pyceo/ceod/db/PostgreSQLService.py

from zope.interface import implementer
from zope import component
from contextlib import contextmanager

from ceo_common.interfaces import IDatabaseService, IConfig
from ceo_common.errors import DatabaseConnectionError, DatabasePermissionError, \
    UserAlreadyExistsError, UserNotFoundError
from ceo_common.logger_factory import logger_factory
from ceod.utils import gen_password
from ceod.db.utils import response_is_empty

from psycopg2 import connect, OperationalError, ProgrammingError
from psycopg2.extensions import ISOLATION_LEVEL_AUTOCOMMIT

logger = logger_factory(__name__)


@implementer(IDatabaseService)
class PostgreSQLService:

    type = 'postgresql'

    def __init__(self):
        config = component.getUtility(IConfig)
        self.auth_username = config.get('postgresql_username')
        self.auth_password = config.get('postgresql_password')
        self.host = config.get('postgresql_host')

    @contextmanager
    def psql_connection(self):
        con = None
        try:
            # Don't use the connection as a context manager, because that
            # creates a new transaction.
            con = connect(
                host=self.host,
                user=self.auth_username,
                password=self.auth_password,
            )
            con.set_isolation_level(ISOLATION_LEVEL_AUTOCOMMIT)
            yield con
        except OperationalError as e:
            logger.error(e)
            raise DatabaseConnectionError()
        except ProgrammingError as e:
            logger.error(e)
            raise DatabasePermissionError()
        finally:
            if con is not None:
                con.close()

    def create_db(self, username: str) -> str:
        password = gen_password()
        search_for_user = f"SELECT FROM pg_roles WHERE rolname='{username}'"
        search_for_db = f"SELECT FROM pg_database WHERE datname='{username}'"
        create_user = f"CREATE USER {username} WITH PASSWORD %(password)s"
        create_database = f"CREATE DATABASE {username} OWNER {username}"
        revoke_perms = f"REVOKE ALL ON DATABASE {username} FROM PUBLIC"

        with self.psql_connection() as con, con.cursor() as cursor:
            if not response_is_empty(search_for_user, con):
                raise UserAlreadyExistsError()
            cursor.execute(create_user, {'password': password})
            if response_is_empty(search_for_db, con):
                cursor.execute(create_database)
                cursor.execute(revoke_perms)
            return password

    def reset_db_passwd(self, username: str) -> str:
        password = gen_password()
        search_for_user = f"SELECT FROM pg_roles WHERE rolname='{username}'"
        reset_password = f"ALTER USER {username} WITH PASSWORD %(password)s"

        with self.psql_connection() as con, con.cursor() as cursor:
            if response_is_empty(search_for_user, con):
                raise UserNotFoundError(username)
            cursor.execute(reset_password, {'password': password})
            return password

    def delete_db(self, username: str):
        drop_db = f"DROP DATABASE IF EXISTS {username}"
        drop_user = f"DROP USER IF EXISTS {username}"

        with self.psql_connection() as con, con.cursor() as cursor:
            cursor.execute(drop_db)
            cursor.execute(drop_user)
wip: db api endpoints 2021-08-21 00:34:10 -04:00			`from zope.interface import implementer`
			`from zope import component`
add pwreset endpoint 2021-08-26 15:42:18 -04:00			`from contextlib import contextmanager`

fixes to logic 2021-08-24 02:14:28 -04:00			`from ceo_common.interfaces import IDatabaseService, IConfig`
fix tests 2021-08-29 12:31:43 -04:00			`from ceo_common.errors import DatabaseConnectionError, DatabasePermissionError, \`
			`UserAlreadyExistsError, UserNotFoundError`
			`from ceo_common.logger_factory import logger_factory`
fixes to logic 2021-08-24 02:14:28 -04:00			`from ceod.utils import gen_password`
			`from ceod.db.utils import response_is_empty`
add pwreset endpoint 2021-08-26 15:42:18 -04:00
fixes to logic 2021-08-24 02:14:28 -04:00			`from psycopg2 import connect, OperationalError, ProgrammingError`
			`from psycopg2.extensions import ISOLATION_LEVEL_AUTOCOMMIT`
wip: db api endpoints 2021-08-21 00:34:10 -04:00
fix tests 2021-08-29 12:31:43 -04:00			`logger = logger_factory(__name__)`

