Implement REASSIGN OWNED DDL command

* Implement a REASSIGN OWNED DDL command that changes the ownership of database objects owned by a set of users to a new user. * Ensure that database object ownership is appropriately rolled back if an error occurs while transferring ownership. * Ensure that permissions are moved from the previous owners of the database objects to the new owner.
yma11 · Aug 12, 2021 · e5c895f · e5c895f
1 parent c962d6a
commit e5c895f
Show file tree

Hide file tree

Showing 24 changed files with 955 additions and 20 deletions.
diff --git a/Catalog/Catalog.cpp b/Catalog/Catalog.cpp
@@ -72,6 +72,7 @@
 #include "Shared/File.h"
 #include "Shared/StringTransform.h"
 #include "Shared/measure.h"
+#include "Shared/misc.h"
 #include "StringDictionary/StringDictionaryClient.h"
 
 #include "MapDRelease.h"
@@ -5102,4 +5103,258 @@ void Catalog::deleteCustomExpressions(const std::vector<int32_t>& custom_express
   }
   sqliteConnector_.query("END TRANSACTION");
 }
+
+namespace {
+int32_t validate_and_get_user_id(const std::string& user_name) {
+  UserMetadata user;
+  if (!SysCatalog::instance().getMetadataForUser(user_name, user)) {
+    throw std::runtime_error{"User with username \"" + user_name + "\" does not exist."};
+  }
+  return user.userId;
+}
+
+std::string convert_object_owners_map_to_string(
+    int32_t db_id,
+    int32_t new_owner_id,
+    const std::map<int32_t, std::vector<DBObject>>& old_owner_db_objects) {
+  std::stringstream result;
+  for (const auto& [old_owner_id, db_objects] : old_owner_db_objects) {
+    result << "db_id: " << db_id << ", new_owner_user_id: " << new_owner_id
+           << ", old_owner_user_id: " << old_owner_id << ", db_objects: [";
+    bool first_object{true};
+    for (const auto& db_object : db_objects) {
+      if (first_object) {
+        first_object = false;
+      } else {
+        result << ", ";
+      }
+      result << "\"object_id: " << db_object.getObjectKey().objectId
+             << ", object_type: " << DBObjectTypeToString(db_object.getType()) << "\"";
+    }
+    result << "]\n";
+  }
+  return result.str();
+}
+
+void add_db_object(const std::string& object_name,
+                   DBObjectType object_type,
+                   int32_t user_id,
+                   const AccessPrivileges& privileges,
+                   std::map<int32_t, std::vector<DBObject>>& db_objects) {
+  DBObject db_object{object_name, object_type};
+  db_object.setPrivileges(privileges);
+  db_objects[user_id].emplace_back(db_object);
+}
+}  // namespace
+
+void Catalog::reassignOwners(const std::set<std::string>& old_owners,
+                             const std::string& new_owner) {
+  CHECK(!old_owners.empty());
+  int32_t new_owner_id = validate_and_get_user_id(new_owner);
+  std::set<int32_t> old_owner_ids;
+  for (const auto& old_owner : old_owners) {
+    auto old_owner_id = validate_and_get_user_id(old_owner);
+    if (old_owner_id != new_owner_id) {
+      old_owner_ids.emplace(old_owner_id);
+    }
+  }
+
+  // An empty set after the above loop implies reassignment to the same user (i.e. all
+  // users in the old_owners set is the same as new_owner). Do nothing in this case.
+  if (old_owner_ids.empty()) {
+    return;
+  }
+
+  std::map<int32_t, std::vector<DBObject>> old_owner_db_objects;
+  {
+    cat_write_lock write_lock(this);
+    cat_sqlite_lock sqlite_lock(getObjForLock());
+    sqliteConnector_.query("BEGIN TRANSACTION");
+    try {
+      for (const auto old_user_id : old_owner_ids) {
+        sqliteConnector_.query_with_text_params(
+            "UPDATE mapd_tables SET userid = ? WHERE userid = ?",
+            std::vector<std::string>{std::to_string(new_owner_id),
+                                     std::to_string(old_user_id)});
+
+        sqliteConnector_.query_with_text_params(
+            "UPDATE mapd_dashboards SET userid = ? WHERE userid = ?",
+            std::vector<std::string>{std::to_string(new_owner_id),
+                                     std::to_string(old_user_id)});
