markus/next-ory
1
0
Fork 0
Code Issues 5 Pull requests Projects Releases 1 Packages Wiki Activity Actions

NORY-41: implement custom identity query (#50)

Browse source 
Resolves #41 
Fixes #45
This commit is contained in:
Markus Thielker 2025-01-04 15:28:52 +01:00 committed by GitHub
commit 6d853ec309
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
18 changed files with 7363 additions and 135 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
dashboard/.env.example
View file

@ -1,4 +1,6 @@
DATABASE_URL=postgresql://postgres:postgres@localhost:5432/kratos
ORY_KRATOS_ADMIN_URL=http://localhost:4434
ORY_HYDRA_ADMIN_URL=http://localhost:4445

BIN
dashboard/bun.lockb
View file

Binary file not shown.

14
dashboard/drizzle.config.ts Normal file
View file

@ -0,0 +1,14 @@
'use server';
import 'dotenv/config';
import { defineConfig } from 'drizzle-kit';
export default defineConfig({
out: './drizzle',
schema: './src/db/schema.ts',
dialect: 'postgresql',
dbCredentials: {
url: process.env.DATABASE_URL!,
},
});

484
dashboard/drizzle/0000_square_moondragon.sql Normal file
View file

@ -0,0 +1,484 @@
-- Current sql file was generated after introspecting the database
-- If you want to run this migration please uncomment this code before executing migrations
/*
CREATE TABLE "schema_migration" (
"version" varchar(48) NOT NULL,
"version_self" integer DEFAULT 0 NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_credentials" (
"id" uuid PRIMARY KEY NOT NULL,
"config" jsonb NOT NULL,
"identity_credential_type_id" uuid NOT NULL,
"identity_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid,
"version" integer DEFAULT 0 NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_credential_types" (
"id" uuid PRIMARY KEY NOT NULL,
"name" varchar(32) NOT NULL
);
--> statement-breakpoint
CREATE TABLE "selfservice_login_flows" (
"id" uuid PRIMARY KEY NOT NULL,
"request_url" text NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"active_method" varchar(32) NOT NULL,
"csrf_token" varchar(255) NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"forced" boolean DEFAULT false NOT NULL,
"type" varchar(16) DEFAULT 'browser' NOT NULL,
"ui" jsonb,
"nid" uuid,
"requested_aal" varchar(4) DEFAULT 'aal1' NOT NULL,
"internal_context" jsonb NOT NULL,
"oauth2_login_challenge" uuid,
"oauth2_login_challenge_data" text,
"state" varchar(255),
"submit_count" integer DEFAULT 0 NOT NULL,
"organization_id" uuid
);
--> statement-breakpoint
CREATE TABLE "networks" (
"id" uuid PRIMARY KEY NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL
);
--> statement-breakpoint
CREATE TABLE "selfservice_registration_flows" (
"id" uuid PRIMARY KEY NOT NULL,
"request_url" text NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"active_method" varchar(32) NOT NULL,
"csrf_token" varchar(255) NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"type" varchar(16) DEFAULT 'browser' NOT NULL,
"ui" jsonb,
"nid" uuid,
"internal_context" jsonb NOT NULL,
"oauth2_login_challenge" uuid,
"oauth2_login_challenge_data" text,
"state" varchar(255),
"submit_count" integer DEFAULT 0 NOT NULL,
"organization_id" uuid
);
--> statement-breakpoint
CREATE TABLE "identities" (
"id" uuid PRIMARY KEY NOT NULL,
"schema_id" varchar(2048) NOT NULL,
"traits" jsonb NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid,
"state" varchar(255) DEFAULT 'active' NOT NULL,
"state_changed_at" timestamp,
"metadata_public" jsonb,
"metadata_admin" jsonb,
"available_aal" varchar(4),
"organization_id" uuid
);
--> statement-breakpoint
CREATE TABLE "identity_credential_identifiers" (
"id" uuid PRIMARY KEY NOT NULL,
"identifier" varchar(255) NOT NULL,
"identity_credential_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid,
"identity_credential_type_id" uuid NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_verifiable_addresses" (
"id" uuid PRIMARY KEY NOT NULL,
"status" varchar(16) NOT NULL,
"via" varchar(16) NOT NULL,
"verified" boolean NOT NULL,
"value" varchar(400) NOT NULL,
"verified_at" timestamp,
"identity_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid
);
--> statement-breakpoint
CREATE TABLE "courier_messages" (
"id" uuid PRIMARY KEY NOT NULL,
"type" integer NOT NULL,
"status" integer NOT NULL,
"body" text NOT NULL,
"subject" varchar(255) NOT NULL,
"recipient" varchar(255) NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"template_type" varchar(255) DEFAULT '' NOT NULL,
"template_data" "bytea",
"nid" uuid,
"send_count" integer DEFAULT 0 NOT NULL,
"channel" varchar(32)
);
--> statement-breakpoint
CREATE TABLE "selfservice_errors" (
"id" uuid PRIMARY KEY NOT NULL,
"errors" jsonb NOT NULL,
"seen_at" timestamp,
"was_seen" boolean NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"csrf_token" varchar(255) DEFAULT '' NOT NULL,
"nid" uuid
);
--> statement-breakpoint
CREATE TABLE "selfservice_verification_flows" (
"id" uuid PRIMARY KEY NOT NULL,
"request_url" text NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"csrf_token" varchar(255) NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"type" varchar(16) DEFAULT 'browser' NOT NULL,
"state" varchar(255) DEFAULT 'show_form' NOT NULL,
"active_method" varchar(32),
"ui" jsonb,
"nid" uuid,
"submit_count" integer DEFAULT 0 NOT NULL,
"oauth2_login_challenge" text,
"session_id" uuid,
"identity_id" uuid,
"authentication_methods" json
);
--> statement-breakpoint
CREATE TABLE "selfservice_settings_flows" (
"id" uuid PRIMARY KEY NOT NULL,
"request_url" text NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"identity_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"active_method" varchar(32),
"state" varchar(255) DEFAULT 'show_form' NOT NULL,
"type" varchar(16) DEFAULT 'browser' NOT NULL,
"ui" jsonb,
"nid" uuid,
"internal_context" jsonb NOT NULL
);
--> statement-breakpoint
CREATE TABLE "continuity_containers" (
"id" uuid PRIMARY KEY NOT NULL,
"identity_id" uuid,
"name" varchar(255) NOT NULL,
"payload" jsonb,
"expires_at" timestamp NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid
);
--> statement-breakpoint
CREATE TABLE "sessions" (
"id" uuid PRIMARY KEY NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"authenticated_at" timestamp NOT NULL,
"identity_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"token" varchar(39),
"active" boolean DEFAULT false,
"nid" uuid,
"logout_token" varchar(39),
"aal" varchar(4) DEFAULT 'aal1' NOT NULL,
"authentication_methods" jsonb NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_recovery_addresses" (
"id" uuid PRIMARY KEY NOT NULL,
"via" varchar(16) NOT NULL,
"value" varchar(400) NOT NULL,
"identity_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid
);
--> statement-breakpoint
CREATE TABLE "identity_verification_tokens" (
"id" uuid PRIMARY KEY NOT NULL,
"token" varchar(64) NOT NULL,
"used" boolean DEFAULT false NOT NULL,
"used_at" timestamp,
"expires_at" timestamp NOT NULL,
"issued_at" timestamp NOT NULL,
"identity_verifiable_address_id" uuid NOT NULL,
"selfservice_verification_flow_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid
);
--> statement-breakpoint
CREATE TABLE "selfservice_recovery_flows" (
"id" uuid PRIMARY KEY NOT NULL,
"request_url" text NOT NULL,
"issued_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"expires_at" timestamp NOT NULL,
"active_method" varchar(32),
"csrf_token" varchar(255) NOT NULL,
"state" varchar(32) NOT NULL,
"recovered_identity_id" uuid,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"type" varchar(16) DEFAULT 'browser' NOT NULL,
"ui" jsonb,
"nid" uuid,
"submit_count" integer DEFAULT 0 NOT NULL,
"skip_csrf_check" boolean DEFAULT false NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_recovery_tokens" (
"id" uuid PRIMARY KEY NOT NULL,
"token" varchar(64) NOT NULL,
"used" boolean DEFAULT false NOT NULL,
"used_at" timestamp,
"identity_recovery_address_id" uuid,
"selfservice_recovery_flow_id" uuid,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"expires_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"issued_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"nid" uuid,
"identity_id" uuid NOT NULL,
"token_type" integer DEFAULT 0 NOT NULL,
CONSTRAINT "identity_recovery_tokens_token_type_ck" CHECK ((token_type = 1) OR (token_type = 2))
);
--> statement-breakpoint
CREATE TABLE "identity_recovery_codes" (
"id" uuid PRIMARY KEY NOT NULL,
"code" varchar(64) NOT NULL,
"used_at" timestamp,
"identity_recovery_address_id" uuid,
"code_type" integer NOT NULL,
"expires_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"issued_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"selfservice_recovery_flow_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid NOT NULL,
"identity_id" uuid NOT NULL
);
--> statement-breakpoint
CREATE TABLE "session_devices" (
"id" uuid PRIMARY KEY NOT NULL,
"ip_address" varchar(50) DEFAULT '',
"user_agent" varchar(512) DEFAULT '',
"location" varchar(512) DEFAULT '',
"nid" uuid NOT NULL,
"session_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
CONSTRAINT "unique_session_device" UNIQUE("ip_address","user_agent","nid","session_id")
);
--> statement-breakpoint
CREATE TABLE "identity_verification_codes" (
"id" uuid PRIMARY KEY NOT NULL,
"code_hmac" varchar(64) NOT NULL,
"used_at" timestamp,
"identity_verifiable_address_id" uuid,
"expires_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"issued_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"selfservice_verification_flow_id" uuid NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL,
"nid" uuid NOT NULL
);
--> statement-breakpoint
CREATE TABLE "courier_message_dispatches" (
"id" uuid PRIMARY KEY NOT NULL,
"message_id" uuid NOT NULL,
"status" varchar(7) NOT NULL,
"error" json,
"nid" uuid NOT NULL,
"created_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"updated_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL
);
--> statement-breakpoint
CREATE TABLE "session_token_exchanges" (
"id" uuid PRIMARY KEY NOT NULL,
"nid" uuid NOT NULL,
"flow_id" uuid NOT NULL,
"session_id" uuid,
"init_code" varchar(64) NOT NULL,
"return_to_code" varchar(64) NOT NULL,
"created_at" timestamp NOT NULL,
"updated_at" timestamp NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_login_codes" (
"id" uuid PRIMARY KEY NOT NULL,
"code" varchar(64) NOT NULL,
"address" varchar(255) NOT NULL,
"address_type" char(36) NOT NULL,
"used_at" timestamp,
"expires_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"issued_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"selfservice_login_flow_id" uuid NOT NULL,
"identity_id" uuid NOT NULL,
"created_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"updated_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"nid" uuid NOT NULL
);
--> statement-breakpoint
CREATE TABLE "identity_registration_codes" (
"id" uuid PRIMARY KEY NOT NULL,
"code" varchar(64) NOT NULL,
"address" varchar(255) NOT NULL,
"address_type" char(36) NOT NULL,
"used_at" timestamp,
"expires_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"issued_at" timestamp DEFAULT '2000-01-01 00:00:00' NOT NULL,
"selfservice_registration_flow_id" uuid NOT NULL,
"created_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"updated_at" timestamp DEFAULT CURRENT_TIMESTAMP NOT NULL,
"nid" uuid NOT NULL
);
--> statement-breakpoint
ALTER TABLE "identity_credentials" ADD CONSTRAINT "identity_credentials_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_credentials" ADD CONSTRAINT "identity_credentials_identity_credential_type_id_fkey" FOREIGN KEY ("identity_credential_type_id") REFERENCES "public"."identity_credential_types"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_credentials" ADD CONSTRAINT "identity_credentials_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_login_flows" ADD CONSTRAINT "selfservice_login_flows_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_registration_flows" ADD CONSTRAINT "selfservice_registration_flows_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identities" ADD CONSTRAINT "identities_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_credential_identifiers" ADD CONSTRAINT "identity_credential_identifiers_identity_credential_id_fkey" FOREIGN KEY ("identity_credential_id") REFERENCES "public"."identity_credentials"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_credential_identifiers" ADD CONSTRAINT "identity_credential_identifiers_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_credential_identifiers" ADD CONSTRAINT "identity_credential_identifiers_type_id_fk_idx" FOREIGN KEY ("identity_credential_type_id") REFERENCES "public"."identity_credential_types"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_verifiable_addresses" ADD CONSTRAINT "identity_verifiable_addresses_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verifiable_addresses" ADD CONSTRAINT "identity_verifiable_addresses_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "courier_messages" ADD CONSTRAINT "courier_messages_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_errors" ADD CONSTRAINT "selfservice_errors_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_verification_flows" ADD CONSTRAINT "selfservice_verification_flows_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_settings_flows" ADD CONSTRAINT "selfservice_profile_management_requests_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "selfservice_settings_flows" ADD CONSTRAINT "selfservice_settings_flows_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "continuity_containers" ADD CONSTRAINT "continuity_containers_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "continuity_containers" ADD CONSTRAINT "continuity_containers_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "sessions" ADD CONSTRAINT "sessions_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "sessions" ADD CONSTRAINT "sessions_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_recovery_addresses" ADD CONSTRAINT "identity_recovery_addresses_identity_id_fkey" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_recovery_addresses" ADD CONSTRAINT "identity_recovery_addresses_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_verification_tokens" ADD CONSTRAINT "identity_verification_tokens_identity_verifiable_address_i_fkey" FOREIGN KEY ("identity_verifiable_address_id") REFERENCES "public"."identity_verifiable_addresses"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verification_tokens" ADD CONSTRAINT "identity_verification_tokens_selfservice_verification_flow_fkey" FOREIGN KEY ("selfservice_verification_flow_id") REFERENCES "public"."selfservice_verification_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verification_tokens" ADD CONSTRAINT "identity_verification_tokens_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "selfservice_recovery_flows" ADD CONSTRAINT "selfservice_recovery_requests_recovered_identity_id_fkey" FOREIGN KEY ("recovered_identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "selfservice_recovery_flows" ADD CONSTRAINT "selfservice_recovery_flows_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_recovery_tokens" ADD CONSTRAINT "identity_recovery_tokens_selfservice_recovery_request_id_fkey" FOREIGN KEY ("selfservice_recovery_flow_id") REFERENCES "public"."selfservice_recovery_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_recovery_tokens" ADD CONSTRAINT "identity_recovery_tokens_nid_fk_idx" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_recovery_tokens" ADD CONSTRAINT "identity_recovery_tokens_identity_recovery_address_id_fkey" FOREIGN KEY ("identity_recovery_address_id") REFERENCES "public"."identity_recovery_addresses"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_recovery_tokens" ADD CONSTRAINT "identity_recovery_tokens_identity_id_fk_idx" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_recovery_codes" ADD CONSTRAINT "identity_recovery_codes_identity_recovery_addresses_id_fk" FOREIGN KEY ("identity_recovery_address_id") REFERENCES "public"."identity_recovery_addresses"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_recovery_codes" ADD CONSTRAINT "identity_recovery_codes_selfservice_recovery_flows_id_fk" FOREIGN KEY ("selfservice_recovery_flow_id") REFERENCES "public"."selfservice_recovery_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_recovery_codes" ADD CONSTRAINT "identity_recovery_codes_identity_id_fk" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_recovery_codes" ADD CONSTRAINT "identity_recovery_codes_networks_id_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "session_devices" ADD CONSTRAINT "session_metadata_sessions_id_fk" FOREIGN KEY ("session_id") REFERENCES "public"."sessions"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "session_devices" ADD CONSTRAINT "session_metadata_nid_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verification_codes" ADD CONSTRAINT "identity_verification_codes_identity_verifiable_addresses_id_fk" FOREIGN KEY ("identity_verifiable_address_id") REFERENCES "public"."identity_verifiable_addresses"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verification_codes" ADD CONSTRAINT "identity_verification_codes_selfservice_verification_flows_id_f" FOREIGN KEY ("selfservice_verification_flow_id") REFERENCES "public"."selfservice_verification_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_verification_codes" ADD CONSTRAINT "identity_verification_codes_networks_id_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "courier_message_dispatches" ADD CONSTRAINT "courier_message_dispatches_message_id_fk" FOREIGN KEY ("message_id") REFERENCES "public"."courier_messages"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "courier_message_dispatches" ADD CONSTRAINT "courier_message_dispatches_nid_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_login_codes" ADD CONSTRAINT "identity_login_codes_selfservice_login_flows_id_fk" FOREIGN KEY ("selfservice_login_flow_id") REFERENCES "public"."selfservice_login_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_login_codes" ADD CONSTRAINT "identity_login_codes_networks_id_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_login_codes" ADD CONSTRAINT "identity_login_codes_identity_id_fk" FOREIGN KEY ("identity_id") REFERENCES "public"."identities"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
ALTER TABLE "identity_registration_codes" ADD CONSTRAINT "identity_registration_codes_selfservice_registration_flows_id_f" FOREIGN KEY ("selfservice_registration_flow_id") REFERENCES "public"."selfservice_registration_flows"("id") ON DELETE cascade ON UPDATE no action;--> statement-breakpoint
ALTER TABLE "identity_registration_codes" ADD CONSTRAINT "identity_registration_codes_networks_id_fk" FOREIGN KEY ("nid") REFERENCES "public"."networks"("id") ON DELETE cascade ON UPDATE restrict;--> statement-breakpoint
CREATE UNIQUE INDEX "schema_migration_version_idx" ON "schema_migration" USING btree ("version" text_ops);--> statement-breakpoint
CREATE INDEX "schema_migration_version_self_idx" ON "schema_migration" USING btree ("version_self" int4_ops);--> statement-breakpoint
CREATE INDEX "identity_credentials_id_nid_idx" ON "identity_credentials" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_credentials_nid_id_idx" ON "identity_credentials" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_credentials_nid_identity_id_idx" ON "identity_credentials" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_credential_types_name_idx" ON "identity_credential_types" USING btree ("name" text_ops);--> statement-breakpoint
CREATE INDEX "selfservice_login_flows_id_nid_idx" ON "selfservice_login_flows" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_login_flows_nid_id_idx" ON "selfservice_login_flows" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_registration_flows_id_nid_idx" ON "selfservice_registration_flows" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_registration_flows_nid_id_idx" ON "selfservice_registration_flows" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identities_id_nid_idx" ON "identities" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identities_nid_id_idx" ON "identities" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_credential_identifiers_id_nid_idx" ON "identity_credential_identifiers" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_credential_identifiers_identifier_nid_type_uq_idx" ON "identity_credential_identifiers" USING btree ("nid" uuid_ops,"identity_credential_type_id" uuid_ops,"identifier" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_credential_identifiers_nid_i_ici_idx" ON "identity_credential_identifiers" USING btree ("nid" text_ops,"identifier" text_ops,"identity_credential_id" text_ops);--> statement-breakpoint
CREATE INDEX "identity_credential_identifiers_nid_id_idx" ON "identity_credential_identifiers" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_credential_identifiers_nid_identity_credential_id_idx" ON "identity_credential_identifiers" USING btree ("identity_credential_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verifiable_addresses_id_nid_idx" ON "identity_verifiable_addresses" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verifiable_addresses_nid_id_idx" ON "identity_verifiable_addresses" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verifiable_addresses_nid_identity_id_idx" ON "identity_verifiable_addresses" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verifiable_addresses_status_via_idx" ON "identity_verifiable_addresses" USING btree ("nid" text_ops,"via" text_ops,"value" text_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_verifiable_addresses_status_via_uq_idx" ON "identity_verifiable_addresses" USING btree ("nid" text_ops,"via" text_ops,"value" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_id_nid_idx" ON "courier_messages" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_nid_created_at_id_idx" ON "courier_messages" USING btree ("nid" timestamp_ops,"created_at" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_nid_id_idx" ON "courier_messages" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_nid_recipient_created_at_id_idx" ON "courier_messages" USING btree ("nid" timestamp_ops,"recipient" text_ops,"created_at" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_nid_status_created_at_id_idx" ON "courier_messages" USING btree ("nid" uuid_ops,"status" timestamp_ops,"created_at" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_messages_status_idx" ON "courier_messages" USING btree ("status" int4_ops);--> statement-breakpoint
CREATE INDEX "selfservice_errors_errors_nid_id_idx" ON "selfservice_errors" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_verification_flows_id_nid_idx" ON "selfservice_verification_flows" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_verification_flows_nid_id_idx" ON "selfservice_verification_flows" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_settings_flows_id_nid_idx" ON "selfservice_settings_flows" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_settings_flows_identity_id_nid_idx" ON "selfservice_settings_flows" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_settings_flows_nid_id_idx" ON "selfservice_settings_flows" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "continuity_containers_id_nid_idx" ON "continuity_containers" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "continuity_containers_identity_id_nid_idx" ON "continuity_containers" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "continuity_containers_nid_id_idx" ON "continuity_containers" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "sessions_id_nid_idx" ON "sessions" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "sessions_identity_id_nid_sorted_idx" ON "sessions" USING btree ("identity_id" timestamp_ops,"nid" timestamp_ops,"authenticated_at" uuid_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "sessions_logout_token_uq_idx" ON "sessions" USING btree ("logout_token" text_ops);--> statement-breakpoint
CREATE INDEX "sessions_nid_created_at_id_idx" ON "sessions" USING btree ("nid" uuid_ops,"created_at" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "sessions_nid_id_identity_id_idx" ON "sessions" USING btree ("nid" uuid_ops,"identity_id" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "sessions_token_nid_idx" ON "sessions" USING btree ("nid" uuid_ops,"token" text_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "sessions_token_uq_idx" ON "sessions" USING btree ("token" text_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_addresses_id_nid_idx" ON "identity_recovery_addresses" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_addresses_nid_id_idx" ON "identity_recovery_addresses" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_addresses_nid_identity_id_idx" ON "identity_recovery_addresses" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_addresses_status_via_idx" ON "identity_recovery_addresses" USING btree ("nid" text_ops,"via" text_ops,"value" text_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_recovery_addresses_status_via_uq_idx" ON "identity_recovery_addresses" USING btree ("nid" text_ops,"via" text_ops,"value" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_tokens_id_nid_idx" ON "identity_verification_tokens" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_tokens_nid_id_idx" ON "identity_verification_tokens" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_tokens_token_nid_used_flow_id_idx" ON "identity_verification_tokens" USING btree ("nid" uuid_ops,"token" bool_ops,"used" text_ops,"selfservice_verification_flow_id" uuid_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_verification_tokens_token_uq_idx" ON "identity_verification_tokens" USING btree ("token" text_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_tokens_verifiable_address_id_idx" ON "identity_verification_tokens" USING btree ("identity_verifiable_address_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_tokens_verification_flow_id_idx" ON "identity_verification_tokens" USING btree ("selfservice_verification_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_recovery_flows_id_nid_idx" ON "selfservice_recovery_flows" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_recovery_flows_nid_id_idx" ON "selfservice_recovery_flows" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "selfservice_recovery_flows_recovered_identity_id_nid_idx" ON "selfservice_recovery_flows" USING btree ("recovered_identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE UNIQUE INDEX "identity_recovery_addresses_code_uq_idx" ON "identity_recovery_tokens" USING btree ("token" text_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_id_nid_idx" ON "identity_recovery_tokens" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_identity_id_nid_idx" ON "identity_recovery_tokens" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_identity_recovery_address_id_idx" ON "identity_recovery_tokens" USING btree ("identity_recovery_address_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_nid_id_idx" ON "identity_recovery_tokens" USING btree ("nid" uuid_ops,"id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_selfservice_recovery_flow_id_idx" ON "identity_recovery_tokens" USING btree ("selfservice_recovery_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_tokens_token_nid_used_idx" ON "identity_recovery_tokens" USING btree ("nid" bool_ops,"token" text_ops,"used" bool_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_codes_flow_id_idx" ON "identity_recovery_codes" USING btree ("selfservice_recovery_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_codes_id_nid_idx" ON "identity_recovery_codes" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_codes_identity_id_nid_idx" ON "identity_recovery_codes" USING btree ("identity_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_codes_identity_recovery_address_id_nid_idx" ON "identity_recovery_codes" USING btree ("identity_recovery_address_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_recovery_codes_nid_flow_id_idx" ON "identity_recovery_codes" USING btree ("nid" uuid_ops,"selfservice_recovery_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "session_devices_id_nid_idx" ON "session_devices" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "session_devices_session_id_nid_idx" ON "session_devices" USING btree ("session_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_codes_flow_id_idx" ON "identity_verification_codes" USING btree ("selfservice_verification_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_codes_id_nid_idx" ON "identity_verification_codes" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_codes_nid_flow_id_idx" ON "identity_verification_codes" USING btree ("nid" uuid_ops,"selfservice_verification_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_verification_codes_verifiable_address_nid_idx" ON "identity_verification_codes" USING btree ("identity_verifiable_address_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "courier_message_dispatches_message_id_idx" ON "courier_message_dispatches" USING btree ("message_id" timestamp_ops,"created_at" timestamp_ops);--> statement-breakpoint
CREATE INDEX "courier_message_dispatches_nid_idx" ON "courier_message_dispatches" USING btree ("nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "session_token_exchanges_nid_code_idx" ON "session_token_exchanges" USING btree ("init_code" uuid_ops,"nid" text_ops);--> statement-breakpoint
CREATE INDEX "session_token_exchanges_nid_flow_id_idx" ON "session_token_exchanges" USING btree ("flow_id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_login_codes_flow_id_idx" ON "identity_login_codes" USING btree ("selfservice_login_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_login_codes_id_nid_idx" ON "identity_login_codes" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_login_codes_identity_id_idx" ON "identity_login_codes" USING btree ("identity_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_login_codes_nid_flow_id_idx" ON "identity_login_codes" USING btree ("nid" uuid_ops,"selfservice_login_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_registration_codes_flow_id_idx" ON "identity_registration_codes" USING btree ("selfservice_registration_flow_id" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_registration_codes_id_nid_idx" ON "identity_registration_codes" USING btree ("id" uuid_ops,"nid" uuid_ops);--> statement-breakpoint
CREATE INDEX "identity_registration_codes_nid_flow_id_idx" ON "identity_registration_codes" USING btree ("nid" uuid_ops,"selfservice_registration_flow_id" uuid_ops);
*/

