Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix Schema Division Handling #955

Open
wants to merge 5 commits into
base: 5.x
Choose a base branch
from
Open

Fix Schema Division Handling #955

wants to merge 5 commits into from

Conversation

mikebronner
Copy link
Contributor

@mikebronner mikebronner commented Jul 28, 2020
edited
Loading

This PR aims to fix some issues with with schema division:

  • only create the schema if it doesn't already exist.
  • don't drop privileges for schemas.
  • drop schema using cascade in order to clear out its contents.

@mikebronner
Only create database schema if it doesn't already exist.
cf25621 
This is useful if you are recreating the same client without having deleted the previous schema.
@mikebronner
Drop all tables from the schema automatically.
0962897
@mikebronner
Do not drop privileges when using schema.
b9524f9 
Dropping privileges when using a single database user across all tenants will attempt to drop all items in the main database and other client schemas as well.
@mikebronner
Update PostgreSQL.php
a505636
@mikebronner mikebronner changed the title Only create database schema if it doesn't already exist. Fix Schema Division Handling Jul 28, 2020
@mikebronner mikebronner marked this pull request as draft July 28, 2020 17:39
@mikebronner mikebronner marked this pull request as ready for review July 28, 2020 17:40
ArlonAntonius
ArlonAntonius reviewed Jul 29, 2020
View reviewed changes
src/Generators/Webserver/Database/Drivers/PostgresSchema.php
@@ -54,6 +54,6 @@ public function updated(Updated $event, array $config, Connection $connection):

protected function dropDatabase(IlluminateConnection $connection, array $config)
{
return $connection->statement("DROP SCHEMA IF EXISTS \"{$config['schema']}\"");
return $connection->statement("DROP SCHEMA IF EXISTS \"{$config['schema']}\" CASCADE");
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Using CASCADE is quite a big danger it, as far as my PSQL knowledge goes, this would delete everything in the schema. I think it would be better to use RESTRICT if we should change this at all. I think RESTRICT is even the default.
If we change this, we could risk people ending up deleting entire schema's while that's something that they would not want.

Copy link
Contributor Author

@mikebronner mikebronner Jul 29, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My thoughts on this method is that we shouldn't be executing this code if our intent is not to drop the schema. And if our intent is to do so, why wouldn't we follow through with it? The problem I ran into when not adding the CASCADE is that the schema would never be dropped automatically, because the tables it contained were never dropped, as I disabled blanked removal of privileges (see change above), which is very risky.

src/Generators/Webserver/Database/Drivers/PostgreSQL.php
Comment on lines +132 to +134
if (config("tenancy.db.tenant-division-mode") === Connection::DIVISION_MODE_SEPARATE_SCHEMA) {
return true;
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you give a little insight into why we should not do this?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In my use-case I have only one database user, that is the main database user used on the System connection as well as all other Tenant connections. Removing privileges for a user would remove all the items they owned, regardless of schema they were in. That is dangerous, and in my case broke functionality.

src/Generators/Webserver/Database/Drivers/PostgreSQL.php Outdated Show resolved Hide resolved
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ArlonAntonius ArlonAntonius ArlonAntonius left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mikebronner @ArlonAntonius