Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Prevent writes to specific tables (read-only tables)

Tags:

sqlalchemy

pyramid

Is there a way to mark tables as read-only when using Pyramid with SQLAlchemy?

Some brief background: I am working on an app with an existing database which is very complicated. My app adds a few new tables to this database, but updating (update, insert, delete) other tables is unsafe because the schema is not well understood (and isn't documented).

My basic aim is to fail-fast before any unsafe db updates so the offending code can be found and removed, so I and future developers don't cause any data issues with this app.

My naive approach: add a pyramid_tm commit veto hook that checks objects to be updated (new, dirty, and deleted in the db session) and vetos if there are any read-only tables.

Is there an existing mechanism to handle this? Or a better approach?

like image 343
Crag Avatar asked Aug 05 '13 15:08

Crag

People also ask

How do I give a read only access to a specific table in SQL Server?

Using the UI you can use the User Mapping tab under the login, you can create the user with 'public' access only. Then you can go to the database and grant that user SELECT access to the particular table.

1 Answers

If you're using the "declarative" approach, you can try making the classes themselves "read-only":

class MyBase(object):
    """
    This class is a superclass of SA-generated Base class,
    which in turn is the superclass of all db-aware classes
    so we can define common functions here
    """

    def __setattr__(self, name, value):
        """
        Raise an exception if attempting to assign to an atribute of a "read-only" object
        Transient attributes need to be prefixed with "_t_"
        """
        if (getattr(self, '__read_only__', False)
          and name != "_sa_instance_state"
          and not name.startswith("_t_")):
            raise ValueError("Trying to assign to %s of a read-only object %s" % (name, self))
        super(MyBase, self).__setattr__(name, value)



Base = declarative_base(cls=MyBase)

Similarly you can try to override __init__ method to prevent the objects from being instantiated.

However, solving this problem at the application level feels a bit fragile - I would just look at creating a special user in the database for your app to connect with, which would save limited permissions on the tables you want to keep intact.

like image 103
Sergey Avatar answered Sep 19 '22 21:09

Sergey
Sign in to Comment

Related questions

Way to query database with SQLAlchemy where a date is a particular day of the week?
Encoding calling from pyodbc to a MS SQL Server
sqlalchemy many-to-many, but inverse?
Is there any database model designer that can output SQLAlchemy models?
How to query multiple tables in SQLAlchemy ORM
How to add TIMESTAMPDIFF to SqlSoup query?
SQLAlchemy and Pyramid, how to get resources out of context?
SQLAlchemy TypeDecorator doesn't work
Refreshing detached entity in sqlalchemy
How can I query rows with unique values on a joined column?
SQLAlchemy, UUIDs, Sharding, and AUTO_INCREMENT primary key... how to get them to work together?
How to use SQLAlchemy to select value at a position in a PostgreSQL ARRAY?
MySQL and SQLAlchemy: getting N recent comments for multiple items
Filter on SQLAlchemy relationship
SQLAlchemy 'bulk_save_objects' vs 'add_all' underlying logic difference?
Sqlalchemy get last X rows in order

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!