4700
dashboard/drizzle/meta/0000_snapshot.json Normal file
View file

File diff suppressed because it is too large Load diff

13
dashboard/drizzle/meta/_journal.json Normal file
View file

@ -0,0 +1,13 @@
{
"version": "7",
"dialect": "postgresql",
"entries": [
{
"idx": 0,
"version": "7",
"when": 1735943555589,
"tag": "0000_square_moondragon",
"breakpoints": true
}
]
}

334
dashboard/drizzle/relations.ts Normal file
View file

@ -0,0 +1,334 @@
import { relations } from 'drizzle-orm/relations';
import {
continuityContainers,
courierMessageDispatches,
courierMessages,
identities,
identityCredentialIdentifiers,
identityCredentials,
identityCredentialTypes,
identityLoginCodes,
identityRecoveryAddresses,
identityRecoveryCodes,
identityRecoveryTokens,
identityRegistrationCodes,
identityVerifiableAddresses,
identityVerificationCodes,
identityVerificationTokens,
networks,
selfserviceErrors,
selfserviceLoginFlows,
selfserviceRecoveryFlows,
selfserviceRegistrationFlows,
selfserviceSettingsFlows,
selfserviceVerificationFlows,
sessionDevices,
sessions,
} from './schema';
export const identityCredentialsRelations = relations(identityCredentials, ({ one, many }) => ({
identity: one(identities, {
fields: [identityCredentials.identityId],
references: [identities.id],
}),
identityCredentialType: one(identityCredentialTypes, {
fields: [identityCredentials.identityCredentialTypeId],
references: [identityCredentialTypes.id],
}),
network: one(networks, {
fields: [identityCredentials.nid],
references: [networks.id],
}),
identityCredentialIdentifiers: many(identityCredentialIdentifiers),
}));
export const identitiesRelations = relations(identities, ({ one, many }) => ({
identityCredentials: many(identityCredentials),
network: one(networks, {
fields: [identities.nid],
references: [networks.id],
}),
identityVerifiableAddresses: many(identityVerifiableAddresses),
selfserviceSettingsFlows: many(selfserviceSettingsFlows),
continuityContainers: many(continuityContainers),
sessions: many(sessions),
identityRecoveryAddresses: many(identityRecoveryAddresses),
selfserviceRecoveryFlows: many(selfserviceRecoveryFlows),
identityRecoveryTokens: many(identityRecoveryTokens),
identityRecoveryCodes: many(identityRecoveryCodes),
identityLoginCodes: many(identityLoginCodes),
}));
export const identityCredentialTypesRelations = relations(identityCredentialTypes, ({ many }) => ({
identityCredentials: many(identityCredentials),
identityCredentialIdentifiers: many(identityCredentialIdentifiers),
}));
export const networksRelations = relations(networks, ({ many }) => ({
identityCredentials: many(identityCredentials),
selfserviceLoginFlows: many(selfserviceLoginFlows),
selfserviceRegistrationFlows: many(selfserviceRegistrationFlows),
identities: many(identities),
identityCredentialIdentifiers: many(identityCredentialIdentifiers),
identityVerifiableAddresses: many(identityVerifiableAddresses),
courierMessages: many(courierMessages),
selfserviceErrors: many(selfserviceErrors),
selfserviceVerificationFlows: many(selfserviceVerificationFlows),
selfserviceSettingsFlows: many(selfserviceSettingsFlows),
continuityContainers: many(continuityContainers),
sessions: many(sessions),
identityRecoveryAddresses: many(identityRecoveryAddresses),
identityVerificationTokens: many(identityVerificationTokens),
selfserviceRecoveryFlows: many(selfserviceRecoveryFlows),
identityRecoveryTokens: many(identityRecoveryTokens),
identityRecoveryCodes: many(identityRecoveryCodes),
sessionDevices: many(sessionDevices),
identityVerificationCodes: many(identityVerificationCodes),
courierMessageDispatches: many(courierMessageDispatches),
identityLoginCodes: many(identityLoginCodes),
identityRegistrationCodes: many(identityRegistrationCodes),
}));
export const selfserviceLoginFlowsRelations = relations(selfserviceLoginFlows, ({ one, many }) => ({
network: one(networks, {
fields: [selfserviceLoginFlows.nid],
references: [networks.id],
}),
identityLoginCodes: many(identityLoginCodes),
}));
export const selfserviceRegistrationFlowsRelations = relations(selfserviceRegistrationFlows, ({ one, many }) => ({
network: one(networks, {
fields: [selfserviceRegistrationFlows.nid],
references: [networks.id],
}),
identityRegistrationCodes: many(identityRegistrationCodes),
}));
export const identityCredentialIdentifiersRelations = relations(identityCredentialIdentifiers, ({ one }) => ({
identityCredential: one(identityCredentials, {
fields: [identityCredentialIdentifiers.identityCredentialId],
references: [identityCredentials.id],
}),
network: one(networks, {
fields: [identityCredentialIdentifiers.nid],
references: [networks.id],
}),
identityCredentialType: one(identityCredentialTypes, {
fields: [identityCredentialIdentifiers.identityCredentialTypeId],
references: [identityCredentialTypes.id],
}),
}));
export const identityVerifiableAddressesRelations = relations(identityVerifiableAddresses, ({ one, many }) => ({
identity: one(identities, {
fields: [identityVerifiableAddresses.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [identityVerifiableAddresses.nid],
references: [networks.id],
}),
identityVerificationTokens: many(identityVerificationTokens),
identityVerificationCodes: many(identityVerificationCodes),
}));
export const courierMessagesRelations = relations(courierMessages, ({ one, many }) => ({
network: one(networks, {
fields: [courierMessages.nid],
references: [networks.id],
}),
courierMessageDispatches: many(courierMessageDispatches),
}));
export const selfserviceErrorsRelations = relations(selfserviceErrors, ({ one }) => ({
network: one(networks, {
fields: [selfserviceErrors.nid],
references: [networks.id],
}),
}));
export const selfserviceVerificationFlowsRelations = relations(selfserviceVerificationFlows, ({ one, many }) => ({
network: one(networks, {
fields: [selfserviceVerificationFlows.nid],
references: [networks.id],
}),
identityVerificationTokens: many(identityVerificationTokens),
identityVerificationCodes: many(identityVerificationCodes),
}));
export const selfserviceSettingsFlowsRelations = relations(selfserviceSettingsFlows, ({ one }) => ({
identity: one(identities, {
fields: [selfserviceSettingsFlows.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [selfserviceSettingsFlows.nid],
references: [networks.id],
}),
}));
export const continuityContainersRelations = relations(continuityContainers, ({ one }) => ({
identity: one(identities, {
fields: [continuityContainers.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [continuityContainers.nid],
references: [networks.id],
}),
}));
export const sessionsRelations = relations(sessions, ({ one, many }) => ({
identity: one(identities, {
fields: [sessions.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [sessions.nid],
references: [networks.id],
}),
sessionDevices: many(sessionDevices),
}));
export const identityRecoveryAddressesRelations = relations(identityRecoveryAddresses, ({ one, many }) => ({
identity: one(identities, {
fields: [identityRecoveryAddresses.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [identityRecoveryAddresses.nid],
references: [networks.id],
}),
identityRecoveryTokens: many(identityRecoveryTokens),
identityRecoveryCodes: many(identityRecoveryCodes),
}));
export const identityVerificationTokensRelations = relations(identityVerificationTokens, ({ one }) => ({
identityVerifiableAddress: one(identityVerifiableAddresses, {
fields: [identityVerificationTokens.identityVerifiableAddressId],
references: [identityVerifiableAddresses.id],
}),
selfserviceVerificationFlow: one(selfserviceVerificationFlows, {
fields: [identityVerificationTokens.selfserviceVerificationFlowId],
references: [selfserviceVerificationFlows.id],
}),
network: one(networks, {
fields: [identityVerificationTokens.nid],
references: [networks.id],
}),
}));
export const selfserviceRecoveryFlowsRelations = relations(selfserviceRecoveryFlows, ({ one, many }) => ({
identity: one(identities, {
fields: [selfserviceRecoveryFlows.recoveredIdentityId],
references: [identities.id],
}),
network: one(networks, {
fields: [selfserviceRecoveryFlows.nid],
references: [networks.id],
}),
identityRecoveryTokens: many(identityRecoveryTokens),
identityRecoveryCodes: many(identityRecoveryCodes),
}));
export const identityRecoveryTokensRelations = relations(identityRecoveryTokens, ({ one }) => ({
selfserviceRecoveryFlow: one(selfserviceRecoveryFlows, {
fields: [identityRecoveryTokens.selfserviceRecoveryFlowId],
references: [selfserviceRecoveryFlows.id],
}),
network: one(networks, {
fields: [identityRecoveryTokens.nid],
references: [networks.id],
}),
identityRecoveryAddress: one(identityRecoveryAddresses, {
fields: [identityRecoveryTokens.identityRecoveryAddressId],
references: [identityRecoveryAddresses.id],
}),
identity: one(identities, {
fields: [identityRecoveryTokens.identityId],
references: [identities.id],
}),
}));
export const identityRecoveryCodesRelations = relations(identityRecoveryCodes, ({ one }) => ({
identityRecoveryAddress: one(identityRecoveryAddresses, {
fields: [identityRecoveryCodes.identityRecoveryAddressId],
references: [identityRecoveryAddresses.id],
}),
selfserviceRecoveryFlow: one(selfserviceRecoveryFlows, {
fields: [identityRecoveryCodes.selfserviceRecoveryFlowId],
references: [selfserviceRecoveryFlows.id],
}),
identity: one(identities, {
fields: [identityRecoveryCodes.identityId],
references: [identities.id],
}),
network: one(networks, {
fields: [identityRecoveryCodes.nid],
references: [networks.id],
}),
}));
export const sessionDevicesRelations = relations(sessionDevices, ({ one }) => ({
session: one(sessions, {
fields: [sessionDevices.sessionId],
references: [sessions.id],
}),
network: one(networks, {
fields: [sessionDevices.nid],
references: [networks.id],
}),
}));
export const identityVerificationCodesRelations = relations(identityVerificationCodes, ({ one }) => ({
identityVerifiableAddress: one(identityVerifiableAddresses, {
fields: [identityVerificationCodes.identityVerifiableAddressId],
references: [identityVerifiableAddresses.id],
}),
selfserviceVerificationFlow: one(selfserviceVerificationFlows, {
fields: [identityVerificationCodes.selfserviceVerificationFlowId],
references: [selfserviceVerificationFlows.id],
}),
network: one(networks, {
fields: [identityVerificationCodes.nid],
references: [networks.id],
}),
}));
export const courierMessageDispatchesRelations = relations(courierMessageDispatches, ({ one }) => ({
courierMessage: one(courierMessages, {
fields: [courierMessageDispatches.messageId],
references: [courierMessages.id],
}),
network: one(networks, {
fields: [courierMessageDispatches.nid],
references: [networks.id],
}),
}));
export const identityLoginCodesRelations = relations(identityLoginCodes, ({ one }) => ({
selfserviceLoginFlow: one(selfserviceLoginFlows, {
fields: [identityLoginCodes.selfserviceLoginFlowId],
references: [selfserviceLoginFlows.id],
}),
network: one(networks, {
fields: [identityLoginCodes.nid],
references: [networks.id],
}),
identity: one(identities, {
fields: [identityLoginCodes.identityId],
references: [identities.id],
}),
}));
export const identityRegistrationCodesRelations = relations(identityRegistrationCodes, ({ one }) => ({
selfserviceRegistrationFlow: one(selfserviceRegistrationFlows, {
fields: [identityRegistrationCodes.selfserviceRegistrationFlowId],
references: [selfserviceRegistrationFlows.id],
}),
network: one(networks, {
fields: [identityRegistrationCodes.nid],
references: [networks.id],
}),
}));

