wire-sysio/permission__object_8hpp_source.html

#pragma once

#include <sysio/chain/authority.hpp>

#include <sysio/chain/database_utils.hpp>


#include "multi_index_includes.hpp"


namespace sysio { namespace chain {


   class permission_usage_object : public chainbase::object<permission_usage_object_type, permission_usage_object> {

      OBJECT_CTOR(permission_usage_object)


      id_type           id;

      time_point        last_used;

   };


   struct by_account_permission;

   using permission_usage_index = chainbase::shared_multi_index_container<

      permission_usage_object,

      indexed_by<

         ordered_unique<tag<by_id>, member<permission_usage_object, permission_usage_object::id_type, &permission_usage_object::id>>

      >

   >;


   class permission_object : public chainbase::object<permission_object_type, permission_object> {

      OBJECT_CTOR(permission_object, (auth) )


      id_type                           id;

      permission_usage_object::id_type  usage_id;

      id_type                           parent;

      account_name                      owner;

      permission_name                   name;

      time_point                        last_updated;

      shared_authority                  auth;


      template <typename Index>

      bool satisfies(const permission_object& other, const Index& permission_index) const {

         // If the owners are not the same, this permission cannot satisfy other

         if( owner != other.owner )

            return false;


         // If this permission matches other, or is the immediate parent of other, then this permission satisfies other

         if( id == other.id || id == other.parent )

            return true;


         // Walk up other's parent tree, seeing if we find this permission. If so, this permission satisfies other

         const permission_object* parent = &*permission_index.template get<by_id>().find(other.parent);

         while( parent ) {

            if( id == parent->parent )

               return true;

            if( parent->parent._id == 0 )

               return false;

            parent = &*permission_index.template get<by_id>().find(parent->parent);

         }

         // This permission is not a parent of other, and so does not satisfy other

         return false;

      }

   };


   struct snapshot_permission_object {

      permission_name   parent;

      account_name      owner;

      permission_name   name;

      time_point        last_updated;

      time_point        last_used;

      authority         auth;

   };


   struct by_parent;

   struct by_owner;

   struct by_name;

   using permission_index = chainbase::shared_multi_index_container<

      permission_object,

      indexed_by<

         ordered_unique<tag<by_id>, member<permission_object, permission_object::id_type, &permission_object::id>>,

         ordered_unique<tag<by_parent>,

            composite_key<permission_object,

               member<permission_object, permission_object::id_type, &permission_object::parent>,

               member<permission_object, permission_object::id_type, &permission_object::id>

            >

         >,

         ordered_unique<tag<by_owner>,

            composite_key<permission_object,

               member<permission_object, account_name, &permission_object::owner>,

               member<permission_object, permission_name, &permission_object::name>

            >

         >,

         ordered_unique<tag<by_name>,

            composite_key<permission_object,

               member<permission_object, permission_name, &permission_object::name>,

               member<permission_object, permission_object::id_type, &permission_object::id>

            >

         >

      >

   >;


   namespace config {

      template<>


      struct billable_size<permission_object> { // Also counts memory usage of the associated permission_usage_object

         static const uint64_t  overhead = 5 * overhead_per_row_per_index_ram_bytes;

         static const uint64_t  value = (config::billable_size_v<shared_authority> + 64) + overhead;

      };


   }

} } // sysio::chain


CHAINBASE_SET_INDEX_TYPE(sysio::chain::permission_object, sysio::chain::permission_index)

CHAINBASE_SET_INDEX_TYPE(sysio::chain::permission_usage_object, sysio::chain::permission_usage_index)


FC_REFLECT(sysio::chain::permission_object, (usage_id)(parent)(owner)(name)(last_updated)(auth))

FC_REFLECT(sysio::chain::snapshot_permission_object, (parent)(owner)(name)(last_updated)(last_used)(auth))


FC_REFLECT(sysio::chain::permission_usage_object, (last_used))

authority.hpp

name
std::string name
Definition catch_reporter_console.cpp:186

OBJECT_CTOR
#define OBJECT_CTOR(...)
Definition types.hpp:39

CHAINBASE_SET_INDEX_TYPE
#define CHAINBASE_SET_INDEX_TYPE(OBJECT_TYPE, INDEX_TYPE)
Definition chainbase.hpp:105

chainbase::oid
Definition chainbase.hpp:70

config
Definition permessage_deflate.cpp:42

fc::time_point
Definition time.hpp:42

sysio::chain::permission_object
Definition permission_object.hpp:25

sysio::chain::permission_usage_object
Definition permission_object.hpp:9

database_utils.hpp

multi_index_includes.hpp

chainbase::shared_multi_index_container
boost::multi_index_container< Object, Args..., chainbase::node_allocator< Object > > shared_multi_index_container
Definition chainbase.hpp:558

sysio::chain::config::billable_size_v
constexpr uint64_t billable_size_v
Definition config.hpp:147

sysio::chain::permission_index
chainbase::shared_multi_index_container< permission_object, indexed_by< ordered_unique< tag< by_id >, member< permission_object, permission_object::id_type, &permission_object::id > >, ordered_unique< tag< by_parent >, composite_key< permission_object, member< permission_object, permission_object::id_type, &permission_object::parent >, member< permission_object, permission_object::id_type, &permission_object::id > > >, ordered_unique< tag< by_owner >, composite_key< permission_object, member< permission_object, account_name, &permission_object::owner >, member< permission_object, permission_name, &permission_object::name > > >, ordered_unique< tag< by_name >, composite_key< permission_object, member< permission_object, permission_name, &permission_object::name >, member< permission_object, permission_object::id_type, &permission_object::id > > > > > permission_index
Definition permission_object.hpp:86

sysio::chain::permission_usage_index
chainbase::shared_multi_index_container< permission_usage_object, indexed_by< ordered_unique< tag< by_id >, member< permission_usage_object, permission_usage_object::id_type, &permission_usage_object::id > > > > permission_usage_index
Definition permission_object.hpp:17

sysio
Definition abi_serializer.cpp:8

value
#define value
Definition pkcs11.h:157

FC_REFLECT
#define FC_REFLECT(TYPE, MEMBERS)
Specializes fc::reflector for TYPE.
Definition reflect.hpp:311

uint64_t
unsigned __int64 uint64_t
Definition stdint.h:136

chainbase::object
Definition chainbase.hpp:91

sysio::chain::authority
Definition authority.hpp:165

sysio::chain::config::billable_size
Definition config.hpp:144

sysio::chain::name
Immutable except for fc::from_variant.
Definition name.hpp:43

sysio::chain::shared_authority
Definition authority.hpp:203

sysio::chain::snapshot_permission_object
Definition permission_object.hpp:73

sysio::chain::snapshot_permission_object::auth
authority auth
authority required to execute this permission
Definition permission_object.hpp:79

sysio::chain::snapshot_permission_object::parent
permission_name parent
parent permission
Definition permission_object.hpp:74

sysio::chain::snapshot_permission_object::last_updated
time_point last_updated
the last time this authority was updated
Definition permission_object.hpp:77

sysio::chain::snapshot_permission_object::owner
account_name owner
the account this permission belongs to
Definition permission_object.hpp:75

sysio::chain::snapshot_permission_object::name
permission_name name
human-readable name for the permission
Definition permission_object.hpp:76

sysio::chain::snapshot_permission_object::last_used
time_point last_used
when this permission was last used
Definition permission_object.hpp:78