Migration: add instance_admin permission record for default user (#9823)

pmossman · pmossman · commit 443288e05be8 · 2023-11-14T13:41:35.000-08:00
diff --git a/airbyte-bootloader/src/test/java/io/airbyte/bootloader/BootloaderTest.java b/airbyte-bootloader/src/test/java/io/airbyte/bootloader/BootloaderTest.java
@@ -92,7 +92,7 @@ class BootloaderTest {
 
   // ⚠️ This line should change with every new migration to show that you meant to make a new
   // migration to the prod database
-  private static final String CURRENT_CONFIGS_MIGRATION_VERSION = "0.50.33.004";
+  private static final String CURRENT_CONFIGS_MIGRATION_VERSION = "0.50.33.005";
   private static final String CURRENT_JOBS_MIGRATION_VERSION = "0.50.4.001";
   private static final String CDK_VERSION = "1.2.3";
 
diff --git a/airbyte-db/db-lib/src/main/java/io/airbyte/db/instance/configs/migrations/V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.java b/airbyte-db/db-lib/src/main/java/io/airbyte/db/instance/configs/migrations/V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.java
@@ -0,0 +1,75 @@
+/*
+ * Copyright (c) 2023 Airbyte, Inc., all rights reserved.
+ */
+
+package io.airbyte.db.instance.configs.migrations;
+
+import static org.jooq.impl.DSL.select;
+
+import io.airbyte.db.instance.configs.migrations.V0_50_16_001__UpdateEnumTypeAuthProviderAndPermissionType.PermissionType;
+import java.util.UUID;
+import org.flywaydb.core.api.migration.BaseJavaMigration;
+import org.flywaydb.core.api.migration.Context;
+import org.jooq.DSLContext;
+import org.jooq.Field;
+import org.jooq.impl.DSL;
+import org.jooq.impl.SQLDataType;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser extends BaseJavaMigration {
+
+  private static final String PERMISSION_TABLE = "permission";
+  private static final String USER_TABLE = "\"user\"";
+  // The all-zero UUID is used to reliably identify the default user.
+  private static final UUID DEFAULT_USER_ID = UUID.fromString("00000000-0000-0000-0000-000000000000");
+  private static final Field<UUID> ID_COLUMN = DSL.field("id", SQLDataType.UUID);
+  private static final Field<UUID> USER_ID_COLUMN = DSL.field("user_id", SQLDataType.UUID);
+  private static final Field<PermissionType> PERMISSION_TYPE_COLUMN =
+      DSL.field("permission_type", SQLDataType.VARCHAR.asEnumDataType(PermissionType.class));
+
+  private static final Logger LOGGER = LoggerFactory.getLogger(V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.class);
+
+  @Override
+  public void migrate(final Context context) throws Exception {
+    LOGGER.info("Running migration: {}", this.getClass().getSimpleName());
+
+    // Warning: please do not use any jOOQ generated code to write a migration.
+    // As database schema changes, the generated jOOQ code can be deprecated. So
+    // old migration may not compile if there is any generated code.
+    final DSLContext ctx = DSL.using(context.getConnection());
+    createInstanceAdminPermissionForDefaultUser(ctx);
+  }
+
+  static void createInstanceAdminPermissionForDefaultUser(final DSLContext ctx) {
+    // return early if the default user is not present in the database. This
+    // shouldn't happen in practice, but if somebody manually removed the default
+    // user prior to this migration, we want this to be a no-op.
+    if (!ctx.fetchExists(select()
+        .from(DSL.table(USER_TABLE))
+        .where(ID_COLUMN.eq(DEFAULT_USER_ID)))) {
+      LOGGER.warn("Default user does not exist. Skipping this migration.");
+      return;
+    }
+
+    // return early if the default user already has an instance_admin permission.
+    // This shouldn't happen in practice, but if somebody manually inserted a
+    // permission record prior to this migration, we want this to be a no-op.
