2020-10-05 10:06:35 -04:00
|
|
|
set testmodule [file normalize tests/modules/getkeys.so]
|
|
|
|
|
|
|
|
|
|
start_server {tags {"modules"}} {
|
|
|
|
|
r module load $testmodule
|
|
|
|
|
|
|
|
|
|
test {COMMAND INFO correctly reports a movable keys module command} {
|
|
|
|
|
set info [lindex [r command info getkeys.command] 0]
|
|
|
|
|
|
Auto-generate the command table from JSON files (#9656)
Delete the hardcoded command table and replace it with an auto-generated table, based
on a JSON file that describes the commands (each command must have a JSON file).
These JSON files are the SSOT of everything there is to know about Redis commands,
and it is reflected fully in COMMAND INFO.
These JSON files are used to generate commands.c (using a python script), which is then
committed to the repo and compiled.
The purpose is:
* Clients and proxies will be able to get much more info from redis, instead of relying on hard coded logic.
* drop the dependency between Redis-user and the commands.json in redis-doc.
* delete help.h and have redis-cli learn everything it needs to know just by issuing COMMAND (will be
done in a separate PR)
* redis.io should stop using commands.json and learn everything from Redis (ultimately one of the release
artifacts should be a large JSON, containing all the information about all of the commands, which will be
generated from COMMAND's reply)
* the byproduct of this is:
* module commands will be able to provide that info and possibly be more of a first-class citizens
* in theory, one may be able to generate a redis client library for a strictly typed language, by using this info.
### Interface changes
#### COMMAND INFO's reply change (and arg-less COMMAND)
Before this commit the reply at index 7 contained the key-specs list
and reply at index 8 contained the sub-commands list (Both unreleased).
Now, reply at index 7 is a map of:
- summary - short command description
- since - debut version
- group - command group
- complexity - complexity string
- doc-flags - flags used for documentation (e.g. "deprecated")
- deprecated-since - if deprecated, from which version?
- replaced-by - if deprecated, which command replaced it?
- history - a list of (version, what-changed) tuples
- hints - a list of strings, meant to provide hints for clients/proxies. see https://github.com/redis/redis/issues/9876
- arguments - an array of arguments. each element is a map, with the possibility of nesting (sub-arguments)
- key-specs - an array of keys specs (already in unstable, just changed location)
- subcommands - a list of sub-commands (already in unstable, just changed location)
- reply-schema - will be added in the future (see https://github.com/redis/redis/issues/9845)
more details on these can be found in https://github.com/redis/redis-doc/pull/1697
only the first three fields are mandatory
#### API changes (unreleased API obviously)
now they take RedisModuleCommand opaque pointer instead of looking up the command by name
- RM_CreateSubcommand
- RM_AddCommandKeySpec
- RM_SetCommandKeySpecBeginSearchIndex
- RM_SetCommandKeySpecBeginSearchKeyword
- RM_SetCommandKeySpecFindKeysRange
- RM_SetCommandKeySpecFindKeysKeynum
Currently, we did not add module API to provide additional information about their commands because
we couldn't agree on how the API should look like, see https://github.com/redis/redis/issues/9944.
