From 454d48a87c2005981885b29411ebca494cd77ea1 Mon Sep 17 00:00:00 2001
From: David Sommerseth <dazo@users.sourceforge.net>
Date: Sun, 26 Feb 2012 00:13:45 +0100
Subject: edb-pgsql: Added an update SQL view for eurephia_adminlog

This is to restrict the eurephia-admin database user to only be
allowed to update a few fields of the eurephia_adminlog table.

Signed-off-by: David Sommerseth <dazo@users.sourceforge.net>
---
 database/postgresql/sql-schema.sql | 10 ++++++++++
 1 file changed, 10 insertions(+)

(limited to 'database/postgresql')

diff --git a/database/postgresql/sql-schema.sql b/database/postgresql/sql-schema.sql
index 6634344..67e8841 100644
--- a/database/postgresql/sql-schema.sql
+++ b/database/postgresql/sql-schema.sql
@@ -204,6 +204,16 @@ CREATE TABLE eurephia_adminlog (
 CREATE INDEX eurephia_adminlog_uid ON eurephia_adminlog(uid);
 CREATE INDEX eurephia_adminlog_sesskey ON eurephia_adminlog(sessionkey);
 
+CREATE VIEW eurephia_adminlog_update AS
+     SELECT sessionkey, status, last_action, logout
+       FROM eurephia_adminlog;
+CREATE RULE eurephia_adminlog_allow_update
+       AS ON UPDATE TO eurephia_adminlog_update
+       DO INSTEAD UPDATE eurephia_adminlog
+                         SET status = NEW.status, last_action = NEW.last_action,
+                             logout = NEW.logout
+                   WHERE sessionkey = OLD.sessionkey;
+
 -- Table eurephia_adminaccesss: Defines which modules eurephia users have access to.
 --                              The access is defined per user account.  uid refers
 --                              to the user account in the users table.
-- 
cgit