Skip to content

Commit 6f047a7

Browse files
soedirgosoedirgo
committed
chore: update schema snapshots
1 parent a4e2a40 commit 6f047a7

File tree

4 files changed

+3
-202
lines changed

4 files changed

+3
-202
lines changed

migrations/schema-15.sql

Lines changed: 0 additions & 67 deletions
Original file line numberDiff line numberDiff line change
@@ -44,27 +44,6 @@ CREATE SCHEMA graphql_public;
4444
CREATE SCHEMA pgbouncer;
4545

4646

47-
--
48-
-- Name: pgsodium; Type: SCHEMA; Schema: -; Owner: -
49-
--
50-
51-
CREATE SCHEMA pgsodium;
52-
53-
54-
--
55-
-- Name: pgsodium; Type: EXTENSION; Schema: -; Owner: -
56-
--
57-
58-
CREATE EXTENSION IF NOT EXISTS pgsodium WITH SCHEMA pgsodium;
59-
60-
61-
--
62-
-- Name: EXTENSION pgsodium; Type: COMMENT; Schema: -; Owner: -
63-
--
64-
65-
COMMENT ON EXTENSION pgsodium IS 'Pgsodium is a modern cryptography library for Postgres.';
66-
67-
6847
--
6948
-- Name: realtime; Type: SCHEMA; Schema: -; Owner: -
7049
--
@@ -582,28 +561,6 @@ END
582561
$$;
583562

584563

585-
--
586-
-- Name: secrets_encrypt_secret_secret(); Type: FUNCTION; Schema: vault; Owner: -
587-
--
588-
589-
CREATE FUNCTION vault.secrets_encrypt_secret_secret() RETURNS trigger
590-
LANGUAGE plpgsql
591-
AS $$
592-
BEGIN
593-
new.secret = CASE WHEN new.secret IS NULL THEN NULL ELSE
594-
CASE WHEN new.key_id IS NULL THEN NULL ELSE pg_catalog.encode(
595-
pgsodium.crypto_aead_det_encrypt(
596-
pg_catalog.convert_to(new.secret, 'utf8'),
597-
pg_catalog.convert_to((new.id::text || new.description::text || new.created_at::text || new.updated_at::text)::text, 'utf8'),
598-
new.key_id::uuid,
599-
new.nonce
600-
),
601-
'base64') END END;
602-
RETURN new;
603-
END;
604-
$$;
605-
606-
607564
SET default_tablespace = '';
608565

609566
SET default_table_access_method = heap;
@@ -790,30 +747,6 @@ CREATE TABLE storage.objects (
790747
);
791748

792749

793-
--
794-
-- Name: decrypted_secrets; Type: VIEW; Schema: vault; Owner: -
795-
--
796-
797-
CREATE VIEW vault.decrypted_secrets AS
798-
SELECT secrets.id,
799-
secrets.name,
800-
secrets.description,
801-
secrets.secret,
802-
CASE
803-
WHEN (secrets.secret IS NULL) THEN NULL::text
804-
ELSE
805-
CASE
806-
WHEN (secrets.key_id IS NULL) THEN NULL::text
807-
ELSE convert_from(pgsodium.crypto_aead_det_decrypt(decode(secrets.secret, 'base64'::text), convert_to(((((secrets.id)::text || secrets.description) || (secrets.created_at)::text) || (secrets.updated_at)::text), 'utf8'::name), secrets.key_id, secrets.nonce), 'utf8'::name)
808-
END
809-
END AS decrypted_secret,
810-
secrets.key_id,
811-
secrets.nonce,
812-
secrets.created_at,
813-
secrets.updated_at
814-
FROM vault.secrets;
815-
816-
817750
--
818751
-- Name: refresh_tokens id; Type: DEFAULT; Schema: auth; Owner: -
819752
--

migrations/schema-orioledb-17.sql

Lines changed: 0 additions & 67 deletions
Original file line numberDiff line numberDiff line change
@@ -45,27 +45,6 @@ CREATE SCHEMA graphql_public;
4545
CREATE SCHEMA pgbouncer;
4646

4747

48-
--
49-
-- Name: pgsodium; Type: SCHEMA; Schema: -; Owner: -
50-
--
51-
52-
CREATE SCHEMA pgsodium;
53-
54-
55-
--
56-
-- Name: pgsodium; Type: EXTENSION; Schema: -; Owner: -
57-
--
58-
59-
CREATE EXTENSION IF NOT EXISTS pgsodium WITH SCHEMA pgsodium;
60-
61-
62-
--
63-
-- Name: EXTENSION pgsodium; Type: COMMENT; Schema: -; Owner: -
64-
--
65-
66-
COMMENT ON EXTENSION pgsodium IS 'Pgsodium is a modern cryptography library for Postgres.';
67-
68-
6948
--
7049
-- Name: realtime; Type: SCHEMA; Schema: -; Owner: -
7150
--
@@ -597,28 +576,6 @@ END
597576
$$;
598577

599578

600-
--
601-
-- Name: secrets_encrypt_secret_secret(); Type: FUNCTION; Schema: vault; Owner: -
602-
--
603-
604-
CREATE FUNCTION vault.secrets_encrypt_secret_secret() RETURNS trigger
605-
LANGUAGE plpgsql
606-
AS $$
607-
BEGIN
608-
new.secret = CASE WHEN new.secret IS NULL THEN NULL ELSE
609-
CASE WHEN new.key_id IS NULL THEN NULL ELSE pg_catalog.encode(
610-
pgsodium.crypto_aead_det_encrypt(
611-
pg_catalog.convert_to(new.secret, 'utf8'),
612-
pg_catalog.convert_to((new.id::text || new.description::text || new.created_at::text || new.updated_at::text)::text, 'utf8'),
613-
new.key_id::uuid,
614-
new.nonce
615-
),
616-
'base64') END END;
617-
RETURN new;
618-
END;
619-
$$;
620-
621-
622579
SET default_tablespace = '';
623580

