pub struct SecureInsertOne<A, S>where
A: ActiveModelTrait,{ /* private fields */ }Expand description
A type-safe wrapper around SeaORM’s Insert that enforces scoping.
This wrapper uses the typestate pattern to ensure that insert operations
cannot be executed without first applying access control via .scope_with().
Unlike the simpler secure_insert() helper, this wrapper preserves SeaORM’s
builder methods like on_conflict() for upsert semantics.
§Example
use modkit_db::secure::{AccessScope, SecureInsertExt};
use sea_orm::sea_query::OnConflict;
let scope = AccessScope::tenants_only(vec![tenant_id]);
let am = user::ActiveModel {
tenant_id: Set(tenant_id),
email: Set("user@example.com".to_string()),
..Default::default()
};
user::Entity::insert(am)
.secure() // Returns SecureInsertOne<E, Unscoped>
.scope_with(&scope)? // Returns SecureInsertOne<E, Scoped>
.on_conflict(OnConflict::...) // Builder methods still available
.exec(conn) // Now can execute
.await?;Implementations§
Source§impl<A> SecureInsertOne<A, Unscoped>where
A: ActiveModelTrait + Send,
A::Entity: ScopableEntity + EntityTrait,
<A::Entity as EntityTrait>::Column: ColumnTrait + Copy,
impl<A> SecureInsertOne<A, Unscoped>where
A: ActiveModelTrait + Send,
A::Entity: ScopableEntity + EntityTrait,
<A::Entity as EntityTrait>::Column: ColumnTrait + Copy,
Sourcepub fn scope_with(
self,
scope: &AccessScope,
) -> Result<SecureInsertOne<A, Scoped>, ScopeError>
pub fn scope_with( self, scope: &AccessScope, ) -> Result<SecureInsertOne<A, Scoped>, ScopeError>
Apply access control scope to this insert, transitioning to the Scoped state.
For tenant-scoped entities, this validates that the tenant_id in the
ActiveModel matches one of the tenants in the provided scope.
§Errors
- Returns
ScopeError::Invalidiftenant_idis not set for tenant-scoped entities. - Returns
ScopeError::TenantNotInScopeiftenant_idis not in the provided scope.
Sourcepub fn scope_with_model(
self,
scope: &AccessScope,
am: &A,
) -> Result<SecureInsertOne<A, Scoped>, ScopeError>
pub fn scope_with_model( self, scope: &AccessScope, am: &A, ) -> Result<SecureInsertOne<A, Scoped>, ScopeError>
Apply access control scope with explicit ActiveModel validation.
This method extracts the tenant_id from the provided ActiveModel and
validates it against the provided scope before allowing the insert.
§Errors
- Returns
ScopeError::Invalidiftenant_idis not set for tenant-scoped entities. - Returns
ScopeError::TenantNotInScopeiftenant_idis not in the provided scope.
Source§impl<A> SecureInsertOne<A, Scoped>where
A: ActiveModelTrait,
A::Entity: ScopableEntity + EntityTrait,
<A::Entity as EntityTrait>::Column: ColumnTrait + Copy,
impl<A> SecureInsertOne<A, Scoped>where
A: ActiveModelTrait,
A::Entity: ScopableEntity + EntityTrait,
<A::Entity as EntityTrait>::Column: ColumnTrait + Copy,
Sourcepub fn on_conflict(self, on_conflict: SecureOnConflict<A::Entity>) -> Self
pub fn on_conflict(self, on_conflict: SecureOnConflict<A::Entity>) -> Self
Set the ON CONFLICT clause for upsert semantics using SecureOnConflict.
This is the recommended way to add upsert semantics as it enforces tenant immutability at compile/validation time.
§Example
let on_conflict = SecureOnConflict::<Entity>::columns([Column::TenantId, Column::UserId])
.update_columns([Column::Theme, Column::Language])?;
Entity::insert(am)
.secure()
.scope_with(&scope)?
.on_conflict(on_conflict)
.exec(conn)
.await?;Sourcepub fn on_conflict_raw(self, on_conflict: OnConflict) -> Self
pub fn on_conflict_raw(self, on_conflict: OnConflict) -> Self
Set the ON CONFLICT clause using raw SeaORM OnConflict.
§Safety
This method bypasses tenant immutability validation. The caller is
responsible for ensuring that tenant_id is not included in update columns.
Use on_conflict() with SecureOnConflict for automatic validation.
Source§impl<A> SecureInsertOne<A, Scoped>where
A: ActiveModelTrait,
impl<A> SecureInsertOne<A, Scoped>where
A: ActiveModelTrait,
Sourcepub async fn exec<C>(self, runner: &C) -> Result<InsertResult<A>, ScopeError>where
C: DBRunner,
A: Send,
pub async fn exec<C>(self, runner: &C) -> Result<InsertResult<A>, ScopeError>where
C: DBRunner,
A: Send,
Sourcepub async fn exec_with_returning<C>(
self,
runner: &C,
) -> Result<<A::Entity as EntityTrait>::Model, ScopeError>
pub async fn exec_with_returning<C>( self, runner: &C, ) -> Result<<A::Entity as EntityTrait>::Model, ScopeError>
Execute the insert and return the inserted model.
This is useful when you need the inserted data with any database-generated values (like auto-increment IDs or default values).
§Errors
Returns ScopeError::Db if the database operation fails.
Sourcepub fn into_inner(self) -> Insert<A>
pub fn into_inner(self) -> Insert<A>
Unwrap the inner SeaORM Insert for advanced use cases.
§Safety
The caller must ensure they don’t remove or bypass the security
validation that was applied during .scope_with().
