2018-06-27 16:11:32 +03:00
|
|
|
module Hasura.RQL.DML.Internal where
|
|
|
|
|
2019-08-23 15:57:09 +03:00
|
|
|
import qualified Database.PG.Query as Q
|
|
|
|
import qualified Hasura.SQL.DML as S
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2018-12-13 10:26:15 +03:00
|
|
|
import Hasura.Prelude
|
2018-06-27 16:11:32 +03:00
|
|
|
import Hasura.RQL.GBoolExp
|
|
|
|
import Hasura.RQL.Types
|
2019-08-23 15:57:09 +03:00
|
|
|
import Hasura.SQL.Error
|
2018-12-13 10:26:15 +03:00
|
|
|
import Hasura.SQL.Types
|
|
|
|
import Hasura.SQL.Value
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
import Control.Lens
|
|
|
|
import Data.Aeson.Types
|
|
|
|
|
2019-08-23 15:57:09 +03:00
|
|
|
import qualified Data.HashMap.Strict as M
|
|
|
|
import qualified Data.HashSet as HS
|
|
|
|
import qualified Data.Sequence as DS
|
|
|
|
import qualified Data.Text as T
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2018-12-13 10:26:15 +03:00
|
|
|
newtype DMLP1 a
|
|
|
|
= DMLP1 {unDMLP1 :: StateT (DS.Seq Q.PrepArg) P1 a}
|
|
|
|
deriving ( Functor, Applicative
|
|
|
|
, Monad
|
|
|
|
, MonadState (DS.Seq Q.PrepArg)
|
|
|
|
, MonadError QErr
|
|
|
|
)
|
|
|
|
|
|
|
|
liftDMLP1
|
2019-03-01 14:45:04 +03:00
|
|
|
:: (QErrM m, UserInfoM m, CacheRM m, HasSQLGenCtx m)
|
2018-12-13 10:26:15 +03:00
|
|
|
=> DMLP1 a -> m (a, DS.Seq Q.PrepArg)
|
|
|
|
liftDMLP1 =
|
|
|
|
liftP1 . flip runStateT DS.empty . unDMLP1
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
instance CacheRM DMLP1 where
|
2018-12-13 10:26:15 +03:00
|
|
|
askSchemaCache = DMLP1 $ lift askSchemaCache
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
instance UserInfoM DMLP1 where
|
2018-12-13 10:26:15 +03:00
|
|
|
askUserInfo = DMLP1 $ lift askUserInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2019-03-01 14:45:04 +03:00
|
|
|
instance HasSQLGenCtx DMLP1 where
|
|
|
|
askSQLGenCtx = DMLP1 $ lift askSQLGenCtx
|
|
|
|
|
2019-08-11 18:34:38 +03:00
|
|
|
mkAdminRolePermInfo :: TableInfo PGColumnInfo -> RolePermInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
mkAdminRolePermInfo ti =
|
|
|
|
RolePermInfo (Just i) (Just s) (Just u) (Just d)
|
|
|
|
where
|
2019-07-22 15:47:13 +03:00
|
|
|
pgCols = map pgiName $ getCols $ _tiFieldInfoMap ti
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2019-07-22 15:47:13 +03:00
|
|
|
tn = _tiName ti
|
2019-04-15 10:04:30 +03:00
|
|
|
i = InsPermInfo (HS.fromList pgCols) tn annBoolExpTrue M.empty []
|
2018-11-16 15:40:23 +03:00
|
|
|
s = SelPermInfo (HS.fromList pgCols) tn annBoolExpTrue
|
|
|
|
Nothing True []
|
2019-02-11 15:45:30 +03:00
|
|
|
u = UpdPermInfo (HS.fromList pgCols) tn annBoolExpTrue M.empty []
|
2018-11-16 15:40:23 +03:00
|
|
|
d = DelPermInfo tn annBoolExpTrue []
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
askPermInfo'
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m)
|
2018-06-27 16:11:32 +03:00
|
|
|
=> PermAccessor c
|
2019-08-11 18:34:38 +03:00
