Gitiles
Code Review Sign In
gerrit.openfyde.cn / chromium.googlesource.com / chromium / deps / sqlite / 1c8c23cc363291651629bfa365e2fc1c8db6482a / . / test / auth.test
blob: c89b85c28a5ac0355bc59f74ff59475054fc1c91 [file] [log] [blame]
drh2d458342003-04-05 03:42:26 +0000[diff] [blame]1# 2003 April 4
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]2#
3# The author disclaims copyright to this source code. In place of
4# a legal notice, here is a blessing:
5#
6# May you do good and not evil.
7# May you find forgiveness for yourself and forgive others.
8# May you share freely, never taking more than you give.
9#
10#***********************************************************************
11# This file implements regression tests for SQLite library. The
drh2d458342003-04-05 03:42:26 +0000[diff] [blame]12# focus of this script is testing the ATTACH and DETACH commands
13# and related functionality.
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]14#
danielk19771c8c23c2004-11-12 15:53:37 +0000[diff] [blame^]15# $Id: auth.test,v 1.20 2004/11/12 15:53:37 danielk1977 Exp $
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]16#
17
18set testdir [file dirname $argv0]
19source $testdir/tester.tcl
20
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]21# disable this test if the SQLITE_OMIT_AUTHORIZATION macro is
22# defined during compilation.
drh1211de32004-07-26 12:24:22 +0000[diff] [blame]23if {[catch {db auth {}} msg]} {
24 finish_test
25 return
26}
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]27
drhdcd997e2003-01-31 17:21:49 +0000[diff] [blame]28do_test auth-1.1.1 {
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]29 db close
drhef4ac8f2004-06-19 00:16:31 +0000[diff] [blame]30 set ::DB [sqlite3 db test.db]
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]31 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]32 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]33 return SQLITE_DENY
34 }
35 return SQLITE_OK
36 }
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]37 db authorizer ::auth
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]38 catchsql {CREATE TABLE t1(a,b,c)}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]39} {1 {not authorized}}
drhdcd997e2003-01-31 17:21:49 +0000[diff] [blame]40do_test auth-1.1.2 {
41 db errorcode
42} {23}
drh0f14e2e2004-06-29 12:39:08 +0000[diff] [blame]43do_test auth-1.1.3 {
44 db authorizer
45} {::auth}
drh56891232004-09-09 13:55:50 +0000[diff] [blame]46do_test auth-1.1.4 {
47 # Ticket #896.
48 catchsql {
49 SELECT x;
50 }
51} {1 {no such column: x}}
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]52do_test auth-1.2 {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]53 execsql {SELECT name FROM sqlite_master}
54} {}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]55do_test auth-1.3.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]56 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]57 if {$code=="SQLITE_CREATE_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]58 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]59 return SQLITE_DENY
60 }
61 return SQLITE_OK
62 }
63 catchsql {CREATE TABLE t1(a,b,c)}
64} {1 {not authorized}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]65do_test auth-1.3.2 {
drhdcd997e2003-01-31 17:21:49 +0000[diff] [blame]66 db errorcode
67} {23}
68do_test auth-1.3.3 {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]69 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]70} {t1 {} main {}}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]71do_test auth-1.4 {
72 execsql {SELECT name FROM sqlite_master}
73} {}
74
75do_test auth-1.5 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]76 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]77 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]78 return SQLITE_DENY
79 }
80 return SQLITE_OK
81 }
82 catchsql {CREATE TEMP TABLE t1(a,b,c)}
83} {1 {not authorized}}
84do_test auth-1.6 {
85 execsql {SELECT name FROM sqlite_temp_master}
86} {}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]87do_test auth-1.7.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]88 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]89 if {$code=="SQLITE_CREATE_TEMP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]90 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]91 return SQLITE_DENY
92 }
93 return SQLITE_OK
94 }
95 catchsql {CREATE TEMP TABLE t1(a,b,c)}
96} {1 {not authorized}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]97do_test auth-1.7.2 {
98 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]99} {t1 {} temp {}}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]100do_test auth-1.8 {
101 execsql {SELECT name FROM sqlite_temp_master}
102} {}
103
104do_test auth-1.9 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]105 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]106 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]107 return SQLITE_IGNORE
108 }
109 return SQLITE_OK
110 }
111 catchsql {CREATE TABLE t1(a,b,c)}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]112} {0 {}}
113do_test auth-1.10 {
114 execsql {SELECT name FROM sqlite_master}
115} {}
116do_test auth-1.11 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]117 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]118 if {$code=="SQLITE_CREATE_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]119 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]120 return SQLITE_IGNORE
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]121 }
122 return SQLITE_OK
123 }
124 catchsql {CREATE TABLE t1(a,b,c)}
125} {0 {}}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]126do_test auth-1.12 {
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]127 execsql {SELECT name FROM sqlite_master}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]128} {}
129do_test auth-1.13 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]130 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]131 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]132 return SQLITE_IGNORE
133 }
134 return SQLITE_OK
135 }
136 catchsql {CREATE TEMP TABLE t1(a,b,c)}
137} {0 {}}
138do_test auth-1.14 {
139 execsql {SELECT name FROM sqlite_temp_master}
140} {}
141do_test auth-1.15 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]142 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]143 if {$code=="SQLITE_CREATE_TEMP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]144 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]145 return SQLITE_IGNORE
146 }
147 return SQLITE_OK
148 }
149 catchsql {CREATE TEMP TABLE t1(a,b,c)}
150} {0 {}}
151do_test auth-1.16 {
152 execsql {SELECT name FROM sqlite_temp_master}
153} {}
154
155do_test auth-1.17 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]156 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]157 if {$code=="SQLITE_CREATE_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]158 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]159 return SQLITE_DENY
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]160 }
161 return SQLITE_OK
162 }
163 catchsql {CREATE TEMP TABLE t1(a,b,c)}
164} {0 {}}
165do_test auth-1.18 {
166 execsql {SELECT name FROM sqlite_temp_master}
167} {t1}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]168do_test auth-1.19.1 {
169 set ::authargs {}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]170 proc auth {code arg1 arg2 arg3 arg4} {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]171 if {$code=="SQLITE_CREATE_TEMP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]172 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]173 return SQLITE_DENY
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]174 }
175 return SQLITE_OK
176 }
177 catchsql {CREATE TABLE t2(a,b,c)}
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]178} {0 {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]179do_test auth-1.19.2 {
180 set ::authargs
181} {}
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]182do_test auth-1.20 {
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]183 execsql {SELECT name FROM sqlite_master}
184} {t2}
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]185
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]186do_test auth-1.21.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]187 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]188 if {$code=="SQLITE_DROP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]189 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]190 return SQLITE_DENY
