aios-core 2.2.2 → 2.3.1

package/.aios-core/product/templates/tmpl-stored-proc.sql

@@ -1,140 +1,140 @@
--- Stored Procedure Template
--- Function: :function_name
--- Created: :created_date
--- Author: :author
--- Description: :description
---
--- IMPORTANT: Consider security implications of SECURITY DEFINER vs SECURITY INVOKER
-
--- =============================================================================
--- BASIC FUNCTION TEMPLATE
--- =============================================================================
-
-CREATE OR REPLACE FUNCTION :function_name(
-    -- Input parameters
-    p_param1 :param1_type,
-    p_param2 :param2_type DEFAULT NULL
-)
-RETURNS :return_type
-LANGUAGE plpgsql
--- SECURITY DEFINER: Runs with function owner's privileges (use carefully)
--- SECURITY INVOKER: Runs with caller's privileges (default, safer)
-SECURITY INVOKER
--- STABLE: Doesn't modify database, same result for same inputs within transaction
--- VOLATILE: May modify database or return different results (default)
--- IMMUTABLE: Always returns same result for same inputs (for indexing)
-STABLE
-AS $$
-DECLARE
-    v_result :return_type;
-    v_variable :variable_type;
-BEGIN
-    -- Input validation
-    IF p_param1 IS NULL THEN
-        RAISE EXCEPTION 'p_param1 cannot be null';
-    END IF;
-
-    -- Main logic
-    SELECT column_name
-    INTO v_result
-    FROM :table_name
-    WHERE id = p_param1;
-
-    -- Return result
-    RETURN v_result;
-
-EXCEPTION
-    WHEN no_data_found THEN
-        RAISE EXCEPTION 'No data found for id: %', p_param1;
-    WHEN OTHERS THEN
-        RAISE EXCEPTION 'Error in :function_name: %', SQLERRM;
-END;
-$$;
-
--- Grant execute permission
-GRANT EXECUTE ON FUNCTION :function_name(:param1_type, :param2_type) TO authenticated;
-
--- Add function comment
-COMMENT ON FUNCTION :function_name IS ':description';
-
--- =============================================================================
--- FUNCTION RETURNING TABLE (for complex queries)
--- =============================================================================
-
-CREATE OR REPLACE FUNCTION :function_name_table(
-    p_filter_param :filter_type DEFAULT NULL
-)
-RETURNS TABLE (
-    id UUID,
-    name TEXT,
-    created_at TIMESTAMPTZ
-)
-LANGUAGE plpgsql
-SECURITY INVOKER
-STABLE
-AS $$
-BEGIN
-    RETURN QUERY
-    SELECT
-        t.id,
-        t.name,
-        t.created_at
-    FROM :table_name t
-    WHERE
-        (p_filter_param IS NULL OR t.filter_column = p_filter_param)
-        AND t.user_id = auth.uid()  -- RLS-aware
-    ORDER BY t.created_at DESC;
-END;
-$$;
-
--- =============================================================================
--- FUNCTION WITH TRANSACTION (for mutations)
--- =============================================================================
-
-CREATE OR REPLACE FUNCTION :function_name_mutation(
-    p_input_data JSONB
-)
-RETURNS UUID
-LANGUAGE plpgsql
-SECURITY INVOKER
-VOLATILE
-AS $$
-DECLARE
-    v_new_id UUID;
-BEGIN
-    -- Validate input
-    IF NOT (p_input_data ? 'required_field') THEN
-        RAISE EXCEPTION 'required_field is missing from input';
-    END IF;
-
-    -- Insert new record
-    INSERT INTO :table_name (
-        name,
-        data,
-        user_id,
-        created_at
-    ) VALUES (
-        p_input_data->>'name',
-        p_input_data->'data',
-        auth.uid(),
-        NOW()
-    )
-    RETURNING id INTO v_new_id;
-
-    -- Audit log (optional)
-    INSERT INTO audit_log (action, table_name, record_id, user_id)
-    VALUES ('INSERT', ':table_name', v_new_id, auth.uid());
-
-    RETURN v_new_id;
-END;
-$$;
-
--- =============================================================================
--- RPC ENDPOINT (Supabase-style)
--- =============================================================================
