Mercurial > gemma
comparison schema/auth.sql @ 2970:149a8f81f99e unified_import
merge with default
author | Thomas Junk <thomas.junk@intevation.de> |
---|---|
date | Fri, 05 Apr 2019 10:04:45 +0200 |
parents | 96ac7a980ec2 |
children | ec6163c6687d |
comparison
equal
deleted
inserted
replaced
2969:b92a8d088d8a | 2970:149a8f81f99e |
---|---|
2 -- without warranty, see README.md and license for details. | 2 -- without warranty, see README.md and license for details. |
3 | 3 |
4 -- SPDX-License-Identifier: AGPL-3.0-or-later | 4 -- SPDX-License-Identifier: AGPL-3.0-or-later |
5 -- License-Filename: LICENSES/AGPL-3.0.txt | 5 -- License-Filename: LICENSES/AGPL-3.0.txt |
6 | 6 |
7 -- Copyright (C) 2018 by via donau | 7 -- Copyright (C) 2018, 2019 by via donau |
8 -- – Österreichische Wasserstraßen-Gesellschaft mbH | 8 -- – Österreichische Wasserstraßen-Gesellschaft mbH |
9 -- Software engineering by Intevation GmbH | 9 -- Software engineering by Intevation GmbH |
10 | 10 |
11 -- Author(s): | 11 -- Author(s): |
12 -- * Tom Gottried <tom@intevation.de> | 12 -- * Tom Gottried <tom@intevation.de> |
100 'bottlenecks', | 100 'bottlenecks', |
101 'sounding_results'] | 101 'sounding_results'] |
102 LOOP | 102 LOOP |
103 EXECUTE format('CREATE POLICY hide_staging ON waterway.%I ' | 103 EXECUTE format('CREATE POLICY hide_staging ON waterway.%I ' |
104 'FOR SELECT TO waterway_user USING (staging_done)', the_table); | 104 'FOR SELECT TO waterway_user USING (staging_done)', the_table); |
105 EXECUTE format('CREATE POLICY sys_admin ON waterway.%I ' | |
106 'FOR ALL TO sys_admin USING (true)', the_table); | |
105 EXECUTE format('ALTER TABLE waterway.%I ENABLE ROW LEVEL SECURITY', | 107 EXECUTE format('ALTER TABLE waterway.%I ENABLE ROW LEVEL SECURITY', |
106 the_table); | 108 the_table); |
107 END LOOP; | 109 END LOOP; |
108 END; | 110 END; |
109 $$; | 111 $$; |
137 FOR ALL TO waterway_admin | 139 FOR ALL TO waterway_admin |
138 USING ((location).country_code = (SELECT country FROM users.list_users WHERE username = current_user)); | 140 USING ((location).country_code = (SELECT country FROM users.list_users WHERE username = current_user)); |
139 | 141 |
140 CREATE POLICY responsibility_area ON waterway.bottlenecks | 142 CREATE POLICY responsibility_area ON waterway.bottlenecks |
141 FOR ALL TO waterway_admin | 143 FOR ALL TO waterway_admin |
142 USING (utm_covers(area)); | 144 USING (users.utm_covers(area)); |
143 | 145 |
144 CREATE POLICY responsibility_area ON waterway.sounding_results | 146 CREATE POLICY responsibility_area ON waterway.sounding_results |
145 FOR ALL TO waterway_admin | 147 FOR ALL TO waterway_admin |
146 USING (utm_covers(area)); | 148 USING (users.utm_covers(area)); |
147 | 149 |
148 CREATE POLICY responsibility_area ON waterway.fairway_dimensions | 150 CREATE POLICY responsibility_area ON waterway.fairway_dimensions |
149 FOR ALL TO waterway_admin | 151 FOR ALL TO waterway_admin |
150 USING (utm_covers(area)); | 152 USING (users.utm_covers(area)); |
151 | |
152 CREATE POLICY sys_admin ON waterway.stretches | |
153 FOR ALL TO sys_admin | |
154 USING (true); | |
155 | 153 |
156 -- | 154 -- |
157 -- RLS policies for imports and import config | 155 -- RLS policies for imports and import config |
158 -- | 156 -- |
159 | 157 |