pg_sql_triggers 1.0.0 → 1.1.0

data/app/views/pg_sql_triggers/generator/preview.html.erb

@@ -9,17 +9,81 @@
   </ul>
 </div>
 
-<!-- DSL Preview -->
-<div style="margin-bottom: 2rem;">
-  <h3 style="display: flex; align-items: center; gap: 0.5rem;">
-    <span>DSL Definition</span>
-    <span class="badge badge-info">Ruby</span>
-  </h3>
-  <pre style="background: #f8f9fa; padding: 1rem; border-radius: 4px; overflow-x: auto; border: 1px solid #dee2e6;"><code><%= @dsl_content %></code></pre>
-</div>
-
 <!-- Actions -->
-<%= form_with url: generator_index_path, method: :post, scope: :pg_sql_triggers_generator_form do |f| %>
+<%= form_with url: generator_index_path, method: :post, scope: :pg_sql_triggers_generator_form, id: "generator-create-form", local: true do |f| %>
+  <!-- DSL Preview -->
+  <div style="margin-bottom: 2rem;">
+    <h3 style="display: flex; align-items: center; gap: 0.5rem;">
+      <span>DSL Definition</span>
+      <span class="badge badge-info">Ruby</span>
+      <small style="color: #6c757d; font-weight: normal;">(Updates automatically when timing or condition changes)</small>
+    </h3>
+    <pre id="dsl-preview" style="background: #f8f9fa; padding: 1rem; border-radius: 4px; overflow-x: auto; border: 1px solid #dee2e6; min-height: 150px;"><code><%= @dsl_content %></code></pre>
+  </div>
+
+  <!-- Trigger Configuration Summary (Editable) -->
+  <div style="margin-bottom: 2rem; padding: 1.5rem; background: #f8f9fa; border-radius: 4px; border: 1px solid #dee2e6;">
+    <h3 style="margin-top: 0; margin-bottom: 1.5rem; display: flex; align-items: center; gap: 0.5rem;">
+      <span>Trigger Configuration</span>
+      <small style="color: #6c757d; font-weight: normal;">(Editable - changes will update preview)</small>
+    </h3>
+
+    <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1.5rem;">
+      <!-- Timing Field -->
+      <div>
+        <%= f.label :timing, "Trigger Timing *", style: "display: block; font-weight: 500; margin-bottom: 0.5rem; color: #495057;" %>
+        <%= f.select :timing,
+            options_for_select([["Before", "before"], ["After", "after"]], @form.timing || "before"),
+            {},
+            {
+              required: true,
+              id: "preview-timing-select",
+              style: "width: 100%; padding: 0.5rem; border: 1px solid #ced4da; border-radius: 4px; background: white; font-size: 0.875rem;",
+              onchange: "updatePreview()"
+            } %>
+        <small style="color: #6c757d; display: block; margin-top: 0.25rem;">
+          When the trigger should fire relative to the event
+        </small>
+      </div>
+
+      <!-- Read-only fields -->
+      <div>
+        <strong style="color: #495057; display: block; margin-bottom: 0.5rem;">Events:</strong>
+        <div style="padding: 0.5rem; background: white; border-radius: 4px; border: 1px solid #dee2e6;">
+          <span style="color: #495057; font-weight: 500;"><%= Array(@form.events).compact_blank.map(&:upcase).join(", ") %></span>
+        </div>
+      </div>
+
+      <div>
+        <strong style="color: #495057; display: block; margin-bottom: 0.5rem;">Table:</strong>
+        <div style="padding: 0.5rem; background: white; border-radius: 4px; border: 1px solid #dee2e6;">
+          <span style="color: #495057; font-weight: 500;"><%= @form.table_name %></span>
+        </div>
+      </div>
+
+      <div>
+        <strong style="color: #495057; display: block; margin-bottom: 0.5rem;">Function:</strong>
+        <div style="padding: 0.5rem; background: white; border-radius: 4px; border: 1px solid #dee2e6;">
+          <span style="color: #495057; font-weight: 500;"><%= @form.function_name %></span>
+        </div>
+      </div>
+
+      <!-- Condition Field (Editable) -->
+      <div style="grid-column: 1 / -1;">
+        <%= f.label :condition, "WHEN Condition (Optional)", style: "display: block; font-weight: 500; margin-bottom: 0.5rem; color: #495057;" %>
+        <%= f.text_area :condition,
+            value: @form.condition,
+            placeholder: "e.g., NEW.email IS NOT NULL OR NEW.status = 'active'",
+            rows: 3,
+            id: "preview-condition-textarea",
+            style: "width: 100%; padding: 0.75rem; border: 1px solid #ced4da; border-radius: 4px; font-family: 'Monaco', 'Menlo', 'Ubuntu Mono', 'Consolas', 'source-code-pro', monospace; font-size: 0.875rem; background: white; resize: vertical;",
+            oninput: "updatePreview()" %>
+        <small style="color: #6c757d; display: block; margin-top: 0.25rem;">
+          Optional SQL condition. Leave empty to fire on all rows. Changes update the DSL preview above.
+        </small>
+      </div>
+    </div>
+  </div>
   <!-- SQL Validation Result -->
   <% if @sql_validation %>
     <div style="margin-bottom: 2rem; padding: 1rem; border-radius: 4px; <%= @sql_validation[:valid] ? 'background: #d4edda; border-left: 4px solid #28a745;' : 'background: #f8d7da; border-left: 4px solid #dc3545;' %>">
@@ -48,7 +112,7 @@
     <p style="color: #6c757d; margin-bottom: 0.5rem; font-size: 0.875rem;">
       You can edit the function body below before generating the trigger files.
     </p>
-    <%= f.text_area :function_body, 
+    <%= f.text_area :function_body,
                     value: @function_content,
                     rows: 20,
                     required: true,
@@ -59,7 +123,6 @@
   <%= f.hidden_field :function_name, value: @form.function_name %>
   <%= f.hidden_field :version, value: @form.version %>
   <%= f.hidden_field :enabled, value: @form.enabled %>
-  <%= f.hidden_field :condition, value: @form.condition %>
   <%= f.hidden_field :generate_function_stub, value: @form.generate_function_stub %>
   <% Array(@form.events).reject(&:blank?).each do |event| %>
     <%= hidden_field_tag "pg_sql_triggers_generator_form[events][]", event %>
@@ -69,9 +132,174 @@
   <% end %>
 
