blob: 08d46cac57f471324ff99999e655031145bed4c8 [file] [log] [blame]
drh5169bbc2006-08-24 14:59:45 +00001# 2006 Aug 24
2#
3# The author disclaims copyright to this source code. In place of
4# a legal notice, here is a blessing:
5#
6# May you do good and not evil.
7# May you find forgiveness for yourself and forgive others.
8# May you share freely, never taking more than you give.
9#
10#***********************************************************************
11# This file implements regression tests for SQLite library. The
12# focus of this script is testing the sqlite3_set_authorizer() API
13# and related functionality.
14#
danielk1977524cc212008-07-02 13:13:51 +000015# $Id: auth2.test,v 1.3 2008/07/02 13:13:53 danielk1977 Exp $
drh5169bbc2006-08-24 14:59:45 +000016#
17
18set testdir [file dirname $argv0]
19source $testdir/tester.tcl
20
21# disable this test if the SQLITE_OMIT_AUTHORIZATION macro is
22# defined during compilation.
23if {[catch {db auth {}} msg]} {
24 finish_test
25 return
26}
27
28do_test auth2-1.1 {
29 execsql {
30 CREATE TABLE t1(a,b,c);
31 INSERT INTO t1 VALUES(1,2,3);
32 }
33 set ::flist {}
drh32c6a482014-09-11 13:44:52 +000034 proc auth {code arg1 arg2 arg3 arg4 args} {
drh5169bbc2006-08-24 14:59:45 +000035 if {$code=="SQLITE_FUNCTION"} {
36 lappend ::flist $arg2
37 if {$arg2=="max"} {
38 return SQLITE_DENY
39 } elseif {$arg2=="min"} {
40 return SQLITE_IGNORE
41 } else {
42 return SQLITE_OK
43 }
44 }
45 return SQLITE_OK
46 }
47 db authorizer ::auth
48 catchsql {SELECT max(a,b,c) FROM t1}
49} {1 {not authorized to use function: max}}
50do_test auth2-1.2 {
51 set ::flist
52} max
53do_test auth2-1.3 {
54 set ::flist {}
55 catchsql {SELECT min(a,b,c) FROM t1}
56} {0 {{}}}
57do_test auth2-1.4 {
58 set ::flist
59} min
60do_test auth2-1.5 {
61 set ::flist {}
62 catchsql {SELECT coalesce(min(a,b,c),999) FROM t1}
63} {0 999}
64do_test auth2-1.6 {
65 set ::flist
66} {coalesce min}
67do_test auth2-1.7 {
68 set ::flist {}
69 catchsql {SELECT coalesce(a,b,c) FROM t1}
70} {0 1}
71do_test auth2-1.8 {
72 set ::flist
73} coalesce
74
drha6d0ffc2007-10-12 20:42:28 +000075# Make sure the authorizer is not called when parsing the schema
76# and when computing the result set of a view.
77#
78db close
79sqlite3 db test.db
80sqlite3 db2 test.db
81proc auth {args} {
82 global authargs
drh32c6a482014-09-11 13:44:52 +000083 append authargs [lrange $args 0 4]\n
drha6d0ffc2007-10-12 20:42:28 +000084 return SQLITE_OK
85}
86db auth auth
87do_test auth2-2.1 {
88 set ::authargs {}
89 db eval {
90 CREATE TABLE t2(x,y,z);
91 }
92 set ::authargs
93} {SQLITE_INSERT sqlite_master {} main {}
94SQLITE_CREATE_TABLE t2 {} main {}
95SQLITE_UPDATE sqlite_master type main {}
96SQLITE_UPDATE sqlite_master name main {}
97SQLITE_UPDATE sqlite_master tbl_name main {}
98SQLITE_UPDATE sqlite_master rootpage main {}
99SQLITE_UPDATE sqlite_master sql main {}
100SQLITE_READ sqlite_master ROWID main {}
drha6d0ffc2007-10-12 20:42:28 +0000101}
102do_test auth2-2.2 {
103 set ::authargs {}
104 db eval {
105 CREATE VIEW v2 AS SELECT x+y AS a, y+z AS b from t2;
106 }
107 set ::authargs
108} {SQLITE_INSERT sqlite_master {} main {}
109SQLITE_CREATE_VIEW v2 {} main {}
110SQLITE_UPDATE sqlite_master type main {}
111SQLITE_UPDATE sqlite_master name main {}
112SQLITE_UPDATE sqlite_master tbl_name main {}
113SQLITE_UPDATE sqlite_master rootpage main {}
114SQLITE_UPDATE sqlite_master sql main {}
115SQLITE_READ sqlite_master ROWID main {}
drha6d0ffc2007-10-12 20:42:28 +0000116}
117do_test auth2-2.3 {
118 set ::authargs {}
119 db eval {
120 SELECT a, b FROM v2;
121 }
122 set ::authargs
123} {SQLITE_SELECT {} {} {} {}
drha6d0ffc2007-10-12 20:42:28 +0000124SQLITE_READ t2 x main v2
125SQLITE_READ t2 y main v2
126SQLITE_READ t2 y main v2
127SQLITE_READ t2 z main v2
drh92689d22012-12-18 16:07:08 +0000128SQLITE_READ v2 a main {}
129SQLITE_READ v2 b main {}
danielk1977524cc212008-07-02 13:13:51 +0000130SQLITE_SELECT {} {} {} v2
drha6d0ffc2007-10-12 20:42:28 +0000131}
132do_test auth2-2.4 {
133 db2 eval {
134 CREATE TABLE t3(p,q,r);
135 }
136 set ::authargs {}
137 db eval {
138 SELECT b, a FROM v2;
139 }
140 set ::authargs
141} {SQLITE_SELECT {} {} {} {}
drha6d0ffc2007-10-12 20:42:28 +0000142SQLITE_READ t2 x main v2
143SQLITE_READ t2 y main v2
144SQLITE_READ t2 y main v2
145SQLITE_READ t2 z main v2
drh92689d22012-12-18 16:07:08 +0000146SQLITE_READ v2 b main {}
147SQLITE_READ v2 a main {}
danielk1977524cc212008-07-02 13:13:51 +0000148SQLITE_SELECT {} {} {} v2
drha6d0ffc2007-10-12 20:42:28 +0000149SQLITE_SELECT {} {} {} {}
drha6d0ffc2007-10-12 20:42:28 +0000150SQLITE_READ t2 x main v2
151SQLITE_READ t2 y main v2
152SQLITE_READ t2 y main v2
153SQLITE_READ t2 z main v2
drh92689d22012-12-18 16:07:08 +0000154SQLITE_READ v2 b main {}
155SQLITE_READ v2 a main {}
danielk1977524cc212008-07-02 13:13:51 +0000156SQLITE_SELECT {} {} {} v2
drha6d0ffc2007-10-12 20:42:28 +0000157}
158db2 close
159
drh5169bbc2006-08-24 14:59:45 +0000160finish_test