B2B-84: add public message sync function and audit schema (#5)

* B2B-84: add public message sync function and audit schema * clean up unnecessary comment * clean up unnecessary seed file * address comments --------- Co-authored-by: Helena <helena@Helenas-MacBook-Pro.local>
2025-06-06 13:34:25 +03:00
parent 7a0dac201e
commit f5079e4e97
11 changed files with 2438 additions and 284 deletions
--- a/supabase/config.toml
+++ b/supabase/config.toml
@@ -10,7 +10,7 @@ enabled = true
 port = 54321
 # Schemas to expose in your API. Tables, views and stored procedures in this schema will get API
 # endpoints. `public` and `graphql_public` schemas are included by default.
-schemas = ["public", "graphql_public"]
+schemas = ["public", "graphql_public", "audit"]
 # Extra schemas to add to the search_path of every request.
 extra_search_path = ["public", "extensions"]
 # The maximum number of rows returns from a view, table, or stored procedure. Limits payload size
--- a/supabase/database.types.ts
+++ b/supabase/database.types.ts
--- a/supabase/migrations/20250602164242_create_medipost_tables.sql
+++ b/supabase/migrations/20250602164242_create_medipost_tables.sql
@@ -0,0 +1,206 @@
+create table "public"."analyses" (
+    "id" bigint generated by default as identity not null,
+    "analysis_id_oid" text not null,
+    "analysis_id_original" text not null,
+    "tehik_short_loinc" text,
+    "tehik_loinc_name" text,
+    "analysis_name_lab" text,
+    "order" smallint,
+    "created_at" timestamp with time zone not null default now(),
+    "updated_at" timestamp with time zone default now(),
+    "parent_analysis_element_id" bigint not null
+);
+
+
+alter table "public"."analyses" enable row level security;
+
+create table "public"."analysis_elements" (
+    "id" bigint generated by default as identity not null,
+    "analysis_id_oid" text,
+    "analysis_id_original" text not null,
+    "tehik_short_loinc" text,
+    "tehik_loinc_name" text,
+    "analysis_name_lab" text,
+    "order" smallint,
+    "created_at" timestamp with time zone not null default now(),
+    "updated_at" timestamp with time zone default now(),
+    "parent_analysis_group_id" bigint not null,
+    "material_groups" jsonb[]
+);
+
+
+alter table "public"."analysis_elements" enable row level security;
+
+create table "public"."analysis_groups" (
+    "id" bigint generated by default as identity not null,
+    "original_id" text not null,
+    "name" text,
+    "order" smallint,
+    "created_at" timestamp with time zone not null default now(),
+    "updated_at" timestamp with time zone default now()
+);
+
+
+alter table "public"."analysis_groups" enable row level security;
+
+create table "public"."codes" (
+    "id" bigint generated by default as identity not null,
+    "hk_code" text not null,
+    "hk_code_multiplier" bigint not null,
+    "coefficient" double precision not null,
+    "price" double precision not null,
+    "analysis_group_id" bigint,
+    "analysis_element_id" bigint,
+    "analysis_id" bigint,
+    "updated_at" timestamp with time zone default now(),
+    "created_at" timestamp with time zone not null default now()
+);
+
+
+alter table "public"."codes" enable row level security;
+
+CREATE UNIQUE INDEX analysis_elements_pkey ON public.analysis_elements USING btree (id);
+
+CREATE UNIQUE INDEX analysis_elements_original_id_key ON public.analysis_elements USING btree (analysis_id_original);
+
+CREATE UNIQUE INDEX analysis_group_original_id_key ON public.analysis_groups USING btree (original_id);
+
+CREATE UNIQUE INDEX analysis_group_pkey ON public.analysis_groups USING btree (id);
+
+CREATE UNIQUE INDEX analysis_pkey ON public.analyses USING btree (id);
+
+CREATE UNIQUE INDEX analysis_original_id_key ON public.analysis_elements USING btree (analysis_id_original);
+
+CREATE UNIQUE INDEX codes_pkey ON public.codes USING btree (id);
+
+CREATE UNIQUE INDEX analyses_analysis_id_original_key ON public.analyses USING btree (analysis_id_original);
+