   <div style="display: flex; gap: 1rem;">
-    <%= f.submit "Generate Files", class: "btn btn-success",
-        data: { confirm: "This will create files on disk and register the trigger. Continue?" } %>
-    <%= link_to "Back to Edit", new_generator_path, class: "btn", style: "background: #6c757d; color: white; text-decoration: none;" %>
-    <%= link_to "Cancel", root_path, class: "btn", style: "background: #6c757d; color: white; text-decoration: none;" %>
+    <button type="button" onclick="showKillSwitchModal('generator-create-form')" class="btn btn-success"
+        style="padding: 0.75rem 1.5rem; background: #28a745; color: white; border: none; border-radius: 4px; cursor: pointer; font-weight: 600;">
+      Generate Files
+    </button>
   </div>
 <% end %>
+
+<!-- Separate form for "Back to Edit" to avoid nested forms -->
+<div style="display: flex; gap: 1rem; margin-top: 1rem;">
+  <%= form_with url: preview_generator_index_path, method: :post, scope: :pg_sql_triggers_generator_form, id: "back-to-edit-form", local: true, style: "margin: 0;" do |f| %>
+    <%= f.hidden_field :trigger_name, value: @form.trigger_name %>
+    <%= f.hidden_field :table_name, value: @form.table_name %>
+    <%= f.hidden_field :function_name, value: @form.function_name %>
+    <%= f.hidden_field :version, value: @form.version %>
+    <%= f.hidden_field :enabled, value: @form.enabled %>
+    <%= f.hidden_field :generate_function_stub, value: @form.generate_function_stub %>
+    <%= f.hidden_field :timing, id: "back-to-edit-timing" %>
+    <%= f.hidden_field :condition, id: "back-to-edit-condition" %>
+    <%= f.hidden_field :function_body, id: "back-to-edit-function-body" %>
+    <% Array(@form.events).reject(&:blank?).each do |event| %>
+      <%= hidden_field_tag "pg_sql_triggers_generator_form[events][]", event %>
+    <% end %>
+    <% Array(@form.environments).reject(&:blank?).each do |env| %>
+      <%= hidden_field_tag "pg_sql_triggers_generator_form[environments][]", env %>
+    <% end %>
+    <%= hidden_field_tag :back_to_edit, "1" %>
+    <button type="submit" class="btn" style="background: #6c757d; color: white; border: none; padding: 0.75rem 1.5rem; border-radius: 4px; cursor: pointer;">
+      Back to Edit
+    </button>
+  <% end %>
+  <%= link_to "Cancel", root_path, class: "btn", style: "background: #6c757d; color: white; text-decoration: none; padding: 0.75rem 1.5rem; border-radius: 4px;" %>
+</div>
+
+<%= render 'pg_sql_triggers/shared/confirmation_modal',
+           operation: :ui_trigger_generate,
+           form_id: 'generator-create-form',
+           title: 'Generate Trigger Files',
+           message: 'This will create files on disk and register the trigger. Continue?' %>
+
+<script>
+(function() {
+  'use strict';
+
+  // Store the original DSL content
+  const originalDsl = <%= raw @dsl_content.to_json %>;
+
+  // Extract base DSL parts
+  const triggerName = '<%= @form.trigger_name %>';
+  const tableName = '<%= @form.table_name %>';
+  const functionName = '<%= @form.function_name %>';
+  const eventsList = '<%= Array(@form.events).compact_blank.map { |e| ":#{e}" }.join(", ") %>';
+  const version = <%= @form.version %>;
+  const enabled = <%= @form.enabled %>;
+  const environmentsList = '<%= @form.environments.compact_blank.map { |e| ":#{e}" }.join(", ") %>';
+  const functionRef = /^[a-z0-9_]+$/.test(functionName) ? `:${functionName}` : `"${functionName}"`;
+
+  function updatePreview() {
+    const timingSelect = document.getElementById('preview-timing-select');
+    const conditionTextarea = document.getElementById('preview-condition-textarea');
+    const dslPreview = document.getElementById('dsl-preview');
+
+    if (!timingSelect || !conditionTextarea || !dslPreview) return;
+
