insforge 0.3.3 → 1.3.0

package/backend/{migrations → src/infra/database/migrations}/000_create-base-tables.sql

@@ -1,142 +1,142 @@
--- Migration: 000 - Create base system tables
--- This migration creates all the initial tables that the application needs
-
--- System configuration
-CREATE TABLE IF NOT EXISTS _config (
-  key TEXT PRIMARY KEY,
-  value TEXT NOT NULL,
-  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP,
-  updated_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
-);
-
--- App metadata
-CREATE TABLE IF NOT EXISTS _metadata (
-  key TEXT PRIMARY KEY,
-  value TEXT,
-  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP,
-  updated_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
-);
-
--- Storage buckets table to track bucket-level settings
-CREATE TABLE IF NOT EXISTS _storage_buckets (
-  name TEXT PRIMARY KEY,
-  public BOOLEAN DEFAULT TRUE,
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  updated_at TIMESTAMPTZ DEFAULT NOW()
-);
-
--- Storage files table
-CREATE TABLE IF NOT EXISTS _storage (
-  bucket TEXT NOT NULL,
-  key TEXT NOT NULL,
-  size INTEGER NOT NULL,
-  mime_type TEXT,
-  uploaded_at TIMESTAMPTZ DEFAULT NOW(),
-  PRIMARY KEY (bucket, key),
-  FOREIGN KEY (bucket) REFERENCES _storage_buckets(name) ON DELETE CASCADE
-);
-
--- MCP usage tracking table
-CREATE TABLE IF NOT EXISTS _mcp_usage (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  tool_name VARCHAR(255) NOT NULL,
-  success BOOLEAN DEFAULT true,
-  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
-);
-
--- AI configurations table
-CREATE TABLE IF NOT EXISTS _ai_configs (
-  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
-  modality VARCHAR(255) NOT NULL,
-  provider VARCHAR(255) NOT NULL,
-  model_id VARCHAR(255) UNIQUE NOT NULL,
-  system_prompt TEXT,
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  updated_at TIMESTAMPTZ DEFAULT NOW()
-);
-
-CREATE TABLE IF NOT EXISTS _ai_usage (
-  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
-  config_id UUID NOT NULL,
-  input_tokens INT,
-  output_tokens INT,
-  image_count INT,
-  image_resolution TEXT,
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  FOREIGN KEY (config_id) REFERENCES _ai_configs(id) ON DELETE NO ACTION
-);
-
--- Indexes for AI tables
-CREATE INDEX IF NOT EXISTS idx_ai_usage_config_id ON _ai_usage(config_id);
-CREATE INDEX IF NOT EXISTS idx_ai_usage_created_at ON _ai_usage(created_at DESC);
-
--- Index for efficient date range queries
-CREATE INDEX IF NOT EXISTS idx_mcp_usage_created_at ON _mcp_usage(created_at DESC);
-
--- Edge functions
-CREATE TABLE IF NOT EXISTS _edge_functions (
-  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
-  slug VARCHAR(255) UNIQUE NOT NULL,
-  name VARCHAR(255) NOT NULL,
-  description TEXT,
-  code TEXT NOT NULL,
-  status VARCHAR(50) DEFAULT 'draft',
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  updated_at TIMESTAMPTZ DEFAULT NOW(),
-  deployed_at TIMESTAMPTZ
-);
-
--- Auth Tables (2-table structure)
--- User table
-CREATE TABLE IF NOT EXISTS _user (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  email TEXT UNIQUE NOT NULL,
-  password TEXT, -- NULL for OAuth-only users
-  name TEXT,
-  email_verified BOOLEAN DEFAULT false,
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  updated_at TIMESTAMPTZ DEFAULT NOW()
-);
-
--- Account table (for OAuth connections)
-CREATE TABLE IF NOT EXISTS _account (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  user_id UUID NOT NULL REFERENCES _user(id) ON DELETE CASCADE,
-  provider TEXT NOT NULL, -- OAuth provider name: 'google', 'github', etc.
-  provider_account_id TEXT NOT NULL, -- User's unique ID on the provider's system
-  access_token TEXT, -- OAuth access token for making API calls to provider
-  refresh_token TEXT, -- OAuth refresh token for renewing access
-  provider_data JSONB, -- OAuth provider's user profile
-  created_at TIMESTAMPTZ DEFAULT NOW(),
-  updated_at TIMESTAMPTZ DEFAULT NOW(),
-  UNIQUE(provider, provider_account_id)
-);
-
--- Create update timestamp function
-CREATE OR REPLACE FUNCTION update_updated_at_column()
-RETURNS TRIGGER AS $$
-BEGIN
-  NEW.updated_at = NOW();
-  RETURN NEW;
-END;
-$$ language 'plpgsql';
-
--- Create triggers for updated_at
-DROP TRIGGER IF EXISTS update__config_updated_at ON _config;
-CREATE TRIGGER update__config_updated_at BEFORE UPDATE ON _config
-FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
-
-DROP TRIGGER IF EXISTS update__metadata_updated_at ON _metadata;
-CREATE TRIGGER update__metadata_updated_at BEFORE UPDATE ON _metadata
-FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
-
-DROP TRIGGER IF EXISTS update__edge_functions_updated_at ON _edge_functions;
-CREATE TRIGGER update__edge_functions_updated_at BEFORE UPDATE ON _edge_functions
-FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
-
--- Insert initial metadata
-INSERT INTO _metadata (key, value) VALUES ('version', '1.0.0')
