Mercurial > gemma
view schema/countries.sql @ 5025:4c658a8f34da
Fix row level security policies for waterway admin
Since 'staging_done OR' was added to the conditions to improve
performance for read access, it was also allowed to delete and partly
update entries with staging_done set to true but otherwise being
outside the country of the respective waterway admin. Using an extra
policy for each command and using the 'staging_done OR' tweak only
FOR SELECT should fix authorization while keeping performance.
author | Tom Gottfried <tom@intevation.de> |
---|---|
date | Wed, 18 Mar 2020 12:16:42 +0100 |
parents | 5e38667f740c |
children |
line wrap: on
line source
-- This is Free Software under GNU Affero General Public License v >= 3.0 -- without warranty, see README.md and license for details. -- SPDX-License-Identifier: AGPL-3.0-or-later -- License-Filename: LICENSES/AGPL-3.0.txt -- Copyright (C) 2018, 2019 by via donau -- – Österreichische Wasserstraßen-Gesellschaft mbH -- Software engineering by Intevation GmbH -- Author(s): -- * Sascha Wilde <sascha.wilde@intevation.de> -- * Tom Gottfried <tom@intevation.de> -- Setup Country Codes COPY countries (country_code) FROM stdin; AT BG HR HU RO RS SK \.