AllowAllSystemAccessControl.java
/*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.facebook.presto.security;
import com.facebook.presto.common.CatalogSchemaName;
import com.facebook.presto.common.QualifiedObjectName;
import com.facebook.presto.spi.CatalogSchemaTableName;
import com.facebook.presto.spi.ColumnMetadata;
import com.facebook.presto.spi.MaterializedViewDefinition;
import com.facebook.presto.spi.SchemaTableName;
import com.facebook.presto.spi.analyzer.ViewDefinition;
import com.facebook.presto.spi.security.AccessControlContext;
import com.facebook.presto.spi.security.AuthorizedIdentity;
import com.facebook.presto.spi.security.Identity;
import com.facebook.presto.spi.security.PrestoPrincipal;
import com.facebook.presto.spi.security.Privilege;
import com.facebook.presto.spi.security.SystemAccessControl;
import com.facebook.presto.spi.security.SystemAccessControlFactory;
import com.facebook.presto.spi.security.ViewExpression;
import com.google.common.collect.ImmutableList;
import com.google.common.collect.ImmutableMap;
import java.security.Principal;
import java.security.cert.X509Certificate;
import java.util.List;
import java.util.Map;
import java.util.Optional;
import java.util.Set;
import static com.google.common.base.Preconditions.checkArgument;
import static java.util.Objects.requireNonNull;
public class AllowAllSystemAccessControl
implements SystemAccessControl
{
public static final String NAME = "allow-all";
private static final AllowAllSystemAccessControl INSTANCE = new AllowAllSystemAccessControl();
public static class Factory
implements SystemAccessControlFactory
{
@Override
public String getName()
{
return NAME;
}
@Override
public SystemAccessControl create(Map<String, String> config)
{
requireNonNull(config, "config is null");
checkArgument(config.isEmpty(), "This access controller does not support any configuration properties");
return INSTANCE;
}
}
@Override
public void checkQueryIntegrity(Identity identity, AccessControlContext context, String query, Map<QualifiedObjectName, ViewDefinition> viewDefinitions, Map<QualifiedObjectName, MaterializedViewDefinition> materializedViewDefinitions)
{
}
@Override
public AuthorizedIdentity selectAuthorizedIdentity(Identity identity, AccessControlContext context, String userName, List<X509Certificate> certificates)
{
return new AuthorizedIdentity(userName, "", true);
}
@Override
public void checkCanSetUser(Identity identity, AccessControlContext context, Optional<Principal> principal, String userName)
{
}
@Override
public void checkCanSetSystemSessionProperty(Identity identity, AccessControlContext context, String propertyName)
{
}
@Override
public void checkCanAccessCatalog(Identity identity, AccessControlContext context, String catalogName)
{
}
@Override
public Set<String> filterCatalogs(Identity identity, AccessControlContext context, Set<String> catalogs)
{
return catalogs;
}
@Override
public void checkCanCreateSchema(Identity identity, AccessControlContext context, CatalogSchemaName schema)
{
}
@Override
public void checkCanDropSchema(Identity identity, AccessControlContext context, CatalogSchemaName schema)
{
}
@Override
public void checkCanRenameSchema(Identity identity, AccessControlContext context, CatalogSchemaName schema, String newSchemaName)
{
}
@Override
public void checkCanShowSchemas(Identity identity, AccessControlContext context, String catalogName)
{
}
@Override
public Set<String> filterSchemas(Identity identity, AccessControlContext context, String catalogName, Set<String> schemaNames)
{
return schemaNames;
}
@Override
public void checkCanShowCreateTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanCreateTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
public void checkCanSetTableProperties(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanDropTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanRenameTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table, CatalogSchemaTableName newTable)
{
}
@Override
public void checkCanShowTablesMetadata(Identity identity, AccessControlContext context, CatalogSchemaName schema)
{
}
@Override
public Set<SchemaTableName> filterTables(Identity identity, AccessControlContext context, String catalogName, Set<SchemaTableName> tableNames)
{
return tableNames;
}
@Override
public void checkCanShowColumnsMetadata(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public List<ColumnMetadata> filterColumns(Identity identity, AccessControlContext context, CatalogSchemaTableName table, List<ColumnMetadata> columns)
{
return columns;
}
@Override
public void checkCanAddColumn(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanDropColumn(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanRenameColumn(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanSelectFromColumns(Identity identity, AccessControlContext context, CatalogSchemaTableName table, Set<String> columns)
{
}
@Override
public void checkCanInsertIntoTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanDeleteFromTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanTruncateTable(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanUpdateTableColumns(Identity identity, AccessControlContext context, CatalogSchemaTableName table, Set<String> updatedColumnNames)
{
}
@Override
public void checkCanCreateView(Identity identity, AccessControlContext context, CatalogSchemaTableName view)
{
}
@Override
public void checkCanRenameView(Identity identity, AccessControlContext context, CatalogSchemaTableName view, CatalogSchemaTableName newView)
{
}
@Override
public void checkCanDropView(Identity identity, AccessControlContext context, CatalogSchemaTableName view)
{
}
@Override
public void checkCanCreateViewWithSelectFromColumns(Identity identity, AccessControlContext context, CatalogSchemaTableName table, Set<String> columns)
{
}
@Override
public void checkCanSetCatalogSessionProperty(Identity identity, AccessControlContext context, String catalogName, String propertyName)
{
}
@Override
public void checkCanGrantTablePrivilege(Identity identity, AccessControlContext context, Privilege privilege, CatalogSchemaTableName table, PrestoPrincipal grantee, boolean withGrantOption)
{
}
@Override
public void checkCanRevokeTablePrivilege(Identity identity, AccessControlContext context, Privilege privilege, CatalogSchemaTableName table, PrestoPrincipal revokee, boolean grantOptionFor)
{
}
@Override
public void checkCanDropConstraint(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public void checkCanAddConstraint(Identity identity, AccessControlContext context, CatalogSchemaTableName table)
{
}
@Override
public List<ViewExpression> getRowFilters(Identity identity, AccessControlContext context, CatalogSchemaTableName tableName)
{
return ImmutableList.of();
}
@Override
public Map<ColumnMetadata, ViewExpression> getColumnMasks(Identity identity, AccessControlContext context, CatalogSchemaTableName tableName, List<ColumnMetadata> columns)
{
return ImmutableMap.of();
}
}