2021-08-20 14:06:01 +02:00
|
|
|
-- Users
|
|
|
|
|
CREATE TABLE users (
|
|
|
|
|
id uuid DEFAULT gen_random_uuid() PRIMARY KEY,
|
|
|
|
|
|
|
|
|
|
username varchar(32) UNIQUE NOT NULL,
|
2021-08-20 14:46:19 +02:00
|
|
|
-- Hashed + salted representation of the username
|
|
|
|
|
password text NOT NULL,
|
|
|
|
|
-- Wether the user is currently blocked
|
|
|
|
|
blocked boolean DEFAULT false
|
2021-08-20 14:06:01 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
-- Permissions that a user can have
|
|
|
|
|
CREATE TABLE permissions (
|
|
|
|
|
id uuid DEFAULT gen_random_uuid() PRIMARY KEY,
|
|
|
|
|
|
|
|
|
|
user_id uuid REFERENCES users (id) NOT NULL,
|
|
|
|
|
name varchar NOT NULL,
|
|
|
|
|
|
|
|
|
|
UNIQUE (user_id, name)
|
|
|
|
|
);
|
2021-08-20 14:46:19 +02:00
|
|
|
|
|
|
|
|
-- TODO security reports table (e.g. when a user is blocked)
|
|
|
|
|
|
|
|
|
|
-- Stores refresh tokens
|
|
|
|
|
CREATE TABLE refresh_tokens (
|
|
|
|
|
-- This is more efficient than storing the text
|
|
|
|
|
token bytea PRIMARY KEY,
|
|
|
|
|
-- The user for whom the token was created
|
|
|
|
|
user_id uuid NOT NULL REFERENCES users(id),
|
|
|
|
|
-- When the token expires
|
|
|
|
|
expires_at timestamp NOT NULL,
|
|
|
|
|
-- When the token was last used (is NULL until used)
|
|
|
|
|
last_used_at timestamp
|
|
|
|
|
);
|
