phorge-phorge/resources/sql/patches/088.audit.sql



ALTER TABLE {$NAMESPACE}_owners.owners_packagecommitrelationship
  ADD COLUMN `auditStatus` varchar(64) NOT NULL,
  ADD COLUMN `auditReasons` longtext NOT NULL,
  DROP KEY `packagePHID`,
  ADD KEY `packagePHID` (`packagePHID`, `auditStatus`, `id`);

CREATE TABLE IF NOT EXISTs {$NAMESPACE}_audit.audit_comment (
  `id` int(10) unsigned NOT NULL AUTO_INCREMENT,
  `phid` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
  `targetPHID` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
  `actorPHID` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
  `dateCreated` int(10) unsigned NOT NULL,
  `dateModified` int(10) unsigned NOT NULL,
  `action` varchar(64) NOT NULL,
  `content` longtext NOT NULL,
  PRIMARY KEY `id` (`id`),
  KEY `targetPHID` (`targetPHID`, `actorPHID`, `id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1;

ALTER TABLE {$NAMESPACE}_owners.owners_package
  ADD COLUMN `auditingEnabled` tinyint(1) NOT NULL DEFAULT 0;
Issue CREATE DATABASE before ALTER TABLE in patch 88 Summary: Sometimes the SQL account may not have CREATE DATABASE privileges, so try to fail this script immediately rather than having it work halfway if the permission is missing. This is just a minor tweak to try to slightly improve some cases, the long term fix is T345 but that's a good deal more work than this. Test Plan: Visually inspected patch; trivial change. Reviewers: jungejason, btrahan, skrul Reviewed By: skrul CC: aran, skrul Differential Revision: https://secure.phabricator.com/D1287 2011-12-28 01:24:50 +01:00
SQL Patch Management: SQL Changes Summary: Splits out the SQL changes. These are most of the changes, but primarily mechanical: - Moved "initialize.sql" to "0000.legacy.sql" and partially reverted to an older version, such that patches 0000 + 000 + 001 + ... + 137 put us in the right state when applied sequentially. - Removed "create database" commands from all SQL. These are handled by separate DB patches now, so we have the data to do operations like "storage databases" (list databases) and "storage destroy" (drop databases). - Removed "phabricator_" namespace from all SQL, and replaced with "{$NAMESPACE}_" token so we can namespace databases. - Shortened some column lengths so patches apply correctly if originally created as InnoDB; also a few similar tweaks elsewhere. Test Plan: See D2323 for discussion and test plan. Reviewers: edward, vrana, btrahan, jungejason Reviewed By: btrahan CC: aran Maniphest Tasks: T140, T345 Differential Revision: https://secure.phabricator.com/D2329 2012-04-30 16:53:53 +02:00
			`ALTER TABLE {$NAMESPACE}_owners.owners_packagecommitrelationship`
Add Basic Auditing Functionalities Summary: add basic auditing functionalities. For the related commits for a package, we detect the following conditions which might be suspicious to the owners of the package: * no revision specified * revision not found * author not match * reviewedby not match * owners not involved * commit author not recognized The owners of the package can change the status of the audit entries by accepting it or specify concern. The owner can turn on/off the auditing for a package. Test Plan: * verified that non-owner cannot see the details of the audit and cannot modify it * verified that all the audit reasons can be detected * tested dropdown filtering and package search * verified really normal change not detected * verified accept/concern a commit * tested enable/disable a package for auditing * verified one audit applies to all <commit, packages> to the packages the auditor owns * verified that re-parsing a commit won't have effect if there exists a relationship for <commit, package> already Reviewers: epriestley, nh Reviewed By: epriestley CC: aran, benmathews, btrahan, mpodobnik, prithvi, TomL, epriestley Differential Revision: 1242 2011-12-18 00:52:54 +01:00			ADD COLUMN `auditStatus` varchar(64) NOT NULL,
			ADD COLUMN `auditReasons` longtext NOT NULL,
			DROP KEY `packagePHID`,
			ADD KEY `packagePHID` (`packagePHID`, `auditStatus`, `id`);

