RubyGems - guardrail - Versions diffs - 2.0.1 → 3.0.0 - Mend

guardrail 2.0.1 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +4 -4
data/README.md +9 -37
data/lib/guard_rail.rb +8 -103
data/lib/guard_rail/version.rb +1 -1
metadata +11 -58
data/lib/guard_rail/connection_handler.rb +0 -15
data/lib/guard_rail/connection_specification.rb +0 -79
data/lib/guard_rail/railtie.rb +0 -11
data/spec/guard_rail_spec.rb +0 -169

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fa6a0792d151f43c9a413f2b844681ddcdb8ef04dca8a8b74316bdeff1d3c4a4
-  data.tar.gz: 24c8495b64f89395fa6922a177e963a4bf815172f1c527e3d2443386e2a42f9a
+  metadata.gz: 9b9e58f5329f5eda67ce7018576fc6c2d970df8325c3f60646caf25c2a185fc9
+  data.tar.gz: 5450d44f587e98fe84d12a5572f7aa2cde259fc75aebc9d1f28f4c535510af16
 SHA512:
-  metadata.gz: c184e8a30569ba0b6121c849238af84ae2da58cbf260d45be5f94b751c7b7ed742cd5a4651daf0a3d32028591cbe35f2980aa81cf7f153ada612e03e4589ad08
-  data.tar.gz: 1280646bf10326f16566fa1efb1911fa80a26a9236c417845d72bad0f34b17c550975ca2d0d3f6510782b141843b76efd78f55c2a58fc0d9ff32fbb5c9c55bde
+  metadata.gz: b1c38cf3c156354856914ebba409fb4e5cb1287109ad66e07da1b0bd831e4dd522487bec8ba1b8bd056fafac7710747ffe691dbdf59a29b14f03999938ec687a
+  data.tar.gz: 5a8e7b29e2006a618045c1d17950b17bbaa13fa479589fc93b061055ea6f4ba80a6ccdfa532e75bb9cadc4cdaebd36a2c5b07261d7223b5f235491871e5913bf

data/README.md CHANGED Viewed

@@ -3,55 +3,27 @@ GuardRail
 ## About
-GuardRail allows multiple database environments and environment overrides to
-ActiveRecord, allowing least-privilege best practices.
+GuardRail is a thin wrapper around Rail 6.1's native role switching.
 ## Installation
-Add `gem 'guardrail'` to your Gemfile (tested with Rails 4.x and 5.x, and also
-with the release candidate for Rails 6.0)
+Add `gem 'guardrail'` to your Gemfile.
 ## Usage
-There are two major use cases for guardrail. The first is for primary/replica(/deploy) environments.
-Using a replica is as simple as adding a replica block (underneath your main environment block) in
-database.yml, then wrapping stuff you want to query the replica in GuardRail.activate(:replica) blocks.
-You can extend this to a deploy environment so that migrations will run as a deploy user that
-permission to modify schema, while your normal app runs with lower privileges that cannot modify
-schema. This is defense-in-depth in practice, so that *if* you happen to have a SQL injection
-bug, it would be impossible to do something like dropping tables.
+See https://guides.rubyonrails.org/active_record_multiple_databases.html. GuardRail simply adds
+syntactic sugar to easily switch to different roles:
-The other major use case is more defense-in-depth. By carefully setting up your environment, you
-can default to script/console sessions for regular users to use their own database user, and the
-replica.
-Example database.yml file:
-```yaml
-production:
-  adapter: postgresql
-  username: myapp
-  database: myapp
-  host: db-primary
-  replica:
-    host: db-replica
-  deploy:
-    username: deploy
-```
-Using an initializer, you can achieve the default environment settings (in tandem with profile
-changes):
 ```ruby
-if ENV['RAILS_DATABASE_ENVIRONMENT']
-  GuardRail.activate!(ENV['RAILS_DATABASE_ENVIRONMENT'].to_sym)
-end
-if ENV['RAILS_DATABASE_USER']
-  GuardRail.apply_config!(:username => ENV['RAILS_DATABASE_USER'])
+def some_method
+  GuardRails.activate(:secondary) do
+    MyModel.some_really_long_query
+  end
 end
 ```
-Additionally **in Ruby 2.0+** you can include GuardRail::HelperMethods and use several helpers
+Additionally you can include GuardRail::HelperMethods and use several helpers
 to execute methods on specific environments:
 ```ruby

data/lib/guard_rail.rb CHANGED Viewed

@@ -1,114 +1,19 @@
-require 'set'
+# frozen_string_literal: true
 module GuardRail
   class << self
-    attr_accessor :primary_environment_name
-    GuardRail.primary_environment_name = :primary
     def environment
-      Thread.current[:guard_rail_environment] ||= primary_environment_name
-    end
-    def global_config
-      @global_config ||= {}
-    end
-    def activated_environments
-      @activated_environments ||= Set.new()
-    end
-    # semi-private
-    def initialize!
