Bureaucrats, editor, reviewer, Administrators
13,550
edits
Changes
Jump to navigation
Jump to search
|-
|{{Code|admin}}
|The "admin" user cannot be modified.
|-
|{{Code|equal}}
|Name of old and new user is equal.
|-
|{{Code|local}}
|A local permission can only be 'none', 'read' or 'write'.
|-
|{{Code|logged-in}}
|The specified user is currently logged in.
|-
|{{Code|conflict}}
|A user cannot be both altered and dropped.
[[Category:XQuery]]
no edit summary
=Conventions=
All functions and errors in this module and errors are assigned to the {{Code|<code><nowiki>http://basex.org/modules/user}} </nowiki></code> namespace, which is statically bound to the {{Code|user}} prefix.<br/>
=FunctionsRead Operations= ==user:current== {| width='100%'|-| width='120' | '''Signatures'''|{{Func|user:current||xs:string}}<br/>|-| '''Summary'''|Returns the name of the currently logged in user.|-| '''Examples'''|* If the GUI or the standalone mode is used, {{Code|user:current()}} always returns {{Code|admin}}.|}
==user:list==
|-
| '''Summary'''
|Returns the names of all registered usersthat are visible to the current user.
|-
| '''Examples'''
|
* After a fresh installation, {{Code|user:list()}} returns all registered userswill only return {{Code|admin}}.
|}
|-
| width='120' | '''Signatures'''
|{{Func|user:list-details||element(user)*}}<br/>{{Func|user:list-details|$name as xs:string|element(user)*}}<br/>
|-
| '''Summary'''
|Returns an element sequence, containing all registered users and their permissionsthat are visible to the current user.<br/>In addition to the [[Commands#SHOW_USERS|SHOW USERS]]command, encoded password strings and database permissions will be output. A user {{Code|$name}} can be specified to filter the results in advance.
|-
| '''Examples'''
|
* By defaultAfter a fresh installation, {{Code|user:list-details()}} returns output similar to the following outputone:<pre classsyntaxhighlight lang="brush:xml">
<user name="admin" permission="admin">
<password algorithm="digest">
</password>
</user>
</presyntaxhighlight>|-| '''Errors'''|{{Error|unknown|#Errors}} The specified user name is unknown.
|}
|{{Error|name|#Errors}} The specified user name is invalid.
|}
==user:check==
{| width='100%'
|-
| width='120' | '''Signatures'''
|{{Func|user:check|$name as xs:string, $password as xs:string|empty-sequence()}}<br/>
|-
| '''Summary'''
|Checks if the specified user and password is correct. Raises errors otherwise.
|-
| '''Examples'''
|
* {{Code|user:check('admin', 'admin')}} will raise an error if the admin password was changed.
|-
| '''Errors'''
|{{Error|name|#Errors}} The specified user name is invalid.<br/>{{Error|unknown|#Errors}} The specified user does not exist.<br/>{{Error|password|#Errors}} The specified password is wrong.<br/>
|}
==user:info==
{| width='100%'
|-
| width='120' | '''Signatures'''
|{{Func|user:info||element(info)}}<br/>{{Func|user:info|$name as xs:string|element(info)}}
|-
| '''Summary'''
|Returns an <code>info</code> element, which may contain application-specific data. If a user {{Code|$name}} is supplied, a user-specific element is returned. By default, the returned element has no contents. It can be modified via [[#user:update-info|user:update-info]].
|-
| '''Examples'''
|
* After a fresh installation, {{Code|user:info()}} returns <code><info/></code>.
|}
=Updates=
'''Important note:''' All functions in this section are ''updating functions'': they will not be immediately executed, but queued on the [[XQuery Update#Pending Update List|Pending Update List]], which will be processed after the actual query has been evaluated. This means that the order in which the functions are specified in the query does usually not reflect the order in which the code will be evaluated.
==user:create==
|-
| width='120' | '''Signatures'''
|{{Func|user:create|$name as xs:string, $password as xs:string|empty-sequence()}}<br/>{{Func|user:create|$name as xs:string, $password as xs:string, $permission permissions as xs:string*|empty-sequence()}}<br/>{{Func|user:create|$name as xs:string, $password as xs:string, $permissions as xs:string*, $patterns as xs:string*|empty-sequence()}}<br/>{{Func|user:create|$name as xs:string, $password as xs:string, $permissions as xs:string*, $patterns as xs:string*, $info as element(info)|empty-sequence()}}
|-
| '''Summary'''
|Creates a new user with the specified {{Code|$name}} and , {{Code|$password}}. The default permission , and {{Code|none$permissions}} can be overwritten :* Local permissions are granted with the non-empty glob {{Code|$patterns}}.* An {{Code|$permissioninfo}} element with application-specific information can be supplied.* The default global permission (''none'') can be overwritten with an empty pattern or by omitting the last argument. * Existing users will be overwritten.
|-
| '''Examples'''
|
* {{Code|user:create('John', '7e$j#!1', 'admin')}} creates a new user 'John' with admin permissions.
* {{Code|user:create('Jack', 'top!secret', 'read', 'index*')}} creates a new user 'Jack' with no permissions, but read permissions for databases starting with the letters 'index'.
|-
| '''Errors'''
|{{Error|name|#Errors}} The specified user name is invalid.|<br/>{{Error|permission|#Errors}} The specified permission is invalid.|<br/>{{Error|admin|#Errors}} The "admin" user cannot be modified.|<br/>{{Error|logged-in|#Errors}} The specified user is currently logged in.|<br/>{{Error|update|#Errors}} The operation can only be performed once per user or database pattern.
|}
|-
| width='120' | '''Signatures'''
|{{Func|user:grant|$name as xs:string, $permission permissions as xs:string*|empty-sequence()}}<br/>{{Func|user:grant|$name as xs:string, $permission permissions as xs:string*, $pattern patterns as xs:string*|empty-sequence()}}
|-
| '''Summary'''
|Grants the specified global or local {{Code|$permissionpermissions}} to a user with the specified {{Code|$name}}. If a Local permissions are granted with non-empty glob {{Code|$patternpatterns}} is specified, the permission will only be applied to databases matching that pattern.
|-
| '''Examples'''
|
* {{Code|user:grant('John', 'create')}} grants create permissions to the user 'John'.
