Documentation
¶
Index ¶
- func NewPrivilegedDatabase(grantTables *MySQLDb, db sql.Database) sql.Database
- func NewPrivilegedDatabaseProvider(grantTables *MySQLDb, p sql.DatabaseProvider) sql.DatabaseProvider
- type DbConverter
- func (conv DbConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv DbConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
- func (conv DbConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv DbConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
- type GlobalGrantsConverter
- func (conv GlobalGrantsConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv GlobalGrantsConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
- func (conv GlobalGrantsConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv GlobalGrantsConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
- type MySQLDb
- func (db *MySQLDb) AddRootAccount()
- func (db *MySQLDb) AddSuperUser(username string, host string, password string)
- func (db *MySQLDb) AuthMethod(user, addr string) (string, error)
- func (db *MySQLDb) GetTableInsensitive(_ *sql.Context, tblName string) (sql.Table, bool, error)
- func (db *MySQLDb) GetTableNames(ctx *sql.Context) ([]string, error)
- func (db *MySQLDb) GetUser(user string, host string, roleSearch bool) *User
- func (db *MySQLDb) LoadData(ctx *sql.Context, buf []byte) (err error)
- func (db *MySQLDb) LoadPrivilegeData(ctx *sql.Context, users []*User, roleConnections []*RoleEdge) error
- func (db *MySQLDb) Name() string
- func (db *MySQLDb) Negotiate(c *mysql.Conn, user string, addr net.Addr) (mysql.Getter, error)
- func (db *MySQLDb) Persist(ctx *sql.Context) error
- func (db *MySQLDb) ReplicaSourceInfoTable() *mysqlTable
- func (db *MySQLDb) RoleEdgesTable() *mysqlTable
- func (db *MySQLDb) Salt() ([]byte, error)
- func (db *MySQLDb) SetPersister(persister MySQLDbPersistence)
- func (db *MySQLDb) SetPlugins(plugins map[string]PlaintextAuthPlugin)
- func (db *MySQLDb) UserActivePrivilegeSet(ctx *sql.Context) PrivilegeSet
- func (db *MySQLDb) UserHasPrivileges(ctx *sql.Context, operations ...sql.PrivilegedOperation) bool
- func (db *MySQLDb) UserTable() *mysqlTable
- func (db *MySQLDb) ValidateHash(salt []byte, user string, authResponse []byte, addr net.Addr) (mysql.Getter, error)
- func (db *MySQLDb) VerifyPlugin(plugin string) error
- type MySQLDbPersistence
- type MysqlConnectionUser
- type NoopPersister
- type PlaintextAuthPlugin
- type PrivilegeSet
- func (ps PrivilegeSet) AddColumn(dbName string, tblName string, colName string, privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) AddDatabase(dbName string, privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) AddGlobalDynamic(withGrantOption bool, privileges ...string)
- func (ps PrivilegeSet) AddGlobalStatic(privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) AddTable(dbName string, tblName string, privileges ...sql.PrivilegeType)
- func (ps *PrivilegeSet) ClearAll()
- func (ps PrivilegeSet) ClearColumn(dbName string, tblName string, colName string)
- func (ps PrivilegeSet) ClearDatabase(dbName string)
- func (ps *PrivilegeSet) ClearGlobal()
- func (ps PrivilegeSet) ClearTable(dbName string, tblName string)
- func (ps PrivilegeSet) Copy() PrivilegeSet
- func (ps PrivilegeSet) Count() int
- func (ps PrivilegeSet) Database(dbName string) sql.PrivilegeSetDatabase
- func (ps PrivilegeSet) Equals(otherPrivSet sql.PrivilegeSet) bool
- func (ps PrivilegeSet) GetDatabases() []sql.PrivilegeSetDatabase
- func (ps PrivilegeSet) GlobalCount() int
- func (ps PrivilegeSet) Has(privileges ...sql.PrivilegeType) bool
- func (ps PrivilegeSet) HasDynamic(privileges ...string) bool
- func (ps PrivilegeSet) HasPrivileges() bool
- func (ps PrivilegeSet) MarshalJSON() ([]byte, error)
- func (ps PrivilegeSet) RemoveColumn(dbName string, tblName string, colName string, privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) RemoveDatabase(dbName string, privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) RemoveGlobalDynamic(privileges ...string)
- func (ps PrivilegeSet) RemoveGlobalStatic(privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) RemoveTable(dbName string, tblName string, privileges ...sql.PrivilegeType)
- func (ps PrivilegeSet) ToSlice() []sql.PrivilegeType
- func (ps PrivilegeSet) ToSliceDynamic(withGrantOption bool) []string
- func (ps PrivilegeSet) UnionWith(other PrivilegeSet)
- func (ps *PrivilegeSet) UnmarshalJSON(jsonData []byte) error
- type PrivilegeSetColumn
- type PrivilegeSetDatabase
- func (ps PrivilegeSetDatabase) Count() int
- func (ps PrivilegeSetDatabase) Equals(otherPsd sql.PrivilegeSetDatabase) bool
- func (ps PrivilegeSetDatabase) GetTables() []sql.PrivilegeSetTable
- func (ps PrivilegeSetDatabase) Has(privileges ...sql.PrivilegeType) bool
- func (ps PrivilegeSetDatabase) HasPrivileges() bool
- func (ps PrivilegeSetDatabase) Name() string
- func (ps PrivilegeSetDatabase) Table(tblName string) sql.PrivilegeSetTable
- func (ps PrivilegeSetDatabase) ToSlice() []sql.PrivilegeType
- type PrivilegeSetTable
- func (ps PrivilegeSetTable) Column(colName string) sql.PrivilegeSetColumn
- func (ps PrivilegeSetTable) Count() int
- func (ps PrivilegeSetTable) Equals(otherPst sql.PrivilegeSetTable) bool
