[Home] [Help]
1: package body bism_core as
2: /* $Header: bibcoreb.pls 120.3 2006/04/03 05:20:50 akbansal noship $ */
3:
4: function get_next_element(str varchar2,delimiter varchar2,startpos in out nocopy integer)
5: return varchar2
57:
58: if len <> 0 then
59: begin
60: select object_id,object_type_id into oid,typeid from bism_objects where folder_id = fid and object_name = newstr and user_visible = 'Y';
61: ret := bism_core.check_lookup_access(oid,typeid,'Y',myid);
62: if ret = 'y' then
63: return get_last_object_id(oid,path,startpos,myid);
64: end if;
65: exception
191:
192: -- the following check if condition to be removed
193: if ret = 'y' then
194: delete from bism_objects where folder_id = fid and object_name = objname and user_visible= 'Y';
195: if bism_core.v_auto_commit = TRUE then
196: commit;
197: end if;
198: else
199: raise_application_error(BISM_ERRORCODES.INSUFFICIENT_PRIVILEGES,'Insufficient privilege');
217: ret := bism_access_control.check_fullcontrol_access(fid,grantor);
218: if ret = 'y' then
219: select subject_id into sub_id from bism_subjects where subject_name = grantee_name;
220: insert into bism_permissions (subject_id,object_id,privilege) values(sub_id,fid,priv);
221: if bism_core.v_auto_commit = TRUE then
222: commit;
223: end if;
224:
225: end if;
782: decode(LAST_MODIFIED_BY,LAST_MODIFIED_BY,(select subject_name from bism_subjects where subject_id = LAST_MODIFIED_BY and subject_type='u'), null),
783: OBJECT_NAME,TITLE,APPLICATION,DATABASE,
784: DESCRIPTION,KEYWORDS,APPLICATION_SUBTYPE1,COMP_SUBTYPE1,COMP_SUBTYPE2,COMP_SUBTYPE3,TIME_DATE_LAST_ACCESSED
785: from bism_objects
786: where 'y' = bism_core.check_get_attrs_access(p_fid,p_objname,p_myid)
787: and user_visible = 'Y'
788: and folder_id = p_fid
789: and object_name = p_objname;
790: return v_rc;
961: when no_data_found then
962: raise_application_error(BISM_ERRORCODES.OBJECT_NOT_FOUND,'Object not found');
963: end;
964:
965: if bism_core.v_auto_commit = TRUE then
966: commit;
967: end if;
968:
969: end;
1196: priv bism_permissions.privilege%type := 0;
1197: copy_not_allowed boolean := true;
1198: begin
1199: -- make sure that the destination folder is not a sub folder of src folder
1200: copy_not_allowed := bism_core.is_src_ancestor_of_target(srcfid,tgtfid);
1201: if copy_not_allowed = true then
1202: raise_application_error(BISM_ERRORCODES.ILLEGAL_COPY,'Target folder is subfolder of source folder');
1203: end if;
1204: -- make sure user has atleast READ access on all sub folders
1348: when no_data_found then
1349: raise_application_error(BISM_ERRORCODES.OBJECT_NOT_FOUND,'Object not found');
1350: end;
1351:
1352: if bism_core.v_auto_commit = TRUE then
1353: commit;
1354: end if;
1355:
1356: end;
1617: if path.exists(idx) then
1618:
1619: begin
1620: select object_id,object_type_id,object_name,user_visible into oid,typeid,oname,visible from bism_objects where folder_id = fid and object_name = path(idx).objname and user_visible = 'Y';
1621: ret := bism_core.check_lookup_access(oid,typeid,visible,myid);
1622: if ret = 'y' then
1623: lookup_output.extend();
1624: lookup_output(lookup_output.count) := bism_lookup_info_out(oname,oid,typeid);
1625: idx := idx + 1;
1654: select object_id,object_type_id,object_name,user_visible into oid,typeid,oname,visible from bism_objects where folder_id = fid and object_name = newstr and user_visible = 'Y';
1655:
1656: -- modified by ccchow, no need to check access of intermediate folders
1657: if startpos = 0 then
1658: ret := bism_core.check_lookup_access(oid,typeid,visible,myid);
1659: else
1660: ret := 'y';
1661: end if;
1662:
1807: (select subject_name from bism_subjects where subject_id = LAST_MODIFIED_BY and subject_type='u'),
1808: null),
1809: OBJECT_NAME, TITLE, APPLICATION, DATABASE, DESCRIPTION, KEYWORDS, XML,
1810: APPLICATION_SUBTYPE1, COMP_SUBTYPE1, COMP_SUBTYPE2, COMP_SUBTYPE3,
1811: decode(USER_VISIBLE,'Y',bism_core.get_object_full_name(object_id),'') FULLNAME
1812: from bism_objects where
1813: -- folder does not have aggregate info
1814: object_id = oid and
1815: -- apply security check
1820: -- else calls check_read_access
1821: -- Henry and Yekesa decided to put in this change to allow users with
1822: -- LIST access on a folder to be able to see the folder attribs (i.e
1823: -- LIST access should allow user to load the folder object)
1824: 'y'=bism_core.check_lookup_access(oid,'100','y',myid);
1825: return rc;
1826: exception
1827: when no_data_found then
1828: raise_application_error(BISM_ERRORCODES.OBJECT_NOT_FOUND,'Object not found');
1850: null),