191 }
192 return SQLITE_OK
193 }
194 catchsql {DROP TABLE t2}
195} {1 {not authorized}}
196do_test auth-1.21.2 {
197 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]198} {t2 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]199do_test auth-1.22 {
200 execsql {SELECT name FROM sqlite_master}
201} {t2}
202do_test auth-1.23.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]203 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]204 if {$code=="SQLITE_DROP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]205 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]206 return SQLITE_IGNORE
207 }
208 return SQLITE_OK
209 }
210 catchsql {DROP TABLE t2}
211} {0 {}}
212do_test auth-1.23.2 {
213 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]214} {t2 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]215do_test auth-1.24 {
216 execsql {SELECT name FROM sqlite_master}
217} {t2}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]218
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]219do_test auth-1.25 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]220 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]221 if {$code=="SQLITE_DROP_TEMP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]222 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]223 return SQLITE_DENY
224 }
225 return SQLITE_OK
226 }
227 catchsql {DROP TABLE t1}
228} {1 {not authorized}}
229do_test auth-1.26 {
230 execsql {SELECT name FROM sqlite_temp_master}
231} {t1}
232do_test auth-1.27 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]233 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]234 if {$code=="SQLITE_DROP_TEMP_TABLE"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]235 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]236 return SQLITE_IGNORE
237 }
238 return SQLITE_OK
239 }
240 catchsql {DROP TABLE t1}
241} {0 {}}
242do_test auth-1.28 {
243 execsql {SELECT name FROM sqlite_temp_master}
244} {t1}
245
246do_test auth-1.29 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]247 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]248 if {$code=="SQLITE_INSERT" && $arg1=="t2"} {
249 return SQLITE_DENY
250 }
251 return SQLITE_OK
252 }
253 catchsql {INSERT INTO t2 VALUES(1,2,3)}
254} {1 {not authorized}}
255do_test auth-1.30 {
256 execsql {SELECT * FROM t2}
257} {}
258do_test auth-1.31 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]259 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]260 if {$code=="SQLITE_INSERT" && $arg1=="t2"} {
261 return SQLITE_IGNORE
262 }
263 return SQLITE_OK
264 }
265 catchsql {INSERT INTO t2 VALUES(1,2,3)}
266} {0 {}}
267do_test auth-1.32 {
268 execsql {SELECT * FROM t2}
269} {}
270do_test auth-1.33 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]271 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]272 if {$code=="SQLITE_INSERT" && $arg1=="t1"} {
273 return SQLITE_IGNORE
274 }
275 return SQLITE_OK
276 }
277 catchsql {INSERT INTO t2 VALUES(1,2,3)}
278} {0 {}}
279do_test auth-1.34 {
280 execsql {SELECT * FROM t2}
281} {1 2 3}
282
drh4925ca02003-11-27 00:48:57 +0000[diff] [blame]283do_test auth-1.35.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]284 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]285 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="b"} {
286 return SQLITE_DENY
287 }
288 return SQLITE_OK
289 }
290 catchsql {SELECT * FROM t2}
291} {1 {access to t2.b is prohibited}}
drh4925ca02003-11-27 00:48:57 +0000[diff] [blame]292do_test auth-1.35.2 {
293 execsql {ATTACH DATABASE 'test.db' AS two}
294 catchsql {SELECT * FROM two.t2}
295} {1 {access to two.t2.b is prohibited}}
296execsql {DETACH DATABASE two}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]297do_test auth-1.36 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]298 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]299 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="b"} {
300 return SQLITE_IGNORE
301 }
302 return SQLITE_OK
303 }
304 catchsql {SELECT * FROM t2}
305} {0 {1 {} 3}}
306do_test auth-1.37 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]307 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]308 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="b"} {
309 return SQLITE_IGNORE
310 }
311 return SQLITE_OK
312 }
313 catchsql {SELECT * FROM t2 WHERE b=2}
314} {0 {}}
315do_test auth-1.38 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]316 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]317 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="a"} {
318 return SQLITE_IGNORE
319 }
320 return SQLITE_OK
321 }
322 catchsql {SELECT * FROM t2 WHERE b=2}
323} {0 {{} 2 3}}
324do_test auth-1.39 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]325 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]326 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="b"} {
327 return SQLITE_IGNORE
328 }
329 return SQLITE_OK
330 }
331 catchsql {SELECT * FROM t2 WHERE b IS NULL}
332} {0 {1 {} 3}}
333do_test auth-1.40 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]334 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]335 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="b"} {
336 return SQLITE_DENY
337 }
338 return SQLITE_OK
339 }
340 catchsql {SELECT a,c FROM t2 WHERE b IS NULL}
341} {1 {access to t2.b is prohibited}}
342
343do_test auth-1.41 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]344 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]345 if {$code=="SQLITE_UPDATE" && $arg1=="t2" && $arg2=="b"} {
346 return SQLITE_DENY
347 }
348 return SQLITE_OK
349 }
350 catchsql {UPDATE t2 SET a=11}
351} {0 {}}
352do_test auth-1.42 {
353 execsql {SELECT * FROM t2}
354} {11 2 3}
355do_test auth-1.43 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]356 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]357 if {$code=="SQLITE_UPDATE" && $arg1=="t2" && $arg2=="b"} {
358 return SQLITE_DENY
359 }
360 return SQLITE_OK
361 }
362 catchsql {UPDATE t2 SET b=22, c=33}
363} {1 {not authorized}}
364do_test auth-1.44 {
365 execsql {SELECT * FROM t2}
366} {11 2 3}
367do_test auth-1.45 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]368 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]369 if {$code=="SQLITE_UPDATE" && $arg1=="t2" && $arg2=="b"} {
370 return SQLITE_IGNORE
371 }
372 return SQLITE_OK
373 }
374 catchsql {UPDATE t2 SET b=22, c=33}
375} {0 {}}
376do_test auth-1.46 {
377 execsql {SELECT * FROM t2}
378} {11 2 33}
379
380do_test auth-1.47 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]381 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]382 if {$code=="SQLITE_DELETE" && $arg1=="t2"} {
383 return SQLITE_DENY
384 }
385 return SQLITE_OK
386 }
387 catchsql {DELETE FROM t2 WHERE a=11}
388} {1 {not authorized}}
389do_test auth-1.48 {
390 execsql {SELECT * FROM t2}
391} {11 2 33}
392do_test auth-1.49 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]393 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]394 if {$code=="SQLITE_DELETE" && $arg1=="t2"} {
395 return SQLITE_IGNORE
396 }
397 return SQLITE_OK
398 }
399 catchsql {DELETE FROM t2 WHERE a=11}
400} {0 {}}
401do_test auth-1.50 {
402 execsql {SELECT * FROM t2}
403} {11 2 33}
404
405do_test auth-1.51 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]406 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]407 if {$code=="SQLITE_SELECT"} {
408 return SQLITE_DENY
409 }
410 return SQLITE_OK
411 }
412 catchsql {SELECT * FROM t2}
413} {1 {not authorized}}
414do_test auth-1.52 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]415 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]416 if {$code=="SQLITE_SELECT"} {
417 return SQLITE_IGNORE
418 }
419 return SQLITE_OK
420 }
421 catchsql {SELECT * FROM t2}
422} {0 {}}
423do_test auth-1.53 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]424 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]425 if {$code=="SQLITE_SELECT"} {
426 return SQLITE_OK
427 }
428 return SQLITE_OK
429 }
430 catchsql {SELECT * FROM t2}
431} {0 {11 2 33}}
432
danielk19772ac79702004-06-14 11:54:18 +0000[diff] [blame]433# Update for version 3: There used to be a handful of test here that
434# tested the authorisation callback with the COPY command. The following
435# test makes the same database modifications as they used to.
