aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorFrederick Muriuki Muriithi2024-05-07 02:59:04 +0300
committerFrederick Muriuki Muriithi2024-05-09 07:54:56 +0300
commitddd2c21c758a0a6ab3d8ef6597ff0d0d5c4d26ee (patch)
treea070320f3ce91601ae5537e8aa8719a4a8cc6a6e
parentab04428463518d05594491ca159f5ab0d7575721 (diff)
downloadgn-auth-ddd2c21c758a0a6ab3d8ef6597ff0d0d5c4d26ee.tar.gz
Refresh tokens: Create db schema.
-rw-r--r--migrations/auth/20240506_01_798tW-create-jwt-refresh-tokens-table.py34
1 files changed, 34 insertions, 0 deletions
diff --git a/migrations/auth/20240506_01_798tW-create-jwt-refresh-tokens-table.py b/migrations/auth/20240506_01_798tW-create-jwt-refresh-tokens-table.py
new file mode 100644
index 0000000..049ac6b
--- /dev/null
+++ b/migrations/auth/20240506_01_798tW-create-jwt-refresh-tokens-table.py
@@ -0,0 +1,34 @@
+"""
+Create jwt_refresh_tokens table
+"""
+
+from yoyo import step
+
+__depends__ = {'20231011_01_CS8NZ-create-new-inbredset-group-owner-role'}
+
+steps = [
+ step(
+ """
+ CREATE TABLE IF NOT EXISTS jwt_refresh_tokens
+ -- Store refresh tokens to verify refresh attempts
+ (
+ token TEXT NOT NULL,
+ client_id TEXT NOT NULL,
+ user_id TEXT NOT NULL,
+ issued_with TEXT NOT NULL UNIQUE, -- JWT ID of JWT issued along with this refresh token
+ issued_at INTEGER NOT NULL,
+ expires INTEGER NOT NULL,
+ scope TEXT NOT NULL,
+ revoked INTEGER CHECK (revoked = 0 or revoked = 1),
+ parent_of TEXT UNIQUE,
+ PRIMARY KEY(token),
+ FOREIGN KEY (client_id) REFERENCES oauth2_clients(client_id)
+ ON UPDATE CASCADE ON DELETE RESTRICT,
+ FOREIGN KEY (user_id) REFERENCES users(user_id)
+ ON UPDATE CASCADE ON DELETE RESTRICT,
+ FOREIGN KEY (parent_of) REFERENCES jwt_refresh_tokens(token)
+ ON UPDATE CASCADE ON DELETE RESTRICT
+ ) WITHOUT ROWID
+ """,
+ "DROP TABLE IF EXISTS jwt_refresh_tokens")
+]