1851: T1.OBJECT_NAME, T1.TITLE, T1.APPLICATION, T1.DATABASE, T1.DESCRIPTION, T1.KEYWORDS, T1.XML,
1852: T1.APPLICATION_SUBTYPE1, T1.COMP_SUBTYPE1, T1.COMP_SUBTYPE2, T1.COMP_SUBTYPE3, T1.TIME_DATE_LAST_ACCESSED, T2.container_id,
1853: T2.containee_id,T2.AGGREGATE_INFO,
1854: decode(T1.USER_VISIBLE,'Y',bism_core.get_object_full_name(object_id),'') FULLNAME
1855: from bism_objects T1, bism_aggregates T2
1856: where
1857: /* make sure it is a visible object*/
1858: 1 = (select '1' from bism_objects where object_id = objid and user_visible = 'Y') and
1865: ) and T1.object_id = T2.containee_id
1866: --apply security check
1867: /* technically speaking we dont have to check the privilege any more
1868: because th euser would have access to the OID only when could access that object*/
1869: and 'y' = bism_core.check_lookup_access(T1.object_id,T1.object_type_id,T1.user_visible,myid);
1870: if traceLastLoaded = '1' then
1871: select sysdate into current_date from dual;
1872: update bism_objects set TIME_DATE_LAST_ACCESSED = current_date where object_id = objid;
1873: end if;
1923: 3. now apply the privileges, we dont care whether it is anony or named because
1924: the privileges are set at the folder level
1925: */
1926: and
1927: 'y' = bism_core.check_lookup_access(T1.object_id,T1.object_type_id,T1.user_visible,myid);
1928: return rc;
1929: exception
1930: when no_data_found then
1931: raise_application_error(BISM_ERRORCODES.OBJECT_NOT_FOUND,'Object not found');
1954: /*1. containee_id is not fetched from bism_aggregates because it is pulling several extra rows
1955: when an object is shared by multiple containers, however containee_id is same as object_id
1956: from bism_objects */
1957: T.container_id,T.aggregate_info,
1958: decode(T.USER_VISIBLE,'Y',bism_core.get_object_full_name(T.OBJECT_ID),'') FULLNAME
1959: from
1960: (
1961: SELECT /*+ NO_MERGE */ A.USER_VISIBLE, A.OBJECT_TYPE_ID, A.VERSION, A.TIME_DATE_CREATED,
1962: /*2. do not fetch container_id from bism_objects use container_id from bism_aggreagtes instead*/
1982: called before this stmt gets executed has indeed checked for lookup_access
1983: but dropping this check does not seem to improve perf. so I am leaving it in
1984: for now */
1985: where
1986: 'y' = bism_core.check_lookup_access(T.object_id, T.object_type_id, T.user_visible, myid);
1987:
1988: /* now set lastLoaded attribute*/
1989: if traceLastLoaded = '1' then
1990: select sysdate into current_date from dual;
2014: is
2015: ret varchar2(1) := 'n';
2016: status number;
2017: begin
2018: ret := bism_core.check_modify_attrs_access(fid, objname, myid, status, callerid);
2019: if ret = 'y' then
2020: update bism_objects set object_name = newobjname ,
2021: time_date_modified = sysdate ,
2022: last_modified_by = myid
3276: )
3277: and container_id <> '30'
3278: )
3279: )
3280: select /*+ INDEX(BISM_OBJECTS) */ bism_core.get_object_full_name(object_id), object_type_id
3281: from bism_objects
3282: where
3283: object_id in ( select object_id from visible_table where user_visible = 'Y' )
3284: union
3281: from bism_objects
3282: where
3283: object_id in ( select object_id from visible_table where user_visible = 'Y' )
3284: union
3285: select /*+ INDEX(BISM_OBJECTS) */ bism_core.get_object_full_name(object_id), object_type_id
3286: from bism_objects
3287: where object_id
3288: in
3289: (
3308: if a_sub_id is null or length(a_sub_id) = 0 then
3309: raise_application_error(-20503,'User not found');
3310: end if;
3311:
3312: ret := bism_core.check_modify_attrs_access(a_fid, a_obj_name,a_sub_id , status, 1);
3313:
3314: if ret = 'y' then
3315: -- if created by and modified by were specified, look them up, we need them later
3316: if a_attr_name = 'created_by' or a_attr_name = 'CREATED_BY' then
3370: if a_sub_id is null or length(a_sub_id) = 0 then
3371: raise_application_error(-20503,'User not found');
3372: end if;
3373:
3374: ret := bism_core.check_modify_attrs_access(a_fid, a_obj_name,a_sub_id , status, 1);
3375: if ret = 'y' then
3376: begin
3377: if a_attr_val is not null then
3378: if a_attr_name = 'time_date_created' then
3428: if a_sub_id is null or length(a_sub_id) = 0 then
3429: raise_application_error(-20503,'User not found');
3430: end if;
3431:
3432: ret := bism_core.check_modify_attrs_access(a_fid, a_obj_name,a_sub_id , status, 1);
3433: if ret = 'y' then
3434: begin
3435: -- there should be three bind variables in the incoming update statement
3436: -- from modifyATtributes API
3450: else
3451: v_auto_commit := FALSE;
3452: end if;
3453: end;
3454: end bism_core;