436do_test auth-1.54 {
437 execsql {INSERT INTO t2 VALUES(7, 8, 9);}
438} {}
439do_test auth-1.55 {
440 execsql {SELECT * FROM t2}
441} {11 2 33 7 8 9}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]442
443do_test auth-1.63 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]444 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]445 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
446 return SQLITE_DENY
447 }
448 return SQLITE_OK
449 }
450 catchsql {DROP TABLE t2}
451} {1 {not authorized}}
452do_test auth-1.64 {
453 execsql {SELECT name FROM sqlite_master}
454} {t2}
455do_test auth-1.65 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]456 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]457 if {$code=="SQLITE_DELETE" && $arg1=="t2"} {
458 return SQLITE_DENY
459 }
460 return SQLITE_OK
461 }
462 catchsql {DROP TABLE t2}
463} {1 {not authorized}}
464do_test auth-1.66 {
465 execsql {SELECT name FROM sqlite_master}
466} {t2}
467do_test auth-1.67 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]468 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]469 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
470 return SQLITE_DENY
471 }
472 return SQLITE_OK
473 }
474 catchsql {DROP TABLE t1}
475} {1 {not authorized}}
476do_test auth-1.68 {
477 execsql {SELECT name FROM sqlite_temp_master}
478} {t1}
479do_test auth-1.69 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]480 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]481 if {$code=="SQLITE_DELETE" && $arg1=="t1"} {
482 return SQLITE_DENY
483 }
484 return SQLITE_OK
485 }
486 catchsql {DROP TABLE t1}
487} {1 {not authorized}}
488do_test auth-1.70 {
489 execsql {SELECT name FROM sqlite_temp_master}
490} {t1}
491
492do_test auth-1.71 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]493 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]494 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
495 return SQLITE_IGNORE
496 }
497 return SQLITE_OK
498 }
499 catchsql {DROP TABLE t2}
500} {0 {}}
501do_test auth-1.72 {
502 execsql {SELECT name FROM sqlite_master}
503} {t2}
504do_test auth-1.73 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]505 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]506 if {$code=="SQLITE_DELETE" && $arg1=="t2"} {
507 return SQLITE_IGNORE
508 }
509 return SQLITE_OK
510 }
511 catchsql {DROP TABLE t2}
512} {0 {}}
513do_test auth-1.74 {
514 execsql {SELECT name FROM sqlite_master}
515} {t2}
516do_test auth-1.75 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]517 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]518 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
519 return SQLITE_IGNORE
520 }
521 return SQLITE_OK
522 }
523 catchsql {DROP TABLE t1}
524} {0 {}}
525do_test auth-1.76 {
526 execsql {SELECT name FROM sqlite_temp_master}
527} {t1}
528do_test auth-1.77 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]529 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]530 if {$code=="SQLITE_DELETE" && $arg1=="t1"} {
531 return SQLITE_IGNORE
532 }
533 return SQLITE_OK
534 }
535 catchsql {DROP TABLE t1}
536} {0 {}}
537do_test auth-1.78 {
538 execsql {SELECT name FROM sqlite_temp_master}
539} {t1}
540
541do_test auth-1.79 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]542 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]543 if {$code=="SQLITE_CREATE_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]544 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]545 return SQLITE_DENY
546 }
547 return SQLITE_OK
548 }
549 catchsql {CREATE VIEW v1 AS SELECT a+1,b+1 FROM t2}
550} {1 {not authorized}}
551do_test auth-1.80 {
552 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]553} {v1 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]554do_test auth-1.81 {
555 execsql {SELECT name FROM sqlite_master}
556} {t2}
557do_test auth-1.82 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]558 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]559 if {$code=="SQLITE_CREATE_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]560 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]561 return SQLITE_IGNORE
562 }
563 return SQLITE_OK
564 }
565 catchsql {CREATE VIEW v1 AS SELECT a+1,b+1 FROM t2}
566} {0 {}}
567do_test auth-1.83 {
568 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]569} {v1 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]570do_test auth-1.84 {
571 execsql {SELECT name FROM sqlite_master}
572} {t2}
573
574do_test auth-1.85 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]575 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]576 if {$code=="SQLITE_CREATE_TEMP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]577 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]578 return SQLITE_DENY
579 }
580 return SQLITE_OK
581 }
582 catchsql {CREATE TEMPORARY VIEW v1 AS SELECT a+1,b+1 FROM t2}
583} {1 {not authorized}}
584do_test auth-1.86 {
585 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]586} {v1 {} temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]587do_test auth-1.87 {
588 execsql {SELECT name FROM sqlite_temp_master}
589} {t1}
590do_test auth-1.88 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]591 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]592 if {$code=="SQLITE_CREATE_TEMP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]593 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]594 return SQLITE_IGNORE
595 }
596 return SQLITE_OK
597 }
598 catchsql {CREATE TEMPORARY VIEW v1 AS SELECT a+1,b+1 FROM t2}
599} {0 {}}
600do_test auth-1.89 {
601 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]602} {v1 {} temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]603do_test auth-1.90 {
604 execsql {SELECT name FROM sqlite_temp_master}
605} {t1}
606
607do_test auth-1.91 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]608 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]609 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
610 return SQLITE_DENY
611 }
612 return SQLITE_OK
613 }
614 catchsql {CREATE VIEW v1 AS SELECT a+1,b+1 FROM t2}
615} {1 {not authorized}}
616do_test auth-1.92 {
617 execsql {SELECT name FROM sqlite_master}
618} {t2}
619do_test auth-1.93 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]620 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]621 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
622 return SQLITE_IGNORE
623 }
624 return SQLITE_OK
625 }
626 catchsql {CREATE VIEW v1 AS SELECT a+1,b+1 FROM t2}
627} {0 {}}
628do_test auth-1.94 {
629 execsql {SELECT name FROM sqlite_master}
630} {t2}
631
632do_test auth-1.95 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]633 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]634 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
635 return SQLITE_DENY
636 }
637 return SQLITE_OK
638 }
639 catchsql {CREATE TEMPORARY VIEW v1 AS SELECT a+1,b+1 FROM t2}
640} {1 {not authorized}}
641do_test auth-1.96 {
642 execsql {SELECT name FROM sqlite_temp_master}
643} {t1}
644do_test auth-1.97 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]645 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]646 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
647 return SQLITE_IGNORE
648 }
649 return SQLITE_OK
650 }
651 catchsql {CREATE TEMPORARY VIEW v1 AS SELECT a+1,b+1 FROM t2}
652} {0 {}}
653do_test auth-1.98 {
654 execsql {SELECT name FROM sqlite_temp_master}
655} {t1}
656
657do_test auth-1.99 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]658 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]659 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
660 return SQLITE_DENY
661 }
662 return SQLITE_OK
663 }
664 catchsql {
665 CREATE VIEW v2 AS SELECT a+1,b+1 FROM t2;
666 DROP VIEW v2
667 }
668} {1 {not authorized}}
669do_test auth-1.100 {
670 execsql {SELECT name FROM sqlite_master}
671} {t2 v2}
672do_test auth-1.101 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]673 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]674 if {$code=="SQLITE_DROP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]675 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]676 return SQLITE_DENY
677 }
678 return SQLITE_OK
679 }
680 catchsql {DROP VIEW v2}
681} {1 {not authorized}}
682do_test auth-1.102 {
683 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]684} {v2 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]685do_test auth-1.103 {
686 execsql {SELECT name FROM sqlite_master}
687} {t2 v2}
688do_test auth-1.104 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]689 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]690 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
691 return SQLITE_IGNORE
692 }
693 return SQLITE_OK
694 }
695 catchsql {DROP VIEW v2}
696} {0 {}}
697do_test auth-1.105 {
698 execsql {SELECT name FROM sqlite_master}
699} {t2 v2}
700do_test auth-1.106 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]701 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]702 if {$code=="SQLITE_DROP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]703 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]704 return SQLITE_IGNORE
705 }
706 return SQLITE_OK
707 }
708 catchsql {DROP VIEW v2}
709} {0 {}}
710do_test auth-1.107 {
711 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]712} {v2 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]713do_test auth-1.108 {
714 execsql {SELECT name FROM sqlite_master}
715} {t2 v2}
716do_test auth-1.109 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]717 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]718 if {$code=="SQLITE_DROP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]719 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]720 return SQLITE_OK
721 }
722 return SQLITE_OK
723 }
724 catchsql {DROP VIEW v2}
725} {0 {}}
726do_test auth-1.110 {
727 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]728} {v2 {} main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]729do_test auth-1.111 {
730 execsql {SELECT name FROM sqlite_master}
731} {t2}
732
733
734do_test auth-1.112 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]735 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]736 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
