npm - @logto/schemas - Versions diffs - 1.13.1 → 1.15.0 - Mend

@logto/schemas 1.13.1 → 1.15.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (342) hide show

package/alterations-js/1.0.0_rc.0-1674032095.5-multi-tenancy.js CHANGED Viewed

@@ -1,5 +1,4 @@
-import { sql } from 'slonik';
-import { raw } from 'slonik-sql-tag-raw';
+import { sql } from '@silverhand/slonik';
 const getId = (value) => sql.identifier([value]);
 const tenantId = sql.identifier(['tenant_id']);
 const tables = [
@@ -93,7 +92,7 @@ const alteration = {
                 create index ${indexName}
                   on ${getId(table)} (
                     ${tenantId},
-                    ${sql.join(columns.map((column) => raw(column)), sql `, `)}
+                    ${sql.join(columns.map((column) => sql.raw(column)), sql `, `)}
                   );
               `);
             }
@@ -109,7 +108,7 @@ const alteration = {
             ${original === 'index' ? sql `` : sql `drop constraint ${indexName},`}
             add constraint ${indexName} unique (
               ${tenantId},
-              ${sql.join(columns.map((column) => raw(column)), sql `, `)}
+              ${sql.join(columns.map((column) => sql.raw(column)), sql `, `)}
             );
         `);
         }));
@@ -126,13 +125,13 @@ const alteration = {
                 ? pool.query(sql `
             create unique index ${indexName}
               on ${getId(table)} (
-                ${sql.join(columns.map((column) => raw(column)), sql `, `)}
+                ${sql.join(columns.map((column) => sql.raw(column)), sql `, `)}
               )
           `)
                 : pool.query(sql `
             alter table ${getId(table)}
               add constraint ${indexName} unique (
-                ${sql.join(columns.map((column) => raw(column)), sql `, `)}
+                ${sql.join(columns.map((column) => sql.raw(column)), sql `, `)}
               );
           `));
         }));
@@ -145,7 +144,7 @@ const alteration = {
             await pool.query(sql `
               create index ${indexName}
                 on ${getId(table)} (
-                  ${sql.join(columns.map((column) => raw(column)), sql `, `)}
+                  ${sql.join(columns.map((column) => sql.raw(column)), sql `, `)}
                 );
             `);
         })));

package/alterations-js/1.0.0_rc.0-1674032095.6-add-tenant-id-trigger.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const tables = [
     'applications',
     'applications_roles',

package/alterations-js/1.0.0_rc.0-1674987042-drop-settings-and-create-systems.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         /* Drop settings table */

package/alterations-js/1.0.0_rc.0-1675316731-update-seed-data.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.0.0_rc.1-1675788753-multi-tenancy-rls.js CHANGED Viewed

@@ -1,6 +1,5 @@
 import { generateStandardId } from '@logto/shared/universal';
-import { sql } from 'slonik';
-import { raw } from 'slonik-sql-tag-raw';
+import { sql } from '@silverhand/slonik';
 const tables = [
     'applications_roles',
     'applications',
@@ -103,7 +102,7 @@ const alteration = {
     `);
         await pool.query(sql `
       create role ${sql.identifier([role])} with inherit login
-        password '${raw(password)}'
+        password '${sql.raw(password)}'
         in role ${sql.identifier([baseRole])};
     `);
     },

package/alterations-js/1.0.0_rc.1-1676115897-add-admin-tenant.js CHANGED Viewed

@@ -1,6 +1,5 @@
 import { generateStandardId } from '@logto/shared/universal';
-import { sql } from 'slonik';
-import { raw } from 'slonik-sql-tag-raw';
+import { sql } from '@silverhand/slonik';
 const adminTenantId = 'admin';
 const getId = (value) => sql.identifier([value]);
 const getDatabaseName = async (pool) => {
@@ -137,7 +136,7 @@ const alteration = {
     `);
         await pool.query(sql `
       create role ${getId(role)} with inherit login
-        password '${raw(password)}'
+        password '${sql.raw(password)}'
         in role ${getId(baseRole)};
     `);
         await addManagementApiData(pool);

package/alterations-js/1.0.0_rc.1-1676185899-fix-logs-index.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.0.0_rc.1-1676190092-migrate-admin-data.js CHANGED Viewed

