grafana/pkg/infra/db/sqlbuilder.go

package db

import (
	"bytes"

	ac "github.com/grafana/grafana/pkg/services/accesscontrol"
	"github.com/grafana/grafana/pkg/services/dashboards"
	"github.com/grafana/grafana/pkg/services/featuremgmt"
	"github.com/grafana/grafana/pkg/services/sqlstore/migrator"
	"github.com/grafana/grafana/pkg/services/sqlstore/permissions"
	"github.com/grafana/grafana/pkg/services/user"
	"github.com/grafana/grafana/pkg/setting"
)

func NewSqlBuilder(cfg *setting.Cfg, features featuremgmt.FeatureToggles, dialect migrator.Dialect, recursiveQueriesAreSupported bool) SQLBuilder {
	return SQLBuilder{cfg: cfg, features: features, dialect: dialect, recursiveQueriesAreSupported: recursiveQueriesAreSupported}
}

type SQLBuilder struct {
	cfg                          *setting.Cfg
	features                     featuremgmt.FeatureToggles
	sql                          bytes.Buffer
	params                       []interface{}
	recQry                       string
	recQryParams                 []interface{}
	recursiveQueriesAreSupported bool

	dialect migrator.Dialect
}

func (sb *SQLBuilder) Write(sql string, params ...interface{}) {
	sb.sql.WriteString(sql)

	if len(params) > 0 {
		sb.params = append(sb.params, params...)
	}
}

func (sb *SQLBuilder) GetSQLString() string {
	if sb.recQry == "" {
		return sb.sql.String()
	}

	var bf bytes.Buffer
	bf.WriteString(sb.recQry)
	bf.WriteString(sb.sql.String())
	return bf.String()
}

func (sb *SQLBuilder) GetParams() []interface{} {
	if len(sb.recQryParams) == 0 {
		return sb.params
	}

	sb.params = append(sb.recQryParams, sb.params...)
	return sb.params
}

func (sb *SQLBuilder) AddParams(params ...interface{}) {
	sb.params = append(sb.params, params...)
}

func (sb *SQLBuilder) WriteDashboardPermissionFilter(user *user.SignedInUser, permission dashboards.PermissionType, queryType string) {
	var (
		sql          string
		params       []interface{}
		recQry       string
		recQryParams []interface{}
	)
	if !ac.IsDisabled(sb.cfg) {
		filterRBAC := permissions.NewAccessControlDashboardPermissionFilter(user, permission, queryType, sb.features, sb.recursiveQueriesAreSupported)
		sql, params = filterRBAC.Where()
		recQry, recQryParams = filterRBAC.With()
	} else {
		sql, params = permissions.DashboardPermissionFilter{
			OrgRole:         user.OrgRole,
			Dialect:         sb.dialect,
			UserId:          user.UserID,
			OrgId:           user.OrgID,
			PermissionLevel: permission,
		}.Where()
	}

	sb.sql.WriteString(" AND " + sql)
	sb.params = append(sb.params, params...)
	sb.recQry = recQry
	sb.recQryParams = recQryParams
}
chore: sqlstore cleanup (#60415) * chore: remove unused test helper from sqlstore TimeNow() is no longer used in any tests in this package. * chore: move sqlstore.SQLBuilder to the infra/db package This required some minor refactoring; we need to be a little more explicit about passing around the dialect and engine. On the other hand, that's a few fewer uses of the `dialect` global constant! * chore: move UserDeletions into the only package using it * cleanup around moving sqlbuilder * remove dialect and sqlog global vars * rename userDeletions to serviceAccountDeletions 2022-12-17 00:09:06 +08:00			`package db`
fix: initial fix for #10822 2018-02-08 00:54:21 +08:00
			`import (`
			`"bytes"`

RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`ac "github.com/grafana/grafana/pkg/services/accesscontrol"`
chore: move dashboard_acl models into dashboard service (#62151) 2023-01-26 21:46:30 +08:00			`"github.com/grafana/grafana/pkg/services/dashboards"`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`"github.com/grafana/grafana/pkg/services/featuremgmt"`
chore: sqlstore cleanup (#60415) * chore: remove unused test helper from sqlstore TimeNow() is no longer used in any tests in this package. * chore: move sqlstore.SQLBuilder to the infra/db package This required some minor refactoring; we need to be a little more explicit about passing around the dialect and engine. On the other hand, that's a few fewer uses of the `dialect` global constant! * chore: move UserDeletions into the only package using it * cleanup around moving sqlbuilder * remove dialect and sqlog global vars * rename userDeletions to serviceAccountDeletions 2022-12-17 00:09:06 +08:00			`"github.com/grafana/grafana/pkg/services/sqlstore/migrator"`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`"github.com/grafana/grafana/pkg/services/sqlstore/permissions"`
Move SignedInUser to user service and RoleType and Roles to org (#53445) * Move SignedInUser to user service and RoleType and Roles to org * Use go naming convention for roles * Fix some imports and leftovers * Fix ldap debug test * Fix lint * Fix lint 2 * Fix lint 3 * Fix type and not needed conversion * Clean up messages in api tests * Clean up api tests 2 2022-08-10 17:56:48 +08:00			`"github.com/grafana/grafana/pkg/services/user"`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`"github.com/grafana/grafana/pkg/setting"`
fix: initial fix for #10822 2018-02-08 00:54:21 +08:00			`)`

Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`func NewSqlBuilder(cfg *setting.Cfg, features featuremgmt.FeatureToggles, dialect migrator.Dialect, recursiveQueriesAreSupported bool) SQLBuilder {`
			`return SQLBuilder{cfg: cfg, features: features, dialect: dialect, recursiveQueriesAreSupported: recursiveQueriesAreSupported}`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`}`

Chore: Fix SQL related Go variable naming (#28887) * Chore: Fix variable naming Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-11-11 13:21:08 +08:00			`type SQLBuilder struct {`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`cfg *setting.Cfg`
			`features featuremgmt.FeatureToggles`
			`sql bytes.Buffer`
			`params []interface{}`
			`recQry string`
			`recQryParams []interface{}`
			`recursiveQueriesAreSupported bool`

chore: sqlstore cleanup (#60415) * chore: remove unused test helper from sqlstore TimeNow() is no longer used in any tests in this package. * chore: move sqlstore.SQLBuilder to the infra/db package This required some minor refactoring; we need to be a little more explicit about passing around the dialect and engine. On the other hand, that's a few fewer uses of the `dialect` global constant! * chore: move UserDeletions into the only package using it * cleanup around moving sqlbuilder * remove dialect and sqlog global vars * rename userDeletions to serviceAccountDeletions 2022-12-17 00:09:06 +08:00			`dialect migrator.Dialect`
fix: initial fix for #10822 2018-02-08 00:54:21 +08:00			`}`

Chore: Fix SQL related Go variable naming (#28887) * Chore: Fix variable naming Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-11-11 13:21:08 +08:00			`func (sb *SQLBuilder) Write(sql string, params ...interface{}) {`
refactoring: alert rule query refactoring (#10941) 2018-02-16 20:56:04 +08:00			`sb.sql.WriteString(sql)`

			`if len(params) > 0 {`
			`sb.params = append(sb.params, params...)`
			`}`
			`}`

Chore: Fix SQL related Go variable naming (#28887) * Chore: Fix variable naming Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-11-11 13:21:08 +08:00			`func (sb *SQLBuilder) GetSQLString() string {`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`if sb.recQry == "" {`
			`return sb.sql.String()`
			`}`

			`var bf bytes.Buffer`
			`bf.WriteString(sb.recQry)`
			`bf.WriteString(sb.sql.String())`
			`return bf.String()`
refactoring: alert rule query refactoring (#10941) 2018-02-16 20:56:04 +08:00			`}`

LibraryPanels: Adds permissions to getAllHandler (#31416) * LibraryPanels: Adds permissions to getAllHandler * Chore: adds a test to verify the permissions * Chore: tests refactor 2021-02-24 21:06:22 +08:00			`func (sb *SQLBuilder) GetParams() []interface{} {`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`if len(sb.recQryParams) == 0 {`
			`return sb.params`
			`}`

