npm - @undefineds.co/xpod - Versions diffs - 0.3.29 → 0.3.32 - Mend

@undefineds.co/xpod 0.3.29 → 0.3.32

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (167) hide show

package/dist/api/auth/AuthContext.d.ts +3 -2
package/dist/api/auth/AuthContext.js +2 -1
package/dist/api/auth/AuthContext.js.map +1 -1
package/dist/api/auth/ClientCredentialsAuthenticator.d.ts +2 -12
package/dist/api/auth/ClientCredentialsAuthenticator.js +4 -4
package/dist/api/auth/ClientCredentialsAuthenticator.js.map +1 -1
package/dist/api/auth/ServiceTokenAuthenticator.d.ts +2 -2
package/dist/api/auth/ServiceTokenAuthenticator.js.map +1 -1
package/dist/api/container/business-token.d.ts +1 -1
package/dist/api/container/business-token.js +5 -1
package/dist/api/container/business-token.js.map +1 -1
package/dist/api/container/common.js +14 -10
package/dist/api/container/common.js.map +1 -1
package/dist/api/container/routes.js +16 -3
package/dist/api/container/routes.js.map +1 -1
package/dist/api/container/types.d.ts +2 -4
package/dist/api/container/types.js.map +1 -1
package/dist/api/handlers/ChatHandler.d.ts +1 -1
package/dist/api/handlers/ChatHandler.js +1 -1
package/dist/api/handlers/ChatHandler.js.map +1 -1
package/dist/api/handlers/EdgeNodeSignalHandler.js +3 -1
package/dist/api/handlers/EdgeNodeSignalHandler.js.map +1 -1
package/dist/api/handlers/PodManagementHandler.d.ts +2 -0
package/dist/api/handlers/PodManagementHandler.js +114 -12
package/dist/api/handlers/PodManagementHandler.js.map +1 -1
package/dist/api/handlers/ProvisionHandler.d.ts +27 -0
package/dist/api/handlers/ProvisionHandler.js +339 -32
package/dist/api/handlers/ProvisionHandler.js.map +1 -1
package/dist/api/handlers/QuotaHandler.js +0 -12
package/dist/api/handlers/QuotaHandler.js.map +1 -1
package/dist/api/handlers/index.d.ts +0 -1
package/dist/api/handlers/index.js +0 -1
package/dist/api/handlers/index.js.map +1 -1
package/dist/api/runtime.js +3 -3
package/dist/api/runtime.js.map +1 -1
package/dist/authorization/PodAuthorizationResources.d.ts +1 -0
package/dist/authorization/PodAuthorizationResources.js +36 -4
package/dist/authorization/PodAuthorizationResources.js.map +1 -1
package/dist/components/context.jsonld +12 -0
package/dist/edge/EdgeNodeAgent.d.ts +1 -1
package/dist/edge/EdgeNodeAgent.js +1 -1
package/dist/edge/EdgeNodeAgent.js.map +1 -1
package/dist/edge/EdgeNodeDnsCoordinator.d.ts +1 -0
package/dist/edge/EdgeNodeDnsCoordinator.js +9 -3
package/dist/edge/EdgeNodeDnsCoordinator.js.map +1 -1
package/dist/edge/EdgeNodeDnsCoordinator.jsonld +4 -0
package/dist/edge/EdgeNodeHealthProbeService.d.ts +3 -0
package/dist/edge/EdgeNodeHealthProbeService.js +22 -2
package/dist/edge/EdgeNodeHealthProbeService.js.map +1 -1
package/dist/edge/EdgeNodeHealthProbeService.jsonld +12 -0
package/dist/http/ClusterIngressRouter.js +6 -3
package/dist/http/ClusterIngressRouter.js.map +1 -1
package/dist/http/ClusterWebSocketConfigurator.js +6 -2
package/dist/http/ClusterWebSocketConfigurator.js.map +1 -1
package/dist/http/EdgeNodeDirectDebugHttpHandler.d.ts +2 -0
package/dist/http/EdgeNodeDirectDebugHttpHandler.js +18 -3
package/dist/http/EdgeNodeDirectDebugHttpHandler.js.map +1 -1
package/dist/http/EdgeNodeDirectDebugHttpHandler.jsonld +8 -0
package/dist/http/EdgeNodeProxyHttpHandler.js +6 -2
package/dist/http/EdgeNodeProxyHttpHandler.js.map +1 -1
package/dist/http/cluster/PodMigrationHttpHandler.d.ts +2 -2
package/dist/http/cluster/PodMigrationHttpHandler.js +2 -2
package/dist/http/cluster/PodMigrationHttpHandler.js.map +1 -1
package/dist/http/quota/QuotaAdminHttpHandler.js +27 -21
package/dist/http/quota/QuotaAdminHttpHandler.js.map +1 -1
package/dist/identity/drizzle/AccountRepository.d.ts +4 -22
package/dist/identity/drizzle/AccountRepository.js +9 -113
package/dist/identity/drizzle/AccountRepository.js.map +1 -1
package/dist/identity/drizzle/AccountRoleRepository.d.ts +5 -5
