@revealui/db 0.2.0 → 0.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +0 -4
- package/dist/audit-store.d.ts.map +1 -1
- package/dist/audit-store.js +1 -1
- package/dist/audit-store.js.map +1 -1
- package/dist/cleanup/cross-db-cleanup.d.ts +63 -0
- package/dist/cleanup/cross-db-cleanup.d.ts.map +1 -0
- package/dist/cleanup/cross-db-cleanup.js +150 -0
- package/dist/cleanup/cross-db-cleanup.js.map +1 -0
- package/dist/cleanup/index.d.ts +10 -0
- package/dist/cleanup/index.d.ts.map +1 -0
- package/dist/cleanup/index.js +10 -0
- package/dist/cleanup/index.js.map +1 -0
- package/dist/cleanup/stale-tokens.d.ts +37 -0
- package/dist/cleanup/stale-tokens.d.ts.map +1 -0
- package/dist/cleanup/stale-tokens.js +113 -0
- package/dist/cleanup/stale-tokens.js.map +1 -0
- package/dist/client/index.d.ts +13 -0
- package/dist/client/index.d.ts.map +1 -1
- package/dist/client/index.js +46 -7
- package/dist/client/index.js.map +1 -1
- package/dist/client/types.d.ts.map +1 -1
- package/dist/crypto.d.ts.map +1 -1
- package/dist/crypto.js +6 -0
- package/dist/crypto.js.map +1 -1
- package/dist/index.d.ts +2 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +4 -2
- package/dist/index.js.map +1 -1
- package/dist/log-transport.d.ts.map +1 -1
- package/dist/log-transport.js +3 -1
- package/dist/log-transport.js.map +1 -1
- package/dist/pool.d.ts +1 -4
- package/dist/pool.d.ts.map +1 -1
- package/dist/pool.js +29 -13
- package/dist/pool.js.map +1 -1
- package/dist/queries/boards.d.ts +13 -1
- package/dist/queries/boards.d.ts.map +1 -1
- package/dist/queries/boards.js +5 -2
- package/dist/queries/boards.js.map +1 -1
- package/dist/queries/code-provenance.d.ts +2 -0
- package/dist/queries/code-provenance.d.ts.map +1 -1
- package/dist/queries/code-provenance.js +8 -2
- package/dist/queries/code-provenance.js.map +1 -1
- package/dist/queries/media.d.ts +84 -0
- package/dist/queries/media.d.ts.map +1 -0
- package/dist/queries/media.js +47 -0
- package/dist/queries/media.js.map +1 -0
- package/dist/queries/optimized-queries.js +1 -1
- package/dist/queries/optimized-queries.js.map +1 -1
- package/dist/queries/pages.d.ts +119 -0
- package/dist/queries/pages.d.ts.map +1 -0
- package/dist/queries/pages.js +61 -0
- package/dist/queries/pages.js.map +1 -0
- package/dist/queries/posts.d.ts +107 -0
- package/dist/queries/posts.d.ts.map +1 -0
- package/dist/queries/posts.js +55 -0
- package/dist/queries/posts.js.map +1 -0
- package/dist/queries/sites.d.ts +127 -0
- package/dist/queries/sites.d.ts.map +1 -0
- package/dist/queries/sites.js +83 -0
- package/dist/queries/sites.js.map +1 -0
- package/dist/queries/ticket-comments.d.ts +9 -1
- package/dist/queries/ticket-comments.d.ts.map +1 -1
- package/dist/queries/ticket-comments.js +4 -0
- package/dist/queries/ticket-comments.js.map +1 -1
- package/dist/queries/ticket-labels.d.ts +10 -0
- package/dist/queries/ticket-labels.d.ts.map +1 -1
- package/dist/queries/ticket-labels.js +4 -0
- package/dist/queries/ticket-labels.js.map +1 -1
- package/dist/queries/tickets.d.ts +1 -1
- package/dist/queries/tickets.d.ts.map +1 -1
- package/dist/queries/tickets.js +4 -7
- package/dist/queries/tickets.js.map +1 -1
- package/dist/queries/users.d.ts +109 -0
- package/dist/queries/users.d.ts.map +1 -0
- package/dist/queries/users.js +44 -0
- package/dist/queries/users.js.map +1 -0
- package/dist/schema/accounts.d.ts +962 -0
- package/dist/schema/accounts.d.ts.map +1 -0
- package/dist/schema/accounts.js +115 -0
- package/dist/schema/accounts.js.map +1 -0
- package/dist/schema/agents.d.ts +167 -3
- package/dist/schema/agents.d.ts.map +1 -1
- package/dist/schema/agents.js +58 -7
- package/dist/schema/agents.js.map +1 -1
- package/dist/schema/api-keys.d.ts +17 -0
- package/dist/schema/api-keys.d.ts.map +1 -1
- package/dist/schema/api-keys.js +3 -0
- package/dist/schema/api-keys.js.map +1 -1
- package/dist/schema/app-logs.d.ts.map +1 -1
- package/dist/schema/app-logs.js.map +1 -1
- package/dist/schema/audit-log.d.ts.map +1 -1
- package/dist/schema/audit-log.js.map +1 -1
- package/dist/schema/cms.d.ts +68 -0
- package/dist/schema/cms.d.ts.map +1 -1
- package/dist/schema/cms.js +18 -4
- package/dist/schema/cms.js.map +1 -1
- package/dist/schema/code-provenance.d.ts.map +1 -1
- package/dist/schema/code-provenance.js.map +1 -1
- package/dist/schema/collab-edits.d.ts.map +1 -1
- package/dist/schema/collab-edits.js +2 -2
- package/dist/schema/collab-edits.js.map +1 -1
- package/dist/schema/coordination.d.ts +967 -0
- package/dist/schema/coordination.d.ts.map +1 -0
- package/dist/schema/coordination.js +109 -0
- package/dist/schema/coordination.js.map +1 -0
- package/dist/schema/crdt-operations.d.ts.map +1 -1
- package/dist/schema/crdt-operations.js.map +1 -1
- package/dist/schema/error-events.d.ts.map +1 -1
- package/dist/schema/error-events.js.map +1 -1
- package/dist/schema/gdpr.d.ts +529 -0
- package/dist/schema/gdpr.d.ts.map +1 -0
- package/dist/schema/gdpr.js +93 -0
- package/dist/schema/gdpr.js.map +1 -0
- package/dist/schema/index.d.ts +41 -1
- package/dist/schema/index.d.ts.map +1 -1
- package/dist/schema/index.js +82 -0
- package/dist/schema/index.js.map +1 -1
- package/dist/schema/jobs.d.ts +242 -0
- package/dist/schema/jobs.d.ts.map +1 -0