737 return SQLITE_DENY
738 }
739 return SQLITE_OK
740 }
741 catchsql {
742 CREATE TEMP VIEW v1 AS SELECT a+1,b+1 FROM t1;
743 DROP VIEW v1
744 }
745} {1 {not authorized}}
746do_test auth-1.113 {
747 execsql {SELECT name FROM sqlite_temp_master}
748} {t1 v1}
749do_test auth-1.114 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]750 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]751 if {$code=="SQLITE_DROP_TEMP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]752 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]753 return SQLITE_DENY
754 }
755 return SQLITE_OK
756 }
757 catchsql {DROP VIEW v1}
758} {1 {not authorized}}
759do_test auth-1.115 {
760 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]761} {v1 {} temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]762do_test auth-1.116 {
763 execsql {SELECT name FROM sqlite_temp_master}
764} {t1 v1}
765do_test auth-1.117 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]766 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]767 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
768 return SQLITE_IGNORE
769 }
770 return SQLITE_OK
771 }
772 catchsql {DROP VIEW v1}
773} {0 {}}
774do_test auth-1.118 {
775 execsql {SELECT name FROM sqlite_temp_master}
776} {t1 v1}
777do_test auth-1.119 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]778 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]779 if {$code=="SQLITE_DROP_TEMP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]780 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]781 return SQLITE_IGNORE
782 }
783 return SQLITE_OK
784 }
785 catchsql {DROP VIEW v1}
786} {0 {}}
787do_test auth-1.120 {
788 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]789} {v1 {} temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]790do_test auth-1.121 {
791 execsql {SELECT name FROM sqlite_temp_master}
792} {t1 v1}
793do_test auth-1.122 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]794 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]795 if {$code=="SQLITE_DROP_TEMP_VIEW"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]796 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]797 return SQLITE_OK
798 }
799 return SQLITE_OK
800 }
801 catchsql {DROP VIEW v1}
802} {0 {}}
803do_test auth-1.123 {
804 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]805} {v1 {} temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]806do_test auth-1.124 {
807 execsql {SELECT name FROM sqlite_temp_master}
808} {t1}
809
810do_test auth-1.125 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]811 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]812 if {$code=="SQLITE_CREATE_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]813 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]814 return SQLITE_DENY
815 }
816 return SQLITE_OK
817 }
818 catchsql {
819 CREATE TRIGGER r2 DELETE on t2 BEGIN
820 SELECT NULL;
821 END;
822 }
823} {1 {not authorized}}
824do_test auth-1.126 {
825 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]826} {r2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]827do_test auth-1.127 {
828 execsql {SELECT name FROM sqlite_master}
829} {t2}
830do_test auth-1.128 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]831 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]832 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
833 return SQLITE_DENY
834 }
835 return SQLITE_OK
836 }
837 catchsql {
838 CREATE TRIGGER r2 DELETE on t2 BEGIN
839 SELECT NULL;
840 END;
841 }
842} {1 {not authorized}}
843do_test auth-1.129 {
844 execsql {SELECT name FROM sqlite_master}
845} {t2}
846do_test auth-1.130 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]847 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]848 if {$code=="SQLITE_CREATE_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]849 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]850 return SQLITE_IGNORE
851 }
852 return SQLITE_OK
853 }
854 catchsql {
855 CREATE TRIGGER r2 DELETE on t2 BEGIN
856 SELECT NULL;
857 END;
858 }
859} {0 {}}
860do_test auth-1.131 {
861 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]862} {r2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]863do_test auth-1.132 {
864 execsql {SELECT name FROM sqlite_master}
865} {t2}
866do_test auth-1.133 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]867 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]868 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
869 return SQLITE_IGNORE
870 }
871 return SQLITE_OK
872 }
873 catchsql {
874 CREATE TRIGGER r2 DELETE on t2 BEGIN
875 SELECT NULL;
876 END;
877 }
878} {0 {}}
879do_test auth-1.134 {
880 execsql {SELECT name FROM sqlite_master}
881} {t2}
882do_test auth-1.135 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]883 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]884 if {$code=="SQLITE_CREATE_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]885 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]886 return SQLITE_OK
887 }
888 return SQLITE_OK
889 }
890 catchsql {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]891 CREATE TABLE tx(id);
892 CREATE TRIGGER r2 AFTER INSERT ON t2 BEGIN
893 INSERT INTO tx VALUES(NEW.rowid);
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]894 END;
895 }
896} {0 {}}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]897do_test auth-1.136.1 {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]898 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]899} {r2 t2 main {}}
900do_test auth-1.136.2 {
901 execsql {
902 SELECT name FROM sqlite_master WHERE type='trigger'
903 }
904} {r2}
905do_test auth-1.136.3 {
906 proc auth {code arg1 arg2 arg3 arg4} {
907 lappend ::authargs $code $arg1 $arg2 $arg3 $arg4
908 return SQLITE_OK
909 }
910 set ::authargs {}
911 execsql {
912 INSERT INTO t2 VALUES(1,2,3);
913 }
914 set ::authargs
915} {SQLITE_INSERT t2 {} main {} SQLITE_INSERT tx {} main r2 SQLITE_READ t2 ROWID main r2}
916do_test auth-1.136.4 {
917 execsql {
918 SELECT * FROM tx;
919 }
920} {3}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]921do_test auth-1.137 {
922 execsql {SELECT name FROM sqlite_master}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]923} {t2 tx r2}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]924do_test auth-1.138 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]925 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]926 if {$code=="SQLITE_CREATE_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]927 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]928 return SQLITE_DENY
929 }
930 return SQLITE_OK
931 }
932 catchsql {
933 CREATE TRIGGER r1 DELETE on t1 BEGIN
934 SELECT NULL;
935 END;
936 }
937} {1 {not authorized}}
938do_test auth-1.139 {
939 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]940} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]941do_test auth-1.140 {
942 execsql {SELECT name FROM sqlite_temp_master}
943} {t1}
944do_test auth-1.141 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]945 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]946 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
947 return SQLITE_DENY
948 }
949 return SQLITE_OK
950 }
951 catchsql {
952 CREATE TRIGGER r1 DELETE on t1 BEGIN
953 SELECT NULL;
954 END;
955 }
956} {1 {not authorized}}
957do_test auth-1.142 {
958 execsql {SELECT name FROM sqlite_temp_master}
959} {t1}
960do_test auth-1.143 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]961 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]962 if {$code=="SQLITE_CREATE_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]963 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]964 return SQLITE_IGNORE
965 }
966 return SQLITE_OK
967 }
968 catchsql {
969 CREATE TRIGGER r1 DELETE on t1 BEGIN
970 SELECT NULL;
971 END;
972 }
973} {0 {}}
974do_test auth-1.144 {
975 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]976} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]977do_test auth-1.145 {
978 execsql {SELECT name FROM sqlite_temp_master}
979} {t1}
980do_test auth-1.146 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]981 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]982 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
983 return SQLITE_IGNORE
984 }
985 return SQLITE_OK
986 }
987 catchsql {
988 CREATE TRIGGER r1 DELETE on t1 BEGIN
989 SELECT NULL;
990 END;
991 }
992} {0 {}}
993do_test auth-1.147 {
994 execsql {SELECT name FROM sqlite_temp_master}
995} {t1}
996do_test auth-1.148 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]997 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]998 if {$code=="SQLITE_CREATE_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]999 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1000 return SQLITE_OK
1001 }
1002 return SQLITE_OK
1003 }
1004 catchsql {
1005 CREATE TRIGGER r1 DELETE on t1 BEGIN
1006 SELECT NULL;
1007 END;
1008 }
1009} {0 {}}
1010do_test auth-1.149 {
1011 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1012} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1013do_test auth-1.150 {
1014 execsql {SELECT name FROM sqlite_temp_master}
1015} {t1 r1}
1016
1017do_test auth-1.151 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1018 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1019 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
1020 return SQLITE_DENY
1021 }
1022 return SQLITE_OK
1023 }
1024 catchsql {DROP TRIGGER r2}
1025} {1 {not authorized}}
1026do_test auth-1.152 {
1027 execsql {SELECT name FROM sqlite_master}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1028} {t2 tx r2}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1029do_test auth-1.153 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1030 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1031 if {$code=="SQLITE_DROP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1032 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1033 return SQLITE_DENY
1034 }
1035 return SQLITE_OK
1036 }
1037 catchsql {DROP TRIGGER r2}
1038} {1 {not authorized}}
1039do_test auth-1.154 {