package/dist/identity/drizzle/AccountRoleRepository.js +204 -97
package/dist/identity/drizzle/AccountRoleRepository.js.map +1 -1
package/dist/identity/drizzle/DdnsRepository.d.ts +5 -20
package/dist/identity/drizzle/DdnsRepository.js +13 -49
package/dist/identity/drizzle/DdnsRepository.js.map +1 -1
package/dist/identity/drizzle/EdgeNodeRepository.d.ts +13 -6
package/dist/identity/drizzle/EdgeNodeRepository.js +167 -66
package/dist/identity/drizzle/EdgeNodeRepository.js.map +1 -1
package/dist/identity/drizzle/PodLookupRepository.d.ts +7 -36
package/dist/identity/drizzle/PodLookupRepository.js +103 -126
package/dist/identity/drizzle/PodLookupRepository.js.map +1 -1
package/dist/identity/drizzle/ServiceTokenRepository.d.ts +13 -1
package/dist/identity/drizzle/ServiceTokenRepository.js +7 -0
package/dist/identity/drizzle/ServiceTokenRepository.js.map +1 -1
package/dist/identity/drizzle/db.d.ts +2 -1
package/dist/identity/drizzle/db.js +173 -297
package/dist/identity/drizzle/db.js.map +1 -1
package/dist/identity/drizzle/schema.pg.d.ts +3 -11
package/dist/identity/drizzle/schema.pg.js +10 -45
package/dist/identity/drizzle/schema.pg.js.map +1 -1
package/dist/identity/drizzle/schema.sqlite.d.ts +88 -531
package/dist/identity/drizzle/schema.sqlite.js +13 -46
package/dist/identity/drizzle/schema.sqlite.js.map +1 -1
package/dist/identity/oidc/ScopedPickWebIdHandler.d.ts +3 -0
package/dist/identity/oidc/ScopedPickWebIdHandler.js +18 -6
package/dist/identity/oidc/ScopedPickWebIdHandler.js.map +1 -1
package/dist/identity/oidc/ScopedPickWebIdHandler.jsonld +22 -0
package/dist/provision/LocalPodProvisioningService.js +2 -0
package/dist/provision/LocalPodProvisioningService.js.map +1 -1
package/dist/provision/ProvisionCodeCodec.js +10 -1
package/dist/provision/ProvisionCodeCodec.js.map +1 -1
package/dist/provision/ProvisionPodCreator.d.ts +8 -2
package/dist/provision/ProvisionPodCreator.js +136 -27
package/dist/provision/ProvisionPodCreator.js.map +1 -1
package/dist/provision/ProvisionPodCreator.jsonld +38 -3
package/dist/quota/DrizzleQuotaService.d.ts +0 -4
package/dist/quota/DrizzleQuotaService.js +1 -21
package/dist/quota/DrizzleQuotaService.js.map +1 -1
package/dist/quota/DrizzleQuotaService.jsonld +0 -16
package/dist/quota/NoopQuotaService.d.ts +0 -4
package/dist/quota/NoopQuotaService.js +0 -8
package/dist/quota/NoopQuotaService.js.map +1 -1
package/dist/quota/NoopQuotaService.jsonld +0 -16
package/dist/quota/QuotaService.d.ts +0 -4
package/dist/quota/QuotaService.js.map +1 -1
package/dist/quota/QuotaService.jsonld +0 -16
package/dist/service/EdgeNodeSignalClient.d.ts +0 -2
package/dist/service/EdgeNodeSignalClient.js +0 -4
package/dist/service/EdgeNodeSignalClient.js.map +1 -1
package/dist/service/PodMigrationService.d.ts +2 -2
package/dist/service/PodMigrationService.js +4 -4
package/dist/service/PodMigrationService.js.map +1 -1
package/dist/setup/LocalSetupServiceTokenRepository.d.ts +22 -0
package/dist/setup/LocalSetupServiceTokenRepository.js +68 -0
package/dist/setup/LocalSetupServiceTokenRepository.js.map +1 -0
package/dist/storage/accessors/MixDataAccessor.js.map +1 -1
package/dist/storage/quota/PerAccountQuotaStrategy.js +2 -2
package/dist/storage/quota/PerAccountQuotaStrategy.js.map +1 -1
package/dist/storage/quota/UsageRepository.d.ts +10 -32
package/dist/storage/quota/UsageRepository.js +84 -281
package/dist/storage/quota/UsageRepository.js.map +1 -1
package/dist/storage/rdf/PostgresRdfEngine.d.ts +12 -15
package/dist/storage/rdf/PostgresRdfEngine.js +1040 -150
package/dist/storage/rdf/PostgresRdfEngine.js.map +1 -1
package/dist/storage/rdf/PostgresRdfEngine.jsonld +40 -52
package/dist/storage/rdf/{RdfLocalQueryEngine.d.ts → RdfQueryExecutor.d.ts} +3 -3
package/dist/storage/rdf/{RdfLocalQueryEngine.js → RdfQueryExecutor.js} +9 -9
package/dist/storage/rdf/RdfQueryExecutor.js.map +1 -0
