Padreug
6397c7988d
Additive, non-breaking schema prep for the Option D live-evaluation ACL: - Request gains keyUserId (FK) + @@index([keyUserId, method]) so token usage caps can be derived live by COUNTing allowed Requests, replacing the never-enforced mutable PolicyRule.currentUsageCount (derive-don't-count, per lnbits/nostr_bunker prior art). - SigningCondition gains createdAt/expiresAt/revokedAt so the manual-override layer carries its own lifecycle and runs through the same grantIsLive(now) predicate as token grants (D1: two typed sources, one shared rule). No behavior change yet; the ACL hot path and applyToken de-materialization follow in subsequent commits. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
37 lines
1.7 KiB
SQL
37 lines
1.7 KiB
SQL
-- RedefineTables
|
|
PRAGMA defer_foreign_keys=ON;
|
|
PRAGMA foreign_keys=OFF;
|
|
CREATE TABLE "new_Request" (
|
|
"id" TEXT NOT NULL PRIMARY KEY,
|
|
"keyName" TEXT,
|
|
"createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
|
|
"requestId" TEXT NOT NULL,
|
|
"remotePubkey" TEXT NOT NULL,
|
|
"method" TEXT NOT NULL,
|
|
"params" TEXT,
|
|
"allowed" BOOLEAN,
|
|
"keyUserId" INTEGER,
|
|
CONSTRAINT "Request_keyUserId_fkey" FOREIGN KEY ("keyUserId") REFERENCES "KeyUser" ("id") ON DELETE SET NULL ON UPDATE CASCADE
|
|
);
|
|
INSERT INTO "new_Request" ("allowed", "createdAt", "id", "keyName", "method", "params", "remotePubkey", "requestId") SELECT "allowed", "createdAt", "id", "keyName", "method", "params", "remotePubkey", "requestId" FROM "Request";
|
|
DROP TABLE "Request";
|
|
ALTER TABLE "new_Request" RENAME TO "Request";
|
|
CREATE INDEX "Request_keyUserId_method_idx" ON "Request"("keyUserId", "method");
|
|
CREATE TABLE "new_SigningCondition" (
|
|
"id" INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
|
"method" TEXT,
|
|
"kind" TEXT,
|
|
"content" TEXT,
|
|
"keyUserKeyName" TEXT,
|
|
"allowed" BOOLEAN,
|
|
"keyUserId" INTEGER,
|
|
"createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
|
|
"expiresAt" DATETIME,
|
|
"revokedAt" DATETIME,
|
|
CONSTRAINT "SigningCondition_keyUserId_fkey" FOREIGN KEY ("keyUserId") REFERENCES "KeyUser" ("id") ON DELETE SET NULL ON UPDATE CASCADE
|
|
);
|
|
INSERT INTO "new_SigningCondition" ("allowed", "content", "id", "keyUserId", "keyUserKeyName", "kind", "method") SELECT "allowed", "content", "id", "keyUserId", "keyUserKeyName", "kind", "method" FROM "SigningCondition";
|
|
DROP TABLE "SigningCondition";
|
|
ALTER TABLE "new_SigningCondition" RENAME TO "SigningCondition";
|
|
PRAGMA foreign_keys=ON;
|
|
PRAGMA defer_foreign_keys=OFF;
|