- func (ps PrivilegeSetTable) GetColumns() []sql.PrivilegeSetColumn
- func (ps PrivilegeSetTable) Has(privileges ...sql.PrivilegeType) bool
- func (ps PrivilegeSetTable) HasPrivileges() bool
- func (ps PrivilegeSetTable) Name() string
- func (ps PrivilegeSetTable) ToSlice() []sql.PrivilegeType
- type PrivilegedDatabase
- func (pdb PrivilegedDatabase) CopyTableData(ctx *sql.Context, sourceTable string, destinationTable string) (uint64, error)
- func (pdb PrivilegedDatabase) CreateTable(ctx *sql.Context, name string, schema sql.PrimaryKeySchema, ...) error
- func (pdb PrivilegedDatabase) CreateTrigger(ctx *sql.Context, definition sql.TriggerDefinition) error
- func (pdb PrivilegedDatabase) DropEvent(ctx *sql.Context, name string) error
- func (pdb PrivilegedDatabase) DropStoredProcedure(ctx *sql.Context, name string) error
- func (pdb PrivilegedDatabase) DropTable(ctx *sql.Context, name string) error
- func (pdb PrivilegedDatabase) DropTrigger(ctx *sql.Context, name string) error
- func (pdb PrivilegedDatabase) GetAllTemporaryTables(ctx *sql.Context) ([]sql.Table, error)
- func (pdb PrivilegedDatabase) GetCollation(ctx *sql.Context) sql.CollationID
- func (pdb PrivilegedDatabase) GetEvent(ctx *sql.Context, name string) (sql.EventDefinition, bool, error)
- func (pdb PrivilegedDatabase) GetEvents(ctx *sql.Context) ([]sql.EventDefinition, error)
- func (pdb PrivilegedDatabase) GetStoredProcedure(ctx *sql.Context, name string) (sql.StoredProcedureDetails, bool, error)
- func (pdb PrivilegedDatabase) GetStoredProcedures(ctx *sql.Context) ([]sql.StoredProcedureDetails, error)
- func (pdb PrivilegedDatabase) GetTableInsensitive(ctx *sql.Context, tblName string) (sql.Table, bool, error)
- func (pdb PrivilegedDatabase) GetTableInsensitiveAsOf(ctx *sql.Context, tblName string, asOf interface{}) (sql.Table, bool, error)
- func (pdb PrivilegedDatabase) GetTableNames(ctx *sql.Context) ([]string, error)
- func (pdb PrivilegedDatabase) GetTableNamesAsOf(ctx *sql.Context, asOf interface{}) ([]string, error)
- func (pdb PrivilegedDatabase) GetTriggers(ctx *sql.Context) ([]sql.TriggerDefinition, error)
- func (pdb PrivilegedDatabase) IsReadOnly() bool
- func (pdb PrivilegedDatabase) Name() string
- func (pdb PrivilegedDatabase) RenameTable(ctx *sql.Context, oldName, newName string) error
- func (pdb PrivilegedDatabase) SaveEvent(ctx *sql.Context, ed sql.EventDefinition) error
- func (pdb PrivilegedDatabase) SaveStoredProcedure(ctx *sql.Context, spd sql.StoredProcedureDetails) error
- func (pdb PrivilegedDatabase) SetCollation(ctx *sql.Context, collation sql.CollationID) error
- func (pdb PrivilegedDatabase) Unwrap() sql.Database
- func (pdb PrivilegedDatabase) UpdateEvent(ctx *sql.Context, ed sql.EventDefinition) error
- type PrivilegedDatabaseProvider
- type ReplicaSourceInfo
- func (r *ReplicaSourceInfo) Copy(_ *sql.Context) in_mem_table.Entry
- func (r *ReplicaSourceInfo) Equals(_ *sql.Context, otherEntry in_mem_table.Entry) bool
- func (r *ReplicaSourceInfo) FromJson(_ *sql.Context, jsonStr string) (in_mem_table.Entry, error)
- func (r *ReplicaSourceInfo) NewFromRow(_ *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- func (r *ReplicaSourceInfo) ToJson(_ *sql.Context) (string, error)
- func (r *ReplicaSourceInfo) ToRow(ctx *sql.Context) sql.Row
- func (r *ReplicaSourceInfo) UpdateFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- type ReplicaSourceInfoPrimaryKey
- type RoleEdge
- func (r *RoleEdge) Copy(ctx *sql.Context) in_mem_table.Entry
- func (r *RoleEdge) Equals(ctx *sql.Context, otherEntry in_mem_table.Entry) bool
- func (r *RoleEdge) FromJson(ctx *sql.Context, jsonStr string) (in_mem_table.Entry, error)
- func (r *RoleEdge) FromString(quote string) string
- func (r *RoleEdge) NewFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- func (r *RoleEdge) ToJson(ctx *sql.Context) (string, error)
- func (r *RoleEdge) ToRow(ctx *sql.Context) sql.Row
- func (r *RoleEdge) ToString(quote string) string
- func (r *RoleEdge) UpdateFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- type RoleEdgesFromKey
- type RoleEdgesPrimaryKey
- type RoleEdgesToKey
- type TablesPrivConverter
- func (conv TablesPrivConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv TablesPrivConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
- func (conv TablesPrivConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
- func (conv TablesPrivConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
- type User
- func (u *User) Copy(ctx *sql.Context) in_mem_table.Entry
- func (u *User) Equals(ctx *sql.Context, otherEntry in_mem_table.Entry) bool
- func (u User) FromJson(ctx *sql.Context, jsonStr string) (in_mem_table.Entry, error)
- func (u *User) NewFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- func (u *User) ToJson(ctx *sql.Context) (string, error)
- func (u *User) ToRow(ctx *sql.Context) sql.Row
- func (u *User) UpdateFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
- func (u User) UserHostToString(quote string) string
- type UserPrimaryKey
- type UserSecondaryKey
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func NewPrivilegedDatabase ¶
NewPrivilegedDatabase returns a new PrivilegedDatabase.