package/dist/storage/rdf/RdfSparqlAdapter.d.ts +5 -5
package/dist/storage/rdf/RdfSparqlAdapter.js +27 -27
package/dist/storage/rdf/RdfSparqlAdapter.js.map +1 -1
package/dist/storage/rdf/SolidRdfEngine.d.ts +2 -5
package/dist/storage/rdf/SolidRdfEngine.js +6 -38
package/dist/storage/rdf/SolidRdfEngine.js.map +1 -1
package/dist/storage/rdf/SolidRdfEngine.jsonld +0 -12
package/dist/storage/rdf/SolidRdfSparqlEngine.js.map +1 -1
package/dist/storage/rdf/index.d.ts +3 -3
package/dist/storage/rdf/index.js +6 -6
package/dist/storage/rdf/index.js.map +1 -1
package/dist/storage/rdf/models-benchmark.d.ts +9 -9
package/dist/storage/rdf/models-benchmark.js +23 -23
package/dist/storage/rdf/models-benchmark.js.map +1 -1
package/dist/storage/rdf/types.d.ts +5 -5
package/dist/storage/rdf/types.js.map +1 -1
package/dist/subdomain/SubdomainService.d.ts +1 -1
package/dist/subdomain/SubdomainService.js +1 -1
package/dist/subdomain/SubdomainService.js.map +1 -1
package/dist/subdomain/SubdomainService.jsonld +1 -1
package/package.json +1 -1
package/templates/pod/acp/profile/.acr +21 -0
package/templates/pod/wac/profile/.acl.hbs +18 -0
package/dist/api/handlers/ApiKeyHandler.d.ts +0 -15
package/dist/api/handlers/ApiKeyHandler.js +0 -153
package/dist/api/handlers/ApiKeyHandler.js.map +0 -1
package/dist/api/store/DrizzleClientCredentialsStore.d.ts +0 -51
package/dist/api/store/DrizzleClientCredentialsStore.js +0 -115
package/dist/api/store/DrizzleClientCredentialsStore.js.map +0 -1
package/dist/storage/rdf/RdfLocalQueryEngine.js.map +0 -1

package/dist/identity/drizzle/db.js CHANGED Viewed

@@ -32,10 +32,12 @@ exports.closeAllIdentityConnections = closeAllIdentityConnections;
 exports.isDatabaseSqlite = isDatabaseSqlite;
 exports.executeQuery = executeQuery;
 exports.executeStatement = executeStatement;
+exports.ensureCloudClusterTables = ensureCloudClusterTables;
 exports.toDbTimestamp = toDbTimestamp;
 exports.fromDbTimestamp = fromDbTimestamp;
 const pg_1 = require("pg");
 const node_postgres_1 = require("drizzle-orm/node-postgres");
+const drizzle_orm_1 = require("drizzle-orm");
 const pgSchema = __importStar(require("./schema.pg"));
 const sqliteSchema = __importStar(require("./schema.sqlite"));
 const PostgresPoolManager_1 = require("../../storage/database/PostgresPoolManager");
@@ -46,13 +48,14 @@ const SqliteRuntime_1 = require("../../storage/SqliteRuntime");
  *
  * @example
  * const schema = getSchema(db);
- * await db.select().from(schema.accountUsage).where(eq(schema.accountUsage.accountId, id));
+ * await db.select().from(schema.usage).where(eq(schema.usage.scopeId, id));
  */
 function getSchema(db) {
     return isDatabaseSqlite(db) ? sqliteSchema : pgSchema;
 }
 const dbCache = new Map();
 const dbInitPromises = new WeakMap();
+const cloudClusterInitPromises = new WeakMap();
 const JSON_OIDS = [114, 3802];
 for (const oid of JSON_OIDS) {
     // Explicitly return raw string to avoid "Type Conflict" with CSS
@@ -194,6 +197,149 @@ async function executeStatement(db, query) {
     // PostgreSQL: db.execute() works for statements too
     await db.execute(query);
 }
+async function ensureCloudClusterTables(db) {
+    await ensureDatabaseReady(db);
+    if (db && typeof db === 'object') {
+        const cached = cloudClusterInitPromises.get(db);
+        if (cached) {
+            await cached;
+            return;
+        }
+        const initPromise = doEnsureCloudClusterTables(db).catch((error) => {
+            cloudClusterInitPromises.delete(db);
+            throw error;
+        });
+        cloudClusterInitPromises.set(db, initPromise);
+        await initPromise;
+        return;
+    }
+    await doEnsureCloudClusterTables(db);
+}
+async function doEnsureCloudClusterTables(db) {
+    if (isDatabaseSqlite(db)) {
+        db.run((0, drizzle_orm_1.sql) `
+      CREATE TABLE IF NOT EXISTS cluster_ddns_record (
