Elgato_dark/ToolJet
1
0
Fork 0
mirror of https://github.com/ToolJet/ToolJet synced 2026-04-21 21:47:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
ToolJet/server/data-migrations/1721236971725-MoveToolJetDatabaseTablesFromPublicToTenantSchema.ts

240 lines
9.2 KiB
TypeScript
Raw Normal View History

sync marketplace and tooljet database changes
2024-10-28 17:56:26 +00:00
import { tooljetDbOrmconfig } from 'ormconfig';
import { EntityManager, MigrationInterface, QueryRunner, DataSource } from 'typeorm';
Initial commit
2025-02-25 06:52:50 +00:00
import { Organization } from '@entities/organization.entity';
import { InternalTable } from '@entities/internal_table.entity';
import { MigrationProgress, processDataInBatches } from '@helpers/migration.helper';
sync marketplace and tooljet database changes
2024-10-28 17:56:26 +00:00
import { getEnvVars } from 'scripts/database-config-utils';
Initial commit
2025-02-25 06:52:50 +00:00
import { EncryptionService } from '@modules/encryption/service';
feat: disable mutti-tenant TJDB SQL mode for cloud
2025-07-07 07:09:47 +00:00
import { TOOLJET_EDITIONS } from '@modules/app/constants';
sync marketplace and tooljet database changes
2024-10-28 17:56:26 +00:00
import {
createNewTjdbRole,
createAndGrantSchemaPrivilege,
grantSequencePrivilege,
createAndGrantTablePrivilege,
updatePasswordToOrganizationTable,
syncTenantSchemaWithPostgrest,
revokeAccessToPublicSchema,
grantTenantRoleToTjdbAdminRole,
Initial commit
2025-02-25 06:52:50 +00:00
} from '@helpers/tooljet_db.helper';
Platform LTS Final fixes (#13221) * Cloud Blocker bugfixes (#13160) * fix * minor email fixes * settings menu fix * fixes * Bugfixes/whitelabelling apis (#13180) * white-labelling apis * removed consoles logs * reverts * fixes for white-labelling * fixes * reverted breadcrumb changes (#13194) * fixes for getting public sso configurations * fix for enable signup on cloud * Cloud Trial and Banners (#13182) * Cloud Blocker bugfixes (#13160) * fix * minor email fixes * settings menu fix * fixes * Cloud Trial and Banners * revert * initial commit * Added website onboarding APIs * moved ai onboarding controller to auth module * ee banners * fix --------- Co-authored-by: Rohan Lahori <64496391+rohanlahori@users.noreply.github.com> Co-authored-by: gsmithun4 <gsmithun4@gmail.com> * Bugfixes/minor UI fixes-CLoud (#13203) * Bugfixes/UI bugs platform 1 (#13205) * cleanup * Audit logs fix * gitignore changes * postgrest configs removed * removed unused import * improvements * fix * improved startup logs * Platform cypress fix (#13192) * Cloud Blocker bugfixes (#13160) * fix * minor email fixes * settings menu fix * fixes * Bugfixes/whitelabelling apis (#13180) * white-labelling apis * removed consoles logs * reverts * fixes for white-labelling * fixes * Cypress fix * reverted breadcrumb changes (#13194) * cypress fix * title fix * fixes for getting public sso configurations --------- Co-authored-by: Rohan Lahori <64496391+rohanlahori@users.noreply.github.com> Co-authored-by: gsmithun4 <gsmithun4@gmail.com> * deployment fix * added interfaces and permissions * Bugfixes/lts 3.6 branch 1 platform (#13238) * fix * Licensing Banners Fixes Cloud and EE (#13241) * design: Adds license buttons to header * Refactor header actions * Cloud Blocker bugfixes (#13160) * fix * minor email fixes * settings menu fix * fixes * subscription page * fix banners --------- Co-authored-by: Nithin David Thomas <1277421+nithindavid@users.noreply.github.com> Co-authored-by: Rohan Lahori <64496391+rohanlahori@users.noreply.github.com> * fix for public apps * fix * CE Instance Signup bug (#13254) * CE Instance Signup bug * improvement * fix * Add WEBSITE_SIGNUP_URL to deployment environment variables * Add WEBSITE_SIGNUP_URL to environment variables for deployment * Super admin banner fix (#13262) * Git Sync Fixes (#13249) * git-sync module changes * git sync fixes * added app resource guard * git-sync fixes * removed require feature * fix * review comment changes * ypress fix * App logo fix inside app builder * fix for subpath cache * fix (#13274) * platform-cypress-fix (#13271) * git sync fixes (#13277) * fix * Add data-cy for new components (#13289) --------- Co-authored-by: Rohan Lahori <64496391+rohanlahori@users.noreply.github.com> Co-authored-by: Rudhra Deep Biswas <98055396+rudeUltra@users.noreply.github.com> Co-authored-by: Ajith KV <ajith.jaban@gmail.com> Co-authored-by: Nithin David Thomas <1277421+nithindavid@users.noreply.github.com> Co-authored-by: rohanlahori <rohanlahori99@gmail.com> Co-authored-by: Adish M <adish.madhu@gmail.com> Co-authored-by: Rudra deep Biswas <rudra21ultra@gmail.com>
