zhouyuhuan
/
Cloudpods


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209
							// Copyright 2019 Yunion
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package models

import (
	"context"

	"yunion.io/x/cloudmux/pkg/cloudprovider"
	"yunion.io/x/jsonutils"
	"yunion.io/x/pkg/errors"
	"yunion.io/x/pkg/util/compare"
	"yunion.io/x/sqlchemy"

	api "yunion.io/x/onecloud/pkg/apis/compute"
	"yunion.io/x/onecloud/pkg/cloudcommon/db"
	"yunion.io/x/onecloud/pkg/cloudcommon/db/lockman"
	"yunion.io/x/onecloud/pkg/cloudcommon/validators"
	"yunion.io/x/onecloud/pkg/httperrors"
	"yunion.io/x/onecloud/pkg/mcclient"
)

// +onecloud:swagger-gen-model-singular=dbinstanceprivilege
// +onecloud:swagger-gen-model-plural=dbinstanceprivileges
type SDBInstancePrivilegeManager struct {
	db.SResourceBaseManager
	db.SExternalizedResourceBaseManager
}

var DBInstancePrivilegeManager *SDBInstancePrivilegeManager

func init() {
	DBInstancePrivilegeManager = &SDBInstancePrivilegeManager{
		SResourceBaseManager: db.NewResourceBaseManager(
			SDBInstancePrivilege{},
			"dbinstanceprivileges_tbl",
			"dbinstanceprivilege",
			"dbinstanceprivileges",
		),
	}
	DBInstancePrivilegeManager.SetVirtualObject(DBInstancePrivilegeManager)
}

type SDBInstancePrivilege struct {
	db.SResourceBase
	db.SExternalizedResourceBase

	Id                   string `width:"128" charset:"ascii" primary:"true" list:"user"`
	Privilege            string `width:"32" charset:"ascii" nullable:"false" list:"user" create:"required"`
	DBInstanceaccountId  string `width:"36" charset:"ascii" name:"dbinstanceaccount_id" nullable:"false" list:"user" create:"required"`
	DBInstancedatabaseId string `width:"36" charset:"ascii" name:"dbinstancedatabase_id" nullable:"false" list:"user" create:"required"`
}

func (self *SDBInstancePrivilege) BeforeInsert() {
	if len(self.Id) == 0 {
		self.Id = db.DefaultUUIDGenerator()
	}
}

func (manager *SDBInstancePrivilegeManager) CreateByInsertOrUpdate() bool {
	return false
}

func (manager *SDBInstancePrivilegeManager) GetContextManagers() [][]db.IModelManager {
	return [][]db.IModelManager{
		{DBInstanceAccountManager, DBInstanceDatabaseManager},
	}
}

func (self *SDBInstancePrivilege) GetDBInstanceAccount() (*SDBInstanceAccount, error) {
	account, err := db.FetchById(DBInstanceAccountManager, self.DBInstanceaccountId)
	if err != nil {
		return nil, err
	}
	return account.(*SDBInstanceAccount), nil
}

func (self *SDBInstancePrivilege) GetDBInstanceDatabase() (*SDBInstanceDatabase, error) {
	database, err := db.FetchById(DBInstanceDatabaseManager, self.DBInstancedatabaseId)
	if err != nil {
		return nil, err
	}
	return database.(*SDBInstanceDatabase), nil
}

func (self *SDBInstancePrivilege) GetPrivilege() (api.DBInstancePrivilege, error) {
	out := api.DBInstancePrivilege{}
	database, err := self.GetDBInstanceDatabase()
	if err != nil {
		return out, err
	}
	out.Database = database.Name
	out.DBInstancedatabaseId = database.Id
	account, err := self.GetDBInstanceAccount()
	if err != nil {
		return out, err
	}
	out.Account = account.Name
	out.Privileges = self.Privilege
	return out, nil
}