@@ -2,7 +2,7 @@ import { generateKeyPair } from 'node:crypto';
 import { promisify } from 'node:util';
 import { generateStandardId } from '@logto/shared/universal';
 import inquirer from 'inquirer';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 // Copied from CLI with default execution path
 const generateOidcPrivateKey = async () => {
     const { privateKey } = await promisify(generateKeyPair)('ec', {

package/alterations-js/1.0.0_rc.1-1676823841-update-sie-primary-key.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.0.0_rc.1-1676874936-support-custom-css.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.0.0_rc.1-1676886855-connector-database-read-write.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.0.0_rc.1-1676906977-remove-demo-app.js CHANGED Viewed

@@ -1,7 +1,7 @@
 import { generateStandardId } from '@logto/shared/universal';
 import chalk from 'chalk';
 import inquirer from 'inquirer';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         const isCi = process.env.CI;

package/alterations-js/1.0.0_rc.1-1676956206-move-console-sie-to-database.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { generateDarkColor } from '@logto/core-kit';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const defaultPrimaryColor = '#6139F6';
 const data = {
     tenantId: 'admin',

package/alterations-js/1.0.0_rc.1-1677059985-move-console-application-to-database.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { generateStandardId } from '@logto/shared/universal';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.10.1-1695647183-update-private-key-type.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { generateStandardId } from '@logto/shared';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const targetConfigKeys = ['oidc.cookieKeys', 'oidc.privateKeys'];
 /**
  * Alternate string array private signing keys to JSON array

package/alterations-js/1.10.1-1696657546-organization-tables.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `
     select current_database();

package/alterations-js/1.10.1-1697683802-add-sso-connectors-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getId = (value) => sql.identifier([value]);
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `

package/alterations-js/1.10.1-1698646271-add-organization-created-flag.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const adminConsoleConfigKey = 'adminConsole';
 const alterAdminConsoleData = async (logtoConfig, pool) => {
     const { tenantId, value: oldAdminConsoleConfig } = logtoConfig;

package/alterations-js/1.10.1-1698820410-add-user-sso-identities-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getId = (value) => sql.identifier([value]);
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `

package/alterations-js/1.10.1-1698910485-user-logto-data.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.11.0-1699422979-add-sso-connector-id-col-to-user-sso-identities-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.11.0-1699598903-remove-sso-only-column-in-sso-connectors-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.12.0-1700031616-update-org-role-foreign-keys.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.12.0-1701054133-add-unique-constraint-to-the-sso-connector-name.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.12.0-1701245520-add-single-sign-on-enabled-flag-to-sie.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1702274830-add-new-third-party-column-to-applications-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1702372401-add-application-permissions-tables.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `
     select current_database();

package/alterations-js/1.13.0-1702544178-sync-tenant-orgs.js CHANGED Viewed

@@ -14,7 +14,7 @@
  * new tenants before running this script and deploying the changes.
  */
 import { ConsoleLog, generateStandardId } from '@logto/shared';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const adminTenantId = 'admin';
 const consoleLog = new ConsoleLog();
 const alteration = {

package/alterations-js/1.13.0-1702871078-protected-application-type.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1702877515-protected-app-configs.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1702978120-application-sign-in-experience-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `
     select current_database();

package/alterations-js/1.13.0-1703229996-daily-token-usage.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getId = (value) => sql.identifier([value]);
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `

package/alterations-js/1.13.0-1703230000-update-tenant-roles.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { ConsoleLog } from '@logto/shared';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const consoleLog = new ConsoleLog();
 /**
  * This script update the following in the admin tenant:

package/alterations-js/1.13.0-1704692973-remove-legacy-resources.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { generateStandardId } from '@logto/shared/universal';
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         // Delete all legacy roles in the admin tenant

package/alterations-js/1.13.0-1704934999-add-magic-links-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
 const alteration = {
     up: async (pool) => {

package/alterations-js/1.13.0-1704935001-add-organization-invitation-tables.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
 const alteration = {
     up: async (pool) => {

package/alterations-js/1.13.0-1705288654-add-application-user-consent-organizations-table.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `
     select current_database();

package/alterations-js/1.13.0-1705991158-update-invitation-indices.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 /**
  * @fileoverview Separates the index (tenant_id, inviter_id, organization_id) to two indices. Also
  * makes the inviter_id nullable.

