Mercurial > libervia-pubsub
view db/sat_pubsub_update_0_2.sql @ 349:20b82fb8de02
backend: check nodes/items permission on disco#items:
- move node access check workflow from getItemsData to a new checkNodeAccess method
- only accessible items are returned to an entity when doing a disco#items on a node
- for PEP, nodes with presence access model are not returned if entity has not presence subscription from the node owner
- all nodes are returned in normal pubsub service
- new NotLeafNodeError exception when an action need to be done on Leaf node and it is not the case
- /!\ access it not fully checked : items access models are not handled for items id in disco#items, and whitelist nodes are returned regardless if requestor is in the white list or not. Furthermore, publisher-roster access is not handled for nodes.
| author | Goffi <goffi@goffi.org> |
|---|---|
| date | Sun, 27 Aug 2017 20:33:39 +0200 |
| parents | 98409ef42c94 |
| children |
line wrap: on
line source
/* roster access model was badly used, we rename it to publisher-roster */ ALTER TABLE nodes DROP CONSTRAINT nodes_access_model_check; UPDATE nodes SET access_model = 'publisher-roster' WHERE access_model = 'roster'; ALTER TABLE nodes ADD CHECK (access_model IN ('open', 'publisher-roster', 'whitelist', 'publish-only', 'self-publisher')); ALTER TABLE items DROP CONSTRAINT items_access_model_check; UPDATE items SET access_model = 'publisher-roster' WHERE access_model = 'roster'; ALTER TABLE items ADD CHECK (access_model IN ('open', 'publisher-roster', 'whitelist')); ALTER TABLE affiliations DROP CONSTRAINT affiliations_affiliation_check; ALTER TABLE affiliations ADD CHECK (affiliation IN ('outcast', 'member', 'publisher', 'owner')); CREATE TABLE item_jids_authorized ( item_jids_authorized_id serial PRIMARY KEY, item_id integer NOT NULL references items ON DELETE CASCADE, jid text NOT NULL, UNIQUE (item_id,jid) ); CREATE TABLE item_languages ( item_languages_id serial PRIMARY KEY, item_id integer NOT NULL references items ON DELETE CASCADE, language text NOT NULL, UNIQUE (item_id,language) ); UPDATE metadata SET value='2' WHERE key='version';