xssbook2/db/rest/post/api_post_insert.sql

40 lines
662 B
PL/PgSQL

CREATE FUNCTION _api.post_insert()
RETURNS TRIGGER
LANGUAGE plpgsql VOLATILE
AS $BODY$
DECLARE
_user_id INTEGER;
BEGIN
_user_id = _api.get_user_id();
PERFORM _api.validate_text(
_text => NEW.content,
_column => 'content',
_min => 1,
_max => 4096
);
INSERT INTO admin.post (
user_id,
content
) VALUES (
_user_id,
NEW.content
);
RETURN NEW;
END
$BODY$;
GRANT EXECUTE ON FUNCTION _api.post_insert()
TO rest_user;
GRANT INSERT ON TABLE api.post
TO rest_user;
GRANT INSERT ON TABLE admin.post
TO rest_user;
CREATE TRIGGER api_post_insert_trgr
INSTEAD OF INSERT
ON api.post
FOR EACH ROW
EXECUTE PROCEDURE _api.post_insert();