-      require 'guard_rail/connection_handler'
-      require 'guard_rail/connection_specification'
-      require 'guard_rail/helper_methods'
-      activated_environments << GuardRail.environment
-      ActiveRecord::ConnectionAdapters::ConnectionHandler.prepend(ConnectionHandler)
-      ActiveRecord::ConnectionAdapters::ConnectionSpecification.prepend(ConnectionSpecification)
-    end
-    def global_config_sequence
-      @global_config_sequence ||= 1
-    end
-    def bump_sequence
-      @global_config_sequence ||= 1
-      @global_config_sequence += 1
-      ActiveRecord::Base::connection_handler.clear_all_connections!
-    end
-    # for altering other pieces of config (i.e. username)
-    # will force a disconnect
-    def apply_config!(hash)
-      global_config.merge!(hash)
-      bump_sequence
-    end
-    def remove_config!(key)
-      global_config.delete(key)
-      bump_sequence
-    end
-    def connection_handlers
-      save_handler
-      @connection_handlers
-    end
-    # switch environment for the duration of the block
-    # will keep the old connections around
-    def activate(environment)
-      environment ||= primary_environment_name
-      return yield if environment == self.environment
-      begin
-        old_environment = activate!(environment)
-        activated_environments << environment
-        yield
-      ensure
-        Thread.current[:guard_rail_environment] = old_environment
-        ActiveRecord::Base.connection_handler = ensure_handler unless test?
-      end
+      ActiveRecord::Base.current_role
     end
-    # for use from script/console ONLY
-    def activate!(environment)
-      environment ||= primary_environment_name
-      save_handler
-      old_environment = self.environment
-      Thread.current[:guard_rail_environment] = environment
-      ActiveRecord::Base.connection_handler = ensure_handler unless test?
-      old_environment
+    def activate(role)
+      return yield if environment == role
+      ActiveRecord::Base.connected_to(role: role) { yield }
     end
-    private
-    def test?
-      Rails.env.test?
-    end
-    def save_handler
-      @connection_handlers ||= {}
-      @connection_handlers[environment] ||= ActiveRecord::Base.connection_handler
-    end
-    def ensure_handler
-      new_handler = @connection_handlers[environment]
-      if !new_handler
-        new_handler = @connection_handlers[environment] = ActiveRecord::ConnectionAdapters::ConnectionHandler.new
-        pools = ActiveRecord::Base.connection_handler.send(:owner_to_pool)
-        pools.each_pair do |model, pool|
-          new_handler.establish_connection(pool.spec.config)
-        end
-      end
-      new_handler
+    def activate!(role)
+      return if environment == role
+      ActiveRecord::Base.connecting_to(role: role)
     end
   end
 end
-if defined?(Rails::Railtie)
-  require "guard_rail/railtie"
-else
-  # just load everything immediately for Rails 2
-  GuardRail.initialize!
-end

data/lib/guard_rail/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module GuardRail
-  VERSION = "2.0.1"
+  VERSION = "3.0.0"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: guardrail
 version: !ruby/object:Gem::Version
-  version: 2.0.1
+  version: 3.0.0
 platform: ruby
 authors:
 - Cody Cutrer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-10-26 00:00:00.000000000 Z
+date: 2021-02-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord
@@ -16,40 +16,40 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '6.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '6.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.2'
 - !ruby/object:Gem::Dependency
   name: railties
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '6.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '6.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.2'
 - !ruby/object:Gem::Dependency
   name: appraisal
   requirement: !ruby/object:Gem::Requirement
@@ -78,48 +78,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: mocha
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.0'
-- !ruby/object:Gem::Dependency
-  name: sqlite3
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: Allows multiple environments in database.yml, and dynamically switching
   them.
