joncrlsn
diff --git a/‎foreignkey.go‎
Lines changed: 39 additions & 39 deletions b/‎foreignkey.go‎
Lines changed: 39 additions & 39 deletions
diff --git a/‎grant.go‎
Lines changed: 247 additions & 0 deletions b/‎grant.go‎
Lines changed: 247 additions & 0 deletions
@@ -11,20 +11,20 @@ import "github.com/joncrlsn/pgutil"
 type ForeignKeyRows []map[string]string
 
 func (slice ForeignKeyRows) Len() int {
-    return len(slice)
+	return len(slice)
 }
 
 func (slice ForeignKeyRows) Less(i, j int) bool {
-    //fmt.Printf("--Less %s:%s with %s:%s", slice[i]["table_name"], slice[i]["column_name"], slice[j]["table_name"], slice[j]["column_name"])
-    if slice[i]["table_name"] == slice[j]["table_name"] {
-        return slice[i]["constraint_def"] < slice[j]["constraint_def"]
-    }
-    return slice[i]["table_name"] < slice[j]["table_name"]
+	//fmt.Printf("--Less %s:%s with %s:%s", slice[i]["table_name"], slice[i]["column_name"], slice[j]["table_name"], slice[j]["column_name"])
+	if slice[i]["table_name"] == slice[j]["table_name"] {
+		return slice[i]["constraint_def"] < slice[j]["constraint_def"]
+	}
+	return slice[i]["table_name"] < slice[j]["table_name"]
 }
 
 func (slice ForeignKeyRows) Swap(i, j int) {
-    //fmt.Printf("--Swapping %d/%s:%s with %d/%s:%s \n", i, slice[i]["table_name"], slice[i]["index_name"], j, slice[j]["table_name"], slice[j]["index_name"])
-    slice[i], slice[j] = slice[j], slice[i]
+	//fmt.Printf("--Swapping %d/%s:%s with %d/%s:%s \n", i, slice[i]["table_name"], slice[i]["index_name"], j, slice[j]["table_name"], slice[j]["index_name"])
+	slice[i], slice[j] = slice[j], slice[i]
 }
 
 // ==================================
@@ -35,34 +35,34 @@ func (slice ForeignKeyRows) Swap(i, j int) {
 // ForeignKeySchema holds a slice of rows from one of the databases as well as
 // a reference to the current row of data we're viewing.
 type ForeignKeySchema struct {
-	rows    ForeignKeyRows
-	rowNum  int
-	done    bool
+	rows   ForeignKeyRows
+	rowNum int
+	done   bool
 }
 
 // get returns the value from the current row for the given key
 func (c *ForeignKeySchema) get(key string) string {
-    if c.rowNum >= len(c.rows) {
-        return ""
-    }
-    return c.rows[c.rowNum][key]
+	if c.rowNum >= len(c.rows) {
+		return ""
+	}
+	return c.rows[c.rowNum][key]
 }
 
 // get returns the current row for the given key
 func (c *ForeignKeySchema) getRow() map[string]string {
-    if c.rowNum >= len(c.rows) {
-        return make(map[string]string)
-    }
-    return c.rows[c.rowNum]
+	if c.rowNum >= len(c.rows) {
+		return make(map[string]string)
+	}
+	return c.rows[c.rowNum]
 }
 
 // NextRow reads from the channel and tells you if there are (probably) more or not
 func (c *ForeignKeySchema) NextRow() bool {
-    if c.rowNum >= len(c.rows)-1 {
-        c.done = true
-    }
-    c.rowNum = c.rowNum + 1
-    return !c.done
+	if c.rowNum >= len(c.rows)-1 {
+		c.done = true
+	}
+	c.rowNum = c.rowNum + 1
+	return !c.done
 }
 
 // Compare tells you, in one pass, whether or not the first row matches, is less than, or greater than the second row
@@ -117,21 +117,21 @@ WHERE c.contype = 'f';
 	rowChan1, _ := pgutil.QueryStrings(conn1, sql)
 	rowChan2, _ := pgutil.QueryStrings(conn2, sql)
 
-    rows1 := make(ForeignKeyRows, 0)
-    for row := range rowChan1 {
-        rows1 = append(rows1, row)
-    }
-    sort.Sort(rows1)
-
-    rows2 := make(ForeignKeyRows, 0)
-    for row := range rowChan2 {
-        rows2 = append(rows2, row)
-    }
-    sort.Sort(rows2)
-
-    // We have to explicitly type this as Schema here for some unknown reason
-    var schema1 Schema = &ForeignKeySchema{rows: rows1, rowNum: -1}
-    var schema2 Schema = &ForeignKeySchema{rows: rows2, rowNum: -1}
+	rows1 := make(ForeignKeyRows, 0)
+	for row := range rowChan1 {
+		rows1 = append(rows1, row)
+	}
+	sort.Sort(rows1)
+
+	rows2 := make(ForeignKeyRows, 0)
+	for row := range rowChan2 {
+		rows2 = append(rows2, row)
+	}
+	sort.Sort(rows2)
+
+	// We have to explicitly type this as Schema here for some unknown reason
+	var schema1 Schema = &ForeignKeySchema{rows: rows1, rowNum: -1}
+	var schema2 Schema = &ForeignKeySchema{rows: rows2, rowNum: -1}
 