- package/dist/schema/jobs.js +48 -0
- package/dist/schema/jobs.js.map +1 -0
- package/dist/schema/licenses.d.ts +51 -0
- package/dist/schema/licenses.d.ts.map +1 -1
- package/dist/schema/licenses.js +12 -3
- package/dist/schema/licenses.js.map +1 -1
- package/dist/schema/magic-links.d.ts +136 -0
- package/dist/schema/magic-links.d.ts.map +1 -0
- package/dist/schema/magic-links.js +32 -0
- package/dist/schema/magic-links.js.map +1 -0
- package/dist/schema/marketplace.d.ts +496 -0
- package/dist/schema/marketplace.d.ts.map +1 -0
- package/dist/schema/marketplace.js +110 -0
- package/dist/schema/marketplace.js.map +1 -0
- package/dist/schema/node-ids.d.ts.map +1 -1
- package/dist/schema/node-ids.js.map +1 -1
- package/dist/schema/oauth-accounts.d.ts +205 -0
- package/dist/schema/oauth-accounts.d.ts.map +1 -0
- package/dist/schema/oauth-accounts.js +35 -0
- package/dist/schema/oauth-accounts.js.map +1 -0
- package/dist/schema/pages.d.ts +34 -0
- package/dist/schema/pages.d.ts.map +1 -1
- package/dist/schema/pages.js +14 -4
- package/dist/schema/pages.js.map +1 -1
- package/dist/schema/passkeys.d.ts +208 -0
- package/dist/schema/passkeys.d.ts.map +1 -0
- package/dist/schema/passkeys.js +47 -0
- package/dist/schema/passkeys.js.map +1 -0
- package/dist/schema/password-reset-tokens.d.ts.map +1 -1
- package/dist/schema/password-reset-tokens.js +5 -2
- package/dist/schema/password-reset-tokens.js.map +1 -1
- package/dist/schema/rag.d.ts +566 -0
- package/dist/schema/rag.d.ts.map +1 -0
- package/dist/schema/rag.js +85 -0
- package/dist/schema/rag.js.map +1 -0
- package/dist/schema/rate-limits.d.ts.map +1 -1
- package/dist/schema/rate-limits.js +5 -2
- package/dist/schema/rate-limits.js.map +1 -1
- package/dist/schema/rest.d.ts +11 -2
- package/dist/schema/rest.d.ts.map +1 -1
- package/dist/schema/rest.js +11 -2
- package/dist/schema/rest.js.map +1 -1
- package/dist/schema/sites.d.ts +34 -0
- package/dist/schema/sites.d.ts.map +1 -1
- package/dist/schema/sites.js +15 -3
- package/dist/schema/sites.js.map +1 -1
- package/dist/schema/tenants.d.ts +188 -0
- package/dist/schema/tenants.d.ts.map +1 -0
- package/dist/schema/tenants.js +15 -0
- package/dist/schema/tenants.js.map +1 -0
- package/dist/schema/tickets.d.ts.map +1 -1
- package/dist/schema/tickets.js +17 -5
- package/dist/schema/tickets.js.map +1 -1
- package/dist/schema/users.d.ts +259 -0
- package/dist/schema/users.d.ts.map +1 -1
- package/dist/schema/users.js +39 -3
- package/dist/schema/users.js.map +1 -1
- package/dist/schema/vector.d.ts +1 -0
- package/dist/schema/vector.d.ts.map +1 -1
- package/dist/schema/vector.js +2 -0
- package/dist/schema/vector.js.map +1 -1
- package/dist/schema/waitlist.d.ts.map +1 -1
- package/dist/schema/waitlist.js.map +1 -1
- package/dist/schema/webhook-events.d.ts +68 -0
- package/dist/schema/webhook-events.d.ts.map +1 -0
- package/dist/schema/webhook-events.js +17 -0
- package/dist/schema/webhook-events.js.map +1 -0
- package/dist/schema/yjs-documents.d.ts.map +1 -1
- package/dist/schema/yjs-documents.js.map +1 -1
- package/dist/scripts/cleanup-expired.d.ts +12 -0
- package/dist/scripts/cleanup-expired.d.ts.map +1 -0
- package/dist/scripts/cleanup-expired.js +50 -0
- package/dist/scripts/cleanup-expired.js.map +1 -0
- package/dist/security-audit-storage.d.ts +54 -0
- package/dist/security-audit-storage.d.ts.map +1 -0
- package/dist/security-audit-storage.js +100 -0
- package/dist/security-audit-storage.js.map +1 -0
- package/dist/types/database.d.ts +381 -2
- package/dist/types/database.d.ts.map +1 -1
- package/dist/types/database.js +78 -1
- package/dist/types/database.js.map +1 -1
- package/dist/types/discover.d.ts +2 -2
- package/dist/types/discover.d.ts.map +1 -1
- package/dist/types/discover.js +16 -16
- package/dist/types/discover.js.map +1 -1
- package/dist/types/extract-relationships.d.ts.map +1 -1
- package/dist/types/extract-relationships.js.map +1 -1
- package/dist/types/generate-contracts.js.map +1 -1
- package/dist/types/generate-zod-schemas.js.map +1 -1
- package/dist/types/generate.js.map +1 -1
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/introspect.d.ts.map +1 -1
- package/dist/types/introspect.js +0 -1
- package/dist/types/introspect.js.map +1 -1
- package/dist/types/stripe-schema.d.ts.map +1 -1
- package/dist/types/stripe-schema.js +7 -2
- package/dist/types/stripe-schema.js.map +1 -1
- package/dist/utils/soft-delete.d.ts +45 -0
- package/dist/utils/soft-delete.d.ts.map +1 -0
- package/dist/utils/soft-delete.js +45 -0
- package/dist/utils/soft-delete.js.map +1 -0
- package/dist/validation/cross-db.d.ts +60 -0
- package/dist/validation/cross-db.d.ts.map +1 -0
- package/dist/validation/cross-db.js +146 -0
- package/dist/validation/cross-db.js.map +1 -0
- package/package.json +45 -6
|
@@ -0,0 +1,205 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* OAuth Accounts table — linked provider identities per user
|
|
3
|
+
*
|
|
4
|
+
* Stores the mapping between local users and their OAuth provider accounts.
|
|
5
|
+
* Supports multiple providers per user (Google, GitHub, Vercel, etc.).
|
|
6
|
+
* Follows the same pattern as user_api_keys: separate table instead of
|
|
7
|
+
* nullable columns on users to avoid table bloat.
