cartodb-postgresql/scripts-available/CDB_Groups_API.sql

----------------------------------
-- GROUP METADATA API FUNCTIONS
--
-- Meant to be used by CDB_Group_* functions to sync data with the editor.
-- Requires configuration parameter. Example: SELECT @extschema@.CDB_Conf_SetConf('groups_api', '{ "host": "127.0.0.1", "port": 3000, "timeout": 10, "username": "extension", "password": "elephant" }');
----------------------------------

DROP FUNCTION IF EXISTS @extschema@.CDB_Group_AddMember(group_name text, username text);
DROP FUNCTION IF EXISTS @extschema@.CDB_Group_RemoveMember(group_name text, username text);
DROP FUNCTION IF EXISTS @extschema@._CDB_Group_AddMember_API(group_name text, username text);
DROP FUNCTION IF EXISTS @extschema@._CDB_Group_RemoveMember_API(group_name text, username text);

-- Sends the create group request
CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_CreateGroup_API(group_name text, group_role text)
    RETURNS VOID AS
$$
    import string

    url = '/api/v1/databases/{0}/groups'
    body = '{ "name": "%s", "database_role": "%s" }' % (group_name, group_role)
    query = "select @extschema@._CDB_Group_API_Request('POST', '%s', '%s', '{200, 409}') as response_status" % (url, body)
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_DropGroup_API(group_name text)
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s' % (pathname2url(group_name))

    query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '', '{204, 404}') as response_status" % url
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_RenameGroup_API(old_group_name text, new_group_name text, new_group_role text)
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s' % (pathname2url(old_group_name))
    body = '{ "name": "%s", "database_role": "%s" }' % (new_group_name, new_group_role)
    query = "select @extschema@._CDB_Group_API_Request('PUT', '%s', '%s', '{200, 409}') as response_status" % (url, body)
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_AddUsers_API(group_name text, usernames text[])
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s/users' % (pathname2url(group_name))
    body = "{ \"users\": [\"%s\"] }" % "\",\"".join(usernames)
    query = "select @extschema@._CDB_Group_API_Request('POST', '%s', '%s', '{200, 409}') as response_status" % (url, body)
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_RemoveUsers_API(group_name text, usernames text[])
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s/users' % (pathname2url(group_name))
    body = "{ \"users\": [\"%s\"] }" % "\",\"".join(usernames)
    query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '%s', '{200, 404}') as response_status" % (url, body)
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

DO LANGUAGE 'plpgsql' $$
BEGIN
    -- Needed for dropping type
    DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();
    DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;
END
$$;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_Table_GrantPermission_API(group_name text, username text, table_name text, access text)
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s/permission/%s/tables/%s' % (pathname2url(group_name), username, table_name)
    body = '{ "access": "%s" }' % access
    query = "select @extschema@._CDB_Group_API_Request('PUT', '%s', '%s', '{200, 409}') as response_status" % (url, body)
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

DO LANGUAGE 'plpgsql' $$
BEGIN
    -- Needed for dropping type
    DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();
    DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;
END
$$;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_Table_RevokeAllPermission_API(group_name text, username text, table_name text)
    RETURNS VOID AS
$$
    import string
    try:
        from urllib import pathname2url
    except:
        from urllib.request import pathname2url

    url = '/api/v1/databases/{0}/groups/%s/permission/%s/tables/%s' % (pathname2url(group_name), username, table_name)
    query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '', '{200, 404}') as response_status" % url
    plpy.execute(query)
$$  LANGUAGE '@@plpythonu@@'
    VOLATILE
    PARALLEL UNSAFE
    SECURITY DEFINER
    SET search_path = pg_temp;

DO LANGUAGE 'plpgsql' $$
BEGIN
    -- Needed for dropping type
    DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();
    DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;
END
$$;

CREATE TYPE @extschema@._CDB_Group_API_Params AS (
    host text,
    port int,
    timeout int,
    auth text
);

-- This must be explicitally extracted because "composite types are currently not supported".
-- See http://www.postgresql.org/docs/9.3/static/plpython-database.html.
CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_API_Conf()
    RETURNS @extschema@._CDB_Group_API_Params AS
$$
    conf = plpy.execute("SELECT @extschema@.CDB_Conf_GetConf('groups_api') conf")[0]['conf']
    if conf is None:
      return None
    else:
      import json
      params = json.loads(conf)
      auth = 'Basic %s' % plpy.execute("SELECT @extschema@._CDB_Group_API_Auth('%s', '%s') as auth" % (params['username'], params['password']))[0]['auth']
      return { "host": params['host'], "port": params['port'], 'timeout': params['timeout'], 'auth': auth }
$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;

CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_API_Auth(username text, password text)
    RETURNS TEXT AS
$$
    import sys
    import base64

    data_to_encode = '%s:%s' % (username, password)
    if sys.version_info[0] < 3:
      data_encoded = base64.encodestring(data_to_encode)
    else:
      data_encoded = base64.b64encode(data_to_encode.encode()).decode()

    data_encoded = data_encoded.replace('\n', '')
    return data_encoded
$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;

-- url must contain a '%s' placeholder that will be replaced by current_database, for security reasons.
CREATE OR REPLACE
FUNCTION @extschema@._CDB_Group_API_Request(method text, url text, body text, valid_return_codes int[])
    RETURNS int AS
$$
    python_v2 = True
    try:
      import httplib as client
    except:
      from http import client
      python_v2 = False

    params = plpy.execute("select c.host, c.port, c.timeout, c.auth from @extschema@._CDB_Group_API_Conf() c;")[0]
    if params['host'] is None:
      return None

    headers = { 'Authorization': params['auth'], 'Content-Type': 'application/json', 'X-Forwarded-Proto': 'https' }

    retry = 3

    last_err = None
    while retry > 0:
      try:
        if python_v2:
          conn = SD['groups_api_client'] = client.HTTPConnection(params['host'], params['port'], False, params['timeout'])
        else:
          conn = SD['groups_api_client'] = client.HTTPConnection(params['host'], port=params['port'], timeout=params['timeout'])
        database_name = plpy.execute("select current_database();")[0]['current_database']
        conn.request(method, url.format(database_name), body, headers)
        response = conn.getresponse()
        assert response.status in valid_return_codes
        return response.status
      except Exception as err:
        retry -= 1
        last_err = err
        plpy.warning('Retrying after: ' + str(err))
        conn = SD['groups_api_client'] = None

    if last_err is not None:
      plpy.error('Fatal Group API error: ' + str(last_err))
      raise last_err

    return None
$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;
revoke all on function @extschema@._CDB_Group_API_Request(text, text, text, int[]) from public;
Documentation about roles and functions 2015-08-19 17:05:32 +08:00			`----------------------------------`
			`-- GROUP METADATA API FUNCTIONS`
			`--`
			`-- Meant to be used by CDB_Group_* functions to sync data with the editor.`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`-- Requires configuration parameter. Example: SELECT @extschema@.CDB_Conf_SetConf('groups_api', '{ "host": "127.0.0.1", "port": 3000, "timeout": 10, "username": "extension", "password": "elephant" }');`
Documentation about roles and functions 2015-08-19 17:05:32 +08:00			`----------------------------------`
Groups API configuration example 2015-08-14 20:03:53 +08:00
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`DROP FUNCTION IF EXISTS @extschema@.CDB_Group_AddMember(group_name text, username text);`
			`DROP FUNCTION IF EXISTS @extschema@.CDB_Group_RemoveMember(group_name text, username text);`
			`DROP FUNCTION IF EXISTS @extschema@._CDB_Group_AddMember_API(group_name text, username text);`
			`DROP FUNCTION IF EXISTS @extschema@._CDB_Group_RemoveMember_API(group_name text, username text);`
Old functions cleanup 2015-09-07 16:35:32 +08:00
CDB_CONF and create and drop group api calls 2015-08-14 19:55:52 +08:00			`-- Sends the create group request`
			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_CreateGroup_API(group_name text, group_role text)`
CDB_CONF and create and drop group api calls 2015-08-14 19:55:52 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`