|
|
|
-> TableInfo PGColumnInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
-> m (Maybe c)
|
|
|
|
askPermInfo' pa tableInfo = do
|
|
|
|
roleName <- askCurRole
|
|
|
|
let mrpi = getRolePermInfo roleName
|
|
|
|
return $ mrpi >>= (^. permAccToLens pa)
|
|
|
|
where
|
2019-07-22 15:47:13 +03:00
|
|
|
rpim = _tiRolePermInfoMap tableInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
getRolePermInfo roleName
|
|
|
|
| roleName == adminRole = Just $ mkAdminRolePermInfo tableInfo
|
|
|
|
| otherwise = M.lookup roleName rpim
|
|
|
|
|
|
|
|
askPermInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m)
|
2018-06-27 16:11:32 +03:00
|
|
|
=> PermAccessor c
|
2019-08-11 18:34:38 +03:00
|
|
|
-> TableInfo PGColumnInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
-> m c
|
|
|
|
askPermInfo pa tableInfo = do
|
|
|
|
roleName <- askCurRole
|
|
|
|
mPermInfo <- askPermInfo' pa tableInfo
|
|
|
|
case mPermInfo of
|
|
|
|
Just c -> return c
|
|
|
|
Nothing -> throw400 PermissionDenied $ mconcat
|
2019-07-22 15:47:13 +03:00
|
|
|
[ pt <> " on " <>> _tiName tableInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
, " for role " <>> roleName
|
|
|
|
, " is not allowed. "
|
|
|
|
]
|
|
|
|
where
|
|
|
|
pt = permTypeToCode $ permAccToType pa
|
|
|
|
|
2019-08-11 18:34:38 +03:00
|
|
|
isTabUpdatable :: RoleName -> TableInfo PGColumnInfo -> Bool
|
2018-12-15 19:10:29 +03:00
|
|
|
isTabUpdatable role ti
|
|
|
|
| role == adminRole = True
|
|
|
|
| otherwise = isJust $ M.lookup role rpim >>= _permUpd
|
|
|
|
where
|
2019-07-22 15:47:13 +03:00
|
|
|
rpim = _tiRolePermInfoMap ti
|
2018-12-15 19:10:29 +03:00
|
|
|
|
2018-06-27 16:11:32 +03:00
|
|
|
askInsPermInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m)
|
2019-08-11 18:34:38 +03:00
|
|
|
=> TableInfo PGColumnInfo -> m InsPermInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
askInsPermInfo = askPermInfo PAInsert
|
|
|
|
|
|
|
|
askSelPermInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m)
|
2019-08-11 18:34:38 +03:00
|
|
|
=> TableInfo PGColumnInfo -> m SelPermInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
askSelPermInfo = askPermInfo PASelect
|
|
|
|
|
|
|
|
askUpdPermInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m)
|
2019-08-11 18:34:38 +03:00
|
|
|
=> TableInfo PGColumnInfo -> m UpdPermInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
askUpdPermInfo = askPermInfo PAUpdate
|
|
|
|
|
|
|
|
askDelPermInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m)
|
2019-08-11 18:34:38 +03:00
|
|
|
=> TableInfo PGColumnInfo -> m DelPermInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
askDelPermInfo = askPermInfo PADelete
|
|
|
|
|
|
|
|
verifyAsrns :: (MonadError QErr m) => [a -> m ()] -> [a] -> m ()
|
|
|
|
verifyAsrns preds xs = indexedForM_ xs $ \a -> mapM_ ($ a) preds
|
|
|
|
|
|
|
|
checkSelOnCol :: (UserInfoM m, QErrM m)
|
|
|
|
=> SelPermInfo -> PGCol -> m ()
|
|
|
|
