Initial import

diff --git a/sql-edition/api/API.txt b/sql-edition/api/API.txt
new file mode 100644 (file)
index 0000000..e3ab07f
--- /dev/null
+++ b/sql-edition/api/API.txt
@@ -0,0 +1,141 @@
+ API for the new dispense
+-------------------------
+
+New dispense is written in entirely in postgresql. The server does all the
+required processing, meaning that database integrity is always maintained.
+
+The current interface for dispense is using a postgresql client library.
+Client libraries exist for many languages including C, C++, Perl, Python,
+Ruby, PHP, or you could also speak with the supplied client 'psql' through
+stdin/stdout.
+
+The details for connecting to the database are:
+    hostname: dispense.ucc.gu.uwa.edu.au
+    username: anondispense
+    database: dispense
+
+No password is required. You will only be able to connect from 'trusted'
+machines - currently this is mussel, mermaid, morwong.
+
+Note the API still isn't stable - it'd be worth running these commands by hand
+to see what the resulting tables look like.
+
+The useful things can be done once connected:
+
+    - SELECT * FROM get_services(username)
+         will give you a list of services available to the given user, including
+         syntax if parameters are required
+    - SELECT get_balance()
+      will return a table of all users and their balances.
+    - SELECT get_balance(username)
+      will return a table with one row for the given user, displaying their
+         account balance.
+    - SELECT do_request(target_user, service_name, parameters)
+      will perform a request.
+        * target_user is the user you wish to perform the request upon.
+                 You will only be permitted to act on somebody else if you are in the
+                 coke group.
+        * service_name is the name of the service as seen in the services
+          table.
+        * parameters is an array of parameters for the service, if required.
+          These should appear in the order as item_syntax from the services
+          table.
+
+Example follows:
+
+$ psql dispense -U anondispense -h dispense.ucc.gu.uwa.edu.au
+\Welcome to psql 7.4.1, the PostgreSQL interactive terminal.
+
+Type:  \copyright for distribution terms
+       \h for help with SQL commands
+       \? for help on internal slash commands
+       \g or terminate with semicolon to execute query
+       \q to quit
+
+-- Equivalent of bringing up the menu. Only items allowed for
+-- the given user are shown.
+dispense=> select * from get_services('dagobah');
+  item_name  | item_cost_cents |             item_syntax              | item_stock 
+-------------+-----------------+--------------------------------------+------------
+ nothing     |                 |                                      |           
+ give        |                 | <username> <cents>                   |           
+ acct        |                 | <cents> <reason>                     |           
+ passion pop |              80 |                                      |          8
+ vb          |              80 |                                      |          0
+ emu export  |              80 |                                      |          3
+ champagne   |              80 |                                      |          9
+ coke powder |              80 |                                      |         11
+ update_coke |                 | <slot number> <new name> <new price> |           
+ opendoor    |                 |                                      |           
+ grape juice |              80 |                                      |          0
+ some foo    |              77 |                                      |          3
+(12 rows)
+
+-- Get balance for a user.
+-- Equivalent of 'dispense acct dagobah'
+-- Calling just get_balance() will return all users balances.
+dispense=> select * from get_balance('dagobah');
+ user_name | user_balance_cents | user_balance_bytes 
+-----------+--------------------+--------------------
+ dagobah   |              -5080 |                  0
+(1 row)
+
+-- Dispense something for a user.
+-- Equivalent of 'dispense -u dagobah grape juice'
+dispense=> select do_request('dagobah', 'grape juice', NULL);
+ERROR:  You may not dispense below -$20.00.
+CONTEXT:  PL/pgSQL function "do_request" line 12 at SQL statement
+
+-- Adjust somebody's account balance up or down.
+-- Equivalent of 'dispense acct dagobah +10000 BAG123'
+dispense=> select do_request('dagobah', 'acct', array['+10000', 'BAG123']);
+ do_request 
+------------
+ t
+(1 row)
+
+-- Get the balance once again ... note that it's higher :)
+dispense=> select * from get_balance('dagobah');
+ user_name | user_balance_cents | user_balance_bytes 
+-----------+--------------------+--------------------
+ dagobah   |               4920 |                  0
+(1 row)
+
+-- Try that dispense again, but we see there is none
+dispense=> select do_request('dagobah', 'grape juice', NULL);
+ERROR:  We are out of stock of that item.
