Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Priv #13

Open
wants to merge 43 commits into
base: main
Choose a base branch
from
Open

Priv #13

wants to merge 43 commits into from

Conversation

seankross
Copy link

Description

Related Issue

Example

Testing

sckott added 30 commits October 21, 2024 15:17
@sckott
#3 privileges work
5b16f20
@sckott
#3 #4 added brainstorming code for policies as real code, fixed a tes…
3892677 
…t, using roxyglobals now
@sckott
only run examples if interactive
304dd47
@sckott
#5 add with_db_user fxn
5b4b5a9
@sckott
remove pkg loading messages/warnings
65159c4
@sckott
docs url fix
b3ee90e
@sckott
add fxn rls_privileges to get overview of table and column level priv…
f7c607d 
…ileges and row level policies in one fxn; add passwd table setup in a new man file
@sckott
run on all branches
14bfa57
@sckott
add new vignette with basic important info on privileges and policies…
14b5fe5 
… - & add structure to pkgdown config
@sckott
gitignore s7 file
b49b76a
@sckott
dont check system clock in r cmd check
898d48a
@sckott
limit to 4 sql commands we support in vignette
2ad5c83
@sckott
#4 rework privilege methods
6fd941a 
- add new as_priv s3 class
- rework how to make privileges
- add auto execute sql code with code from jqr
- import more rlang fxns
@sckott
styling
564d0b2
@sckott
update man files
0c1ae51
@sckott
added row policy fns
2754bf9
@sckott
make passwd table setup example actually work from scratch
5d98b0a
@sckott
#4 more tabular work for privileges and row policies
b0f8b7b 
- example code for passwd table turned into a fxn to do one liner for table setup
- use one liner setup in privileges and row policy fxn docs
- rework rls_run to fetch con from query input if con not passed, also separate file
-
@sckott
add as_con s3 method for privilege class
de0687c
@sckott
cleanup translate_privilege, add fxn rls policy exists, add test help…
45a156e 
…er for drop oplicies
@sckott
organize pkgdown config file
8c362fd
@sckott
overwrite = true in all dbWriteTable in test
e6304a9
@sckott
add helper fxn from tests for dropping all policies to pkg fxn, make …
c6f8653 
…more egs fully work
@sckott
add clean command to Makefile to clean out check folder and targz man…
4da1d2b 
…ually
@sckott
removed tests for old rls fxns, added some new tests
020da39
@sckott
move old rls create and construct fxns to inst/ignore; fix some small…
8038f3b 
… things
@sckott
moved as_con to a separate R file
75a0933
@sckott
update vignette to use current fxns for row and column level stuff
66fa7fa
@sckott
#10 make more examples self contained and clean up, not done yet
c5a9a4a
@sckott
fix #10 all examples i think are self contained and clean up
b4cfcdc
@seankross seankross mentioned this pull request Dec 7, 2024
Open
@seankross seankross marked this pull request as ready for review December 7, 2024 00:41
@seankross seankross marked this pull request as draft December 7, 2024 00:42
@sckott sckott marked this pull request as ready for review December 12, 2024 17:37
seankross
seankross commented Jan 31, 2025
View reviewed changes
Copy link
Author

@seankross seankross left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey I'm finally picking this back up. I have more of this to review but let's start with this.

vignettes/rls.Rmd
#> 1 0 /root 111-222-3333 xxx Admin /bin/dash 0 admin
#> 2 1 /home/bob 123-456-7890 xxx Bob /bin/zsh 1 bob
#> 3 1 /home/alice 098-765-4321 xxx Alice /bin/zsh 2 alice
rls_run(policy1)
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Did you remove or rename rls_run()?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry, now getting my head back into this it's rls_perform().

tests/testthat/helper-rls.R
DBI::dbConnect(RPostgres::Postgres(), ...)
}, error = function(...) {
vars <- "try setting env vars: PGHOST, PGPORT, PGUSER, PGDATABASE"
testthat::skip(glue("Test database not available. {vars}"))
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We need to add PGPASSWORD to this list.

R/privileges.R
#' rls_tbl(con, "passwd") %>%
#' grant(update, select, cols = c("real_name", "home_phone")) %>%
#' to(jane)
#'
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How can I see the results of grant in action? My instinct was rls_column_privileges but it returns an empty. Also who is jane in this context? Do I have to create jane as a user or something first?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sckott sckott sckott left review comments

Assignees

@seankross seankross

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@seankross @sckott