Spaces support fixes #135 2015-09-04 02:41:19 +08:00			`url = '/api/v1/databases/{0}/groups'`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`body = '{ "name": "%s", "database_role": "%s" }' % (group_name, group_role)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('POST', '%s', '%s', '{200, 409}') as response_status" % (url, body)`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
CDB_CONF and create and drop group api calls 2015-08-14 19:55:52 +08:00
			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_DropGroup_API(group_name text)`
CDB_CONF and create and drop group api calls 2015-08-14 19:55:52 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
CDB_CONF and create and drop group api calls 2015-08-14 19:55:52 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s' % (pathname2url(group_name))`
Spaces support fixes #135 2015-09-04 02:41:19 +08:00
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '', '{204, 404}') as response_status" % url`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00
CDB_Group_RenameGroup_API 2015-08-17 19:37:34 +08:00			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_RenameGroup_API(old_group_name text, new_group_name text, new_group_role text)`
CDB_Group_RenameGroup_API 2015-08-17 19:37:34 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
CDB_Group_RenameGroup_API 2015-08-17 19:37:34 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s' % (pathname2url(old_group_name))`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`body = '{ "name": "%s", "database_role": "%s" }' % (new_group_name, new_group_role)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('PUT', '%s', '%s', '{200, 409}') as response_status" % (url, body)`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
CDB_Group_RenameGroup_API 2015-08-17 19:37:34 +08:00
_CDB_Group_AddMember_API 2015-08-17 21:05:09 +08:00			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_AddUsers_API(group_name text, usernames text[])`
_CDB_Group_AddMember_API 2015-08-17 21:05:09 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
_CDB_Group_AddMember_API 2015-08-17 21:05:09 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s/users' % (pathname2url(group_name))`
Array notation for batch group functions 2015-09-07 17:43:46 +08:00			`body = "{ \"users\": [\"%s\"] }" % "\",\"".join(usernames)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('POST', '%s', '%s', '{200, 409}') as response_status" % (url, body)`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
_CDB_Group_AddMember_API 2015-08-17 21:05:09 +08:00
_CDB_Group_RemoveMember_API 2015-08-17 21:20:15 +08:00			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_RemoveUsers_API(group_name text, usernames text[])`
_CDB_Group_RemoveMember_API 2015-08-17 21:20:15 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
_CDB_Group_RemoveMember_API 2015-08-17 21:20:15 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s/users' % (pathname2url(group_name))`
Array notation for batch group functions 2015-09-07 17:43:46 +08:00			`body = "{ \"users\": [\"%s\"] }" % "\",\"".join(usernames)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '%s', '{200, 404}') as response_status" % (url, body)`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
_CDB_Group_RemoveMember_API 2015-08-17 21:20:15 +08:00
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`DO LANGUAGE 'plpgsql' $$`
			`BEGIN`
Secured configuration access 2015-08-19 17:20:06 +08:00			`-- Needed for dropping type`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();`
			`DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`END`
			`$$;`

Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_Table_GrantPermission_API(group_name text, username text, table_name text, access text)`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s/permission/%s/tables/%s' % (pathname2url(group_name), username, table_name)`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`body = '{ "access": "%s" }' % access`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('PUT', '%s', '%s', '{200, 409}') as response_status" % (url, body)`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00
			`DO LANGUAGE 'plpgsql' $$`
			`BEGIN`
			`-- Needed for dropping type`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();`
			`DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`END`
			`$$;`

			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_Table_RevokeAllPermission_API(group_name text, username text, table_name text)`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`RETURNS VOID AS`
			`$$`
			`import string`
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`try:`
			`from urllib import pathname2url`
			`except:`
			`from urllib.request import pathname2url`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00
python3: Try to adapt pathname2url 2019-10-22 23:48:46 +08:00			`url = '/api/v1/databases/{0}/groups/%s/permission/%s/tables/%s' % (pathname2url(group_name), username, table_name)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`query = "select @extschema@._CDB_Group_API_Request('DELETE', '%s', '', '{200, 404}') as response_status" % url`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`plpy.execute(query)`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@'`
CDB_Groups_API: Secure search_path 2019-10-04 00:51:28 +08:00			`VOLATILE`
			`PARALLEL UNSAFE`
			`SECURITY DEFINER`
			`SET search_path = pg_temp;`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00
			`DO LANGUAGE 'plpgsql' $$`
			`BEGIN`
			`-- Needed for dropping type`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`DROP FUNCTION IF EXISTS @extschema@._CDB_Group_API_Conf();`
			`DROP TYPE IF EXISTS @extschema@._CDB_Group_API_Params;`
Grant and revoking permissions API sync 2015-08-20 00:43:25 +08:00			`END`
			`$$;`

Fully qualify function calls 2019-05-31 21:29:28 +08:00			`CREATE TYPE @extschema@._CDB_Group_API_Params AS (`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`host text,`
			`port int,`
			`timeout int,`
auth inside param reading 2015-08-17 18:26:38 +08:00			`auth text`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`);`