+        subdomain TEXT PRIMARY KEY,
+        domain TEXT NOT NULL,
+        ip_address TEXT,
+        ipv6_address TEXT,
+        record_type TEXT DEFAULT 'A',
+        node_id TEXT,
+        username TEXT,
+        status TEXT DEFAULT 'active',
+        banned_reason TEXT,
+        ttl INTEGER DEFAULT 60,
+        created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
+        updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
+      )
+    `);
+        db.run((0, drizzle_orm_1.sql) `
+      CREATE TABLE IF NOT EXISTS cluster_service_token (
+        id TEXT PRIMARY KEY,
+        token_hash TEXT NOT NULL UNIQUE,
+        service_type TEXT NOT NULL,
+        service_id TEXT NOT NULL,
+        scopes TEXT NOT NULL,
+        created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
+        expires_at INTEGER
+      )
+    `);
+        db.run((0, drizzle_orm_1.sql) `
+      CREATE TABLE IF NOT EXISTS cluster_node (
+        id TEXT PRIMARY KEY,
+        display_name TEXT,
+        token_hash TEXT NOT NULL,
+        node_type TEXT DEFAULT 'edge',
+        subdomain TEXT UNIQUE,
+        access_mode TEXT,
+        ipv4 TEXT,
+        public_port INTEGER,
+        public_url TEXT,
+        service_token_hash TEXT,
+        provision_code_hash TEXT,
+        internal_ip TEXT,
+        internal_port INTEGER,
+        hostname TEXT,
+        ipv6 TEXT,
+        version TEXT,
+        capabilities TEXT,
+        metadata TEXT,
+        pod_base_urls TEXT,
+        connectivity_status TEXT DEFAULT 'unknown',
+        last_connectivity_check INTEGER,
+        created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
+        updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
+        last_seen INTEGER
+      )
+    `);
+        db.run((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_ddns_record_domain ON cluster_ddns_record(domain)`);
+        db.run((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_ddns_record_node ON cluster_ddns_record(node_id)`);
+        db.run((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_subdomain ON cluster_node(subdomain)`);
+        db.run((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_access_mode ON cluster_node(access_mode)`);
+        db.run((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_connectivity_status ON cluster_node(connectivity_status)`);
+        return;
+    }
+    await db.execute((0, drizzle_orm_1.sql) `
+    CREATE TABLE IF NOT EXISTS cluster_ddns_record (
+      subdomain TEXT PRIMARY KEY,
+      domain TEXT NOT NULL,
+      ip_address TEXT,
+      ipv6_address TEXT,
+      record_type TEXT DEFAULT 'A',
+      node_id TEXT,
+      username TEXT,
+      status TEXT DEFAULT 'active',
+      banned_reason TEXT,
+      ttl INTEGER DEFAULT 60,
+      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+      updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
+    )
+  `);
+    await db.execute((0, drizzle_orm_1.sql) `
+    CREATE TABLE IF NOT EXISTS cluster_service_token (
+      id TEXT PRIMARY KEY,
+      token_hash TEXT NOT NULL UNIQUE,
+      service_type TEXT NOT NULL,
+      service_id TEXT NOT NULL,
+      scopes TEXT NOT NULL,
+      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+      expires_at TIMESTAMPTZ
+    )
+  `);
+    await db.execute((0, drizzle_orm_1.sql) `
+    CREATE TABLE IF NOT EXISTS cluster_node (
+      id TEXT PRIMARY KEY,
+      display_name TEXT,
+      token_hash TEXT NOT NULL,
+      node_type TEXT DEFAULT 'edge',
+      subdomain TEXT UNIQUE,
+      access_mode TEXT,
+      ipv4 TEXT,
+      public_port BIGINT,
+      public_url TEXT,
+      service_token_hash TEXT,
+      provision_code_hash TEXT,
+      internal_ip TEXT,
+      internal_port BIGINT,
+      hostname TEXT,
+      ipv6 TEXT,
+      version TEXT,
+      capabilities JSONB,
+      metadata JSONB,
