Does anyone have good suggestions for debugging a plpgsql tr Supabase #sql

Does anyone have good suggestions for debugging a ...

Denzo

01/13/2022, 4:59 PM

Does anyone have good suggestions for debugging a plpgsql trigger? I'm not sure what's wrong with mine and I can't read the output if the trigger just fails

chipilov

01/13/2022, 5:35 PM

You can try and log the error, like this

chipilov

01/13/2022, 5:35 PM

Copy code

create or replace function link_cosmos_userid() 
returns trigger 
language plpgsql 

as $$
begin
  update auth.users
  set raw_user_meta_data = jsonb_set(raw_user_meta_data, '{cosmos_userid}', get_cosmos_userid(new.email), true)
  where users.id = new.id
exception when others then
  raise warning 'Issue with trigger! Sqlstate: %, sqlerrm: %', SQLSTATE, SQLERRM;
end;
$$;

chipilov

01/13/2022, 5:35 PM

Then search for the log in the dashboard (Settings -> Logs -> Database)

chipilov

01/13/2022, 5:38 PM

if you still don't see the log, it's possible that the trigger is running with a role that does NOT have access to auth.users

chipilov

01/13/2022, 5:39 PM

in that case you can try to define the trigger as SECURITY DEFINER (i.e. the trigger will be run with the role that defined the trigger, NOT the role which triggered the action)

tourdownunder

01/13/2022, 6:18 PM

I’m on mobile and can’t verify. Though is your issue that a trigger always supposed to

return new

Denzo

01/14/2022, 8:23 AM

I'll have a look to see if this works, thanks for the advice guys 🙂

Denzo

01/14/2022, 8:47 AM

Just for reference if others run into this problem; both the

SECURITY DEFINER

and

return new

were likely culprits, but there's also something going on with my
jsonb_set()
call. I also needed to use

jsonb_insert()

instead

Denzo

01/14/2022, 8:47 AM

if I update some other varchar field it works fine

Denzo

01/14/2022, 8:47 AM

oh well, i can figure it out now 🙂

Denzo

01/14/2022, 9:53 AM

So yeah, my only problem now is the call to

get_cosmos_userid(new.email)

Copy code

sql
create or replace function link_cosmos_userid() 
returns trigger 
language plpgsql 
security definer
as $$
begin
    update auth.users
  set raw_user_meta_data = jsonb_insert(raw_user_meta_data, '{cosmos_userid}', get_cosmos_userid(new.email), true)
  where users.id = new.id;
  return new;
end;
$$;

Denzo

01/14/2022, 9:54 AM

this works just fine if I replace that function call with some hardcoded value

Denzo

01/14/2022, 9:54 AM

but what's strange is that that function works perfectly fine in isolation

chipilov

01/14/2022, 11:28 AM

what type does get_cosmos_userId return

Denzo

01/14/2022, 12:42 PM

yeah that was one of the problems, it was returning

text

but it needed to return

jsonb

Denzo

01/14/2022, 12:42 PM

now i can execute it just fine as sql, but it's still not working in the trigger for some reason

chipilov

01/14/2022, 12:43 PM

maybe the logs show the error - what do you see there?

Denzo

01/14/2022, 12:44 PM

so this works:

Copy code

sql
  UPDATE auth.users
  SET raw_user_meta_data = jsonb_insert(raw_user_meta_data, '{cosmos_userid}',  public.get_cosmos_userid('MY_EMAIL_ADDRESS_HERE'), true)
  WHERE users.email = 'MY_EMAIL_ADDRESS_HERE';

but this does not:

Copy code

sql
create or replace function public.link_cosmos_userid() 
returns trigger 
language plpgsql 
security definer
as $$
begin
  update auth.users
  set raw_user_meta_data = jsonb_insert(raw_user_meta_data, '{cosmos_userid}',  public.get_cosmos_userid(new.email), true)
  where users.id = new.id;
  return new;
end;
$$;

Denzo

01/14/2022, 12:45 PM

The log goes something like this:

Copy code

eexecute 3: with recursive pks_fks as ( -- pk + fk referencing col select conrelid as resorigtbl, unnest(conkey) as resorigcol from pg_constraint where contype IN ('p', 'f') union -- fk referenced col select confrelid, unnest(confkey) from pg_constraint where contype='f' ), views as ( select c.oid as view_id, n.nspname as view_schema, c.relname as view_name, r.ev_action as view_definition from pg_class c join pg_namespace n on n.oid = c.relnamespace join pg_rewrite r on r.ev_class = c.oid where c.relkind in ('v', 'm') and n.nspname = ANY($1 || $2) ), transform_json as ( select view_id, view_schema, view_name, -- the following formatting is without indentation on purpose -- to allow simple diffs, with less whitespace noise replace( replace( replace( replace( replace( replace( replace( replace( regexp_replace( replace( replace( replace( replace( replace( replace( replace( replace( replace( replace( view_definition::text, -- This conversion to json is heavily optimized for performance. -- The general idea is to use as few regexp_replace() calls as possible. -- Simple replace() is a lot faster, so we jump through some hoops -- to be able to use regexp_replace() only once. -- This has been tested against a huge schema with 250+ different views. -- The unit tests do NOT reflect all possible inputs. Be careful when changing this!

Denzo

01/14/2022, 12:46 PM

which doesn't make a lot of sense, but I get it consistently whenever my trigger is fired

chipilov

01/14/2022, 12:47 PM

no idea what this is

chipilov

01/14/2022, 12:47 PM

btw, I am not sure it's a very good idea to define stored procedures as security definer in the public schema

chipilov

01/14/2022, 12:47 PM

in practice this means that anyone can call them and they will be executed with the role that defined them - a bit of a tangent

Denzo

01/14/2022, 12:48 PM

oof, thanks for noticing that

Denzo

01/14/2022, 12:51 PM

not getting any additional logging when attempting to raise a warning unfortunately. oh well, off to some more debugging I guess 🙂 thanks for all the help so far guys, really appreciate it

Previous Next