+CONTEXT:  PL/pgSQL function "do_request" line 12 at SQL statement
+
+-- Try that dispense again, but we see there is none
+dispense=> select do_request('dagobah', 'some foo', NULL);
+ do_request 
+------------
+ t
+(1 row)
+
+-- Updating a slot name/price on the coke machine
+dispense=> select do_request('dagobah', 'update_coke', array['3', 'orange blah', '88']);
+ do_request 
+------------
+ t
+(1 row)
+
+-- Note the services have changed
+dispense=> select * from get_services('dagobah');
+  item_name  | item_cost_cents |             item_syntax              | item_stock 
+-------------+-----------------+--------------------------------------+------------
+ nothing     |                 |                                      |           
+ give        |                 | <username> <cents>                   |           
+ acct        |                 | <cents> <reason>                     |           
+ passion pop |              80 |                                      |          8
+ vb          |              80 |                                      |          0
+ emu export  |              80 |                                      |          3
+ champagne   |              80 |                                      |          9
+ coke powder |              80 |                                      |         11
+ update_coke |                 | <slot number> <new name> <new price> |           
+ opendoor    |                 |                                      |           
+ grape juice |              80 |                                      |          0
+ orange blah |              88 |                                      |          3
+(12 rows)
+
+Email comments or queries to <[email protected]>

diff --git a/sql-edition/clients/dispense.py b/sql-edition/clients/dispense.py
new file mode 100755 (executable)
index 0000000..00310b5
--- /dev/null
+++ b/sql-edition/clients/dispense.py
@@ -0,0 +1,48 @@
+#!/usr/bin/python
+
+import sys, os, re
+from pyPgSQL import PgSQL
+
+if __name__ == '__main__':
+       db = PgSQL.connect(user = 'anondispense', host = 'dispense', database = 'dispense')
+       cursor = db.cursor()
+       user = os.environ['USER']
+
+       if len(sys.argv) > 1:
+               # We have a request. Pass it to dispense by calling
+               # SELECT do_request(username, service, params as array)
+               service = sys.argv[1]
+               params = sys.argv[2:]
+               if params != []:
+                       paramstr = 'array['
+                       for i in params:
+                               paramstr += '%s,'
+                       paramstr = paramstr.rstrip(',') + ']'
+               else:
+                       paramstr = 'NULL'
+               cursor.execute('SELECT do_request(%%s, %%s, %s)'%paramstr, [user, service]+params)
+               result = cursor.fetchone()[0]
+               if result == True:
+                       print 'All good'
+               else:
+                       print 'Eeeep!'
+       else:
+               cursor.execute('SELECT * FROM get_services(%s)', user)
+               print '%-10s %-50s %-10s %s' % ('Provider', 'Item', 'Cost', 'Stock')
+               print '-------------------------------------------------------------------------------'
+               for item in cursor.fetchall():
+                       print '%10s '%item[0],
+                       if item[3] is None:
+                               item[3] = ''
+                       print '%-50s'%(item[1]+' '+item[3]),
+                       if item[2] is None:
+                               print '%-10s' % '',
+                       else:
+                               print '%-10d' % int(item[2]),
+                       if item[4] is None:
+                               item[4] = 'N/A'
+                       print '%s'%item[4]
+       cursor.execute('SELECT * FROM get_balance(%s)', user);
+       [_, cents,bytes] = cursor.fetchone()
+       print user, 'has', int(cents), 'cents and', int(bytes), 'bytes'
+       db.commit()

diff --git a/sql-edition/convert.c b/sql-edition/convert.c
new file mode 100644 (file)
index 0000000..bac3b86
--- /dev/null
+++ b/sql-edition/convert.c
@@ -0,0 +1,31 @@
+/* Prints a list of all usernames with useable coke balances
+ * delimited by newlines.
+ *
+ *  - Bernard Blackham <[email protected]>
+ */
+
+
+#include <stdio.h>
+#include "ucc.h"
+
+int main(int argc, char* argv[]) {
+       char username[30];
+       int32 balance;
+
+       if (argc != 1) {
+               fprintf(stderr, "Usage: %s\n", argv[0]);
+               return 1;
+       }
+       
+       SetCokebankToSocks();
+
+       cokebank_open();
+       printf("DELETE from users;\n");
+       printf("COPY users (user_name, user_balance_cents, user_balance_bytes) FROM stdin;\n");
+       while (cokebank_get_next(username, &balance, 0)) {
+               printf("%s\t%d\t%d\n", username, cokebank_get(username), cokebank_get_bytes(username));
+       }
+       printf("\\.\n");
+       cokebank_close();
+       return 0;
+}

diff --git a/sql-edition/ident/Makefile b/sql-edition/ident/Makefile
new file mode 100644 (file)
index 0000000..6bde0e0
--- /dev/null
+++ b/sql-edition/ident/Makefile
@@ -0,0 +1,11 @@
+CC = gcc
+INCLUDES = -I$(shell pg_config --includedir) -I$(shell pg_config --includedir-server)
+CFLAGS = $(INCLUDES) -Wall -O2
+
+all: pg_ident.so
+
+pg_ident.so: pg_ident.o
+       gcc -shared -lident -o $@ $<
+
+clean:
+       rm -f *.o *.so

diff --git a/sql-edition/ident/pg_ident.c b/sql-edition/ident/pg_ident.c
new file mode 100644 (file)
index 0000000..2de2121
--- /dev/null
+++ b/sql-edition/ident/pg_ident.c
@@ -0,0 +1,39 @@
+#include <ident.h>
+
+#include <postgres.h>
+#include <miscadmin.h>
+#include <libpq/libpq-be.h>
+#include <fmgr.h>
+
+char *ident_result = NULL;
+
+PG_FUNCTION_INFO_V1(get_ident);
+Datum get_ident(PG_FUNCTION_ARGS) {
+       IDENT *id;
+
+       if (MyProcPort == NULL)
+               elog(ERROR, "could not get ident for user: no port");
+
+       if (!ident_result) {
+               id = ident_lookup(MyProcPort->sock, 5);
+               if (id && id->identifier) ident_result = strdup(id->identifier);
+       }
+
+       if (ident_result) {
+               int len;
+               VarChar* result;
+
+               len = strlen(ident_result);
+               if (len > 8) len = 8;
+               result = palloc(len + VARHDRSZ);
+               VARATT_SIZEP(result) = len + VARHDRSZ;
+               memcpy(VARDATA(result), ident_result, len);
+
+               PG_RETURN_VARCHAR_P(result);
+       }
+
+       elog(ERROR, "could not get ident for user: ident failed");
+