package/alterations-js/1.13.0-1706449174-update-organization-invitation-column.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1706510290-protected-app-host-index.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1706512952-restore-get-started-page.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.0-1706528755-remove-magic-links.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
 const alteration = {
     up: async (pool) => {

package/alterations-js/1.13.0-1706585206-protected-app-custom-domain-unique.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const alteration = {
     up: async (pool) => {
         await pool.query(sql `

package/alterations-js/1.13.1-1707360939-grant-is-suspended-read-permission.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { sql } from 'slonik';
+import { sql } from '@silverhand/slonik';
 const getDatabaseName = async (pool) => {
     const { currentDatabase } = await pool.one(sql `
     select current_database();

package/alterations-js/1.14.0-1708916601-remove-management-api-scopes-assigned-to-user-role.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.14.0-1708916601-remove-management-api-scopes-assigned-to-user-role.js ADDED Viewed

@@ -0,0 +1,36 @@
+import { sql } from '@silverhand/slonik';
+var RoleType;
+(function (RoleType) {
+    RoleType["User"] = "User";
+})(RoleType || (RoleType = {}));
+const getManagementApiResourceIndicator = (tenantId) => `https://${tenantId}.logto.app/api`;
+// Remove management API scopes assigned to user roles, in case they were assigned by management API and bypassed the constraints in admin console.
+const alteration = {
+    up: async (pool) => {
+        const { rows } = await pool.query(sql `
+      select
+        roles_scopes.id as "rolesScopesId",
+        roles_scopes.tenant_id as "tenantId",
+        resources.indicator as indicator from roles_scopes
+      join roles
+        on roles_scopes.role_id = roles.id and roles_scopes.tenant_id = roles.tenant_id
+      join scopes on
+        roles_scopes.scope_id = scopes.id and roles_scopes.tenant_id = scopes.tenant_id
+      join resources on
+        scopes.resource_id = resources.id and scopes.tenant_id = resources.tenant_id
+      where roles.type = ${RoleType.User};
+    `);
+        const rolesScopesIdsToRemove = rows
+            .filter(({ indicator, tenantId }) => indicator === getManagementApiResourceIndicator(tenantId))
+            .map(({ rolesScopesId }) => rolesScopesId);
+        if (rolesScopesIdsToRemove.length > 0) {
+            await pool.query(sql `
+        delete from roles_scopes where id in (${sql.join(rolesScopesIdsToRemove, sql `, `)});
+      `);
+        }
+    },
+    down: async (pool) => {
+        // It cannot be reverted automatically.
+    },
+};
+export default alteration;

package/alterations-js/1.14.0-1709190131-enhance-dau-data-accuracy.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.14.0-1709190131-enhance-dau-data-accuracy.js ADDED Viewed

@@ -0,0 +1,14 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter table daily_active_users alter column date set default now();
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      alter table daily_active_users alter column date drop default;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.15.0-1709521416-user-password-encrypt-method.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.15.0-1709521416-user-password-encrypt-method.js ADDED Viewed

@@ -0,0 +1,31 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter type users_password_encryption_method add value 'SHA1';
+      alter type users_password_encryption_method add value 'SHA256';
+      alter type users_password_encryption_method add value 'MD5';
+      alter type users_password_encryption_method add value 'Bcrypt';
+    `);
+    },
+    down: async (pool) => {
+        const { rows } = await pool.query(sql `
+      select id from users
+      where password_encryption_method <> ${'Argon2i'}
+    `);
+        if (rows.length > 0) {
+            throw new Error('There are users with password encryption methods other than Argon2i.');
+        }
+        await pool.query(sql `
+      create type users_password_encryption_method_revised as enum ('Argon2i');
+      alter table users
+      alter column password_encryption_method type users_password_encryption_method_revised
+      using password_encryption_method::text::users_password_encryption_method_revised;
+      drop type users_password_encryption_method;
+      alter type users_password_encryption_method_revised rename to users_password_encryption_method;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.15.0-1709528944-regenerate-dau-data.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.15.0-1709528944-regenerate-dau-data.js ADDED Viewed