			`-- This must be explicitally extracted because "composite types are currently not supported".`
			`-- See http://www.postgresql.org/docs/9.3/static/plpython-database.html.`
			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_API_Conf()`
			`RETURNS @extschema@._CDB_Group_API_Params AS`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`$$`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`conf = plpy.execute("SELECT @extschema@.CDB_Conf_GetConf('groups_api') conf")[0]['conf']`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`if conf is None:`
			`return None`
			`else:`
			`import json`
			`params = json.loads(conf)`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`auth = 'Basic %s' % plpy.execute("SELECT @extschema@._CDB_Group_API_Auth('%s', '%s') as auth" % (params['username'], params['password']))[0]['auth']`
auth inside param reading 2015-08-17 18:26:38 +08:00			`return { "host": params['host'], "port": params['port'], 'timeout': params['timeout'], 'auth': auth }`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00
			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_API_Auth(username text, password text)`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`RETURNS TEXT AS`
			`$$`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00			`import sys`
Configuration parameters refactor 2015-08-17 17:49:31 +08:00			`import base64`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00
			`data_to_encode = '%s:%s' % (username, password)`
Remove comments to fix syntax errors 2020-02-12 02:31:37 +08:00			`if sys.version_info[0] < 3:`
Fix variable naming 2020-02-12 17:09:07 +08:00			`data_encoded = base64.encodestring(data_to_encode)`
Remove comments to fix syntax errors 2020-02-12 02:31:37 +08:00			`else:`
Fix variable naming 2020-02-12 17:09:07 +08:00			`data_encoded = base64.b64encode(data_to_encode.encode()).decode()`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00
			`data_encoded = data_encoded.replace('\n', '')`
			`return data_encoded`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00
Removed old code 2015-08-19 17:08:05 +08:00			`-- url must contain a '%s' placeholder that will be replaced by current_database, for security reasons.`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`CREATE OR REPLACE`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`FUNCTION @extschema@._CDB_Group_API_Request(method text, url text, body text, valid_return_codes int[])`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`RETURNS int AS`
			`$$`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00			`python_v2 = True`
Try to work with both python2 and python3 2019-10-22 22:49:08 +08:00			`try:`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00			`import httplib as client`
Try to work with both python2 and python3 2019-10-22 22:49:08 +08:00			`except:`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00			`from http import client`
Fix variable naming 2020-02-12 17:09:07 +08:00			`python_v2 = False`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`params = plpy.execute("select c.host, c.port, c.timeout, c.auth from @extschema@._CDB_Group_API_Conf() c;")[0]`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`if params['host'] is None:`
			`return None`

X-Forwarded-Proto 2015-09-22 01:01:40 +08:00			`headers = { 'Authorization': params['auth'], 'Content-Type': 'application/json', 'X-Forwarded-Proto': 'https' }`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00
			`retry = 3`

			`last_err = None`
			`while retry > 0:`
			`try:`
Make cartodb-postgresql python3 compatible - encoding string with python3 - adapt HTTPConnection signature to python3 2020-02-12 01:51:24 +08:00			`if python_v2:`
			`conn = SD['groups_api_client'] = client.HTTPConnection(params['host'], params['port'], False, params['timeout'])`
			`else:`
			`conn = SD['groups_api_client'] = client.HTTPConnection(params['host'], port=params['port'], timeout=params['timeout'])`
Don't allow users to pick database name, keeping group operations inside their org 2015-08-19 16:37:52 +08:00			`database_name = plpy.execute("select current_database();")[0]['current_database']`
Try to work with both python2 and python3 2019-10-22 22:49:08 +08:00			`conn.request(method, url.format(database_name), body, headers)`
			`response = conn.getresponse()`
valid_return_codes parameter 2015-08-18 17:53:38 +08:00			`assert response.status in valid_return_codes`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00			`return response.status`
			`except Exception as err:`
			`retry -= 1`
			`last_err = err`
			`plpy.warning('Retrying after: ' + str(err))`
Try to work with both python2 and python3 2019-10-22 22:49:08 +08:00			`conn = SD['groups_api_client'] = None`
_CDB_Group_API_Request refactor 2015-08-18 14:10:02 +08:00
			`if last_err is not None:`
			`plpy.error('Fatal Group API error: ' + str(last_err))`
			`raise last_err`
_CDB_Conf_Cache SD-based 2015-08-18 16:44:10 +08:00
			`return None`
Always use @@plpythonu@@ as variable 2019-12-27 00:48:12 +08:00			`$$ LANGUAGE '@@plpythonu@@' VOLATILE PARALLEL UNSAFE;`
Fully qualify function calls 2019-05-31 21:29:28 +08:00			`revoke all on function @extschema@._CDB_Group_API_Request(text, text, text, int[]) from public;`