+CREATE UNIQUE INDEX analysis_elements_analysis_id_original_key ON public.analysis_elements USING btree (analysis_id_original);
+
+alter table "public"."analyses" add constraint "analyses_analysis_id_original_key" UNIQUE using index "analyses_analysis_id_original_key";
+
+alter table "public"."analysis_elements" add constraint "analysis_elements_analysis_id_original_key" UNIQUE using index "analysis_elements_analysis_id_original_key";
+
+alter table "public"."analyses" add constraint "analysis_pkey" PRIMARY KEY using index "analysis_pkey";
+
+alter table "public"."analysis_elements" add constraint "analysis_elements_pkey" PRIMARY KEY using index "analysis_elements_pkey";
+
+alter table "public"."analysis_groups" add constraint "analysis_group_pkey" PRIMARY KEY using index "analysis_group_pkey";
+
+alter table "public"."codes" add constraint "codes_pkey" PRIMARY KEY using index "codes_pkey";
+
+alter table "public"."analyses" add constraint "analyses_parent_analysis_element_id_fkey" FOREIGN KEY (parent_analysis_element_id) REFERENCES analysis_elements(id) ON UPDATE CASCADE ON DELETE CASCADE not valid;
+
+alter table "public"."analyses" validate constraint "analyses_parent_analysis_element_id_fkey";
+
+alter table "public"."analysis_elements" add constraint "analysis_elements_parent_analysis_group_id_fkey" FOREIGN KEY (parent_analysis_group_id) REFERENCES analysis_groups(id) ON UPDATE CASCADE ON DELETE CASCADE not valid;
+
+alter table "public"."analysis_elements" validate constraint "analysis_elements_parent_analysis_group_id_fkey";
+
+alter table "public"."analysis_groups" add constraint "analysis_group_original_id_key" UNIQUE using index "analysis_group_original_id_key";
+
+alter table "public"."codes" add constraint "codes_analysis_element_id_fkey" FOREIGN KEY (analysis_element_id) REFERENCES analysis_elements(id) ON UPDATE CASCADE ON DELETE CASCADE not valid;
+
+alter table "public"."codes" validate constraint "codes_analysis_element_id_fkey";
+
+alter table "public"."codes" add constraint "codes_analysis_group_id_fkey" FOREIGN KEY (analysis_group_id) REFERENCES analysis_groups(id) ON UPDATE CASCADE ON DELETE CASCADE not valid;
+
+alter table "public"."codes" validate constraint "codes_analysis_group_id_fkey";
+
+alter table "public"."codes" add constraint "codes_analysis_id_fkey" FOREIGN KEY (analysis_id) REFERENCES analyses(id) ON UPDATE CASCADE ON DELETE CASCADE not valid;
+
+alter table "public"."codes" validate constraint "codes_analysis_id_fkey";
+
+grant delete on table "public"."analyses" to "service_role";
+
+grant insert on table "public"."analyses" to "service_role";
+
+grant references on table "public"."analyses" to "service_role";
+
+grant select on table "public"."analyses" to "service_role";
+
+grant trigger on table "public"."analyses" to "service_role";
+
+grant truncate on table "public"."analyses" to "service_role";
+
+grant update on table "public"."analyses" to "service_role";
+
+grant delete on table "public"."analysis_elements" to "service_role";
+
+grant insert on table "public"."analysis_elements" to "service_role";
+
+grant references on table "public"."analysis_elements" to "service_role";
+
+grant select on table "public"."analysis_elements" to "service_role";
+
+grant trigger on table "public"."analysis_elements" to "service_role";
+
+grant truncate on table "public"."analysis_elements" to "service_role";
+
+grant update on table "public"."analysis_elements" to "service_role";
+
+grant delete on table "public"."analysis_groups" to "service_role";
+
+grant insert on table "public"."analysis_groups" to "service_role";
+
+grant references on table "public"."analysis_groups" to "service_role";
+
+grant select on table "public"."analysis_groups" to "service_role";
+
+grant trigger on table "public"."analysis_groups" to "service_role";
+
+grant truncate on table "public"."analysis_groups" to "service_role";
+
+grant update on table "public"."analysis_groups" to "service_role";
+