1040 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1041} {r2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1042do_test auth-1.155 {
1043 execsql {SELECT name FROM sqlite_master}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1044} {t2 tx r2}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1045do_test auth-1.156 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1046 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1047 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
1048 return SQLITE_IGNORE
1049 }
1050 return SQLITE_OK
1051 }
1052 catchsql {DROP TRIGGER r2}
1053} {0 {}}
1054do_test auth-1.157 {
1055 execsql {SELECT name FROM sqlite_master}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1056} {t2 tx r2}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1057do_test auth-1.158 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1058 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1059 if {$code=="SQLITE_DROP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1060 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1061 return SQLITE_IGNORE
1062 }
1063 return SQLITE_OK
1064 }
1065 catchsql {DROP TRIGGER r2}
1066} {0 {}}
1067do_test auth-1.159 {
1068 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1069} {r2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1070do_test auth-1.160 {
1071 execsql {SELECT name FROM sqlite_master}
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1072} {t2 tx r2}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1073do_test auth-1.161 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1074 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1075 if {$code=="SQLITE_DROP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1076 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1077 return SQLITE_OK
1078 }
1079 return SQLITE_OK
1080 }
1081 catchsql {DROP TRIGGER r2}
1082} {0 {}}
1083do_test auth-1.162 {
1084 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1085} {r2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1086do_test auth-1.163 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1087 execsql {
1088 DROP TABLE tx;
1089 DELETE FROM t2 WHERE a=1 AND b=2 AND c=3;
1090 SELECT name FROM sqlite_master;
1091 }
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1092} {t2}
1093
1094do_test auth-1.164 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1095 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1096 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
1097 return SQLITE_DENY
1098 }
1099 return SQLITE_OK
1100 }
1101 catchsql {DROP TRIGGER r1}
1102} {1 {not authorized}}
1103do_test auth-1.165 {
1104 execsql {SELECT name FROM sqlite_temp_master}
1105} {t1 r1}
1106do_test auth-1.166 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1107 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1108 if {$code=="SQLITE_DROP_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1109 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1110 return SQLITE_DENY
1111 }
1112 return SQLITE_OK
1113 }
1114 catchsql {DROP TRIGGER r1}
1115} {1 {not authorized}}
1116do_test auth-1.167 {
1117 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1118} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1119do_test auth-1.168 {
1120 execsql {SELECT name FROM sqlite_temp_master}
1121} {t1 r1}
1122do_test auth-1.169 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1123 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1124 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
1125 return SQLITE_IGNORE
1126 }
1127 return SQLITE_OK
1128 }
1129 catchsql {DROP TRIGGER r1}
1130} {0 {}}
1131do_test auth-1.170 {
1132 execsql {SELECT name FROM sqlite_temp_master}
1133} {t1 r1}
1134do_test auth-1.171 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1135 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1136 if {$code=="SQLITE_DROP_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1137 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1138 return SQLITE_IGNORE
1139 }
1140 return SQLITE_OK
1141 }
1142 catchsql {DROP TRIGGER r1}
1143} {0 {}}
1144do_test auth-1.172 {
1145 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1146} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1147do_test auth-1.173 {
1148 execsql {SELECT name FROM sqlite_temp_master}
1149} {t1 r1}
1150do_test auth-1.174 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1151 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1152 if {$code=="SQLITE_DROP_TEMP_TRIGGER"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1153 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1154 return SQLITE_OK
1155 }
1156 return SQLITE_OK
1157 }
1158 catchsql {DROP TRIGGER r1}
1159} {0 {}}
1160do_test auth-1.175 {
1161 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1162} {r1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1163do_test auth-1.176 {
1164 execsql {SELECT name FROM sqlite_temp_master}
1165} {t1}
1166
1167do_test auth-1.177 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1168 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1169 if {$code=="SQLITE_CREATE_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1170 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1171 return SQLITE_DENY
1172 }
1173 return SQLITE_OK
1174 }
1175 catchsql {CREATE INDEX i2 ON t2(a)}
1176} {1 {not authorized}}
1177do_test auth-1.178 {
1178 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1179} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1180do_test auth-1.179 {
1181 execsql {SELECT name FROM sqlite_master}
1182} {t2}
1183do_test auth-1.180 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1184 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1185 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
1186 return SQLITE_DENY
1187 }
1188 return SQLITE_OK
1189 }
1190 catchsql {CREATE INDEX i2 ON t2(a)}
1191} {1 {not authorized}}
1192do_test auth-1.181 {
1193 execsql {SELECT name FROM sqlite_master}
1194} {t2}
1195do_test auth-1.182 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1196 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1197 if {$code=="SQLITE_CREATE_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1198 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1199 return SQLITE_IGNORE
1200 }
1201 return SQLITE_OK
1202 }
1203 catchsql {CREATE INDEX i2 ON t2(b)}
1204} {0 {}}
1205do_test auth-1.183 {
1206 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1207} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1208do_test auth-1.184 {
1209 execsql {SELECT name FROM sqlite_master}
1210} {t2}
1211do_test auth-1.185 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1212 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1213 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_master"} {
1214 return SQLITE_IGNORE
1215 }
1216 return SQLITE_OK
1217 }
1218 catchsql {CREATE INDEX i2 ON t2(b)}
1219} {0 {}}
1220do_test auth-1.186 {
1221 execsql {SELECT name FROM sqlite_master}
1222} {t2}
1223do_test auth-1.187 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1224 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1225 if {$code=="SQLITE_CREATE_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1226 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1227 return SQLITE_OK
1228 }
1229 return SQLITE_OK
1230 }
1231 catchsql {CREATE INDEX i2 ON t2(a)}
1232} {0 {}}
1233do_test auth-1.188 {
1234 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1235} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1236do_test auth-1.189 {
1237 execsql {SELECT name FROM sqlite_master}
1238} {t2 i2}
1239
1240do_test auth-1.190 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1241 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1242 if {$code=="SQLITE_CREATE_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1243 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1244 return SQLITE_DENY
1245 }
1246 return SQLITE_OK
1247 }
1248 catchsql {CREATE INDEX i1 ON t1(a)}
1249} {1 {not authorized}}
1250do_test auth-1.191 {
1251 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1252} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1253do_test auth-1.192 {
1254 execsql {SELECT name FROM sqlite_temp_master}
1255} {t1}
1256do_test auth-1.193 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1257 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1258 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
1259 return SQLITE_DENY
1260 }
1261 return SQLITE_OK
1262 }
1263 catchsql {CREATE INDEX i1 ON t1(b)}
1264} {1 {not authorized}}
1265do_test auth-1.194 {
1266 execsql {SELECT name FROM sqlite_temp_master}
1267} {t1}
1268do_test auth-1.195 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1269 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1270 if {$code=="SQLITE_CREATE_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1271 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1272 return SQLITE_IGNORE
1273 }
1274 return SQLITE_OK
1275 }
1276 catchsql {CREATE INDEX i1 ON t1(b)}
1277} {0 {}}
1278do_test auth-1.196 {
1279 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1280} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1281do_test auth-1.197 {
1282 execsql {SELECT name FROM sqlite_temp_master}
1283} {t1}
1284do_test auth-1.198 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1285 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1286 if {$code=="SQLITE_INSERT" && $arg1=="sqlite_temp_master"} {
1287 return SQLITE_IGNORE
1288 }
1289 return SQLITE_OK
1290 }
1291 catchsql {CREATE INDEX i1 ON t1(c)}
1292} {0 {}}
1293do_test auth-1.199 {
1294 execsql {SELECT name FROM sqlite_temp_master}
1295} {t1}
1296do_test auth-1.200 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1297 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1298 if {$code=="SQLITE_CREATE_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1299 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1300 return SQLITE_OK
1301 }
1302 return SQLITE_OK
1303 }
1304 catchsql {CREATE INDEX i1 ON t1(a)}
1305} {0 {}}
1306do_test auth-1.201 {
