mirror of
https://github.com/Memo-2023/mana-monorepo.git
synced 2026-05-15 07:41:09 +02:00
8dd1e4326c
- Replace jsonwebtoken RS256 validation with jose EdDSA - Add JWKS endpoint to expose Better Auth public keys - Use createRemoteJWKSet for token validation - Fix issuer mismatch (use env var consistently) - Add jwks table to schema for Better Auth JWT plugin - Install jose library for JWT verification
183 lines
6.7 KiB
TypeScript
183 lines
6.7 KiB
TypeScript
import {
|
|
pgSchema,
|
|
uuid,
|
|
integer,
|
|
text,
|
|
timestamp,
|
|
jsonb,
|
|
index,
|
|
pgEnum,
|
|
boolean,
|
|
} from 'drizzle-orm/pg-core';
|
|
import { users } from './auth.schema';
|
|
import { organizations } from './organizations.schema';
|
|
|
|
export const creditsSchema = pgSchema('credits');
|
|
|
|
// Transaction types enum
|
|
export const transactionTypeEnum = pgEnum('transaction_type', [
|
|
'purchase',
|
|
'usage',
|
|
'refund',
|
|
'bonus',
|
|
'expiry',
|
|
'adjustment',
|
|
]);
|
|
|
|
// Transaction status enum
|
|
export const transactionStatusEnum = pgEnum('transaction_status', [
|
|
'pending',
|
|
'completed',
|
|
'failed',
|
|
'cancelled',
|
|
]);
|
|
|
|
// Credit balances (one per user)
|
|
export const balances = creditsSchema.table('balances', {
|
|
userId: text('user_id')
|
|
.primaryKey()
|
|
.references(() => users.id, { onDelete: 'cascade' }),
|
|
balance: integer('balance').default(0).notNull(),
|
|
freeCreditsRemaining: integer('free_credits_remaining').default(150).notNull(),
|
|
dailyFreeCredits: integer('daily_free_credits').default(5).notNull(),
|
|
lastDailyResetAt: timestamp('last_daily_reset_at', { withTimezone: true }).defaultNow(),
|
|
totalEarned: integer('total_earned').default(0).notNull(),
|
|
totalSpent: integer('total_spent').default(0).notNull(),
|
|
version: integer('version').default(0).notNull(),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
updatedAt: timestamp('updated_at', { withTimezone: true }).defaultNow().notNull(),
|
|
});
|
|
|
|
// Transaction ledger
|
|
export const transactions = creditsSchema.table(
|
|
'transactions',
|
|
{
|
|
id: uuid('id').primaryKey().defaultRandom(),
|
|
userId: text('user_id')
|
|
.references(() => users.id, { onDelete: 'cascade' })
|
|
.notNull(),
|
|
type: transactionTypeEnum('type').notNull(),
|
|
status: transactionStatusEnum('status').default('pending').notNull(),
|
|
amount: integer('amount').notNull(),
|
|
balanceBefore: integer('balance_before').notNull(),
|
|
balanceAfter: integer('balance_after').notNull(),
|
|
appId: text('app_id').notNull(),
|
|
description: text('description').notNull(),
|
|
organizationId: text('organization_id').references(() => organizations.id),
|
|
metadata: jsonb('metadata'),
|
|
idempotencyKey: text('idempotency_key').unique(),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
completedAt: timestamp('completed_at', { withTimezone: true }),
|
|
},
|
|
(table) => ({
|
|
userIdIdx: index('transactions_user_id_idx').on(table.userId),
|
|
appIdIdx: index('transactions_app_id_idx').on(table.appId),
|
|
organizationIdIdx: index('transactions_organization_id_idx').on(table.organizationId),
|
|
createdAtIdx: index('transactions_created_at_idx').on(table.createdAt),
|
|
idempotencyKeyIdx: index('transactions_idempotency_key_idx').on(table.idempotencyKey),
|
|
})
|
|
);
|
|
|
|
// Credit packages (pricing tiers)
|
|
export const packages = creditsSchema.table('packages', {
|
|
id: uuid('id').primaryKey().defaultRandom(),
|
|
name: text('name').notNull(),
|
|
description: text('description'),
|
|
credits: integer('credits').notNull(),
|
|
priceEuroCents: integer('price_euro_cents').notNull(),
|
|
stripePriceId: text('stripe_price_id').unique(),
|
|
active: boolean('active').default(true).notNull(),
|
|
sortOrder: integer('sort_order').default(0).notNull(),
|
|