@@ -0,0 +1,34 @@
+import { generateStandardId } from '@logto/shared/universal';
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        // Delete all record from `daily_active_users` table
+        await pool.query(sql `delete from daily_active_users;`);
+        // Retrieve all active user logs from `logs` table
+        const { rows: interactionLogs } = await pool.query(sql `
+      select tenant_id, payload->>'userId' as user_id, created_at
+      from logs
+      where payload->>'userId' is not null and key like 'ExchangeTokenBy.%' and payload->>'result' = 'Success'
+    `);
+        if (interactionLogs.length === 0) {
+            console.log('No active user interaction logs found, skip alteration');
+            return;
+        }
+        // Generate DAU data from active user logs
+        for (const { tenantId, userId, createdAt } of interactionLogs) {
+            /**
+             * Note: we ignore the conflict here because conflict data may be inserted when staging.
+             */
+            // eslint-disable-next-line no-await-in-loop
+            await pool.query(sql `
+        insert into daily_active_users (id, tenant_id, user_id, date)
+        values (${generateStandardId()},${tenantId}, ${userId}, ${new Date(createdAt).toISOString()})
+        on conflict do nothing;
+      `);
+        }
+    },
+    down: async (pool) => {
+        // Cannot be reverted
+    },
+};
+export default alteration;

package/alterations-js/1.15.0-1710223946-add-fetch-custom-jwt-cloud-scope.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.15.0-1710223946-add-fetch-custom-jwt-cloud-scope.js ADDED Viewed

@@ -0,0 +1,52 @@
+import { generateStandardId } from '@logto/shared/universal';
+import { sql } from '@silverhand/slonik';
+const cloudApiIndicator = 'https://cloud.logto.io/api';
+const cloudConnectionAppRoleName = 'tenantApplication';
+const adminTenantId = 'admin';
+const fetchCustomJwtCloudScopeName = 'fetch:custom:jwt';
+const fetchCustomJwtCloudScopeDescription = 'Allow accessing external resource to execute JWT payload customizer script and fetch the parsed token payload.';
+const alteration = {
+    up: async (pool) => {
+        // Get the Cloud API resource
+        const cloudApiResource = await pool.one(sql `
+      select * from resources
+      where tenant_id = ${adminTenantId}
+      and indicator = ${cloudApiIndicator}
+    `);
+        // Get cloud connection application role
+        const tenantApplicationRole = await pool.one(sql `
+      select * from roles
+      where tenant_id = ${adminTenantId}
+      and name = ${cloudConnectionAppRoleName} and type = 'MachineToMachine'
+    `);
+        // Create the `custom:jwt` scope
+        const customJwtCloudScope = await pool.one(sql `
+      insert into scopes (id, tenant_id, resource_id, name, description)
+      values (${generateStandardId()}, ${adminTenantId}, ${cloudApiResource.id}, ${fetchCustomJwtCloudScopeName}, ${fetchCustomJwtCloudScopeDescription})
+      returning *;
+    `);
+        // Assign the `custom:jwt` scope to cloud connection application role
+        await pool.query(sql `
+      insert into roles_scopes (id, tenant_id, role_id, scope_id)
+      values (${generateStandardId()}, ${adminTenantId}, ${tenantApplicationRole.id}, ${customJwtCloudScope.id});
+    `);
+    },
+    down: async (pool) => {
+        // Get the Cloud API resource
+        const cloudApiResource = await pool.one(sql `
+      select * from resources
+      where tenant_id = ${adminTenantId}
+      and indicator = ${cloudApiIndicator}
+    `);
+        // Remove the `custom:jwt` scope
+        await pool.query(sql `
+      delete from scopes
+      where
+        tenant_id = ${adminTenantId} and
+        name = ${fetchCustomJwtCloudScopeName} and
+        description = ${fetchCustomJwtCloudScopeDescription} and
+        resource_id = ${cloudApiResource.id}
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.15.0-1710408335-make-resource-scopes-description-nullable.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.15.0-1710408335-make-resource-scopes-description-nullable.js ADDED Viewed

@@ -0,0 +1,18 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        // Make the resource scopes description nullable
+        await pool.query(sql `
+      alter table scopes
+      alter column description drop not null;
+    `);
+    },
+    down: async (pool) => {
+        // Revert the resource scopes description nullable
+        await pool.query(sql `
+      alter table scopes
+      alter column description set not null;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.15.0-1710859622-add-oidc-standard-claim-properties.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;