SQL Patch Management: SQL Changes Summary: Splits out the SQL changes. These are most of the changes, but primarily mechanical: - Moved "initialize.sql" to "0000.legacy.sql" and partially reverted to an older version, such that patches 0000 + 000 + 001 + ... + 137 put us in the right state when applied sequentially. - Removed "create database" commands from all SQL. These are handled by separate DB patches now, so we have the data to do operations like "storage databases" (list databases) and "storage destroy" (drop databases). - Removed "phabricator_" namespace from all SQL, and replaced with "{$NAMESPACE}_" token so we can namespace databases. - Shortened some column lengths so patches apply correctly if originally created as InnoDB; also a few similar tweaks elsewhere. Test Plan: See D2323 for discussion and test plan. Reviewers: edward, vrana, btrahan, jungejason Reviewed By: btrahan CC: aran Maniphest Tasks: T140, T345 Differential Revision: https://secure.phabricator.com/D2329 2012-04-30 16:53:53 +02:00			`CREATE TABLE IF NOT EXISTs {$NAMESPACE}_audit.audit_comment (`
Add Basic Auditing Functionalities Summary: add basic auditing functionalities. For the related commits for a package, we detect the following conditions which might be suspicious to the owners of the package: * no revision specified * revision not found * author not match * reviewedby not match * owners not involved * commit author not recognized The owners of the package can change the status of the audit entries by accepting it or specify concern. The owner can turn on/off the auditing for a package. Test Plan: * verified that non-owner cannot see the details of the audit and cannot modify it * verified that all the audit reasons can be detected * tested dropdown filtering and package search * verified really normal change not detected * verified accept/concern a commit * tested enable/disable a package for auditing * verified one audit applies to all <commit, packages> to the packages the auditor owns * verified that re-parsing a commit won't have effect if there exists a relationship for <commit, package> already Reviewers: epriestley, nh Reviewed By: epriestley CC: aran, benmathews, btrahan, mpodobnik, prithvi, TomL, epriestley Differential Revision: 1242 2011-12-18 00:52:54 +01:00			`id` int(10) unsigned NOT NULL AUTO_INCREMENT,
			`phid` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
			`targetPHID` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
			`actorPHID` varchar(64) CHARACTER SET latin1 COLLATE latin1_bin NOT NULL,
			`dateCreated` int(10) unsigned NOT NULL,
			`dateModified` int(10) unsigned NOT NULL,
			`action` varchar(64) NOT NULL,
			`content` longtext NOT NULL,
			PRIMARY KEY `id` (`id`),
			KEY `targetPHID` (`targetPHID`, `actorPHID`, `id`)
			`) ENGINE=InnoDB DEFAULT CHARSET=latin1;`

SQL Patch Management: SQL Changes Summary: Splits out the SQL changes. These are most of the changes, but primarily mechanical: - Moved "initialize.sql" to "0000.legacy.sql" and partially reverted to an older version, such that patches 0000 + 000 + 001 + ... + 137 put us in the right state when applied sequentially. - Removed "create database" commands from all SQL. These are handled by separate DB patches now, so we have the data to do operations like "storage databases" (list databases) and "storage destroy" (drop databases). - Removed "phabricator_" namespace from all SQL, and replaced with "{$NAMESPACE}_" token so we can namespace databases. - Shortened some column lengths so patches apply correctly if originally created as InnoDB; also a few similar tweaks elsewhere. Test Plan: See D2323 for discussion and test plan. Reviewers: edward, vrana, btrahan, jungejason Reviewed By: btrahan CC: aran Maniphest Tasks: T140, T345 Differential Revision: https://secure.phabricator.com/D2329 2012-04-30 16:53:53 +02:00			`ALTER TABLE {$NAMESPACE}_owners.owners_package`
Add Basic Auditing Functionalities Summary: add basic auditing functionalities. For the related commits for a package, we detect the following conditions which might be suspicious to the owners of the package: * no revision specified * revision not found * author not match * reviewedby not match * owners not involved * commit author not recognized The owners of the package can change the status of the audit entries by accepting it or specify concern. The owner can turn on/off the auditing for a package. Test Plan: * verified that non-owner cannot see the details of the audit and cannot modify it * verified that all the audit reasons can be detected * tested dropdown filtering and package search * verified really normal change not detected * verified accept/concern a commit * tested enable/disable a package for auditing * verified one audit applies to all <commit, packages> to the packages the auditor owns * verified that re-parsing a commit won't have effect if there exists a relationship for <commit, package> already Reviewers: epriestley, nh Reviewed By: epriestley CC: aran, benmathews, btrahan, mpodobnik, prithvi, TomL, epriestley Differential Revision: 1242 2011-12-18 00:52:54 +01:00			ADD COLUMN `auditingEnabled` tinyint(1) NOT NULL DEFAULT 0;