+    const timing = timingSelect.value || 'before';
+    const condition = conditionTextarea.value.trim();
+
+    // Build DSL content
+    const now = new Date();
+    const timestamp = now.toISOString().slice(0, 19).replace('T', ' ');
+
+    let dslContent = `# frozen_string_literal: true
+
+# Generated by pg_sql_triggers on ${timestamp}
+PgSqlTriggers::DSL.pg_sql_trigger "${triggerName}" do
+  table :${tableName}
+  on ${eventsList}
+  function ${functionRef}
+
+  version ${version}
+  enabled ${enabled}
+  timing :${timing}`;
+
+    if (environmentsList && environmentsList.length > 0) {
+      dslContent += `\n  when_env ${environmentsList}`;
+    }
+
+    if (condition) {
+      // Escape quotes in condition
+      const escapedCondition = condition.replace(/"/g, '\\"');
+      dslContent += `\n  when_condition "${escapedCondition}"`;
+    }
+
+    dslContent += `\nend\n`;
+
+    // Update the preview
+    const codeElement = dslPreview.querySelector('code');
+    if (codeElement) {
+      codeElement.textContent = dslContent;
+    }
+  }
+
+  // Sync form values to back-to-edit form before submission
+  function syncBackToEditForm() {
+    const timingSelect = document.getElementById('preview-timing-select');
+    const conditionTextarea = document.getElementById('preview-condition-textarea');
+    const functionBodyTextarea = document.querySelector('#generator-create-form textarea[name="pg_sql_triggers_generator_form[function_body]"]');
+    const backToEditForm = document.getElementById('back-to-edit-form');
+
+    if (!backToEditForm) return;
+
+    // Update timing
+    const backToEditTiming = document.getElementById('back-to-edit-timing');
+    if (backToEditTiming && timingSelect) {
+      backToEditTiming.value = timingSelect.value || 'before';
+    }
+
+    // Update condition
+    const backToEditCondition = document.getElementById('back-to-edit-condition');
+    if (backToEditCondition && conditionTextarea) {
+      backToEditCondition.value = conditionTextarea.value || '';
+    }
+
+    // Update function_body - get from the create form textarea
+    const backToEditFunctionBody = document.getElementById('back-to-edit-function-body');
+    if (backToEditFunctionBody) {
+      if (functionBodyTextarea) {
+        backToEditFunctionBody.value = functionBodyTextarea.value || '';
+      } else {
+        // Fallback: try to find by name attribute
+        const createFormFunctionBody = document.querySelector('textarea[name="pg_sql_triggers_generator_form[function_body]"]');
+        if (createFormFunctionBody) {
+          backToEditFunctionBody.value = createFormFunctionBody.value || '';
+        }
+      }
+    }
+  }
+
+  // Initialize on DOM ready
+  document.addEventListener('DOMContentLoaded', function() {
+    const timingSelect = document.getElementById('preview-timing-select');
+    const conditionTextarea = document.getElementById('preview-condition-textarea');
+    const backToEditForm = document.getElementById('back-to-edit-form');
+
+    if (timingSelect) {
+      timingSelect.addEventListener('change', updatePreview);
+    }
+
+    if (conditionTextarea) {
+      conditionTextarea.addEventListener('input', updatePreview);
+      // Also update on paste
+      conditionTextarea.addEventListener('paste', function() {
+        setTimeout(updatePreview, 10);
+      });
+    }
+
+    // Sync form values before submitting back-to-edit form
+    if (backToEditForm) {
+      backToEditForm.addEventListener('submit', function(e) {
+        syncBackToEditForm();
+        // Ensure CSRF token is included
+        if (typeof window.ensureCsrfToken === 'function') {
+          window.ensureCsrfToken(backToEditForm);
+        }
+      });
+    }
+
+    // Initial update
+    updatePreview();
+  });
+})();
+</script>

