/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ /* * This file is part of the LibreOffice project. * * This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. * * This file incorporates work covered by the following license notice: * * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements. See the NOTICE file distributed * with this work for additional information regarding copyright * ownership. The ASF licenses this file to you under the Apache * License, Version 2.0 (the "License"); you may not use this file * except in compliance with the License. You may obtain a copy of * the License at http://www.apache.org/licenses/LICENSE-2.0 . */ #include #include #include #include #include #include #include #include #include #include using namespace connectivity; using namespace connectivity::mysql; using namespace ::com::sun::star::uno; using namespace ::com::sun::star::beans; using namespace ::com::sun::star::sdbcx; using namespace ::com::sun::star::sdbc; using namespace ::com::sun::star::container; using namespace ::com::sun::star::lang; OMySQLUser::OMySQLUser(const css::uno::Reference& _xConnection) : connectivity::sdbcx::OUser(true) , m_xConnection(_xConnection) { construct(); } OMySQLUser::OMySQLUser(const css::uno::Reference& _xConnection, const OUString& Name) : connectivity::sdbcx::OUser(Name, true) , m_xConnection(_xConnection) { construct(); } void OMySQLUser::refreshGroups() {} OUserExtend::OUserExtend(const css::uno::Reference& _xConnection) : OMySQLUser(_xConnection) { construct(); } void OUserExtend::construct() { registerProperty(OMetaConnection::getPropMap().getNameByIndex(PROPERTY_ID_PASSWORD), PROPERTY_ID_PASSWORD, 0, &m_Password, ::cppu::UnoType::get()); } cppu::IPropertyArrayHelper* OUserExtend::createArrayHelper() const { Sequence aProps; describeProperties(aProps); return new cppu::OPropertyArrayHelper(aProps); } cppu::IPropertyArrayHelper& OUserExtend::getInfoHelper() { return *OUserExtend_PROP::getArrayHelper(); } typedef connectivity::sdbcx::OUser_BASE OUser_BASE_RBHELPER; sal_Int32 SAL_CALL OMySQLUser::getPrivileges(const OUString& objName, sal_Int32 objType) { ::osl::MutexGuard aGuard(m_aMutex); checkDisposed(OUser_BASE_RBHELPER::rBHelper.bDisposed); sal_Int32 nRights, nRightsWithGrant; findPrivilegesAndGrantPrivileges(objName, objType, nRights, nRightsWithGrant); return nRights; } void OMySQLUser::findPrivilegesAndGrantPrivileges(const OUString& objName, sal_Int32 objType, sal_Int32& nRights, sal_Int32& nRightsWithGrant) { nRightsWithGrant = nRights = 0; // first we need to create the sql stmt to select the privs Reference xMeta = m_xConnection->getMetaData(); OUString sCatalog, sSchema, sTable; ::dbtools::qualifiedNameComponents(xMeta, objName, sCatalog, sSchema, sTable, ::dbtools::EComposeRule::InDataManipulation); Reference xRes; switch (objType) { case PrivilegeObject::TABLE: case PrivilegeObject::VIEW: { Any aCatalog; if (!sCatalog.isEmpty()) aCatalog <<= sCatalog; xRes = xMeta->getTablePrivileges(aCatalog, sSchema, sTable); } break; case PrivilegeObject::COLUMN: { Any aCatalog; if (!sCatalog.isEmpty()) aCatalog <<= sCatalog; xRes = xMeta->getColumnPrivileges(aCatalog, sSchema, sTable, "%"); } break; } if (xRes.is()) { static const char sYes[] = "YES"; nRightsWithGrant = nRights = 0; Reference xCurrentRow(xRes, UNO_QUERY); while (xCurrentRow.is() && xRes->next()) { OUString sGrantee = xCurrentRow->getString(5); OUString sPrivilege = xCurrentRow->getString(6); OUString sGrantable = xCurrentRow->getString(7); if (!m_Name.equalsIgnoreAsciiCase(sGrantee)) continue; if (sPrivilege.equalsIgnoreAsciiCase("SELECT")) { nRights |= Privilege::SELECT; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::SELECT; } else if (sPrivilege.equalsIgnoreAsciiCase("INSERT")) { nRights |= Privilege::INSERT; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::INSERT; } else if (sPrivilege.equalsIgnoreAsciiCase("UPDATE")) { nRights |= Privilege::UPDATE; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::UPDATE; } else if (sPrivilege.equalsIgnoreAsciiCase("DELETE")) { nRights |= Privilege::DELETE; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::DELETE; } else if (sPrivilege.equalsIgnoreAsciiCase("READ")) { nRights |= Privilege::READ; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::READ; } else if (sPrivilege.equalsIgnoreAsciiCase("CREATE")) { nRights |= Privilege::CREATE; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::CREATE; } else if (sPrivilege.equalsIgnoreAsciiCase("ALTER")) { nRights |= Privilege::ALTER; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::ALTER; } else if (sPrivilege.equalsIgnoreAsciiCase("REFERENCES")) { nRights |= Privilege::REFERENCE; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::REFERENCE; } else if (sPrivilege.equalsIgnoreAsciiCase("DROP")) { nRights |= Privilege::DROP; if (sGrantable.equalsIgnoreAsciiCase(sYes)) nRightsWithGrant |= Privilege::DROP; } } ::comphelper::disposeComponent(xRes); } } sal_Int32 SAL_CALL OMySQLUser::getGrantablePrivileges(const OUString& objName, sal_Int32 objType) { ::osl::MutexGuard aGuard(m_aMutex); checkDisposed(OUser_BASE_RBHELPER::rBHelper.bDisposed); sal_Int32 nRights, nRightsWithGrant; findPrivilegesAndGrantPrivileges(objName, objType, nRights, nRightsWithGrant); return nRightsWithGrant; } void SAL_CALL OMySQLUser::grantPrivileges(const OUString& objName, sal_Int32 objType, sal_Int32 objPrivileges) { if (objType != PrivilegeObject::TABLE) { ::connectivity::SharedResources aResources; const OUString sError(aResources.getResourceString(STR_PRIVILEGE_NOT_GRANTED)); ::dbtools::throwGenericSQLException(sError, *this); } // if ( objType != PrivilegeObject::TABLE ) ::osl::MutexGuard aGuard(m_aMutex); OUString sPrivs = getPrivilegeString(objPrivileges); if (!sPrivs.isEmpty()) { Reference xMeta = m_xConnection->getMetaData(); OUString sGrant = "GRANT " + sPrivs + " ON " + ::dbtools::quoteTableName(xMeta, objName, ::dbtools::EComposeRule::InDataManipulation) + " TO " + m_Name; Reference xStmt = m_xConnection->createStatement(); if (xStmt.is()) xStmt->execute(sGrant); ::comphelper::disposeComponent(xStmt); } } void SAL_CALL OMySQLUser::revokePrivileges(const OUString& objName, sal_Int32 objType, sal_Int32 objPrivileges) { if (objType != PrivilegeObject::TABLE) { ::connectivity::SharedResources aResources; const OUString sError(aResources.getResourceString(STR_PRIVILEGE_NOT_REVOKED)); ::dbtools::throwGenericSQLException(sError, *this); } ::osl::MutexGuard aGuard(m_aMutex); checkDisposed(OUser_BASE_RBHELPER::rBHelper.bDisposed); OUString sPrivs = getPrivilegeString(objPrivileges); if (!sPrivs.isEmpty()) { Reference xMeta = m_xConnection->getMetaData(); OUString sGrant = "REVOKE " + sPrivs + " ON " + ::dbtools::quoteTableName(xMeta, objName, ::dbtools::EComposeRule::InDataManipulation) + " FROM " + m_Name; Reference xStmt = m_xConnection->createStatement(); if (xStmt.is()) xStmt->execute(sGrant); ::comphelper::disposeComponent(xStmt); } } // XUser void SAL_CALL OMySQLUser::changePassword(const OUString& /*oldPassword*/, const OUString& newPassword) { ::osl::MutexGuard aGuard(m_aMutex); checkDisposed(OUser_BASE_RBHELPER::rBHelper.bDisposed); OUString sAlterPwd = "SET PASSWORD FOR " + m_Name + "@\"%\" = PASSWORD('" + newPassword + "')"; Reference xStmt = m_xConnection->createStatement(); if (xStmt.is()) { xStmt->execute(sAlterPwd); ::comphelper::disposeComponent(xStmt); } } OUString OMySQLUser::getPrivilegeString(sal_Int32 nRights) { OUString sPrivs; if ((nRights & Privilege::INSERT) == Privilege::INSERT) sPrivs += "INSERT"; if ((nRights & Privilege::DELETE) == Privilege::DELETE) { if (!sPrivs.isEmpty()) sPrivs += ","; sPrivs += "DELETE"; } if ((nRights & Privilege::UPDATE) == Privilege::UPDATE) { if (!sPrivs.isEmpty()) sPrivs += ","; sPrivs += "UPDATE"; } if ((nRights & Privilege::ALTER) == Privilege::ALTER) { if (!sPrivs.isEmpty()) sPrivs += ","; sPrivs += "ALTER"; } if ((nRights & Privilege::SELECT) == Privilege::SELECT) { if (!sPrivs.isEmpty()) sPrivs += ","; sPrivs += "SELECT"; } if ((nRights & Privilege::REFERENCE) == Privilege::REFERENCE) { if (!sPrivs.isEmpty()) sPrivs += ","; sPrivs += "REFERENCES"; } return sPrivs; } /* vim:set shiftwidth=4 softtabstop=4 expandtab: */