			`sb.params = append(sb.recQryParams, sb.params...)`
LibraryPanels: Adds permissions to getAllHandler (#31416) * LibraryPanels: Adds permissions to getAllHandler * Chore: adds a test to verify the permissions * Chore: tests refactor 2021-02-24 21:06:22 +08:00			`return sb.params`
			`}`

Chore: Fix SQL related Go variable naming (#28887) * Chore: Fix variable naming Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-11-11 13:21:08 +08:00			`func (sb *SQLBuilder) AddParams(params ...interface{}) {`
refactoring: alert rule query refactoring (#10941) 2018-02-16 20:56:04 +08:00			`sb.params = append(sb.params, params...)`
			`}`

PublicDashboards: Audit table pagination (#69823) 2023-06-21 21:48:09 +08:00			`func (sb SQLBuilder) WriteDashboardPermissionFilter(user user.SignedInUser, permission dashboards.PermissionType, queryType string) {`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`var (`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`sql string`
			`params []interface{}`
			`recQry string`
			`recQryParams []interface{}`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`)`
			`if !ac.IsDisabled(sb.cfg) {`
PublicDashboards: Audit table pagination (#69823) 2023-06-21 21:48:09 +08:00			`filterRBAC := permissions.NewAccessControlDashboardPermissionFilter(user, permission, queryType, sb.features, sb.recursiveQueriesAreSupported)`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`sql, params = filterRBAC.Where()`
			`recQry, recQryParams = filterRBAC.With()`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`} else {`
			`sql, params = permissions.DashboardPermissionFilter{`
			`OrgRole: user.OrgRole,`
chore: sqlstore cleanup (#60415) * chore: remove unused test helper from sqlstore TimeNow() is no longer used in any tests in this package. * chore: move sqlstore.SQLBuilder to the infra/db package This required some minor refactoring; we need to be a little more explicit about passing around the dialect and engine. On the other hand, that's a few fewer uses of the `dialect` global constant! * chore: move UserDeletions into the only package using it * cleanup around moving sqlbuilder * remove dialect and sqlog global vars * rename userDeletions to serviceAccountDeletions 2022-12-17 00:09:06 +08:00			`Dialect: sb.dialect,`
Chore: Add user service method SetUsingOrg and GetSignedInUserWithCacheCtx (#53343) * Chore: Add user service method SetUsingOrg * Chore: Add user service method GetSignedInUserWithCacheCtx * Use method GetSignedInUserWithCacheCtx from user service * Fix lint after rebase * Fix lint * Fix lint error * roll back some changes * Roll back changes in api and middleware * Add xorm tags to SignedInUser ID fields 2022-08-11 19:28:55 +08:00			`UserId: user.UserID,`
			`OrgId: user.OrgID,`
RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`PermissionLevel: permission,`
			`}.Where()`
fix: initial fix for #10822 2018-02-08 00:54:21 +08:00			`}`

RBAC: Fix dashboard filter in SQLBuilder (#53379) * Reuse DasbhoardPermissionFilter * Use rbac dashboard filter if enabled 2022-08-10 16:32:03 +08:00			`sb.sql.WriteString(" AND " + sql)`
			`sb.params = append(sb.params, params...)`
Search v1: Add support for inherited folder permissions if nested folders are enabled (#63275) * Add features dependency to SQLBuilder * Add features dependency to AccessControlDashboardPermissionFilter * Add test for folder inheritance * Dashboard permissions: Return recursive query * Recursive query for inherited folders * Modify search builder * Adjust db.SQLBuilder * Pass flag to SQLbuilder if CTEs are supported * Add support for mysql < 8.0 * Add benchmarking for search with nested folders * Set features to AlertStore * Update pkg/infra/db/sqlbuilder.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Set features to LibraryElementService * SQLBuilder tests with nested folder flag set * Apply suggestion from code review Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> 2023-04-06 16:16:15 +08:00			`sb.recQry = recQry`
			`sb.recQryParams = recQryParams`
fix: initial fix for #10822 2018-02-08 00:54:21 +08:00			`}`