e247fda694
Superuser functions were overriding their user/org parameters with the values from the database/role, so the user was incorrect.
36 lines
1.4 KiB
Plaintext
36 lines
1.4 KiB
Plaintext
--
|
|
-- Exception-safe private DataServices API function
|
|
--
|
|
|
|
CREATE OR REPLACE FUNCTION <%= DATASERVICES_CLIENT_SCHEMA %>._<%= name %>_exception_safe (<%= params_with_type_and_default.join(' ,') %>)
|
|
RETURNS <%= return_type %> AS $$
|
|
DECLARE
|
|
<%= return_declaration %>
|
|
<%= user_org_declaration %>
|
|
_returned_sqlstate TEXT;
|
|
_message_text TEXT;
|
|
_pg_exception_context TEXT;
|
|
BEGIN
|
|
IF session_user = 'publicuser' OR session_user ~ 'cartodb_publicuser_*' THEN
|
|
RAISE EXCEPTION 'The api_key must be provided';
|
|
END IF;
|
|
<% unless superuser_function? -%>SELECT u, o INTO username, orgname FROM <%= DATASERVICES_CLIENT_SCHEMA %>._cdb_entity_config() AS (u text, o text);<% end %>
|
|
-- JSON value stored "" is taken as literal
|
|
IF username IS NULL OR username = '' OR username = '""' THEN
|
|
RAISE EXCEPTION 'Username is a mandatory argument, check it out';
|
|
END IF;
|
|
|
|
|
|
BEGIN
|
|
<% return_statement do %><%= DATASERVICES_CLIENT_SCHEMA %>._<%= name %>(<%= params(_with_user_org=true).join(', ') %>)<% end %>
|
|
EXCEPTION
|
|
WHEN OTHERS THEN
|
|
GET STACKED DIAGNOSTICS _returned_sqlstate = RETURNED_SQLSTATE,
|
|
_message_text = MESSAGE_TEXT,
|
|
_pg_exception_context = PG_EXCEPTION_CONTEXT;
|
|
RAISE WARNING USING ERRCODE = _returned_sqlstate, MESSAGE = _message_text, DETAIL = _pg_exception_context;
|
|
<%= return_statement %>
|
|
END;
|
|
END;
|
|
$$ LANGUAGE 'plpgsql' SECURITY DEFINER;
|