Trait Implementations§
Auto Trait Implementations§
impl<A, S> Freeze for SecureInsertOne<A, S>
impl<A, S> !RefUnwindSafe for SecureInsertOne<A, S>
impl<A, S> Send for SecureInsertOne<A, S>
impl<A, S> Sync for SecureInsertOne<A, S>
impl<A, S> Unpin for SecureInsertOne<A, S>
impl<A, S> UnsafeUnpin for SecureInsertOne<A, S>
impl<A, S> !UnwindSafe for SecureInsertOne<A, S>
Blanket Implementations§
Source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
Source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Source§impl<T> Instrument for T
impl<T> Instrument for T
Source§fn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
Source§fn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
Source§impl<T> Paint for Twhere
T: ?Sized,
impl<T> Paint for Twhere
T: ?Sized,
Source§fn fg(&self, value: Color) -> Painted<&T>
fn fg(&self, value: Color) -> Painted<&T>
Returns a styled value derived from self with the foreground set to
value.
This method should be used rarely. Instead, prefer to use color-specific
builder methods like red() and
green(), which have the same functionality but are
pithier.
§Example
Set foreground color to white using fg():
use yansi::{Paint, Color};
painted.fg(Color::White);Set foreground color to white using white().
use yansi::Paint;
painted.white();Source§fn bright_black(&self) -> Painted<&T>
fn bright_black(&self) -> Painted<&T>
Source§fn bright_red(&self) -> Painted<&T>
fn bright_red(&self) -> Painted<&T>
Source§fn bright_green(&self) -> Painted<&T>
fn bright_green(&self) -> Painted<&T>
Source§fn bright_yellow(&self) -> Painted<&T>
fn bright_yellow(&self) -> Painted<&T>
Source§fn bright_blue(&self) -> Painted<&T>
fn bright_blue(&self) -> Painted<&T>
Source§fn bright_magenta(&self) -> Painted<&T>
fn bright_magenta(&self) -> Painted<&T>
Source§fn bright_cyan(&self) -> Painted<&T>
fn bright_cyan(&self) -> Painted<&T>
Source§fn bright_white(&self) -> Painted<&T>
fn bright_white(&self) -> Painted<&T>
Source§fn bg(&self, value: Color) -> Painted<&T>
fn bg(&self, value: Color) -> Painted<&T>
Returns a styled value derived from self with the background set to
value.
This method should be used rarely. Instead, prefer to use color-specific
builder methods like on_red() and
on_green(), which have the same functionality but
are pithier.
§Example
Set background color to red using fg():
use yansi::{Paint, Color};
painted.bg(Color::Red);Set background color to red using on_red().
use yansi::Paint;
painted.on_red();Source§fn on_primary(&self) -> Painted<&T>
fn on_primary(&self) -> Painted<&T>
Source§fn on_magenta(&self) -> Painted<&T>
fn on_magenta(&self) -> Painted<&T>
Source§fn on_bright_black(&self) -> Painted<&T>
fn on_bright_black(&self) -> Painted<&T>
Source§fn on_bright_red(&self) -> Painted<&T>
fn on_bright_red(&self) -> Painted<&T>
Source§fn on_bright_green(&self) -> Painted<&T>
fn on_bright_green(&self) -> Painted<&T>
Source§fn on_bright_yellow(&self) -> Painted<&T>
fn on_bright_yellow(&self) -> Painted<&T>
Source§fn on_bright_blue(&self) -> Painted<&T>
fn on_bright_blue(&self) -> Painted<&T>
Source§fn on_bright_magenta(&self) -> Painted<&T>
fn on_bright_magenta(&self) -> Painted<&T>
Source§fn on_bright_cyan(&self) -> Painted<&T>
fn on_bright_cyan(&self) -> Painted<&T>
Source§fn on_bright_white(&self) -> Painted<&T>
fn on_bright_white(&self) -> Painted<&T>
Source§fn attr(&self, value: Attribute) -> Painted<&T>
fn attr(&self, value: Attribute) -> Painted<&T>
Enables the styling Attribute value.
This method should be used rarely. Instead, prefer to use
attribute-specific builder methods like bold() and
underline(), which have the same functionality
but are pithier.
§Example
Make text bold using attr():
use yansi::{Paint, Attribute};
painted.attr(Attribute::Bold);Make text bold using using bold().
use yansi::Paint;
painted.bold();Source§fn rapid_blink(&self) -> Painted<&T>
fn rapid_blink(&self) -> Painted<&T>
Source§fn quirk(&self, value: Quirk) -> Painted<&T>
fn quirk(&self, value: Quirk) -> Painted<&T>
Enables the yansi Quirk value.
This method should be used rarely. Instead, prefer to use quirk-specific
builder methods like mask() and
wrap(), which have the same functionality but are
pithier.
§Example
Enable wrapping using .quirk():
use yansi::{Paint, Quirk};
painted.quirk(Quirk::Wrap);Enable wrapping using wrap().
use yansi::Paint;
painted.wrap();Source§fn clear(&self) -> Painted<&T>
👎Deprecated since 1.0.1: renamed to resetting() due to conflicts with Vec::clear().
The clear() method will be removed in a future release.
fn clear(&self) -> Painted<&T>
resetting() due to conflicts with Vec::clear().
The clear() method will be removed in a future release.Source§fn whenever(&self, value: Condition) -> Painted<&T>
fn whenever(&self, value: Condition) -> Painted<&T>
Conditionally enable styling based on whether the Condition value
applies. Replaces any previous condition.
See the crate level docs for more details.
§Example
Enable styling painted only when both stdout and stderr are TTYs:
use yansi::{Paint, Condition};
painted.red().on_yellow().whenever(Condition::STDOUTERR_ARE_TTY);