+      pod_base_urls TEXT,
+      connectivity_status TEXT DEFAULT 'unknown',
+      last_connectivity_check TIMESTAMPTZ,
+      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+      updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+      last_seen TIMESTAMPTZ
+    )
+  `);
+    await db.execute((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_ddns_record_domain ON cluster_ddns_record(domain)`);
+    await db.execute((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_ddns_record_node ON cluster_ddns_record(node_id)`);
+    await db.execute((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_subdomain ON cluster_node(subdomain)`);
+    await db.execute((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_access_mode ON cluster_node(access_mode)`);
+    await db.execute((0, drizzle_orm_1.sql) `CREATE INDEX IF NOT EXISTS idx_cluster_node_connectivity_status ON cluster_node(connectivity_status)`);
+}
 /**
  * Convert a Date to a value suitable for the database.
  * SQLite uses Unix timestamps (seconds), PostgreSQL uses Date objects.
@@ -225,25 +371,10 @@ function fromDbTimestamp(value) {
  */
 function ensureSqliteTables(sqlite) {
     sqlite.exec(`
-    CREATE TABLE IF NOT EXISTS identity_account_usage (
-      account_id TEXT PRIMARY KEY,
-      storage_bytes INTEGER NOT NULL DEFAULT 0,
-      ingress_bytes INTEGER NOT NULL DEFAULT 0,
-      egress_bytes INTEGER NOT NULL DEFAULT 0,
-      storage_limit_bytes INTEGER,
-      bandwidth_limit_bps INTEGER,
-      compute_seconds INTEGER NOT NULL DEFAULT 0,
-      tokens_used INTEGER NOT NULL DEFAULT 0,
-      compute_limit_seconds INTEGER,
-      token_limit_monthly INTEGER,
-      period_start INTEGER,
-      updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
-    );
-    CREATE TABLE IF NOT EXISTS identity_pod_usage (
-      pod_id TEXT PRIMARY KEY,
+    CREATE TABLE IF NOT EXISTS identity_usage (
+      scope_type TEXT NOT NULL,
+      scope_id TEXT NOT NULL,
       account_id TEXT NOT NULL,
-      storage_url TEXT,
       storage_bytes INTEGER NOT NULL DEFAULT 0,
       ingress_bytes INTEGER NOT NULL DEFAULT 0,
       egress_bytes INTEGER NOT NULL DEFAULT 0,
@@ -254,82 +385,10 @@ function ensureSqliteTables(sqlite) {
       compute_limit_seconds INTEGER,
       token_limit_monthly INTEGER,
       period_start INTEGER,
-      updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
-    );
-    CREATE TABLE IF NOT EXISTS identity_edge_node (
-      id TEXT PRIMARY KEY,
-      display_name TEXT,
-      token_hash TEXT NOT NULL,
-      account_id TEXT,
-      node_type TEXT DEFAULT 'edge',
-      subdomain TEXT UNIQUE,
-      access_mode TEXT,
-      ipv4 TEXT,
-      public_port INTEGER,
-      public_url TEXT,
-      service_token_hash TEXT,
-      provision_code_hash TEXT,
-      internal_ip TEXT,
-      internal_port INTEGER,
-      hostname TEXT,
-      ipv6 TEXT,
-      version TEXT,
-      capabilities TEXT,
-      metadata TEXT,
-      connectivity_status TEXT DEFAULT 'unknown',
-      last_connectivity_check INTEGER,
-      created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
       updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
-      last_seen INTEGER
+      PRIMARY KEY (scope_type, scope_id)
     );
-    CREATE TABLE IF NOT EXISTS identity_edge_node_pod (
-      node_id TEXT NOT NULL REFERENCES identity_edge_node(id) ON DELETE CASCADE,
-      base_url TEXT NOT NULL
-    );
-    CREATE TABLE IF NOT EXISTS api_client_credentials (
-      client_id TEXT PRIMARY KEY,
-      client_secret_encrypted TEXT NOT NULL,
-      web_id TEXT NOT NULL,
-      account_id TEXT NOT NULL,
-      display_name TEXT,
-      created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
-    );
-    CREATE TABLE IF NOT EXISTS identity_ddns_domain (
-      domain TEXT PRIMARY KEY,
-      status TEXT DEFAULT 'active',
