~drizzle-trunk/drizzle/development

« back to all changes in this revision

Viewing changes to plugin/simple_user_policy/module.cc

Committer: Brian Aker
Date: 2010-04-16 22:29:35 UTC
mfrom: (1471.2.6 simple_user_policy)
Revision ID: brian@gaz-20100416222935-7hf7ji0cyi6ycwdb

Merge Monty

files added:
plugin/simple_user_policy/policy.h

files renamed:
plugin/test_authz/ => plugin/simple_user_policy/

plugin/test_authz/test_authz.cc => plugin/simple_user_policy/module.cc

plugin/test_authz/tests/t/basic.disabled => plugin/simple_user_policy/tests/t/basic.test

files modified:
drizzled/plugin/authorization.cc

drizzled/plugin/authorization.h

drizzled/sql_base.cc

drizzled/sql_parse.cc

plugin/simple_user_policy/plugin.ini

plugin/simple_user_policy/tests/r/basic.result

plugin/simple_user_policy/tests/t/basic-master.opt

Show diffs side-by-side

added added

removed removed

plugin/simple_user_policy/module.cc

#include "config.h"

#include <string>

#include "drizzled/plugin/authorization.h"

#include "drizzled/security_context.h"

#include <drizzled/plugin/authorization.h>

#include "policy.h"

using namespace drizzled;

namespace authz

{

class Authz :

public plugin::Authorization

{

public:

Authz() :

plugin::Authorization("test authz")

{ }

/* I told you it was a silly plugin.

If the db name is authz_no and the user is authz, then it's blocked

If it's anything else, it's approved

virtual bool restrictSchema(const SecurityContext &user_ctx,

const std::string &db)

{

if (db == "authz_no" and user_ctx.getUser() == "authz")

return true;

return false;

}

virtual bool restrictProcess(const SecurityContext &user_ctx,

const SecurityContext &session_ctx)

{

if (user_ctx.getUser() == session_ctx.getUser())

return false;

if (user_ctx.getUser() == "authz")

return true;

return false;

}

};

Authz *authz= NULL;

namespace simple_user_policy

{

static int init(plugin::Context &context)

{

authz= new Authz();

context.add(authz);

context.add(new Policy);

return 0;

}

} /* namespace authz */

} /* namespace simple_user_policy */

DRIZZLE_PLUGIN(authz::init, NULL);

DRIZZLE_PLUGIN(simple_user_policy::init, NULL);

Older »