624581
SET default_table_access_method = orioledb;
@@ -805,30 +762,6 @@ CREATE TABLE storage.objects (
805762
);
806763

807764

808-
--
809-
-- Name: decrypted_secrets; Type: VIEW; Schema: vault; Owner: -
810-
--
811-
812-
CREATE VIEW vault.decrypted_secrets AS
813-
SELECT id,
814-
name,
815-
description,
816-
secret,
817-
CASE
818-
WHEN (secret IS NULL) THEN NULL::text
819-
ELSE
820-
CASE
821-
WHEN (key_id IS NULL) THEN NULL::text
822-
ELSE convert_from(pgsodium.crypto_aead_det_decrypt(decode(secret, 'base64'::text), convert_to(((((id)::text || description) || (created_at)::text) || (updated_at)::text), 'utf8'::name), key_id, nonce), 'utf8'::name)
823-
END
824-
END AS decrypted_secret,
825-
key_id,
826-
nonce,
827-
created_at,
828-
updated_at
829-
FROM vault.secrets;
830-
831-
832765
--
833766
-- Name: refresh_tokens id; Type: DEFAULT; Schema: auth; Owner: -
834767
--

migrations/schema.sql

Lines changed: 0 additions & 67 deletions
Original file line numberDiff line numberDiff line change
@@ -44,27 +44,6 @@ CREATE SCHEMA graphql_public;
4444
CREATE SCHEMA pgbouncer;
4545

4646

47-
--
48-
-- Name: pgsodium; Type: SCHEMA; Schema: -; Owner: -
49-
--
50-
51-
CREATE SCHEMA pgsodium;
52-
53-
54-
--
55-
-- Name: pgsodium; Type: EXTENSION; Schema: -; Owner: -
56-
--
57-
58-
CREATE EXTENSION IF NOT EXISTS pgsodium WITH SCHEMA pgsodium;
59-
60-
61-
--
62-
-- Name: EXTENSION pgsodium; Type: COMMENT; Schema: -; Owner: -
63-
--
64-
65-
COMMENT ON EXTENSION pgsodium IS 'Pgsodium is a modern cryptography library for Postgres.';
66-
67-
6847
--
6948
-- Name: realtime; Type: SCHEMA; Schema: -; Owner: -
7049
--
@@ -574,28 +553,6 @@ END
574553
$$;
575554

576555

577-
--
578-
-- Name: secrets_encrypt_secret_secret(); Type: FUNCTION; Schema: vault; Owner: -
579-
--
580-
581-
CREATE FUNCTION vault.secrets_encrypt_secret_secret() RETURNS trigger
582-
LANGUAGE plpgsql
583-
AS $$
584-
BEGIN
585-
new.secret = CASE WHEN new.secret IS NULL THEN NULL ELSE
586-
CASE WHEN new.key_id IS NULL THEN NULL ELSE pg_catalog.encode(
587-
pgsodium.crypto_aead_det_encrypt(
588-
pg_catalog.convert_to(new.secret, 'utf8'),
589-
pg_catalog.convert_to((new.id::text || new.description::text || new.created_at::text || new.updated_at::text)::text, 'utf8'),
590-
new.key_id::uuid,
591-
new.nonce
592-
),
593-
'base64') END END;
594-
RETURN new;
595-
END;
596-
$$;
597-
598-
599556
SET default_tablespace = '';
600557

601558
SET default_table_access_method = heap;
@@ -782,30 +739,6 @@ CREATE TABLE storage.objects (
782739
);
783740

784741

785-
--
786-
-- Name: decrypted_secrets; Type: VIEW; Schema: vault; Owner: -
787-
--
788-
789-
CREATE VIEW vault.decrypted_secrets AS
790-
SELECT secrets.id,
791-
secrets.name,
792-
secrets.description,
793-
secrets.secret,
794-
CASE
795-
WHEN (secrets.secret IS NULL) THEN NULL::text
796-
ELSE
797-
CASE
798-
WHEN (secrets.key_id IS NULL) THEN NULL::text
799-
ELSE convert_from(pgsodium.crypto_aead_det_decrypt(decode(secrets.secret, 'base64'::text), convert_to(((((secrets.id)::text || secrets.description) || (secrets.created_at)::text) || (secrets.updated_at)::text), 'utf8'::name), secrets.key_id, secrets.nonce), 'utf8'::name)
800-
END
801-
END AS decrypted_secret,
802-
secrets.key_id,
803-
secrets.nonce,
804-
secrets.created_at,
805-
secrets.updated_at
806-
FROM vault.secrets;
807-
808-
809742
--
810743
-- Name: refresh_tokens id; Type: DEFAULT; Schema: auth; Owner: -
811744
--

nix/tests/expected/security.out

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,5 +26,7 @@ order by 1,2;
2626
public | st_estimatedextent
2727
public | st_estimatedextent
2828
repack | repack_trigger
29-
(17 rows)
29+
vault | create_secret
30+
vault | update_secret
31+
(19 rows)
3032

0 commit comments

Comments
 (0)