+
+        if (g_enable_fsi) {
+          sqliteConnector_.query_with_text_params(
+              "UPDATE omnisci_foreign_servers SET owner_user_id = ? "
+              "WHERE owner_user_id = ?",
+              std::vector<std::string>{std::to_string(new_owner_id),
+                                       std::to_string(old_user_id)});
+        }
+      }
+
+      for (const auto& [table_name, td] : tableDescriptorMap_) {
+        if (shared::contains(old_owner_ids, td->userId)) {
+          if (td->isView) {
+            add_db_object(td->tableName,
+                          DBObjectType::ViewDBObjectType,
+                          td->userId,
+                          AccessPrivileges::ALL_VIEW,
+                          old_owner_db_objects);
+          } else {
+            add_db_object(td->tableName,
+                          DBObjectType::TableDBObjectType,
+                          td->userId,
+                          AccessPrivileges::ALL_TABLE,
+                          old_owner_db_objects);
+          }
+          td->userId = new_owner_id;
+        }
+      }
+
+      DashboardDescriptorMap new_owner_dashboard_map;
+      for (auto it = dashboardDescriptorMap_.begin();
+           it != dashboardDescriptorMap_.end();) {
+        if (auto dashboard = it->second;
+            shared::contains(old_owner_ids, dashboard->userId)) {
+          DBObject db_object{dashboard->dashboardId, DBObjectType::DashboardDBObjectType};
+          db_object.setPrivileges(AccessPrivileges::ALL_DASHBOARD);
+          old_owner_db_objects[dashboard->userId].emplace_back(db_object);
+
+          // Dashboards in the dashboardDescriptorMap_ use keys with the format
+          // "{user id}:{dashboard name}". Ensure that map entries are replaced
+          // with the new owner's user id.
+          std::string old_key{std::to_string(dashboard->userId) + ":" +
+                              dashboard->dashboardName};
+          CHECK_EQ(it->first, old_key);
+          std::string new_key{std::to_string(new_owner_id) + ":" +
+                              dashboard->dashboardName};
+          CHECK(dashboardDescriptorMap_.find(new_key) == dashboardDescriptorMap_.end());
+          new_owner_dashboard_map[new_key] = dashboard;
+          dashboard->userId = new_owner_id;
+          it = dashboardDescriptorMap_.erase(it);
+        } else {
+          it++;
+        }
+      }
+      dashboardDescriptorMap_.merge(new_owner_dashboard_map);
+
+      if (g_enable_fsi) {
+        for (const auto& [server_name, server] : foreignServerMap_) {
+          if (shared::contains(old_owner_ids, server->user_id)) {
+            add_db_object(server->name,
+                          DBObjectType::ServerDBObjectType,
+                          server->user_id,
+                          AccessPrivileges::ALL_SERVER,
+                          old_owner_db_objects);
+            server->user_id = new_owner_id;
+          }
+        }
+      }
+
+      // Ensure new owner is set in the DB objects.
+      for (auto& [old_owner_id, db_objects] : old_owner_db_objects) {
+        for (auto& db_object : db_objects) {
+          db_object.loadKey(*this);
+          CHECK_EQ(db_object.getOwner(), new_owner_id);
+          const auto& object_key = db_object.getObjectKey();
+          CHECK_EQ(object_key.dbId, getDatabaseId());
+          CHECK_NE(object_key.objectId, -1);
+        }
+      }
+    } catch (std::exception& e) {
+      sqliteConnector_.query("ROLLBACK TRANSACTION");
+      restoreOldOwnersInMemory(old_owner_db_objects, new_owner_id);
+      throw;
+    }
+    sqliteConnector_.query("END TRANSACTION");
+  }
+
+  try {
+    SysCatalog::instance().reassignObjectOwners(
+        old_owner_db_objects, new_owner_id, *this);
+  } catch (std::exception& e) {
+    restoreOldOwners(old_owner_db_objects, new_owner_id);
+    throw;
+  }
+}
+
+void Catalog::restoreOldOwners(
+    const std::map<int32_t, std::vector<DBObject>>& old_owner_db_objects,
