feat(schemas): init personal access tokens table (#6383)

packages/schemas/alterations/next-1722506508-personal-access-tokens.ts

@@ -0,0 +1,35 @@
+import { sql } from '@silverhand/slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      create table personal_access_tokens (
+        tenant_id varchar(21) not null
+          references tenants (id) on update cascade on delete cascade,
+        user_id varchar(21) not null
+          references users (id) on update cascade on delete cascade,
+        /** The name of the secret. Should be unique within the user. */
+        name varchar(256) not null,
+        value varchar(64) not null,
+        created_at timestamptz not null default now(),
+        expires_at timestamptz,
+        primary key (tenant_id, user_id, name)
+      );
+
+      create index personal_access_token__value on personal_access_tokens (tenant_id, value);
+    `);
+    await applyTableRls(pool, 'personal_access_tokens');
+  },
+  down: async (pool) => {
+    await dropTableRls(pool, 'personal_access_tokens');
+    await pool.query(sql`
+      drop table personal_access_tokens;
+    `);
+  },
+};
+
+export default alteration;

packages/schemas/tables/personal_access_tokens.sql

@@ -0,0 +1,16 @@
+/* init_order = 2 */
+
+create table personal_access_tokens (
+  tenant_id varchar(21) not null
+    references tenants (id) on update cascade on delete cascade,
+  user_id varchar(21) not null
+    references users (id) on update cascade on delete cascade,
+  /** The name of the secret. Should be unique within the user. */
+  name varchar(256) not null,
+  value varchar(64) not null,
+  created_at timestamptz not null default now(),
+  expires_at timestamptz,
+  primary key (tenant_id, user_id, name)
+);
+
+create index personal_access_token__value on personal_access_tokens (tenant_id, value);