Fixed AutoRefresh crashing when database triggers are set up from the…

… ihp_authenticated role The ihp_authenticated role typically doesn't have permissions to set up triggers. This caused the first AutoRefresh call to a table to fail if row level security policies have been used and IHP tried to call the database from the ihp_authenticated role.
digitallyinduced · Dec 29, 2021 · d03da4f · d03da4f
1 parent 09725bc
commit d03da4f
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/IHP/AutoRefresh.hs b/IHP/AutoRefresh.hs
@@ -162,7 +162,11 @@ registerNotificationTrigger touchedTablesVar autoRefreshServer = do
     pgListener <- get #pgListener <$> readIORef autoRefreshServer
     subscriptions <-  subscriptionRequired |> mapM (\table -> do
         let createTriggerSql = notificationTrigger table
-        sqlExec createTriggerSql ()
+
+        -- We need to add the trigger from the main IHP database role other we will get this error:
+        -- ERROR:  permission denied for schema public
+        withRowLevelSecurityDisabled do
+            sqlExec createTriggerSql ()
 
         pgListener |> PGListener.subscribe (channelName table) \notification -> do
                 sessions <- (get #sessions) <$> readIORef autoRefreshServer