-      provider TEXT,
-      zone_id TEXT,
-      created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
-    );
-    CREATE TABLE IF NOT EXISTS identity_ddns_record (
-      subdomain TEXT PRIMARY KEY,
-      domain TEXT NOT NULL,
-      ip_address TEXT,
-      ipv6_address TEXT,
-      record_type TEXT DEFAULT 'A',
-      node_id TEXT,
-      username TEXT,
-      status TEXT DEFAULT 'active',
-      banned_reason TEXT,
-      ttl INTEGER DEFAULT 60,
-      created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
-      updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))
-    );
-    CREATE TABLE IF NOT EXISTS identity_service_token (
-      id TEXT PRIMARY KEY,
-      token_hash TEXT NOT NULL UNIQUE,
-      service_type TEXT NOT NULL,
-      service_id TEXT NOT NULL,
-      scopes TEXT NOT NULL,
-      created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),
-      expires_at INTEGER
-    );
   `);
     // Migrate existing tables: add new columns if missing
     migrateSqliteColumns(sqlite);
@@ -347,53 +406,12 @@ function migrateSqliteColumns(sqlite) {
             // Column already exists — ignore
         }
     };
-    if (sqliteColumnExists(sqlite, 'identity_edge_node', 'owner_account_id')) {
-        try {
-            sqlite.exec('ALTER TABLE identity_edge_node DROP COLUMN owner_account_id');
-        }
-        catch {
-            // Older SQLite runtimes may not support DROP COLUMN. Ignore and keep runtime-compatible schema.
-        }
-    }
-    const edgeNodeColumns = [
-        ['node_type', `TEXT DEFAULT 'edge'`],
-        ['subdomain', 'TEXT'],
-        ['access_mode', 'TEXT'],
-        ['ipv4', 'TEXT'],
-        ['public_port', 'INTEGER'],
-        ['public_url', 'TEXT'],
-        ['service_token_hash', 'TEXT'],
-        ['provision_code_hash', 'TEXT'],
-        ['internal_ip', 'TEXT'],
-        ['internal_port', 'INTEGER'],
-        ['hostname', 'TEXT'],
-        ['ipv6', 'TEXT'],
-        ['version', 'TEXT'],
-        ['capabilities', 'TEXT'],
-        ['metadata', 'TEXT'],
-        ['connectivity_status', `TEXT DEFAULT 'unknown'`],
-        ['last_connectivity_check', 'INTEGER'],
-        ['last_seen', 'INTEGER'],
-    ];
-    for (const [column, type] of edgeNodeColumns) {
-        addColumn('identity_edge_node', column, type);
-    }
-    // Usage tables: compute/token columns
-    addColumn('identity_account_usage', 'compute_seconds', 'INTEGER NOT NULL DEFAULT 0');
-    addColumn('identity_account_usage', 'tokens_used', 'INTEGER NOT NULL DEFAULT 0');
-    addColumn('identity_account_usage', 'compute_limit_seconds', 'INTEGER');
-    addColumn('identity_account_usage', 'token_limit_monthly', 'INTEGER');
-    addColumn('identity_account_usage', 'period_start', 'INTEGER');
-    addColumn('identity_pod_usage', 'compute_seconds', 'INTEGER NOT NULL DEFAULT 0');
-    addColumn('identity_pod_usage', 'tokens_used', 'INTEGER NOT NULL DEFAULT 0');
-    addColumn('identity_pod_usage', 'compute_limit_seconds', 'INTEGER');
-    addColumn('identity_pod_usage', 'token_limit_monthly', 'INTEGER');
-    addColumn('identity_pod_usage', 'period_start', 'INTEGER');
-    addColumn('identity_pod_usage', 'storage_url', 'TEXT');
-}
-function sqliteColumnExists(sqlite, table, column) {
-    const rows = sqlite.prepare(`PRAGMA table_info(${table})`).all();
-    return rows.some((row) => row.name === column);
+    // Usage table: compute/token columns
+    addColumn('identity_usage', 'compute_seconds', 'INTEGER NOT NULL DEFAULT 0');
+    addColumn('identity_usage', 'tokens_used', 'INTEGER NOT NULL DEFAULT 0');
+    addColumn('identity_usage', 'compute_limit_seconds', 'INTEGER');
+    addColumn('identity_usage', 'token_limit_monthly', 'INTEGER');
+    addColumn('identity_usage', 'period_start', 'INTEGER');
 }
 /**
  * Add columns that may be missing from older PostgreSQL databases.