checkSelOnCol selPermInfo =
|
|
|
|
checkPermOnCol PTSelect (spiCols selPermInfo)
|
|
|
|
|
|
|
|
checkPermOnCol
|
|
|
|
:: (UserInfoM m, QErrM m)
|
|
|
|
=> PermType
|
|
|
|
-> HS.HashSet PGCol
|
|
|
|
-> PGCol
|
|
|
|
-> m ()
|
|
|
|
checkPermOnCol pt allowedCols pgCol = do
|
|
|
|
roleName <- askCurRole
|
|
|
|
unless (HS.member pgCol allowedCols) $
|
|
|
|
throw400 PermissionDenied $ permErrMsg roleName
|
|
|
|
where
|
2019-07-11 12:00:45 +03:00
|
|
|
permErrMsg roleName
|
|
|
|
| roleName == adminRole = "no such column exists : " <>> pgCol
|
|
|
|
| otherwise = mconcat
|
|
|
|
[ "role " <>> roleName
|
|
|
|
, " does not have permission to "
|
|
|
|
, permTypeToCode pt <> " column " <>> pgCol
|
|
|
|
]
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2018-12-13 10:26:15 +03:00
|
|
|
binRHSBuilder
|
2019-07-22 15:47:13 +03:00
|
|
|
:: PGColumnType -> Value -> DMLP1 S.SQLExp
|
2018-06-27 16:11:32 +03:00
|
|
|
binRHSBuilder colType val = do
|
|
|
|
preparedArgs <- get
|
2019-07-22 15:47:13 +03:00
|
|
|
scalarValue <- parsePGScalarValue colType val
|
|
|
|
put (preparedArgs DS.|> toBinaryValue scalarValue)
|
|
|
|
return $ toPrepParam (DS.length preparedArgs + 1) (pstType scalarValue)
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
fetchRelTabInfo
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (QErrM m, CacheRM m)
|
2018-06-27 16:11:32 +03:00
|
|
|
=> QualifiedTable
|
2019-08-11 18:34:38 +03:00
|
|
|
-> m (TableInfo PGColumnInfo)
|
2018-06-27 16:11:32 +03:00
|
|
|
fetchRelTabInfo refTabName =
|
|
|
|
-- Internal error
|
|
|
|
modifyErrAndSet500 ("foreign " <> ) $ askTabInfo refTabName
|
|
|
|
|
2019-07-22 15:47:13 +03:00
|
|
|
type SessVarBldr m = PGType PGScalarType -> SessVar -> m S.SQLExp
|
2019-04-17 12:48:41 +03:00
|
|
|
|
2018-06-27 16:11:32 +03:00
|
|
|
fetchRelDet
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m, CacheRM m)
|
2018-06-27 16:11:32 +03:00
|
|
|
=> RelName -> QualifiedTable
|
2019-08-11 18:34:38 +03:00
|
|
|
-> m (FieldInfoMap PGColumnInfo, SelPermInfo)
|
2018-06-27 16:11:32 +03:00
|
|
|
fetchRelDet relName refTabName = do
|
|
|
|
roleName <- askCurRole
|
|
|
|
-- Internal error
|
|
|
|
refTabInfo <- fetchRelTabInfo refTabName
|
|
|
|
-- Get the correct constraint that applies to the given relationship
|
|
|
|
refSelPerm <- modifyErr (relPermErr refTabName roleName) $
|
|
|
|
askSelPermInfo refTabInfo
|
|
|
|
|
2019-07-22 15:47:13 +03:00
|
|
|
return (_tiFieldInfoMap refTabInfo, refSelPerm)
|
2018-06-27 16:11:32 +03:00
|
|
|
where
|
|
|
|
relPermErr rTable roleName _ =
|
|
|
|
mconcat
|
|
|
|
[ "role " <>> roleName
|
|
|
|
, " does not have permission to read relationship " <>> relName
|
|
|
|
, "; no permission on"
|
|
|
|
, " table " <>> rTable
|
|
|
|
]
|
|
|
|
|
2018-11-16 15:40:23 +03:00
|
|
|
checkOnColExp
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m, CacheRM m)
|
2018-11-16 15:40:23 +03:00
|
|
|
=> SelPermInfo
|
2019-04-17 12:48:41 +03:00