### Somehow related changes
1. Literals should be in uppercase while placeholder in lowercase. Now all the GEO* command
will be documented with M|KM|FT|MI and can take both lowercase and uppercase
### Unrelated changes
1. Bugfix: no_madaory_keys was absent in COMMAND's reply
2. expose CMD_MODULE as "module" via COMMAND
3. have a dedicated uint64 for ACL categories (instead of having them in the same uint64 as command flags)
Co-authored-by: Itamar Haber <itamar@garantiadata.com>
2021-12-15 14:23:15 -05:00
|
|
|
assert_equal {module movablekeys} [lindex $info 2]
|
2020-10-05 10:06:35 -04:00
|
|
|
assert_equal {0} [lindex $info 3]
|
|
|
|
|
assert_equal {0} [lindex $info 4]
|
|
|
|
|
assert_equal {0} [lindex $info 5]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
test {COMMAND GETKEYS correctly reports a movable keys module command} {
|
|
|
|
|
r command getkeys getkeys.command arg1 arg2 key key1 arg3 key key2 key key3
|
|
|
|
|
} {key1 key2 key3}
|
|
|
|
|
|
2022-02-08 03:01:35 -05:00
|
|
|
test {COMMAND GETKEYS correctly reports a movable keys module command using flags} {
|
|
|
|
|
r command getkeys getkeys.command_with_flags arg1 arg2 key key1 arg3 key key2 key key3
|
|
|
|
|
} {key1 key2 key3}
|
|
|
|
|
|
|
|
|
|
test {COMMAND GETKEYSANDFLAGS correctly reports a movable keys module command not using flags} {
|
|
|
|
|
r command getkeysandflags getkeys.command arg1 arg2 key key1 arg3 key key2
|
|
|
|
|
} {{key1 {RW access update}} {key2 {RW access update}}}
|
|
|
|
|
|
|
|
|
|
test {COMMAND GETKEYSANDFLAGS correctly reports a movable keys module command using flags} {
|
|
|
|
|
r command getkeysandflags getkeys.command_with_flags arg1 arg2 key key1 arg3 key key2 key key3
|
|
|
|
|
} {{key1 {RO access}} {key2 {RO access}} {key3 {RO access}}}
|
|
|
|
|
|
2020-10-05 10:06:35 -04:00
|
|
|
test {RM_GetCommandKeys on non-existing command} {
|
2022-02-08 03:01:35 -05:00
|
|
|
catch {r getkeys.introspect 0 non-command key1 key2} e
|
2020-10-05 10:06:35 -04:00
|
|
|
set _ $e
|
|
|
|
|
} {*ENOENT*}
|
|
|
|
|
|
|
|
|
|
test {RM_GetCommandKeys on built-in fixed keys command} {
|
2022-02-08 03:01:35 -05:00
|
|
|
r getkeys.introspect 0 set key1 value1
|
2020-10-05 10:06:35 -04:00
|
|
|
} {key1}
|
|
|
|
|
|
2022-02-08 03:01:35 -05:00
|
|
|
test {RM_GetCommandKeys on built-in fixed keys command with flags} {
|
|
|
|
|
r getkeys.introspect 1 set key1 value1
|
|
|
|
|
} {{key1 OW}}
|
|
|
|
|
|
2020-10-05 10:06:35 -04:00
|
|
|
test {RM_GetCommandKeys on EVAL} {
|
2022-02-08 03:01:35 -05:00
|
|
|
r getkeys.introspect 0 eval "" 4 key1 key2 key3 key4 arg1 arg2
|
2020-10-05 10:06:35 -04:00
|
|
|
} {key1 key2 key3 key4}
|
|
|
|
|
|
|
|
|
|
test {RM_GetCommandKeys on a movable keys module command} {
|
2022-02-08 03:01:35 -05:00
|
|
|
r getkeys.introspect 0 getkeys.command arg1 arg2 key key1 arg3 key key2 key key3
|
2020-10-05 10:06:35 -04:00
|
|
|
} {key1 key2 key3}
|
|
|
|
|
|
|
|
|
|
test {RM_GetCommandKeys on a non-movable module command} {
|
2022-02-08 03:01:35 -05:00
|
|
|
r getkeys.introspect 0 getkeys.fixed arg1 key1 key2 key3 arg2
|
2020-10-05 10:06:35 -04:00
|
|
|
} {key1 key2 key3}
|
|
|
|
|
|
|
|
|
|
test {RM_GetCommandKeys with bad arity} {
|
2022-02-08 03:01:35 -05:00
|
|
|
catch {r getkeys.introspect 0 set key} e
|
2020-10-05 10:06:35 -04:00
|
|
|
set _ $e
|
|
|
|
|
} {*EINVAL*}
|
2022-01-23 03:05:06 -05:00
|
|
|
|
2022-02-08 03:01:35 -05:00
|
|
|
# user that can only read from "read" keys, write to "write" keys, and read+write to "RW" keys
|
|
|
|
|
r ACL setuser testuser +@all %R~read* %W~write* %RW~rw*
|
|
|
|
|
|
|
|
|
|
test "module getkeys-api - ACL" {
|
|
|
|
|
# legacy triple didn't provide flags, so they require both read and write
|
|
|
|
|
assert_equal "OK" [r ACL DRYRUN testuser getkeys.command key rw]
|
Unify ACL failure error messaging. (#11160)
Motivation: for applications that use RM ACL verification functions, they would
want to return errors back to the user, in ways that are consistent with Redis.