-ON CONFLICT (key) DO UPDATE SET value = EXCLUDED.value;
-
-INSERT INTO _metadata (key, value) VALUES ('created_at', NOW()::TEXT)
+-- Migration: 000 - Create base system tables
+-- This migration creates all the initial tables that the application needs
+
+-- System configuration
+CREATE TABLE IF NOT EXISTS _config (
+  key TEXT PRIMARY KEY,
+  value TEXT NOT NULL,
+  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP,
+  updated_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
+);
+
+-- App metadata
+CREATE TABLE IF NOT EXISTS _metadata (
+  key TEXT PRIMARY KEY,
+  value TEXT,
+  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP,
+  updated_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
+);
+
+-- Storage buckets table to track bucket-level settings
+CREATE TABLE IF NOT EXISTS _storage_buckets (
+  name TEXT PRIMARY KEY,
+  public BOOLEAN DEFAULT TRUE,
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW()
+);
+
+-- Storage files table
+CREATE TABLE IF NOT EXISTS _storage (
+  bucket TEXT NOT NULL,
+  key TEXT NOT NULL,
+  size INTEGER NOT NULL,
+  mime_type TEXT,
+  uploaded_at TIMESTAMPTZ DEFAULT NOW(),
+  PRIMARY KEY (bucket, key),
+  FOREIGN KEY (bucket) REFERENCES _storage_buckets(name) ON DELETE CASCADE
+);
+
+-- MCP usage tracking table
+CREATE TABLE IF NOT EXISTS _mcp_usage (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  tool_name VARCHAR(255) NOT NULL,
+  success BOOLEAN DEFAULT true,
+  created_at TIMESTAMPTZ DEFAULT CURRENT_TIMESTAMP
+);
+
+-- AI configurations table
+CREATE TABLE IF NOT EXISTS _ai_configs (
+  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
+  modality VARCHAR(255) NOT NULL,
+  provider VARCHAR(255) NOT NULL,
+  model_id VARCHAR(255) UNIQUE NOT NULL,
+  system_prompt TEXT,
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW()
+);
+
+CREATE TABLE IF NOT EXISTS _ai_usage (
+  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
+  config_id UUID NOT NULL,
+  input_tokens INT,
+  output_tokens INT,
+  image_count INT,
+  image_resolution TEXT,
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  FOREIGN KEY (config_id) REFERENCES _ai_configs(id) ON DELETE NO ACTION
+);
+
+-- Indexes for AI tables
+CREATE INDEX IF NOT EXISTS idx_ai_usage_config_id ON _ai_usage(config_id);
+CREATE INDEX IF NOT EXISTS idx_ai_usage_created_at ON _ai_usage(created_at DESC);
+
+-- Index for efficient date range queries
+CREATE INDEX IF NOT EXISTS idx_mcp_usage_created_at ON _mcp_usage(created_at DESC);
+
+-- Edge functions
+CREATE TABLE IF NOT EXISTS _edge_functions (
+  id UUID DEFAULT gen_random_uuid() PRIMARY KEY,
+  slug VARCHAR(255) UNIQUE NOT NULL,
+  name VARCHAR(255) NOT NULL,
+  description TEXT,
+  code TEXT NOT NULL,
+  status VARCHAR(50) DEFAULT 'draft',
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW(),
+  deployed_at TIMESTAMPTZ
+);
+
+-- Auth Tables (2-table structure)
+-- User table
+CREATE TABLE IF NOT EXISTS _user (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  email TEXT UNIQUE NOT NULL,
+  password TEXT, -- NULL for OAuth-only users
+  name TEXT,
+  email_verified BOOLEAN DEFAULT false,
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW()
+);
+
+-- Account table (for OAuth connections)
+CREATE TABLE IF NOT EXISTS _account (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  user_id UUID NOT NULL REFERENCES _user(id) ON DELETE CASCADE,
+  provider TEXT NOT NULL, -- OAuth provider name: 'google', 'github', etc.
+  provider_account_id TEXT NOT NULL, -- User's unique ID on the provider's system
+  access_token TEXT, -- OAuth access token for making API calls to provider
+  refresh_token TEXT, -- OAuth refresh token for renewing access
+  provider_data JSONB, -- OAuth provider's user profile
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW(),
+  UNIQUE(provider, provider_account_id)
+);
+
+-- Create update timestamp function
+CREATE OR REPLACE FUNCTION update_updated_at_column()
+RETURNS TRIGGER AS $$
+BEGIN
+  NEW.updated_at = NOW();
+  RETURN NEW;
+END;
+$$ language 'plpgsql';
+
+-- Create triggers for updated_at
+DROP TRIGGER IF EXISTS update__config_updated_at ON _config;
+CREATE TRIGGER update__config_updated_at BEFORE UPDATE ON _config
+FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
+
+DROP TRIGGER IF EXISTS update__metadata_updated_at ON _metadata;
+CREATE TRIGGER update__metadata_updated_at BEFORE UPDATE ON _metadata
+FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
+
+DROP TRIGGER IF EXISTS update__edge_functions_updated_at ON _edge_functions;
+CREATE TRIGGER update__edge_functions_updated_at BEFORE UPDATE ON _edge_functions
+FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
+
+-- Insert initial metadata
+INSERT INTO _metadata (key, value) VALUES ('version', '1.0.0')
+ON CONFLICT (key) DO UPDATE SET value = EXCLUDED.value;
+
+INSERT INTO _metadata (key, value) VALUES ('created_at', NOW()::TEXT)
 ON CONFLICT (key) DO NOTHING;

