DeclareDatabaseContextFunction now takes a rolename-based acl because it faces the user

agentm · agentm · commit e4dd465d0204 · 2026-02-14T17:31:42.000-05:00
diff --git a/examples/zoo.hs b/examples/zoo.hs
@@ -1,74 +1,28 @@
-{-# LANGUAGE DeriveGeneric, DerivingVia, DeriveAnyClass, OverloadedStrings #-}
-import ProjectM36.Client
-import ProjectM36.Relation
-import ProjectM36.Tupleable
-import ProjectM36.TupleSet
-import ProjectM36.Relation.Show.Term
-
-import Data.Typeable
-import GHC.Generics
-import System.Random (initStdGen)
+module Zoo where
+import ProjectM36.Module
+import ProjectM36.AccessControlList
 import Data.Time.Calendar
-import qualified Data.Text.IO as T
-
-data Ticket = Ticket
-  { ticketId   :: Integer
-  , visitorAge :: Integer    -- years
-  , basePrice  :: Integer  -- base price before adjustments
-  , visitDate  :: Day
-}
- deriving (Generic, Tupleable)
-
-
-main :: IO ()
-main = do
-  let ticketAttrs = toAttributes (Proxy :: Proxy Ticket)
-      ticket1 = Ticket { ticketId = 1,
-                         visitorAge = 8,
-                         basePrice = 20,
-                         visitDate = fromGregorian 2025 10 01 }
-      ticket2 = Ticket { ticketId = 2,
-                         visitorAge = 25,
-                         basePrice = 20,
-                         visitDate = fromGregorian 2025 12 25 }
-      Right ticketTupleSet = mkTupleSet ticketAttrs [toTuple ticket1,
-                                          toTuple ticket2]
-      Right ticketRel = mkRelation ticketAttrs ticketTupleSet
-  rando <- initStdGen
-  -- connect to the database
-  conn <- failFast $ connectProjectM36 (InProcessConnectionInfo NoPersistence emptyNotificationCallback [] basicDatabaseContext rando "admin")
-
-  -- create a session on the master branch
-  sessionId <- failFast $ createSessionAtHead conn "master"
-
-  -- add the ticket discount function
-  let func_type = [integerTypeCons, integerTypeCons, ADTypeConstructor "Either" [ADTypeConstructor "AtomFunctionError" [], integerTypeCons]]
-      integerTypeCons = PrimitiveTypeConstructor "Integer" IntegerAtomType
-      func_body = "(\\[IntegerAtom age,IntegerAtom price] -> pure (IntegerAtom (if age < 10 then price `div` 2 else price))) :: [Atom] -> Either AtomFunctionError Atom"
-  failFast $ executeDatabaseContextIOExpr sessionId conn (AddAtomFunction "apply_discount" func_type func_body)
-
-  -- calculate the proper discount per ticket and add it to the database
-  let discountedTicketRel = Extend (AttributeExtendTupleExpr "discounted_price" func_apply_discount) (ExistingRelation ticketRel)
-      func_apply_discount = FunctionAtomExpr "apply_discount" [AttributeAtomExpr "visitorAge", AttributeAtomExpr "basePrice"] ()
-  failFast $ executeDatabaseContextExpr sessionId conn (Assign "ticket_sales" discountedTicketRel)
-
-  -- print out the resultant relation
-  Right ticketSalesRelation <- executeRelationalExpr sessionId conn (RelationVariable "ticket_sales" ())
-  T.putStrLn $ showRelation ticketSalesRelation
-
- 
-
-
--- | Apply a 50% discount for kids under 10 years old. Arguments: age, base price
-applyDiscount :: Integer -> Integer -> Integer
-applyDiscount age base_price =
-  if age < 10 then base_price `div` 2 else base_price
-
-failFast :: Show a => IO (Either a b) -> IO b
-failFast m = do
-  ret <- m
-  case ret of
-    Left err -> error (show err)
-    Right val -> pure val
-
-  
+import ProjectM36.Base
+import qualified Data.Map as M
+
+apply_discount :: Integer -> Integer -> Integer
+apply_discount age price =
+  if age <= 10 then
+    price `div` 2
+    else
+    price
+
+addSale :: Integer -> Integer -> Integer -> Day -> DatabaseContextFunctionMonad ()
+addSale ticketId age price purchaseDay = do
+  let tuples = [TupleExpr (M.fromList [("ticketId", i ticketId),
+                                       ("visitorAge", i age),
+                                       ("basePrice", FunctionAtomExpr "applyDiscount" [i age, i price] ()),
+                                       ("visitDate", NakedAtomExpr (DayAtom purchaseDay))])]
+      i = NakedAtomExpr . IntegerAtom
+  executeDatabaseContextExpr (Insert "ticket_sales" (MakeRelationFromExprs Nothing (TupleExprs () tuples)))
+
+
+projectM36Functions :: EntryPoints ()
+projectM36Functions = do
+  declareAtomFunction "apply_discount"
+  declareDatabaseContextFunction "addSale" (AccessControlList (M.singleton "ticket_seller" (M.singleton ExecuteDBCFunctionPermission False)))
diff --git a/src/lib/ProjectM36/AccessControlList.hs b/src/lib/ProjectM36/AccessControlList.hs
@@ -8,6 +8,7 @@ import Data.Hashable
 import qualified Data.Map as M
 import Data.Maybe (fromMaybe)
 import Data.Default
+import Control.Monad (foldM)
 