--- Call from client: supabase.rpc(':function_name', { p_param1: value })
---
--- For Supabase, ensure:
--- 1. Function is in public schema
--- 2. GRANT EXECUTE to appropriate roles
--- 3. Consider using SECURITY DEFINER for bypassing RLS when needed
+-- Stored Procedure Template
+-- Function: :function_name
+-- Created: :created_date
+-- Author: :author
+-- Description: :description
+--
+-- IMPORTANT: Consider security implications of SECURITY DEFINER vs SECURITY INVOKER
+
+-- =============================================================================
+-- BASIC FUNCTION TEMPLATE
+-- =============================================================================
+
+CREATE OR REPLACE FUNCTION :function_name(
+    -- Input parameters
+    p_param1 :param1_type,
+    p_param2 :param2_type DEFAULT NULL
+)
+RETURNS :return_type
+LANGUAGE plpgsql
+-- SECURITY DEFINER: Runs with function owner's privileges (use carefully)
+-- SECURITY INVOKER: Runs with caller's privileges (default, safer)
+SECURITY INVOKER
+-- STABLE: Doesn't modify database, same result for same inputs within transaction
+-- VOLATILE: May modify database or return different results (default)
+-- IMMUTABLE: Always returns same result for same inputs (for indexing)
+STABLE
+AS $$
+DECLARE
+    v_result :return_type;
+    v_variable :variable_type;
+BEGIN
+    -- Input validation
+    IF p_param1 IS NULL THEN
+        RAISE EXCEPTION 'p_param1 cannot be null';
+    END IF;
+
+    -- Main logic
+    SELECT column_name
+    INTO v_result
+    FROM :table_name
+    WHERE id = p_param1;
+
+    -- Return result
+    RETURN v_result;
+
+EXCEPTION
+    WHEN no_data_found THEN
+        RAISE EXCEPTION 'No data found for id: %', p_param1;
+    WHEN OTHERS THEN
+        RAISE EXCEPTION 'Error in :function_name: %', SQLERRM;
+END;
+$$;
+
+-- Grant execute permission
+GRANT EXECUTE ON FUNCTION :function_name(:param1_type, :param2_type) TO authenticated;
+
+-- Add function comment
+COMMENT ON FUNCTION :function_name IS ':description';
+
+-- =============================================================================
+-- FUNCTION RETURNING TABLE (for complex queries)
+-- =============================================================================
+
+CREATE OR REPLACE FUNCTION :function_name_table(
+    p_filter_param :filter_type DEFAULT NULL
+)
+RETURNS TABLE (
+    id UUID,
+    name TEXT,
+    created_at TIMESTAMPTZ
+)
+LANGUAGE plpgsql
+SECURITY INVOKER
+STABLE
+AS $$
+BEGIN
+    RETURN QUERY
+    SELECT
+        t.id,
+        t.name,
+        t.created_at
+    FROM :table_name t
+    WHERE
+        (p_filter_param IS NULL OR t.filter_column = p_filter_param)
+        AND t.user_id = auth.uid()  -- RLS-aware
+    ORDER BY t.created_at DESC;
+END;
+$$;
+
+-- =============================================================================
+-- FUNCTION WITH TRANSACTION (for mutations)
+-- =============================================================================
+
+CREATE OR REPLACE FUNCTION :function_name_mutation(
+    p_input_data JSONB
+)
+RETURNS UUID
+LANGUAGE plpgsql
+SECURITY INVOKER
+VOLATILE
+AS $$
+DECLARE
+    v_new_id UUID;
+BEGIN
+    -- Validate input
+    IF NOT (p_input_data ? 'required_field') THEN
+        RAISE EXCEPTION 'required_field is missing from input';
+    END IF;
+
+    -- Insert new record
+    INSERT INTO :table_name (
+        name,
+        data,
+        user_id,
+        created_at
+    ) VALUES (
+        p_input_data->>'name',
+        p_input_data->'data',
+        auth.uid(),
+        NOW()
+    )
+    RETURNING id INTO v_new_id;
+
+    -- Audit log (optional)
+    INSERT INTO audit_log (action, table_name, record_id, user_id)
+    VALUES ('INSERT', ':table_name', v_new_id, auth.uid());
+
+    RETURN v_new_id;
+END;
+$$;
+