func NewPrivilegedDatabaseProvider ¶
func NewPrivilegedDatabaseProvider(grantTables *MySQLDb, p sql.DatabaseProvider) sql.DatabaseProvider
NewPrivilegedDatabaseProvider returns a new PrivilegedDatabaseProvider. As a sql.DatabaseProvider may be added to an analyzer when Grant Tables are disabled (and Grant Tables may be enabled or disabled at any time), a new PrivilegedDatabaseProvider is returned whenever the sql.DatabaseProvider is needed (as long as Grant Tables are enabled) rather than wrapping a sql.DatabaseProvider when it is provided to the analyzer.
Types ¶
type DbConverter ¶
type DbConverter struct{}
DbConverter handles the conversion between a stored *User entry and the faux "db" Grant Table.
func (DbConverter) AddRowToEntry ¶
func (conv DbConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
AddRowToEntry implements the interface in_mem_table.DataEditorConverter.
func (DbConverter) EntryToRows ¶
func (conv DbConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
EntryToRows implements the interface in_mem_table.DataEditorConverter.
func (DbConverter) RemoveRowFromEntry ¶
func (conv DbConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
RemoveRowFromEntry implements the interface in_mem_table.DataEditorConverter.
func (DbConverter) RowToKey ¶
func (conv DbConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
RowToKey implements the interface in_mem_table.DataEditorConverter.
type GlobalGrantsConverter ¶ added in v0.15.0
type GlobalGrantsConverter struct{}
GlobalGrantsConverter handles the conversion between a stored *User entry and the faux "global_grants" Grant Table.
func (GlobalGrantsConverter) AddRowToEntry ¶ added in v0.15.0
func (conv GlobalGrantsConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
AddRowToEntry implements the interface in_mem_table.DataEditorConverter.
func (GlobalGrantsConverter) EntryToRows ¶ added in v0.15.0
func (conv GlobalGrantsConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
EntryToRows implements the interface in_mem_table.DataEditorConverter.
func (GlobalGrantsConverter) RemoveRowFromEntry ¶ added in v0.15.0
func (conv GlobalGrantsConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
RemoveRowFromEntry implements the interface in_mem_table.DataEditorConverter.
func (GlobalGrantsConverter) RowToKey ¶ added in v0.15.0
func (conv GlobalGrantsConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
RowToKey implements the interface in_mem_table.DataEditorConverter.
type MySQLDb ¶
type MySQLDb struct {
Enabled bool
// contains filtered or unexported fields
}
MySQLDb are the collection of tables that are in the MySQL database
func CreateEmptyMySQLDb ¶
func CreateEmptyMySQLDb() *MySQLDb
CreateEmptyMySQLDb returns a collection of MySQL Tables that do not contain any data.
func (*MySQLDb) AddRootAccount ¶
func (db *MySQLDb) AddRootAccount()
AddRootAccount adds the root account to the list of accounts.
func (*MySQLDb) AddSuperUser ¶
AddSuperUser adds the given username and password to the list of accounts. This is a temporary function, which is meant to replace the "auth.New..." functions while the remaining functions are added.
func (*MySQLDb) AuthMethod ¶
AuthMethod implements the interface mysql.AuthServer.
func (*MySQLDb) GetTableInsensitive ¶
GetTableInsensitive implements the interface sql.Database.
func (*MySQLDb) GetTableNames ¶
GetTableNames implements the interface sql.Database.
func (*MySQLDb) GetUser ¶
GetUser returns a user matching the given user and host if it exists. Due to the slight difference between users and roles, roleSearch changes whether the search matches against user or role rules.
func (*MySQLDb) LoadData ¶
LoadData adds the given data to the MySQL Tables. It does not remove any current data, but will overwrite any pre-existing data.
func (*MySQLDb) LoadPrivilegeData ¶
func (db *MySQLDb) LoadPrivilegeData(ctx *sql.Context, users []*User, roleConnections []*RoleEdge) error
LoadPrivilegeData adds the given data to the MySQL Tables. It does not remove any current data, but will overwrite any pre-existing data. This has been deprecated in favor of LoadData.
func (*MySQLDb) Negotiate ¶
Negotiate implements the interface mysql.AuthServer. This is called when the method used is not "mysql_native_password".
func (*MySQLDb) ReplicaSourceInfoTable ¶ added in v0.15.0
func (db *MySQLDb) ReplicaSourceInfoTable() *mysqlTable
ReplicaSourceInfoTable returns the "slave_master_info" table.
func (*MySQLDb) RoleEdgesTable ¶
func (db *MySQLDb) RoleEdgesTable() *mysqlTable
RoleEdgesTable returns the "role_edges" table.
func (*MySQLDb) SetPersister ¶
func (db *MySQLDb) SetPersister(persister MySQLDbPersistence)
SetPersister sets the custom persister to be used when the MySQL Db tables have been updated and need to be persisted.
func (*MySQLDb) SetPlugins ¶ added in v0.14.0
func (db *MySQLDb) SetPlugins(plugins map[string]PlaintextAuthPlugin)
func (*MySQLDb) UserActivePrivilegeSet ¶
func (db *MySQLDb) UserActivePrivilegeSet(ctx *sql.Context) PrivilegeSet
UserActivePrivilegeSet fetches the User, and returns their entire active privilege set. This takes into account the active roles, which are set in the context, therefore the user is also pulled from the context.
