aiolabs/nsecbunkerd
8
0
Fork 0
Code Issues 12 Pull requests Projects Releases Packages Wiki Activity Actions

feat(#11): live-policy auth + 6 companion admin RPCs + Token.revokedAt #13

Merged
padreug merged 3 commits from issue-11-live-policy-auth into dev 2026-05-30 15:25:16 +00:00
Conversation 0 Commits 3 Files changed 10 +3
2 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit eb6c86a4d1 - Show all commits

chore(schema): add Token.revokedAt for surgical token revocation (#11)

Prev Next 
Pre-requisite for the live-policy auth rewrite in #11. The new
revoke_token admin RPC needs a way to mark a single Token as
revoked without nuking the whole KeyUser (revoke_user) or
conflating with future expiry cleanup (deletedAt).

Nullable DateTime — existing rows default to NULL (active), no
data migration needed.

refs: #11
Padreug 2026-05-30 13:23:52 +02:00
commit eb6c86a4d1

2
prisma/migrations/20260530112308_add_token_revoked_at/migration.sql Normal file
View file

@ -0,0 +1,2 @@
-- AlterTable
ALTER TABLE "Token" ADD COLUMN "revokedAt" DATETIME;

1
prisma/schema.prisma
View file

@ -110,6 +110,7 @@ model Token {
deletedAt DateTime? deletedAt DateTime?
expiresAt DateTime? expiresAt DateTime?
redeemedAt DateTime? redeemedAt DateTime?
revokedAt DateTime?
keyUserId Int? keyUserId Int?
policyId Int? policyId Int?
policy Policy? @relation(fields: [policyId], references: [id]) policy Policy? @relation(fields: [policyId], references: [id])