 newtype AccessControlList role' permission =
     AccessControlList (M.Map role' (RoleAccess permission))
@@ -120,8 +121,11 @@ normalize (AccessControlList acl) = AccessControlList $ M.filter (not . M.null)
 empty :: Ord r => AccessControlList r p
 empty = AccessControlList mempty
 
-allPermissionsForRoleId :: (AllPermissions p, Ord p) => r -> AccessControlList r p
-allPermissionsForRoleId roleid = AccessControlList (M.singleton roleid (M.fromList (map (,True) (S.toList allPermissions))))
+allPermissionsForRole :: (AllPermissions p, Ord p) => r -> AccessControlList r p
+allPermissionsForRole roleid = AccessControlList (M.singleton roleid (M.fromList (map (,True) (S.toList allPermissions))))
+
+permissionForRole :: Ord p => p -> r -> AccessControlList r p
+permissionForRole perm roleid = AccessControlList (M.singleton roleid (M.singleton perm False))
 
 merge :: (Ord p, Eq r, Ord r) => AccessControlList r p -> AccessControlList r p -> AccessControlList r p
 merge (AccessControlList acl1) (AccessControlList acl2) =
@@ -191,4 +195,20 @@ data SomePermission = SomeRelVarPermission RelVarPermission |
                       SomeDBCFunctionPermission DBCFunctionPermission
                     deriving (Show, NFData, Generic, Eq, Hashable)
 
+-- | Resolve the first parameter in the AccessContrList, typically a role name resolving to a role id.
+resolve :: Ord r2 => (r1 -> IO (Maybe r2)) -> AccessControlList r1 a -> IO (Either r1 (AccessControlList r2 a))
+resolve resolver (AccessControlList aclIn) = do
+  let folder (Right acc) (r, v) = do
+        eR2 <- resolver r
+        case eR2 of
+          Nothing -> pure (Left r)
+          Just r2 -> pure (Right ((r2,v):acc))
+      folder (Left acc) _ = pure (Left acc)
+  eres <- foldM folder (Right []) (M.toList aclIn)
+  case eres of
+    Left errR -> pure (Left errR)
+    Right res ->
+      pure (Right (AccessControlList (M.fromList res)))
+
+        
 