metadata: jsonb('metadata'),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
updatedAt: timestamp('updated_at', { withTimezone: true }).defaultNow().notNull(),
|
|
});
|
|
|
|
// Purchase history
|
|
export const purchases = creditsSchema.table(
|
|
'purchases',
|
|
{
|
|
id: uuid('id').primaryKey().defaultRandom(),
|
|
userId: text('user_id')
|
|
.references(() => users.id, { onDelete: 'cascade' })
|
|
.notNull(),
|
|
packageId: uuid('package_id').references(() => packages.id),
|
|
credits: integer('credits').notNull(),
|
|
priceEuroCents: integer('price_euro_cents').notNull(),
|
|
stripePaymentIntentId: text('stripe_payment_intent_id').unique(),
|
|
stripeCustomerId: text('stripe_customer_id'),
|
|
status: transactionStatusEnum('status').default('pending').notNull(),
|
|
metadata: jsonb('metadata'),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
completedAt: timestamp('completed_at', { withTimezone: true }),
|
|
},
|
|
(table) => ({
|
|
userIdIdx: index('purchases_user_id_idx').on(table.userId),
|
|
stripePaymentIntentIdIdx: index('purchases_stripe_payment_intent_id_idx').on(
|
|
table.stripePaymentIntentId
|
|
),
|
|
})
|
|
);
|
|
|
|
// Usage tracking (for analytics)
|
|
export const usageStats = creditsSchema.table(
|
|
'usage_stats',
|
|
{
|
|
id: uuid('id').primaryKey().defaultRandom(),
|
|
userId: text('user_id')
|
|
.references(() => users.id, { onDelete: 'cascade' })
|
|
.notNull(),
|
|
appId: text('app_id').notNull(),
|
|
creditsUsed: integer('credits_used').notNull(),
|
|
date: timestamp('date', { withTimezone: true }).notNull(),
|
|
metadata: jsonb('metadata'),
|
|
},
|
|
(table) => ({
|
|
userIdDateIdx: index('usage_stats_user_id_date_idx').on(table.userId, table.date),
|
|
appIdDateIdx: index('usage_stats_app_id_date_idx').on(table.appId, table.date),
|
|
})
|
|
);
|
|
|
|
// Organization credit balances (B2B)
|
|
export const organizationBalances = creditsSchema.table('organization_balances', {
|
|
organizationId: text('organization_id')
|
|
.primaryKey()
|
|
.references(() => organizations.id, { onDelete: 'cascade' }),
|
|
balance: integer('balance').default(0).notNull(),
|
|
allocatedCredits: integer('allocated_credits').default(0).notNull(),
|
|
availableCredits: integer('available_credits').default(0).notNull(),
|
|
totalPurchased: integer('total_purchased').default(0).notNull(),
|
|
totalAllocated: integer('total_allocated').default(0).notNull(),
|
|
version: integer('version').default(0).notNull(),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
updatedAt: timestamp('updated_at', { withTimezone: true }).defaultNow().notNull(),
|
|
});
|
|
|
|
// Credit allocations (B2B - tracking allocations from org to employees)
|
|
export const creditAllocations = creditsSchema.table(
|
|
'credit_allocations',
|
|
{
|
|
id: uuid('id').primaryKey().defaultRandom(),
|
|
organizationId: text('organization_id')
|
|
.references(() => organizations.id, { onDelete: 'cascade' })
|
|
.notNull(),
|
|
employeeId: text('employee_id')
|
|
.references(() => users.id, { onDelete: 'cascade' })
|
|
.notNull(),
|
|
amount: integer('amount').notNull(),
|
|
allocatedBy: text('allocated_by')
|
|
.references(() => users.id)
|
|
.notNull(),
|
|
reason: text('reason'),
|
|
balanceBefore: integer('balance_before').notNull(),
|
|
balanceAfter: integer('balance_after').notNull(),
|
|
metadata: jsonb('metadata'),
|
|
createdAt: timestamp('created_at', { withTimezone: true }).defaultNow().notNull(),
|
|
},
|
|
(table) => ({
|
|
organizationIdIdx: index('credit_allocations_organization_id_idx').on(table.organizationId),
|
|
employeeIdIdx: index('credit_allocations_employee_id_idx').on(table.employeeId),
|
|
allocatedByIdx: index('credit_allocations_allocated_by_idx').on(table.allocatedBy),
|
|
createdAtIdx: index('credit_allocations_created_at_idx').on(table.createdAt),
|
|
})
|
|
);
|