+       /* not reached */
+       PG_RETURN_NULL();
+}

diff --git a/sql-edition/schema/d.sql b/sql-edition/schema/d.sql
new file mode 100644 (file)
index 0000000..4733e5a
--- /dev/null
+++ b/sql-edition/schema/d.sql
@@ -0,0 +1,707 @@
+------------------------------------------------------------------------------
+------------------------------------------------------------------------------
+---                                                                        ---
+---    DISPENSE IN POSTGRES REWRITE                                        ---
+---                           Bernard Blackham <[email protected]> ---
+---                                                                        ---
+------------------------------------------------------------------------------
+------------------------------------------------------------------------------
+
+/*
+
+All the operations are done 
+*/
+
+\connect 'dispense';
+
+DROP TABLE requests;
+DROP SEQUENCE request_id_seq;
+DROP FUNCTION get_services(varchar);
+DROP VIEW services;
+DROP TABLE items;
+DROP TABLE sources;
+DROP TABLE cokecontrollers;
+DROP TABLE doorcontrollers;
+DROP FUNCTION get_balance();
+DROP FUNCTION get_balance(varchar);
+DROP TABLE users;
+
+CREATE OR REPLACE FUNCTION get_ident() RETURNS varchar AS 'pg_ident.so', 'get_ident' STRICT LANGUAGE C;
+REVOKE ALL ON FUNCTION get_ident() FROM public;
+
+CREATE TABLE users (
+    user_name varchar(16) NOT NULL UNIQUE PRIMARY KEY,
+    user_balance_cents integer NOT NULL,
+    user_balance_bytes integer NOT NULL
+);
+
+CREATE TABLE cokecontrollers (
+    user_name varchar(16) UNIQUE references users(user_name),
+       reason varchar(250)
+);
+
+CREATE TABLE sources (
+    source_name varchar(20) NOT NULL UNIQUE PRIMARY KEY
+);
+
+CREATE TABLE items (
+    source_name varchar(20) REFERENCES sources(source_name),
+    item_name varchar(20) NOT NULL UNIQUE PRIMARY KEY,
+    item_cost_cents integer,
+    item_data varchar[],
+       item_syntax varchar(80),
+    item_stock integer -- -1 for "in stock", 0 for "out of stock", > 0 for a value of stock, NULL for N/A
+);
+
+CREATE VIEW services AS 
+       SELECT  i.source_name as provider,
+                       i.item_name,
+                       i.item_cost_cents,
+                       i.item_syntax,
+                       i.item_stock,
+                       i.item_data
+                       FROM items i
+;
+
+CREATE SEQUENCE request_id_seq START 1;
+CREATE TABLE requests (
+       request_id integer NOT NULL DEFAULT nextval('request_id_seq'),
+    request_requestor_name varchar(16) REFERENCES users(user_name),
+    request_target_name varchar(16) REFERENCES users(user_name),
+    item_name varchar(20),
+    params varchar[],
+       handled boolean NOT NULL DEFAULT false
+);
+
+-- request(target username, item_name, params)
+CREATE OR REPLACE FUNCTION do_request(varchar(16), varchar(20), varchar[]) RETURNS boolean AS 
+       '
+       DECLARE
+               ident VARCHAR;
+       BEGIN
+               ident = get_ident();
+               IF ident IS NULL THEN
+                       RAISE EXCEPTION ''Got a null ident! Eepe!'';
+               END IF;
+               IF NOT EXISTS(SELECT user_name FROM users WHERE user_name = $1) THEN
+                       RAISE NOTICE ''Adding user %!!'', $1;
+                       INSERT INTO users VALUES ($1, 0, 0);
+               END IF;
+               INSERT INTO requests VALUES (DEFAULT, ident, $1, $2, $3);
+               RETURN true;
+       END;
+       '
+       LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION do_request(varchar(16),varchar(20),varchar[]) FROM public;
+GRANT EXECUTE ON FUNCTION do_request(varchar(16), varchar(20), varchar[]) TO anondispense;
+
+-- get_balance(target username)
+CREATE OR REPLACE FUNCTION get_balance(varchar(16)) RETURNS users
+       AS 'SELECT * FROM users WHERE user_name = $1'
+       LANGUAGE sql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION get_balance(varchar(16)) FROM public;
+GRANT EXECUTE ON FUNCTION get_balance(varchar(16)) TO anondispense;
+
+-- get_balance() ... returns everybody
+CREATE OR REPLACE FUNCTION get_balance() RETURNS SETOF users
+       AS 'SELECT * FROM users'
+       LANGUAGE sql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION get_balance() FROM public;
+GRANT EXECUTE ON FUNCTION get_balance() TO anondispense;
+
+-- internal functions follow
+
+CREATE OR REPLACE FUNCTION in_coke(varchar(16)) RETURNS boolean
+    AS 'SELECT EXISTS(SELECT * FROM cokecontrollers WHERE user_name = $1)'
+    LANGUAGE sql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION in_coke(varchar(16)) FROM public;
+
+CREATE OR REPLACE FUNCTION byte_to_cent_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+               bytes_per_cent INTEGER;
+               cents_per_meg INTEGER;
+       BEGIN
+               cents_per_meg = 4;
+               bytes_per_cent = 1024*1024/cents_per_meg;
+               IF NEW.user_balance_bytes > bytes_per_cent THEN
+                       NEW.user_balance_cents = NEW.user_balance_cents - (NEW.user_balance_bytes/bytes_per_cent);
+                       NEW.user_balance_bytes = NEW.user_balance_bytes % bytes_per_cent;
+               END IF;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION byte_to_cent_trigger() FROM public;
+CREATE TRIGGER byte_to_cent_trigger BEFORE INSERT OR UPDATE ON users FOR EACH ROW
+       EXECUTE PROCEDURE byte_to_cent_trigger();
+
+CREATE OR REPLACE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       '
+       DECLARE
+               ident varchar;
+       BEGIN
+               IF $1 NOT IN (SELECT user_name FROM users) THEN
+                       RETURN false;
+               END IF;
+               ident = get_ident();
+               IF ident = $1 OR in_coke(ident) THEN
+                       RETURN true;
+               END IF;
+               RETURN false;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar(16), varchar(20)) FROM public;
+CREATE OR REPLACE FUNCTION get_services(varchar(16)) RETURNS SETOF services AS
+       'SELECT * from services WHERE can_show($1, item_name)' LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+
+REVOKE ALL ON FUNCTION get_services(varchar(16)) FROM public;
+GRANT EXECUTE ON FUNCTION get_services(varchar(16)) TO anondispense;
+
+CREATE OR REPLACE FUNCTION first_request_handler() RETURNS "trigger" AS
+       '
+       DECLARE
+               cost INTEGER;
+               stock INTEGER;
+               balance INTEGER;
+       BEGIN
+               -- Sanity check that requestor isn''t acting on somebody else''s behalf
+               -- when they''re not in coke.