diff --git a/src/lib/ProjectM36/Client.hs b/src/lib/ProjectM36/Client.hs
@@ -186,7 +186,7 @@ import ProjectM36.Session
 import ProjectM36.ValueMarker
 import ProjectM36.AccessControl
 import ProjectM36.Sessions
-import ProjectM36.AccessControlList
+import ProjectM36.AccessControlList as ACL
 import ProjectM36.HashSecurely (SecureHash)
 import ProjectM36.RegisteredQuery
 import qualified ProjectM36.Cache.RelationalExprCache as RelExprCache
@@ -769,7 +769,18 @@ executeDatabaseContextIOExpr sessionId (InProcessConnection conf) expr = do
     Left err -> pure (Left err)
     Right session -> do
       graph <- readTVarIO (ipTransactionGraph conf)
-      let env = RE.DatabaseContextIOEvalEnv transId graph scriptSession myRoleId objFilesPath dbcFuncUtils
+      let env = RE.DatabaseContextIOEvalEnv transId graph scriptSession myRoleId resolveRoleNameACL objFilesPath dbcFuncUtils
+          resolveRoleNameACL :: forall a. AccessControlList RoleName a -> IO (Either RelationalError (AccessControlList RoleId a))
+          resolveRoleNameACL acl' = do
+            eRes <- ACL.resolve (\r -> do
+                            eRid <- LoginRoles.roleIdForRoleName r (ipLoginRoles conf)
+                            pure $ case eRid of
+                              Left _err -> Nothing
+                              Right rid -> Just rid
+                        ) acl'
+            case eRes of
+              Left badR -> pure (Left (NoSuchRoleNameError badR))
+              Right res -> pure (Right res)
           dbcEnv = RE.mkDatabaseContextEvalEnv transId graph dbcFuncUtils
           roleNameResolver nam = fst <$> lookup nam roles      
           dbcFuncUtils = DBC.DatabaseContextFunctionUtils {
diff --git a/src/lib/ProjectM36/Module.hs b/src/lib/ProjectM36/Module.hs
@@ -9,10 +9,13 @@ import Control.Monad.RWS.Strict (RWST, get, put, ask, runRWST)
 import Control.Monad.Except (ExceptT, throwError, runExceptT)
 import Data.Functor.Identity
 
+-- | Variant of ACLs which use roles to be later resolved to role ids used by user-facing ProjectM36.Module.
+type DBCFunctionRoleNameAccessControlList = AccessControlList RoleName DBCFunctionPermission
+
 declareAtomFunction :: FunctionName -> EntryPoints ()
 declareAtomFunction nam = tell [DeclareAtomFunction nam]
 
-declareDatabaseContextFunction :: FunctionName -> DBCFunctionAccessControlList -> EntryPoints ()
+declareDatabaseContextFunction :: FunctionName -> DBCFunctionRoleNameAccessControlList -> EntryPoints ()
 declareDatabaseContextFunction nam acl' = tell [DeclareDatabaseContextFunction nam acl']
 
 type EntryPoints = Writer [DeclareFunction]
@@ -21,7 +24,7 @@ runEntryPoints :: EntryPoints () -> [DeclareFunction]
 runEntryPoints = execWriter
 
 data DeclareFunctionBase a = DeclareAtomFunction a |
-                             DeclareDatabaseContextFunction a DBCFunctionAccessControlList
+                             DeclareDatabaseContextFunction a DBCFunctionRoleNameAccessControlList
   deriving (Show)
 
