nodedb 0.0.0-beta.1

Local-first, real-time, edge-to-cloud hybrid database for multi-modal workloads
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104

//! Auth user catalog operations (redb persistence for JIT-provisioned users).

use super::types::{AUTH_USERS, StoredAuthUser, SystemCatalog, catalog_err};

impl SystemCatalog {
    /// Insert or update a JIT-provisioned auth user.
    pub fn put_auth_user(&self, user: &StoredAuthUser) -> crate::Result<()> {
        let bytes = rmp_serde::to_vec(user).map_err(|e| catalog_err("serialize auth user", e))?;
        let write_txn = self
            .db
            .begin_write()
            .map_err(|e| catalog_err("auth_users write txn", e))?;
        {
            let mut table = write_txn
                .open_table(AUTH_USERS)
                .map_err(|e| catalog_err("open auth_users", e))?;
            table
                .insert(user.id.as_str(), bytes.as_slice())
                .map_err(|e| catalog_err("insert auth user", e))?;
        }
        write_txn
            .commit()
            .map_err(|e| catalog_err("auth_users commit", e))?;
        Ok(())
    }

    /// Get a single auth user by ID.
    pub fn get_auth_user(&self, id: &str) -> crate::Result<Option<StoredAuthUser>> {
        let read_txn = self
            .db
            .begin_read()
            .map_err(|e| catalog_err("auth_users read txn", e))?;
        let table = read_txn
            .open_table(AUTH_USERS)
            .map_err(|e| catalog_err("open auth_users", e))?;
        match table.get(id).map_err(|e| catalog_err("get auth user", e))? {
            Some(val) => {
                let user: StoredAuthUser = rmp_serde::from_slice(val.value())
                    .map_err(|e| catalog_err("deserialize auth user", e))?;
                Ok(Some(user))
            }
            None => Ok(None),
        }
    }

    /// Delete a JIT-provisioned auth user by ID.
    pub fn delete_auth_user(&self, id: &str) -> crate::Result<bool> {
        let write_txn = self
            .db
            .begin_write()
            .map_err(|e| catalog_err("auth_users write txn", e))?;
        let removed = {
            let mut table = write_txn
                .open_table(AUTH_USERS)
                .map_err(|e| catalog_err("open auth_users", e))?;
            table
                .remove(id)
                .map_err(|e| catalog_err("remove auth user", e))?
                .is_some()
        };
        write_txn
            .commit()
            .map_err(|e| catalog_err("auth_users commit", e))?;
        Ok(removed)
    }

    /// Load all JIT-provisioned auth users.
    pub fn load_all_auth_users(&self) -> crate::Result<Vec<StoredAuthUser>> {
        let read_txn = self
            .db
            .begin_read()
            .map_err(|e| catalog_err("auth_users read txn", e))?;
        let table = read_txn
            .open_table(AUTH_USERS)
            .map_err(|e| catalog_err("open auth_users", e))?;
        let mut users = Vec::new();
        let range = table
            .range::<&str>(..)
            .map_err(|e| catalog_err("range auth_users", e))?;
        for item in range {
            let (_, value) = item.map_err(|e| catalog_err("read auth user", e))?;
            if let Ok(user) = rmp_serde::from_slice::<StoredAuthUser>(value.value()) {
                users.push(user);
            }
        }
        Ok(users)
    }

    /// Delete auth users inactive for longer than the given duration.
    /// Returns the number of purged records.
    pub fn purge_inactive_auth_users(&self, inactive_before_secs: u64) -> crate::Result<usize> {
        let all = self.load_all_auth_users()?;
        let mut purged = 0;

        for user in &all {
            if !user.is_active && user.last_seen < inactive_before_secs {
                self.delete_auth_user(&user.id)?;
                purged += 1;
            }
        }

        Ok(purged)
    }
}