|
|
8
|
+
*/
|
|
9
|
+
export declare const oauthAccounts: import("drizzle-orm/pg-core").PgTableWithColumns<{
|
|
10
|
+
name: "oauth_accounts";
|
|
11
|
+
schema: undefined;
|
|
12
|
+
columns: {
|
|
13
|
+
id: import("drizzle-orm/pg-core").PgColumn<{
|
|
14
|
+
name: "id";
|
|
15
|
+
tableName: "oauth_accounts";
|
|
16
|
+
dataType: "string";
|
|
17
|
+
columnType: "PgText";
|
|
18
|
+
data: string;
|
|
19
|
+
driverParam: string;
|
|
20
|
+
notNull: true;
|
|
21
|
+
hasDefault: false;
|
|
22
|
+
isPrimaryKey: true;
|
|
23
|
+
isAutoincrement: false;
|
|
24
|
+
hasRuntimeDefault: false;
|
|
25
|
+
enumValues: [string, ...string[]];
|
|
26
|
+
baseColumn: never;
|
|
27
|
+
identity: undefined;
|
|
28
|
+
generated: undefined;
|
|
29
|
+
}, {}, {}>;
|
|
30
|
+
userId: import("drizzle-orm/pg-core").PgColumn<{
|
|
31
|
+
name: "user_id";
|
|
32
|
+
tableName: "oauth_accounts";
|
|
33
|
+
dataType: "string";
|
|
34
|
+
columnType: "PgText";
|
|
35
|
+
data: string;
|
|
36
|
+
driverParam: string;
|
|
37
|
+
notNull: true;
|
|
38
|
+
hasDefault: false;
|
|
39
|
+
isPrimaryKey: false;
|
|
40
|
+
isAutoincrement: false;
|
|
41
|
+
hasRuntimeDefault: false;
|
|
42
|
+
enumValues: [string, ...string[]];
|
|
43
|
+
baseColumn: never;
|
|
44
|
+
identity: undefined;
|
|
45
|
+
generated: undefined;
|
|
46
|
+
}, {}, {}>;
|
|
47
|
+
provider: import("drizzle-orm/pg-core").PgColumn<{
|
|
48
|
+
name: "provider";
|
|
49
|
+
tableName: "oauth_accounts";
|
|
50
|
+
dataType: "string";
|
|
51
|
+
columnType: "PgText";
|
|
52
|
+
data: string;
|
|
53
|
+
driverParam: string;
|
|
54
|
+
notNull: true;
|
|
55
|
+
hasDefault: false;
|
|
56
|
+
isPrimaryKey: false;
|
|
57
|
+
isAutoincrement: false;
|
|
58
|
+
hasRuntimeDefault: false;
|
|
59
|
+
enumValues: [string, ...string[]];
|
|
60
|
+
baseColumn: never;
|
|
61
|
+
identity: undefined;
|
|
62
|
+
generated: undefined;
|
|
63
|
+
}, {}, {}>;
|
|
64
|
+
providerUserId: import("drizzle-orm/pg-core").PgColumn<{
|
|
65
|
+
name: "provider_user_id";
|
|
66
|
+
tableName: "oauth_accounts";
|
|
67
|
+
dataType: "string";
|
|
68
|
+
columnType: "PgText";
|
|
69
|
+
data: string;
|
|
70
|
+
driverParam: string;
|
|
71
|
+
notNull: true;
|
|
72
|
+
hasDefault: false;
|
|
73
|
+
isPrimaryKey: false;
|
|
74
|
+
isAutoincrement: false;
|
|
75
|
+
hasRuntimeDefault: false;
|
|
76
|
+
enumValues: [string, ...string[]];
|
|
77
|
+
baseColumn: never;
|
|
78
|
+
identity: undefined;
|
|
79
|
+
generated: undefined;
|
|
80
|
+
}, {}, {}>;
|
|
81
|
+
providerEmail: import("drizzle-orm/pg-core").PgColumn<{
|
|
82
|
+
name: "provider_email";
|
|
83
|
+
tableName: "oauth_accounts";
|
|
84
|
+
dataType: "string";
|
|
85
|
+
columnType: "PgText";
|
|
86
|
+
data: string;
|
|
87
|
+
driverParam: string;
|
|
88
|
+
notNull: false;
|
|
89
|
+
hasDefault: false;
|
|
90
|
+
isPrimaryKey: false;
|
|
91
|
+
isAutoincrement: false;
|
|
92
|
+
hasRuntimeDefault: false;
|
|
93
|
+
enumValues: [string, ...string[]];
|
|
94
|
+
baseColumn: never;
|
|
95
|
+
identity: undefined;
|
|
96
|
+
generated: undefined;
|
|
97
|
+
}, {}, {}>;
|
|
98
|
+
providerName: import("drizzle-orm/pg-core").PgColumn<{
|
|
99
|
+
name: "provider_name";
|
|
100
|
+
tableName: "oauth_accounts";
|
|
101
|
+
dataType: "string";
|
|
102
|
+
columnType: "PgText";
|
|
103
|
+
data: string;
|
|
104
|
+
driverParam: string;
|
|
105
|
+
notNull: false;
|
|
106
|
+
hasDefault: false;
|
|
107
|
+
isPrimaryKey: false;
|
|
108
|
+
isAutoincrement: false;
|
|
109
|
+
hasRuntimeDefault: false;
|
|
110
|
+
enumValues: [string, ...string[]];
|
|
111
|
+
baseColumn: never;
|
|
112
|
+
identity: undefined;
|
|
113
|
+
generated: undefined;
|
|
114
|
+
}, {}, {}>;
|
|
115
|
+
providerAvatarUrl: import("drizzle-orm/pg-core").PgColumn<{
|
|
116
|
+
name: "provider_avatar_url";
|
|
117
|
+
tableName: "oauth_accounts";
|
|
118
|
+
dataType: "string";
|
|
119
|
+
columnType: "PgText";
|
|
120
|
+
data: string;
|
|
121
|
+
driverParam: string;
|
|
122
|
+
notNull: false;
|
|
123
|
+
hasDefault: false;
|
|
124
|
+
isPrimaryKey: false;
|
|
125
|
+
isAutoincrement: false;
|
|
126
|
+
hasRuntimeDefault: false;
|
|
127
|
+
enumValues: [string, ...string[]];
|
|
128
|
+
baseColumn: never;
|
|
129
|
+
identity: undefined;
|
|
130
|
+
generated: undefined;
|
|
131
|
+
}, {}, {}>;
|
|
132
|
+
createdAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
133
|
+
name: "created_at";
|
|
134
|
+
tableName: "oauth_accounts";
|
|
135
|
+
dataType: "date";
|
|
136
|
+
columnType: "PgTimestamp";
|
|
137
|
+
data: Date;
|
|
138
|
+
driverParam: string;
|
|
139
|
+
notNull: true;
|
|
140
|
+
hasDefault: true;
|
|
141
|
+
isPrimaryKey: false;
|
|
142
|
+
isAutoincrement: false;
|
|
143
|
+
hasRuntimeDefault: false;
|
|
144
|
+
enumValues: undefined;
|
|
145
|
+
baseColumn: never;
|
|
146
|
+
identity: undefined;
|
|
147
|
+
generated: undefined;
|
|
148
|
+
}, {}, {}>;
|
|
149
|
+
updatedAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
150
|
+
name: "updated_at";
|
|
151
|
+
tableName: "oauth_accounts";
|
|
152
|
+
dataType: "date";
|
|
153
|
+
columnType: "PgTimestamp";
|
|
154
|
+
data: Date;
|
|
155
|
+
driverParam: string;
|
|
156
|
+
notNull: true;
|
|
157
|
+
hasDefault: true;
|
|
158
|
+
isPrimaryKey: false;
|
|
159
|
+
isAutoincrement: false;
|
|
160
|
+
hasRuntimeDefault: false;
|
|
161
|
+
enumValues: undefined;
|
|
162
|
+
baseColumn: never;
|
|
163
|
+
identity: undefined;
|
|
164
|
+
