From 50e458b8951f036c487d7854ebe438e4dfbd6c4f Mon Sep 17 00:00:00 2001
From: Frederick Muriuki Muriithi
Date: Fri, 7 Jun 2024 11:44:37 -0500
Subject: Update role assignment: user resource_roles table

We no longer use the group_roles table, and have moved to the less
privilege-escalation-prone resource_roles table. This commit updates
the queries to use the newer resource_roles table.
---
 scripts/migrate_existing_data.py | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

(limited to 'scripts/migrate_existing_data.py')

diff --git a/scripts/migrate_existing_data.py b/scripts/migrate_existing_data.py
index 1b44666..336ce72 100644
--- a/scripts/migrate_existing_data.py
+++ b/scripts/migrate_existing_data.py
@@ -383,15 +383,13 @@ def entry(authdbpath, mysqldburi):
               biodb.database_connection(mysqldburi) as bioconn):
             admin = select_sys_admin(sys_admins(authconn))
             the_admin_group = admin_group(authconn, admin)
-            resources = default_resources(
-                authconn, the_admin_group)
+            resources = default_resources(authconn, the_admin_group)
             add_resources_to_group(authconn, resources, the_admin_group)
             for resource in resources:
                 assign_data_to_resource(
                     authconn, bioconn, resource, the_admin_group)
                 with authdb.cursor(authconn) as cursor:
-                    __assign_resource_owner_role__(
-                        cursor, resource, admin, the_admin_group)
+                    __assign_resource_owner_role__(cursor, resource, admin)
     except DataNotFound as dnf:
         print(dnf.args[0], file=sys.stderr)
         sys.exit(1)
-- 
cgit v1.2.3