 	// Compare the columns
 	doDiff(schema1, schema2)
 
@@ -0,0 +1,247 @@
+package main
+
+import "sort"
+import "fmt"
+import "strings"
+import "database/sql"
+import "github.com/joncrlsn/pgutil"
+import "regexp"
+
+var aclRegex = regexp.MustCompile(`([a-zA-Z0-9]+)*=([rwadDxtXUCcT]+)/([a-zA-Z0-9]+)$`)
+
+var permMap map[string]string = map[string]string{
+	"a": "INSERT",
+	"r": "SELECT",
+	"w": "UPDATE",
+	"d": "DELETE",
+	"D": "TRUNCATE",
+	"x": "REFERENCES",
+	"t": "TRIGGER",
+	"X": "EXECUTE",
+	"U": "USAGE",
+	"C": "CREATE",
+	"c": "CONNECT",
+	"T": "TEMPORARY",
+}
+
+// ==================================
+// GrantRows definition (an array of string maps)
+// ==================================
+type GrantRows []map[string]string
+
+func (slice GrantRows) Len() int {
+	return len(slice)
+}
+
+func (slice GrantRows) Less(i, j int) bool {
+	if slice[i]["schema"] != slice[j]["schema"] {
+		return slice[i]["schema"] < slice[j]["schema"]
+	}
+	if slice[i]["relationship_name"] != slice[j]["relationship_name"] {
+		return slice[i]["relationship_name"] < slice[j]["relationship_name"]
+	}
+	if slice[i]["column_name"] != slice[j]["column_name"] {
+		return slice[i]["column_name"] < slice[j]["column_name"]
+	}
+	return false
+}
+
+func (slice GrantRows) Swap(i, j int) {
+	slice[i], slice[j] = slice[j], slice[i]
+}
+
+// ==================================
+// GrantSchema definition
+// (implements Schema -- defined in pgdiff.go)
+// ==================================
+
+// GrantSchema holds a slice of rows from one of the databases as well as
+// a reference to the current row of data we're viewing.
+type GrantSchema struct {
+	rows   GrantRows
+	rowNum int
+	done   bool
+}
+
+// get returns the value from the current row for the given key
+func (c *GrantSchema) get(key string) string {
+	if c.rowNum >= len(c.rows) {
+		return ""
+	}
+	return c.rows[c.rowNum][key]
+}
+
+// get returns the current row for the given key
+func (c *GrantSchema) getRow() map[string]string {
+	if c.rowNum >= len(c.rows) {
+		return make(map[string]string)
+	}
+	return c.rows[c.rowNum]
+}
+
+// NextRow increments the rowNum and tells you whether or not there are more
+func (c *GrantSchema) NextRow() bool {
+	if c.rowNum >= len(c.rows)-1 {
+		c.done = true
+	}
+	c.rowNum = c.rowNum + 1
+	return !c.done
+}
+
+// Compare tells you, in one pass, whether or not the first row matches, is less than, or greater than the second row
+func (c *GrantSchema) Compare(obj interface{}) int {
+	c2, ok := obj.(*GrantSchema)
+	if !ok {
+		fmt.Println("Error!!!, change needs a GrantSchema instance", c2)
+		return +999
+	}
+
+	val := _compareString(c.get("schema"), c2.get("schema"))
+	if val != 0 {
+		return val
+	}
+
+	val = _compareString(c.get("relationship_name"), c2.get("relationship_name"))
+	if val != 0 {
+		return val
+	}
+
+	val = _compareString(c.get("column_name"), c2.get("column_name"))
+	return val
+}
+
+// Add prints SQL to add the column
+func (c *GrantSchema) Add() {
+	fmt.Println("--Add")
+
+	if c.get("column_acl") != "null" && len(c.get("column_acl")) > 0 {
+		lines := strings.Split(c.get("column_acl"), "\n")
+		for _, line := range lines {
+			roleName, perms := parseGrants(line)
+			fmt.Printf("GRANT %s (%s) ON %s TO %s; \n", strings.Join(perms, ", "), c.get("column_name"), c.get("relationship_name"), roleName)
+		}
+	} else if c.get("relationship_acl") != "null" && len(c.get("relationship_acl")) > 0 {
+		lines := strings.Split(c.get("relationship_acl"), "\n")
+		for _, line := range lines {
+			roleName, perms := parseGrants(line)
+			fmt.Printf("GRANT %s ON %s TO %s; \n", strings.Join(perms, ", "), c.get("relationship_name"), roleName)
+		}
+	}
+}
+
+// Drop prints SQL to drop the column
+func (c *GrantSchema) Drop() {
+	fmt.Println("--Drop")
+
+	if c.get("column_acl") != "null" && len(c.get("column_acl")) > 0 {