+grant delete on table "public"."codes" to "service_role";
+
+grant insert on table "public"."codes" to "service_role";
+
+grant references on table "public"."codes" to "service_role";
+
+grant select on table "public"."codes" to "service_role";
+
+grant trigger on table "public"."codes" to "service_role";
+
+grant truncate on table "public"."codes" to "service_role";
+
+grant update on table "public"."codes" to "service_role";
+
+create policy "analysis_all"
+on "public"."analyses"
+as permissive
+for all
+to service_role
+using (true);
+
+
+create policy "analysis_elements_all"
+on "public"."analysis_elements"
+as permissive
+for all
+to service_role
+using (true);
+
+
+create policy "analysis_groups_all"
+on "public"."analysis_groups"
+as permissive
+for all
+to service_role
+using (true);
+
+
+create policy "codes_all"
+on "public"."codes"
+as permissive
+for all
+to service_role
+using (true);
+
+
+CREATE TRIGGER analysis_change_record_timestamps AFTER INSERT OR DELETE OR UPDATE ON public.analyses FOR EACH ROW EXECUTE FUNCTION trigger_set_timestamps();
+CREATE TRIGGER analysis_elements_change_record_timestamps AFTER INSERT OR DELETE OR UPDATE ON public.analysis_elements FOR EACH ROW EXECUTE FUNCTION trigger_set_timestamps();
+CREATE TRIGGER analysis_groups_change_record_timestamps AFTER INSERT OR DELETE OR UPDATE ON public.analysis_groups FOR EACH ROW EXECUTE FUNCTION trigger_set_timestamps();
+CREATE TRIGGER codes_change_record_timestamps AFTER INSERT OR DELETE OR UPDATE ON public.codes FOR EACH ROW EXECUTE FUNCTION trigger_set_timestamps();
+
--- a/supabase/migrations/20250604115051_add_audit_schema.sql
+++ b/supabase/migrations/20250604115051_add_audit_schema.sql
@@ -0,0 +1,87 @@
+create schema if not exists audit;
+
+create table if not exists audit.log_entries (
+  "id" bigint generated by default as identity not null,
+  "schema_name" text not null,
+  "table_name" text not null,
+  "record_key" bigint,
+  "operation" text not null, 
+  "row_data" jsonb,         
+  "changed_data" jsonb,     
+  "changed_by" uuid,       
+  "changed_by_role" text,
+  "changed_at" timestamptz not null default now()
+);
+
+alter table "audit"."log_entries" enable row level security;
+
+create policy "service_role_all"
+on "audit"."log_entries"
+as permissive
+for all
+to service_role
+using (true);
+
+create or replace function audit.log_audit_changes()
+returns trigger
+language plpgsql
+as $$
+declare
+  current_user_id uuid;
+  current_user_role text;
+begin
+  begin
+    current_user_id := auth.uid();
+    current_user_role := auth.jwt() ->> 'role';
+  end;
+
+  insert into audit.log_entries (
+    schema_name,
+    table_name,
+    record_key,
+    operation,
+    row_data,
+    changed_data,
+    changed_by,
+    changed_by_role
+  )
+  values (
+    tg_table_schema,
+    tg_table_name,
+    case when tg_op in ('DELETE', 'UPDATE') then old.id else null end,
+    tg_op,
+    case when tg_op in ('DELETE', 'UPDATE') then to_jsonb(old) else null end,
+    case when tg_op in ('INSERT', 'UPDATE') then to_jsonb(new) else null end,
+    current_user_id,
+    current_user_role
+  );
+  return null;
+end;
+$$;
+
+create table "audit"."sync_entries" (
+    "id" bigint generated by default as identity not null,
+    "status" text not null,
+    "operation" text not null,
+    "comment" text,
+    "created_at" timestamp with time zone not null default now(),
+    "changed_by_role" text not null
+);
+
+create type "audit"."sync_status" as enum ('SUCCESS', 'FAIL');
+
+alter table "audit"."sync_entries" enable row level security;
+
+CREATE UNIQUE INDEX sync_entries_pkey ON audit.sync_entries USING btree (id);
+
+alter table "audit"."sync_entries" add constraint "sync_entries_pkey" PRIMARY KEY using index "sync_entries_pkey";
+
+create policy "service_role_all"
+on "audit"."sync_entries"
+as permissive
+for all
+to public
+using (true);
+
+GRANT USAGE ON SCHEMA audit TO service_role;
+GRANT ALL ON ALL TABLES IN SCHEMA audit TO service_role;