Allow using DataSync without a user session

digitallyinduced · Jan 26, 2022 · 9c83b81 · 9c83b81
1 parent 5f67c9c
commit 9c83b81
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 2 deletions.
diff --git a/IHP/DataSync/RowLevelSecurity.hs b/IHP/DataSync/RowLevelSecurity.hs
@@ -36,7 +36,17 @@ withRLS callback = withTransaction inner
         inner = do
             let maybeUserId :: Maybe userId = get #id <$> currentUserOrNothing
             sqlExec "SET LOCAL ROLE ?" [PG.Identifier Role.authenticatedRole]
-            sqlExec "SET LOCAL rls.ihp_user_id = ?" (PG.Only maybeUserId)
+
+            -- When the user is not logged in and maybeUserId is Nothing, we cannot
+            -- just pass @NULL@ to postgres. The @SET LOCAL@ values can only be strings.
+            --
+            -- Therefore we map Nothing to an empty string here. The empty string
+            -- means "not logged in".
+            --
+            let encodedUserId = case maybeUserId of
+                    Just userId -> PG.toField userId
+                    Nothing -> PG.toField ("" :: Text)
+            sqlExec "SET LOCAL rls.ihp_user_id = ?" (PG.Only encodedUserId)
             callback
 
 -- | Returns a proof that RLS is enabled for a table

diff --git a/lib/IHP/IHPSchema.sql b/lib/IHP/IHPSchema.sql
@@ -6,5 +6,5 @@ CREATE TYPE JOB_STATUS AS ENUM ('job_status_not_started', 'job_status_running',
 
 -- Used by IHP.DataSync
 CREATE FUNCTION ihp_user_id() RETURNS UUID AS $$
-    SELECT current_setting('rls.ihp_user_id')::uuid;
+    SELECT NULLIF(current_setting('rls.ihp_user_id'), '')::uuid;
 $$ LANGUAGE SQL;