data/app/views/pg_sql_triggers/shared/_confirmation_modal.html.erb

@@ -0,0 +1,221 @@
+<%# Confirmation Modal for Dangerous Operations %>
+<%#
+  Usage:
+    <%= render 'pg_sql_triggers/shared/confirmation_modal',
+               operation: :trigger_migrate_up,
+               form_id: 'migration-form',
+               title: 'Confirm Migration',
+               message: 'Are you sure you want to run this migration?'
+%>
+
+<%
+  operation = local_assigns[:operation] || :unknown_operation
+  form_id = local_assigns[:form_id] || 'confirmation-form'
+  title = local_assigns[:title] || 'Confirm Action'
+  message = local_assigns[:message] || 'This action requires confirmation.'
+
+  # Generate expected confirmation text
+  if PgSqlTriggers.respond_to?(:kill_switch_confirmation_pattern) &&
+     PgSqlTriggers.kill_switch_confirmation_pattern.respond_to?(:call)
+    expected_confirmation = PgSqlTriggers.kill_switch_confirmation_pattern.call(operation)
+  else
+    expected_confirmation = "EXECUTE #{operation.to_s.upcase}"
+  end
+%>
+
+<div id="kill-switch-modal-<%= form_id %>" class="kill-switch-modal" style="display: none; position: fixed; z-index: 1000; left: 0; top: 0; width: 100%; height: 100%; overflow: auto; background-color: rgba(0,0,0,0.4);">
+  <div class="modal-content" style="background-color: #fefefe; margin: 10% auto; padding: 20px; border: 1px solid #888; border-radius: 8px; width: 80%; max-width: 600px; box-shadow: 0 4px 6px rgba(0,0,0,0.1); box-sizing: border-box;">
+    <div class="modal-header" style="border-bottom: 1px solid #dee2e6; padding-bottom: 12px; margin-bottom: 16px;">
+      <h3 style="margin: 0; color: #dc3545; display: flex; align-items: center; gap: 8px;">
+        <span style="font-size: 24px;">⚠️</span>
+        <%= title %>
+      </h3>
+    </div>
+
+    <div class="modal-body" style="margin-bottom: 20px; box-sizing: border-box;">
+      <p style="color: #495057; line-height: 1.6;"><%= message %></p>
+
+      <% if kill_switch_active? %>
+        <div style="background-color: #fff3cd; border: 1px solid #ffc107; border-radius: 4px; padding: 12px; margin: 16px 0; box-sizing: border-box;">
+          <p style="margin: 0 0 8px 0; font-weight: bold; color: #856404;">
+            🛡️ Kill Switch Protection Active
+          </p>
+          <p style="margin: 0 0 12px 0; color: #856404; font-size: 14px;">
+            You must enter the exact confirmation text below to proceed:
+          </p>
+          <div style="background-color: #f8f9fa; border: 2px solid #ffc107; border-radius: 4px; padding: 8px; font-family: monospace; font-size: 14px; font-weight: bold; text-align: center; color: #856404; word-break: break-word; box-sizing: border-box;">
+            <%= expected_confirmation %>
+          </div>
+        </div>
+
+        <div style="margin-top: 16px; box-sizing: border-box;">
+          <label for="confirmation-text-<%= form_id %>" style="display: block; margin-bottom: 8px; font-weight: bold; color: #495057;">
+            Confirmation Text:
+          </label>
+          <input
+            type="text"
+            id="confirmation-text-<%= form_id %>"
+            name="confirmation_text"
+            class="form-control"
+            placeholder="Type the confirmation text above"
+            style="width: 100%; max-width: 100%; padding: 8px 12px; border: 1px solid #ced4da; border-radius: 4px; font-family: monospace; box-sizing: border-box;"
+            autocomplete="off">
+          <small style="display: block; margin-top: 4px; color: #6c757d;">
+            Case-sensitive. Must match exactly.
+          </small>
+        </div>
+      <% end %>
+    </div>
+
+    <div class="modal-footer" style="border-top: 1px solid #dee2e6; padding-top: 12px; display: flex; gap: 8px; justify-content: flex-end;">
+      <button
+        type="button"
+        class="btn-cancel"
+        onclick="closeKillSwitchModal('<%= form_id %>')"
+        style="padding: 8px 16px; border: 1px solid #6c757d; background-color: #6c757d; color: white; border-radius: 4px; cursor: pointer;">
+        Cancel
+      </button>
+
+      <% if kill_switch_active? %>
+        <button
+          type="button"
+          class="btn-confirm"
+          onclick="submitWithConfirmation('<%= form_id %>', '<%= expected_confirmation %>')"
+          style="padding: 8px 16px; border: 1px solid #dc3545; background-color: #dc3545; color: white; border-radius: 4px; cursor: pointer;">
+          Confirm & Proceed
+        </button>
+      <% else %>
+        <button
+          type="button"
+          class="btn-confirm"
+          onclick="submitWithoutConfirmation('<%= form_id %>')"