While investigating how we should return ACL errors to the user, we realized that
Redis isn't consistent, and currently returns ACL error strings in 3 primary ways.
[For the actual implications of this change, see the "Impact" section at the bottom]
1. how it returns an error when calling a command normally
ACL_DENIED_CMD -> "this user has no permissions to run the '%s' command"
ACL_DENIED_KEY -> "this user has no permissions to access one of the keys used as arguments"
ACL_DENIED_CHANNEL -> "this user has no permissions to access one of the channels used as arguments"
2. how it returns an error when calling via 'acl dryrun' command
ACL_DENIED_CMD -> "This user has no permissions to run the '%s' command"
ACL_DENIED_KEY -> "This user has no permissions to access the '%s' key"
ACL_DENIED_CHANNEL -> "This user has no permissions to access the '%s' channel"
3. how it returns an error via RM_Call (and scripting is similar).
ACL_DENIED_CMD -> "can't run this command or subcommand";
ACL_DENIED_KEY -> "can't access at least one of the keys mentioned in the command arguments";
ACL_DENIED_CHANNEL -> "can't publish to the channel mentioned in the command";
In addition, if one wants to use RM_Call's "dry run" capability instead of the RM ACL
functions directly, one also sees a different problem than it returns ACL errors with a -ERR,
not a -PERM, so it can't be returned directly to the caller.
This PR modifies the code to generate a base message in a common manner with the ability
to set verbose flag for acl dry run errors, and keep it unset for normal/rm_call/script cases
```c
sds getAclErrorMessage(int acl_res, user *user, struct redisCommand *cmd, sds errored_val, int verbose) {
switch (acl_res) {
case ACL_DENIED_CMD:
return sdscatfmt(sdsempty(), "User %S has no permissions to run "
"the '%S' command", user->name, cmd->fullname);
case ACL_DENIED_KEY:
if (verbose) {
return sdscatfmt(sdsempty(), "User %S has no permissions to access "
"the '%S' key", user->name, errored_val);
} else {
return sdsnew("No permissions to access a key");
}
case ACL_DENIED_CHANNEL:
if (verbose) {
return sdscatfmt(sdsempty(), "User %S has no permissions to access "
"the '%S' channel", user->name, errored_val);
} else {
return sdsnew("No permissions to access a channel");
}
}
```
The caller can append/prepend the message (adding NOPERM for normal/RM_Call or indicating it's within a script).
Impact:
- Plain commands, as well as scripts and RM_Call now include the user name.
- ACL DRYRUN remains the only one that's verbose (mentions the offending channel or key name)
- Changes RM_Call ACL errors from being a `-ERR` to being `-NOPERM` (besides for textual changes)
**This somewhat a breaking change, but it only affects the RM_Call with both `C` and `E`, or `D`**
- Changes ACL errors in scripts textually from being
`The user executing the script <old non unified text>`
to
`ACL failure in script: <new unified text>`
2022-10-16 02:01:37 -04:00
|
|
|
assert_match {*has no permissions to access the 'read' key*} [r ACL DRYRUN testuser getkeys.command key read]
|
|
|
|
|
assert_match {*has no permissions to access the 'write' key*} [r ACL DRYRUN testuser getkeys.command key write]
|
2022-02-08 03:01:35 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
test "module getkeys-api with flags - ACL" {
|
|
|
|
|
assert_equal "OK" [r ACL DRYRUN testuser getkeys.command_with_flags key rw]
|
|
|
|
|
assert_equal "OK" [r ACL DRYRUN testuser getkeys.command_with_flags key read]
|
Unify ACL failure error messaging. (#11160)
Motivation: for applications that use RM ACL verification functions, they would
want to return errors back to the user, in ways that are consistent with Redis.
