checks-scope
--checks-scope is a parameter that can be applied to the checks run subcommand. It allows the user to check either the changelog or database against any enabled checks.
For a list of checks sorted by their scope, see Library of Policy Checks.
Uses
When you run --checks-scope=changelog, Liquibase checks each changeset in the changelog to see if any of those changesets trigger any enabled checks.
When you run --checks-scope=database, Liquibase checks each database object to see if any of those objects trigger any enabled checks.
Both the changelog and database can be checked by themselves or at the same time. Users may choose between changelog, database, or database,changelog to run the enabled checks against. If --checks-scope is not specified, Liquibase defaults to running changelog checks.
Syntax
A check can be one scope or dual-scoped. When executed, the command can be used in any of the following ways:
--checks-scope=changelog
--checks-scope=database
--checks-scope=changelog,database
--checks-scope=database,changelogFor example:
liquibase checks run --checks-scope=changelog --changelog-file=<example-changelog.xml>Attributes
The following table identifies attributes that can be used with the checks-scope parameter. Note that checks-scope works on all changelog types (SQL, XML, YAML, and JSON), but not all Policy checks work on all changelog types. It is best practice to review which Policy checks work on the changelog type you are using.
| Name | Syntax | Description |
|---|---|---|
changelog
|
CLI:
Property:
Environment Variable:
|
Specifies the changelog subset of checks to run. |
database
|
CLI:
Property:
Environment Variable:
|
Specifies the database subset of checks to run. |
--checks-scope=changelog process
This example covers how to run --checks-scope against a changelog. It begins with a changelog that contains a createTable changeset and no checks enabled. Once the process is complete, the resulting checks will display successfully.
- With a changelog that has a
createTablechangeset with two columns, enable theTableColumnLimitcheck in your command line:
liquibase checks enable --check-name=TableColumnLimitliquibase checks run --checks-scope=changelog command.liquibase checks bulk-set --disable to disable any enabled checks. Liquibase will ask if you are sure you want to disable all checks.Y to confirm you want to disable all checks.liquibase checks customize --check-name=TableColumnLimit.liquibase checks run --checks-scope=changelog --changelog-file=yourName-createTable-changelog.xml.--checks-scope=database process
Users can establish which database the checks will be run against by specifying the desired database in the url parameter within the liquibase.properties file or the environment variable equivalent. The database is typically a JDBC connection string. A snapshot, which is a reference to a Liquibase-created file describing the database, is automatically created if a live JDBC URL is used and any database-scoped checks are enabled. A snapshot can also be created manually by establishing an offline database URL.
Users should be aware that some data types and settings change when checks-scope database is performed. Some examples are listed below.
- Integers may become Numeric
- Varchar(max) setting can become a clob setting
Automatically create a snapshot and run checks
Users can automatically create a snapshot of the database if they use a live database URL and enable a database-scoped check:
- Establish the
urlandreferenceUrlin theliquibase.propertiesfile: - Run the
liquibase checks run --checks-scope=databasecommand.
liquibase.command.url: jdbc:h2:tcp://localhost:9090/mem:dev
liquibase.command.referenceUrl: jdbc:h2:tcp://localhost:9090/mem:integrationThis establishes the automatic snapshot.
Manually create a snapshot and run checks
Users can take a snapshot of their database manually and run checks against it if they prefer using an offline database URL. They must first establish a snapshot and then enter the offline location in their liquibase.properties file to run the command successfully:
Note: This snapshot is not permanently retained.
- Create a snapshot using the following command. Replace
mySnapshot.jsonand=jsonwith the desired snapshot file title and format. - Add the offline snapshot URL to the
liquibase.propertiesfile: - Run the
checks runcommand:
liquibase --output-file=mySnapshot.json snapshot --snapshotFormat=jsonliquibase.command.url: offline:DB_SHORTNAME?snapshot=mySnapshot.jsonNote: Replace DB_SHORTNAME with the database type being used (SQL, XML, YAML, or JSON). Also replace mySnapshot.json with the desired snapshot file title and format.
The type of database is determined from the url property if at least one database scope check is enabled. If the database cannot be determined, Liquibase automatically generates SQL to check against using H2.
liquibase checks run --checks-scope=database --url="offline:oracle?snapshot=mySnapshot.json"
Output
--checks-scope=changelog example
Starting Liquibase at 16:35:11 (version [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z] #2516 built at 2022-05-11 19:02+0000)
Liquibase Version: [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z]
Liquibase Empire [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z] by Liquibase licensed to Dev until Sat Dec 30 21:59:59 MST 2023
Executing Policy Checks against amber-createTable-changelog.xml
Executing all changelog checks because a valid license key was found!
CHANGELOG CHECKS
----------------
Checks completed validation of the changelog and found the following issues:
Changeset ID: 1::createTableforSynonym-PROSCHEMA
Changeset Filepath: amber-createTable-changelog.xml
Check Name: Check Table Column Count (TableColumnLimit)
Check Severity: MINOR (Return code: 1)
Message: Table must not have more than 2 columns.
Changesets Validated:
ID: 1::createTableforSynonym-PROSCHEMA; Author: Liquibase Pro User; File path: amber-createTable-changelog.xml
Checks run against each changeset:
Check Table Column Count
Liquibase command 'checks run' was executed successfully.--checks-scope=database example
Starting Liquibase at 12:18:24 (version [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z] #2516 built at 2022-05-11 19:02+0000)
Liquibase Version: [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z]
Liquibase Empire [Core: //DAT-9298/2516/e42617/2022-05-11 19:02+0000, Pro: DAT-9298/1208/56ac6a/2022-05-11T18:56:15Z] by Liquibase licensed to Dev until Sat Dec 30 21:59:59 MST 2023
Executing Policy Checks against database jdbc:h2:tcp://localhost:9090/mem:dev
Executing all database checks because a valid license key was found!
INFO This command might not yet capture Liquibase Pro additional object types on h2
Database objects Validated:
Catalog : 1
Schema : 1
Checks run against database jdbc:h2:tcp://localhost:9090/mem:dev:
Check Table Column Count
Liquibase command 'checks run' was executed successfully.--checks-scope with offline snapshot URL
Liquibase Community 4.9.1 by Liquibase
Database snapshot for jdbc:h2:tcp://localhost:9090/mem:integration
-----------------------------------------------------------------
Database type: H2
Database version: 2.1.210 (2022-01-17)
Database user: DBUSER
Included types:
liquibase.structure.core.Catalog
liquibase.structure.core.Column
liquibase.structure.core.ForeignKey
liquibase.structure.core.Index
liquibase.structure.core.PrimaryKey
liquibase.structure.core.Schema
liquibase.structure.core.Sequence
liquibase.structure.core.Table
liquibase.structure.core.UniqueConstraint
liquibase.structure.core.View
Liquibase command 'snapshot-reference' was executed successfully.