generated: undefined;
|
|
165
|
+
}, {}, {}>;
|
|
166
|
+
deletedAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
167
|
+
name: "deleted_at";
|
|
168
|
+
tableName: "oauth_accounts";
|
|
169
|
+
dataType: "date";
|
|
170
|
+
columnType: "PgTimestamp";
|
|
171
|
+
data: Date;
|
|
172
|
+
driverParam: string;
|
|
173
|
+
notNull: false;
|
|
174
|
+
hasDefault: false;
|
|
175
|
+
isPrimaryKey: false;
|
|
176
|
+
isAutoincrement: false;
|
|
177
|
+
hasRuntimeDefault: false;
|
|
178
|
+
enumValues: undefined;
|
|
179
|
+
baseColumn: never;
|
|
180
|
+
identity: undefined;
|
|
181
|
+
generated: undefined;
|
|
182
|
+
}, {}, {}>;
|
|
183
|
+
anonymizedAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
184
|
+
name: "anonymized_at";
|
|
185
|
+
tableName: "oauth_accounts";
|
|
186
|
+
dataType: "date";
|
|
187
|
+
columnType: "PgTimestamp";
|
|
188
|
+
data: Date;
|
|
189
|
+
driverParam: string;
|
|
190
|
+
notNull: false;
|
|
191
|
+
hasDefault: false;
|
|
192
|
+
isPrimaryKey: false;
|
|
193
|
+
isAutoincrement: false;
|
|
194
|
+
hasRuntimeDefault: false;
|
|
195
|
+
enumValues: undefined;
|
|
196
|
+
baseColumn: never;
|
|
197
|
+
identity: undefined;
|
|
198
|
+
generated: undefined;
|
|
199
|
+
}, {}, {}>;
|
|
200
|
+
};
|
|
201
|
+
dialect: "pg";
|
|
202
|
+
}>;
|
|
203
|
+
export type OauthAccount = typeof oauthAccounts.$inferSelect;
|
|
204
|
+
export type NewOauthAccount = typeof oauthAccounts.$inferInsert;
|
|
205
|
+
//# sourceMappingURL=oauth-accounts.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"oauth-accounts.d.ts","sourceRoot":"","sources":["../../src/schema/oauth-accounts.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAKH,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAgCzB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,OAAO,aAAa,CAAC,YAAY,CAAC;AAC7D,MAAM,MAAM,eAAe,GAAG,OAAO,aAAa,CAAC,YAAY,CAAC"}
|
|
@@ -0,0 +1,35 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* OAuth Accounts table — linked provider identities per user
|
|
3
|
+
*
|
|
4
|
+
* Stores the mapping between local users and their OAuth provider accounts.
|
|
5
|
+
* Supports multiple providers per user (Google, GitHub, Vercel, etc.).
|
|
6
|
+
* Follows the same pattern as user_api_keys: separate table instead of
|
|
7
|
+
* nullable columns on users to avoid table bloat.
|
|
8
|
+
*/
|
|
9
|
+
import { index, pgTable, text, timestamp, uniqueIndex } from 'drizzle-orm/pg-core';
|
|
10
|
+
import { users } from './users.js';
|
|
11
|
+
export const oauthAccounts = pgTable('oauth_accounts', {
|
|
12
|
+
id: text('id').primaryKey(),
|
|
13
|
+
// Owner
|
|
14
|
+
userId: text('user_id')
|
|
15
|
+
.notNull()
|
|
16
|
+
.references(() => users.id, { onDelete: 'cascade' }),
|
|
17
|
+
// Provider identity
|
|
18
|
+
provider: text('provider').notNull(), // 'google' | 'github' | 'vercel'
|
|
19
|
+
providerUserId: text('provider_user_id').notNull(),
|
|
20
|
+
providerEmail: text('provider_email'),
|
|
21
|
+
providerName: text('provider_name'),
|
|
22
|
+
providerAvatarUrl: text('provider_avatar_url'),
|
|
23
|
+
// Timestamps
|
|
24
|
+
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
25
|
+
updatedAt: timestamp('updated_at', { withTimezone: true }).defaultNow().notNull(),
|
|
26
|
+
// Soft-delete: null = active, timestamp = when unlinked
|
|
27
|
+
deletedAt: timestamp('deleted_at', { withTimezone: true }),
|
|
28
|
+
// GDPR anonymization: null = not anonymized, timestamp = when PII (providerEmail/Name/AvatarUrl) was wiped
|
|
29
|
+
anonymizedAt: timestamp('anonymized_at', { withTimezone: true }),
|
|
30
|
+
}, (t) => [
|
|
31
|
+
uniqueIndex('oauth_accounts_provider_user_idx').on(t.provider, t.providerUserId),
|
|
32
|
+
index('oauth_accounts_user_id_idx').on(t.userId),
|
|
33
|
+
index('oauth_accounts_deleted_at_idx').on(t.deletedAt),
|
|
34
|
+
]);
|
|
35
|
+
//# sourceMappingURL=oauth-accounts.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"oauth-accounts.js","sourceRoot":"","sources":["../../src/schema/oauth-accounts.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AACnF,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AAEnC,MAAM,CAAC,MAAM,aAAa,GAAG,OAAO,CAClC,gBAAgB,EAChB;IACE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAE3B,QAAQ;IACR,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC;SACpB,OAAO,EAAE;SACT,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IAEtD,oBAAoB;IACpB,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,EAAE,iCAAiC;IACvE,cAAc,EAAE,IAAI,CAAC,kBAAkB,CAAC,CAAC,OAAO,EAAE;IAClD,aAAa,EAAE,IAAI,CAAC,gBAAgB,CAAC;IACrC,YAAY,EAAE,IAAI,CAAC,eAAe,CAAC;IACnC,iBAAiB,EAAE,IAAI,CAAC,qBAAqB,CAAC;IAE9C,aAAa;IACb,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;IACjF,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;IAEjF,wDAAwD;IACxD,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;IAE1D,2GAA2G;IAC3G,YAAY,EAAE,SAAS,CAAC,eAAe,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;CACjE,EACD,CAAC,CAAC,EAAE,EAAE,CAAC;IACL,WAAW,CAAC,kCAAkC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,cAAc,CAAC;IAChF,KAAK,CAAC,4BAA4B,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC;IAChD,KAAK,CAAC,+BAA+B,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;CACvD,CACF,CAAC"}
|
package/dist/schema/pages.d.ts
CHANGED
|
@@ -42,6 +42,23 @@ export declare const pages: import("drizzle-orm/pg-core").PgTableWithColumns<{
|
|
|
42
42
|
identity: undefined;
|
|
43
43
|
generated: undefined;
|
|
44
44
|