+    int32_t new_owner_id) {
+  cat_write_lock write_lock(this);
+  cat_sqlite_lock sqlite_lock(getObjForLock());
+  sqliteConnector_.query("BEGIN TRANSACTION");
+  try {
+    for (const auto& [old_owner_id, db_objects] : old_owner_db_objects) {
+      for (const auto& db_object : db_objects) {
+        auto object_id = db_object.getObjectKey().objectId;
+        CHECK_GT(object_id, 0);
+        std::vector<std::string> query_params{std::to_string(old_owner_id),
+                                              std::to_string(new_owner_id),
+                                              std::to_string(object_id)};
+        auto object_type = db_object.getType();
+        if (object_type == DBObjectType::TableDBObjectType ||
+            object_type == DBObjectType::ViewDBObjectType) {
+          sqliteConnector_.query_with_text_params(
+              "UPDATE mapd_tables SET userid = ? WHERE userid = ? AND tableid = ?",
+              query_params);
+        } else if (object_type == DBObjectType::DashboardDBObjectType) {
+          sqliteConnector_.query_with_text_params(
+              "UPDATE mapd_dashboards SET userid = ? WHERE userid = ? AND id = ?",
+              query_params);
+        } else if (object_type == DBObjectType::ServerDBObjectType) {
+          CHECK(g_enable_fsi);
+          sqliteConnector_.query_with_text_params(
+              "UPDATE omnisci_foreign_servers SET owner_user_id = ? "
+              "WHERE owner_user_id = ? AND id = ?",
+              query_params);
+        } else {
+          UNREACHABLE() << "Unexpected DB object type: " << static_cast<int>(object_type);
+        }
+      }
+    }
+    restoreOldOwnersInMemory(old_owner_db_objects, new_owner_id);
+  } catch (std::exception& e) {
+    sqliteConnector_.query("ROLLBACK TRANSACTION");
+    LOG(FATAL)
+        << "Unable to restore database objects ownership after an error occurred. "
+           "Database object ownership information may be in an inconsistent state. " +
+               convert_object_owners_map_to_string(
+                   getDatabaseId(), new_owner_id, old_owner_db_objects);
+  }
+  sqliteConnector_.query("END TRANSACTION");
+}
+
+void Catalog::restoreOldOwnersInMemory(
+    const std::map<int32_t, std::vector<DBObject>>& old_owner_db_objects,
+    int32_t new_owner_id) {
+  for (const auto& [old_owner_id, db_objects] : old_owner_db_objects) {
+    for (const auto& db_object : db_objects) {
+      auto object_id = db_object.getObjectKey().objectId;
+      auto object_type = db_object.getType();
+      if (object_type == DBObjectType::TableDBObjectType ||
+          object_type == DBObjectType::ViewDBObjectType) {
+        auto it = tableDescriptorMapById_.find(object_id);
+        CHECK(it != tableDescriptorMapById_.end());
+        CHECK(it->second);
+        it->second->userId = old_owner_id;
+      } else if (object_type == DBObjectType::DashboardDBObjectType) {
+        auto it = dashboardDescriptorMap_.find(std::to_string(new_owner_id) + ":" +
+                                               db_object.getName());
+        CHECK(it != dashboardDescriptorMap_.end());
+        CHECK(it->second);
+        it->second->userId = old_owner_id;
+        dashboardDescriptorMap_[std::to_string(old_owner_id) + ":" +
+                                db_object.getName()] = it->second;
+        dashboardDescriptorMap_.erase(it);
+      } else if (object_type == DBObjectType::ServerDBObjectType) {
+        auto it = foreignServerMapById_.find(object_id);
+        CHECK(it != foreignServerMapById_.end());
+        CHECK(it->second);
+        it->second->user_id = old_owner_id;
+      } else {
+        UNREACHABLE() << "Unexpected DB object type: " << static_cast<int>(object_type);
+      }
+    }
+  }
+}
 }  // namespace Catalog_Namespace
diff --git a/Catalog/Catalog.h b/Catalog/Catalog.h
@@ -543,6 +543,17 @@ class Catalog final {
   void deleteCustomExpressions(const std::vector<int32_t>& custom_expression_ids,
                                bool do_soft_delete);
 
