feat: security feature - login history

Show the user the last login information.
ApsaraDB · manfuldrifter · Feb 24, 2025 · Feb 26, 2025 · Feb 26, 2025 · Mar 17, 2025
commit 95f6d6f8b7d560b7611dd5d9f556f1a571bee7f5
diff --git a/external/polar_login_history/polar_login_history.c b/external/polar_login_history/polar_login_history.c
diff --git a/src/backend/catalog/Catalog.pm b/src/backend/catalog/Catalog.pm
@@ -313,7 +313,7 @@ sub ParseData
 				# We're treating the input line as a piece of Perl, so we
 				# need to use string eval here. Tell perlcritic we know what
 				# we're doing.
-				eval '$hash_ref = ' . $_;   ## no critic (ProhibitStringyEval)
+				eval '$hash_ref = ' . $_;    ## no critic (ProhibitStringyEval)
 				if (!ref $hash_ref)
 				{
 					die "$input_file: error parsing line $.:\n$_\n";

diff --git a/src/backend/commands/user.c b/src/backend/commands/user.c
@@ -54,6 +54,7 @@ check_password_hook_type check_password_hook = NULL;
  * POLAR: login history
  */
 polar_remove_login_history_hook_type polar_remove_login_history_hook = NULL;
+
 /* POLAR end */
 
 static void AddRoleMems(const char *rolename, Oid roleid,
@@ -1080,8 +1081,8 @@ DropRole(DropRoleStmt *stmt)
 		CommandCounterIncrement();
 
 		/*
-		 * POLAR: login history
-		 * Delete the login history information related to the role.
+		 * POLAR: login history Delete the login history information related
+		 * to the role.
 		 */
 		if (polar_remove_login_history_hook)
 			polar_remove_login_history_hook(roleid);

diff --git a/src/backend/tcop/postgres.c b/src/backend/tcop/postgres.c
@@ -4511,8 +4511,7 @@ PostgresMain(const char *dbname, const char *username)
 	int			microsecs = 0;
 
 	/*
-	 * POLAR: login history
-	 * Indicate that the login process starts.
+	 * POLAR: login history Indicate that the login process starts.
 	 */
 	polar_login_flag = true;
 	/* POLAR end */
@@ -4686,8 +4685,8 @@ PostgresMain(const char *dbname, const char *username)
 	MemoryContextSwitchTo(TopMemoryContext);
 
 	/*
-	 * POLAR: login history
-	 * Record the successful login information of the user.
+	 * POLAR: login history Record the successful login information of the
+	 * user.
 	 */
 	if (polar_update_login_history_hook)
 		polar_update_login_history_hook(true);

diff --git a/src/backend/utils/error/elog.c b/src/backend/utils/error/elog.c
@@ -139,8 +139,9 @@ int			polar_audit_log_flush_timeout = 0;
 /*
  * POLAR: login history
  */
-bool polar_login_flag = false;
+bool		polar_login_flag = false;
 polar_update_login_history_hook_type polar_update_login_history_hook = NULL;
+
 /* POLAR end */
 
 #ifdef HAVE_SYSLOG
@@ -549,8 +550,7 @@ errfinish(const char *filename, int lineno, const char *funcname)
 	ErrorContextCallback *econtext;
 
 	/*
-	 * POLAR: login history
-	 * Record the failed login information of the user.
+	 * POLAR: login history Record the failed login information of the user.
 	 * Most of the errors caused by users during login are fatal.
 	 */
 	if (edata->elevel == FATAL && polar_update_login_history_hook)

diff --git a/src/test/perl/PostgreSQL/Test/Cluster.pm b/src/test/perl/PostgreSQL/Test/Cluster.pm
@@ -1619,8 +1619,8 @@ sub get_free_port
 		{
 			foreach my $addr (qw(127.0.0.1),
 				($use_tcp && $PostgreSQL::Test::Utils::windows_os)
-				  ? qw(127.0.0.2 127.0.0.3 0.0.0.0)
-				  : ())
+				? qw(127.0.0.2 127.0.0.3 0.0.0.0)
+				: ())
 			{
 				if (!can_bind($addr, $port))
 				{
@@ -4288,8 +4288,7 @@ sub polar_wait_for_startup
 
 ##########################################################################
 
-package PostgreSQL::Test::Cluster::V_11
-  ;    ## no critic (ProhibitMultiplePackages)
+package PostgreSQL::Test::Cluster::V_11;    ## no critic (ProhibitMultiplePackages)
 
 # parent.pm is not present in all perl versions before 5.10.1, so instead
 # do directly what it would do for this:
@@ -4319,8 +4318,7 @@ sub init
 
 ##########################################################################
 
-package PostgreSQL::Test::Cluster::V_10
-  ;    ## no critic (ProhibitMultiplePackages)
+package PostgreSQL::Test::Cluster::V_10;    ## no critic (ProhibitMultiplePackages)
 
 # use parent -norequire, qw(PostgreSQL::Test::Cluster::V_11);
 push @PostgreSQL::Test::Cluster::V_10::ISA, 'PostgreSQL::Test::Cluster::V_11';

diff --git a/src/test/polar_pl/t/046_polar_login_history.pl b/src/test/polar_pl/t/046_polar_login_history.pl
@@ -16,19 +16,18 @@
 $node->start;
 
 $node->append_conf('postgresql.conf',
-    "polar_internal_shared_preload_libraries = 'polar_login_history'");
+	"polar_internal_shared_preload_libraries = 'polar_login_history'");
 $node->restart;
 
-$node->append_conf('postgresql.conf',
-	"polar_login_history.enable = on");
+$node->append_conf('postgresql.conf', "polar_login_history.enable = on");
 $node->restart;
 
-is( $node->safe_psql('postgres', 'show polar_login_history.enable;'),
-    'on', 'login history function is enabled');
+is($node->safe_psql('postgres', 'show polar_login_history.enable;'),
+	'on', 'login history function is enabled');
 
 $node->safe_psql('postgres', 'create user zhangsan;');
-is( $node->psql('postgres', undef, extra_params => [ '-U', 'zhangsan' ]),
-    0, 'login success');
+is($node->psql('postgres', undef, extra_params => [ '-U', 'zhangsan' ]),
+	0, 'login success');
 $node->safe_psql('postgres', 'drop user zhangsan;');
 
 $node->stop;

diff --git a/src/tools/polar_sort_subdir.pl b/src/tools/polar_sort_subdir.pl
@@ -51,7 +51,7 @@
 my %patterns = (
 	'SUBDIRS \+=' => {},
 	'ALWAYS_SUBDIRS \+=' => {}
-	  # Add more patterns as needed
+	# Add more patterns as needed
 );
 
 foreach my $pattern (keys %patterns)