Module: Legion::Data::Rls

Extended by:

Logging::Helper

Defined in:

lib/legion/data/rls.rb

Constant Summary

RLS_TABLES =

%i[
  tasks digital_workers audit_log memory_traces extensions
  functions runners nodes settings value_metrics
].freeze

Class Method Summary

• .assign_tenant(tenant_id) ⇒ Object
• .current_tenant ⇒ Object
• .reset_tenant ⇒ Object
• .rls_enabled? ⇒ Boolean
• .with_tenant(tenant_id) ⇒ Object

Methods included from Logging::Helper

handle_exception

Class Method Details

.assign_tenant(tenant_id) ⇒ Object

# File 'lib/legion/data/rls.rb', line 26

def assign_tenant(tenant_id)
  return unless rls_enabled?

  Legion::Data.connection.run(
    Sequel.lit('SET app.current_tenant = ?', tenant_id.to_s)
  )
end

.current_tenant ⇒ Object

# File 'lib/legion/data/rls.rb', line 34

def current_tenant
  return nil unless rls_enabled?

  Legion::Data.connection.fetch('SHOW app.current_tenant').first&.values&.first
rescue Sequel::DatabaseError => e
  handle_exception(e, level: :warn, handled: true, operation: :current_tenant)
  nil
end

.reset_tenant ⇒ Object

# File 'lib/legion/data/rls.rb', line 43

def reset_tenant
  return unless rls_enabled?

  Legion::Data.connection.run('RESET app.current_tenant')
end

.rls_enabled? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/legion/data/rls.rb', line 17

def rls_enabled?
  return false unless Legion::Settings[:data][:connected]

  Legion::Data.connection.adapter_scheme == :postgres
rescue StandardError => e
  handle_exception(e, level: :warn, handled: true, operation: :rls_enabled)
  false
end

.with_tenant(tenant_id) ⇒ Object

# File 'lib/legion/data/rls.rb', line 49

def with_tenant(tenant_id)
  previous = current_tenant
  assign_tenant(tenant_id)
  yield
ensure
  previous ? assign_tenant(previous) : reset_tenant
end