 type DeclareFunction = DeclareFunctionBase FunctionName
diff --git a/src/lib/ProjectM36/RelationalExpression.hs b/src/lib/ProjectM36/RelationalExpression.hs
@@ -3,6 +3,7 @@
 {-# LANGUAGE FlexibleContexts  #-}
 {-# LANGUAGE OverloadedStrings  #-}
 {-# LANGUAGE MultiParamTypeClasses #-}
+{-# LANGUAGE RankNTypes #-}
 module ProjectM36.RelationalExpression where
 import ProjectM36.Relation
 import ProjectM36.Tuple
@@ -51,7 +52,7 @@ import Control.Monad.Trans.Except (except)
 import ProjectM36.NormalizeExpr
 import ProjectM36.WithNameExpr
 import ProjectM36.Function
-import ProjectM36.AccessControlList as ACL
+import ProjectM36.AccessControlList (RoleId, AccessControlList, SomePermission(..), relvarsACL, dbcFunctionsACL, schemaACL, transGraphACL, aclACL, allPermissionsForRole, addAccess, removeAccess)
 import Test.QuickCheck
 import Data.Functor (void)
 import qualified Data.Functor.Foldable as Fold
@@ -65,8 +66,10 @@ import ProjectM36.Module
 import GHC hiding (getContext)
 import Control.Exception
 import GHC.Paths
+--import System.FilePath
 --import GHC.Unit.State (emptyUnitState)
 --import GHC.Driver.Ppr (showSDocForUser)
+--import GHC.Utils.Outputable (ppr)
 --import GHC.Unit.Finder.Types (FindResult(..))
 --import GHC.Unit.Finder (findImportedModule)
 import GHC.Types.Name.Occurrence (mkVarOcc, mkTcOcc)
@@ -77,7 +80,7 @@ import GHC.Builtin.Types (unitTy)
 import GHC.Core.TyCo.Compare (eqType)
 import Unsafe.Coerce
 import Control.Monad (forM)
---import GHC.Utils.Outputable (ppr)
+
 #endif
 
