284313f908
Some checks are pending
Bidi Control Character Guard / bidi-control-guard (push) Waiting to run
Circular Dependency Check / Check for new circular dependencies (push) Waiting to run
Citus Migration Smoke / Combined migrations on single-node Citus (push) Waiting to run
E2E Fresh Install Tests / fresh-install-e2e (push) Waiting to run
ext-v2 guardrails / Run ext-v2 guard and ESLint (push) Waiting to run
Integration Tests / Check for relevant changes (push) Waiting to run
Integration Tests / ${{ (github.event_name == 'schedule' || github.event.inputs.suite == 'full') && 'Full integration suite' || 'Tier-1 integration subset' }} (push) Blocked by required conditions
Mobile checks / Mobile lint + typecheck (push) Waiting to run
Mobile checks / Mobile unit tests (push) Waiting to run
Mobile checks / Mobile dependency audit (report) (push) Waiting to run
Mobile checks / Mobile reproducibility checks (push) Waiting to run
Secrets guard (env backups) / Ensure no tracked env backup files (push) Waiting to run
Temporal Readiness / fast-readiness (push) Waiting to run
Temporal Readiness / docker-parity (push) Waiting to run
TypeScript Type Check / Nx affected typecheck (push) Waiting to run
Unit Tests / Skipped-test budget (push) Waiting to run
Unit Tests / Nx affected unit tests (push) Waiting to run
Unit Tests / Server unit coverage (informational) (push) Waiting to run
Validate Tenant Management Schema / Check for relevant changes (push) Waiting to run
Validate Tenant Management Schema / Validate Tenant Management Schema (push) Blocked by required conditions
EE Workflows Build Guard / ee-workflows-build-guard (push) Waiting to run
Excluded: .git, node_modules, secrets/, compose.env, assemblyscript tgz Source: /opt/alga-psa on psa.joliet.tech
43 lines
1.2 KiB
JavaScript
43 lines
1.2 KiB
JavaScript
const TABLES = [
|
|
'accounting_export_batches',
|
|
'accounting_export_lines',
|
|
'accounting_export_errors'
|
|
];
|
|
|
|
exports.up = async function up(knex) {
|
|
for (const table of TABLES) {
|
|
await knex.raw(`ALTER TABLE ${table} DISABLE ROW LEVEL SECURITY`);
|
|
}
|
|
};
|
|
|
|
exports.down = async function down(knex) {
|
|
for (const table of TABLES) {
|
|
await knex.raw(`ALTER TABLE ${table} ENABLE ROW LEVEL SECURITY`);
|
|
await knex.raw(`
|
|
DO $policy$
|
|
BEGIN
|
|
IF EXISTS (
|
|
SELECT 1
|
|
FROM pg_policies
|
|
WHERE schemaname = 'public'
|
|
AND tablename = '${table}'
|
|
AND policyname = 'tenant_isolation_policy'
|
|
) THEN
|
|
EXECUTE $alter$
|
|
ALTER POLICY tenant_isolation_policy ON ${table}
|
|
USING (tenant = current_setting('app.current_tenant')::uuid)
|
|
WITH CHECK (tenant = current_setting('app.current_tenant')::uuid)
|
|
$alter$;
|
|
ELSE
|
|
EXECUTE $create$
|
|
CREATE POLICY tenant_isolation_policy ON ${table}
|
|
USING (tenant = current_setting('app.current_tenant')::uuid)
|
|
WITH CHECK (tenant = current_setting('app.current_tenant')::uuid)
|
|
$create$;
|
|
END IF;
|
|
END;
|
|
$policy$;
|
|
`);
|
|
}
|
|
};
|