@@ -415,179 +433,37 @@ async function migratePgColumns(pool) {
             // Ignore errors (table might not exist yet)
         }
     };
-    // Usage tables: compute/token columns
-    await addColumn('identity_account_usage', 'compute_seconds', 'BIGINT NOT NULL DEFAULT 0');
-    await addColumn('identity_account_usage', 'tokens_used', 'BIGINT NOT NULL DEFAULT 0');
-    await addColumn('identity_account_usage', 'compute_limit_seconds', 'BIGINT');
-    await addColumn('identity_account_usage', 'token_limit_monthly', 'BIGINT');
-    await addColumn('identity_account_usage', 'period_start', 'TIMESTAMP WITH TIME ZONE');
-    await addColumn('identity_pod_usage', 'compute_seconds', 'BIGINT NOT NULL DEFAULT 0');
-    await addColumn('identity_pod_usage', 'tokens_used', 'BIGINT NOT NULL DEFAULT 0');
-    await addColumn('identity_pod_usage', 'compute_limit_seconds', 'BIGINT');
-    await addColumn('identity_pod_usage', 'token_limit_monthly', 'BIGINT');
-    await addColumn('identity_pod_usage', 'period_start', 'TIMESTAMP WITH TIME ZONE');
-    await addColumn('identity_pod_usage', 'storage_url', 'TEXT');
-    // Service token table
-    try {
-        await pool.query(`
-      CREATE TABLE IF NOT EXISTS identity_service_token (
-        id TEXT PRIMARY KEY,
-        token_hash TEXT NOT NULL UNIQUE,
-        service_type TEXT NOT NULL,
-        service_id TEXT NOT NULL,
-        scopes TEXT NOT NULL,
-        created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
-        expires_at TIMESTAMP WITH TIME ZONE
-      );
-    `);
-    }
-    catch {
-        // Ignore if already exists
-    }
+    // Usage table: compute/token columns
+    await addColumn('identity_usage', 'compute_seconds', 'BIGINT NOT NULL DEFAULT 0');
+    await addColumn('identity_usage', 'tokens_used', 'BIGINT NOT NULL DEFAULT 0');
+    await addColumn('identity_usage', 'compute_limit_seconds', 'BIGINT');
+    await addColumn('identity_usage', 'token_limit_monthly', 'BIGINT');
+    await addColumn('identity_usage', 'period_start', 'TIMESTAMP WITH TIME ZONE');
 }
 async function ensurePostgresTables(pool) {
     await pool.query(`
-    CREATE TABLE IF NOT EXISTS identity_account_usage (
-      account_id TEXT PRIMARY KEY,
-      storage_bytes BIGINT NOT NULL DEFAULT 0,
-      ingress_bytes BIGINT NOT NULL DEFAULT 0,
-      egress_bytes BIGINT NOT NULL DEFAULT 0,
-      storage_limit_bytes BIGINT,
-      bandwidth_limit_bps BIGINT,
-      updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-    );
-    CREATE TABLE IF NOT EXISTS identity_pod_usage (
-      pod_id TEXT PRIMARY KEY,
+    CREATE TABLE IF NOT EXISTS identity_usage (
+      scope_type TEXT NOT NULL,
+      scope_id TEXT NOT NULL,
       account_id TEXT NOT NULL,
-      storage_url TEXT,
       storage_bytes BIGINT NOT NULL DEFAULT 0,
       ingress_bytes BIGINT NOT NULL DEFAULT 0,
       egress_bytes BIGINT NOT NULL DEFAULT 0,
       storage_limit_bytes BIGINT,
       bandwidth_limit_bps BIGINT,
-      updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-    );
-    CREATE TABLE IF NOT EXISTS identity_edge_node (
-      id TEXT PRIMARY KEY,
-      display_name TEXT,
-      token_hash TEXT NOT NULL,
-      account_id TEXT,
-      node_type TEXT DEFAULT 'edge',
-      subdomain TEXT UNIQUE,
-      access_mode TEXT,
-      ipv4 TEXT,
-      public_port BIGINT,
-      public_url TEXT,
-      service_token_hash TEXT,
-      provision_code_hash TEXT,
-      internal_ip TEXT,
-      internal_port BIGINT,
-      hostname TEXT,
-      ipv6 TEXT,
-      version TEXT,
-      capabilities JSONB,
-      metadata JSONB,
-      connectivity_status TEXT DEFAULT 'unknown',