func (*MySQLDb) UserHasPrivileges ¶
UserHasPrivileges fetches the User, and returns whether they have the desired privileges necessary to perform the privileged operation. This takes into account the active roles, which are set in the context, therefore the user is also pulled from the context.
func (*MySQLDb) UserTable ¶
func (db *MySQLDb) UserTable() *mysqlTable
UserTable returns the "user" table.
func (*MySQLDb) ValidateHash ¶
func (db *MySQLDb) ValidateHash(salt []byte, user string, authResponse []byte, addr net.Addr) (mysql.Getter, error)
ValidateHash implements the interface mysql.AuthServer. This is called when the method used is "mysql_native_password".
func (*MySQLDb) VerifyPlugin ¶ added in v0.14.0
type MySQLDbPersistence ¶
MySQLDbPersistence is used to determine the behavior of how certain tables in MySQLDb will be persisted.
type MysqlConnectionUser ¶
MysqlConnectionUser is stored in mysql's connection as UserData once a connection has been authenticated.
func (MysqlConnectionUser) Get ¶
func (m MysqlConnectionUser) Get() *query.VTGateCallerID
Get implements the interface mysql.Getter.
type NoopPersister ¶
type NoopPersister struct{}
NoopPersister is used when nothing in mysql db should be persisted
type PlaintextAuthPlugin ¶ added in v0.14.0
type PrivilegeSet ¶
type PrivilegeSet struct {
// contains filtered or unexported fields
}
PrivilegeSet is a set containing privileges. Due to the nested sets potentially returning empty sets, this also acts as the singular location to modify all nested sets.
func NewPrivilegeSet ¶
func NewPrivilegeSet() PrivilegeSet
NewPrivilegeSet returns a new PrivilegeSet.
func NewPrivilegeSetWithAllPrivileges ¶ added in v0.15.0
func NewPrivilegeSetWithAllPrivileges() PrivilegeSet
NewPrivilegeSetWithAllPrivileges returns a new PrivilegeSet with every global static privilege added.
func (PrivilegeSet) AddColumn ¶
func (ps PrivilegeSet) AddColumn(dbName string, tblName string, colName string, privileges ...sql.PrivilegeType)
AddColumn adds the given column privilege(s).
func (PrivilegeSet) AddDatabase ¶
func (ps PrivilegeSet) AddDatabase(dbName string, privileges ...sql.PrivilegeType)
AddDatabase adds the given database privilege(s).
func (PrivilegeSet) AddGlobalDynamic ¶
func (ps PrivilegeSet) AddGlobalDynamic(withGrantOption bool, privileges ...string)
AddGlobalDynamic adds the given global dynamic privilege(s).
func (PrivilegeSet) AddGlobalStatic ¶
func (ps PrivilegeSet) AddGlobalStatic(privileges ...sql.PrivilegeType)
AddGlobalStatic adds the given global static privilege(s).
func (PrivilegeSet) AddTable ¶
func (ps PrivilegeSet) AddTable(dbName string, tblName string, privileges ...sql.PrivilegeType)
AddTable adds the given table privilege(s).
func (PrivilegeSet) ClearColumn ¶
func (ps PrivilegeSet) ClearColumn(dbName string, tblName string, colName string)
ClearColumn removes all privileges for the given column.
func (PrivilegeSet) ClearDatabase ¶
func (ps PrivilegeSet) ClearDatabase(dbName string)
ClearDatabase removes all privileges for the given database.
func (*PrivilegeSet) ClearGlobal ¶
func (ps *PrivilegeSet) ClearGlobal()
ClearGlobal removes all global privileges.
func (PrivilegeSet) ClearTable ¶
func (ps PrivilegeSet) ClearTable(dbName string, tblName string)
ClearTable removes all privileges for the given table.
func (PrivilegeSet) Copy ¶
func (ps PrivilegeSet) Copy() PrivilegeSet
Copy returns a duplicate of the calling PrivilegeSet.
func (PrivilegeSet) Count ¶ added in v0.15.0
func (ps PrivilegeSet) Count() int
Count returns the number of global static privileges, while not including global dynamic privileges.
func (PrivilegeSet) Database ¶
func (ps PrivilegeSet) Database(dbName string) sql.PrivilegeSetDatabase
Database returns the set of privileges for the given database. Returns an empty set if the database does not exist.
func (PrivilegeSet) Equals ¶
func (ps PrivilegeSet) Equals(otherPrivSet sql.PrivilegeSet) bool
Equals returns whether the given set of privileges is equivalent to the calling set.
func (PrivilegeSet) GetDatabases ¶
func (ps PrivilegeSet) GetDatabases() []sql.PrivilegeSetDatabase
GetDatabases returns all databases.
func (PrivilegeSet) GlobalCount ¶
func (ps PrivilegeSet) GlobalCount() int
GlobalCount returns the combined number of global static and global dynamic privileges.
func (PrivilegeSet) Has ¶
func (ps PrivilegeSet) Has(privileges ...sql.PrivilegeType) bool
Has returns whether the given global static privilege(s) exists.
func (PrivilegeSet) HasDynamic ¶ added in v0.15.0
func (ps PrivilegeSet) HasDynamic(privileges ...string) bool
HasDynamic returns whether the given global dynamic privilege(s) exists.
func (PrivilegeSet) HasPrivileges ¶
func (ps PrivilegeSet) HasPrivileges() bool
HasPrivileges returns whether this PrivilegeSet has any privileges at any level.
func (PrivilegeSet) MarshalJSON ¶
func (ps PrivilegeSet) MarshalJSON() ([]byte, error)
MarshalJSON implements the interface json.Marshaler. This is deprecated functionality, as serialization has been replaced by flatbuffers.