+-- =============================================================================
+-- RPC ENDPOINT (Supabase-style)
+-- =============================================================================
+-- Call from client: supabase.rpc(':function_name', { p_param1: value })
+--
+-- For Supabase, ensure:
+-- 1. Function is in public schema
+-- 2. GRANT EXECUTE to appropriate roles
+-- 3. Consider using SECURITY DEFINER for bypassing RLS when needed

package/.aios-core/product/templates/tmpl-trigger.sql

@@ -1,152 +1,152 @@
--- Trigger Template
--- Table: :table_name
--- Created: :created_date
--- Author: :author
--- Description: :description
---
--- IMPORTANT: Triggers run automatically - test thoroughly before deployment
-
--- =============================================================================
--- UPDATED_AT TRIGGER (Most Common)
--- =============================================================================
-
--- Trigger function: Updates updated_at column on row modification
-CREATE OR REPLACE FUNCTION update_updated_at_column()
-RETURNS TRIGGER AS $$
-BEGIN
-    NEW.updated_at = NOW();
-    RETURN NEW;
-END;
-$$ LANGUAGE plpgsql;
-
--- Apply to table
-DROP TRIGGER IF EXISTS trigger_:table_name_updated_at ON :table_name;
-CREATE TRIGGER trigger_:table_name_updated_at
-    BEFORE UPDATE ON :table_name
-    FOR EACH ROW
-    EXECUTE FUNCTION update_updated_at_column();
-
--- =============================================================================
--- AUDIT LOG TRIGGER
--- =============================================================================
-
--- Audit log table (if not exists)
-CREATE TABLE IF NOT EXISTS audit_log (
-    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-    table_name TEXT NOT NULL,
-    record_id UUID NOT NULL,
-    action TEXT NOT NULL CHECK (action IN ('INSERT', 'UPDATE', 'DELETE')),
-    old_data JSONB,
-    new_data JSONB,
-    changed_by UUID REFERENCES auth.users(id),
-    changed_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-);
-
-CREATE INDEX IF NOT EXISTS idx_audit_log_table_record ON audit_log(table_name, record_id);
-CREATE INDEX IF NOT EXISTS idx_audit_log_changed_at ON audit_log(changed_at);
-
--- Audit trigger function
-CREATE OR REPLACE FUNCTION audit_trigger_function()
-RETURNS TRIGGER AS $$
-BEGIN
-    IF TG_OP = 'INSERT' THEN
-        INSERT INTO audit_log (table_name, record_id, action, new_data, changed_by)
-        VALUES (TG_TABLE_NAME, NEW.id, 'INSERT', to_jsonb(NEW), auth.uid());
-        RETURN NEW;
-    ELSIF TG_OP = 'UPDATE' THEN
-        INSERT INTO audit_log (table_name, record_id, action, old_data, new_data, changed_by)
-        VALUES (TG_TABLE_NAME, NEW.id, 'UPDATE', to_jsonb(OLD), to_jsonb(NEW), auth.uid());
-        RETURN NEW;
-    ELSIF TG_OP = 'DELETE' THEN
-        INSERT INTO audit_log (table_name, record_id, action, old_data, changed_by)
-        VALUES (TG_TABLE_NAME, OLD.id, 'DELETE', to_jsonb(OLD), auth.uid());
-        RETURN OLD;
-    END IF;
-    RETURN NULL;
-END;
-$$ LANGUAGE plpgsql SECURITY DEFINER;
-
--- Apply audit trigger to table
-DROP TRIGGER IF EXISTS trigger_:table_name_audit ON :table_name;
-CREATE TRIGGER trigger_:table_name_audit
-    AFTER INSERT OR UPDATE OR DELETE ON :table_name
-    FOR EACH ROW
-    EXECUTE FUNCTION audit_trigger_function();
-
--- =============================================================================
--- VALIDATION TRIGGER
--- =============================================================================
-
--- Custom validation trigger function
-CREATE OR REPLACE FUNCTION :table_name_validation_trigger()
-RETURNS TRIGGER AS $$
-BEGIN
-    -- Example: Validate email format
-    IF NEW.email IS NOT NULL AND NEW.email !~ '^[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}$' THEN
-        RAISE EXCEPTION 'Invalid email format: %', NEW.email;