+          style="padding: 8px 16px; border: 1px solid #007bff; background-color: #007bff; color: white; border-radius: 4px; cursor: pointer;">
+          Proceed
+        </button>
+      <% end %>
+    </div>
+  </div>
+</div>
+
+<script>
+  // Only define functions once
+  if (typeof window.showKillSwitchModal === 'undefined') {
+    window.showKillSwitchModal = function(formId) {
+      const modal = document.getElementById('kill-switch-modal-' + formId);
+      if (modal) {
+        modal.style.display = 'block';
+        // Focus on confirmation input if it exists
+        const confirmationInput = document.getElementById('confirmation-text-' + formId);
+        if (confirmationInput) {
+          setTimeout(() => confirmationInput.focus(), 100);
+        }
+      }
+    };
+
+    window.closeKillSwitchModal = function(formId) {
+      const modal = document.getElementById('kill-switch-modal-' + formId);
+      if (modal) {
+        modal.style.display = 'none';
+        // Clear confirmation input
+        const confirmationInput = document.getElementById('confirmation-text-' + formId);
+        if (confirmationInput) {
+          confirmationInput.value = '';
+        }
+      }
+    };
+
+    window.submitWithConfirmation = function(formId, expectedConfirmation) {
+      const confirmationInput = document.getElementById('confirmation-text-' + formId);
+      const confirmationText = confirmationInput ? confirmationInput.value.trim() : '';
+
+      if (confirmationText !== expectedConfirmation) {
+        alert('Invalid confirmation text. Please type exactly: ' + expectedConfirmation);
+        return;
+      }
+
+      // Add confirmation text to the form
+      const form = document.getElementById(formId);
+      if (form) {
+        // Ensure CSRF token is included
+        if (typeof window.ensureCsrfToken === 'function') {
+          window.ensureCsrfToken(form);
+        }
+
+        // Remove any existing confirmation_text input
+        const existingInput = form.querySelector('input[name="confirmation_text"]');
+        if (existingInput && existingInput !== confirmationInput) {
+          existingInput.remove();
+        }
+
+        // Create a hidden input with the confirmation text
+        const hiddenInput = document.createElement('input');
+        hiddenInput.type = 'hidden';
+        hiddenInput.name = 'confirmation_text';
+        hiddenInput.value = confirmationText;
+        form.appendChild(hiddenInput);
+
+        form.submit();
+      }
+
+      window.closeKillSwitchModal(formId);
+    };
+
+    window.submitWithoutConfirmation = function(formId) {
+      const form = document.getElementById(formId);
+      if (form) {
+        // Ensure CSRF token is included
+        if (typeof window.ensureCsrfToken === 'function') {
+          window.ensureCsrfToken(form);
+        }
+        form.submit();
+      }
+      window.closeKillSwitchModal(formId);
+    };
+
+    // Helper function to ensure CSRF token is included in form (globally available)
+    window.ensureCsrfToken = function(form) {
+      // Check if form already has a CSRF token
+      const existingToken = form.querySelector('input[name="authenticity_token"]');
+      if (existingToken) {
+        return; // Token already exists
+      }
+
+      // Get CSRF token from meta tag
+      const csrfMetaTag = document.querySelector('meta[name="csrf-token"]');
+      if (csrfMetaTag) {
+        const token = csrfMetaTag.getAttribute('content');
+        if (token) {
+          // Create hidden input with CSRF token
+          const tokenInput = document.createElement('input');
+          tokenInput.type = 'hidden';
+          tokenInput.name = 'authenticity_token';
+          tokenInput.value = token;
+          form.appendChild(tokenInput);
+        }
+      }
+    };
+
+    // Close modal when clicking outside of it (only add listener once)
+    if (!window._killSwitchModalListenersAttached) {
+      window.onclick = function(event) {
+        if (event.target.className === 'kill-switch-modal') {
+          event.target.style.display = 'none';
+        }
+      };
+
+      // Close modal on Escape key
+      document.addEventListener('keydown', function(event) {
+        if (event.key === 'Escape') {
+          const modals = document.querySelectorAll('.kill-switch-modal');
+          modals.forEach(modal => {
+            if (modal.style.display === 'block') {
+              modal.style.display = 'none';
+            }
+          });
+        }
+      });
+
+      window._killSwitchModalListenersAttached = true;
+    }
+  }
+</script>