 data DatabaseContextExprDetails = CountUpdatedTuples
@@ -557,6 +560,7 @@ data DatabaseContextIOEvalEnv = DatabaseContextIOEvalEnv
     dbcio_graph :: TransactionGraph,
     dbcio_mScriptSession :: Maybe ScriptSession,
     dbcio_roleId :: RoleId,
+    resolveRoleNameACL :: forall x. AccessControlList RoleName x -> IO (Either RelationalError (AccessControlList RoleId x)),
     dbcio_mModulesDirectory :: Maybe FilePath, -- ^ when running in persistent mode, this must be a Just value to a directory containing .o/.so/.dynlib files which the user has placed there for access to compiled functions
     dbcio_dbcfunctionUtils :: DatabaseContextFunctionUtils
   }
@@ -660,7 +664,7 @@ evalGraphRefDatabaseContextIOExpr (AddDatabaseContextFunction funcName' funcType
                     funcName = funcName',
                     funcType = funcAtomType,
                     funcBody = FunctionScriptBody script compiledFunc,
-                    funcACL = allPermissionsForRoleId myRoleId
+                    funcACL = allPermissionsForRole myRoleId
                     }
                 -- check if the name is already in use
               if HS.member funcName' (HS.map funcName dbcFuncs) then
@@ -1888,14 +1892,15 @@ importModuleFromPath :: ScriptSession -> ModuleBody -> DatabaseContextIOEvalMona
 importModuleFromPath _scriptSession _moduleSource = throwError (ScriptError ScriptCompilationDisabledError)
 #else
 importModuleFromPath scriptSession moduleSource = do
+  resolveRoleNameACLF <- resolveRoleNameACL <$> ask
   res <- liftIO $ try $ do
     withSystemTempFile "pm36module" $ \tempModulePath tempModuleHandle -> do
       hClose tempModuleHandle
       TIO.writeFile tempModulePath moduleSource
       runGhc (Just libdir) $ do
     -- GHC needs to see the module on disk, so we write it to a temporary location
         setSession (hscEnv scriptSession)
-        dflags <- getSessionDynFlags        
+        dflags <- getSessionDynFlags
         let target = Target {
               targetId = TargetFile tempModulePath Nothing,
               targetAllowObjCode = False,
@@ -1907,7 +1912,7 @@ importModuleFromPath scriptSession moduleSource = do
         case loadSuccess of
           Failed -> pure (Left (ScriptError ModuleLoadError))
           Succeeded -> do
-            {-modRes <- liftIO $ findImportedModule (hscEnv scriptSession) (mkModuleName "ProjectM36.Base") NoPkgQual
+{-            modRes <- liftIO $ findImportedModule (hscEnv scriptSession) (mkModuleName "ProjectM36.Base") NoPkgQual
             liftIO $ case modRes of
               Found modLoc _mod -> do
                 let packageLoc = takeDirectory (takeDirectory (takeDirectory (ml_dyn_obj_file modLoc)))
@@ -1958,21 +1963,26 @@ importModuleFromPath scriptSession moduleSource = do
                               tyConv <- mkTypeConversions                              
                               mkFunctions <- forM funcDeclarations $ \funcDecl -> do
                                   case funcDecl of
-                                    DeclareDatabaseContextFunction funcS acl' -> do
-                                      fType <- exprType TM_Default (T.unpack funcS)
-                                      dbcFuncMonadType <- exprType TM_Default "undefined :: DatabaseContextFunctionMonad ()"                                      
-                                      -- extract arguments for dbc function
-                                      let eAtomFuncType = convertGhcTypeToDatabaseContextFunctionAtomType dflags tyConv dbcFuncMonadType fType
-                                      case eAtomFuncType of
-                                        Left err -> throw (OtherScriptCompilationError (show err))
-                                        Right dbcFuncType -> do
-                                          let interpretedFunc = wrapDatabaseContextFunction dbcFuncType funcS
-                                          dbcFunc :: DatabaseContextFunctionBodyType <- unsafeCoerce <$> compileExpr interpretedFunc
-                                          let newDBCFunc = Function { funcName = funcS,
-                                                                            funcType = dbcFuncType,
-                                                                            funcBody = FunctionScriptBody (T.pack interpretedFunc) dbcFunc,
-                                                                            funcACL = acl' }
-                                          pure (MkDatabaseContextFunction newDBCFunc)
+                                    DeclareDatabaseContextFunction funcS roleNameACL -> do
+                                      --resolve role name ACL into role-id-based ACL                                      
+                                      eACL <- liftIO $ resolveRoleNameACLF roleNameACL
+                                      case eACL of
+                                        Left err -> throw err