}, {}, {}>;
|
|
45
|
+
version: import("drizzle-orm/pg-core").PgColumn<{
|
|
46
|
+
name: "version";
|
|
47
|
+
tableName: "pages";
|
|
48
|
+
dataType: "number";
|
|
49
|
+
columnType: "PgInteger";
|
|
50
|
+
data: number;
|
|
51
|
+
driverParam: string | number;
|
|
52
|
+
notNull: true;
|
|
53
|
+
hasDefault: true;
|
|
54
|
+
isPrimaryKey: false;
|
|
55
|
+
isAutoincrement: false;
|
|
56
|
+
hasRuntimeDefault: false;
|
|
57
|
+
enumValues: undefined;
|
|
58
|
+
baseColumn: never;
|
|
59
|
+
identity: undefined;
|
|
60
|
+
generated: undefined;
|
|
61
|
+
}, {}, {}>;
|
|
45
62
|
siteId: import("drizzle-orm/pg-core").PgColumn<{
|
|
46
63
|
name: "site_id";
|
|
47
64
|
tableName: "pages";
|
|
@@ -316,6 +333,23 @@ export declare const pages: import("drizzle-orm/pg-core").PgTableWithColumns<{
|
|
|
316
333
|
identity: undefined;
|
|
317
334
|
generated: undefined;
|
|
318
335
|
}, {}, {}>;
|
|
336
|
+
deletedAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
337
|
+
name: "deleted_at";
|
|
338
|
+
tableName: "pages";
|
|
339
|
+
dataType: "date";
|
|
340
|
+
columnType: "PgTimestamp";
|
|
341
|
+
data: Date;
|
|
342
|
+
driverParam: string;
|
|
343
|
+
notNull: false;
|
|
344
|
+
hasDefault: false;
|
|
345
|
+
isPrimaryKey: false;
|
|
346
|
+
isAutoincrement: false;
|
|
347
|
+
hasRuntimeDefault: false;
|
|
348
|
+
enumValues: undefined;
|
|
349
|
+
baseColumn: never;
|
|
350
|
+
identity: undefined;
|
|
351
|
+
generated: undefined;
|
|
352
|
+
}, {}, {}>;
|
|
319
353
|
};
|
|
320
354
|
dialect: "pg";
|
|
321
355
|
}>;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pages.d.ts","sourceRoot":"","sources":["../../src/schema/pages.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;
|
|
1
|
+
{"version":3,"file":"pages.d.ts","sourceRoot":"","sources":["../../src/schema/pages.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAWH,eAAO,MAAM,KAAK;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA0DjB,CAAC;AAMF,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA6BzB,CAAC;AAMF,MAAM,MAAM,IAAI,GAAG,OAAO,KAAK,CAAC,YAAY,CAAC;AAC7C,MAAM,MAAM,OAAO,GAAG,OAAO,KAAK,CAAC,YAAY,CAAC;AAChD,MAAM,MAAM,YAAY,GAAG,OAAO,aAAa,CAAC,YAAY,CAAC;AAC7D,MAAM,MAAM,eAAe,GAAG,OAAO,aAAa,CAAC,YAAY,CAAC"}
|
package/dist/schema/pages.js
CHANGED
|
@@ -4,7 +4,7 @@
|
|
|
4
4
|
* These tables store page content and hierarchies.
|
|
5
5
|
* The schema structure mirrors the Zod schemas in @revealui/contracts/entities.
|
|
6
6
|
*/
|
|
7
|
-
import { integer, jsonb, pgTable, text, timestamp } from 'drizzle-orm/pg-core';
|
|
7
|
+
import { index, integer, jsonb, pgTable, text, timestamp, uniqueIndex } from 'drizzle-orm/pg-core';
|
|
8
8
|
import { sites } from './sites.js';
|
|
9
9
|
import { users } from './users.js';
|
|
10
10
|
// =============================================================================
|
|
@@ -15,11 +15,13 @@ export const pages = pgTable('pages', {
|
|
|
15
15
|
id: text('id').primaryKey(),
|
|
16
16
|
// Schema versioning for migrations
|
|
17
17
|
schemaVersion: text('schema_version').notNull().default('1'),
|
|
18
|
+
// Optimistic locking — incremented on each update, checked to detect concurrent edits
|
|
19
|
+
version: integer('version').notNull().default(1),
|
|
18
20
|
// Relationships
|
|
19
21
|
siteId: text('site_id')
|
|
20
22
|
.notNull()
|
|
21
23
|
.references(() => sites.id, { onDelete: 'cascade' }),
|
|
22
|
-
parentId: text('parent_id'),
|
|
24
|
+
parentId: text('parent_id').references(() => pages.id, { onDelete: 'cascade' }),
|
|
23
25
|
templateId: text('template_id'),
|
|
24
26
|
// Basic info
|
|
25
27
|
title: text('title').notNull(),
|
|
@@ -42,7 +44,15 @@ export const pages = pgTable('pages', {
|
|
|
42
44
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
43
45
|
updatedAt: timestamp('updated_at', { withTimezone: true }).defaultNow().notNull(),
|
|
44
46
|
publishedAt: timestamp('published_at', { withTimezone: true }),
|
|
45
|
-
|
|
47
|
+
// Soft-delete: null = active, timestamp = when deleted
|
|
48
|
+
deletedAt: timestamp('deleted_at', { withTimezone: true }),
|
|
49
|
+
}, (table) => [
|
|
50
|
+
index('pages_parent_id_idx').on(table.parentId),
|
|
51
|
+
index('pages_site_id_idx').on(table.siteId),
|
|
52
|
+
index('pages_site_status_idx').on(table.siteId, table.status),
|
|
53
|
+
uniqueIndex('pages_slug_site_id_idx').on(table.slug, table.siteId),
|
|
54
|
+
index('pages_deleted_at_idx').on(table.deletedAt),
|
|
55
|
+
]);
|
|
46
56
|
// =============================================================================
|
|
47
57
|
// Page Revisions Table (for version history)
|
|
48
58
|
// =============================================================================
|
|
@@ -66,5 +76,5 @@ export const pageRevisions = pgTable('page_revisions', {
|
|
|
66
76
|
changeDescription: text('change_description'),
|
|
67
77
|
// Timestamps
|
|
68
78
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
69
|
-
});
|
|
79
|
+
}, (table) => [index('page_revisions_page_id_idx').on(table.pageId)]);
|
|
70
80
|
//# sourceMappingURL=pages.js.map
|
package/dist/schema/pages.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pages.js","sourceRoot":"","sources":["../../src/schema/pages.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,qBAAqB,
|
|
1
|
+
