Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(meta): introduce user service in meta, to support user and privilege management #2745

Merged
merged 11 commits into from
May 30, 2022
Merged

feat(meta): introduce user service in meta, to support user and privilege management #2745

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
0b07247
feat: intruduce user service in meta
yezizp2012 May 23, 2022
004e40e
update comment
yezizp2012 May 23, 2022
19d4808
fmt
yezizp2012 May 23, 2022
c3b4402
Merge branch 'main' into feat/user-privilege-service
yezizp2012 May 25, 2022
0e3b6ec
Merge branch 'main' into feat/user-privilege-service
yezizp2012 May 25, 2022
1fd7792
cfg converage
yezizp2012 May 25, 2022
b047308
Merge branch 'main' into feat/user-privilege-service
yezizp2012 May 25, 2022
5eda280
add some unitest
yezizp2012 May 25, 2022
4c0c6e7
Merge branch 'main' into feat/user-privilege-service
yezizp2012 May 25, 2022
61a4d3b
fmt
yezizp2012 May 26, 2022
c7e732d
Merge branch 'main' into feat/user-privilege-service
yezizp2012 May 26, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
53 changes: 35 additions & 18 deletions proto/user.proto
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,15 +20,14 @@ message AuthInfo {

/// User defines a user in the system.
message UserInfo {
uint32 id = 1;
string name = 2;
bool is_supper = 3;
bool can_create_db = 4;
bool can_login = 5;
AuthInfo auth_info = 6;
string name = 1;
yezizp2012 marked this conversation as resolved.
Show resolved Hide resolved
bool is_supper = 2;
bool can_create_db = 3;
bool can_login = 4;
AuthInfo auth_info = 5;

/// Granted privileges will be only updated through the command of GRANT/REVOKE.
repeated GrantPrivilege privileges = 7;
repeated GrantPrivilege grant_privileges = 6;
}

/// GrantPrivilege defines a privilege granted to a user.
Expand All @@ -48,12 +47,23 @@ message GrantPrivilege {
uint32 table_id = 3;
}

message GrantSource {
uint32 database_id = 1;
uint32 schema_id = 2;
uint32 source_id = 3;
}

/// To support grant privilege on ALL TABLES IN SCHEMA schema_name.
message GrantAllTables {
uint32 database_id = 1;
uint32 schema_id = 2;
}

message GrantAllSources {
uint32 database_id = 1;
uint32 schema_id = 2;
}

enum Privilege {
UNKNOWN = 0;
SELECT = 1;
Expand All @@ -62,16 +72,22 @@ message GrantPrivilege {
DELETE = 4;
CREATE = 5;
CONNECT = 6;
ALL = 20;
}

message PrivilegeWithGrantOption {
Privilege privilege = 1;
bool with_grant_option = 2;
}

oneof target {
GrantDatabase grant_database = 1;
GrantSchema grant_schema = 2;
GrantTable grant_table = 3;
GrantAllTables grant_all_tables = 4;
GrantSource grant_source = 4;
GrantAllTables grant_all_tables = 5;
GrantAllSources grant_all_sources = 6;
}
repeated Privilege privileges = 5;
bool with_grant_option = 6;
repeated PrivilegeWithGrantOption privilege_with_opts = 7;
}

message CreateUserRequest {
Expand All @@ -80,12 +96,11 @@ message CreateUserRequest {

message CreateUserResponse {
common.Status status = 1;
uint32 user_id = 2;
uint64 version = 3;
uint64 version = 2;
}

message DropUserRequest {
uint32 user_id = 1;
string name = 1;
}

message DropUserResponse {
Expand All @@ -94,8 +109,9 @@ message DropUserResponse {
}

message GrantPrivilegeRequest {
uint32 user_id = 1;
GrantPrivilege privilege = 2;
string user_name = 1;
repeated GrantPrivilege privileges = 2;
bool with_grant_option = 3;
}

message GrantPrivilegeResponse {
Expand All @@ -104,8 +120,9 @@ message GrantPrivilegeResponse {
}

message RevokePrivilegeRequest {
uint32 user_id = 1;
GrantPrivilege privilege = 2;
string user_name = 1;
repeated GrantPrivilege privileges = 2;
bool revoke_grant_option = 3;
}

message RevokePrivilegeResponse {
Expand Down
3 changes: 3 additions & 0 deletions src/common/src/catalog/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,9 @@ pub use schema::{test_utils as schema_test_utils, Field, Schema};
pub const DEFAULT_DATABASE_NAME: &str = "dev";
pub const DEFAULT_SCHEMA_NAME: &str = "dev";

pub const DEFAULT_SUPPER_USER: &str = "risingwave";
pub const DEFAULT_SUPPER_USER_PASSWORD: &str = "risingwave";

pub type CatalogVersion = u64;

pub enum CatalogId {
Expand Down
28 changes: 28 additions & 0 deletions src/meta/src/manager/catalog.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -570,6 +570,34 @@ where
))),
}
}

pub async fn list_tables(
&self,
database_id: DatabaseId,
schema_id: SchemaId,
) -> Result<Vec<TableId>> {
let core = self.core.lock().await;
let tables = Table::list(core.env.meta_store()).await?;
Ok(tables
.iter()
.filter(|t| t.database_id == database_id && t.schema_id == schema_id)
.map(|t| t.id)
.collect())
}

pub async fn list_sources(
&self,
database_id: DatabaseId,
schema_id: SchemaId,
) -> Result<Vec<SourceId>> {
let core = self.core.lock().await;
let sources = Source::list(core.env.meta_store()).await?;
Ok(sources
.iter()
.filter(|s| s.database_id == database_id && s.schema_id == schema_id)
.map(|s| s.id)
.collect())
}
}

type DatabaseKey = String;
Expand Down
2 changes: 2 additions & 0 deletions src/meta/src/manager/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,9 +17,11 @@ mod env;
mod hash_mapping;
mod id;
mod notification;
mod user;

pub use catalog::*;
pub use env::*;
pub use hash_mapping::*;
pub use id::*;
pub use notification::*;
pub use user::*;
Loading