using System.Data; using Insight.Database; using PlanTempus.Database.Common; using PlanTempus.Database.Core; namespace PlanTempus.Database.Core.DCL { public class SetupOrganization : IDbConfigure { public class Command { public required string Schema { get; init; } public required string User { get; init; } public required string Password { get; init; } } IDbConnection _db; Command _command; public SetupOrganization(IDbConnection db) { _db = db; } public void With(Command command) { _command = command; if (!Validations.IsValidSchemaName(_command.Schema)) throw new ArgumentException("Invalid schema name", _command.Schema); using (var transaction = _db.BeginTransaction()) { try { CreateSchema(); CreateRole(); GrantSchemaRights(); transaction.Commit(); } catch (Exception ex) { transaction.Rollback(); throw new InvalidOperationException("Failed to SetupOrganization in Database", ex); } } } private void ExecuteSql(string sql) { _db.ExecuteSql(sql); } private void CreateSchema() { var sql = $"CREATE SCHEMA IF NOT EXISTS {_command.Schema}"; ExecuteSql(sql); } private void CreateRole() { var sql = $"CREATE ROLE {_command.User} LOGIN PASSWORD '{_command.Password}';"; ExecuteSql(sql); var sql1 = $"ALTER ROLE {_command.User} SET search_path='{_command.Schema}';"; ExecuteSql(sql1); } private void GrantSchemaRights() { var sql = $"GRANT USAGE ON SCHEMA {_command.Schema} TO {_command.User};"; ExecuteSql(sql); var sql1 = $"ALTER DEFAULT PRIVILEGES IN SCHEMA {_command.Schema} " + $"GRANT INSERT, SELECT, UPDATE PRIVILEGES ON TABLES TO {_command.User};"; ExecuteSql(sql1); var sql2 = $"GRANT ALL PRIVILEGES ON ALL SEQUENCES IN SCHEMA {_command.Schema} TO {_command.User};"; ExecuteSql(sql2); var sql3 = $"GRANT CREATE TABLE ON SCHEMA {_command.Schema} TO {_command.User};"; ExecuteSql(sql3); } public void RevokeCreateTable() { var sql = $"REVOKE CREATE TABLE ON SCHEMA {_command.Schema} FROM {_command.User};"; ExecuteSql(sql); } } }