12d7b40b34
Just follow the same pattern as in default_authorizer so it's easy to track where system_auth keyspace is actually used. It will also allow for easier parametrization.
58 lines
1.1 KiB
C++
58 lines
1.1 KiB
C++
/*
|
|
* Copyright (C) 2017-present ScyllaDB
|
|
*/
|
|
|
|
/*
|
|
* SPDX-License-Identifier: AGPL-3.0-or-later
|
|
*/
|
|
|
|
#pragma once
|
|
|
|
#include <string_view>
|
|
#include <functional>
|
|
|
|
#include <seastar/core/future.hh>
|
|
|
|
#include "seastarx.hh"
|
|
|
|
namespace cql3 {
|
|
class query_processor;
|
|
class untyped_result_set_row;
|
|
}
|
|
|
|
namespace auth {
|
|
|
|
namespace meta {
|
|
|
|
namespace roles_table {
|
|
|
|
std::string_view creation_query();
|
|
|
|
constexpr std::string_view name{"roles", 5};
|
|
|
|
constexpr std::string_view role_col_name{"role", 4};
|
|
|
|
}
|
|
|
|
}
|
|
|
|
///
|
|
/// Check that the default role satisfies a predicate, or `false` if the default role does not exist.
|
|
///
|
|
future<bool> default_role_row_satisfies(
|
|
cql3::query_processor&,
|
|
std::function<bool(const cql3::untyped_result_set_row&)>,
|
|
std::optional<std::string> rolename = {}
|
|
);
|
|
|
|
///
|
|
/// Check that any nondefault role satisfies a predicate. `false` if no nondefault roles exist.
|
|
///
|
|
future<bool> any_nondefault_role_row_satisfies(
|
|
cql3::query_processor&,
|
|
std::function<bool(const cql3::untyped_result_set_row&)>,
|
|
std::optional<std::string> rolename = {}
|
|
);
|
|
|
|
}
|