 email: cody@instructure.com
@@ -130,13 +88,9 @@ files:
 - LICENSE
 - README.md
 - lib/guard_rail.rb
-- lib/guard_rail/connection_handler.rb
-- lib/guard_rail/connection_specification.rb
 - lib/guard_rail/helper_methods.rb
-- lib/guard_rail/railtie.rb
 - lib/guard_rail/version.rb
 - lib/guardrail.rb
-- spec/guard_rail_spec.rb
 homepage: http://github.com/instructure/guardrail
 licenses:
 - MIT
@@ -160,5 +114,4 @@ rubygems_version: 3.1.4
 signing_key:
 specification_version: 4
 summary: ActiveRecord database environment switching for secondaries and least-privilege
-test_files:
-- spec/guard_rail_spec.rb
+test_files: []

data/lib/guard_rail/connection_handler.rb DELETED Viewed

@@ -1,15 +0,0 @@
-# frozen_string_literal: true
-module GuardRail
-  module ConnectionHandler
-    %w{clear_active_connections clear_reloadable_connections
-       clear_all_connections verify_active_connections }.each do |method|
-      class_eval <<-RUBY, __FILE__, __LINE__ + 1
-        def #{method}!(super_method: false)
-          return super() if super_method
-          ::GuardRail.connection_handlers.values.each { |handler| handler.#{method}!(super_method: true) }
-        end
-      RUBY
-    end
-  end
-end

data/lib/guard_rail/connection_specification.rb DELETED Viewed

@@ -1,79 +0,0 @@
-# frozen_string_literal: true
-require 'i18n/core_ext/hash' unless Hash.method_defined?(:deep_symbolize_keys)
-module GuardRail
-  module ConnectionSpecification
-    class CacheCoherentHash < Hash
-      def initialize(spec)
-        @spec = spec
-        super
-      end
-      def []=(key, value)
-        super
-        @spec.instance_variable_set(:@current_config, nil)
-        @spec.instance_variable_get(:@config)[key] = value
-      end
-      def delete(key)
-        super
-        @spec.instance_variable_set(:@current_config, nil)
-        @spec.instance_variable_get(:@config).delete(key)
-      end
-      def dup
-        Hash[self]
-      end
-      # in rails 4.2, active support tries to create a copy of the original object's class
-      # instead of making a new Hash object, so it fails since initialize expects an argument
-      def transform_keys(&block)
-        dup.transform_keys(&block)
-      end
-    end
-    def initialize(name, config, adapter_method)
-      super(name, config.deep_symbolize_keys, adapter_method)
-    end
-    def initialize_dup(original)
-      @current_config = nil
-      super
-    end
-    def config
-      @current_config = nil if GuardRail.environment != @current_config_environment || GuardRail.global_config_sequence != @current_config_sequence
-      return @current_config if @current_config
-      @current_config_environment = GuardRail.environment
-      @current_config_sequence = GuardRail.global_config_sequence
-      config = @config.dup
-      if @config.has_key?(GuardRail.environment)
-        env_config = @config[GuardRail.environment]
-        # an array of databases for this environment; for now, just choose the first non-nil element
-        if env_config.is_a?(Array)
-          env_config = env_config.detect { |individual_config| !individual_config.nil? }
-        end
-        config.merge!(env_config.symbolize_keys)
-      end
-      config.keys.each do |key|
-        next unless config[key].is_a?(String)
-        config[key] = config[key] % config
-      end
-      config.merge!(GuardRail.global_config)
-      @current_config = CacheCoherentHash.new(self)
-      @current_config.replace(config)
-      @current_config
-    end
-    def config=(value)
-      @config = value
-      @current_config = nil
-    end
-  end
-end

data/lib/guard_rail/railtie.rb DELETED Viewed

@@ -1,11 +0,0 @@
-# frozen_string_literal: true
-module GuardRail
-  class Railtie < Rails::Railtie
-    initializer "guard_rail.extend_ar", :before => "active_record.initialize_database" do
-      ActiveSupport.on_load(:active_record) do
-        GuardRail.initialize!
-      end
-    end
-  end
-end

data/spec/guard_rail_spec.rb DELETED Viewed

@@ -1,169 +0,0 @@
-# frozen_string_literal: true
-require 'active_record'
-require 'byebug'
-require 'rails'
-require 'guard_rail'
-# we're not actually bringing up ActiveRecord, so we need to initialize our stuff
-GuardRail.initialize!