+    if (ctx.fetchExists(select()
+        .from(DSL.table(PERMISSION_TABLE))
+        .where(USER_ID_COLUMN.eq(DEFAULT_USER_ID))
+        .and(PERMISSION_TYPE_COLUMN.eq(PermissionType.INSTANCE_ADMIN)))) {
+      LOGGER.warn("Default user already has instance_admin permission. Skipping this migration.");
+      return;
+    }
+
+    LOGGER.info("Inserting instance_admin permission record for default user.");
+    ctx.insertInto(DSL.table(PERMISSION_TABLE),
+        ID_COLUMN,
+        USER_ID_COLUMN,
+        PERMISSION_TYPE_COLUMN)
+        .values(UUID.randomUUID(), DEFAULT_USER_ID, PermissionType.INSTANCE_ADMIN)
+        .execute();
+  }
+
+}
diff --git a/airbyte-db/db-lib/src/test/java/io/airbyte/db/instance/configs/migrations/V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser_Test.java b/airbyte-db/db-lib/src/test/java/io/airbyte/db/instance/configs/migrations/V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser_Test.java
@@ -0,0 +1,161 @@
+/*
+ * Copyright (c) 2023 Airbyte, Inc., all rights reserved.
+ */
+
+package io.airbyte.db.instance.configs.migrations;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNotNull;
+import static org.junit.jupiter.api.Assertions.assertNull;
+
+import io.airbyte.db.factory.FlywayFactory;
+import io.airbyte.db.instance.configs.AbstractConfigsDatabaseTest;
+import io.airbyte.db.instance.configs.ConfigsDatabaseMigrator;
+import io.airbyte.db.instance.configs.migrations.V0_50_16_001__UpdateEnumTypeAuthProviderAndPermissionType.PermissionType;
+import io.airbyte.db.instance.development.DevDatabaseMigrator;
+import java.util.UUID;
+import org.flywaydb.core.Flyway;
+import org.flywaydb.core.api.migration.BaseJavaMigration;
+import org.jooq.DSLContext;
+import org.jooq.Field;
+import org.jooq.impl.DSL;
+import org.jooq.impl.SQLDataType;
+import org.junit.jupiter.api.AfterEach;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+public class V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser_Test extends AbstractConfigsDatabaseTest {
+
+  private static final UUID DEFAULT_USER_ID = UUID.fromString("00000000-0000-0000-0000-000000000000");
+  // The user table is quoted to avoid conflict with the reserved user keyword in Postgres.
+  private static final String USER_TABLE = "\"user\"";
+  private static final String PERMISSION_TABLE = "permission";
+  private static final Field<UUID> ID_COLUMN = DSL.field("id", SQLDataType.UUID);
+  private static final Field<UUID> USER_ID_COLUMN = DSL.field("user_id", SQLDataType.UUID);
+  private static final Field<PermissionType> PERMISSION_TYPE_COLUMN =
+      DSL.field("permission_type", SQLDataType.VARCHAR.asEnumDataType(PermissionType.class));
+
+  @BeforeEach
+  void beforeEach() {
+    final Flyway flyway =
+        FlywayFactory.create(dataSource, "V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser", ConfigsDatabaseMigrator.DB_IDENTIFIER,
+            ConfigsDatabaseMigrator.MIGRATION_FILE_LOCATION);
+    final ConfigsDatabaseMigrator configsDbMigrator = new ConfigsDatabaseMigrator(database, flyway);
+
+    final BaseJavaMigration previousMigration = new V0_50_33_004__AddSecretPersistenceTypeColumnAndAlterConstraint();
+    final DevDatabaseMigrator devConfigsDbMigrator = new DevDatabaseMigrator(configsDbMigrator, previousMigration.getVersion());
+    devConfigsDbMigrator.createBaseline();
+  }
+
+  @AfterEach
+  void afterEach() {
+    // Making sure we reset between tests
+    dslContext.dropSchemaIfExists("public").cascade().execute();
+    dslContext.createSchema("public").execute();
+    dslContext.setSchema("public").execute();
+  }
+
+  @Test
+  void testMigrationDefaultState() {
+    final DSLContext ctx = getDslContext();
+
+    // a prior migration should have already inserted the default user
+    var userRecord = ctx.selectFrom(DSL.table(USER_TABLE))
+        .where(ID_COLUMN.eq(DEFAULT_USER_ID))
+        .fetchOne();