package/backend/{migrations → src/infra/database/migrations}/001_create-helper-functions.sql

@@ -1,41 +1,41 @@
--- Migration: 001 - Create helper functions for RLS
--- These functions extract user information from JWT claims
-
--- Function to get current user ID from JWT
-CREATE OR REPLACE FUNCTION public.uid()
-RETURNS uuid
-LANGUAGE sql STABLE
-AS $$
-  SELECT
-  nullif(
-    coalesce(
-      current_setting('request.jwt.claim.sub', true),
-      (current_setting('request.jwt.claims', true)::jsonb ->> 'sub')
-    ),
-    ''
-  )::uuid
-$$;
-
--- Function to get current user role from JWT
-CREATE OR REPLACE FUNCTION public.role()
-RETURNS text
-LANGUAGE sql STABLE
-AS $$
-  SELECT
-  coalesce(
-    current_setting('request.jwt.claim.role', true),
-    (current_setting('request.jwt.claims', true)::jsonb ->> 'role')
-  )::text
-$$;
-
--- Function to get current user email from JWT
-CREATE OR REPLACE FUNCTION public.email()
-RETURNS text
-LANGUAGE sql STABLE
-AS $$
-  SELECT
-  coalesce(
-    current_setting('request.jwt.claim.email', true),
-    (current_setting('request.jwt.claims', true)::jsonb ->> 'email')
-  )::text
+-- Migration: 001 - Create helper functions for RLS
+-- These functions extract user information from JWT claims
+
+-- Function to get current user ID from JWT
+CREATE OR REPLACE FUNCTION public.uid()
+RETURNS uuid
+LANGUAGE sql STABLE
+AS $$
+  SELECT
+  nullif(
+    coalesce(
+      current_setting('request.jwt.claim.sub', true),
+      (current_setting('request.jwt.claims', true)::jsonb ->> 'sub')
+    ),
+    ''
+  )::uuid
+$$;
+
+-- Function to get current user role from JWT
+CREATE OR REPLACE FUNCTION public.role()
+RETURNS text
+LANGUAGE sql STABLE
+AS $$
+  SELECT
+  coalesce(
+    current_setting('request.jwt.claim.role', true),
+    (current_setting('request.jwt.claims', true)::jsonb ->> 'role')
+  )::text
+$$;
+
+-- Function to get current user email from JWT
+CREATE OR REPLACE FUNCTION public.email()
+RETURNS text
+LANGUAGE sql STABLE
+AS $$
+  SELECT
+  coalesce(
+    current_setting('request.jwt.claim.email', true),
+    (current_setting('request.jwt.claims', true)::jsonb ->> 'email')
+  )::text
 $$;