-RSpec.configure do |config|
-  config.mock_framework = :mocha
-end
-describe GuardRail do
-  ConnectionSpecification = ActiveRecord::ConnectionAdapters::ConnectionSpecification
-  def spec_args(conf, adapter)
-    ['dummy', conf, adapter]
-  end
-  it "should allow changing environments" do
-    conf = {
-        :adapter => 'postgresql',
-        :database => 'primary',
-        :username => 'canvas',
-        :deploy => {
-            :username => 'deploy'
-        },
-        :replica => {
-            :database => 'replica'
-        }
-    }
-    spec = ConnectionSpecification.new(*spec_args(conf, 'adapter'))
-    expect(spec.config[:username]).to eq('canvas')
-    expect(spec.config[:database]).to eq('primary')
-    GuardRail.activate(:deploy) do
-      expect(spec.config[:username]).to eq('deploy')
-      expect(spec.config[:database]).to eq('primary')
-    end
-    expect(spec.config[:username]).to eq('canvas')
-    expect(spec.config[:database]).to eq('primary')
-    GuardRail.activate(:replica) do
-      expect(spec.config[:username]).to eq('canvas')
-      expect(spec.config[:database]).to eq('replica')
-    end
-    expect(spec.config[:username]).to eq('canvas')
-    expect(spec.config[:database]).to eq('primary')
-  end
-  it "should allow using hash insertions" do
-    conf = {
-        :adapter => 'postgresql',
-        :database => 'primary',
-        :username => '%{schema_search_path}',
-        :schema_search_path => 'canvas',
-        :deploy => {
-            :username => 'deploy'
-        }
-    }
-    spec = ConnectionSpecification.new(*spec_args(conf, 'adapter'))
-    expect(spec.config[:username]).to eq('canvas')
-    GuardRail.activate(:deploy) do
-      expect(spec.config[:username]).to eq('deploy')
-    end
-    expect(spec.config[:username]).to eq('canvas')
-  end
-  it "should be cache coherent with modifying the config" do
-    conf = {
-        :adapter => 'postgresql',
-        :database => 'primary',
-        :username => '%{schema_search_path}',
-        :schema_search_path => 'canvas',
-        :deploy => {
-            :username => 'deploy'
-        }
-    }
-    spec = ConnectionSpecification.new(*spec_args(conf.dup, 'adapter'))
-    expect(spec.config[:username]).to eq('canvas')
-    spec.config[:schema_search_path] = 'bob'
-    expect(spec.config[:schema_search_path]).to eq('bob')
-    expect(spec.config[:username]).to eq('bob')
-    GuardRail.activate(:deploy) do
-      expect(spec.config[:schema_search_path]).to eq('bob')
-      expect(spec.config[:username]).to eq('deploy')
-    end
-    external_config = spec.config.dup
-    expect(external_config.class).to eq(Hash)
-    expect(external_config).to eq(spec.config)
-    spec.config = conf.dup
-    expect(spec.config[:username]).to eq('canvas')
-  end
-  it "does not share config objects when dup'ing specs" do
-    conf = {
-        :adapter => 'postgresql',
-        :database => 'primary',
-        :username => '%{schema_search_path}',
-        :schema_search_path => 'canvas',
-        :deploy => {
-            :username => 'deploy'
-        }
-    }
-    spec = ConnectionSpecification.new(*spec_args(conf.dup, 'adapter'))
-    expect(spec.config.object_id).not_to eq spec.dup.config.object_id
-  end
-  describe "activate" do
-    before do
-      #!!! trick it in to actually switching envs
-      Rails.env.stubs(:test?).returns(false)
-      # be sure to test bugs where the current env isn't yet included in this hash
-      GuardRail.connection_handlers.clear
-      ActiveRecord::Base.establish_connection(:adapter => 'sqlite3', :database => ':memory:')
-    end
-    it "should call ensure_handler when switching envs" do
-      old_handler = ActiveRecord::Base.connection_handler
-      GuardRail.expects(:ensure_handler).returns(old_handler).twice
-      GuardRail.activate(:replica) {}
-    end
-    it "should not close connections when switching envs" do
-      conn = ActiveRecord::Base.connection
-      replica_conn = GuardRail.activate(:replica) { ActiveRecord::Base.connection }
-      expect(conn).not_to eq(replica_conn)
-      expect(ActiveRecord::Base.connection).to eq(conn)
-    end
-    it "should track all activated environments" do
-      GuardRail.activate(:replica) {}
-      GuardRail.activate(:custom) {}
-      expected = Set.new([:primary, :replica, :custom])
-      expect(GuardRail.activated_environments & expected).to eq(expected)
-    end
-    context "non-transactional" do
-      it "should really disconnect all envs" do
-        ActiveRecord::Base.connection
-        expect(ActiveRecord::Base.connection_pool).to be_connected
-        GuardRail.activate(:replica) do
-          ActiveRecord::Base.connection
-          expect(ActiveRecord::Base.connection_pool).to be_connected
-        end
-        ActiveRecord::Base.clear_all_connections!
-        expect(ActiveRecord::Base.connection_pool).not_to be_connected
-        GuardRail.activate(:replica) do
-          expect(ActiveRecord::Base.connection_pool).not_to be_connected
-        end
-      end
-    end
-    it 'is thread safe' do
-      GuardRail.activate(:replica) do
-        Thread.new do
-          GuardRail.activate!(:deploy)
-          expect(GuardRail.environment).to eq :deploy
-        end.join
-        expect(GuardRail.environment).to eq :replica
-      end
-    end
-  end
-end