+               IF NEW.request_target_name <> NEW.request_requestor_name AND NOT in_coke(NEW.request_requestor_name) THEN
+                       RAISE EXCEPTION ''You are not allowed to perform operations on behalf of somebody else'';
+               END IF;
+
+               -- Sanity check that the item is in the items table
+               IF NOT EXISTS (SELECT item_name FROM items where item_name = NEW.item_name) THEN
+                       RAISE EXCEPTION ''We do not stock anything like that.'';
+               END IF;
+
+               -- If we have a balance for the item, ensure there is sufficient money
+               SELECT INTO cost items.item_cost_cents FROM items WHERE item_name = NEW.item_name;
+               
+               -- If the cost is null, it may vary and account keeping is done by the
+               -- relevant modules
+               IF cost IS NOT NULL THEN
+                       SELECT INTO balance users.user_balance_cents FROM users WHERE user_name = NEW.request_target_name;
+                       IF in_coke(NEW.request_requestor_name) THEN
+                               IF balance - cost < -2000 THEN
+                                       -- They''re in coke, let them take balances to -$20.00
+                                       RAISE EXCEPTION ''You may not dispense below -$20.00.'';
+                               END IF;
+                       ELSE
+                               -- Else simply ensure there is enough money
+                               IF cost > balance THEN
+                                       RAISE EXCEPTION ''You do not have sufficient funds to do that.'';
+                               END IF;
+                       END IF;
+
+                       -- Deduct money. This will be rolled back if any other triggers fail.
+                       UPDATE users SET user_balance_cents = user_balance_cents - cost WHERE user_name = NEW.request_target_name;
+               END IF;
+
+               -- Adjust stock levels as required
+               SELECT INTO stock item_stock FROM items WHERE item_name = NEW.item_name;
+               IF stock IS NOT NULL THEN
+                       IF stock = 0 THEN
+                               RAISE EXCEPTION ''We are out of stock of that item.'';
+                       END IF;
+                       IF stock > 0 THEN
+                               UPDATE items SET item_stock = item_stock - 1 WHERE item_name = NEW.item_name;
+                       END IF;
+                       -- if item stock is -1, then stock levels are adjusted by other things
+               END IF;
+
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION first_request_handler() FROM public;
+CREATE TRIGGER a00_first_request_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE first_request_handler();
+
+CREATE OR REPLACE FUNCTION final_request_handler() RETURNS "trigger" AS
+       '
+       BEGIN
+               IF NEW.handled = false THEN
+                       RAISE EXCEPTION ''Nothing wanted to service your request!'';
+               END IF;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION final_request_handler() FROM public;
+CREATE TRIGGER zzz_last_request_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE final_request_handler();
+
+---------------------------------------------------------------------------------
+--- Dummy Services                                                            ---
+---------------------------------------------------------------------------------
+
+INSERT INTO sources VALUES ('nothing');
+
+INSERT INTO items VALUES ('nothing', 'nothing', NULL, NULL, NULL, NULL);
+CREATE OR REPLACE FUNCTION nothing_nothing_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NEW.item_name <> ''nothing'' THEN
+                       RETURN NEW;
+               END IF;
+
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION nothing_nothing_trigger() FROM public;
+CREATE TRIGGER nothing_nothing_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE nothing_nothing_trigger();
+
+DROP FUNCTION can_show_pre_nothing(varchar, varchar);
+ALTER FUNCTION can_show(varchar(16), varchar(20)) RENAME TO can_show_pre_nothing;
+CREATE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       'SELECT can_show_pre_nothing($1, $2) OR $2 = ''nothing'''
+       LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar, varchar) FROM public;
+
+---------------------------------------------------------------------------------
+--- Coke Bank Services                                                        ---
+---------------------------------------------------------------------------------
+
+INSERT INTO sources VALUES ('cokebank');
+
+INSERT INTO items VALUES ('cokebank', 'give', NULL, NULL, '<username> <cents>', NULL);
+CREATE OR REPLACE FUNCTION cokebank_give_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+               give_amount INTEGER;
+
+               source_user VARCHAR(8);
+               target_user VARCHAR(8);
+               source_user_balance INTEGER;
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NEW.item_name <> ''give'' THEN
+                       RETURN NEW;
+               END IF;
+
+               -- Check for our two parameters, username, amount
+               IF NEW.params IS NULL THEN
+                       RAISE EXCEPTION ''Missing parameters for give'';
+               END IF;
+               IF array_upper(NEW.params, 1) <> 2 THEN
+                       RAISE EXCEPTION ''Invalid number of parameters for give'';
+               END IF;