package/backend/{migrations → src/infra/database/migrations}/002_rename-auth-tables.sql

@@ -1,30 +1,30 @@
--- Migration: 002 - Rename authentication tables to better auth naming convention
-
-DO $$
-BEGIN
-    -- Handle _account to _oauth_connections
-    IF EXISTS (SELECT FROM information_schema.tables 
-              WHERE table_name = '_account' AND table_schema = 'public') THEN
-        IF EXISTS (SELECT FROM information_schema.tables 
-                   WHERE table_name = '_oauth_connections' AND table_schema = 'public') THEN
-            -- Both exist, drop the old one
-            DROP TABLE _account CASCADE;
-        ELSE
-            -- Only old exists, rename it
-            ALTER TABLE _account RENAME TO _oauth_connections;
-        END IF;
-    END IF;
-
-    -- Handle _user to _accounts
-    IF EXISTS (SELECT FROM information_schema.tables 
-              WHERE table_name = '_user' AND table_schema = 'public') THEN
-        IF EXISTS (SELECT FROM information_schema.tables 
-                   WHERE table_name = '_accounts' AND table_schema = 'public') THEN
-            -- Both exist, drop the old one
-            DROP TABLE _user CASCADE;
-        ELSE
-            -- Only old exists, rename it
-            ALTER TABLE _user RENAME TO _accounts;
-        END IF;
-    END IF;
+-- Migration: 002 - Rename authentication tables to better auth naming convention
+
+DO $$
+BEGIN
+    -- Handle _account to _oauth_connections
+    IF EXISTS (SELECT FROM information_schema.tables 
+              WHERE table_name = '_account' AND table_schema = 'public') THEN
+        IF EXISTS (SELECT FROM information_schema.tables 
+                   WHERE table_name = '_oauth_connections' AND table_schema = 'public') THEN
+            -- Both exist, drop the old one
+            DROP TABLE _account CASCADE;
+        ELSE
+            -- Only old exists, rename it
+            ALTER TABLE _account RENAME TO _oauth_connections;
+        END IF;
+    END IF;
+
+    -- Handle _user to _accounts
+    IF EXISTS (SELECT FROM information_schema.tables 
+              WHERE table_name = '_user' AND table_schema = 'public') THEN
+        IF EXISTS (SELECT FROM information_schema.tables 
+                   WHERE table_name = '_accounts' AND table_schema = 'public') THEN
+            -- Both exist, drop the old one
+            DROP TABLE _user CASCADE;
+        ELSE
+            -- Only old exists, rename it
+            ALTER TABLE _user RENAME TO _accounts;
+        END IF;
+    END IF;
 END $$;

package/backend/{migrations → src/infra/database/migrations}/003_create-users-table.sql