{"version":3,"file":"pages.js","sourceRoot":"","sources":["../../src/schema/pages.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAEnG,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AACnC,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AAEnC,gFAAgF;AAChF,cAAc;AACd,gFAAgF;AAEhF,MAAM,CAAC,MAAM,KAAK,GAAG,OAAO,CAC1B,OAAO,EACP;IACE,qBAAqB;IACrB,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAE3B,mCAAmC;IACnC,aAAa,EAAE,IAAI,CAAC,gBAAgB,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC;IAE5D,sFAAsF;IACtF,OAAO,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAEhD,gBAAgB;IAChB,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC;SACpB,OAAO,EAAE;SACT,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IACtD,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC,UAAU,CAAC,GAAgB,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IAC5F,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC;IAE/B,aAAa;IACb,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE;IAC9B,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE;IAC5B,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE;IAE5B,gDAAgD;IAChD,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC;IAEjD,+CAA+C;IAC/C,MAAM,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC,KAAK,EAAa,CAAC,OAAO,CAAC,EAAE,CAAC;IAEtD,2BAA2B;IAC3B,GAAG,EAAE,KAAK,CAAC,KAAK,CAAC;IAEjB,oBAAoB;IACpB,UAAU,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;IAC7C,SAAS,EAAE,OAAO,CAAC,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;IAE3C,8BAA8B;IAC9B,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC;IAEnB,aAAa;IACb,WAAW,EAAE,SAAS,CAAC,cAAc,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;IAE9D,aAAa;IACb,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;IACjF,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;IACjF,WAAW,EAAE,SAAS,CAAC,cAAc,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;IAE9D,uDAAuD;IACvD,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;CAC3D,EACD,CAAC,KAAK,EAAE,EAAE,CAAC;IACT,KAAK,CAAC,qBAAqB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC;IAC/C,KAAK,CAAC,mBAAmB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC;IAC3C,KAAK,CAAC,uBAAuB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC;IAC7D,WAAW,CAAC,wBAAwB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC;IAClE,KAAK,CAAC,sBAAsB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,SAAS,CAAC;CAClD,CACF,CAAC;AAEF,gFAAgF;AAChF,6CAA6C;AAC7C,gFAAgF;AAEhF,MAAM,CAAC,MAAM,aAAa,GAAG,OAAO,CAClC,gBAAgB,EAChB;IACE,qBAAqB;IACrB,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAE3B,gBAAgB;IAChB,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC;SACpB,OAAO,EAAE;SACT,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IACtD,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE;QACvD,QAAQ,EAAE,UAAU;KACrB,CAAC;IAEF,8CAA8C;IAC9C,cAAc,EAAE,OAAO,CAAC,iBAAiB,CAAC,CAAC,OAAO,EAAE;IAEpD,yBAAyB;IACzB,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE;IAC9B,MAAM,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC,KAAK,EAAa,CAAC,OAAO,CAAC,EAAE,CAAC;IACtD,GAAG,EAAE,KAAK,CAAC,KAAK,CAAC;IAEjB,gCAAgC;IAChC,iBAAiB,EAAE,IAAI,CAAC,oBAAoB,CAAC;IAE7C,aAAa;IACb,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;CAClF,EACD,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAClE,CAAC"}
|
|
@@ -0,0 +1,208 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Passkeys table
|
|
3
|
+
*
|
|
4
|
+
* Stores WebAuthn/FIDO2 passkey credentials for passwordless authentication.
|
|
5
|
+
* Each user can register multiple passkeys (e.g., fingerprint, security key, phone).
|
|
6
|
+
* Credential IDs and public keys are stored per the WebAuthn specification.
|
|
7
|
+
*/
|
|
8
|
+
export declare const passkeys: import("drizzle-orm/pg-core").PgTableWithColumns<{
|
|
9
|
+
name: "passkeys";
|
|
10
|
+
schema: undefined;
|
|
11
|
+
columns: {
|
|
12
|
+
id: import("drizzle-orm/pg-core").PgColumn<{
|
|
13
|
+
name: "id";
|
|
14
|
+
tableName: "passkeys";
|
|
15
|
+
dataType: "string";
|
|
16
|
+
columnType: "PgText";
|
|
17
|
+
data: string;
|
|
18
|
+
driverParam: string;
|
|
19
|
+
notNull: true;
|
|
20
|
+
hasDefault: false;
|
|
21
|
+
isPrimaryKey: true;
|
|
22
|
+
isAutoincrement: false;
|
|
23
|
+
hasRuntimeDefault: false;
|
|
24
|
+
enumValues: [string, ...string[]];
|
|
25
|
+
baseColumn: never;
|
|
26
|
+
identity: undefined;
|
|
27
|
+
generated: undefined;
|
|
28
|
+
}, {}, {}>;
|
|
29
|
+
userId: import("drizzle-orm/pg-core").PgColumn<{
|
|
30
|
+
name: "user_id";
|
|
31
|
+
tableName: "passkeys";
|
|
32
|
+
dataType: "string";
|
|
33
|
+
columnType: "PgText";
|
|
34
|
+
data: string;
|
|
35
|
+
driverParam: string;
|
|
36
|
+
notNull: true;
|
|
37
|
+
hasDefault: false;
|
|
38
|
+
isPrimaryKey: false;
|
|
39
|
+
isAutoincrement: false;
|
|
40
|
+
hasRuntimeDefault: false;
|
|
41
|
+
enumValues: [string, ...string[]];
|
|
42
|
+
baseColumn: never;
|
|
43
|
+
identity: undefined;
|
|
44
|
+
generated: undefined;
|
|
45
|
+
}, {}, {}>;
|
|
46
|
+
credentialId: import("drizzle-orm/pg-core").PgColumn<{
|
|
47
|
+
name: "credential_id";
|
|
48
|
+
tableName: "passkeys";
|
|
49
|
+
dataType: "string";
|
|
50
|
+
columnType: "PgText";
|
|
51
|
+
data: string;
|
|
52
|
+
driverParam: string;
|
|
53
|
+
notNull: true;
|
|
54
|
+
hasDefault: false;
|
|
55
|
+
isPrimaryKey: false;
|
|
56
|
+
isAutoincrement: false;
|
|
57
|
+
hasRuntimeDefault: false;
|
|
58
|
+
enumValues: [string, ...string[]];
|
|
59
|
+
baseColumn: never;
|
|
60
|
+
identity: undefined;
|
|
61
|
+
generated: undefined;
|
|
62
|
+
}, {}, {}>;
|
|
63
|
+
publicKey: import("drizzle-orm/pg-core").PgColumn<{
|
|
64
|
+