714
dashboard/drizzle/schema.ts Normal file
View file

@ -0,0 +1,714 @@
import {
boolean,
char,
check,
foreignKey,
index,
integer,
json,
jsonb,
pgTable,
text,
timestamp,
unique,
uniqueIndex,
uuid,
varchar,
} from 'drizzle-orm/pg-core';
import { sql } from 'drizzle-orm';
export const schema_migration = pgTable('schema_migration', {
version: varchar({ length: 48 }).notNull(),
version_self: integer('version_self').default(0).notNull(),
}, (table) => [
uniqueIndex('schema_migration_version_idx').using('btree', table.version.asc().nullsLast().op('text_ops')),
index('schema_migration_version_self_idx').using('btree', table.version_self.asc().nullsLast().op('int4_ops')),
]);
export const identity_credentials = pgTable('identity_credentials', {
id: uuid().primaryKey().notNull(),
config: jsonb().notNull(),
identity_credential_type_id: uuid('identity_credential_type_id').notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
version: integer().default(0).notNull(),
}, (table) => [
index('identity_credentials_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_credentials_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_credentials_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_credentials_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_credential_type_id],
foreignColumns: [identity_credential_types.id],
name: 'identity_credentials_identity_credential_type_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_credentials_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_credential_types = pgTable('identity_credential_types', {
id: uuid().primaryKey().notNull(),
name: varchar({ length: 32 }).notNull(),
}, (table) => [
uniqueIndex('identity_credential_types_name_idx').using('btree', table.name.asc().nullsLast().op('text_ops')),
]);
export const selfservice_login_flows = pgTable('selfservice_login_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
forced: boolean().default(false).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
requested_aal: varchar('requested_aal', { length: 4 }).default('aal1').notNull(),
internal_context: jsonb('internal_context').notNull(),
oauth2login_challenge: uuid('oauth2_login_challenge'),
oauth2login_challenge_data: text('oauth2_login_challenge_data'),
state: varchar({ length: 255 }),
submit_count: integer('submit_count').default(0).notNull(),
organization_id: uuid('organization_id'),
}, (table) => [
index('selfservice_login_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_login_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_login_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const networks = pgTable('networks', {
id: uuid().primaryKey().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
});
export const selfservice_registration_flows = pgTable('selfservice_registration_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
internal_context: jsonb('internal_context').notNull(),
oauth2login_challenge: uuid('oauth2_login_challenge'),
oauth2login_challenge_data: text('oauth2_login_challenge_data'),
state: varchar({ length: 255 }),
submit_count: integer('submit_count').default(0).notNull(),
organization_id: uuid('organization_id'),
}, (table) => [
index('selfservice_registration_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_registration_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_registration_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identities = pgTable('identities', {
id: uuid().primaryKey().notNull(),
schema_id: varchar('schema_id', { length: 2048 }).notNull(),
traits: jsonb().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
state: varchar({ length: 255 }).default('active').notNull(),
state_changed_at: timestamp('state_changed_at', { mode: 'string' }),
metadata_public: jsonb('metadata_public'),
metadata_admin: jsonb('metadata_admin'),
available_aal: varchar('available_aal', { length: 4 }),
organization_id: uuid('organization_id'),
}, (table) => [
index('identities_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identities_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identities_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_credential_identifiers = pgTable('identity_credential_identifiers', {
id: uuid().primaryKey().notNull(),
identifier: varchar({ length: 255 }).notNull(),
identity_credential_id: uuid('identity_credential_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
identity_credential_type_id: uuid('identity_credential_type_id').notNull(),
}, (table) => [
index('identity_credential_identifiers_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
uniqueIndex('identity_credential_identifiers_identifier_nid_type_uq_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.identity_credential_type_id.asc().nullsLast().op('uuid_ops'), table.identifier.asc().nullsLast().op('uuid_ops')),
index('identity_credential_identifiers_nid_i_ici_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.identifier.asc().nullsLast().op('text_ops'), table.identity_credential_id.asc().nullsLast().op('text_ops')),
index('identity_credential_identifiers_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_credential_identifiers_nid_identity_credential_id_idx').using('btree', table.identity_credential_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_credential_id],
foreignColumns: [identity_credentials.id],
name: 'identity_credential_identifiers_identity_credential_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_credential_identifiers_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_credential_type_id],
foreignColumns: [identity_credential_types.id],
name: 'identity_credential_identifiers_type_id_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_verifiable_addresses = pgTable('identity_verifiable_addresses', {
id: uuid().primaryKey().notNull(),
status: varchar({ length: 16 }).notNull(),
via: varchar({ length: 16 }).notNull(),
verified: boolean().notNull(),
value: varchar({ length: 400 }).notNull(),
verified_at: timestamp('verified_at', { mode: 'string' }),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_verifiable_addresses_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_status_via_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('text_ops')),
uniqueIndex('identity_verifiable_addresses_status_via_uq_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_verifiable_addresses_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verifiable_addresses_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const courier_messages = pgTable('courier_messages', {
id: uuid().primaryKey().notNull(),
type: integer().notNull(),
status: integer().notNull(),
body: text().notNull(),
subject: varchar({ length: 255 }).notNull(),
recipient: varchar({ length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
template_type: varchar('template_type', { length: 255 }).default('').notNull(),
// todo: failed to parse database type 'bytea'
template_data: varchar('template_data'),
nid: uuid(),
send_count: integer('send_count').default(0).notNull(),
channel: varchar({ length: 32 }),
}, (table) => [
index('courier_messages_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('courier_messages_nid_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('courier_messages_nid_recipient_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('timestamp_ops'), table.recipient.asc().nullsLast().op('text_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_nid_status_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.status.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_status_idx').using('btree', table.status.asc().nullsLast().op('int4_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'courier_messages_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_errors = pgTable('selfservice_errors', {
id: uuid().primaryKey().notNull(),
errors: jsonb().notNull(),
seen_at: timestamp('seen_at', { mode: 'string' }),
was_seen: boolean('was_seen').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).default('').notNull(),
nid: uuid(),
}, (table) => [
index('selfservice_errors_errors_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_errors_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_verification_flows = pgTable('selfservice_verification_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
state: varchar({ length: 255 }).default('show_form').notNull(),
active_method: varchar('active_method', { length: 32 }),
ui: jsonb(),
nid: uuid(),
submit_count: integer('submit_count').default(0).notNull(),
oauth2login_challenge: text('oauth2_login_challenge'),
session_id: uuid('session_id'),
identity_id: uuid('identity_id'),
authentication_methods: json('authentication_methods'),
}, (table) => [
index('selfservice_verification_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_verification_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_verification_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_settings_flows = pgTable('selfservice_settings_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }),
state: varchar({ length: 255 }).default('show_form').notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
internal_context: jsonb('internal_context').notNull(),
}, (table) => [
index('selfservice_settings_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_settings_flows_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_settings_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'selfservice_profile_management_requests_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_settings_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const continuity_containers = pgTable('continuity_containers', {
id: uuid().primaryKey().notNull(),
identity_id: uuid('identity_id'),
name: varchar({ length: 255 }).notNull(),
payload: jsonb(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('continuity_containers_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('continuity_containers_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('continuity_containers_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'continuity_containers_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'continuity_containers_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const sessions = pgTable('sessions', {
id: uuid().primaryKey().notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
authenticated_at: timestamp('authenticated_at', { mode: 'string' }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
token: varchar({ length: 39 }),
active: boolean().default(false),
nid: uuid(),
logout_token: varchar('logout_token', { length: 39 }),
aal: varchar({ length: 4 }).default('aal1').notNull(),
authentication_methods: jsonb('authentication_methods').notNull(),
}, (table) => [
index('sessions_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('sessions_identity_id_nid_sorted_idx').using('btree', table.identity_id.asc().nullsLast().op('timestamp_ops'), table.nid.asc().nullsLast().op('timestamp_ops'), table.authenticated_at.desc().nullsFirst().op('uuid_ops')),
uniqueIndex('sessions_logout_token_uq_idx').using('btree', table.logout_token.asc().nullsLast().op('text_ops')),
index('sessions_nid_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.created_at.desc().nullsFirst().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('sessions_nid_id_identity_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.identity_id.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('sessions_token_nid_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.token.asc().nullsLast().op('text_ops')),
uniqueIndex('sessions_token_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'sessions_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'sessions_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_recovery_addresses = pgTable('identity_recovery_addresses', {
id: uuid().primaryKey().notNull(),
via: varchar({ length: 16 }).notNull(),
value: varchar({ length: 400 }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_recovery_addresses_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_status_via_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('text_ops')),
uniqueIndex('identity_recovery_addresses_status_via_uq_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_addresses_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_addresses_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_verification_tokens = pgTable('identity_verification_tokens', {
id: uuid().primaryKey().notNull(),
token: varchar({ length: 64 }).notNull(),
used: boolean().default(false).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).notNull(),
identity_verifiable_address_id: uuid('identity_verifiable_address_id').notNull(),
selfservice_verification_flow_id: uuid('selfservice_verification_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_verification_tokens_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_token_nid_used_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.token.asc().nullsLast().op('bool_ops'), table.used.asc().nullsLast().op('text_ops'), table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
uniqueIndex('identity_verification_tokens_token_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
index('identity_verification_tokens_verifiable_address_id_idx').using('btree', table.identity_verifiable_address_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_verification_flow_id_idx').using('btree', table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_verifiable_address_id],
foreignColumns: [identity_verifiable_addresses.id],
name: 'identity_verification_tokens_identity_verifiable_address_i_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_verification_flow_id],
foreignColumns: [selfservice_verification_flows.id],
name: 'identity_verification_tokens_selfservice_verification_flow_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verification_tokens_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_recovery_flows = pgTable('selfservice_recovery_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
state: varchar({ length: 32 }).notNull(),
recovered_identity_id: uuid('recovered_identity_id'),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
submit_count: integer('submit_count').default(0).notNull(),
skip_csrf_check: boolean('skip_csrf_check').default(false).notNull(),
}, (table) => [
index('selfservice_recovery_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_recovery_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('selfservice_recovery_flows_recovered_identity_id_nid_idx').using('btree', table.recovered_identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.recovered_identity_id],
foreignColumns: [identities.id],
name: 'selfservice_recovery_requests_recovered_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_recovery_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_recovery_tokens = pgTable('identity_recovery_tokens', {
id: uuid().primaryKey().notNull(),
token: varchar({ length: 64 }).notNull(),
used: boolean().default(false).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_recovery_address_id: uuid('identity_recovery_address_id'),
selfservice_recovery_flow_id: uuid('selfservice_recovery_flow_id'),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
nid: uuid(),
identity_id: uuid('identity_id').notNull(),
token_type: integer('token_type').default(0).notNull(),
}, (table) => [
uniqueIndex('identity_recovery_addresses_code_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
index('identity_recovery_tokens_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_identity_recovery_address_id_idx').using('btree', table.identity_recovery_address_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_selfservice_recovery_flow_id_idx').using('btree', table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_token_nid_used_idx').using('btree', table.nid.asc().nullsLast().op('bool_ops'), table.token.asc().nullsLast().op('text_ops'), table.used.asc().nullsLast().op('bool_ops')),
foreignKey({
columns: [table.selfservice_recovery_flow_id],
foreignColumns: [selfservice_recovery_flows.id],
name: 'identity_recovery_tokens_selfservice_recovery_request_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_tokens_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_recovery_address_id],
foreignColumns: [identity_recovery_addresses.id],
name: 'identity_recovery_tokens_identity_recovery_address_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_tokens_identity_id_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
check('identity_recovery_tokens_token_type_ck', sql`(token_type = 1)
or
(token_type = 2)`),
]);
export const identity_recovery_codes = pgTable('identity_recovery_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_recovery_address_id: uuid('identity_recovery_address_id'),
code_type: integer('code_type').notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_recovery_flow_id: uuid('selfservice_recovery_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid().notNull(),
identity_id: uuid('identity_id').notNull(),
}, (table) => [
index('identity_recovery_codes_flow_id_idx').using('btree', table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_identity_recovery_address_id_nid_idx').using('btree', table.identity_recovery_address_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_recovery_address_id],
foreignColumns: [identity_recovery_addresses.id],
name: 'identity_recovery_codes_identity_recovery_addresses_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_recovery_flow_id],
foreignColumns: [selfservice_recovery_flows.id],
name: 'identity_recovery_codes_selfservice_recovery_flows_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_codes_identity_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const session_devices = pgTable('session_devices', {
id: uuid().primaryKey().notNull(),
ip_address: varchar('ip_address', { length: 50 }).default(''),
user_agent: varchar('user_agent', { length: 512 }).default(''),
location: varchar({ length: 512 }).default(''),
nid: uuid().notNull(),
session_id: uuid('session_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
}, (table) => [
index('session_devices_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('session_devices_session_id_nid_idx').using('btree', table.session_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.session_id],
foreignColumns: [sessions.id],
name: 'session_metadata_sessions_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'session_metadata_nid_fk',
}).onDelete('cascade'),
unique('unique_session_device').on(table.ip_address, table.user_agent, table.nid, table.session_id),
]);
export const identity_verification_codes = pgTable('identity_verification_codes', {
id: uuid().primaryKey().notNull(),
code_hmac: varchar('code_hmac', { length: 64 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_verifiable_address_id: uuid('identity_verifiable_address_id'),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_verification_flow_id: uuid('selfservice_verification_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_verification_codes_flow_id_idx').using('btree', table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_verifiable_address_nid_idx').using('btree', table.identity_verifiable_address_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_verifiable_address_id],
foreignColumns: [identity_verifiable_addresses.id],
name: 'identity_verification_codes_identity_verifiable_addresses_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_verification_flow_id],
foreignColumns: [selfservice_verification_flows.id],
name: 'identity_verification_codes_selfservice_verification_flows_id_f',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verification_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const courier_message_dispatches = pgTable('courier_message_dispatches', {
id: uuid().primaryKey().notNull(),
message_id: uuid('message_id').notNull(),
status: varchar({ length: 7 }).notNull(),
error: json(),
nid: uuid().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
}, (table) => [
index('courier_message_dispatches_message_id_idx').using('btree', table.message_id.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('timestamp_ops')),
index('courier_message_dispatches_nid_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.message_id],
foreignColumns: [courier_messages.id],
name: 'courier_message_dispatches_message_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'courier_message_dispatches_nid_fk',
}).onDelete('cascade'),
]);
export const session_token_exchanges = pgTable('session_token_exchanges', {
id: uuid().primaryKey().notNull(),
nid: uuid().notNull(),
flow_id: uuid('flow_id').notNull(),
session_id: uuid('session_id'),
init_code: varchar('init_code', { length: 64 }).notNull(),
return_to_code: varchar('return_to_code', { length: 64 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
}, (table) => [
index('session_token_exchanges_nid_code_idx').using('btree', table.init_code.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('text_ops')),
index('session_token_exchanges_nid_flow_id_idx').using('btree', table.flow_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
]);
export const identity_login_codes = pgTable('identity_login_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
address: varchar({ length: 255 }).notNull(),
address_type: char('address_type', { length: 36 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_login_flow_id: uuid('selfservice_login_flow_id').notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_login_codes_flow_id_idx').using('btree', table.selfservice_login_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_login_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.selfservice_login_flow_id],
foreignColumns: [selfservice_login_flows.id],
name: 'identity_login_codes_selfservice_login_flows_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_login_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_login_codes_identity_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_registration_codes = pgTable('identity_registration_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
address: varchar({ length: 255 }).notNull(),
address_type: char('address_type', { length: 36 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_registration_flow_id: uuid('selfservice_registration_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_registration_codes_flow_id_idx').using('btree', table.selfservice_registration_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_registration_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_registration_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_registration_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.selfservice_registration_flow_id],
foreignColumns: [selfservice_registration_flows.id],
name: 'identity_registration_codes_selfservice_registration_flows_id_f',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_registration_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);

8
dashboard/package.json
View file

@ -20,7 +20,7 @@
"@radix-ui/react-label": "^2.0.2",
"@radix-ui/react-scroll-area": "^1.0.5",
"@radix-ui/react-separator": "^1.1.0",
"@radix-ui/react-slot": "^1.1.0",
"@radix-ui/react-slot": "^1.1.1",
"@radix-ui/react-tabs": "^1.1.1",
"@radix-ui/react-tooltip": "^1.1.4",
"@serwist/next": "^9.0.0-preview.21",
@ -30,10 +30,13 @@
"@tanstack/react-table": "^8.20.5",
"class-variance-authority": "^0.7.1",
"clsx": "^2.1.0",
"dotenv": "^16.4.7",
"drizzle-orm": "^0.38.3",
"lucide-react": "^0.462.0",
"next": "15.0.3",
"next-themes": "^0.4.3",
"oslo": "^1.1.3",
"pg": "^8.13.1",
"react": "19.0.0-rc-66855b96-20241106",
"react-dom": "19.0.0-rc-66855b96-20241106",
"react-hook-form": "^7.51.0",
@ -48,14 +51,17 @@
},
"devDependencies": {
"@types/node": "^22.9.3",
"@types/pg": "^8.11.10",
"@types/react": "npm:types-react@19.0.0-rc.1",
"@types/react-dom": "npm:types-react-dom@19.0.0-rc.1",
"autoprefixer": "^10.0.1",
"drizzle-kit": "^0.30.1",
"eslint": "^8",
"eslint-config-next": "15.0.3",
"postcss": "^8",
"tailwindcss": "^3.3.0",
"ts-node": "^10.9.2",
"tsx": "^4.19.2",
"typescript": "^5.4.2"
},
"overrides": {