2025-07-09 17:06:41 +00:00
import * as crypto from 'crypto';
sync marketplace and tooljet database changes
2024-10-28 17:56:26 +00:00
export class MoveToolJetDatabaseTablesFromPublicToTenantSchema1721236971725 implements MigrationInterface {
public async up(queryRunner: QueryRunner): Promise<void> {
const envData = getEnvVars();
feat: disable mutti-tenant TJDB SQL mode for cloud
2025-07-07 07:09:47 +00:00
const isSqlModeDisabled = envData.TJDB_SQL_MODE_DISABLE == 'true';
const isCloud = envData.TOOLJET_EDITION == TOOLJET_EDITIONS.Cloud;
if (isSqlModeDisabled || isCloud) {
console.log('Skipping TJDB schema migration for SQL mode');
return;
}
sync marketplace and tooljet database changes
2024-10-28 17:56:26 +00:00
const batchSize = 100;
const entityManager = queryRunner.manager;
const tooljetDbConnection = new DataSource({
...tooljetDbOrmconfig,
name: 'tooljetDbMigration',
extra: {
...tooljetDbOrmconfig.extra,
idleTimeoutMillis: 10000,
allowExitOnIdle: true,
},
} as any);
await tooljetDbConnection.initialize();
const tooljetDbManager = tooljetDbConnection.createEntityManager();
const totalWorkspaceCount = await entityManager.count(Organization);
if (!totalWorkspaceCount) return;
const migrationProgress = new MigrationProgress(
'MoveToolJetDatabaseTablesFromPublicToTenantSchema1721236971725',
totalWorkspaceCount
);
const tooljetDbUser = envData.TOOLJET_DB_USER;
try {
const dbName = envData.TOOLJET_DB;
await revokeAccessToPublicSchema(dbName);
await tooljetDbManager.transaction(async (tooljetDbTransactionManager) => {
await processDataInBatches(
entityManager,
this.findWorkspaceDetails,
async (entityManager: EntityManager, workspaceDetailList: Organization[]) => {
await this.moveTjdbTablesToTenantSchema(
tooljetDbTransactionManager,
workspaceDetailList,
migrationProgress,
entityManager
);
},
batchSize
);
await syncTenantSchemaWithPostgrest(tooljetDbTransactionManager, tooljetDbUser);
});
await tooljetDbManager.query("NOTIFY pgrst, 'reload schema'");
} catch (error) {
console.error(
'Error during processing batches in MoveToolJetDatabaseTablesFromPublicToTenantSchema migration:',
error
);
throw error;
} finally {
await tooljetDbConnection.destroy();
}
}
private async findWorkspaceDetails(entityManager: EntityManager, skip: number, take: number) {
return await entityManager.find(Organization, {
take,
skip,
});
}
private async moveTjdbTablesToTenantSchema(
tooljetDbTransactionManager: EntityManager,
workspaceDetailList: Organization[],
migrationProgress: MigrationProgress,
entityManager: EntityManager
) {
const envData = getEnvVars();
const encryptionService = new EncryptionService();
for (const workspaceDetail of workspaceDetailList) {
const workspaceId = workspaceDetail.id;
const dbUser = `user_${workspaceId}`;
const dbPassword = crypto.randomBytes(8).toString('hex');
const dbSchema = `workspace_${workspaceId}`;
const dbName = envData.TOOLJET_DB;
const tooljetDbAdminUser = envData.TOOLJET_DB_USER;
await createNewTjdbRole(tooljetDbTransactionManager, dbUser, dbPassword, dbName);
await createAndGrantSchemaPrivilege(tooljetDbTransactionManager, dbSchema, dbUser);
const encryptedValue = await encryptionService.encryptColumnValue(
'organization_tjdb_configurations',
'pg_password',
dbPassword
);
await updatePasswordToOrganizationTable(entityManager, workspaceId, encryptedValue, dbUser);
const workspaceTableList = await entityManager.find(InternalTable, {
where: { organizationId: workspaceId },
select: ['id'],
});
if (workspaceTableList.length) {
for (const workspaceTable of workspaceTableList) {