+  /**
+   * Reassigns database object ownership from a set of users (old owners) to another user
+   * (new owner).
+   *
+   * @param old_owners - users whose database object ownership will be reassigned to a new
+   * user
+   * @param new_owner - user who will own reassigned database objects
+   */
+  void reassignOwners(const std::set<std::string>& old_owners,
+                      const std::string& new_owner);
+
  protected:
   void CheckAndExecuteMigrations();
   void CheckAndExecuteMigrationsPostBuildMaps();
@@ -701,6 +712,13 @@ class Catalog final {
   void buildCustomExpressionsMap();
   std::unique_ptr<CustomExpression> getCustomExpressionFromConnector(size_t row);
 
+  void restoreOldOwners(
+      const std::map<int32_t, std::vector<DBObject>>& old_owner_db_objects,
+      int32_t new_owner_id);
+  void restoreOldOwnersInMemory(
+      const std::map<int32_t, std::vector<DBObject>>& old_owner_db_objects,
+      int32_t new_owner_id);
+
  public:
   mutable std::mutex sqliteMutex_;
   mutable mapd_shared_mutex sharedMutex_;

diff --git a/Catalog/DdlCommandExecutor.cpp b/Catalog/DdlCommandExecutor.cpp
@@ -447,6 +447,8 @@ ExecutionResult DdlCommandExecutor::execute() {
     result = ShowDiskCacheUsageCommand{*ddl_data_, session_ptr_}.execute();
   } else if (ddl_command_ == "SHOW_USER_DETAILS") {
     result = ShowUserDetailsCommand{*ddl_data_, session_ptr_}.execute();
+  } else if (ddl_command_ == "REASSIGN_OWNED") {
+    result = ReassignOwnedCommand{*ddl_data_, session_ptr_}.execute();
   } else {
     throw std::runtime_error("Unsupported DDL command");
   }
@@ -472,7 +474,7 @@ DistributedExecutionDetails DdlCommandExecutor::getDistributedExecutionDetails()
       ddl_command_ == "CREATE_TABLE" || ddl_command_ == "DROP_TABLE" ||
       ddl_command_ == "RENAME_TABLE" || ddl_command_ == "ALTER_TABLE" ||
       ddl_command_ == "CREATE_DB" || ddl_command_ == "DROP_DB" ||
-      ddl_command_ == "RENAME_DB") {
+      ddl_command_ == "RENAME_DB" || ddl_command_ == "REASSIGN_OWNED") {
     // commands
     execution_details.execution_location = ExecutionLocation::ALL_NODES;
     execution_details.aggregation_type = AggregationType::NONE;
@@ -1669,3 +1671,29 @@ ExecutionResult ShowUserDetailsCommand::execute() {
 
   return ExecutionResult(rSet, label_infos);
 }
+
+ReassignOwnedCommand::ReassignOwnedCommand(
+    const DdlCommandData& ddl_data,
+    std::shared_ptr<Catalog_Namespace::SessionInfo const> session_ptr)
+    : DdlCommand(ddl_data, session_ptr) {
+  auto& ddl_payload = extractPayload(ddl_data_);
+  CHECK(ddl_payload.HasMember("oldOwners"));
+  CHECK(ddl_payload["oldOwners"].IsArray());
+  for (const auto& old_owner : ddl_payload["oldOwners"].GetArray()) {
+    CHECK(old_owner.IsString());
+    old_owners_.emplace(old_owner.GetString());
+  }
+  CHECK(ddl_payload.HasMember("newOwner"));
+  CHECK(ddl_payload["newOwner"].IsString());
+  new_owner_ = ddl_payload["newOwner"].GetString();
+}
+
+ExecutionResult ReassignOwnedCommand::execute() {
+  if (!session_ptr_->get_currentUser().isSuper) {
+    throw std::runtime_error{
+        "Only super users can reassign ownership of database objects."};
+  }
+  const auto catalog = session_ptr_->get_catalog_ptr();
+  catalog->reassignOwners(old_owners_, new_owner_);
+  return ExecutionResult();
+}
diff --git a/Catalog/DdlCommandExecutor.h b/Catalog/DdlCommandExecutor.h
@@ -191,6 +191,18 @@ class RefreshForeignTablesCommand : public DdlCommand {
   ExecutionResult execute() override;
 };
 
+class ReassignOwnedCommand : public DdlCommand {
+ public:
+  ReassignOwnedCommand(const DdlCommandData& ddl_data,
+                       std::shared_ptr<Catalog_Namespace::SessionInfo const> session_ptr);
+
+  ExecutionResult execute() override;
+
+ private:
+  std::string new_owner_;
+  std::set<std::string> old_owners_;
+};
+
 enum class ExecutionLocation { ALL_NODES, AGGREGATOR_ONLY, LEAVES_ONLY };
 enum class AggregationType { NONE, UNION };