+               IF NEW.params[1] NOT IN (SELECT user_name FROM users) THEN
+                       RAISE EXCEPTION ''Invalid user to give to'';
+               END IF;
+               give_amount = CAST(CAST(NEW.params[2] AS TEXT) AS INTEGER);
+               source_user = NEW.request_target_name;
+               target_user = NEW.params[1];
+
+               -- Can''t give to one''s self
+               IF source_user = target_user THEN
+                       RAISE EXCEPTION ''You can''''t give to one''''s self'';
+               END IF;
+               -- Can''t give negative amounts
+               IF give_amount <= 0 THEN
+                       RAISE EXCEPTION ''You can only give positive balances'';
+               END IF;
+
+               -- Check the appropriate balances
+               SELECT INTO source_user_balance users.user_balance_cents FROM users WHERE user_name = source_user;
+
+               IF source_user_balance < give_amount AND not in_coke(NEW.request_requestor_name) THEN
+                       RAISE EXCEPTION ''You do not have sufficient funds to give that much!'';
+               END IF;
+
+               -- Perform the request
+               UPDATE users SET user_balance_cents = user_balance_cents - give_amount WHERE user_name = source_user;
+               UPDATE users SET user_balance_cents = user_balance_cents + give_amount WHERE user_name = target_user;
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION cokebank_give_trigger() FROM public;
+CREATE TRIGGER cokebank_give_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE cokebank_give_trigger();
+
+INSERT INTO items VALUES ('cokebank', 'acct', NULL, NULL, '<cents> <reason>', NULL);
+CREATE OR REPLACE FUNCTION cokebank_acct_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+               amount INTEGER;
+               target_user VARCHAR(8);
+               reason VARCHAR;
+               user_bal RECORD;
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NEW.item_name <> ''acct'' THEN
+                       RETURN NEW;
+               END IF;
+
+               -- Check requestor is in coke
+               IF NOT in_coke(NEW.request_requestor_name) THEN
+                       RAISE EXCEPTION ''You need to be in the coke group to use acct'';
+               END IF;
+
+               -- Check for our two parameters, amount and reason
+               IF NEW.params IS NULL THEN
+                       RAISE EXCEPTION ''No parameters supplied to acct'';
+               END IF;
+               IF array_upper(NEW.params, 1) <> 2 THEN
+                       RAISE EXCEPTION ''Invalid number of parameters for acct'';
+               END IF;
+               amount = CAST(CAST(NEW.params[1] AS TEXT) AS INTEGER);
+               reason = NEW.params[2];
+               target_user = NEW.request_target_name;
+
+               -- Perform the request
+               UPDATE users SET user_balance_cents = user_balance_cents + amount WHERE user_name = target_user;
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION cokebank_acct_trigger() FROM public;
+CREATE TRIGGER cokebank_acct_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE cokebank_acct_trigger();
+
+-- Don't show the acct function to non-coke people
+DROP FUNCTION can_show_pre_cokebank(varchar, varchar);
+ALTER FUNCTION can_show(varchar(16), varchar(20)) RENAME TO can_show_pre_cokebank;
+CREATE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       'SELECT can_show_pre_cokebank($1, $2) AND NOT ($2 = ''acct'' AND NOT in_coke($1))'
+       LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar, varchar) FROM public;
+
+---------------------------------------------------------------------------------
+--- Coke Machine Services                                                     ---
+---------------------------------------------------------------------------------
+
+INSERT INTO sources VALUES ('coke');
+
+INSERT INTO items VALUES ('coke', 'passion pop',       80, array['0'], NULL, 8);
+INSERT INTO items VALUES ('coke', 'vb',                                80, array['1'], NULL, 0);
+INSERT INTO items VALUES ('coke', 'emu export',                80, array['2'], NULL, 3);
+INSERT INTO items VALUES ('coke', 'whiskey',           80, array['3'], NULL, 4);
+INSERT INTO items VALUES ('coke', 'champagne',         80, array['4'], NULL, 9);
+INSERT INTO items VALUES ('coke', 'grape juice',       80, array['5'], NULL, 1);
+INSERT INTO items VALUES ('coke', 'coke powder',       80, array['6'], NULL, 11);
+
+INSERT INTO items VALUES ('coke', 'update_coke',       NULL, NULL, '<slot number> <new name> <new price> <stock count>', NULL);
+
+CREATE OR REPLACE FUNCTION update_slot_info(integer, varchar(20), integer, integer) RETURNS void AS
+       '
+       BEGIN
+               -- Check such a slot exists
+               IF NOT EXISTS(SELECT item_name FROM items WHERE item_data[1] = cast($1 as varchar) AND source_id = ''coke'') THEN
+                       RAISE EXCEPTION ''There is no such slot %'', $1;
+               END IF;
+               IF $2 IS NOT NULL THEN
+                       UPDATE items SET item_name = $2 WHERE item_data[1] = cast($1 as varchar) and source_id = ''coke'';
+               END IF;
+               IF $3 IS NOT NULL THEN
+                       UPDATE items SET item_cost_cents = $3 WHERE item_data[1] = cast($1 as varchar) and source_id = ''coke'';
+               END IF;
+               IF $4 IS NOT NULL THEN
+                       UPDATE items SET item_stock = $4 WHERE item_data[1] = $1 and source_id = ''vend'';