-      last_connectivity_check TIMESTAMPTZ,
-      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+      compute_seconds BIGINT NOT NULL DEFAULT 0,
+      tokens_used BIGINT NOT NULL DEFAULT 0,
+      compute_limit_seconds BIGINT,
+      token_limit_monthly BIGINT,
+      period_start TIMESTAMPTZ,
       updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-      last_seen TIMESTAMPTZ
-    );
-    CREATE TABLE IF NOT EXISTS identity_edge_node_pod (
-      node_id TEXT NOT NULL REFERENCES identity_edge_node(id) ON DELETE CASCADE,
-      base_url TEXT NOT NULL
+      PRIMARY KEY (scope_type, scope_id)
     );
-    CREATE TABLE IF NOT EXISTS api_client_credentials (
-      client_id TEXT PRIMARY KEY,
-      client_secret_encrypted TEXT NOT NULL,
-      web_id TEXT NOT NULL,
-      account_id TEXT NOT NULL,
-      display_name TEXT,
-      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-    );
-    CREATE TABLE IF NOT EXISTS identity_ddns_domain (
-      domain TEXT PRIMARY KEY,
-      status TEXT DEFAULT 'active',
-      provider TEXT,
-      zone_id TEXT,
-      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-    );
-    CREATE TABLE IF NOT EXISTS identity_ddns_record (
-      subdomain TEXT PRIMARY KEY,
-      domain TEXT NOT NULL,
-      ip_address TEXT,
-      ipv6_address TEXT,
-      record_type TEXT DEFAULT 'A',
-      node_id TEXT,
-      username TEXT,
-      status TEXT DEFAULT 'active',
-      banned_reason TEXT,
-      ttl INTEGER DEFAULT 60,
-      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-      updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-    );
-    CREATE TABLE IF NOT EXISTS identity_service_token (
-      id TEXT PRIMARY KEY,
-      token_hash TEXT NOT NULL UNIQUE,
-      service_type TEXT NOT NULL,
-      service_id TEXT NOT NULL,
-      scopes TEXT NOT NULL,
-      created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-      expires_at TIMESTAMPTZ
-    );
   `);
     await migratePostgresColumns(pool);
 }
 async function migratePostgresColumns(pool) {
-    const addColumn = async (table, column, type) => {
-        await pool.query(`ALTER TABLE ${table} ADD COLUMN IF NOT EXISTS ${column} ${type}`);
-    };
-    await pool.query('ALTER TABLE identity_edge_node DROP COLUMN IF EXISTS owner_account_id');
-    await pool.query(`
-    DO $$
-    BEGIN
-      IF EXISTS (
-        SELECT 1
-        FROM information_schema.columns
-        WHERE table_name = 'identity_edge_node' AND column_name = 'public_ip'
-      ) AND NOT EXISTS (
-        SELECT 1
-        FROM information_schema.columns
-        WHERE table_name = 'identity_edge_node' AND column_name = 'ipv4'
-      ) THEN
-        ALTER TABLE identity_edge_node RENAME COLUMN public_ip TO ipv4;
-      END IF;
-    END $$;
-  `);
-    const edgeNodeColumns = [
-        ['node_type', `TEXT DEFAULT 'edge'`],
-        ['subdomain', 'TEXT'],
-        ['access_mode', 'TEXT'],
-        ['ipv4', 'TEXT'],
-        ['public_port', 'BIGINT'],
-        ['public_url', 'TEXT'],
-        ['service_token_hash', 'TEXT'],
-        ['provision_code_hash', 'TEXT'],
-        ['internal_ip', 'TEXT'],
-        ['internal_port', 'BIGINT'],
-        ['hostname', 'TEXT'],
-        ['ipv6', 'TEXT'],
-        ['version', 'TEXT'],
-        ['capabilities', 'JSONB'],
-        ['metadata', 'JSONB'],
-        ['connectivity_status', `TEXT DEFAULT 'unknown'`],
-        ['last_connectivity_check', 'TIMESTAMPTZ'],
-        ['last_seen', 'TIMESTAMPTZ'],
-    ];
-    for (const [column, type] of edgeNodeColumns) {
-        await addColumn('identity_edge_node', column, type);
-    }
+    void pool;
 }
 //# sourceMappingURL=db.js.map