ROADMAP.md

Wanted

• ✔︎ prefixes, directories
• ✔︎ replace link with one with different token
• ✔︎ Native postgres URL type + functions
• ✔︎ way to convert relative to absolute links: dlvalue(relative_link text, base_link datalink)
• ✔︎ systemd scripts for datalinker
• ✔︎ install pg_wrapper for pg_datalinker
• install init.d scripts
• ✔︎ Transactional File IO functions + file directories / bfile like fileio functionality
• ✔︎ For constructor form dlvalue(basename,dirname) could be used, bfilename like
• ✔︎ datalink.write_text() function to create new files
• some sort of permissions as to what and who gets to do where. probably postgres acls.
  • ✔︎ SELECT - read file contents
  • REFERENCES - link to files from database (WRITE ACCESS BLOCKED)
  • ✔︎ DELETE - delete files (ON UNLINK DELETE)
  • ✔︎ CREATE - create new files
• ✔︎ some sort of file to url mapping. dlurl* functions could use these.
• ✔︎ make dlurlcomplete() and dlurlpath() include read access tokens when read_access = 'DB'
• ✔︎ make read access tokens work with table datalink.insight ( ctime, read_token, link_token, state, role, pid, data )
• ✔︎ SUID/SGID shell command dlcat to read contents from filenames with embedded read tokens, returned by dlurlpath()
• ✔︎ apache module to make it work with embedded read tokens, returned by dlurlcomplete()
• ✔︎ make dlfm command line tool for datalinker admin
• dlfm suspend/unsuspend operations for better dump/restore (suspend=stop datalinker and restore all original file permissions)
• dlfm interactive setup
• dlfm usage
• make it possible to change LCO with datalink values present
• add copy file and move file operations
• ✔︎ Files on remote servers. Perhaps foreign servers + dblink
• ✔︎ make domains on datalinks work
• make datalinks work with arrays
• ✔︎ better documentation (manual)
• better handling of already immutable files
• apache mod_perl directory autoconfigurator
• curl_get(url,params json) function which supplies query string from json
• add curl_post and curl_put functions
• ✔︎ add curl save-to-file functions, use for DLREPLACECONTENT
• ✔︎ add vacuum procedure for deleting temporary files (those not linked)
• add vacuum procedure for managing datalink.insight
• ✔︎ add mtime to dl_linked_files and a function to check if a datalink has changed
• foreign servers only somewhat work. They should work for stat(), too.
• handle symbolic links better (resolve?)
• handle directories better (forbid alltogether?)
• handle directories/bundles better
• make new tokens/backups only if file changed
• add dirname,extension,basename,filename to uri_get/set
• add check constraint(s) for valid urls for link_control='NO' (instead of triggers)
• ✔︎ url beautifier function for sanitizing broken urls
• ✔︎ convert URI to/from IRI (unicode URI), punycode
• ✔︎ file writes for non superusers
• web reads for non superusers
• make read_text() read updated but not yet commited files in the transaction which changed them
• ✔︎ functions to read and write binary files
• functions to read and write text files in encodings other than utf8
• per URL (with wildcards) access controls for curl_get and curl_save
• proper substring instead of file position offsets in substr()
• FUSE filesystem DLFF which supports READ ACCESS DB tokens
• function to create new unused filename
• improve support for data: URLs
• keep temporary files when they are linked to READ ACCESS FS columns
• show warning when setting LCO when missing datalinker
• make dlreplacecontent() handle local files differently (and support read tokens!)
• make dlreplacecontent() work with forereign servers
• make dlreplacecontent() work well in all combinations of web and file (curl_put?)

Advanced

• better multiple servers support
• integrate with postgres backup and replication

Bugs and Issues

• create table as / select into bug (data is loaded before triggers are run), forbid for lco > 0

• ✔︎ domain on domain on datalink doesn't work

• datalinker service spoofing (~www-data/.pg_service.conf vs dlcat)

• update link=dlnewcopy(link) for on unlink delete looses file

• datalinker: permissions are wrong on restored files

• multiple updates with write_text() in one transaction fails

• apache handler vs unicode urls

• critical states in whole setup (sometimes permissions don't get restored ok)

