Moduletrace/dsql-admin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
9686a22c96
dsql-admin/dsql-app/shell/mariadb-users/handleGrants.js

182 lines
6.3 KiB
JavaScript
Raw Normal View History

First Commit
2024-11-05 11:12:42 +00:00
// @ts-check
////////////////////////////////////////
////////////////////////////////////////
////////////////////////////////////////
// require("dotenv").config({ path: "../../.env" });
const noDatabaseDbHandler = require("../utils/noDatabaseDbHandler");
const dbHandler = require("../utils/dbHandler");
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/**
* @typedef {object} GrantType
* @property {string} database - Database Name
* @property {string} table - Table Name
* @property {string[]} privileges - Privileges
*/
// const mariadbUserFlagIndex = process.argv.findIndex((arg) => arg == "--user");
// const mariadbUser =
// mariadbUserFlagIndex > 0 ? process.argv[mariadbUserFlagIndex + 1] : null;
// //////////////////////////////////////////////
// //////////////////////////////////////////////
// const mariadbUserHostFlagIndex = process.argv.findIndex(
// (arg) => arg == "--host"
// );
// const mariadbUserHost =
// mariadbUserHostFlagIndex > 0
// ? process.argv[mariadbUserHostFlagIndex + 1]
// : null;
// //////////////////////////////////////////////
// //////////////////////////////////////////////
// const newGrantsJSONFlagIndex = process.argv.findIndex(
// (arg) => arg == "--grants"
// );
// const newGrantsJSON =
// newGrantsJSONFlagIndex > 0
// ? process.argv[newGrantsJSONFlagIndex + 1]
// : null;
// //////////////////////////////////////////////
// //////////////////////////////////////////////
// if (!mariadbUser) {
// console.log(`No user provided. \x1b[35m\`--user\`\x1b[0m flag is required`);
// process.exit();
// }
// if (!mariadbUserHost) {
// console.log(`No Host provided. \x1b[35m\`--host\`\x1b[0m flag is required`);
// process.exit();
// }
// if (!newGrantsJSON) {
// console.log(
// `No grants JSON provided. \x1b[35m\`--grants\`\x1b[0m flag is required, and it must be a JSON string`
// );
// process.exit();
// }
//////////////////////////////////////////////
//////////////////////////////////////////////
/**
* Handle Grants for Users
* ==============================================================================
* @param {object} params - Single object params
* @param {string} params.username - Username
* @param {string} params.host - Host
* @param {GrantType[]} params.grants - Grants
Updates
2024-11-06 09:37:01 +00:00
* @param {string} params.userId
First Commit
2024-11-05 11:12:42 +00:00
*
* @returns {Promise<boolean>} success
*/
Updates
2024-11-06 09:37:01 +00:00
async function handleGrants({ username, host, grants, userId }) {
First Commit
2024-11-05 11:12:42 +00:00
let success = false;
console.log(`Handling Grants for User =>`, username, host);
if (!username) {
console.log(`No username provided.`);
return success;
}
if (!host) {
console.log(
`No Host provided. \x1b[35m\`--host\`\x1b[0m flag is required`
);
return success;
}
if (!grants) {
console.log(`No grants Array provided.`);
return success;
}
try {
const existingUser = await noDatabaseDbHandler(
`SELECT * FROM mysql.user WHERE User = '${username}' AND Host = '${host}'`
);
const isUserExisting = Boolean(existingUser?.[0]?.User);
if (isUserExisting) {
const userGrants = await noDatabaseDbHandler(
`SHOW GRANTS FOR '${username}'@'${host}'`
);
for (let i = 0; i < userGrants.length; i++) {
const grantObject = userGrants[i];
const grant = grantObject?.[Object.keys(grantObject)[0]];
if (grant?.match(/GRANT .* PRIVILEGES ON .* TO/)) {
const revokeGrantText = grant
.replace(/GRANT/, "REVOKE")
.replace(/ TO /, " FROM ");
const revokePrivilege = await noDatabaseDbHandler(
revokeGrantText
);
}
}
/**
* @type {GrantType[]}
*/
const grantsArray = grants;
for (let i = 0; i < grantsArray.length; i++) {
const grantObject = grantsArray[i];
const { database, table, privileges } = grantObject;
const tableText = table == "*" ? "*" : `\`${table}\``;
Updates
2024-11-06 09:37:01 +00:00
const databaseText =
database == "*"
? `\`${process.env.DSQL_USER_DB_PREFIX}${userId}_%\``
: `\`${database}\``;
First Commit
2024-11-05 11:12:42 +00:00
const privilegesText = privileges.includes("ALL")
? "ALL PRIVILEGES"
: privileges.join(", ");
const grantText = `GRANT ${privilegesText} ON ${databaseText}.${tableText} TO '${username}'@'${host}'`;
const grantPriviledge = await noDatabaseDbHandler(grantText);
}
}
success = true;
//////////////////////////////////////////////
//////////////////////////////////////////////
//////////////////////////////////////////////
} catch (/** @type {any} */ error) {
console.log(`Error in adding SQL user =>`, error.message);
}
return success;
////////////////////////////////////////
////////////////////////////////////////
////////////////////////////////////////
}
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
/** ****************************************************************************** */
module.exports = handleGrants;
Reference in New Issue Copy Permalink