func (manager *SDBInstancePrivilegeManager) ListItemFilter(
	ctx context.Context,
	q *sqlchemy.SQuery,
	userCred mcclient.TokenCredential,
	query api.DBInstancePrivilegeListInput,
) (*sqlchemy.SQuery, error) {
	q, err := manager.SResourceBaseManager.ListItemFilter(ctx, q, userCred, query.ResourceBaseListInput)
	if err != nil {
		return nil, errors.Wrap(err, "SResourceBaseManager.ListItemFilter")
	}
	q, err = manager.SExternalizedResourceBaseManager.ListItemFilter(ctx, q, userCred, query.ExternalizedResourceBaseListInput)
	if err != nil {
		return nil, errors.Wrap(err, "SExternalizedResourceBaseManager.ListItemFilter")
	}

	if len(query.Privilege) > 0 {
		q = q.In("privilege", query.Privilege)
	}

	data := jsonutils.Marshal(query).(*jsonutils.JSONDict)
	return validators.ApplyModelFilters(ctx, q, data, []*validators.ModelFilterOptions{
		{Key: "dbinstanceaccount", ModelKeyword: "dbinstanceaccount", OwnerId: userCred},
		{Key: "dbinstancedatabase", ModelKeyword: "dbinstancedatabase", OwnerId: userCred},
	})
}

func (manager *SDBInstancePrivilegeManager) ValidateCreateData(ctx context.Context, userCred mcclient.TokenCredential, ownerId mcclient.IIdentityProvider, query jsonutils.JSONObject, data *jsonutils.JSONDict) (*jsonutils.JSONDict, error) {
	return nil, httperrors.NewNotImplementedError("Not Implemented")
}

func (manager *SDBInstancePrivilegeManager) SyncDBInstanceAccountPrivileges(ctx context.Context, userCred mcclient.TokenCredential, account *SDBInstanceAccount, cloudPrivileges []cloudprovider.ICloudDBInstanceAccountPrivilege) compare.SyncResult {
	lockman.LockRawObject(ctx, "dbinstance-privileges", account.Id)
	defer lockman.ReleaseRawObject(ctx, "dbinstance-privileges", account.Id)

	result := compare.SyncResult{}
	dbPrivileges, err := account.GetDBInstancePrivileges()
	if err != nil {
		result.Error(err)
		return result
	}

	removed := make([]SDBInstancePrivilege, 0)
	commondb := make([]SDBInstancePrivilege, 0)
	commonext := make([]cloudprovider.ICloudDBInstanceAccountPrivilege, 0)
	added := make([]cloudprovider.ICloudDBInstanceAccountPrivilege, 0)
	if err := compare.CompareSets(dbPrivileges, cloudPrivileges, &removed, &commondb, &commonext, &added); err != nil {
		result.Error(err)
		return result
	}

	for i := 0; i < len(removed); i++ {
		err := removed[i].Delete(ctx, userCred)
		if err != nil {
			result.DeleteError(err)
		} else {
			result.Delete()
		}
	}

	for i := 0; i < len(added); i++ {
		err = manager.newFromCloudPrivileges(ctx, userCred, account, added[i])
		if err != nil {
			result.AddError(err)
		} else {
			result.Add()
		}
	}
	return result
}

func (manager *SDBInstancePrivilegeManager) newFromCloudPrivileges(ctx context.Context, userCred mcclient.TokenCredential, account *SDBInstanceAccount, ext cloudprovider.ICloudDBInstanceAccountPrivilege) error {
	lockman.LockClass(ctx, manager, db.GetLockClassKey(manager, userCred))
	defer lockman.ReleaseClass(ctx, manager, db.GetLockClassKey(manager, userCred))

	privilege := SDBInstancePrivilege{}
	privilege.SetModelManager(manager, &privilege)

	privilege.DBInstanceaccountId = account.Id
	privilege.ExternalId = ext.GetGlobalId()
	privilege.Privilege = ext.GetPrivilege()

	dbName := ext.GetDBName()

	database, err := account.GetDBInstanceDatabaseByName(dbName)
	if err != nil {
		return errors.Wrapf(err, "account.GetDBInstanceDatabaseByName(%s)", dbName)
	}

	privilege.DBInstancedatabaseId = database.Id

	err = manager.TableSpec().Insert(ctx, &privilege)
	if err != nil {
		return errors.Wrapf(err, "newFromCloudDBInstanceDatabase.Insert")
	}
	return nil
}