name: "public_key";
|
|
65
|
+
tableName: "passkeys";
|
|
66
|
+
dataType: "custom";
|
|
67
|
+
columnType: "PgCustomColumn";
|
|
68
|
+
data: Buffer<ArrayBufferLike>;
|
|
69
|
+
driverParam: unknown;
|
|
70
|
+
notNull: true;
|
|
71
|
+
hasDefault: false;
|
|
72
|
+
isPrimaryKey: false;
|
|
73
|
+
isAutoincrement: false;
|
|
74
|
+
hasRuntimeDefault: false;
|
|
75
|
+
enumValues: undefined;
|
|
76
|
+
baseColumn: never;
|
|
77
|
+
identity: undefined;
|
|
78
|
+
generated: undefined;
|
|
79
|
+
}, {}, {
|
|
80
|
+
pgColumnBuilderBrand: "PgCustomColumnBuilderBrand";
|
|
81
|
+
}>;
|
|
82
|
+
counter: import("drizzle-orm/pg-core").PgColumn<{
|
|
83
|
+
name: "counter";
|
|
84
|
+
tableName: "passkeys";
|
|
85
|
+
dataType: "number";
|
|
86
|
+
columnType: "PgInteger";
|
|
87
|
+
data: number;
|
|
88
|
+
driverParam: string | number;
|
|
89
|
+
notNull: true;
|
|
90
|
+
hasDefault: true;
|
|
91
|
+
isPrimaryKey: false;
|
|
92
|
+
isAutoincrement: false;
|
|
93
|
+
hasRuntimeDefault: false;
|
|
94
|
+
enumValues: undefined;
|
|
95
|
+
baseColumn: never;
|
|
96
|
+
identity: undefined;
|
|
97
|
+
generated: undefined;
|
|
98
|
+
}, {}, {}>;
|
|
99
|
+
transports: import("drizzle-orm/pg-core").PgColumn<{
|
|
100
|
+
name: "transports";
|
|
101
|
+
tableName: "passkeys";
|
|
102
|
+
dataType: "json";
|
|
103
|
+
columnType: "PgJsonb";
|
|
104
|
+
data: string[];
|
|
105
|
+
driverParam: unknown;
|
|
106
|
+
notNull: false;
|
|
107
|
+
hasDefault: false;
|
|
108
|
+
isPrimaryKey: false;
|
|
109
|
+
isAutoincrement: false;
|
|
110
|
+
hasRuntimeDefault: false;
|
|
111
|
+
enumValues: undefined;
|
|
112
|
+
baseColumn: never;
|
|
113
|
+
identity: undefined;
|
|
114
|
+
generated: undefined;
|
|
115
|
+
}, {}, {
|
|
116
|
+
$type: string[];
|
|
117
|
+
}>;
|
|
118
|
+
aaguid: import("drizzle-orm/pg-core").PgColumn<{
|
|
119
|
+
name: "aaguid";
|
|
120
|
+
tableName: "passkeys";
|
|
121
|
+
dataType: "string";
|
|
122
|
+
columnType: "PgText";
|
|
123
|
+
data: string;
|
|
124
|
+
driverParam: string;
|
|
125
|
+
notNull: false;
|
|
126
|
+
hasDefault: false;
|
|
127
|
+
isPrimaryKey: false;
|
|
128
|
+
isAutoincrement: false;
|
|
129
|
+
hasRuntimeDefault: false;
|
|
130
|
+
enumValues: [string, ...string[]];
|
|
131
|
+
baseColumn: never;
|
|
132
|
+
identity: undefined;
|
|
133
|
+
generated: undefined;
|
|
134
|
+
}, {}, {}>;
|
|
135
|
+
deviceName: import("drizzle-orm/pg-core").PgColumn<{
|
|
136
|
+
name: "device_name";
|
|
137
|
+
tableName: "passkeys";
|
|
138
|
+
dataType: "string";
|
|
139
|
+
columnType: "PgText";
|
|
140
|
+
data: string;
|
|
141
|
+
driverParam: string;
|
|
142
|
+
notNull: false;
|
|
143
|
+
hasDefault: false;
|
|
144
|
+
isPrimaryKey: false;
|
|
145
|
+
isAutoincrement: false;
|
|
146
|
+
hasRuntimeDefault: false;
|
|
147
|
+
enumValues: [string, ...string[]];
|
|
148
|
+
baseColumn: never;
|
|
149
|
+
identity: undefined;
|
|
150
|
+
generated: undefined;
|
|
151
|
+
}, {}, {}>;
|
|
152
|
+
backedUp: import("drizzle-orm/pg-core").PgColumn<{
|
|
153
|
+
name: "backed_up";
|
|
154
|
+
tableName: "passkeys";
|
|
155
|
+
dataType: "boolean";
|
|
156
|
+
columnType: "PgBoolean";
|
|
157
|
+
data: boolean;
|
|
158
|
+
driverParam: boolean;
|
|
159
|
+
notNull: true;
|
|
160
|
+
hasDefault: true;
|
|
161
|
+
isPrimaryKey: false;
|
|
162
|
+
isAutoincrement: false;
|
|
163
|
+
hasRuntimeDefault: false;
|
|
164
|
+
enumValues: undefined;
|
|
165
|
+
baseColumn: never;
|
|
166
|
+
identity: undefined;
|
|
167
|
+
generated: undefined;
|
|
168
|
+
}, {}, {}>;
|
|
169
|
+
createdAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
170
|
+
name: "created_at";
|
|
171
|
+
tableName: "passkeys";
|
|
172
|
+
dataType: "date";
|
|
173
|
+
columnType: "PgTimestamp";
|
|
174
|
+
data: Date;
|
|
175
|
+
driverParam: string;
|
|
176
|
+
notNull: true;
|
|
177
|
+
hasDefault: true;
|
|
178
|
+
isPrimaryKey: false;
|
|
179
|
+
isAutoincrement: false;
|
|
180
|
+
hasRuntimeDefault: false;
|
|
181
|
+
enumValues: undefined;
|
|
182
|
+
baseColumn: never;
|
|
183
|
+
identity: undefined;
|
|
184
|
+
generated: undefined;
|
|
185
|
+
}, {}, {}>;
|
|
186
|
+
lastUsedAt: import("drizzle-orm/pg-core").PgColumn<{
|
|
187
|
+
name: "last_used_at";
|
|
188
|
+
tableName: "passkeys";
|
|
189
|
+
dataType: "date";
|
|
190
|
+
columnType: "PgTimestamp";
|
|
191
|
+
data: Date;
|
|
192
|
+
driverParam: string;
|
|
193
|
+
notNull: false;
|
|
194
|
+
hasDefault: false;
|
|
195
|
+
isPrimaryKey: false;
|
|
196
|
+
isAutoincrement: false;
|
|
197
|
+
hasRuntimeDefault: false;
|
|
198
|
+
enumValues: undefined;
|
|
199
|
+
baseColumn: never;
|
|
200
|
+
identity: undefined;
|
|
201
|
+
generated: undefined;
|
|
202
|
+
}, {}, {}>;
|
|
203
|
+
};
|
|
204
|
+
dialect: "pg";
|
|
205
|
+
}>;
|
|
206
|
+
export type Passkey = typeof passkeys.$inferSelect;
|
|
207
|
+
export type NewPasskey = typeof passkeys.$inferInsert;
|
|
208
|
+
//# sourceMappingURL=passkeys.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"passkeys.d.ts","sourceRoot":"","sources":["../../src/schema/passkeys.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AA6BH,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAsCpB,CAAC;AAMF,MAAM,MAAM,OAAO,GAAG,OAAO,QAAQ,CAAC,YAAY,CAAC;AACnD,MAAM,MAAM,UAAU,GAAG,OAAO,QAAQ,CAAC,YAAY,CAAC"}
|
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Passkeys table
|
|
3
|
+
*
|
|
4
|
+
* Stores WebAuthn/FIDO2 passkey credentials for passwordless authentication.