+               END IF;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION update_slot_info(integer, varchar, integer, integer) FROM public;
+
+CREATE OR REPLACE FUNCTION dispense_slot(integer) RETURNS void AS
+       '
+       elog(NOTICE, q(And out pops a drink!));
+       ' LANGUAGE plperlu EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION dispense_slot(integer) FROM public;
+
+CREATE OR REPLACE FUNCTION update_slot_status() RETURNS void AS
+       '
+       ' LANGUAGE plperlu EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION update_slot_status() FROM public;
+
+CREATE OR REPLACE FUNCTION coke_slot_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+               new_name VARCHAR(20);
+               new_cost INTEGER;
+               new_stock INTEGER;
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NOT EXISTS(SELECT item_name FROM items WHERE source_name = ''coke'' AND item_name = NEW.item_name) THEN
+                       RETURN NEW;
+               END IF;
+
+               -- Check if we are wanted to update a slot
+               IF NEW.item_name = ''update_coke'' THEN
+                       -- Check parameters
+                       IF NEW.params IS NULL THEN
+                               RAISE EXCEPTION ''Missing parameters for update_coke'';
+                       END IF;
+                       IF array_upper(NEW.params, 1) <> 4 THEN
+                               RAISE EXCEPTION ''Invalid number of parameters for update_coke'';
+                       END IF;
+                       IF NEW.params[1] NOT IN (SELECT item_data[1] FROM items WHERE source_name = ''coke'' and item_data[1] IS NOT NULL) THEN
+                               new_name = NEW.params[1];
+                               RAISE EXCEPTION ''No idea what slot % is.'', new_name;
+                       END IF;
+                       new_name = NEW.params[2];
+                       IF NEW.params[3] <> '''' THEN
+                               new_cost = CAST(CAST(NEW.params[3] AS TEXT) AS INTEGER);
+                               IF new_cost <= 0 THEN
+                                       RAISE EXCEPTION ''Amount must be positive'';
+                               END IF;
+                               UPDATE items SET item_cost_cents = new_cost WHERE source_name = ''coke'' AND item_data[1] = NEW.params[1];
+                       END IF;
+                       IF NEW.params[4] <> '''' THEN
+                               new_stock = CAST(CAST(NEW.params[4] AS TEXT) AS INTEGER);
+                               IF new_stock <= -1 THEN
+                                       RAISE EXCEPTION ''Stock count must be -1 or >= 0'';
+                               END IF;
+                               UPDATE items SET item_stock = new_stock WHERE source_name = ''coke'' AND item_data[1] = NEW.params[1];
+                       END IF;
+                       UPDATE items SET item_name = new_name WHERE source_name = ''coke'' AND item_data[1] = NEW.params[1];
+               END IF;
+
+               -- The default handler will have checked that we have stock and
+               -- deducted money et al.
+               --
+               -- So if we get this far, we don''t need to care about much.
+               -- Dropping the drink & checking stock occurs in the AFTER-INSERT trigger.
+
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION coke_slot_trigger() FROM public;
+CREATE TRIGGER coke_slot_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE coke_slot_trigger();
+
+CREATE OR REPLACE FUNCTION coke_slot_dispense() RETURNS "trigger" AS
+       '
+       DECLARE
+               slotnum integer;
+               stock integer;
+       BEGIN
+               IF NEW.handled AND EXISTS(SELECT item_name FROM items WHERE source_name = ''coke'' AND item_name = NEW.item_name) THEN
+                       -- Drop a drink and update stock
+                       SELECT INTO slotnum items.item_data[1] FROM items WHERE item_name = NEW.item_name and source_name = ''coke'';
+                       PERFORM dispense_slot(slotnum);
+                       PERFORM update_slot_status();
+               END IF;
+               RETURN NULL;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION coke_slot_dispense() FROM public;
+CREATE TRIGGER coke_slot_dispense AFTER INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE coke_slot_dispense();
+
+-- Don't show the update function to non-coke people
+DROP FUNCTION can_show_pre_coke(varchar, varchar);
+ALTER FUNCTION can_show(varchar(16), varchar(20)) RENAME TO can_show_pre_coke;
+CREATE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       'SELECT can_show_pre_coke($1, $2) AND NOT ($2 = ''update_coke'' AND NOT in_coke($1))'
+       LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar, varchar) FROM public;
+
+---------------------------------------------------------------------------------
+--- Vending Machine Services                                                  ---
+---------------------------------------------------------------------------------
+
+INSERT INTO sources VALUES ('vend');
+
+INSERT INTO items VALUES ('vend', 'twisties',                  120, array['11'], NULL, 8);
+INSERT INTO items VALUES ('vend', 'cheese and onion',  125, array['21'], NULL, 0);
+INSERT INTO items VALUES ('vend', 'update_vend', NULL, NULL, '<slot number> <new name> <new price> <new count>', NULL);
+
+CREATE OR REPLACE FUNCTION valid_vend_slot(varchar(2)) RETURNS boolean AS
+       '
+       BEGIN
+               RETURN $1 ~ ''^[0-9]{2}$'';
