aiolabs/nsecbunkerd
8
0
Fork 0
Code Issues 12 Pull requests Projects Releases Packages Wiki Activity Actions
nsecbunkerd/prisma
History
Exact
Padreug 6397c7988d feat(schema)(#25): Request.keyUserId + SigningCondition lifecycle for live grant eval 
Additive, non-breaking schema prep for the Option D live-evaluation ACL:

- Request gains keyUserId (FK) + @@index([keyUserId, method]) so token
  usage caps can be derived live by COUNTing allowed Requests, replacing
  the never-enforced mutable PolicyRule.currentUsageCount (derive-don't-count,
  per lnbits/nostr_bunker prior art).
- SigningCondition gains createdAt/expiresAt/revokedAt so the manual-override
  layer carries its own lifecycle and runs through the same grantIsLive(now)
  predicate as token grants (D1: two typed sources, one shared rule).

No behavior change yet; the ACL hot path and applyToken de-materialization
follow in subsequent commits.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-19 15:00:33 +02:00
..
migrations feat(schema)(#25): Request.keyUserId + SigningCondition lifecycle for live grant eval 2026-06-19 15:00:33 +02:00
nsecbunker.db follow 2023-06-29 16:55:23 +02:00
schema.prisma feat(schema)(#25): Request.keyUserId + SigningCondition lifecycle for live grant eval 2026-06-19 15:00:33 +02:00