1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
module InfluxDB
module Query
module User # :nodoc:
# create_database_user('testdb', 'user', 'pass') - grants all privileges by default
# create_database_user('testdb', 'user', 'pass', permissions: :read) - use [:read|:write|:all]
def create_database_user(database, username, password, options = {})
permissions = options.fetch(:permissions, :all)
execute(
"CREATE user \"#{username}\" WITH PASSWORD '#{password}'; "\
"GRANT #{permissions.to_s.upcase} ON \"#{database}\" TO \"#{username}\""
)
end
def update_user_password(username, password)
execute("SET PASSWORD FOR \"#{username}\" = '#{password}'")
end
# permission => [:all]
def grant_user_admin_privileges(username)
execute("GRANT ALL PRIVILEGES TO \"#{username}\"")
end
# permission => [:read|:write|:all]
def grant_user_privileges(username, database, permission)
execute("GRANT #{permission.to_s.upcase} ON \"#{database}\" TO \"#{username}\"")
end
def list_user_grants(username)
execute("SHOW GRANTS FOR \"#{username}\"")
end
# permission => [:read|:write|:all]
def revoke_user_privileges(username, database, permission)
execute("REVOKE #{permission.to_s.upcase} ON \"#{database}\" FROM \"#{username}\"")
end
def delete_user(username)
execute("DROP USER \"#{username}\"")
end
# => [{"username"=>"usr", "admin"=>true}, {"username"=>"justauser", "admin"=>false}]
def list_users
resp = execute("SHOW USERS".freeze, parse: true)
fetch_series(resp)
.fetch(0, {})
.fetch('values'.freeze, [])
.map { |v| { 'username' => v.first, 'admin' => v.last } }
end
end
end
end
|