func (PrivilegeSet) RemoveColumn ¶
func (ps PrivilegeSet) RemoveColumn(dbName string, tblName string, colName string, privileges ...sql.PrivilegeType)
RemoveColumn removes the given column privilege(s).
func (PrivilegeSet) RemoveDatabase ¶
func (ps PrivilegeSet) RemoveDatabase(dbName string, privileges ...sql.PrivilegeType)
RemoveDatabase removes the given database privilege(s).
func (PrivilegeSet) RemoveGlobalDynamic ¶
func (ps PrivilegeSet) RemoveGlobalDynamic(privileges ...string)
RemoveGlobalDynamic removes the given global dynamic privilege(s).
func (PrivilegeSet) RemoveGlobalStatic ¶
func (ps PrivilegeSet) RemoveGlobalStatic(privileges ...sql.PrivilegeType)
RemoveGlobalStatic removes the given global static privilege(s).
func (PrivilegeSet) RemoveTable ¶
func (ps PrivilegeSet) RemoveTable(dbName string, tblName string, privileges ...sql.PrivilegeType)
RemoveTable removes the given table privilege(s).
func (PrivilegeSet) ToSlice ¶
func (ps PrivilegeSet) ToSlice() []sql.PrivilegeType
ToSlice returns all of the global static privileges contained as a sorted slice.
func (PrivilegeSet) ToSliceDynamic ¶ added in v0.15.0
func (ps PrivilegeSet) ToSliceDynamic(withGrantOption bool) []string
ToSliceDynamic returns all of the global dynamic privileges that match the given "WITH GRANT OPTION". Privileges will be uppercase.
func (PrivilegeSet) UnionWith ¶
func (ps PrivilegeSet) UnionWith(other PrivilegeSet)
UnionWith merges the given set of privileges to the calling set of privileges.
func (*PrivilegeSet) UnmarshalJSON ¶
func (ps *PrivilegeSet) UnmarshalJSON(jsonData []byte) error
UnmarshalJSON implements the interface json.Unmarshaler. This is deprecated functionality, as serialization has been replaced by flatbuffers.
type PrivilegeSetColumn ¶
type PrivilegeSetColumn struct {
// contains filtered or unexported fields
}
PrivilegeSetColumn is a set containing column privileges.
func (PrivilegeSetColumn) Count ¶
func (ps PrivilegeSetColumn) Count() int
Count returns the number of column privileges.
func (PrivilegeSetColumn) Equals ¶
func (ps PrivilegeSetColumn) Equals(otherPsc sql.PrivilegeSetColumn) bool
Equals returns whether the given set of privileges is equivalent to the calling set.
func (PrivilegeSetColumn) Has ¶
func (ps PrivilegeSetColumn) Has(privileges ...sql.PrivilegeType) bool
Has returns whether the given column privilege(s) exists.
func (PrivilegeSetColumn) Name ¶
func (ps PrivilegeSetColumn) Name() string
Name returns the name of the column that this privilege set belongs to.
func (PrivilegeSetColumn) ToSlice ¶
func (ps PrivilegeSetColumn) ToSlice() []sql.PrivilegeType
ToSlice returns all of the column privileges contained as a sorted slice.
type PrivilegeSetDatabase ¶
type PrivilegeSetDatabase struct {
// contains filtered or unexported fields
}
PrivilegeSetDatabase is a set containing database-level privileges.
func (PrivilegeSetDatabase) Count ¶
func (ps PrivilegeSetDatabase) Count() int
Count returns the number of database privileges.
func (PrivilegeSetDatabase) Equals ¶
func (ps PrivilegeSetDatabase) Equals(otherPsd sql.PrivilegeSetDatabase) bool
Equals returns whether the given set of privileges is equivalent to the calling set.
func (PrivilegeSetDatabase) GetTables ¶
func (ps PrivilegeSetDatabase) GetTables() []sql.PrivilegeSetTable
GetTables returns all tables.
func (PrivilegeSetDatabase) Has ¶
func (ps PrivilegeSetDatabase) Has(privileges ...sql.PrivilegeType) bool
Has returns whether the given database privilege(s) exists.
func (PrivilegeSetDatabase) HasPrivileges ¶
func (ps PrivilegeSetDatabase) HasPrivileges() bool
HasPrivileges returns whether this database has either database-level privileges, or privileges on a table or column contained within this database.
func (PrivilegeSetDatabase) Name ¶
func (ps PrivilegeSetDatabase) Name() string
Name returns the name of the database that this privilege set belongs to.
func (PrivilegeSetDatabase) Table ¶
func (ps PrivilegeSetDatabase) Table(tblName string) sql.PrivilegeSetTable
Table returns the set of privileges for the given table. Returns an empty set if the table does not exist.
func (PrivilegeSetDatabase) ToSlice ¶
func (ps PrivilegeSetDatabase) ToSlice() []sql.PrivilegeType
ToSlice returns all of the database privileges contained as a sorted slice.
type PrivilegeSetTable ¶
type PrivilegeSetTable struct {
// contains filtered or unexported fields
}
PrivilegeSetTable is a set containing table-level privileges.
func (PrivilegeSetTable) Column ¶
func (ps PrivilegeSetTable) Column(colName string) sql.PrivilegeSetColumn
Column returns the set of privileges for the given column. Returns an empty set if the column does not exist.
func (PrivilegeSetTable) Count ¶
func (ps PrivilegeSetTable) Count() int
Count returns the number of table privileges.
func (PrivilegeSetTable) Equals ¶
func (ps PrivilegeSetTable) Equals(otherPst sql.PrivilegeSetTable) bool
Equals returns whether the given set of privileges is equivalent to the calling set.
