mirror of
https://github.com/logto-io/logto.git
synced 2024-12-30 20:33:54 -05:00
Merge pull request #6816 from logto-io/yemq-log-7205-add-saml-application-secrets-table
feat(schemas): add `saml_application_secres` table
This commit is contained in:
Darcy Ye
GitHub
commit
2ad808c8ff
2 changed files with 62 additions and 0 deletions
|
|
@ -0,0 +1,40 @@
|
||||||
|
import { sql } from '@silverhand/slonik';
|
||||||
|
|
||||||
|
import type { AlterationScript } from '../lib/types/alteration.js';
|
||||||
|
|
||||||
|
import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
|
||||||
|
|
||||||
|
const alteration: AlterationScript = {
|
||||||
|
up: async (pool) => {
|
||||||
|
await pool.query(sql`
|
||||||
|
create table saml_application_secrets (
|
||||||
|
id varchar(21) not null,
|
||||||
|
tenant_id varchar(21) not null
|
||||||
|
references tenants (id) on update cascade on delete cascade,
|
||||||
|
application_id varchar(21) not null
|
||||||
|
references applications (id) on update cascade on delete cascade,
|
||||||
|
private_key text not null,
|
||||||
|
certificate text not null,
|
||||||
|
created_at timestamptz not null default now(),
|
||||||
|
expires_at timestamptz not null,
|
||||||
|
active boolean not null,
|
||||||
|
primary key (tenant_id, application_id, id),
|
||||||
|
constraint application_type
|
||||||
|
check (check_application_type(application_id, 'SAML'))
|
||||||
|
);
|
||||||
|
|
||||||
|
create unique index saml_application_secrets__unique_active_secret
|
||||||
|
on saml_application_secrets (tenant_id, application_id, active)
|
||||||
|
where active;
|
||||||
|
`);
|
||||||
|
await applyTableRls(pool, 'saml_application_secrets');
|
||||||
|
},
|
||||||
|
down: async (pool) => {
|
||||||
|
await dropTableRls(pool, 'saml_application_secrets');
|
||||||
|
await pool.query(sql`
|
||||||
|
drop table saml_application_secrets;
|
||||||
|
`);
|
||||||
|
},
|
||||||
|
};
|
||||||
|
|
||||||
|
export default alteration;
|
||||||
22
packages/schemas/tables/saml_application_secrets.sql
Normal file
22
packages/schemas/tables/saml_application_secrets.sql
Normal file
|
|
@ -0,0 +1,22 @@
|
||||||
|
/* init_order = 2 */
|
||||||
|
|
||||||
|
create table saml_application_secrets (
|
||||||
|
id varchar(21) not null,
|
||||||
|
tenant_id varchar(21) not null
|
||||||
|
references tenants (id) on update cascade on delete cascade,
|
||||||
|
application_id varchar(21) not null
|
||||||
|
references applications (id) on update cascade on delete cascade,
|
||||||
|
private_key text not null,
|
||||||
|
certificate text not null,
|
||||||
|
created_at timestamptz not null default now(),
|
||||||
|
expires_at timestamptz not null,
|
||||||
|
active boolean not null,
|
||||||
|
primary key (tenant_id, application_id, id),
|
||||||
|
constraint application_type
|
||||||
|
check (check_application_type(application_id, 'SAML'))
|
||||||
|
);
|
||||||
|
|
||||||
|
-- Only one active secret per application
|
||||||
|
create unique index saml_application_secrets__unique_active_secret
|
||||||
|
on saml_application_secrets (tenant_id, application_id, active)
|
||||||
|
where active;
|
||||||
Loading…
Reference in a new issue