Module: PgRls

Extended by:

Forwardable

Defined in:

lib/pg_rls/middleware/sidekiq/client.rb,
lib/pg_rls/tenant.rb,
lib/pg_rls/railtie.rb,
lib/pg_rls/version.rb,
lib/generators/pg_rls.rb,
lib/pg_rls/middleware.rb,
lib/pg_rls/multi_tenancy.rb,
lib/generators/pg_rls/base.rb,
lib/pg_rls/database/prepared.rb,
lib/pg_rls/schema/statements.rb,
lib/pg_rls/middleware/sidekiq.rb,
lib/pg_rls/schema/up_statements.rb,
lib/pg_rls/errors/rake_only_error.rb,
lib/pg_rls/schema/down_statements.rb,
lib/pg_rls/errors/tenant_not_found.rb,
lib/pg_rls/database/admin_statements.rb,
lib/pg_rls/middleware/sidekiq/server.rb,
lib/generators/pg_rls/pg_rls_generator.rb,
lib/generators/pg_rls/install_generator.rb,
lib/pg_rls/middleware/set_reset_connection.rb,
lib/pg_rls/middleware/set_reset_connection.rb,
lib/generators/pg_rls/active_record/active_record_generator.rb,
lib/pg_rls.rb

Overview

PostgreSQL Row Level Security

Defined Under Namespace

Modules: Admin, Base, Database, Errors, Generators, Middleware, MultiTenancy, Schema, Tenant Classes: Error, FrozenConfiguration, Railtie

Constant Summary

VERSION =

'0.1.4'

WRITER_METHODS =

%i[table_name class_name search_methods].freeze

READER_METHODS =

%i[connection_class execute table_name class_name search_methods].freeze

DELEGATORS_METHODS =

%i[connection_class execute table_name search_methods class_name main_model].freeze

@@table_name =

'companies'

@@class_name =

'Company'

@@username =

'app_user'

@@password =

'password'

@@test_inline_tenant =

false

@@search_methods =

%i[subdomain id tenant_id]

Class Method Summary

• .admin_connection? ⇒ Boolean
• .admin_execute(query = nil) ⇒ Object
• .as_db_admin? ⇒ Boolean
• .connection_class ⇒ Object
• .current_db_username ⇒ Object
• .establish_new_connection!(admin: false) ⇒ Object
• .execute_rls_in_shards ⇒ Object
• .main_model ⇒ Object
• .on_each_tenant ⇒ Object
• .session_key_prefix ⇒ Object
• .session_key_prefix=(val) ⇒ Object
• .session_prefix ⇒ Object
• .session_store_default_warden_key=(val) ⇒ Object
• .session_store_server=(opts = {}) ⇒ Object
• .sessions ⇒ Object
• .setup {|_self| ... } ⇒ Object

Class Method Details

.admin_connection? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/pg_rls.rb', line 103

def admin_connection?
  current_db_username != username
end

.admin_execute(query = nil) ⇒ Object

# File 'lib/pg_rls.rb', line 43

def admin_execute(query = nil, &)
  current_tenant, reset_rls_connection = establish_admin_connection
  execute_query_or_block(query, &)
ensure
  reset_connection_if_needed(current_tenant, reset_rls_connection)
end

.as_db_admin? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/pg_rls.rb', line 99

def as_db_admin?
  @as_db_admin || false
end

.connection_class ⇒ Object

# File 'lib/pg_rls.rb', line 39

def connection_class
  @connection_class ||= ActiveRecord::Base
end

.current_db_username ⇒ Object

# File 'lib/pg_rls.rb', line 95

def current_db_username
  ActiveRecord::Base.connection_db_config.configuration_hash[:username]
end

.establish_new_connection!(admin: false) ⇒ Object

# File 'lib/pg_rls.rb', line 50

def establish_new_connection!(admin: false)
  self.as_db_admin = admin

  execute_rls_in_shards do |connection_class, pool|
    connection_class.remove_connection
    connection_class.establish_connection(pool.db_config)
  end
end

.execute_rls_in_shards ⇒ Object

# File 'lib/pg_rls.rb', line 80

def execute_rls_in_shards
  connection_pool_list = PgRls.connection_class.connection_handler.connection_pool_list
  result = []

  connection_pool_list.each do |pool|
    pool.connection.transaction do
      Rails.logger.info("Executing in #{pool.connection.connection_class}")

      result << yield(pool.connection.connection_class, pool)
    end
  end

  result
end

.main_model ⇒ Object

# File 'lib/pg_rls.rb', line 59

def main_model
  class_name.to_s.camelize.constantize
end

.on_each_tenant ⇒ Object

# File 'lib/pg_rls.rb', line 63

def on_each_tenant(&)
  with_rls_connection do
    result = []

    main_model.find_each do |tenant|
      allowed_search_fields = search_methods.map(&:to_s).intersection(main_model.column_names)
      Tenant.switch tenant.send(allowed_search_fields.first)

      result << { tenant:, result: ensure_block_execution(tenant, &) }
    end

    PgRls::Tenant.reset_rls!

    result
  end
end

.session_key_prefix ⇒ Object

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 30

def self.session_key_prefix
  @session_key_prefix ||= @session_key_prefix || @session_store_server[:key_prefix]
end

.session_key_prefix=(val) ⇒ Object

Raises:

• (Errors::FrozenConfiguration)

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 34

def self.session_key_prefix=(val)
  raise Errors::FrozenConfiguration unless @sessions.nil?

  @session_key_prefix = val
end

.session_prefix ⇒ Object

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 10

def self.session_prefix
  @session_prefix ||= begin
    store_default_warden_key = @session_store_default_warden_key || '2'

    "#{session_key_prefix}:#{store_default_warden_key}::"
  end
end

.session_store_default_warden_key=(val) ⇒ Object

Raises:

• (Errors::FrozenConfiguration)

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 24

def self.session_store_default_warden_key=(val)
  raise Errors::FrozenConfiguration unless @sessions.nil?

  @session_store_default_warden_key = val
end

.session_store_server=(opts = {}) ⇒ Object

Raises:

• (Errors::FrozenConfiguration)

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 18

def self.session_store_server=(opts = {})
  raise Errors::FrozenConfiguration unless @sessions.nil?

  @session_store_server = opts.deep_symbolize_keys
end

.sessions ⇒ Object

# File 'lib/pg_rls/middleware/set_reset_connection.rb', line 6

def self.sessions
  @sessions ||= Redis.new(@session_store_server)
end

.setup {|_self| ... } ⇒ Object

Yields:

• (_self)

Yield Parameters:

• _self (PgRls) —

  the object that the method was called on

# File 'lib/pg_rls.rb', line 33

def setup
  ActiveRecord::Base.ignored_columns += %w[tenant_id]

  yield self
end