1307 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1308} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1309do_test auth-1.202 {
1310 execsql {SELECT name FROM sqlite_temp_master}
1311} {t1 i1}
1312
1313do_test auth-1.203 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1314 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1315 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
1316 return SQLITE_DENY
1317 }
1318 return SQLITE_OK
1319 }
1320 catchsql {DROP INDEX i2}
1321} {1 {not authorized}}
1322do_test auth-1.204 {
1323 execsql {SELECT name FROM sqlite_master}
1324} {t2 i2}
1325do_test auth-1.205 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1326 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1327 if {$code=="SQLITE_DROP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1328 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1329 return SQLITE_DENY
1330 }
1331 return SQLITE_OK
1332 }
1333 catchsql {DROP INDEX i2}
1334} {1 {not authorized}}
1335do_test auth-1.206 {
1336 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1337} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1338do_test auth-1.207 {
1339 execsql {SELECT name FROM sqlite_master}
1340} {t2 i2}
1341do_test auth-1.208 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1342 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1343 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_master"} {
1344 return SQLITE_IGNORE
1345 }
1346 return SQLITE_OK
1347 }
1348 catchsql {DROP INDEX i2}
1349} {0 {}}
1350do_test auth-1.209 {
1351 execsql {SELECT name FROM sqlite_master}
1352} {t2 i2}
1353do_test auth-1.210 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1354 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1355 if {$code=="SQLITE_DROP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1356 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1357 return SQLITE_IGNORE
1358 }
1359 return SQLITE_OK
1360 }
1361 catchsql {DROP INDEX i2}
1362} {0 {}}
1363do_test auth-1.211 {
1364 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1365} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1366do_test auth-1.212 {
1367 execsql {SELECT name FROM sqlite_master}
1368} {t2 i2}
1369do_test auth-1.213 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1370 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1371 if {$code=="SQLITE_DROP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1372 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1373 return SQLITE_OK
1374 }
1375 return SQLITE_OK
1376 }
1377 catchsql {DROP INDEX i2}
1378} {0 {}}
1379do_test auth-1.214 {
1380 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1381} {i2 t2 main {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1382do_test auth-1.215 {
1383 execsql {SELECT name FROM sqlite_master}
1384} {t2}
1385
1386do_test auth-1.216 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1387 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1388 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
1389 return SQLITE_DENY
1390 }
1391 return SQLITE_OK
1392 }
1393 catchsql {DROP INDEX i1}
1394} {1 {not authorized}}
1395do_test auth-1.217 {
1396 execsql {SELECT name FROM sqlite_temp_master}
1397} {t1 i1}
1398do_test auth-1.218 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1399 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1400 if {$code=="SQLITE_DROP_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1401 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1402 return SQLITE_DENY
1403 }
1404 return SQLITE_OK
1405 }
1406 catchsql {DROP INDEX i1}
1407} {1 {not authorized}}
1408do_test auth-1.219 {
1409 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1410} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1411do_test auth-1.220 {
1412 execsql {SELECT name FROM sqlite_temp_master}
1413} {t1 i1}
1414do_test auth-1.221 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1415 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1416 if {$code=="SQLITE_DELETE" && $arg1=="sqlite_temp_master"} {
1417 return SQLITE_IGNORE
1418 }
1419 return SQLITE_OK
1420 }
1421 catchsql {DROP INDEX i1}
1422} {0 {}}
1423do_test auth-1.222 {
1424 execsql {SELECT name FROM sqlite_temp_master}
1425} {t1 i1}
1426do_test auth-1.223 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1427 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1428 if {$code=="SQLITE_DROP_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1429 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1430 return SQLITE_IGNORE
1431 }
1432 return SQLITE_OK
1433 }
1434 catchsql {DROP INDEX i1}
1435} {0 {}}
1436do_test auth-1.224 {
1437 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1438} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1439do_test auth-1.225 {
1440 execsql {SELECT name FROM sqlite_temp_master}
1441} {t1 i1}
1442do_test auth-1.226 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1443 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1444 if {$code=="SQLITE_DROP_TEMP_INDEX"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1445 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1446 return SQLITE_OK
1447 }
1448 return SQLITE_OK
1449 }
1450 catchsql {DROP INDEX i1}
1451} {0 {}}
1452do_test auth-1.227 {
1453 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1454} {i1 t1 temp {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1455do_test auth-1.228 {
1456 execsql {SELECT name FROM sqlite_temp_master}
1457} {t1}
1458
1459do_test auth-1.229 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1460 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1461 if {$code=="SQLITE_PRAGMA"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1462 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1463 return SQLITE_DENY
1464 }
1465 return SQLITE_OK
1466 }
1467 catchsql {PRAGMA full_column_names=on}
1468} {1 {not authorized}}
1469do_test auth-1.230 {
1470 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1471} {full_column_names on {} {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1472do_test auth-1.231 {
1473 execsql2 {SELECT a FROM t2}
1474} {a 11 a 7}
1475do_test auth-1.232 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1476 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1477 if {$code=="SQLITE_PRAGMA"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1478 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1479 return SQLITE_IGNORE
1480 }
1481 return SQLITE_OK
1482 }
1483 catchsql {PRAGMA full_column_names=on}
1484} {0 {}}
1485do_test auth-1.233 {
1486 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1487} {full_column_names on {} {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1488do_test auth-1.234 {
1489 execsql2 {SELECT a FROM t2}
1490} {a 11 a 7}
1491do_test auth-1.235 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1492 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1493 if {$code=="SQLITE_PRAGMA"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1494 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1495 return SQLITE_OK
1496 }
1497 return SQLITE_OK
1498 }
1499 catchsql {PRAGMA full_column_names=on}
1500} {0 {}}
1501do_test auth-1.236 {
1502 execsql2 {SELECT a FROM t2}
1503} {t2.a 11 t2.a 7}
1504do_test auth-1.237 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1505 proc auth {code arg1 arg2 arg3 arg4} {
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1506 if {$code=="SQLITE_PRAGMA"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1507 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1508 return SQLITE_OK
1509 }
1510 return SQLITE_OK
1511 }
1512 catchsql {PRAGMA full_column_names=OFF}
1513} {0 {}}
1514do_test auth-1.238 {
1515 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1516} {full_column_names OFF {} {}}
drh77ad4e42003-01-14 02:49:27 +0000[diff] [blame]1517do_test auth-1.239 {
1518 execsql2 {SELECT a FROM t2}
1519} {a 11 a 7}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]1520
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1521do_test auth-1.240 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1522 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1523 if {$code=="SQLITE_TRANSACTION"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1524 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1525 return SQLITE_DENY
1526 }
1527 return SQLITE_OK
1528 }
1529 catchsql {BEGIN}
1530} {1 {not authorized}}
1531do_test auth-1.241 {
1532 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1533} {BEGIN {} {} {}}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1534do_test auth-1.242 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1535 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1536 if {$code=="SQLITE_TRANSACTION" && $arg1!="BEGIN"} {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1537 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1538 return SQLITE_DENY
1539 }
1540 return SQLITE_OK
1541 }
1542 catchsql {BEGIN; INSERT INTO t2 VALUES(44,55,66); COMMIT}
1543} {1 {not authorized}}
1544do_test auth-1.243 {
1545 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1546} {COMMIT {} {} {}}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1547do_test auth-1.244 {
1548 execsql {SELECT * FROM t2}
1549} {11 2 33 7 8 9 44 55 66}
1550do_test auth-1.245 {
1551 catchsql {ROLLBACK}
1552} {1 {not authorized}}
1553do_test auth-1.246 {
1554 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1555} {ROLLBACK {} {} {}}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1556do_test auth-1.247 {
1557 catchsql {END TRANSACTION}
1558} {1 {not authorized}}
1559do_test auth-1.248 {
1560 set ::authargs
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1561} {COMMIT {} {} {}}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1562do_test auth-1.249 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1563 db authorizer {}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1564 catchsql {ROLLBACK}
1565} {0 {}}
1566do_test auth-1.250 {
1567 execsql {SELECT * FROM t2}
1568} {11 2 33 7 8 9}
1569
drh81e293b2003-06-06 19:00:42 +0000[diff] [blame]1570# ticket #340 - authorization for ATTACH and DETACH.