+    assertNotNull(userRecord);
+
+    var instanceAdminPermission = ctx.selectFrom(DSL.table(PERMISSION_TABLE))
+        .where(USER_ID_COLUMN.eq(DEFAULT_USER_ID))
+        .and(PERMISSION_TYPE_COLUMN.eq(PermissionType.INSTANCE_ADMIN))
+        .fetchOne();
+
+    // instance_admin record should not yet exist for the default user
+    assertNull(instanceAdminPermission);
+
+    // run the migration
+    V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.createInstanceAdminPermissionForDefaultUser(ctx);
+
+    // verify that an instance_admin permission record was written to the database for the default user
+    instanceAdminPermission = ctx.selectFrom(DSL.table(PERMISSION_TABLE))
+        .where(USER_ID_COLUMN.eq(DEFAULT_USER_ID))
+        .and(PERMISSION_TYPE_COLUMN.eq(PermissionType.INSTANCE_ADMIN))
+        .fetchOne();
+
+    assertNotNull(instanceAdminPermission);
+  }
+
+  @Test
+  void testMigrationNoDefaultUser() {
+    final DSLContext ctx = getDslContext();
+
+    // a prior migration should have already inserted the default user
+    var userRecord = ctx.selectFrom(DSL.table(USER_TABLE))
+        .where(ID_COLUMN.eq(DEFAULT_USER_ID))
+        .fetchOne();
+    assertNotNull(userRecord);
+
+    var instanceAdminPermission = ctx.selectFrom(DSL.table(PERMISSION_TABLE))
+        .where(USER_ID_COLUMN.eq(DEFAULT_USER_ID))
+        .and(PERMISSION_TYPE_COLUMN.eq(PermissionType.INSTANCE_ADMIN))
+        .fetchOne();
+
+    // instance_admin record should not yet exist for the default user
+    assertNull(instanceAdminPermission);
+
+    // remove the default user to simulate this non-conventional state
+    ctx.deleteFrom(DSL.table(USER_TABLE))
+        .where(ID_COLUMN.eq(DEFAULT_USER_ID))
+        .execute();
+
+    // record the count of permission records at this time
+    final var permissionCountBeforeMigration = ctx.fetchCount(DSL.table(PERMISSION_TABLE));
+
+    // run the migration
+    V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.createInstanceAdminPermissionForDefaultUser(ctx);
+
+    // verify that the permission record count is unchanged because this should be a no-op.
+    final var permissionCountAfterMigration = ctx.fetchCount(DSL.table(PERMISSION_TABLE));
+
+    assertEquals(permissionCountBeforeMigration, permissionCountAfterMigration);
+  }
+
+  @Test
+  void testMigrationAlreadyInstanceAdmin() {
+    final DSLContext ctx = getDslContext();
+
+    // a prior migration should have already inserted the default user
+    var userRecord = ctx.selectFrom(DSL.table(USER_TABLE))
+        .where(ID_COLUMN.eq(DEFAULT_USER_ID))
+        .fetchOne();
+    assertNotNull(userRecord);
+
+    var instanceAdminPermission = ctx.selectFrom(DSL.table(PERMISSION_TABLE))
+        .where(USER_ID_COLUMN.eq(DEFAULT_USER_ID))
+        .and(PERMISSION_TYPE_COLUMN.eq(PermissionType.INSTANCE_ADMIN))
+        .fetchOne();
+
+    // instance_admin record should not yet exist for the default user
+    assertNull(instanceAdminPermission);
+
+    // manually insert an instance_admin permission record for the default user
+    ctx.insertInto(DSL.table(PERMISSION_TABLE),
+        ID_COLUMN,
+        USER_ID_COLUMN,
+        PERMISSION_TYPE_COLUMN)
+        .values(UUID.randomUUID(), DEFAULT_USER_ID, PermissionType.INSTANCE_ADMIN)
+        .execute();
+
+    // record the count of permission records at this time
+    final var permissionCountBeforeMigration = ctx.fetchCount(DSL.table(PERMISSION_TABLE));
+
+    // run the migration
+    V0_50_33_005__CreateInstanceAdminPermissionForDefaultUser.createInstanceAdminPermissionForDefaultUser(ctx);
+
+    // verify that the permission record count is unchanged because this should be a no-op.
+    final var permissionCountAfterMigration = ctx.fetchCount(DSL.table(PERMISSION_TABLE));
+
+    assertEquals(permissionCountBeforeMigration, permissionCountAfterMigration);
+  }
+
+}