@@ -1,56 +1,56 @@
--- Migration: 003 - Create users table for user profiles
-
-DO $$
-BEGIN
-    CREATE TABLE IF NOT EXISTS users (
-      id UUID PRIMARY KEY REFERENCES _accounts(id) ON DELETE CASCADE,
-      nickname TEXT,
-      avatar_url TEXT,
-      bio TEXT,
-      birthday DATE,
-      created_at TIMESTAMPTZ DEFAULT NOW(),
-      updated_at TIMESTAMPTZ DEFAULT NOW()
-    );
-    
-    -- Check and create policies only if they don't exist
-    -- Allow everyone to read users table
-    IF NOT EXISTS (
-      SELECT 1 FROM pg_policies 
-      WHERE tablename = 'users' 
-      AND policyname = 'Enable read access for all users'
-    ) THEN
-      CREATE POLICY "Enable read access for all users" ON users
-        FOR SELECT
-        USING (true);  -- Allow all reads
-    END IF;
-    
-    IF NOT EXISTS (
-      SELECT 1 FROM pg_policies 
-      WHERE tablename = 'users' 
-      AND policyname = 'Disable delete for users'
-    ) THEN
-      CREATE POLICY "Disable delete for users" ON users
-        FOR DELETE
-        TO authenticated
-        USING (false);
-    END IF;
-
-    IF NOT EXISTS (
-      SELECT 1 FROM pg_policies 
-      WHERE tablename = 'users' 
-      AND policyname = 'Enable update for users based on user_id'
-    ) THEN
-      CREATE POLICY "Enable update for users based on user_id" ON users
-        FOR UPDATE
-        TO authenticated
-        USING (uid() = id)
-        WITH CHECK (uid() = id);  -- make sure only the owner can update
-    END IF;
-    
-    -- Enable Row Level Security on the users table
-    ALTER TABLE users ENABLE ROW LEVEL SECURITY;
-    
-    -- Grant permissions to anon and authenticated roles
-    GRANT SELECT ON users TO anon;
-    GRANT SELECT, UPDATE ON users TO authenticated;
+-- Migration: 003 - Create users table for user profiles
+
+DO $$
+BEGIN
+    CREATE TABLE IF NOT EXISTS users (
+      id UUID PRIMARY KEY REFERENCES _accounts(id) ON DELETE CASCADE,
+      nickname TEXT,
+      avatar_url TEXT,
+      bio TEXT,
+      birthday DATE,
+      created_at TIMESTAMPTZ DEFAULT NOW(),
+      updated_at TIMESTAMPTZ DEFAULT NOW()
+    );
+    
+    -- Check and create policies only if they don't exist
+    -- Allow everyone to read users table
+    IF NOT EXISTS (
+      SELECT 1 FROM pg_policies 
+      WHERE tablename = 'users' 
+      AND policyname = 'Enable read access for all users'
+    ) THEN
+      CREATE POLICY "Enable read access for all users" ON users
+        FOR SELECT
+        USING (true);  -- Allow all reads
+    END IF;
+    
+    IF NOT EXISTS (
+      SELECT 1 FROM pg_policies 
+      WHERE tablename = 'users' 
+      AND policyname = 'Disable delete for users'
+    ) THEN
+      CREATE POLICY "Disable delete for users" ON users
+        FOR DELETE
+        TO authenticated
+        USING (false);
+    END IF;
+
+    IF NOT EXISTS (
+      SELECT 1 FROM pg_policies 
+      WHERE tablename = 'users' 
+      AND policyname = 'Enable update for users based on user_id'
+    ) THEN
+      CREATE POLICY "Enable update for users based on user_id" ON users
+        FOR UPDATE
+        TO authenticated
+        USING (uid() = id)
+        WITH CHECK (uid() = id);  -- make sure only the owner can update
+    END IF;
+    
+    -- Enable Row Level Security on the users table
+    ALTER TABLE users ENABLE ROW LEVEL SECURITY;
+    
+    -- Grant permissions to anon and authenticated roles
+    GRANT SELECT ON users TO anon;
+    GRANT SELECT, UPDATE ON users TO authenticated;
 END $$;

package/backend/{migrations → src/infra/database/migrations}/004_add-reload-postgrest-func.sql