97
dashboard/src/app/(inside)/user/data-table.tsx
View file

@ -4,9 +4,7 @@ import { ColumnDef } from '@tanstack/react-table';
import { Identity } from '@ory/client';
import { DataTable } from '@/components/ui/data-table';
import { CircleCheck, CircleX, Copy, MoreHorizontal, Trash, UserCheck, UserMinus, UserPen, UserX } from 'lucide-react';
import React, { useEffect, useRef, useState } from 'react';
import { FetchIdentityPageProps } from '@/app/(inside)/user/page';
import { Spinner } from '@/components/ui/spinner';
import React, { useEffect, useState } from 'react';
import {
DropdownMenu,
DropdownMenuContent,
@ -33,13 +31,11 @@ import { Tooltip, TooltipContent, TooltipTrigger } from '@/components/ui/tooltip
interface IdentityDataTableProps {
data: Identity[];
pageSize: number;
pageToken: string | undefined;
page: number;
query: string;
fetchIdentityPage: (props: FetchIdentityPageProps) => Promise<{ data: Identity[], tokens: Map<string, string> }>;
}
export function IdentityDataTable({ data, pageSize, pageToken, query, fetchIdentityPage }: IdentityDataTableProps) {
export function IdentityDataTable({ data, page, query }: IdentityDataTableProps) {
const columns: ColumnDef<Identity>[] = [
{
@ -81,27 +77,24 @@ export function IdentityDataTable({ data, pageSize, pageToken, query, fetchIdent
return (
<div className="flex flex-row space-x-2 items-center">
<span>{email.value}</span>
{
email.verified ?
<Tooltip>
<TooltipTrigger>
<CircleCheck/>
</TooltipTrigger>
<TooltipContent>
<span>This email was confirmed at </span>
{new Date(email.verified_at!!).toLocaleString()}
</TooltipContent>
</Tooltip>
:
<Tooltip>
<TooltipTrigger>
<CircleX/>
</TooltipTrigger>
<TooltipContent>
This email is not confirmed yet
</TooltipContent>
</Tooltip>
}
<Tooltip>
<TooltipTrigger>
{
email.verified ? <CircleCheck/> : <CircleX/>
}
</TooltipTrigger>
<TooltipContent>
{
email.verified ?
<>
<span>This email was confirmed at </span>
{new Date(email.verified_at!!).toLocaleString()}
</>
:
<p>This email is not confirmed yet</p>
}
</TooltipContent>
</Tooltip>
</div>
);
}
@ -189,49 +182,10 @@ export function IdentityDataTable({ data, pageSize, pageToken, query, fetchIdent
];
const [items, setItems] = useState<Identity[]>(data);
const [nextToken, setNextToken] = useState<string | undefined>(pageToken);
// react on changes from ssr (query params)
useEffect(() => {
setItems(data);
setNextToken(pageToken);
}, [data, pageSize, pageToken, query]);
// infinite scroll handling
const infiniteScrollSensor = useRef(null);
useEffect(() => {
const observer = new IntersectionObserver(
(entries) => {
if (entries[0].isIntersecting) {
fetchMore();
}
},
{ threshold: 0.5 }, // Adjust threshold as needed
);
if (infiniteScrollSensor.current) {
observer.observe(infiniteScrollSensor.current);
}
return () => {
if (infiniteScrollSensor.current) {
observer.unobserve(infiniteScrollSensor.current);
}
};
}, [items]);
const fetchMore = async () => {
if (!nextToken) return;
const response = await fetchIdentityPage({
pageSize: pageSize,
pageToken: nextToken,
query: query,
});
setItems([...items, ...response.data]);
setNextToken(response.tokens.get('next') ?? undefined);
};
}, [data]);
// quick actions
const [currentIdentity, setCurrentIdentity] = useState<Identity | undefined>(undefined);
@ -341,13 +295,6 @@ export function IdentityDataTable({ data, pageSize, pageToken, query, fetchIdent
</>
)
}
{
nextToken && (
<div className="flex w-full justify-center">
<Spinner ref={infiniteScrollSensor} className="h-10"/>
</div>
)
}
</>
);
}

77
dashboard/src/app/(inside)/user/page.tsx
View file

@ -1,49 +1,8 @@
import React from 'react';
import { IdentityDataTable } from '@/app/(inside)/user/data-table';
import { getIdentityApi } from '@/ory/sdk/server';
import { SearchInput } from '@/components/search-input';
export interface FetchIdentityPageProps {
pageSize: number;
pageToken: string;
query: string;
}
async function fetchIdentityPage({ pageSize, pageToken, query }: FetchIdentityPageProps) {
'use server';
const identityApi = await getIdentityApi();
const response = await identityApi.listIdentities({
pageSize: pageSize,
pageToken: pageToken,
previewCredentialsIdentifierSimilar: query,
});
return {
data: response.data,
tokens: parseTokens(response.headers.link),
};
}
function parseTokens(link: string) {
const parsed = link.split(',').map((it) => {
const startRel = it.lastIndexOf('rel="');
const endRel = it.lastIndexOf('"');
const rel = it.slice(startRel, endRel);
const startToken = it.lastIndexOf('page_token=');
const endToken = it.lastIndexOf('&');
const token = it.slice(startToken, endToken);
return [rel, token];
});
return new Map(parsed.map(obj => [
obj[0].replace('rel="', ''),
obj[1].replace('page_token=', ''),
]));
}
import { queryIdentities } from '@/lib/action/identity';
import { IdentityPagination } from '@/components/pagination';
export default async function UserPage(
{
@ -54,12 +13,14 @@ export default async function UserPage(
) {
const params = await searchParams;
const page = params.page ? Number(params.page) : 1;
const query = params.query ? params.query as string : '';
let pageSize = 250;
let pageToken: string = '00000000-0000-0000-0000-000000000000';
let pageSize = 50;
let paginationRange = 11;
const initialFetch = await fetchIdentityPage({ pageSize, pageToken, query: query });
const { data, itemCount, pageCount } = await queryIdentities({ page, pageSize, query });
return (
<div className="space-y-4">
@ -70,13 +31,23 @@ export default async function UserPage(
</p>
</div>
<div className="space-y-2">
<SearchInput queryParamKey="query" placeholder="Search for identifiers (Email, Username...)"/>
<IdentityDataTable
data={initialFetch.data}
pageSize={pageSize}
pageToken={initialFetch.tokens.get('next')}
query={query}
fetchIdentityPage={fetchIdentityPage}/>
<SearchInput
value={query}
pageParamKey="page"
queryParamKey="query"
placeholder="Search for addresses and traits"/>
<div>
<p className="text-xs text-neutral-500">{itemCount} item{itemCount && itemCount > 1 ? 's' : ''} found</p>
<IdentityDataTable
data={data}
page={page}
query={query}/>
</div>
<IdentityPagination
page={page}
pageCount={pageCount}
pageParamKey="page"
paginationRange={paginationRange}/>
</div>
</div>
);

101
dashboard/src/components/pagination.tsx Normal file
View file

@ -0,0 +1,101 @@
'use client';
import {
Pagination,
PaginationContent,
PaginationEllipsis,
PaginationItem,
PaginationLink,
PaginationNext,
PaginationPrevious,
} from '@/components/ui/pagination';
import { usePathname, useSearchParams } from 'next/navigation';
interface IdentityPaginationProps {
page: number;
pageCount: number;
pageParamKey: string;
paginationRange: number;
}
export function IdentityPagination(
{
page,
pageCount,
pageParamKey,
paginationRange,
}: IdentityPaginationProps,
) {
const pathname = usePathname();
const searchParams = useSearchParams();
function updatePage(page: number): string {
const newParams = new URLSearchParams(searchParams.toString());
if (page <= 1) {
newParams.delete(pageParamKey);
} else {
newParams.set(pageParamKey, page.toString());
}
return pathname + '?' + newParams.toString();
}
return (
<Pagination>
<PaginationContent>
{
page > 1 && (
<PaginationItem key={'previous'}>
<PaginationPrevious
href={updatePage(page - 1)}/>
</PaginationItem>
)
}
{
page - (paginationRange / 2) > 1 &&
<PaginationItem key={'ellipsis-previous'}>
<PaginationEllipsis/>
</PaginationItem>
}
{
Array.from({ length: paginationRange }, (_, i) => {
const difference = (i + 1) - Math.round(paginationRange / 2);
const nextPage = page + difference;
if (nextPage < 1 || nextPage > pageCount) {
return;
}
return (
<PaginationItem key={nextPage}>
<PaginationLink
href={updatePage(nextPage)}
isActive={page === nextPage}
>
{nextPage}
</PaginationLink>
</PaginationItem>
);
})
}
{
page + (paginationRange / 2) < pageCount &&
<PaginationItem key={'ellipsis-next'}>
<PaginationEllipsis/>
</PaginationItem>
}
{
page < pageCount && (
<PaginationItem key={'next'}>
<PaginationNext href={updatePage(page + 1)}/>
</PaginationItem>
)
}
</PaginationContent>
</Pagination>
);
}

23
dashboard/src/components/search-input.tsx
View file

@ -2,23 +2,26 @@
import { Input } from '@/components/ui/input';
import { useRouter, useSearchParams } from 'next/navigation';
import { ChangeEvent, HTMLInputTypeAttribute } from 'react';
import { HTMLInputTypeAttribute, useState } from 'react';
interface SearchInputProps {
value: string;
placeholder: string;
pageParamKey: string;
queryParamKey: string;
type?: HTMLInputTypeAttribute;
className?: string;
}
export function SearchInput({ placeholder, queryParamKey, type, className }: SearchInputProps) {
export function SearchInput({ value, placeholder, pageParamKey, queryParamKey, type, className }: SearchInputProps) {
const router = useRouter();
const params = useSearchParams();
const onSearchChange = (event: ChangeEvent<HTMLInputElement>) => {
const [searchInput, setSearchInput] = useState(value);
const onSearchChange = (value: string) => {
const value = event.target.value;
const newParams = new URLSearchParams(params.toString());
if (value.length < 1) {
@ -27,14 +30,24 @@ export function SearchInput({ placeholder, queryParamKey, type, className }: Sea
newParams.set(queryParamKey, value);
}
newParams.delete(pageParamKey);
router.replace('?' + newParams.toString());
};
const handleKeyDown = (event: React.KeyboardEvent<HTMLInputElement>) => {
if (event.key === 'Enter') {
onSearchChange(searchInput);
}
};
return (
<Input
value={searchInput}
type={type ?? 'text'}
placeholder={placeholder}
className={className}
onChange={onSearchChange}/>
onChange={(e) => setSearchInput(e.target.value)}
onKeyDown={handleKeyDown}/>
);
}

117
dashboard/src/components/ui/pagination.tsx Normal file
View file

@ -0,0 +1,117 @@
import * as React from 'react';
import { ChevronLeft, ChevronRight, MoreHorizontal } from 'lucide-react';
import { cn } from '@/lib/utils';
import { ButtonProps, buttonVariants } from '@/components/ui/button';
const Pagination = ({ className, ...props }: React.ComponentProps<'nav'>) => (
<nav
role="navigation"
aria-label="pagination"
className={cn('mx-auto flex w-full justify-center', className)}
{...props}
/>
);
Pagination.displayName = 'Pagination';
const PaginationContent = React.forwardRef<
HTMLUListElement,
React.ComponentProps<'ul'>
>(({ className, ...props }, ref) => (
<ul
ref={ref}
className={cn('flex flex-row items-center gap-1', className)}
{...props}
/>
));
PaginationContent.displayName = 'PaginationContent';
const PaginationItem = React.forwardRef<
HTMLLIElement,
React.ComponentProps<'li'>
>(({ className, ...props }, ref) => (
<li ref={ref} className={cn('', className)} {...props} />
));
PaginationItem.displayName = 'PaginationItem';
type PaginationLinkProps = {
isActive?: boolean
} & Pick<ButtonProps, 'size'> &
React.ComponentProps<'a'>
const PaginationLink = ({
className,
isActive,
size = 'icon',
...props
}: PaginationLinkProps) => (
<a
aria-current={isActive ? 'page' : undefined}
className={cn(
buttonVariants({
variant: isActive ? 'outline' : 'ghost',
size,
}),
className,
)}
{...props}
/>
);
PaginationLink.displayName = 'PaginationLink';
const PaginationPrevious = ({
className,
...props
}: React.ComponentProps<typeof PaginationLink>) => (
<PaginationLink
aria-label="Go to previous page"
size="default"
className={cn('gap-1 pl-2.5', className)}
{...props}
>
<ChevronLeft className="h-4 w-4"/>
<span>Previous</span>
</PaginationLink>
);
PaginationPrevious.displayName = 'PaginationPrevious';
const PaginationNext = ({
className,
...props
}: React.ComponentProps<typeof PaginationLink>) => (
<PaginationLink
aria-label="Go to next page"
size="default"
className={cn('gap-1 pr-2.5', className)}
{...props}
>
<span>Next</span>
<ChevronRight className="h-4 w-4"/>
</PaginationLink>
);
PaginationNext.displayName = 'PaginationNext';
const PaginationEllipsis = ({
className,
...props
}: React.ComponentProps<'span'>) => (
<span
aria-hidden
className={cn('flex h-9 w-9 items-center justify-center', className)}
{...props}
>
<MoreHorizontal className="h-4 w-4"/>
<span className="sr-only">More pages</span>
</span>
);
PaginationEllipsis.displayName = 'PaginationEllipsis';
export {
Pagination,
PaginationContent,
PaginationEllipsis,
PaginationItem,
PaginationLink,
PaginationNext,
PaginationPrevious,
};