func (PrivilegeSetTable) GetColumns ¶
func (ps PrivilegeSetTable) GetColumns() []sql.PrivilegeSetColumn
GetColumns returns all columns.
func (PrivilegeSetTable) Has ¶
func (ps PrivilegeSetTable) Has(privileges ...sql.PrivilegeType) bool
Has returns whether the given table privilege(s) exists.
func (PrivilegeSetTable) HasPrivileges ¶
func (ps PrivilegeSetTable) HasPrivileges() bool
HasPrivileges returns whether this table has either table-level privileges, or privileges on a column contained within this table.
func (PrivilegeSetTable) Name ¶
func (ps PrivilegeSetTable) Name() string
Name returns the name of the table that this privilege set belongs to.
func (PrivilegeSetTable) ToSlice ¶
func (ps PrivilegeSetTable) ToSlice() []sql.PrivilegeType
ToSlice returns all of the table privileges contained as a sorted slice.
type PrivilegedDatabase ¶
type PrivilegedDatabase struct {
// contains filtered or unexported fields
}
PrivilegedDatabase is a wrapper around a normal sql.Database that takes a context's client's privileges into consideration when returning a sql.Table.
func (PrivilegedDatabase) CopyTableData ¶
func (pdb PrivilegedDatabase) CopyTableData(ctx *sql.Context, sourceTable string, destinationTable string) (uint64, error)
CopyTableData implements the interface sql.TableCopierDatabase.
func (PrivilegedDatabase) CreateTable ¶
func (pdb PrivilegedDatabase) CreateTable(ctx *sql.Context, name string, schema sql.PrimaryKeySchema, collation sql.CollationID) error
CreateTable implements the interface sql.TableCreator.
func (PrivilegedDatabase) CreateTrigger ¶
func (pdb PrivilegedDatabase) CreateTrigger(ctx *sql.Context, definition sql.TriggerDefinition) error
CreateTrigger implements the interface sql.TriggerDatabase.
func (PrivilegedDatabase) DropEvent ¶ added in v0.15.0
func (pdb PrivilegedDatabase) DropEvent(ctx *sql.Context, name string) error
DropEvent implements sql.EventDatabase
func (PrivilegedDatabase) DropStoredProcedure ¶
func (pdb PrivilegedDatabase) DropStoredProcedure(ctx *sql.Context, name string) error
DropStoredProcedure implements the interface sql.StoredProcedureDatabase.
func (PrivilegedDatabase) DropTable ¶
func (pdb PrivilegedDatabase) DropTable(ctx *sql.Context, name string) error
DropTable implements the interface sql.TableDropper.
func (PrivilegedDatabase) DropTrigger ¶
func (pdb PrivilegedDatabase) DropTrigger(ctx *sql.Context, name string) error
DropTrigger implements the interface sql.TriggerDatabase.
func (PrivilegedDatabase) GetAllTemporaryTables ¶
GetAllTemporaryTables implements the interface sql.TemporaryTableDatabase.
func (PrivilegedDatabase) GetCollation ¶ added in v0.14.0
func (pdb PrivilegedDatabase) GetCollation(ctx *sql.Context) sql.CollationID
GetCollation implements the interface sql.CollatedDatabase.
func (PrivilegedDatabase) GetEvent ¶ added in v0.15.0
func (pdb PrivilegedDatabase) GetEvent(ctx *sql.Context, name string) (sql.EventDefinition, bool, error)
GetEvent implements sql.EventDatabase
func (PrivilegedDatabase) GetEvents ¶ added in v0.15.0
func (pdb PrivilegedDatabase) GetEvents(ctx *sql.Context) ([]sql.EventDefinition, error)
GetEvents implements sql.EventDatabase
func (PrivilegedDatabase) GetStoredProcedure ¶ added in v0.15.0
func (pdb PrivilegedDatabase) GetStoredProcedure(ctx *sql.Context, name string) (sql.StoredProcedureDetails, bool, error)
GetStoredProcedure implements the interface sql.StoredProcedureDatabase.
func (PrivilegedDatabase) GetStoredProcedures ¶
func (pdb PrivilegedDatabase) GetStoredProcedures(ctx *sql.Context) ([]sql.StoredProcedureDetails, error)
GetStoredProcedures implements the interface sql.StoredProcedureDatabase.
func (PrivilegedDatabase) GetTableInsensitive ¶
func (pdb PrivilegedDatabase) GetTableInsensitive(ctx *sql.Context, tblName string) (sql.Table, bool, error)
GetTableInsensitive implements the interface sql.Database.
func (PrivilegedDatabase) GetTableInsensitiveAsOf ¶
func (pdb PrivilegedDatabase) GetTableInsensitiveAsOf(ctx *sql.Context, tblName string, asOf interface{}) (sql.Table, bool, error)
GetTableInsensitiveAsOf returns a new sql.VersionedDatabase.
func (PrivilegedDatabase) GetTableNames ¶
func (pdb PrivilegedDatabase) GetTableNames(ctx *sql.Context) ([]string, error)
GetTableNames implements the interface sql.Database.
func (PrivilegedDatabase) GetTableNamesAsOf ¶
func (pdb PrivilegedDatabase) GetTableNamesAsOf(ctx *sql.Context, asOf interface{}) ([]string, error)
GetTableNamesAsOf returns a new sql.VersionedDatabase.
func (PrivilegedDatabase) GetTriggers ¶
func (pdb PrivilegedDatabase) GetTriggers(ctx *sql.Context) ([]sql.TriggerDefinition, error)
GetTriggers implements the interface sql.TriggerDatabase.
func (PrivilegedDatabase) IsReadOnly ¶
func (pdb PrivilegedDatabase) IsReadOnly() bool
IsReadOnly implements the interface sql.ReadOnlyDatabase.