+		lines := strings.Split(c.get("column_acl"), "\n")
+		for _, line := range lines {
+			roleName, perms := parseGrants(line)
+			fmt.Printf("REVOKE %s (%s) ON %s TO %s; \n", strings.Join(perms, ", "), c.get("column_name"), c.get("relationship_name"), roleName)
+		}
+	} else if c.get("relationship_acl") != "null" && len(c.get("relationship_acl")) > 0 {
+		lines := strings.Split(c.get("relationship_acl"), "\n")
+		for _, line := range lines {
+			roleName, perms := parseGrants(line)
+			fmt.Printf("REVOKE %s ON %s TO %s; \n", strings.Join(perms, ", "), c.get("relationship_name"), roleName)
+		}
+	}
+}
+
+// Change handles the case where the table and column match, but the details do not
+func (c *GrantSchema) Change(obj interface{}) {
+	c2, ok := obj.(*GrantSchema)
+	if !ok {
+		fmt.Println("-- Error!!!, change needs a GrantSchema instance", c2)
+	}
+	fmt.Println("--Change")
+	fmt.Printf("rel:%s, relAcl:%s, col:%s, colAcl:%s\n", c.get("relationship_name"), c.get("relationship_acl"), c.get("column_name"), c.get("column_acl"))
+	fmt.Printf("rel:%s, relAcl:%s, col:%s, colAcl:%s\n", c2.get("relationship_name"), c2.get("relationship_acl"), c2.get("column_name"), c2.get("column_acl"))
+}
+
+// ==================================
+// Functions
+// ==================================
+
+/*
+ * Compare the columns in the two databases
+ */
+func compareGrants(conn1 *sql.DB, conn2 *sql.DB) {
+	sql := `
+SELECT
+  n.nspname AS schema
+  , CASE c.relkind
+    	WHEN 'r' THEN 'TABLE'
+		WHEN 'v' THEN 'VIEW'
+		WHEN 'S' THEN 'SEQUENCE'
+		WHEN 'f' THEN 'FOREIGN TABLE'
+	END as type
+  , c.relname AS relationship_name
+  , pg_catalog.array_to_string(c.relacl, E'\n') AS relationship_acl
+  , a.attname AS column_name
+  , pg_catalog.array_to_string(a.attacl, E'\n') AS column_acl
+FROM pg_catalog.pg_class c
+LEFT JOIN pg_catalog.pg_namespace n ON (n.oid = c.relnamespace)
+LEFT JOIN pg_catalog.pg_attribute a ON (a.attrelid = c.oid AND NOT a.attisdropped AND a.attacl IS NOT NULL)
+WHERE c.relkind IN ('r', 'v', 'S', 'f')
+  AND n.nspname !~ '^pg_' AND pg_catalog.pg_table_is_visible(c.oid);
+`
+	rowChan1, _ := pgutil.QueryStrings(conn1, sql)
+	rowChan2, _ := pgutil.QueryStrings(conn2, sql)
+
+	rows1 := make(GrantRows, 0)
+	for row := range rowChan1 {
+		rows1 = append(rows1, row)
+	}
+	sort.Sort(rows1)
+
+	rows2 := make(GrantRows, 0)
+	for row := range rowChan2 {
+		rows2 = append(rows2, row)
+	}
+	sort.Sort(rows2)
+
+	// We have to explicitly type this as Schema here for some unknown reason
+	var schema1 Schema = &GrantSchema{rows: rows1, rowNum: -1}
+	var schema2 Schema = &GrantSchema{rows: rows2, rowNum: -1}
+
+	doDiff(schema1, schema2)
+}
+
+/*
+parseGrants converts an ACL string into a slice of permission strings
+
+Example of an ACL: c42ro=rwa/c42  (we want to split out the "rwa" part)
+
+rolename=xxxx -- privileges granted to a role
+        =xxxx -- privileges granted to PUBLIC
+            r -- SELECT ("read")
+            w -- UPDATE ("write")
+            a -- INSERT ("append")
+            d -- DELETE
+            D -- TRUNCATE
+            x -- REFERENCES
+            t -- TRIGGER
+            X -- EXECUTE
+            U -- USAGE
+            C -- CREATE
+            c -- CONNECT
+            T -- TEMPORARY
+      arwdDxt -- ALL PRIVILEGES (for tables, varies for other objects)
+            * -- grant option for preceding privilege
+        /yyyy -- role that granted this privilege
+*/
+func parseGrants(acl string) (string, []string) {
+
+	matches := aclRegex.FindStringSubmatch(acl)
+	role := matches[1]
+	perms := matches[2]
+	var permWords []string
+	for _, c := range strings.Split(perms, "") {
+		permWord := permMap[c]
+		if len(permWord) > 0 {
+			permWords = append(permWords, permWord)
+		}
+	}
+	return role, permWords
+}