wip: db api endpoints 2021-08-21 00:34:10 -04:00
			`@implementer(IDatabaseService)`
			`class PostgreSQLService:`
adjustments part 1 2021-08-26 02:02:47 -04:00
			`type = 'postgresql'`

wip: db api endpoints 2021-08-21 00:34:10 -04:00			`def __init__(self):`
			`config = component.getUtility(IConfig)`
			`self.auth_username = config.get('postgresql_username')`
			`self.auth_password = config.get('postgresql_password')`
fix tests 2021-08-29 12:31:43 -04:00			`self.host = config.get('postgresql_host')`

add pwreset endpoint 2021-08-26 15:42:18 -04:00			`@contextmanager`
			`def psql_connection(self):`
fix tests 2021-08-29 12:31:43 -04:00			`con = None`
wip: db api endpoints 2021-08-21 00:34:10 -04:00			`try:`
fix tests 2021-08-29 12:31:43 -04:00			`# Don't use the connection as a context manager, because that`
			`# creates a new transaction.`
			`con = connect(`
			`host=self.host,`
add delete_db for testing 2021-08-24 22:31:50 -04:00			`user=self.auth_username,`
			`password=self.auth_password,`
fix tests 2021-08-29 12:31:43 -04:00			`)`
			`con.set_isolation_level(ISOLATION_LEVEL_AUTOCOMMIT)`
			`yield con`
			`except OperationalError as e:`
			`logger.error(e)`
wip: db api endpoints 2021-08-21 00:34:10 -04:00			`raise DatabaseConnectionError()`
fix tests 2021-08-29 12:31:43 -04:00			`except ProgrammingError as e:`
			`logger.error(e)`
fixes to logic 2021-08-24 02:14:28 -04:00			`raise DatabasePermissionError()`
fix tests 2021-08-29 12:31:43 -04:00			`finally:`
			`if con is not None:`
			`con.close()`
fixes to logic 2021-08-24 02:14:28 -04:00
add pwreset endpoint 2021-08-26 15:42:18 -04:00			`def create_db(self, username: str) -> str:`
			`password = gen_password()`
			`search_for_user = f"SELECT FROM pg_roles WHERE rolname='{username}'"`
			`search_for_db = f"SELECT FROM pg_database WHERE datname='{username}'"`
			`create_user = f"CREATE USER {username} WITH PASSWORD %(password)s"`
fix tests 2021-08-29 12:31:43 -04:00			`create_database = f"CREATE DATABASE {username} OWNER {username}"`
			`revoke_perms = f"REVOKE ALL ON DATABASE {username} FROM PUBLIC"`
add pwreset endpoint 2021-08-26 15:42:18 -04:00
fix tests 2021-08-29 12:31:43 -04:00			`with self.psql_connection() as con, con.cursor() as cursor:`
			`if not response_is_empty(search_for_user, con):`
			`raise UserAlreadyExistsError()`
			`cursor.execute(create_user, {'password': password})`
			`if response_is_empty(search_for_db, con):`
			`cursor.execute(create_database)`
			`cursor.execute(revoke_perms)`
			`return password`
add pwreset endpoint 2021-08-26 15:42:18 -04:00
			`def reset_db_passwd(self, username: str) -> str:`
			`password = gen_password()`
			`search_for_user = f"SELECT FROM pg_roles WHERE rolname='{username}'"`
			`reset_password = f"ALTER USER {username} WITH PASSWORD %(password)s"`

fix tests 2021-08-29 12:31:43 -04:00			`with self.psql_connection() as con, con.cursor() as cursor:`
			`if response_is_empty(search_for_user, con):`
			`raise UserNotFoundError(username)`
			`cursor.execute(reset_password, {'password': password})`
			`return password`
add pwreset endpoint 2021-08-26 15:42:18 -04:00
add delete_db for testing 2021-08-24 22:31:50 -04:00			`def delete_db(self, username: str):`
			`drop_db = f"DROP DATABASE IF EXISTS {username}"`
allow db users to login remotely 2021-08-26 16:45:24 -04:00			`drop_user = f"DROP USER IF EXISTS {username}"`
add delete_db for testing 2021-08-24 22:31:50 -04:00
fix tests 2021-08-29 12:31:43 -04:00			`with self.psql_connection() as con, con.cursor() as cursor:`
			`cursor.execute(drop_db)`
			`cursor.execute(drop_user)`