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION valid_vend_slot(varchar(2)) FROM public;
+
+CREATE OR REPLACE FUNCTION update_vend_slot_info(varchar(2), varchar(20), integer, integer) RETURNS void AS
+       '
+       BEGIN
+               -- Check such a slot exists
+               IF NOT valid_vend_slot($1) THEN
+                       RAISE EXCEPTION ''There is no such slot %'', $1;
+               END IF;
+               IF $2 IS NOT NULL THEN
+                       UPDATE items SET item_name = $2 WHERE item_data[1] = $1 and source_id = ''vend'';
+               END IF;
+               IF $3 IS NOT NULL THEN
+                       UPDATE items SET item_cost_cents = $3 WHERE item_data[1] = $1 and source_id = ''vend'';
+               END IF;
+               IF $4 IS NOT NULL THEN
+                       UPDATE items SET item_stock = $4 WHERE item_data[1] = $1 and source_id = ''vend'';
+               END IF;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION update_vend_slot_info(varchar(2), varchar, integer, integer) FROM public;
+
+CREATE OR REPLACE FUNCTION vend_slot(varchar(2)) RETURNS void AS
+       '
+       elog(NOTICE, q(And out pops a snack!));
+       ' LANGUAGE plperlu EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION vend_slot(varchar(2)) FROM public;
+
+CREATE OR REPLACE FUNCTION vend_slot_trigger() RETURNS "trigger" AS
+       '
+       DECLARE
+               new_name VARCHAR(20);
+               new_cost INTEGER;
+               new_stock INTEGER;
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NOT EXISTS(SELECT item_name FROM items WHERE source_name = ''vend'' AND item_name = NEW.item_name) THEN
+                       RETURN NEW;
+               END IF;
+
+               -- Check if we are wanted to update a slot
+               IF NEW.item_name = ''update_vend'' THEN
+                       -- Check parameters
+                       IF NEW.params IS NULL THEN
+                               RAISE EXCEPTION ''Missing parameters for update_vend'';
+                       END IF;
+                       IF array_upper(NEW.params, 1) <> 4 THEN
+                               RAISE EXCEPTION ''Invalid number of parameters for update_vend'';
+                       END IF;
+                       IF NEW.params[1] NOT IN (SELECT item_data[1] FROM items WHERE source_name = ''vend'' and item_data[1] IS NOT NULL) THEN
+                               new_name = NEW.params[1];
+                               RAISE EXCEPTION ''No idea what slot % is.'', new_name;
+                       END IF;
+                       new_name = NEW.params[2];
+                       IF NEW.params[3] <> '''' THEN
+                               new_cost = CAST(CAST(NEW.params[3] AS TEXT) AS INTEGER);
+                               IF new_cost <= 0 THEN
+                                       RAISE EXCEPTION ''Amount must be positive'';
+                               END IF;
+                               UPDATE items SET item_cost_cents = new_cost WHERE source_name = ''vend'' AND item_data[1] = NEW.params[1];
+                       END IF;
+                       IF NEW.params[4] <> '''' THEN
+                               new_stock = CAST(CAST(NEW.params[4] AS TEXT) AS INTEGER);
+                               IF new_stock <= -1 THEN
+                                       RAISE EXCEPTION ''Stock count must be -1 or >= 0'';
+                               END IF;
+                               UPDATE items SET item_stock = new_stock WHERE source_name = ''vend'' AND item_data[1] = NEW.params[1];
+                       END IF;
+                       UPDATE items SET item_name = new_name WHERE source_name = ''vend'' AND item_data[1] = NEW.params[1];
+               END IF;
+
+               -- The default handler will have checked that we have stock and
+               -- deducted money et al.
+               --
+               -- So if we get this far, we don''t need to care about much.
+               -- Dropping the drink & checking stock occurs in the AFTER-INSERT trigger.
+
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION vend_slot_trigger() FROM public;
+CREATE TRIGGER vend_slot_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE vend_slot_trigger();
+
+CREATE OR REPLACE FUNCTION vend_slot_dispense() RETURNS "trigger" AS
+       '
+       DECLARE
+               slotnum varchar(2);
+       BEGIN
+               IF NEW.handled AND EXISTS(SELECT item_name FROM items WHERE source_name = ''vend'' AND item_name = NEW.item_name) THEN
+                       -- Drop a snack and update stock
+                       SELECT INTO slotnum items.item_data[1] FROM items WHERE item_name = NEW.item_name and source_name = ''vend'';
+                       PERFORM vend_slot(slotnum);
+               END IF;
+               RETURN NULL;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION vend_slot_dispense() FROM public;
+CREATE TRIGGER vend_slot_dispense AFTER INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE vend_slot_dispense();
+
+-- Don't show the update function to non-coke people
+DROP FUNCTION can_show_pre_vend(varchar, varchar);
+ALTER FUNCTION can_show(varchar(16), varchar(20)) RENAME TO can_show_pre_vend;
+CREATE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       'SELECT can_show_pre_vend($1, $2) AND NOT ($2 = ''update_vend'' AND NOT in_coke($1))'
+       LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar, varchar) FROM public;
+
+---------------------------------------------------------------------------------