@@ -1,24 +1,24 @@
--- Migration: 004 - add reload_postgrest_schema function.
-
-DO $$
-BEGIN
-    -- Create a function to reload PostgREST schema
-    CREATE OR REPLACE FUNCTION reload_postgrest_schema()
-    RETURNS void
-    LANGUAGE plpgsql
-    AS $reload_function$
-    BEGIN
-        -- Method 1: Use NOTIFY to signal PostgREST to reload schema
-        -- PostgREST listens to 'pgrst' channel for schema changes
-        NOTIFY pgrst, 'reload schema';
-        
-        RAISE NOTICE 'PostgREST schema reload notification sent';
-    END
-    $reload_function$;
-
-    -- Grant execute permission to project_admin and authenticated users
-    GRANT EXECUTE ON FUNCTION reload_postgrest_schema() TO project_admin;
-    GRANT EXECUTE ON FUNCTION reload_postgrest_schema() TO authenticated;
-    
-    RAISE NOTICE 'PostgREST schema reload function created successfully';
+-- Migration: 004 - add reload_postgrest_schema function.
+
+DO $$
+BEGIN
+    -- Create a function to reload PostgREST schema
+    CREATE OR REPLACE FUNCTION reload_postgrest_schema()
+    RETURNS void
+    LANGUAGE plpgsql
+    AS $reload_function$
+    BEGIN
+        -- Method 1: Use NOTIFY to signal PostgREST to reload schema
+        -- PostgREST listens to 'pgrst' channel for schema changes
+        NOTIFY pgrst, 'reload schema';
+        
+        RAISE NOTICE 'PostgREST schema reload notification sent';
+    END
+    $reload_function$;
+
+    -- Grant execute permission to project_admin and authenticated users
+    GRANT EXECUTE ON FUNCTION reload_postgrest_schema() TO project_admin;
+    GRANT EXECUTE ON FUNCTION reload_postgrest_schema() TO authenticated;
+    
+    RAISE NOTICE 'PostgREST schema reload function created successfully';
 END $$;

package/backend/{migrations → src/infra/database/migrations}/005_enable-project-admin-modify-users.sql

@@ -1,30 +1,30 @@
--- Migration: 005 - Enable project admin modify any users.
-
-DO $$
-BEGIN
-    -- Create policy to allow project_admin to update any user
-    IF NOT EXISTS (
-        SELECT 1 FROM pg_policies 
-        WHERE tablename = 'users' 
-        AND policyname = 'Allow project_admin to update any user'
-    ) THEN
-        CREATE POLICY "Allow project_admin to update any user" ON users
-            FOR UPDATE
-            TO project_admin
-            USING (true)
-            WITH CHECK (true);  -- Ensure project_admin always can update
-    END IF;
-
-    -- Grant necessary permissions
-    GRANT SELECT, UPDATE ON users TO project_admin;
-    
-    -- Notify PostgREST to reload schema after policy changes
-    IF EXISTS (SELECT 1 FROM pg_proc WHERE proname = 'reload_postgrest_schema') THEN
-        PERFORM reload_postgrest_schema();
-        RAISE NOTICE 'PostgREST schema reload requested after migration';
-    ELSE
-        RAISE WARNING 'PostgREST reload function not found - please restart PostgREST manually';
-    END IF;
-    
-    RAISE NOTICE 'Migration project-admin-update-users completed successfully';
+-- Migration: 005 - Enable project admin modify any users.
+
+DO $$
+BEGIN
+    -- Create policy to allow project_admin to update any user
+    IF NOT EXISTS (
+        SELECT 1 FROM pg_policies 
+        WHERE tablename = 'users' 
+        AND policyname = 'Allow project_admin to update any user'
+    ) THEN
+        CREATE POLICY "Allow project_admin to update any user" ON users
+            FOR UPDATE
+            TO project_admin
+            USING (true)
+            WITH CHECK (true);  -- Ensure project_admin always can update
+    END IF;
+
+    -- Grant necessary permissions
+    GRANT SELECT, UPDATE ON users TO project_admin;
+    
+    -- Notify PostgREST to reload schema after policy changes
+    IF EXISTS (SELECT 1 FROM pg_proc WHERE proname = 'reload_postgrest_schema') THEN
+        PERFORM reload_postgrest_schema();
+        RAISE NOTICE 'PostgREST schema reload requested after migration';
+    ELSE
+        RAISE WARNING 'PostgREST reload function not found - please restart PostgREST manually';
+    END IF;
+    
+    RAISE NOTICE 'Migration project-admin-update-users completed successfully';
 END $$;