Todo

• ✔︎ CLI tool for datalinker admin (dlfm)
• ✔︎ much better error handling in datalinker
• ✔︎ dlvalue(null) → null, dlvalue('') → null
• ✔︎ file path sanity checking (handle or forbid ..)
• ✔︎ url sanity checking (handle ..)
• ✔︎ better URL syntax checking
• ✔︎ block files only on write_access=blocked
• ✔︎ URL canonization
• ✔︎ dlvalue autodetect link type
• ✔︎ use any string as link type (URL or FS)
• ✔︎ handle write_access = any ['BLOCKED','ADMIN','TOKEN']
• ✔︎ dlurlpath() must include token
• ✔︎ make dlvalue work for comment-only links
• ✔︎ set linked file owner to table owner
• ✔︎ make this work better with pg_dump
• ✔︎ dlurlcomplete() must include token
• ✔︎ update trigger on dl_columns to call datalink.modlco()
• ✔︎ optimize table triggers (do not install them if mco=0)
• ✔︎ throw warnings/errors if datalinker is not running when it should
• ✔︎ additional permission checks for delete
• ✔︎ permissions on datalink.columns for non superusers
• additional permission checks for references
• ✔︎ consider WRITE ACCESS ADMIN/TOKEN and with respect to RECOVERY YES and file replace.
• skip curl for integrity='ALL' and check for files only with file_stat (file exists but is not readable by postgres)
• check that src and dest in curl_save are not one and the same
• check src read permissions in curl_save
• handle // urls and paths better
• datalinker: use config file
• datalinker: revert files only when recovery=YES
• datalinker: better path checking, have definitive functions
• datalinker: optimise verbosity
• datalinker: better behaviour when not configured
• ✔︎ datalinker: don't die so easily
• datalinker: signal handler for graceful exit
• datalinker: update owner+group in dl_linked_files.info only if not default
• datalinker: log flush
• datalinker: log file protection from normal users
• ✔︎ function to wait for datalinker to finish
• better link state handling: unlink → linked, error → ?
• better file handling wrt. immutable state
• token decoding in dlvalue (now in dlpreviouscopy and dlnewcopy)
• fix DLPREVIOUSCOPY wrt to old token vs has_token vs read_access
• dlvalue better error handling
• make all this work well for non-superusers as well
• datalink.stat() execute permissions
• remove requirements to have root (pg_datalinker DB user) be a superuser, have a special non supersuser role for this
• handle extra json stuff dlvalue(address,datalink)
• verify if ok: user (current role vs table owner) vs directory acls
• DLPREVIOUSCOPY is broken for has_token=0 ?
• add dlff client name to dl_authorize
• ✔︎ dl_link_ref check URL syntax again
• ✔︎ function datalink.commit() to sync up with the datalinker (wait for it to become idle)
• ✔︎ datalink.dl_status table to hold shared datalinker status
• make DLPREVIOUSCOPY() work all the way to the beginning of the file. This might require storing revision history
• ✔︎ make datalink.columns updatable by normal users
• ✔︎ show error count in datalink.usage
• show os owner in datalink.directory
• check permissions in curl_save()
• trigger on dl_new_files to check that files don't exist
• files with ON UNLINK DELETE don't get deleted if the have not been linked first
• substr() et al should throw a warning/error when file not found

Maybe

• ✔︎ perl function to read text file sequentialy and return a set of (i int,o bigint,line text)
• add DLVALUE(uri, ...)
• add DLVALUE(datalink)
• support for data: URLs
• directory listing function, maybe called datalink.catalog()
• ✔︎ add datalink.uri_get(datalink,...)
• ✔︎ create explicit datalink.exists(datalink) function, or perhaps datalink.get_info(datalink)
• ✔︎ more compact datalink storage (use 1 letter json keys)
• remove link_control from link_control_options (it is implied by dl_integrity)
• allow backups for read_access=fs LCO
• more pluggable filename+token handling so we can support more common token;basename convention
• ✔︎ add timing info to curl_get()
• ✔︎ better punycode support in dlvalue()
• support for http ranges in curl_get() (and apache handler!)
• perhaps FUSE could be useful?
• get rid of plperlu, needs new implementations of functions curl_get, file_stat and uri_set, read_, write_ ...
• perhaps pg_curl could be helpful?
• build simple webserver into pg_datalinker
• rename pg_linked_files to pg_files_linked, pg_admin_files to pg_files_new
• casts from datalink to file_path

BFile API

✔︎ FUNCTION FILEEXISTS (file_loc IN BFILE) RETURN INTEGER;

✔︎ PROCEDURE FILEGETNAME (file_loc IN BFILE, dir_alias OUT TEXT, filename OUT TEXT);

PROCEDURE OPEN (file_loc IN OUT BFILE, open_mode IN INTEGER := file_readonly);

FUNCTION ISOPEN (file_loc IN BFILE) RETURN INTEGER;

PROCEDURE CLOSE (file_loc IN OUT BFILE);

PROCEDURE FILECLOSEALL;

✔︎ FUNCTION GETLENGTH (file_loc IN BFILE) RETURN INTEGER;

PROCEDURE READ (file_loc IN BFILE, amount IN OUT INTEGER, offset IN INTEGER, buffer OUT RAW);

✔︎ FUNCTION SUBSTR (file_loc IN BFILE, amount IN INTEGER := 32767, offset IN INTEGER := 1) RETURN RAW;

✔︎ FUNCTION INSTR (file_loc IN BFILE, pattern IN RAW, offset IN INTEGER := 1,nth IN INTEGER := 1) RETURN INTEGER;

• fix to use less memory and respect offset
• fix to support patterns

PROCEDURE LOADFROMFILE(dest_lob IN OUT CLOB, src_file IN BFILE, amount IN INTEGER, dest_offset IN INTEGER := 1, src_offset IN INTEGER := 1);

FUNCTION COMPARE (lob_1 IN BFILE, lob_2 IN BFILE, amount IN INTEGER, offset_1 IN INTEGER := 1, offset_2 IN INTEGER := 1) RETURN INTEGER;

• perhaps with File::Compare