-    END IF;
-
-    -- Example: Validate status transitions
-    IF TG_OP = 'UPDATE' AND OLD.status = 'completed' AND NEW.status != 'completed' THEN
-        RAISE EXCEPTION 'Cannot change status from completed';
-    END IF;
-
-    -- Example: Auto-set values
-    IF TG_OP = 'INSERT' THEN
-        NEW.created_by = COALESCE(NEW.created_by, auth.uid());
-    END IF;
-
-    RETURN NEW;
-END;
-$$ LANGUAGE plpgsql;
-
-DROP TRIGGER IF EXISTS trigger_:table_name_validation ON :table_name;
-CREATE TRIGGER trigger_:table_name_validation
-    BEFORE INSERT OR UPDATE ON :table_name
-    FOR EACH ROW
-    EXECUTE FUNCTION :table_name_validation_trigger();
-
--- =============================================================================
--- SOFT DELETE TRIGGER
--- =============================================================================
-
--- Instead of deleting, set deleted_at timestamp
-CREATE OR REPLACE FUNCTION soft_delete_trigger()
-RETURNS TRIGGER AS $$
-BEGIN
-    -- Instead of DELETE, UPDATE with deleted_at
-    UPDATE :table_name
-    SET deleted_at = NOW()
-    WHERE id = OLD.id;
-
-    -- Return NULL to cancel the actual DELETE
-    RETURN NULL;
-END;
-$$ LANGUAGE plpgsql;
-
-DROP TRIGGER IF EXISTS trigger_:table_name_soft_delete ON :table_name;
-CREATE TRIGGER trigger_:table_name_soft_delete
-    BEFORE DELETE ON :table_name
-    FOR EACH ROW
-    EXECUTE FUNCTION soft_delete_trigger();
-
--- =============================================================================
--- NOTIFICATION TRIGGER (for Supabase Realtime)
--- =============================================================================
-
--- Notify on changes (Supabase handles this automatically for enabled tables)
--- Manual implementation if needed:
-
-CREATE OR REPLACE FUNCTION notify_changes()
-RETURNS TRIGGER AS $$
-BEGIN
-    PERFORM pg_notify(
-        TG_TABLE_NAME || '_changes',
-        json_build_object(
-            'operation', TG_OP,
-            'record', CASE WHEN TG_OP = 'DELETE' THEN to_jsonb(OLD) ELSE to_jsonb(NEW) END
-        )::TEXT
-    );
-    RETURN COALESCE(NEW, OLD);
-END;
-$$ LANGUAGE plpgsql;
+-- Trigger Template
+-- Table: :table_name
+-- Created: :created_date
+-- Author: :author
+-- Description: :description
+--
+-- IMPORTANT: Triggers run automatically - test thoroughly before deployment
+
+-- =============================================================================
+-- UPDATED_AT TRIGGER (Most Common)
+-- =============================================================================
+
+-- Trigger function: Updates updated_at column on row modification
+CREATE OR REPLACE FUNCTION update_updated_at_column()
+RETURNS TRIGGER AS $$
+BEGIN
+    NEW.updated_at = NOW();
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql;
+
+-- Apply to table
+DROP TRIGGER IF EXISTS trigger_:table_name_updated_at ON :table_name;
+CREATE TRIGGER trigger_:table_name_updated_at
+    BEFORE UPDATE ON :table_name
+    FOR EACH ROW
+    EXECUTE FUNCTION update_updated_at_column();
+
+-- =============================================================================
+-- AUDIT LOG TRIGGER
+-- =============================================================================
+
+-- Audit log table (if not exists)
+CREATE TABLE IF NOT EXISTS audit_log (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    table_name TEXT NOT NULL,
+    record_id UUID NOT NULL,
+    action TEXT NOT NULL CHECK (action IN ('INSERT', 'UPDATE', 'DELETE')),
+    old_data JSONB,
+    new_data JSONB,
+    changed_by UUID REFERENCES auth.users(id),
+    changed_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
+);
+
+CREATE INDEX IF NOT EXISTS idx_audit_log_table_record ON audit_log(table_name, record_id);
+CREATE INDEX IF NOT EXISTS idx_audit_log_changed_at ON audit_log(changed_at);