+--- UCC Door Services                                                         ---
+---------------------------------------------------------------------------------
+
+CREATE TABLE doorcontrollers (
+    user_name varchar(16) UNIQUE references users(user_name),
+       reason varchar(250)
+);
+
+CREATE OR REPLACE FUNCTION in_door(varchar(16)) RETURNS boolean
+    AS 'SELECT EXISTS(SELECT user_name FROM doorcontrollers WHERE user_name = $1)'
+    LANGUAGE sql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION in_door(varchar(16)) FROM public;
+
+INSERT INTO sources VALUES ('door');
+
+INSERT INTO items VALUES ('door', 'opendoor', NULL, NULL, NULL, NULL);
+
+CREATE OR REPLACE FUNCTION open_door() RETURNS void AS
+       '
+       system("/usr/bin/sudo /usr/sbin/opendoor");
+       ' LANGUAGE plperlu EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION open_door() FROM public;
+
+CREATE OR REPLACE FUNCTION door_open_trigger() RETURNS "trigger" AS
+       '
+       BEGIN
+               -- Check if we are to handle this request
+               IF NEW.handled OR NOT EXISTS(SELECT item_name FROM items WHERE source_name = ''door'' AND item_name = NEW.item_name) THEN
+                       RETURN NEW;
+               END IF;
+
+               -- You can''t open the door for somebody else
+               IF NEW.request_requestor_name <> NEW.request_target_name THEN
+                       RAISE EXCEPTION ''You can''''t open the door for somebody else.'';
+               END IF;
+
+               -- Ensure the user is in the door group
+               IF NOT in_door(NEW.request_requestor_name) THEN
+                       RAISE EXCEPTION ''You are not permitted to open the door.'';
+               END IF;
+
+               -- Mark the request as having been dealt with
+               NEW.handled = true;
+               RETURN NEW;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION door_open_trigger() FROM public;
+CREATE TRIGGER door_open_trigger BEFORE INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE door_open_trigger();
+
+CREATE OR REPLACE FUNCTION door_open_do() RETURNS "trigger" AS
+       '
+       BEGIN
+               IF NEW.handled AND NEW.item_name = ''opendoor'' THEN
+                       PERFORM open_door();
+               END IF;
+               RETURN NULL;
+       END;
+       ' LANGUAGE plpgsql EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION door_open_do() FROM public;
+CREATE TRIGGER door_open_do AFTER INSERT ON requests FOR EACH ROW
+       EXECUTE PROCEDURE door_open_do();
+
+-- Don't show the door functions to non-door people
+DROP FUNCTION can_show_pre_door(varchar, varchar);
+ALTER FUNCTION can_show(varchar(16), varchar(20)) RENAME TO can_show_pre_door;
+CREATE FUNCTION can_show(varchar(16), varchar(20)) RETURNS boolean AS
+       'SELECT can_show_pre_door($1, $2) AND NOT ($2 = ''opendoor'' AND NOT in_door($1))'
+       LANGUAGE SQL EXTERNAL SECURITY DEFINER;
+REVOKE ALL ON FUNCTION can_show(varchar, varchar) FROM public;
+

diff --git a/sql-edition/schema/populate.sql b/sql-edition/schema/populate.sql
new file mode 100644 (file)
index 0000000..3f9b1b3
--- /dev/null
+++ b/sql-edition/schema/populate.sql
@@ -0,0 +1,50 @@
+DELETE FROM cokecontrollers;
+DELETE FROM doorcontrollers;
+
+COPY cokecontrollers (user_name, reason) FROM stdin;
+root   automatic
+bers   19990421
+mjdawson       19990421
+mtearle        19990421
+nick   19990421
+japester       19990421
+maset  19990421
+djinn  19990519
+grahame        19990714
+maelstrm       19991208
+trs80  20000822
+tieryn 20010328
+dayta  20010328
+ack    20010510
+colm   20010510
+davidb 20010510
+nikita 20010510
+fitz   20010510
+omailes        20010712
+matt   20020412
+susie  20020809
+griffin        20020809
+tpope  20021018
+maelkann       20021031
+dagobah        20030401
+thebmw 20030401
+coxy   20031010
+\.
+
+COPY doorcontrollers (user_name, reason) FROM stdin;
+root   by default
+trs80  meeting 2000-05-18 cos he\'s cool
+chas   meeting 2000-05-18 he\'s always in
+matt   the not meeting of 2002-01-04
+thebmw the meeting of 2002-08-09
+susie  the sgm of 2002-10-18
+velithya       blah
+coxy   meeting 2003-03-07
+dagobah        meeting 2003-03-07
+davyd  meeting 2003-03-07
+grahame        cos
+falstaff       some time
+griffin        foo
+vegeta shrug
+\.
+

diff --git a/sql-edition/syslog/Makefile b/sql-edition/syslog/Makefile
new file mode 100644 (file)
index 0000000..d600364
--- /dev/null
+++ b/sql-edition/syslog/Makefile
@@ -0,0 +1,11 @@
+CC = gcc
+INCLUDES = -I$(shell pg_config --includedir) -I$(shell pg_config --includedir-server)
+CFLAGS = $(INCLUDES) -Wall -O2
+
+all: pg_syslog.so
+
+pg_syslog.so: pg_syslog.o
+       gcc -shared -o $@ $<
+
+clean:
+       rm -f *.o *.so

diff --git a/sql-edition/syslog/pg_syslog.c b/sql-edition/syslog/pg_syslog.c
new file mode 100644 (file)
index 0000000..1dbdc85
--- /dev/null
+++ b/sql-edition/syslog/pg_syslog.c
@@ -0,0 +1,28 @@
+#include <syslog.h>
+#include <postgres.h>
+#include <miscadmin.h>
+#include <libpq/libpq-be.h>
+#include <fmgr.h>
+
+PG_FUNCTION_INFO_V1(logmsg);
+Datum logmsg(PG_FUNCTION_ARGS) {
+       text* arg0;
+       char* msg;
+       int len;
+
+       arg0 = PG_GETARG_TEXT_P(0);
+       len = arg0->vl_len - VARHDRSZ;
+
+       msg = (char*) palloc(len+1);
+       memcpy(msg, arg0->vl_dat, len);
+       msg[len] = '\0';
+
+       openlog("postgres", LOG_PID, LOG_LOCAL6);
+       syslog(LOG_INFO, "[%s]: %s", GetUserNameFromId(GetUserId()), msg);
+       closelog();
+
+       pfree(msg);
+
+       /* not reached */
+       PG_RETURN_VOID();
+}