While investigating how we should return ACL errors to the user, we realized that
Redis isn't consistent, and currently returns ACL error strings in 3 primary ways.
[For the actual implications of this change, see the "Impact" section at the bottom]
1. how it returns an error when calling a command normally
ACL_DENIED_CMD -> "this user has no permissions to run the '%s' command"
ACL_DENIED_KEY -> "this user has no permissions to access one of the keys used as arguments"
ACL_DENIED_CHANNEL -> "this user has no permissions to access one of the channels used as arguments"
2. how it returns an error when calling via 'acl dryrun' command
ACL_DENIED_CMD -> "This user has no permissions to run the '%s' command"
ACL_DENIED_KEY -> "This user has no permissions to access the '%s' key"
ACL_DENIED_CHANNEL -> "This user has no permissions to access the '%s' channel"
3. how it returns an error via RM_Call (and scripting is similar).
ACL_DENIED_CMD -> "can't run this command or subcommand";
ACL_DENIED_KEY -> "can't access at least one of the keys mentioned in the command arguments";
ACL_DENIED_CHANNEL -> "can't publish to the channel mentioned in the command";
In addition, if one wants to use RM_Call's "dry run" capability instead of the RM ACL
functions directly, one also sees a different problem than it returns ACL errors with a -ERR,
not a -PERM, so it can't be returned directly to the caller.
This PR modifies the code to generate a base message in a common manner with the ability
to set verbose flag for acl dry run errors, and keep it unset for normal/rm_call/script cases
```c
sds getAclErrorMessage(int acl_res, user *user, struct redisCommand *cmd, sds errored_val, int verbose) {
switch (acl_res) {
case ACL_DENIED_CMD:
return sdscatfmt(sdsempty(), "User %S has no permissions to run "
"the '%S' command", user->name, cmd->fullname);
case ACL_DENIED_KEY:
if (verbose) {
return sdscatfmt(sdsempty(), "User %S has no permissions to access "
"the '%S' key", user->name, errored_val);
} else {
return sdsnew("No permissions to access a key");
}
case ACL_DENIED_CHANNEL:
if (verbose) {
return sdscatfmt(sdsempty(), "User %S has no permissions to access "
"the '%S' channel", user->name, errored_val);
} else {
return sdsnew("No permissions to access a channel");
}
}
```
The caller can append/prepend the message (adding NOPERM for normal/RM_Call or indicating it's within a script).
Impact:
- Plain commands, as well as scripts and RM_Call now include the user name.
- ACL DRYRUN remains the only one that's verbose (mentions the offending channel or key name)
- Changes RM_Call ACL errors from being a `-ERR` to being `-NOPERM` (besides for textual changes)
**This somewhat a breaking change, but it only affects the RM_Call with both `C` and `E`, or `D`**
- Changes ACL errors in scripts textually from being
`The user executing the script <old non unified text>`
to
`ACL failure in script: <new unified text>`
2022-10-16 02:01:37 -04:00
|
|
|
assert_match {*has no permissions to access the 'write' key*} [r ACL DRYRUN testuser getkeys.command_with_flags key write]
|
2022-02-08 03:01:35 -05:00
|
|
|
}
|
|
|
|
|
|
2022-01-23 03:05:06 -05:00
|
|
|
test "Unload the module - getkeys" {
|
|
|
|
|
assert_equal {OK} [r module unload getkeys]
|
|
|
|
|
}
|
2020-10-05 10:06:35 -04:00
|
|
|
}
|