func (PrivilegedDatabase) Name ¶
func (pdb PrivilegedDatabase) Name() string
Name implements the interface sql.Database.
func (PrivilegedDatabase) RenameTable ¶
func (pdb PrivilegedDatabase) RenameTable(ctx *sql.Context, oldName, newName string) error
RenameTable implements the interface sql.TableRenamer.
func (PrivilegedDatabase) SaveEvent ¶ added in v0.15.0
func (pdb PrivilegedDatabase) SaveEvent(ctx *sql.Context, ed sql.EventDefinition) error
SaveEvent implements sql.EventDatabase
func (PrivilegedDatabase) SaveStoredProcedure ¶
func (pdb PrivilegedDatabase) SaveStoredProcedure(ctx *sql.Context, spd sql.StoredProcedureDetails) error
SaveStoredProcedure implements the interface sql.StoredProcedureDatabase.
func (PrivilegedDatabase) SetCollation ¶ added in v0.14.0
func (pdb PrivilegedDatabase) SetCollation(ctx *sql.Context, collation sql.CollationID) error
SetCollation implements the interface sql.CollatedDatabase.
func (PrivilegedDatabase) Unwrap ¶
func (pdb PrivilegedDatabase) Unwrap() sql.Database
Unwrap returns the wrapped sql.Database.
func (PrivilegedDatabase) UpdateEvent ¶ added in v0.15.0
func (pdb PrivilegedDatabase) UpdateEvent(ctx *sql.Context, ed sql.EventDefinition) error
UpdateEvent implements sql.EventDatabase
type PrivilegedDatabaseProvider ¶
type PrivilegedDatabaseProvider struct {
// contains filtered or unexported fields
}
PrivilegedDatabaseProvider is a wrapper around a normal sql.DatabaseProvider that takes a context's client's privileges into consideration when returning a sql.Database. In addition, any returned databases are wrapped with PrivilegedDatabase.
func (PrivilegedDatabaseProvider) AllDatabases ¶
func (pdp PrivilegedDatabaseProvider) AllDatabases(ctx *sql.Context) []sql.Database
AllDatabases implements the interface sql.DatabaseProvider.
func (PrivilegedDatabaseProvider) Database ¶
Database implements the interface sql.DatabaseProvider.
func (PrivilegedDatabaseProvider) HasDatabase ¶
func (pdp PrivilegedDatabaseProvider) HasDatabase(ctx *sql.Context, name string) bool
HasDatabase implements the interface sql.DatabaseProvider.
type ReplicaSourceInfo ¶ added in v0.15.0
type ReplicaSourceInfo struct {
Host string
User string
Password string
Port uint16
Uuid string
ConnectRetryInterval uint32
ConnectRetryCount uint64
}
ReplicaSourceInfo represents the binlog replication metadata persisted in the mysql database. For more details, see: https://dev.mysql.com/doc/refman/8.0/en/replica-logs-status.html
func LoadReplicaSourceInfo ¶ added in v0.15.0
func LoadReplicaSourceInfo(serialReplicaSourceInfo *serial.ReplicaSourceInfo) *ReplicaSourceInfo
func NewReplicaSourceInfo ¶ added in v0.15.0
func NewReplicaSourceInfo() *ReplicaSourceInfo
NewReplicaSourceInfo constructs a new ReplicaSourceInfo instance, with defaults applied.
func (*ReplicaSourceInfo) Copy ¶ added in v0.15.0
func (r *ReplicaSourceInfo) Copy(_ *sql.Context) in_mem_table.Entry
Copy implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) Equals ¶ added in v0.15.0
func (r *ReplicaSourceInfo) Equals(_ *sql.Context, otherEntry in_mem_table.Entry) bool
Equals implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) FromJson ¶ added in v0.15.0
func (r *ReplicaSourceInfo) FromJson(_ *sql.Context, jsonStr string) (in_mem_table.Entry, error)
FromJson implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) NewFromRow ¶ added in v0.15.0
func (r *ReplicaSourceInfo) NewFromRow(_ *sql.Context, row sql.Row) (in_mem_table.Entry, error)
NewFromRow implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) ToJson ¶ added in v0.15.0
func (r *ReplicaSourceInfo) ToJson(_ *sql.Context) (string, error)
ToJson implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) ToRow ¶ added in v0.15.0
func (r *ReplicaSourceInfo) ToRow(ctx *sql.Context) sql.Row
ToRow implements the interface in_mem_table.Entry.
func (*ReplicaSourceInfo) UpdateFromRow ¶ added in v0.15.0
func (r *ReplicaSourceInfo) UpdateFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Entry, error)
UpdateFromRow implements the interface in_mem_table.Entry.
type ReplicaSourceInfoPrimaryKey ¶ added in v0.15.0
type ReplicaSourceInfoPrimaryKey struct {
Channel string
}
func (ReplicaSourceInfoPrimaryKey) KeyFromEntry ¶ added in v0.15.0
func (r ReplicaSourceInfoPrimaryKey) KeyFromEntry(_ *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (ReplicaSourceInfoPrimaryKey) KeyFromRow ¶ added in v0.15.0
func (r ReplicaSourceInfoPrimaryKey) KeyFromRow(_ *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
type RoleEdge ¶
type RoleEdge struct {
FromHost string
FromUser string
ToHost string
ToUser string
WithAdminOption bool
}
RoleEdge represents a role to user mapping from the roles_edges Grant Table.
func LoadRoleEdge ¶
func (*RoleEdge) Copy ¶
func (r *RoleEdge) Copy(ctx *sql.Context) in_mem_table.Entry
Copy implements the interface in_mem_table.Entry.