data/app/views/pg_sql_triggers/shared/_kill_switch_status.html.erb

@@ -0,0 +1,40 @@
+<%# Kill Switch Status Indicator %>
+<%# Displays the current kill switch status and environment warning if applicable %>
+
+<%
+  # Debug info (can be removed in production)
+  env = current_environment
+  is_active = kill_switch_active?
+  protected_envs = PgSqlTriggers.respond_to?(:kill_switch_environments) ? PgSqlTriggers.kill_switch_environments : %i[production staging]
+
+  # Log for debugging (remove in production)
+  Rails.logger.debug "[KILL_SWITCH_VIEW] is_active=#{is_active} env=#{env} protected_envs=#{Array(protected_envs).map(&:to_s).join(',')}"
+%>
+
+<% if is_active %>
+  <div class="kill-switch-status active" style="background-color: #fff3cd; border: 1px solid #ffc107; border-radius: 4px; padding: 12px; margin-bottom: 16px;">
+    <div style="display: flex; align-items: center; gap: 8px;">
+      <span style="font-size: 20px;">🛡️</span>
+      <div>
+        <strong style="color: #856404;">Kill Switch Active</strong>
+        <p style="margin: 4px 0 0 0; font-size: 14px; color: #856404;">
+          Dangerous operations in <strong><%= env %></strong> require confirmation.
+          All operations are logged and audited.
+        </p>
+      </div>
+    </div>
+  </div>
+<% else %>
+  <div class="kill-switch-status inactive" style="background-color: #d1ecf1; border: 1px solid #bee5eb; border-radius: 4px; padding: 12px; margin-bottom: 16px;">
+    <div style="display: flex; align-items: center; gap: 8px;">
+      <span style="font-size: 20px;">ℹ️</span>
+      <div>
+        <strong style="color: #0c5460;">Kill Switch Inactive</strong>
+        <p style="margin: 4px 0 0 0; font-size: 14px; color: #0c5460;">
+          Kill switch is disabled in <strong><%= env %></strong>.
+          Operations can be performed without confirmation.
+        </p>
+      </div>
+    </div>
+  </div>
+<% end %>

data/app/views/pg_sql_triggers/tables/index.html.erb

@@ -101,5 +101,3 @@
     <%= link_to "Generate New Trigger", new_generator_path, class: "btn btn-primary" %>
   </div>
 <% end %>
-
-