18
dashboard/src/db/convert-case.ts Normal file
View file

@ -0,0 +1,18 @@
const fs = require('fs');
const filepath = 'src/db/schema.ts';
const schemaContent = fs.readFileSync(filepath, 'utf-8');
const updatedSchema = schemaContent.replace(/([a-z])([A-Z])/g, '$1_$2').toLowerCase()
.replace(/primary_key/g, 'primaryKey')
.replace(/unique_index/g, 'uniqueIndex')
.replace(/not_null/g, 'notNull')
.replace(/nulls_first/g, 'nullsFirst')
.replace(/nulls_last/g, 'nullsLast')
.replace(/foreign_key/g, 'foreignKey')
.replace(/on_update/g, 'onUpdate')
.replace(/on_delete/g, 'onDelete')
.replace(/pg_table/g, 'pgTable')
.replace(/foreign_columns/g, 'foreignColumns');
fs.writeFileSync(filepath, updatedSchema);

10
dashboard/src/db/index.ts Normal file
View file

@ -0,0 +1,10 @@
'use server';
import 'dotenv/config';
import { drizzle } from 'drizzle-orm/node-postgres';
const db = drizzle(process.env.DATABASE_URL!);
export async function getDB() {
return db;
}

714
dashboard/src/db/schema.ts Normal file
View file

@ -0,0 +1,714 @@
import {
boolean,
char,
check,
foreignKey,
index,
integer,
json,
jsonb,
pgTable,
text,
timestamp,
unique,
uniqueIndex,
uuid,
varchar,
} from 'drizzle-orm/pg-core';
import { sql } from 'drizzle-orm';
export const schema_migration = pgTable('schema_migration', {
version: varchar({ length: 48 }).notNull(),
version_self: integer('version_self').default(0).notNull(),
}, (table) => [
uniqueIndex('schema_migration_version_idx').using('btree', table.version.asc().nullsLast().op('text_ops')),
index('schema_migration_version_self_idx').using('btree', table.version_self.asc().nullsLast().op('int4_ops')),
]);
export const identity_credentials = pgTable('identity_credentials', {
id: uuid().primaryKey().notNull(),
config: jsonb().notNull(),
identity_credential_type_id: uuid('identity_credential_type_id').notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
version: integer().default(0).notNull(),
}, (table) => [
index('identity_credentials_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_credentials_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_credentials_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_credentials_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_credential_type_id],
foreignColumns: [identity_credential_types.id],
name: 'identity_credentials_identity_credential_type_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_credentials_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_credential_types = pgTable('identity_credential_types', {
id: uuid().primaryKey().notNull(),
name: varchar({ length: 32 }).notNull(),
}, (table) => [
uniqueIndex('identity_credential_types_name_idx').using('btree', table.name.asc().nullsLast().op('text_ops')),
]);
export const selfservice_login_flows = pgTable('selfservice_login_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
forced: boolean().default(false).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
requested_aal: varchar('requested_aal', { length: 4 }).default('aal1').notNull(),
internal_context: jsonb('internal_context').notNull(),
oauth2login_challenge: uuid('oauth2_login_challenge'),
oauth2login_challenge_data: text('oauth2_login_challenge_data'),
state: varchar({ length: 255 }),
submit_count: integer('submit_count').default(0).notNull(),
organization_id: uuid('organization_id'),
}, (table) => [
index('selfservice_login_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_login_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_login_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const networks = pgTable('networks', {
id: uuid().primaryKey().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
});
export const selfservice_registration_flows = pgTable('selfservice_registration_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
internal_context: jsonb('internal_context').notNull(),
oauth2login_challenge: uuid('oauth2_login_challenge'),
oauth2login_challenge_data: text('oauth2_login_challenge_data'),
state: varchar({ length: 255 }),
submit_count: integer('submit_count').default(0).notNull(),
organization_id: uuid('organization_id'),
}, (table) => [
index('selfservice_registration_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_registration_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_registration_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identities = pgTable('identities', {
id: uuid().primaryKey().notNull(),
schema_id: varchar('schema_id', { length: 2048 }).notNull(),
traits: jsonb().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
state: varchar({ length: 255 }).default('active').notNull(),
state_changed_at: timestamp('state_changed_at', { mode: 'string' }),
metadata_public: jsonb('metadata_public'),
metadata_admin: jsonb('metadata_admin'),
available_aal: varchar('available_aal', { length: 4 }),
organization_id: uuid('organization_id'),
}, (table) => [
index('identities_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identities_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identities_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_credential_identifiers = pgTable('identity_credential_identifiers', {
id: uuid().primaryKey().notNull(),
identifier: varchar({ length: 255 }).notNull(),
identity_credential_id: uuid('identity_credential_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
identity_credential_type_id: uuid('identity_credential_type_id').notNull(),
}, (table) => [
index('identity_credential_identifiers_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
uniqueIndex('identity_credential_identifiers_identifier_nid_type_uq_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.identity_credential_type_id.asc().nullsLast().op('uuid_ops'), table.identifier.asc().nullsLast().op('uuid_ops')),
index('identity_credential_identifiers_nid_i_ici_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.identifier.asc().nullsLast().op('text_ops'), table.identity_credential_id.asc().nullsLast().op('text_ops')),
index('identity_credential_identifiers_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_credential_identifiers_nid_identity_credential_id_idx').using('btree', table.identity_credential_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_credential_id],
foreignColumns: [identity_credentials.id],
name: 'identity_credential_identifiers_identity_credential_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_credential_identifiers_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_credential_type_id],
foreignColumns: [identity_credential_types.id],
name: 'identity_credential_identifiers_type_id_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_verifiable_addresses = pgTable('identity_verifiable_addresses', {
id: uuid().primaryKey().notNull(),
status: varchar({ length: 16 }).notNull(),
via: varchar({ length: 16 }).notNull(),
verified: boolean().notNull(),
value: varchar({ length: 400 }).notNull(),
verified_at: timestamp('verified_at', { mode: 'string' }),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_verifiable_addresses_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verifiable_addresses_status_via_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('text_ops')),
uniqueIndex('identity_verifiable_addresses_status_via_uq_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_verifiable_addresses_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verifiable_addresses_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const courier_messages = pgTable('courier_messages', {
id: uuid().primaryKey().notNull(),
type: integer().notNull(),
status: integer().notNull(),
body: text().notNull(),
subject: varchar({ length: 255 }).notNull(),
recipient: varchar({ length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
template_type: varchar('template_type', { length: 255 }).default('').notNull(),
// todo: failed to parse database type 'bytea'
template_data: varchar('template_data'),
nid: uuid(),
send_count: integer('send_count').default(0).notNull(),
channel: varchar({ length: 32 }),
}, (table) => [
index('courier_messages_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('courier_messages_nid_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('courier_messages_nid_recipient_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('timestamp_ops'), table.recipient.asc().nullsLast().op('text_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_nid_status_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.status.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('uuid_ops')),
index('courier_messages_status_idx').using('btree', table.status.asc().nullsLast().op('int4_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'courier_messages_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_errors = pgTable('selfservice_errors', {
id: uuid().primaryKey().notNull(),
errors: jsonb().notNull(),
seen_at: timestamp('seen_at', { mode: 'string' }),
was_seen: boolean('was_seen').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).default('').notNull(),
nid: uuid(),
}, (table) => [
index('selfservice_errors_errors_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_errors_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_verification_flows = pgTable('selfservice_verification_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
state: varchar({ length: 255 }).default('show_form').notNull(),
active_method: varchar('active_method', { length: 32 }),
ui: jsonb(),
nid: uuid(),
submit_count: integer('submit_count').default(0).notNull(),
oauth2login_challenge: text('oauth2_login_challenge'),
session_id: uuid('session_id'),
identity_id: uuid('identity_id'),
authentication_methods: json('authentication_methods'),
}, (table) => [
index('selfservice_verification_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_verification_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_verification_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_settings_flows = pgTable('selfservice_settings_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }),
state: varchar({ length: 255 }).default('show_form').notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
internal_context: jsonb('internal_context').notNull(),
}, (table) => [
index('selfservice_settings_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_settings_flows_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_settings_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'selfservice_profile_management_requests_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_settings_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const continuity_containers = pgTable('continuity_containers', {
id: uuid().primaryKey().notNull(),
identity_id: uuid('identity_id'),
name: varchar({ length: 255 }).notNull(),
payload: jsonb(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('continuity_containers_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('continuity_containers_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('continuity_containers_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'continuity_containers_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'continuity_containers_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const sessions = pgTable('sessions', {
id: uuid().primaryKey().notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
authenticated_at: timestamp('authenticated_at', { mode: 'string' }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
token: varchar({ length: 39 }),
active: boolean().default(false),
nid: uuid(),
logout_token: varchar('logout_token', { length: 39 }),
aal: varchar({ length: 4 }).default('aal1').notNull(),
authentication_methods: jsonb('authentication_methods').notNull(),
}, (table) => [
index('sessions_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('sessions_identity_id_nid_sorted_idx').using('btree', table.identity_id.asc().nullsLast().op('timestamp_ops'), table.nid.asc().nullsLast().op('timestamp_ops'), table.authenticated_at.desc().nullsFirst().op('uuid_ops')),
uniqueIndex('sessions_logout_token_uq_idx').using('btree', table.logout_token.asc().nullsLast().op('text_ops')),
index('sessions_nid_created_at_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.created_at.desc().nullsFirst().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('sessions_nid_id_identity_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.identity_id.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('sessions_token_nid_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.token.asc().nullsLast().op('text_ops')),
uniqueIndex('sessions_token_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'sessions_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'sessions_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_recovery_addresses = pgTable('identity_recovery_addresses', {
id: uuid().primaryKey().notNull(),
via: varchar({ length: 16 }).notNull(),
value: varchar({ length: 400 }).notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_recovery_addresses_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_nid_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_addresses_status_via_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('text_ops')),
