BEGIN;
CREATE EXTENSION IF NOT EXISTS anon CASCADE;
NOTICE:  installing required extension "pgcrypto"
SELECT anon.init();
 init 
------
 t
(1 row)

--SELECT anon.start_dynamic_masking();
-- Table `people`
CREATE TABLE people (
  id SERIAL UNIQUE,
  name TEXT,
  "CreditCard" TEXT,
  fk_company INTEGER
);
CREATE OR REPLACE FUNCTION public.lower(TEXT)
RETURNS TEXT AS $$
  SELECT upper($1)
$$ LANGUAGE SQL;
SET anon.restrict_to_trusted_schemas = off;
-- TEST 1
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH FUNCTION lower(people.name) ';
SET anon.restrict_to_trusted_schemas = on;
-- TEST 2 generates an error
SAVEPOINT before_test_2;
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH FUNCTION lower(people.name) ';
ERROR:  The schema of the masking filter must be defined
HINT:  Check the anon.restrict_to_trusted_schemas parameter
CONTEXT:  PL/pgSQL function anon.trg_check_trusted_schemas() line 15 at RAISE
ROLLBACK TO before_test_2;
-- TEST 3 generates an error
SAVEPOINT before_test_3;
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH FUNCTION public.lower(people.name) ';
ERROR:  public is not a trusted schema.
HINT:  You must add a TRUSTED security label to this schema.
CONTEXT:  PL/pgSQL function anon.trg_check_trusted_schemas() line 18 at RAISE
ROLLBACK TO before_test_3;
-- TEST 4
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH FUNCTION pg_catalog.lower(people.name) ';
SECURITY LABEL FOR anon ON SCHEMA public
IS 'TRUSTED';
-- TEST 5
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH FUNCTION public.lower(people.name) ';
-- TEST 6
SECURITY LABEL FOR anon ON COLUMN people.name
IS 'MASKED WITH VALUE NULL';
ROLLBACK;