* {{Code|user:grant('John', ('read', 'write'), ('index*', 'unit*'))}} allows John to read all databases starting with the letters 'index', and to write to all databases starting with the letters 'unit'.
|-
| '''Errors'''
|{{Error|unknown|#Errors}} The specified user name is unknown.<br/>{{Error|name|#Errors}} The specified user name is invalid.|<br/>{{Error|pattern|#Errors}} The specified database pattern is invalid.|<br/>{{Error|permission|#Errors}} The specified permission is invalid.|<br/>{{Error|admin|#Errors}} The "admin" user cannot be modified.|<br/>{{Error|local|#Errors}} A local permission can only be 'none', 'read' or 'write'.|<br/>{{Error|logged-in|#Errors}} The specified user is currently logged in.|<br/>{{Error|update|#Errors}} The operation can only be performed once per user or database pattern.
|}
|-
| width='120' | '''Signatures'''
|{{Func|user:drop|$name as xs:string|empty-sequence()}}<br/>{{Func|user:drop|$name as xs:string, $pattern patterns as xs:string*|empty-sequence()}}
|-
| '''Summary'''
|Drops a user with the specified {{Code|$name}}. If a non-empty glob {{Code|$patternpatterns}} is are specified, only the database pattern patterns will be droppedremoved.
|-
| '''Examples'''
|-
| '''Errors'''
|{{Error|unknown|#Errors}} The specified user name is unknown.<br/>{{Error|name|#Errors}} The specified user name is invalid.|<br/>{{Error|pattern|#Errors}} The specified database pattern is invalid.|<br/>{{Error|admin|#Errors}} The "admin" user cannot be modified.|<br/>{{Error|logged-in|#Errors}} The specified user is currently logged in.|<br/>{{Error|update|#Errors}} The operation can only be performed once per user or database pattern.|<br/>{{Error|conflict|#Errors}} A user cannot be both altered and dropped.
|}
| '''Examples'''
|
* {{Code|user:renamealter('John', 'Jack')}} renames the user 'John' to 'Jack'.
|-
| '''Errors'''
|{{Error|unknown|#Errors}} The specified user name is unknown.<br/>{{Error|name|#Errors}} The specified user name is invalid.|<br/>{{Error|admin|#Errors}} The "admin" user cannot be modified.|<br/>{{Error|logged-in|#Errors}} The specified user is currently logged in.|<br/>{{Error|update|#Errors}} The operation can only be performed once per user or database pattern.|<br/>{{Error|conflict|#Errors}} A user cannot be both altered and dropped.
|}
|-
| '''Errors'''
|{{Error|unknown|#Errors}} The specified user name is unknown.<br/>{{Error|name|#Errors}} The specified user name is invalid.|<br/>{{Error|update|#Errors}} The operation can only be performed once per user or database pattern.|} ==user:update-info== {| width='100%'|-| width='120' | '''Signatures'''|{{Func|user:update-info|$info as element(info)|empty-sequence()}}<br/>{{Func|user:update-info|$info as element(info), $name as xs:string|empty-sequence()}}|-| '''Summary'''|Assigns the specified {{Code|$info}} element to the user management or, if {{Code|$name}} is supplied, to a specific user. This function can be used to manage application-specific data (groups, enhanced user info, etc.).|-| '''Examples'''|* Store initial groups information:<syntaxhighlight lang="xquery">user:update-info(element info { for $group in ('editor', 'author', 'writer') return element group { $group }})</syntaxhighlight>* Add a group to a specific user:<syntaxhighlight lang="xquery">user:update-info(<info group='editor'/>, 'john')</syntaxhighlight>
|}
! width="110"|Code
|Description
|-
|{{Code|admin}}
|The "admin" user cannot be modified.
|-
|{{Code|conflict}}
|A user cannot be both altered and dropped.
|-
|{{Code|equal}}
|Name of old and new user is equal.
|-
|{{Code|local}}
|A local permission can only be 'none', 'read' or 'write'.
|-
|{{Code|logged-in}}
|The specified user is currently logged in.
|-
|{{Code|name}}
|The specified user name is invalid.
|-
|{{Code|password}}
|The specified password is wrong.
|-
|{{Code|pattern}}
|{{Code|unknown}}
|The specified user does not exist.
|-
|{{Code|update}}
|The operation can only be performed once per user or database pattern.
|}
=Changelog=
;Version 8.6
* Updated: [[#user:create|user:create]], [[#user:info|user:info]], [[#user:update-info|user:update-info]]: {{Code|$name}} parameter added.
;Version 8.6
* Added: [[#user:check|user:check]], [[#user:info|user:info]], [[#user:update-info|user:update-info]].
* Updated: [[#user:list|user:list]], [[#user:list-details|user:list-details]]: If called by non-admins, will only return the current user.
;Version 8.4
* Updated: [[#user:create|user:create]], [[#user:grant|user:grant]], [[#user:drop|user:drop]]: extended support for database patterns.
;Version 8.1
* Added: [[#user:current|user:current]].
The Module was introduced with Version 8.0.