1571#
1572do_test auth-1.251 {
1573 db authorizer ::auth
1574 proc auth {code arg1 arg2 arg3 arg4} {
1575 if {$code=="SQLITE_ATTACH"} {
1576 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1577 }
1578 return SQLITE_OK
1579 }
1580 catchsql {
1581 ATTACH DATABASE ':memory:' AS test1
1582 }
1583} {0 {}}
1584do_test auth-1.252 {
1585 set ::authargs
1586} {:memory: {} {} {}}
1587do_test auth-1.253 {
1588 catchsql {DETACH DATABASE test1}
1589 proc auth {code arg1 arg2 arg3 arg4} {
1590 if {$code=="SQLITE_ATTACH"} {
1591 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1592 return SQLITE_DENY
1593 }
1594 return SQLITE_OK
1595 }
1596 catchsql {
1597 ATTACH DATABASE ':memory:' AS test1;
1598 }
1599} {1 {not authorized}}
1600do_test auth-1.254 {
1601 lindex [execsql {PRAGMA database_list}] 7
1602} {}
1603do_test auth-1.255 {
1604 catchsql {DETACH DATABASE test1}
1605 proc auth {code arg1 arg2 arg3 arg4} {
1606 if {$code=="SQLITE_ATTACH"} {
1607 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1608 return SQLITE_IGNORE
1609 }
1610 return SQLITE_OK
1611 }
1612 catchsql {
1613 ATTACH DATABASE ':memory:' AS test1;
1614 }
1615} {0 {}}
1616do_test auth-1.256 {
1617 lindex [execsql {PRAGMA database_list}] 7
1618} {}
1619do_test auth-1.257 {
1620 proc auth {code arg1 arg2 arg3 arg4} {
1621 if {$code=="SQLITE_DETACH"} {
1622 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1623 return SQLITE_OK
1624 }
1625 return SQLITE_OK
1626 }
1627 execsql {ATTACH DATABASE ':memory:' AS test1}
1628 catchsql {
1629 DETACH DATABASE test1;
1630 }
1631} {0 {}}
1632do_test auth-1.258 {
1633 lindex [execsql {PRAGMA database_list}] 7
1634} {}
1635do_test auth-1.259 {
1636 execsql {ATTACH DATABASE ':memory:' AS test1}
1637 proc auth {code arg1 arg2 arg3 arg4} {
1638 if {$code=="SQLITE_DETACH"} {
1639 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1640 return SQLITE_IGNORE
1641 }
1642 return SQLITE_OK
1643 }
1644 catchsql {
1645 DETACH DATABASE test1;
1646 }
1647} {0 {}}
1648do_test auth-1.260 {
1649 lindex [execsql {PRAGMA database_list}] 7
1650} {test1}
1651do_test auth-1.261 {
1652 proc auth {code arg1 arg2 arg3 arg4} {
1653 if {$code=="SQLITE_DETACH"} {
1654 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1655 return SQLITE_DENY
1656 }
1657 return SQLITE_OK
1658 }
1659 catchsql {
1660 DETACH DATABASE test1;
1661 }
1662} {1 {not authorized}}
1663do_test auth-1.262 {
1664 lindex [execsql {PRAGMA database_list}] 7
1665} {test1}
1666db authorizer {}
1667execsql {DETACH DATABASE test1}
danielk19771c8c23c2004-11-12 15:53:37 +0000[diff] [blame^]1668db authorizer ::auth
1669
1670# Authorization for ALTER TABLE
1671#
1672do_test auth-1.263 {
1673 proc auth {code arg1 arg2 arg3 arg4} {
1674 if {$code=="SQLITE_ALTER_TABLE"} {
1675 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1676 return SQLITE_OK
1677 }
1678 return SQLITE_OK
1679 }
1680 catchsql {
1681 ALTER TABLE t1 RENAME TO t1x
1682 }
1683} {0 {}}
1684do_test auth-1.264 {
1685 execsql {SELECT name FROM sqlite_temp_master WHERE type='table'}
1686} {t1x}
1687do_test auth-1.265 {
1688 set authargs
1689} {temp t1 {} {}}
1690do_test auth-1.266 {
1691 proc auth {code arg1 arg2 arg3 arg4} {
1692 if {$code=="SQLITE_ALTER_TABLE"} {
1693 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1694 return SQLITE_IGNORE
1695 }
1696 return SQLITE_OK
1697 }
1698 catchsql {
1699 ALTER TABLE t1x RENAME TO t1
1700 }
1701} {0 {}}
1702do_test auth-1.267 {
1703 execsql {SELECT name FROM sqlite_temp_master WHERE type='table'}
1704} {t1x}
1705do_test auth-1.268 {
1706 set authargs
1707} {temp t1x {} {}}
1708do_test auth-1.269 {
1709 proc auth {code arg1 arg2 arg3 arg4} {
1710 if {$code=="SQLITE_ALTER_TABLE"} {
1711 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1712 return SQLITE_DENY
1713 }
1714 return SQLITE_OK
1715 }
1716 catchsql {
1717 ALTER TABLE t1x RENAME TO t1
1718 }
1719} {1 {not authorized}}
1720do_test auth-1.270 {
1721 execsql {SELECT name FROM sqlite_temp_master WHERE type='table'}
1722} {t1x}
1723do_test auth-1.271 {
1724 set authargs
1725} {temp t1x {} {}}
1726db authorizer {}
1727catchsql {ALTER TABLE t1x RENAME TO t1}
1728db authorizer ::auth
1729do_test auth-1.272 {
1730 proc auth {code arg1 arg2 arg3 arg4} {
1731 if {$code=="SQLITE_ALTER_TABLE"} {
1732 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1733 return SQLITE_OK
1734 }
1735 return SQLITE_OK
1736 }
1737 catchsql {
1738 ALTER TABLE t2 RENAME TO t2x
1739 }
1740} {0 {}}
1741do_test auth-1.273 {
1742 execsql {SELECT name FROM sqlite_master WHERE type='table'}
1743} {t2x}
1744do_test auth-1.274 {
1745 set authargs
1746} {main t2 {} {}}
1747do_test auth-1.275 {
1748 proc auth {code arg1 arg2 arg3 arg4} {
1749 if {$code=="SQLITE_ALTER_TABLE"} {
1750 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1751 return SQLITE_IGNORE
1752 }
1753 return SQLITE_OK
1754 }
1755 catchsql {
1756 ALTER TABLE t2x RENAME TO t2
1757 }
1758} {0 {}}
1759do_test auth-1.276 {
1760 execsql {SELECT name FROM sqlite_master WHERE type='table'}
1761} {t2x}
1762do_test auth-1.277 {
1763 set authargs
1764} {main t2x {} {}}
1765do_test auth-1.278 {
1766 proc auth {code arg1 arg2 arg3 arg4} {
1767 if {$code=="SQLITE_ALTER_TABLE"} {
1768 set ::authargs [list $arg1 $arg2 $arg3 $arg4]
1769 return SQLITE_DENY
1770 }
1771 return SQLITE_OK
1772 }
1773 catchsql {
1774 ALTER TABLE t2x RENAME TO t2
1775 }
1776} {1 {not authorized}}
1777do_test auth-1.279 {
1778 execsql {SELECT name FROM sqlite_master WHERE type='table'}
1779} {t2x}
1780do_test auth-1.280 {
1781 set authargs
1782} {main t2x {} {}}
1783db authorizer {}
1784catchsql {ALTER TABLE t2x RENAME TO t2}
drh81e293b2003-06-06 19:00:42 +0000[diff] [blame]1785
1786
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1787do_test auth-2.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1788 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1789 if {$code=="SQLITE_READ" && $arg1=="t3" && $arg2=="x"} {
1790 return SQLITE_DENY
1791 }
1792 return SQLITE_OK
1793 }
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1794 db authorizer ::auth
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1795 execsql {CREATE TABLE t3(x INTEGER PRIMARY KEY, y, z)}
1796 catchsql {SELECT * FROM t3}
1797} {1 {access to t3.x is prohibited}}
1798do_test auth-2.1 {
1799 catchsql {SELECT y,z FROM t3}