const { id } = workspaceTable;
tooljetDbTransactionManager.query(`ALTER TABLE "public"."${id}" SET SCHEMA "${dbSchema}"`);
}
}
await grantSequencePrivilege(tooljetDbTransactionManager, dbSchema, dbUser, tooljetDbAdminUser);
await createAndGrantTablePrivilege(tooljetDbTransactionManager, dbSchema, dbUser, tooljetDbAdminUser);
await grantTenantRoleToTjdbAdminRole(tooljetDbTransactionManager, dbUser, tooljetDbAdminUser);
migrationProgress.show();
}
}
public async down(queryRunner: QueryRunner): Promise<void> {
const envData = getEnvVars();
const batchSize = 100;
const entityManager = queryRunner.manager;
const tooljetDbConnection = new DataSource({
...tooljetDbOrmconfig,
name: 'provideAccessToPublicSchema',
extra: {
...tooljetDbOrmconfig.extra,
idleTimeoutMillis: 10000,
allowExitOnIdle: true,
},
} as any);
await tooljetDbConnection.initialize();
const tooljetDbManager = await tooljetDbConnection.createEntityManager();
const totalWorkspaceCount = await entityManager.count(Organization);
if (!totalWorkspaceCount) return;
const migrationProgress = new MigrationProgress(
'FallbackOfMoveToolJetDatabaseTablesFromPublicToTenantSchema1721236971725',
totalWorkspaceCount
);
try {
await tooljetDbManager.transaction(async (tooljetDbTransactionManager) => {
const dbName = envData.TOOLJET_DB;
await this.provideAccessToPublicSchema(tooljetDbTransactionManager, dbName);
await processDataInBatches(
entityManager,
this.findWorkspaceDetails,
async (entityManager: EntityManager, workspaceDetailList: Organization[]) => {
// Fallback logic
await this.moveTjdbTablesToPublicSchema(
tooljetDbTransactionManager,
workspaceDetailList,
migrationProgress,
entityManager
);
},
batchSize
);
});
} catch (error) {
console.error(
'Error during processing batches in FallbackOfMoveToolJetDatabaseTablesFromPublicToTenantSchema1721236971725 migration:',
error
);
throw error;
} finally {
await tooljetDbConnection.destroy();
}
}
private async moveTjdbTablesToPublicSchema(
tooljetDbTransactionManager: EntityManager,
workspaceDetailList: Organization[],
migrationProgress: MigrationProgress,
entityManager: EntityManager
) {
const envData = getEnvVars();
for (const workspaceDetail of workspaceDetailList) {
const workspaceId = workspaceDetail.id;
const dbUser = `user_${workspaceId}`;
const dbSchema = `workspace_${workspaceId}`;
const dbSuperUser = envData.TOOLJET_DB_USER;
const tableListInWorkspace = await entityManager.find(InternalTable, {
where: { organizationId: workspaceId },
});
if (tableListInWorkspace.length) {
for (const workspaceTable of tableListInWorkspace) {
const { id } = workspaceTable;
tooljetDbTransactionManager.query(`ALTER TABLE "${dbSchema}"."${id}" SET SCHEMA "public";`);
}
}
await this.deleteTjdbTenantSchema(tooljetDbTransactionManager, dbSchema, dbUser);
await this.deleteTjdbTenantUser(tooljetDbTransactionManager, dbUser, dbSuperUser);
migrationProgress.show();
}
}
private async deleteTjdbTenantUser(tooljetDbTransactionManager: EntityManager, dbUser: string, dbSuperUser: string) {
await tooljetDbTransactionManager.query(`REASSIGN OWNED BY "${dbUser}" TO "${dbSuperUser}";`);
await tooljetDbTransactionManager.query(`DROP OWNED BY "${dbUser}"`);
await tooljetDbTransactionManager.query(`DROP ROLE "${dbUser}";`);
}
private async deleteTjdbTenantSchema(tooljetDbTransactionManager: EntityManager, dbSchema: string, dbUser: string) {
await tooljetDbTransactionManager.query(`REVOKE USAGE ON SCHEMA "${dbSchema}" FROM "${dbUser}";`);
await tooljetDbTransactionManager.query(`DROP SCHEMA "${dbSchema}" CASCADE;`);
}
private async provideAccessToPublicSchema(tooljetDbTransactionManager: EntityManager, dbName: string) {
await tooljetDbTransactionManager.query(`GRANT ALL PRIVILEGES ON DATABASE ${dbName} TO PUBLIC;`);
await tooljetDbTransactionManager.query(`GRANT ALL PRIVILEGES ON SCHEMA public TO PUBLIC;`);
await tooljetDbTransactionManager.query(`GRANT ALL PRIVILEGES ON SCHEMA information_schema TO PUBLIC;`);
await tooljetDbTransactionManager.query(`ALTER DEFAULT PRIVILEGES GRANT EXECUTE ON FUNCTIONS TO PUBLIC;`);
}
}
Reference in a new issue Copy permalink