|
|
|
-> SessVarBldr m
|
2018-11-16 15:40:23 +03:00
|
|
|
-> AnnBoolExpFldSQL
|
|
|
|
-> m AnnBoolExpFldSQL
|
2019-04-17 12:48:41 +03:00
|
|
|
checkOnColExp spi sessVarBldr annFld = case annFld of
|
2019-08-11 18:34:38 +03:00
|
|
|
AVCol (PGColumnInfo cn _ _) _ -> do
|
2018-11-16 15:40:23 +03:00
|
|
|
checkSelOnCol spi cn
|
|
|
|
return annFld
|
|
|
|
AVRel relInfo nesAnn -> do
|
|
|
|
relSPI <- snd <$> fetchRelDet (riName relInfo) (riRTable relInfo)
|
2019-04-17 12:48:41 +03:00
|
|
|
modAnn <- checkSelPerm relSPI sessVarBldr nesAnn
|
|
|
|
resolvedFltr <- convAnnBoolExpPartialSQL sessVarBldr $ spiFilter relSPI
|
|
|
|
return $ AVRel relInfo $ andAnnBoolExps modAnn resolvedFltr
|
|
|
|
|
|
|
|
convAnnBoolExpPartialSQL
|
|
|
|
:: (Applicative f)
|
|
|
|
=> SessVarBldr f
|
|
|
|
-> AnnBoolExpPartialSQL
|
|
|
|
-> f AnnBoolExpSQL
|
|
|
|
convAnnBoolExpPartialSQL f =
|
|
|
|
traverseAnnBoolExp (convPartialSQLExp f)
|
|
|
|
|
|
|
|
convPartialSQLExp
|
|
|
|
:: (Applicative f)
|
|
|
|
=> SessVarBldr f
|
|
|
|
-> PartialSQLExp
|
|
|
|
-> f S.SQLExp
|
|
|
|
convPartialSQLExp f = \case
|
|
|
|
PSESQLExp sqlExp -> pure sqlExp
|
|
|
|
PSESessVar colTy sessVar -> f colTy sessVar
|
|
|
|
|
|
|
|
sessVarFromCurrentSetting
|
2019-07-22 15:47:13 +03:00
|
|
|
:: (Applicative f) => PGType PGScalarType -> SessVar -> f S.SQLExp
|
2019-07-10 13:19:58 +03:00
|
|
|
sessVarFromCurrentSetting pgType sessVar =
|
|
|
|
pure $ sessVarFromCurrentSetting' pgType sessVar
|
|
|
|
|
2019-07-22 15:47:13 +03:00
|
|
|
sessVarFromCurrentSetting' :: PGType PGScalarType -> SessVar -> S.SQLExp
|
2019-07-10 13:19:58 +03:00
|
|
|
sessVarFromCurrentSetting' ty sessVar =
|
|
|
|
flip S.SETyAnn (S.mkTypeAnn ty) $
|
|
|
|
case ty of
|
2019-08-29 16:07:05 +03:00
|
|
|
PGTypeScalar baseTy -> withConstructorFn baseTy sessVarVal
|
2019-07-22 15:47:13 +03:00
|
|
|
PGTypeArray _ -> sessVarVal
|
2019-04-17 12:48:41 +03:00
|
|
|
where
|
|
|
|
curSess = S.SEUnsafe "current_setting('hasura.user')::json"
|
2019-07-10 13:19:58 +03:00
|
|
|
sessVarVal = S.SEOpApp (S.SQLOp "->>")
|
|
|
|
[curSess, S.SELit $ T.toLower sessVar]
|
2018-11-16 15:40:23 +03:00
|
|
|
|
|
|
|
checkSelPerm
|
2018-12-13 10:26:15 +03:00
|
|
|
:: (UserInfoM m, QErrM m, CacheRM m)
|
2018-11-16 15:40:23 +03:00
|
|
|
=> SelPermInfo
|
2019-07-10 13:19:58 +03:00
|
|
|
-> SessVarBldr m
|
2018-11-16 15:40:23 +03:00
|
|
|
-> AnnBoolExpSQL
|
|
|
|
-> m AnnBoolExpSQL
|
2019-04-17 12:48:41 +03:00
|
|
|
checkSelPerm spi sessVarBldr =
|
|
|
|
traverse (checkOnColExp spi sessVarBldr)
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2019-04-17 12:48:41 +03:00
|
|
|
convBoolExp
|
2019-07-10 13:19:58 +03:00
|
|
|
:: (UserInfoM m, QErrM m, CacheRM m)
|
2019-08-11 18:34:38 +03:00
|
|
|
=> FieldInfoMap PGColumnInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
-> SelPermInfo
|
|
|
|
-> BoolExp
|
2019-07-10 13:19:58 +03:00
|
|
|
-> SessVarBldr m
|
2019-07-22 15:47:13 +03:00
|
|