+                                        Right acl' -> do
+                                          fType <- exprType TM_Default (T.unpack funcS)
+                                          dbcFuncMonadType <- exprType TM_Default "undefined :: DatabaseContextFunctionMonad ()"                                      
+                                          -- extract arguments for dbc function
+                                          let eAtomFuncType = convertGhcTypeToDatabaseContextFunctionAtomType dflags tyConv dbcFuncMonadType fType
+                                          case eAtomFuncType of
+                                            Left err -> throw (OtherScriptCompilationError (show err))
+                                            Right dbcFuncType -> do
+                                              let interpretedFunc = wrapDatabaseContextFunction dbcFuncType funcS
+                                              dbcFunc :: DatabaseContextFunctionBodyType <- unsafeCoerce <$> compileExpr interpretedFunc
+                                              let newDBCFunc = Function { funcName = funcS,
+                                                                          funcType = dbcFuncType,
+                                                                          funcBody = FunctionScriptBody (T.pack interpretedFunc) dbcFunc,
+                                                                          funcACL = acl' }
+                                              pure (MkDatabaseContextFunction newDBCFunc)
                                     DeclareAtomFunction funcS -> do
                                       --extract type from function in script
                                       fType <- exprType TM_Default (T.unpack funcS)
diff --git a/src/lib/ProjectM36/ScriptSession.hs b/src/lib/ProjectM36/ScriptSession.hs
@@ -28,10 +28,11 @@ import GHC.LanguageExtensions (Extension(OverloadedStrings,ExtendedDefaultRules,
 -- GHC 9.4+
 import Data.List.NonEmpty(NonEmpty(..))
 import GHC.Utils.Panic (handleGhcException)
-import GHC.Driver.Session (projectVersion, PackageDBFlag(PackageDB), PkgDbRef(PkgDbPath), TrustFlag(TrustPackage), gopt_set, xopt_set, PackageFlag(ExposePackage), PackageArg(PackageArg), ModRenaming(ModRenaming))
+import GHC.Driver.Session (projectVersion, PackageDBFlag(PackageDB), PkgDbRef(PkgDbPath), TrustFlag(TrustPackage), gopt_set, xopt_set, PackageFlag(ExposePackage), PackageArg(PackageArg), ModRenaming(ModRenaming), runCmdLineP, setFlagsFromEnvFile)
+import GHC.Driver.CmdLine (runEwM)
 import GHC.Types.SourceText (SourceText(NoSourceText))
 import GHC.Driver.Ppr (showSDocForUser)
-import GHC.Utils.Outputable (ppr, Outputable)
+import GHC.Utils.Outputable (Outputable, ppr)
 --import GHC.Unit.Module.Graph (showModMsg, mgModSummaries')
 import GHC.Core.TyCo.Ppr (pprType)
 import GHC.Utils.Encoding (zEncodeString)
@@ -148,8 +149,10 @@ initScriptSession ghcPkgPaths = do
                              "project-m36",
                              "bytestring"]
         packages = map (\m -> ExposePackage ("-package " ++ m) (PackageArg m) (ModRenaming True [])) required_packages
-  --liftIO $ traceShowM (showSDoc dflags' (ppr packages))
-    _ <- setSessionDynFlags dflags'
+    --liftIO $ traceShowM (showSDoc dflags' (ppr packages))
+    -- load GHC environment file, if specific in environment variables
+    dflags'' <- loadGhcEnvFile dflags'
+    _ <- setSessionDynFlags dflags''
     let unqualifiedModules = map (\modn -> IIDecl $ safeImportDecl modn Nothing) [
           "Prelude",
           "Data.Map",
@@ -429,4 +432,15 @@ convertGhcTypeToDatabaseContextFunctionAtomType dflags tyConv dbcFuncMonadType t
       rest <- convertGhcTypeToDatabaseContextFunctionAtomType dflags tyConv dbcFuncMonadType (ft_res fun)
       pure (arg <> rest)
     other -> Left (UnsupportedTypeConversionError (pprShow other dflags))
+
+loadGhcEnvFile :: GhcMonad m => DynFlags -> m DynFlags
+loadGhcEnvFile dflags = do
+  mEnvPath <- liftIO $ lookupEnv "GHC_ENVIRONMENT"
+--  traceShowM ("GHC_ENVIRONMENT"::String, mEnvPath)
+  case mEnvPath of
+    Nothing -> pure dflags
+    Just envPath -> do
+      content <- liftIO $ readFile envPath
+      let (_, dflags') = runCmdLineP (runEwM (setFlagsFromEnvFile envPath content)) dflags
+      pure dflags'
 #endif
diff --git a/test/TutorialD/Interpreter/TestModule.hs b/test/TutorialD/Interpreter/TestModule.hs
@@ -16,8 +16,8 @@ projectM36Functions :: EntryPoints ()
 projectM36Functions = do
   declareAtomFunction "multiTypesAtomFunc"  
   declareAtomFunction "applyDiscount" 
-  declareDatabaseContextFunction "addSale" (allPermissionsForRoleId adminRoleId)
-  declareDatabaseContextFunction "multiTypesDBCFunc" (allPermissionsForRoleId adminRoleId)  
+  declareDatabaseContextFunction "addSale" (allPermissionsForRole "admin")
+  declareDatabaseContextFunction "multiTypesDBCFunc" (allPermissionsForRole "admin")  
 
 applyDiscount :: Integer -> Integer -> Integer
 applyDiscount age price =
