { return row_policy_name.getFullName(context); });`
			`if (query.if_exists)`
			`access_control.tryRemove(access_control.find<RowPolicy>(full_names));`
			`else`
			`access_control.remove(access_control.getIDs<RowPolicy>(full_names));`
			`return {};`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`}`

Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00			`if (query.if_exists)`
			`access_control.tryRemove(access_control.find(type, query.names));`
			`else`
			`access_control.remove(access_control.getIDs(type, query.names));`
			`return {};`
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`}`
Implement SQL to manage settings profiles. 2020-03-18 14:11:44 +00:00
Add DCL to manage quotas. 2019-12-01 22:01:05 +00:00			`}`