+
+-- Audit trigger function
+CREATE OR REPLACE FUNCTION audit_trigger_function()
+RETURNS TRIGGER AS $$
+BEGIN
+    IF TG_OP = 'INSERT' THEN
+        INSERT INTO audit_log (table_name, record_id, action, new_data, changed_by)
+        VALUES (TG_TABLE_NAME, NEW.id, 'INSERT', to_jsonb(NEW), auth.uid());
+        RETURN NEW;
+    ELSIF TG_OP = 'UPDATE' THEN
+        INSERT INTO audit_log (table_name, record_id, action, old_data, new_data, changed_by)
+        VALUES (TG_TABLE_NAME, NEW.id, 'UPDATE', to_jsonb(OLD), to_jsonb(NEW), auth.uid());
+        RETURN NEW;
+    ELSIF TG_OP = 'DELETE' THEN
+        INSERT INTO audit_log (table_name, record_id, action, old_data, changed_by)
+        VALUES (TG_TABLE_NAME, OLD.id, 'DELETE', to_jsonb(OLD), auth.uid());
+        RETURN OLD;
+    END IF;
+    RETURN NULL;
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER;
+
+-- Apply audit trigger to table
+DROP TRIGGER IF EXISTS trigger_:table_name_audit ON :table_name;
+CREATE TRIGGER trigger_:table_name_audit
+    AFTER INSERT OR UPDATE OR DELETE ON :table_name
+    FOR EACH ROW
+    EXECUTE FUNCTION audit_trigger_function();
+
+-- =============================================================================
+-- VALIDATION TRIGGER
+-- =============================================================================
+
+-- Custom validation trigger function
+CREATE OR REPLACE FUNCTION :table_name_validation_trigger()
+RETURNS TRIGGER AS $$
+BEGIN
+    -- Example: Validate email format
+    IF NEW.email IS NOT NULL AND NEW.email !~ '^[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}$' THEN
+        RAISE EXCEPTION 'Invalid email format: %', NEW.email;
+    END IF;
+
+    -- Example: Validate status transitions
+    IF TG_OP = 'UPDATE' AND OLD.status = 'completed' AND NEW.status != 'completed' THEN
+        RAISE EXCEPTION 'Cannot change status from completed';
+    END IF;
+
+    -- Example: Auto-set values
+    IF TG_OP = 'INSERT' THEN
+        NEW.created_by = COALESCE(NEW.created_by, auth.uid());
+    END IF;
+
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql;
+
+DROP TRIGGER IF EXISTS trigger_:table_name_validation ON :table_name;
+CREATE TRIGGER trigger_:table_name_validation
+    BEFORE INSERT OR UPDATE ON :table_name
+    FOR EACH ROW
+    EXECUTE FUNCTION :table_name_validation_trigger();
+
+-- =============================================================================
+-- SOFT DELETE TRIGGER
+-- =============================================================================
+
+-- Instead of deleting, set deleted_at timestamp
+CREATE OR REPLACE FUNCTION soft_delete_trigger()
+RETURNS TRIGGER AS $$
+BEGIN
+    -- Instead of DELETE, UPDATE with deleted_at
+    UPDATE :table_name
+    SET deleted_at = NOW()
+    WHERE id = OLD.id;
+
+    -- Return NULL to cancel the actual DELETE
+    RETURN NULL;
+END;
+$$ LANGUAGE plpgsql;
+
+DROP TRIGGER IF EXISTS trigger_:table_name_soft_delete ON :table_name;
+CREATE TRIGGER trigger_:table_name_soft_delete
+    BEFORE DELETE ON :table_name
+    FOR EACH ROW
+    EXECUTE FUNCTION soft_delete_trigger();
+
+-- =============================================================================
+-- NOTIFICATION TRIGGER (for Supabase Realtime)
+-- =============================================================================
+
+-- Notify on changes (Supabase handles this automatically for enabled tables)
+-- Manual implementation if needed:
+
+CREATE OR REPLACE FUNCTION notify_changes()
+RETURNS TRIGGER AS $$
+BEGIN
+    PERFORM pg_notify(
+        TG_TABLE_NAME || '_changes',
+        json_build_object(
+            'operation', TG_OP,
+            'record', CASE WHEN TG_OP = 'DELETE' THEN to_jsonb(OLD) ELSE to_jsonb(NEW) END
+        )::TEXT
+    );
+    RETURN COALESCE(NEW, OLD);
+END;
+$$ LANGUAGE plpgsql;