uniqueIndex('identity_recovery_addresses_status_via_uq_idx').using('btree', table.nid.asc().nullsLast().op('text_ops'), table.via.asc().nullsLast().op('text_ops'), table.value.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_addresses_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_addresses_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_verification_tokens = pgTable('identity_verification_tokens', {
id: uuid().primaryKey().notNull(),
token: varchar({ length: 64 }).notNull(),
used: boolean().default(false).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).notNull(),
identity_verifiable_address_id: uuid('identity_verifiable_address_id').notNull(),
selfservice_verification_flow_id: uuid('selfservice_verification_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid(),
}, (table) => [
index('identity_verification_tokens_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_token_nid_used_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.token.asc().nullsLast().op('bool_ops'), table.used.asc().nullsLast().op('text_ops'), table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
uniqueIndex('identity_verification_tokens_token_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
index('identity_verification_tokens_verifiable_address_id_idx').using('btree', table.identity_verifiable_address_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_tokens_verification_flow_id_idx').using('btree', table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_verifiable_address_id],
foreignColumns: [identity_verifiable_addresses.id],
name: 'identity_verification_tokens_identity_verifiable_address_i_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_verification_flow_id],
foreignColumns: [selfservice_verification_flows.id],
name: 'identity_verification_tokens_selfservice_verification_flow_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verification_tokens_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const selfservice_recovery_flows = pgTable('selfservice_recovery_flows', {
id: uuid().primaryKey().notNull(),
request_url: text('request_url').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).notNull(),
active_method: varchar('active_method', { length: 32 }),
csrf_token: varchar('csrf_token', { length: 255 }).notNull(),
state: varchar({ length: 32 }).notNull(),
recovered_identity_id: uuid('recovered_identity_id'),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
type: varchar({ length: 16 }).default('browser').notNull(),
ui: jsonb(),
nid: uuid(),
submit_count: integer('submit_count').default(0).notNull(),
skip_csrf_check: boolean('skip_csrf_check').default(false).notNull(),
}, (table) => [
index('selfservice_recovery_flows_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('selfservice_recovery_flows_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('selfservice_recovery_flows_recovered_identity_id_nid_idx').using('btree', table.recovered_identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.recovered_identity_id],
foreignColumns: [identities.id],
name: 'selfservice_recovery_requests_recovered_identity_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'selfservice_recovery_flows_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_recovery_tokens = pgTable('identity_recovery_tokens', {
id: uuid().primaryKey().notNull(),
token: varchar({ length: 64 }).notNull(),
used: boolean().default(false).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_recovery_address_id: uuid('identity_recovery_address_id'),
selfservice_recovery_flow_id: uuid('selfservice_recovery_flow_id'),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
nid: uuid(),
identity_id: uuid('identity_id').notNull(),
token_type: integer('token_type').default(0).notNull(),
}, (table) => [
uniqueIndex('identity_recovery_addresses_code_uq_idx').using('btree', table.token.asc().nullsLast().op('text_ops')),
index('identity_recovery_tokens_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_identity_recovery_address_id_idx').using('btree', table.identity_recovery_address_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_nid_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_selfservice_recovery_flow_id_idx').using('btree', table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_tokens_token_nid_used_idx').using('btree', table.nid.asc().nullsLast().op('bool_ops'), table.token.asc().nullsLast().op('text_ops'), table.used.asc().nullsLast().op('bool_ops')),
foreignKey({
columns: [table.selfservice_recovery_flow_id],
foreignColumns: [selfservice_recovery_flows.id],
name: 'identity_recovery_tokens_selfservice_recovery_request_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_tokens_nid_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_recovery_address_id],
foreignColumns: [identity_recovery_addresses.id],
name: 'identity_recovery_tokens_identity_recovery_address_id_fkey',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_tokens_identity_id_fk_idx',
}).onUpdate('restrict').onDelete('cascade'),
check('identity_recovery_tokens_token_type_ck', sql`(token_type = 1)
or
(token_type = 2)`),
]);
export const identity_recovery_codes = pgTable('identity_recovery_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_recovery_address_id: uuid('identity_recovery_address_id'),
code_type: integer('code_type').notNull(),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_recovery_flow_id: uuid('selfservice_recovery_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid().notNull(),
identity_id: uuid('identity_id').notNull(),
}, (table) => [
index('identity_recovery_codes_flow_id_idx').using('btree', table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_identity_id_nid_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_identity_recovery_address_id_nid_idx').using('btree', table.identity_recovery_address_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_recovery_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_recovery_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_recovery_address_id],
foreignColumns: [identity_recovery_addresses.id],
name: 'identity_recovery_codes_identity_recovery_addresses_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_recovery_flow_id],
foreignColumns: [selfservice_recovery_flows.id],
name: 'identity_recovery_codes_selfservice_recovery_flows_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_recovery_codes_identity_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_recovery_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const session_devices = pgTable('session_devices', {
id: uuid().primaryKey().notNull(),
ip_address: varchar('ip_address', { length: 50 }).default(''),
user_agent: varchar('user_agent', { length: 512 }).default(''),
location: varchar({ length: 512 }).default(''),
nid: uuid().notNull(),
session_id: uuid('session_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
}, (table) => [
index('session_devices_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('session_devices_session_id_nid_idx').using('btree', table.session_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.session_id],
foreignColumns: [sessions.id],
name: 'session_metadata_sessions_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'session_metadata_nid_fk',
}).onDelete('cascade'),
unique('unique_session_device').on(table.ip_address, table.user_agent, table.nid, table.session_id),
]);
export const identity_verification_codes = pgTable('identity_verification_codes', {
id: uuid().primaryKey().notNull(),
code_hmac: varchar('code_hmac', { length: 64 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
identity_verifiable_address_id: uuid('identity_verifiable_address_id'),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_verification_flow_id: uuid('selfservice_verification_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_verification_codes_flow_id_idx').using('btree', table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_verification_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_verification_codes_verifiable_address_nid_idx').using('btree', table.identity_verifiable_address_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.identity_verifiable_address_id],
foreignColumns: [identity_verifiable_addresses.id],
name: 'identity_verification_codes_identity_verifiable_addresses_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.selfservice_verification_flow_id],
foreignColumns: [selfservice_verification_flows.id],
name: 'identity_verification_codes_selfservice_verification_flows_id_f',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_verification_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const courier_message_dispatches = pgTable('courier_message_dispatches', {
id: uuid().primaryKey().notNull(),
message_id: uuid('message_id').notNull(),
status: varchar({ length: 7 }).notNull(),
error: json(),
nid: uuid().notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
}, (table) => [
index('courier_message_dispatches_message_id_idx').using('btree', table.message_id.asc().nullsLast().op('timestamp_ops'), table.created_at.desc().nullsFirst().op('timestamp_ops')),
index('courier_message_dispatches_nid_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.message_id],
foreignColumns: [courier_messages.id],
name: 'courier_message_dispatches_message_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'courier_message_dispatches_nid_fk',
}).onDelete('cascade'),
]);
export const session_token_exchanges = pgTable('session_token_exchanges', {
id: uuid().primaryKey().notNull(),
nid: uuid().notNull(),
flow_id: uuid('flow_id').notNull(),
session_id: uuid('session_id'),
init_code: varchar('init_code', { length: 64 }).notNull(),
return_to_code: varchar('return_to_code', { length: 64 }).notNull(),
created_at: timestamp('created_at', { mode: 'string' }).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).notNull(),
}, (table) => [
index('session_token_exchanges_nid_code_idx').using('btree', table.init_code.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('text_ops')),
index('session_token_exchanges_nid_flow_id_idx').using('btree', table.flow_id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
]);
export const identity_login_codes = pgTable('identity_login_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
address: varchar({ length: 255 }).notNull(),
address_type: char('address_type', { length: 36 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_login_flow_id: uuid('selfservice_login_flow_id').notNull(),
identity_id: uuid('identity_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_login_codes_flow_id_idx').using('btree', table.selfservice_login_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_identity_id_idx').using('btree', table.identity_id.asc().nullsLast().op('uuid_ops')),
index('identity_login_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_login_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.selfservice_login_flow_id],
foreignColumns: [selfservice_login_flows.id],
name: 'identity_login_codes_selfservice_login_flows_id_fk',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_login_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
foreignKey({
columns: [table.identity_id],
foreignColumns: [identities.id],
name: 'identity_login_codes_identity_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);
export const identity_registration_codes = pgTable('identity_registration_codes', {
id: uuid().primaryKey().notNull(),
code: varchar({ length: 64 }).notNull(),
address: varchar({ length: 255 }).notNull(),
address_type: char('address_type', { length: 36 }).notNull(),
used_at: timestamp('used_at', { mode: 'string' }),
expires_at: timestamp('expires_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
issued_at: timestamp('issued_at', { mode: 'string' }).default('2000-01-01 00:00:00').notNull(),
selfservice_registration_flow_id: uuid('selfservice_registration_flow_id').notNull(),
created_at: timestamp('created_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
updated_at: timestamp('updated_at', { mode: 'string' }).default(sql`current_timestamp`).notNull(),
nid: uuid().notNull(),
}, (table) => [
index('identity_registration_codes_flow_id_idx').using('btree', table.selfservice_registration_flow_id.asc().nullsLast().op('uuid_ops')),
index('identity_registration_codes_id_nid_idx').using('btree', table.id.asc().nullsLast().op('uuid_ops'), table.nid.asc().nullsLast().op('uuid_ops')),
index('identity_registration_codes_nid_flow_id_idx').using('btree', table.nid.asc().nullsLast().op('uuid_ops'), table.selfservice_registration_flow_id.asc().nullsLast().op('uuid_ops')),
foreignKey({
columns: [table.selfservice_registration_flow_id],
foreignColumns: [selfservice_registration_flows.id],
name: 'identity_registration_codes_selfservice_registration_flows_id_f',
}).onDelete('cascade'),
foreignKey({
columns: [table.nid],
foreignColumns: [networks.id],
name: 'identity_registration_codes_networks_id_fk',
}).onUpdate('restrict').onDelete('cascade'),
]);