func (*RoleEdge) FromString ¶
FromString returns the "FROM" user as a formatted string using the quotes given. Using the default root account with the backtick as the quote, root@localhost would become `root`@`localhost`. Different quotes are used in different places in MySQL. In addition, if the quote is used in a section as part of the name, it is escaped by doubling the quote (which also mimics MySQL behavior).
func (*RoleEdge) NewFromRow ¶
NewFromRow implements the interface in_mem_table.Entry.
func (*RoleEdge) ToString ¶
ToString returns the "TO" user as a formatted string using the quotes given. Using the default root account with the backtick as the quote, root@localhost would become `root`@`localhost`. Different quotes are used in different places in MySQL. In addition, if the quote is used in a section as part of the name, it is escaped by doubling the quote (which also mimics MySQL behavior).
func (*RoleEdge) UpdateFromRow ¶
UpdateFromRow implements the interface in_mem_table.Entry.
type RoleEdgesFromKey ¶
RoleEdgesFromKey is a secondary key that represents the "from" columns on the "role_edges" Grant Table.
func (RoleEdgesFromKey) KeyFromEntry ¶
func (k RoleEdgesFromKey) KeyFromEntry(ctx *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (RoleEdgesFromKey) KeyFromRow ¶
func (k RoleEdgesFromKey) KeyFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
type RoleEdgesPrimaryKey ¶
RoleEdgesPrimaryKey is a key that represents the primary key for the "role_edges" Grant Table.
func (RoleEdgesPrimaryKey) KeyFromEntry ¶
func (k RoleEdgesPrimaryKey) KeyFromEntry(ctx *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (RoleEdgesPrimaryKey) KeyFromRow ¶
func (k RoleEdgesPrimaryKey) KeyFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
type RoleEdgesToKey ¶
RoleEdgesToKey is a secondary key that represents the "to" columns on the "role_edges" Grant Table.
func (RoleEdgesToKey) KeyFromEntry ¶
func (k RoleEdgesToKey) KeyFromEntry(ctx *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (RoleEdgesToKey) KeyFromRow ¶
func (k RoleEdgesToKey) KeyFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
type TablesPrivConverter ¶
type TablesPrivConverter struct{}
TablesPrivConverter handles the conversion between a stored *User entry and the faux "tables_priv" Grant Table.
func (TablesPrivConverter) AddRowToEntry ¶
func (conv TablesPrivConverter) AddRowToEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
AddRowToEntry implements the interface in_mem_table.DataEditorConverter.
func (TablesPrivConverter) EntryToRows ¶
func (conv TablesPrivConverter) EntryToRows(ctx *sql.Context, entry in_mem_table.Entry) ([]sql.Row, error)
EntryToRows implements the interface in_mem_table.DataEditorConverter.
func (TablesPrivConverter) RemoveRowFromEntry ¶
func (conv TablesPrivConverter) RemoveRowFromEntry(ctx *sql.Context, row sql.Row, entry in_mem_table.Entry) (in_mem_table.Entry, error)
RemoveRowFromEntry implements the interface in_mem_table.DataEditorConverter.
func (TablesPrivConverter) RowToKey ¶
func (conv TablesPrivConverter) RowToKey(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
RowToKey implements the interface in_mem_table.DataEditorConverter.
type User ¶
type User struct {
User string
Host string
PrivilegeSet PrivilegeSet
Plugin string
Password string
PasswordLastChanged time.Time
Locked bool
Attributes *string
Identity string
IsSuperUser bool
// IsRole is an additional field that states whether the User represents a role or user. In MySQL this must be a
// hidden column, therefore it's represented here as an additional field.
IsRole bool
}
User represents a user from the user Grant Table.
func (*User) Copy ¶
func (u *User) Copy(ctx *sql.Context) in_mem_table.Entry
Copy implements the interface in_mem_table.Entry.
func (*User) NewFromRow ¶
NewFromRow implements the interface in_mem_table.Entry.
func (*User) UpdateFromRow ¶
UpdateFromRow implements the interface in_mem_table.Entry.
func (User) UserHostToString ¶
UserHostToString returns the user and host as a formatted string using the quotes given. Using the default root account with the backtick as the quote, root@localhost would become `root`@`localhost`. Different quotes are used in different places in MySQL. In addition, if the quote is used in a section as part of the name, it is escaped by doubling the quote (which also mimics MySQL behavior).
type UserPrimaryKey ¶
UserPrimaryKey is a key that represents the primary key for the "user" Grant Table.
func (UserPrimaryKey) KeyFromEntry ¶
func (u UserPrimaryKey) KeyFromEntry(ctx *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (UserPrimaryKey) KeyFromRow ¶
func (u UserPrimaryKey) KeyFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
type UserSecondaryKey ¶
type UserSecondaryKey struct {
User string
}
UserSecondaryKey is a key that represents the secondary key for the "user" Grant Table, which contains only usernames.
func (UserSecondaryKey) KeyFromEntry ¶
func (u UserSecondaryKey) KeyFromEntry(ctx *sql.Context, entry in_mem_table.Entry) (in_mem_table.Key, error)
KeyFromEntry implements the interface in_mem_table.Key.
func (UserSecondaryKey) KeyFromRow ¶
func (u UserSecondaryKey) KeyFromRow(ctx *sql.Context, row sql.Row) (in_mem_table.Key, error)
KeyFromRow implements the interface in_mem_table.Key.
Source Files
¶
- db_table.go
- global_grants_table.go
- mysql_conn_user.go
- mysql_db.go
- mysql_db_load.go
- mysql_db_serialize.go
- mysql_table.go
- mysql_table_shim.go
- privilege_set.go
- privilege_set_json.go
- privileged_database_provider.go
- replica_source_info.go
- replica_source_info_table.go
- role_edge.go
- role_edges_table.go
- tables_priv.go
- user.go
- user_table.go
Directories