CartoDB-SQL-API-1.47.2/app/services/pg-entities-access-validator.js

const FORBIDDEN_ENTITIES = {
    carto: ['*'],
    cartodb: [
        'cdb_analysis_catalog',
        'cdb_conf',
        'cdb_tablemetadata'
    ],
    pg_catalog: ['*'],
    information_schema: ['*'],
    public: ['spatial_ref_sys'],
    topology: [
        'layer',
        'topology'
    ]
};

const Validator = {
    validate(affectedTables, authenticated) {
        let hardValidationResult = true;
        let softValidationResult = true;

        if (!!affectedTables && affectedTables.tables) {
            if (global.settings.validatePGEntitiesAccess) {
                hardValidationResult = this.hardValidation(affectedTables.tables);
            }

            if (!authenticated) {
                softValidationResult = this.softValidation(affectedTables.tables);
            }
        }

        return hardValidationResult && softValidationResult;
    },

    hardValidation(tables) {
        for (let table of tables) {
            if (FORBIDDEN_ENTITIES[table.schema_name] && FORBIDDEN_ENTITIES[table.schema_name].length &&
                (
                    FORBIDDEN_ENTITIES[table.schema_name][0] === '*' ||
                    FORBIDDEN_ENTITIES[table.schema_name].includes(table.table_name)
                )
            ) {
                return false;
            }
        }

        return true;
    },

    softValidation(tables) {
        for (let table of tables) {
            if (table.table_name.match(/\bpg_/)) {
                return false;
            }
        }

        return true;
    }
}; 

module.exports = Validator;
first commit 2023-05-07 23:04:18 +08:00			`const FORBIDDEN_ENTITIES = {`
			`carto: ['*'],`
			`cartodb: [`
			`'cdb_analysis_catalog',`
			`'cdb_conf',`
			`'cdb_tablemetadata'`
			`],`
			`pg_catalog: ['*'],`
			`information_schema: ['*'],`
			`public: ['spatial_ref_sys'],`
			`topology: [`
			`'layer',`
			`'topology'`
			`]`
			`};`

			`const Validator = {`
			`validate(affectedTables, authenticated) {`
			`let hardValidationResult = true;`
			`let softValidationResult = true;`

			`if (!!affectedTables && affectedTables.tables) {`
			`if (global.settings.validatePGEntitiesAccess) {`
			`hardValidationResult = this.hardValidation(affectedTables.tables);`
			`}`

			`if (!authenticated) {`
			`softValidationResult = this.softValidation(affectedTables.tables);`
			`}`
			`}`

			`return hardValidationResult && softValidationResult;`
			`},`

			`hardValidation(tables) {`
			`for (let table of tables) {`
			`if (FORBIDDEN_ENTITIES[table.schema_name] && FORBIDDEN_ENTITIES[table.schema_name].length &&`
			`(`
			`FORBIDDEN_ENTITIES[table.schema_name][0] === '*' \|\|`
			`FORBIDDEN_ENTITIES[table.schema_name].includes(table.table_name)`
			`)`
			`) {`
			`return false;`
			`}`
			`}`

			`return true;`
			`},`

			`softValidation(tables) {`
			`for (let table of tables) {`
			`if (table.table_name.match(/\bpg_/)) {`
			`return false;`
			`}`
			`}`

			`return true;`
			`}`
			`};`

			`module.exports = Validator;`