Mercurial > gemma
comparison schema/auth.sql @ 2970:149a8f81f99e unified_import
merge with default
| author | Thomas Junk <thomas.junk@intevation.de> |
|---|---|
| date | Fri, 05 Apr 2019 10:04:45 +0200 |
| parents | 96ac7a980ec2 |
| children | ec6163c6687d |
comparison
equal
deleted
inserted
replaced
| 2969:b92a8d088d8a | 2970:149a8f81f99e |
|---|---|
| 2 -- without warranty, see README.md and license for details. | 2 -- without warranty, see README.md and license for details. |
| 3 | 3 |
| 4 -- SPDX-License-Identifier: AGPL-3.0-or-later | 4 -- SPDX-License-Identifier: AGPL-3.0-or-later |
| 5 -- License-Filename: LICENSES/AGPL-3.0.txt | 5 -- License-Filename: LICENSES/AGPL-3.0.txt |
| 6 | 6 |
| 7 -- Copyright (C) 2018 by via donau | 7 -- Copyright (C) 2018, 2019 by via donau |
| 8 -- – Österreichische Wasserstraßen-Gesellschaft mbH | 8 -- – Österreichische Wasserstraßen-Gesellschaft mbH |
| 9 -- Software engineering by Intevation GmbH | 9 -- Software engineering by Intevation GmbH |
| 10 | 10 |
| 11 -- Author(s): | 11 -- Author(s): |
| 12 -- * Tom Gottried <tom@intevation.de> | 12 -- * Tom Gottried <tom@intevation.de> |
| 100 'bottlenecks', | 100 'bottlenecks', |
| 101 'sounding_results'] | 101 'sounding_results'] |
| 102 LOOP | 102 LOOP |
| 103 EXECUTE format('CREATE POLICY hide_staging ON waterway.%I ' | 103 EXECUTE format('CREATE POLICY hide_staging ON waterway.%I ' |
| 104 'FOR SELECT TO waterway_user USING (staging_done)', the_table); | 104 'FOR SELECT TO waterway_user USING (staging_done)', the_table); |
| 105 EXECUTE format('CREATE POLICY sys_admin ON waterway.%I ' | |
| 106 'FOR ALL TO sys_admin USING (true)', the_table); | |
| 105 EXECUTE format('ALTER TABLE waterway.%I ENABLE ROW LEVEL SECURITY', | 107 EXECUTE format('ALTER TABLE waterway.%I ENABLE ROW LEVEL SECURITY', |
| 106 the_table); | 108 the_table); |
| 107 END LOOP; | 109 END LOOP; |
| 108 END; | 110 END; |
| 109 $$; | 111 $$; |
| 137 FOR ALL TO waterway_admin | 139 FOR ALL TO waterway_admin |
| 138 USING ((location).country_code = (SELECT country FROM users.list_users WHERE username = current_user)); | 140 USING ((location).country_code = (SELECT country FROM users.list_users WHERE username = current_user)); |
| 139 | 141 |
| 140 CREATE POLICY responsibility_area ON waterway.bottlenecks | 142 CREATE POLICY responsibility_area ON waterway.bottlenecks |
| 141 FOR ALL TO waterway_admin | 143 FOR ALL TO waterway_admin |
| 142 USING (utm_covers(area)); | 144 USING (users.utm_covers(area)); |
| 143 | 145 |
| 144 CREATE POLICY responsibility_area ON waterway.sounding_results | 146 CREATE POLICY responsibility_area ON waterway.sounding_results |
| 145 FOR ALL TO waterway_admin | 147 FOR ALL TO waterway_admin |
| 146 USING (utm_covers(area)); | 148 USING (users.utm_covers(area)); |
| 147 | 149 |
| 148 CREATE POLICY responsibility_area ON waterway.fairway_dimensions | 150 CREATE POLICY responsibility_area ON waterway.fairway_dimensions |
| 149 FOR ALL TO waterway_admin | 151 FOR ALL TO waterway_admin |
| 150 USING (utm_covers(area)); | 152 USING (users.utm_covers(area)); |
| 151 | |
| 152 CREATE POLICY sys_admin ON waterway.stretches | |
| 153 FOR ALL TO sys_admin | |
| 154 USING (true); | |
| 155 | 153 |
| 156 -- | 154 -- |
| 157 -- RLS policies for imports and import config | 155 -- RLS policies for imports and import config |
| 158 -- | 156 -- |
| 159 | 157 |