data/app/views/pg_sql_triggers/tables/show.html.erb

@@ -63,14 +63,14 @@
               </p>
             </div>
           </div>
-          
+
           <% if trigger.definition.present? %>
             <% definition = JSON.parse(trigger.definition) rescue {} %>
             <div style="margin-bottom: 1rem;">
               <strong>Function:</strong> <code style="background: #e9ecef; padding: 0.25rem 0.5rem; border-radius: 2px;"><%= definition["function_name"] || "N/A" %></code>
               <% if definition["events"].present? %>
                 <span style="margin-left: 1rem;">
-                  <strong>Events:</strong> 
+                  <strong>Events:</strong>
                   <% definition["events"].each do |event| %>
                     <span class="badge badge-info" style="margin-left: 0.25rem;"><%= event %></span>
                   <% end %>
@@ -78,7 +78,7 @@
               <% end %>
             </div>
           <% end %>
-          
+
           <% if trigger.function_body.present? %>
             <details style="margin-top: 1rem;">
               <summary style="cursor: pointer; font-weight: 600; color: #495057;">View Function Body</summary>
@@ -123,4 +123,3 @@
     </div>
   </div>
 <% end %>
-

data/config/initializers/pg_sql_triggers.rb

@@ -0,0 +1,69 @@
+# frozen_string_literal: true
+
+PgSqlTriggers.configure do |config|
+  # ========== Kill Switch Configuration ==========
+  # The Kill Switch is a safety mechanism that prevents accidental destructive operations
+  # in protected environments (production, staging, etc.)
+
+  # Enable or disable the kill switch globally
+  # Default: true (recommended for safety)
+  config.kill_switch_enabled = true
+
+  # Specify which environments should be protected by the kill switch
+  # Default: %i[production staging]
+  config.kill_switch_environments = %i[production staging]
+
+  # Require confirmation text for kill switch overrides
+  # When true, users must type a specific confirmation text to proceed
+  # Default: true (recommended for maximum safety)
+  config.kill_switch_confirmation_required = true
+
+  # Custom confirmation pattern generator
+  # Takes an operation symbol and returns the required confirmation text
+  # Default: "EXECUTE <OPERATION_NAME>"
+  config.kill_switch_confirmation_pattern = ->(operation) { "EXECUTE #{operation.to_s.upcase}" }
+
+  # Logger for kill switch events
+  # Default: Rails.logger
+  config.kill_switch_logger = Rails.logger
+
+  # Enable audit trail for kill switch events (optional enhancement)
+  # When enabled, all kill switch events are logged to a database table
+  # Default: false (can be enabled later)
+  # config.kill_switch_audit_trail_enabled = false
+
+  # Time-window auto-lock configuration (optional enhancement)
+  # Automatically enable kill switch during specific time windows
+  # Default: false
+  # config.kill_switch_auto_lock_enabled = false
+  # config.kill_switch_auto_lock_window = 30.minutes
+  # config.kill_switch_auto_lock_after = -> { Time.current.hour.between?(22, 6) } # Night hours
+
+  # Set the default environment detection
+  # By default, uses Rails.env
+  config.default_environment = -> { Rails.env }
+
+  # Set a custom permission checker
+  # This should return true/false based on the actor, action, and environment
+  # Example:
+  # config.permission_checker = ->(actor, action, environment) {
+  #   # Your custom permission logic here
+  #   # e.g., check if actor has required role for the action
+  #   true
+  # }
+  config.permission_checker = nil
+
+  # Tables to exclude from listing in the UI
+  # Default excluded tables: ar_internal_metadata, schema_migrations, pg_sql_triggers_registry, trigger_migrations
+  # Add additional tables you want to exclude:
+  # config.excluded_tables = %w[audit_logs temporary_data]
+  config.excluded_tables = []
+
+  # ========== Migration Safety Configuration ==========
+  # Prevent unsafe DROP + CREATE operations in migrations
+  # When false (default), migrations with DROP + CREATE patterns will be blocked
+  # Set to true to allow unsafe operations (not recommended)
+  # You can also override per-migration with ALLOW_UNSAFE_MIGRATIONS=true environment variable
+  # Default: false (recommended for safety)
+  config.allow_unsafe_migrations = false
+end