1800} {0 {}}
1801do_test auth-2.2 {
1802 catchsql {SELECT ROWID,y,z FROM t3}
1803} {1 {access to t3.x is prohibited}}
1804do_test auth-2.3 {
1805 catchsql {SELECT OID,y,z FROM t3}
1806} {1 {access to t3.x is prohibited}}
1807do_test auth-2.4 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1808 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1809 if {$code=="SQLITE_READ" && $arg1=="t3" && $arg2=="x"} {
1810 return SQLITE_IGNORE
1811 }
1812 return SQLITE_OK
1813 }
1814 execsql {INSERT INTO t3 VALUES(44,55,66)}
1815 catchsql {SELECT * FROM t3}
1816} {0 {{} 55 66}}
1817do_test auth-2.5 {
1818 catchsql {SELECT rowid,y,z FROM t3}
1819} {0 {{} 55 66}}
1820do_test auth-2.6 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1821 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1822 if {$code=="SQLITE_READ" && $arg1=="t3" && $arg2=="ROWID"} {
1823 return SQLITE_IGNORE
1824 }
1825 return SQLITE_OK
1826 }
1827 catchsql {SELECT * FROM t3}
1828} {0 {44 55 66}}
1829do_test auth-2.7 {
1830 catchsql {SELECT ROWID,y,z FROM t3}
1831} {0 {44 55 66}}
1832do_test auth-2.8 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1833 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1834 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="ROWID"} {
1835 return SQLITE_IGNORE
1836 }
1837 return SQLITE_OK
1838 }
1839 catchsql {SELECT ROWID,b,c FROM t2}
1840} {0 {{} 2 33 {} 8 9}}
drhdcd997e2003-01-31 17:21:49 +0000[diff] [blame]1841do_test auth-2.9.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1842 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1843 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="ROWID"} {
1844 return bogus
1845 }
1846 return SQLITE_OK
1847 }
1848 catchsql {SELECT ROWID,b,c FROM t2}
1849} {1 {illegal return value (999) from the authorization function - should be SQLITE_OK, SQLITE_IGNORE, or SQLITE_DENY}}
drhdcd997e2003-01-31 17:21:49 +0000[diff] [blame]1850do_test auth-2.9.2 {
1851 db errorcode
drhc60d0442004-09-30 13:43:13 +0000[diff] [blame]1852} {1}
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1853do_test auth-2.10 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1854 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1855 if {$code=="SQLITE_SELECT"} {
1856 return bogus
1857 }
1858 return SQLITE_OK
1859 }
1860 catchsql {SELECT ROWID,b,c FROM t2}
1861} {1 {illegal return value (1) from the authorization function - should be SQLITE_OK, SQLITE_IGNORE, or SQLITE_DENY}}
drh6f8c91c2003-12-07 00:24:35 +0000[diff] [blame]1862do_test auth-2.11.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1863 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1864 if {$code=="SQLITE_READ" && $arg2=="a"} {
1865 return SQLITE_IGNORE
1866 }
1867 return SQLITE_OK
1868 }
1869 catchsql {SELECT * FROM t2, t3}
1870} {0 {{} 2 33 44 55 66 {} 8 9 44 55 66}}
drh6f8c91c2003-12-07 00:24:35 +0000[diff] [blame]1871do_test auth-2.11.2 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1872 proc auth {code arg1 arg2 arg3 arg4} {
drh2c3831c2003-01-14 13:48:20 +0000[diff] [blame]1873 if {$code=="SQLITE_READ" && $arg2=="x"} {
1874 return SQLITE_IGNORE
1875 }
1876 return SQLITE_OK
1877 }
1878 catchsql {SELECT * FROM t2, t3}
1879} {0 {11 2 33 {} 55 66 7 8 9 {} 55 66}}
drhe5f9c642003-01-13 23:27:31 +0000[diff] [blame]1880
drh027850b2003-04-16 20:24:52 +0000[diff] [blame]1881# Make sure the OLD and NEW pseudo-tables of a trigger get authorized.
1882#
1883do_test auth-3.1 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1884 proc auth {code arg1 arg2 arg3 arg4} {
drh027850b2003-04-16 20:24:52 +0000[diff] [blame]1885 return SQLITE_OK
1886 }
1887 execsql {
1888 CREATE TABLE tx(a1,a2,b1,b2,c1,c2);
1889 CREATE TRIGGER r1 AFTER UPDATE ON t2 FOR EACH ROW BEGIN
1890 INSERT INTO tx VALUES(OLD.a,NEW.a,OLD.b,NEW.b,OLD.c,NEW.c);
1891 END;
1892 UPDATE t2 SET a=a+1;
1893 SELECT * FROM tx;
1894 }
1895} {11 12 2 2 33 33 7 8 8 8 9 9}
1896do_test auth-3.2 {
drhe22a3342003-04-22 20:30:37 +0000[diff] [blame]1897 proc auth {code arg1 arg2 arg3 arg4} {
drh027850b2003-04-16 20:24:52 +0000[diff] [blame]1898 if {$code=="SQLITE_READ" && $arg1=="t2" && $arg2=="c"} {
1899 return SQLITE_IGNORE
1900 }
1901 return SQLITE_OK
1902 }
1903 execsql {
1904 DELETE FROM tx;
1905 UPDATE t2 SET a=a+100;
1906 SELECT * FROM tx;
1907 }
1908} {12 112 2 2 {} {} 8 108 8 8 {} {}}
1909
drh85e20962003-04-25 17:52:11 +0000[diff] [blame]1910# Make sure the names of views and triggers are passed on on arg4.
1911#
1912do_test auth-4.1 {
1913 proc auth {code arg1 arg2 arg3 arg4} {
1914 lappend ::authargs $code $arg1 $arg2 $arg3 $arg4
1915 return SQLITE_OK
1916 }
1917 set authargs {}
1918 execsql {
1919 UPDATE t2 SET a=a+1;
1920 }
1921 set authargs
1922} [list \
1923 SQLITE_READ t2 a main {} \
1924 SQLITE_UPDATE t2 a main {} \
1925 SQLITE_INSERT tx {} main r1 \
1926 SQLITE_READ t2 a main r1 \
1927 SQLITE_READ t2 a main r1 \
1928 SQLITE_READ t2 b main r1 \
1929 SQLITE_READ t2 b main r1 \
1930 SQLITE_READ t2 c main r1 \
1931 SQLITE_READ t2 c main r1]
1932do_test auth-4.2 {
1933 execsql {
1934 CREATE VIEW v1 AS SELECT a+b AS x FROM t2;
1935 CREATE TABLE v1chng(x1,x2);
1936 CREATE TRIGGER r2 INSTEAD OF UPDATE ON v1 BEGIN
1937 INSERT INTO v1chng VALUES(OLD.x,NEW.x);
1938 END;
1939 SELECT * FROM v1;
1940 }
1941} {115 117}
1942do_test auth-4.3 {
1943 set authargs {}
1944 execsql {
1945 UPDATE v1 SET x=1 WHERE x=117
1946 }
1947 set authargs
1948} [list \
1949 SQLITE_UPDATE v1 x main {} \
1950 SQLITE_READ v1 x main {} \
1951 SQLITE_SELECT {} {} {} v1 \
1952 SQLITE_READ t2 a main v1 \
1953 SQLITE_READ t2 b main v1 \
1954 SQLITE_INSERT v1chng {} main r2 \
1955 SQLITE_READ v1 x main r2 \
1956 SQLITE_READ v1 x main r2]
1957do_test auth-4.4 {
1958 execsql {
1959 CREATE TRIGGER r3 INSTEAD OF DELETE ON v1 BEGIN
1960 INSERT INTO v1chng VALUES(OLD.x,NULL);
1961 END;
1962 SELECT * FROM v1;
1963 }
1964} {115 117}
1965do_test auth-4.5 {
1966 set authargs {}
1967 execsql {
1968 DELETE FROM v1 WHERE x=117
1969 }
1970 set authargs
1971} [list \
1972 SQLITE_DELETE v1 {} main {} \
1973 SQLITE_READ v1 x main {} \
1974 SQLITE_SELECT {} {} {} v1 \
1975 SQLITE_READ t2 a main v1 \
1976 SQLITE_READ t2 b main v1 \
1977 SQLITE_INSERT v1chng {} main r3 \
1978 SQLITE_READ v1 x main r3]
drh1962bda2003-01-12 19:33:52 +0000[diff] [blame]1979
1980finish_test