93 lines
2.9 KiB
Rust
93 lines
2.9 KiB
Rust
use clap::Parser;
|
|
use clap_complete::ArgValueCompleter;
|
|
use futures_util::SinkExt;
|
|
use itertools::Itertools;
|
|
use tokio_stream::StreamExt;
|
|
|
|
use crate::{
|
|
client::commands::{erroneous_server_response, print_authorization_owner_hint},
|
|
core::{
|
|
completion::mysql_database_completer,
|
|
protocol::{
|
|
ClientToServerMessageStream, ListPrivilegesError, Request, Response,
|
|
print_list_privileges_output_status, print_list_privileges_output_status_json,
|
|
request_validation::ValidationError,
|
|
},
|
|
types::MySQLDatabase,
|
|
},
|
|
};
|
|
|
|
#[derive(Parser, Debug, Clone)]
|
|
pub struct ShowPrivsArgs {
|
|
/// The `MySQL` database(s) to show privileges for
|
|
#[arg(num_args = 0.., value_name = "DB_NAME")]
|
|
#[cfg_attr(not(feature = "suid-sgid-mode"), arg(add = ArgValueCompleter::new(mysql_database_completer)))]
|
|
name: Vec<MySQLDatabase>,
|
|
|
|
/// Print the information as JSON
|
|
#[arg(short, long)]
|
|
json: bool,
|
|
|
|
/// Show single-character privilege names in addition to human-readable names
|
|
///
|
|
/// This flag has no effect when used with --json
|
|
#[arg(short, long)]
|
|
long: bool,
|
|
}
|
|
|
|
pub async fn show_database_privileges(
|
|
args: ShowPrivsArgs,
|
|
mut server_connection: ClientToServerMessageStream,
|
|
) -> anyhow::Result<()> {
|
|
let message = if args.name.is_empty() {
|
|
Request::ListPrivileges(None)
|
|
} else {
|
|
Request::ListPrivileges(Some(args.name.clone()))
|
|
};
|
|
server_connection.send(message).await?;
|
|
|
|
let privilege_data = match server_connection.next().await {
|
|
Some(Ok(Response::ListPrivileges(databases))) => databases,
|
|
Some(Ok(Response::ListAllPrivileges(privilege_rows))) => match privilege_rows {
|
|
Ok(list) => list
|
|
.into_iter()
|
|
.map(|row| (row.db.clone(), row))
|
|
.into_group_map()
|
|
.into_iter()
|
|
.map(|(db, rows)| (db, Ok(rows)))
|
|
.collect(),
|
|
Err(err) => {
|
|
server_connection.send(Request::Exit).await?;
|
|
return Err(anyhow::anyhow!(err.to_error_message())
|
|
.context("Failed to list database privileges"));
|
|
}
|
|
},
|
|
response => return erroneous_server_response(response),
|
|
};
|
|
|
|
if args.json {
|
|
print_list_privileges_output_status_json(&privilege_data);
|
|
} else {
|
|
print_list_privileges_output_status(&privilege_data, args.long);
|
|
|
|
if privilege_data.iter().any(|(_, res)| {
|
|
matches!(
|
|
res,
|
|
Err(ListPrivilegesError::ValidationError(
|
|
ValidationError::AuthorizationError(_)
|
|
))
|
|
)
|
|
}) {
|
|
print_authorization_owner_hint(&mut server_connection).await?;
|
|
}
|
|
}
|
|
|
|
server_connection.send(Request::Exit).await?;
|
|
|
|
if privilege_data.values().any(std::result::Result::is_err) {
|
|
std::process::exit(1);
|
|
}
|
|
|
|
Ok(())
|
|
}
|