|
-> (PGColumnType -> Value -> m S.SQLExp)
|
2018-11-16 15:40:23 +03:00
|
|
|
-> m AnnBoolExpSQL
|
2019-04-17 12:48:41 +03:00
|
|
|
convBoolExp cim spi be sessVarBldr prepValBldr = do
|
2019-07-10 13:19:58 +03:00
|
|
|
abe <- annBoolExp rhsParser cim be
|
2019-04-17 12:48:41 +03:00
|
|
|
checkSelPerm spi sessVarBldr abe
|
2019-07-10 13:19:58 +03:00
|
|
|
where
|
|
|
|
rhsParser pgType val = case pgType of
|
2019-08-11 18:34:38 +03:00
|
|
|
PGTypeScalar ty -> prepValBldr ty val
|
2019-07-22 15:47:13 +03:00
|
|
|
PGTypeArray ofTy -> do
|
|
|
|
-- for arrays, we don't use the prepared builder
|
2019-07-10 13:19:58 +03:00
|
|
|
vals <- runAesonParser parseJSON val
|
2019-08-11 18:34:38 +03:00
|
|
|
WithScalarType scalarType scalarValues <- parsePGScalarValues ofTy vals
|
2019-07-22 15:47:13 +03:00
|
|
|
return $ S.SETyAnn
|
2019-08-11 18:34:38 +03:00
|
|
|
(S.SEArray $ map (toTxtValue . WithScalarType scalarType) scalarValues)
|
2019-07-22 15:47:13 +03:00
|
|
|
(S.mkTypeAnn $ PGTypeArray scalarType)
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
dmlTxErrorHandler :: Q.PGTxErr -> QErr
|
2019-08-23 15:57:09 +03:00
|
|
|
dmlTxErrorHandler = mkTxErrorHandler $ \case
|
|
|
|
PGIntegrityConstraintViolation _ -> True
|
|
|
|
PGDataException _ -> True
|
|
|
|
PGSyntaxErrorOrAccessRuleViolation (Just (PGErrorSpecific code)) -> code `elem`
|
|
|
|
[ PGUndefinedObject
|
|
|
|
, PGInvalidColumnReference ]
|
|
|
|
_ -> False
|
2018-06-27 16:11:32 +03:00
|
|
|
|
2019-07-22 15:47:13 +03:00
|
|
|
toJSONableExp :: Bool -> PGColumnType -> S.SQLExp -> S.SQLExp
|
2019-03-01 14:45:04 +03:00
|
|
|
toJSONableExp strfyNum colTy expn
|
2019-07-22 15:47:13 +03:00
|
|
|
| isScalarColumnWhere isGeoType colTy =
|
2018-10-05 11:56:47 +03:00
|
|
|
S.SEFnApp "ST_AsGeoJSON"
|
|
|
|
[ expn
|
2018-09-27 15:23:17 +03:00
|
|
|
, S.SEUnsafe "15" -- max decimal digits
|
|
|
|
, S.SEUnsafe "4" -- to print out crs
|
|
|
|
] Nothing
|
2019-07-10 13:19:58 +03:00
|
|
|
`S.SETyAnn` S.jsonTypeAnn
|
2019-07-22 15:47:13 +03:00
|
|
|
| isScalarColumnWhere isBigNum colTy && strfyNum =
|
2019-07-10 13:19:58 +03:00
|
|
|
expn `S.SETyAnn` S.textTypeAnn
|
2018-10-05 11:56:47 +03:00
|
|
|
| otherwise = expn
|
2018-06-27 16:11:32 +03:00
|
|
|
|
|
|
|
-- validate headers
|
2018-12-13 10:26:15 +03:00
|
|
|
validateHeaders :: (UserInfoM m, QErrM m) => [T.Text] -> m ()
|
2018-06-27 16:11:32 +03:00
|
|
|
validateHeaders depHeaders = do
|
2018-10-26 18:57:22 +03:00
|
|
|
headers <- getVarNames . userVars <$> askUserInfo
|
2018-06-27 16:11:32 +03:00
|
|
|
forM_ depHeaders $ \hdr ->
|
|
|
|
unless (hdr `elem` map T.toLower headers) $
|
|
|
|
throw400 NotFound $ hdr <<> " header is expected but not found"
|
|
|
|
|
2018-08-06 15:15:08 +03:00
|
|
|
-- validate limit and offset int values
|
|
|
|
onlyPositiveInt :: MonadError QErr m => Int -> m ()
|
|
|
|
onlyPositiveInt i = when (i < 0) $ throw400 NotSupported
|
|
|
|
"unexpected negative value"
|