72
dashboard/src/lib/action/identity.ts
View file

@ -2,7 +2,77 @@
import { getIdentityApi } from '@/ory/sdk/server';
import { revalidatePath } from 'next/cache';
import { DeleteIdentityCredentialsTypeEnum, UpdateIdentityBody } from '@ory/client';
import {
DeleteIdentityCredentialsTypeEnum,
Identity,
RecoveryIdentityAddress,
UpdateIdentityBody,
VerifiableIdentityAddress,
} from '@ory/client';
import { getDB } from '@/db';
import { identities, identity_recovery_addresses, identity_verifiable_addresses } from '@/db/schema';
import { eq, ilike, or, sql } from 'drizzle-orm';
interface QueryIdentitiesProps {
page: number,
pageSize: number,
query?: string,
}
export async function queryIdentities({ page, pageSize, query }: QueryIdentitiesProps) {
if (page < 1 || pageSize < 1) {
return {
data: [],
pageCount: 0,
};
}
const db = await getDB();
const result = await db.select()
.from(identities)
.leftJoin(identity_verifiable_addresses, eq(identities.id, identity_verifiable_addresses.identity_id))
.leftJoin(identity_recovery_addresses, eq(identities.id, identity_recovery_addresses.identity_id))
.where(or(
sql`${identities.id}::text ILIKE
${`%${query}%`}`,
sql`${identities.traits}::text ILIKE
${`%${query}%`}`,
ilike(identity_verifiable_addresses.value, `%${query}%`),
))
.orderBy(identities.id)
.limit(pageSize)
.offset((page - 1) * pageSize);
const resultCount = await db.$count(
db.select()
.from(identities)
.leftJoin(identity_verifiable_addresses, eq(identities.id, identity_verifiable_addresses.identity_id))
.leftJoin(identity_recovery_addresses, eq(identities.id, identity_recovery_addresses.identity_id))
.where(or(
sql`${identities.id}::text ILIKE
${`%${query}%`}`,
sql`${identities.traits}::text ILIKE
${`%${query}%`}`,
ilike(identity_verifiable_addresses.value, `%${query}%`),
))
.as('subquery'),
);
const resultTyped = result.map((it) => {
const typed = it.identities as unknown as Identity;
typed.verifiable_addresses = [it.identity_verifiable_addresses] as unknown as VerifiableIdentityAddress[];
typed.recovery_addresses = [it.identity_verifiable_addresses] as unknown as RecoveryIdentityAddress[];
return typed;
});
return {
data: resultTyped,
itemCount: resultCount,
pageCount: Math.ceil(resultCount / pageSize),
};
}
interface UpdatedIdentityProps {
id: string;