|
|
5
|
+
* Each user can register multiple passkeys (e.g., fingerprint, security key, phone).
|
|
6
|
+
* Credential IDs and public keys are stored per the WebAuthn specification.
|
|
7
|
+
*/
|
|
8
|
+
import { boolean, customType, index, integer, jsonb, pgTable, text, timestamp, uniqueIndex, } from 'drizzle-orm/pg-core';
|
|
9
|
+
import { users } from './users.js';
|
|
10
|
+
// =============================================================================
|
|
11
|
+
// Custom Types
|
|
12
|
+
// =============================================================================
|
|
13
|
+
const bytea = customType({
|
|
14
|
+
dataType() {
|
|
15
|
+
return 'bytea';
|
|
16
|
+
},
|
|
17
|
+
});
|
|
18
|
+
// =============================================================================
|
|
19
|
+
// Passkeys Table
|
|
20
|
+
// =============================================================================
|
|
21
|
+
export const passkeys = pgTable('passkeys', {
|
|
22
|
+
id: text('id').primaryKey(),
|
|
23
|
+
userId: text('user_id')
|
|
24
|
+
.notNull()
|
|
25
|
+
.references(() => users.id, { onDelete: 'cascade' }),
|
|
26
|
+
// WebAuthn credential ID (base64url-encoded by convention)
|
|
27
|
+
credentialId: text('credential_id').notNull(),
|
|
28
|
+
// COSE public key (binary)
|
|
29
|
+
publicKey: bytea('public_key').notNull(),
|
|
30
|
+
// Signature counter for clone detection
|
|
31
|
+
counter: integer('counter').notNull().default(0),
|
|
32
|
+
// Allowed transports (e.g., "usb", "ble", "nfc", "internal")
|
|
33
|
+
transports: jsonb('transports').$type(),
|
|
34
|
+
// Authenticator Attestation GUID (identifies authenticator model)
|
|
35
|
+
aaguid: text('aaguid'),
|
|
36
|
+
// User-assigned friendly name (e.g., "MacBook Pro Touch ID")
|
|
37
|
+
deviceName: text('device_name'),
|
|
38
|
+
// Whether the credential is backed up (e.g., iCloud Keychain, Google Password Manager)
|
|
39
|
+
backedUp: boolean('backed_up').default(false).notNull(),
|
|
40
|
+
// Timestamps
|
|
41
|
+
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
42
|
+
lastUsedAt: timestamp('last_used_at', { withTimezone: true }),
|
|
43
|
+
}, (table) => [
|
|
44
|
+
index('passkeys_user_id_idx').on(table.userId),
|
|
45
|
+
uniqueIndex('passkeys_credential_id_idx').on(table.credentialId),
|
|
46
|
+
]);
|
|
47
|
+
//# sourceMappingURL=passkeys.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"passkeys.js","sourceRoot":"","sources":["../../src/schema/passkeys.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EACL,OAAO,EACP,UAAU,EACV,KAAK,EACL,OAAO,EACP,KAAK,EACL,OAAO,EACP,IAAI,EACJ,SAAS,EACT,WAAW,GACZ,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AAEnC,gFAAgF;AAChF,eAAe;AACf,gFAAgF;AAEhF,MAAM,KAAK,GAAG,UAAU,CAAmB;IACzC,QAAQ;QACN,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC,CAAC;AAEH,gFAAgF;AAChF,iBAAiB;AACjB,gFAAgF;AAEhF,MAAM,CAAC,MAAM,QAAQ,GAAG,OAAO,CAC7B,UAAU,EACV;IACE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAE3B,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC;SACpB,OAAO,EAAE;SACT,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IAEtD,2DAA2D;IAC3D,YAAY,EAAE,IAAI,CAAC,eAAe,CAAC,CAAC,OAAO,EAAE;IAE7C,2BAA2B;IAC3B,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;IAExC,wCAAwC;IACxC,OAAO,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAEhD,6DAA6D;IAC7D,UAAU,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC,KAAK,EAAY;IAEjD,kEAAkE;IAClE,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;IAEtB,6DAA6D;IAC7D,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC;IAE/B,uFAAuF;IACvF,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE;IAEvD,aAAa;IACb,SAAS,EAAE,SAAS,CAAC,YAAY,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,OAAO,EAAE;IACjF,UAAU,EAAE,SAAS,CAAC,cAAc,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;CAC9D,EACD,CAAC,KAAK,EAAE,EAAE,CAAC;IACT,KAAK,CAAC,sBAAsB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC;IAC9C,WAAW,CAAC,4BAA4B,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,YAAY,CAAC;CACjE,CACF,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"password-reset-tokens.d.ts","sourceRoot":"","sources":["../../src/schema/password-reset-tokens.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AASH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
|
|
1
|
+
{"version":3,"file":"password-reset-tokens.d.ts","sourceRoot":"","sources":["../../src/schema/password-reset-tokens.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AASH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAqB/B,CAAC;AAMF,MAAM,MAAM,kBAAkB,GAAG,OAAO,mBAAmB,CAAC,YAAY,CAAC;AACzE,MAAM,MAAM,qBAAqB,GAAG,OAAO,mBAAmB,CAAC,YAAY,CAAC"}
|
|
@@ -6,7 +6,7 @@
|
|
|
6
6
|
* Token values are stored as HMAC-SHA256 hashes with a per-token salt
|
|
7
7
|
* for protection against rainbow table attacks on DB breach.
|
|
8
8
|
*/
|
|
9
|
-
import { pgTable, text, timestamp } from 'drizzle-orm/pg-core';
|
|
9
|
+
import { index, pgTable, text, timestamp } from 'drizzle-orm/pg-core';
|
|
10
10
|
import { users } from './users.js';
|
|
11
11
|
// =============================================================================
|
|
12
12
|
// Password Reset Tokens Table
|
|
@@ -22,5 +22,8 @@ export const passwordResetTokens = pgTable('password_reset_tokens', {
|
|
|
22
22
|
expiresAt: timestamp('expires_at', { withTimezone: true }).notNull(),
|
|
23
23
|
usedAt: timestamp('used_at', { withTimezone: true }),
|
|
24
24
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
25
|
-
})
|
|
25
|
+
}, (table) => [
|
|
26
|
+
// R5-H6: Index for cleanup queries that scan by expiry
|
|
27
|
+
index('password_reset_tokens_expires_at_idx').on(table.expiresAt),
|
|
28
|
+
]);
|
|
26
29
|
//# sourceMappingURL=password-reset-tokens.js.map
|