flow/supabase/migrations/00_polyfill.sql at f800d99ffb8a010579b9741b088bbd2c70b0c980 · estuary/flow · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
begin;

DO $$
BEGIN
    -- Are we applying migrations for supabase?
    -- In this case, we need to create expected roles that will be referenced
    -- in the compacted schema.
    IF current_database() = 'postgres' THEN

        -- Roles which are created by supabase: anon, authenticated, supabase_admin, service_role.
        create role data_plane_releases_ci;
        create role dekaf;
        create role gatsby_reader;
        create role github_action_connector_refresh;
        create role marketplace_integration;
        create role reporting_user;
        create role stats_loader with login password 'stats_loader_password' bypassrls;
        create role wgd_automation;

        -- Enable pg_cron.
        create extension pg_cron with schema pg_catalog;
        grant usage on schema cron to postgres;
        grant all privileges on all tables in schema cron to postgres;

    ELSE
        -- We're applying migrations for a sqlx::test.
        -- Roles are cluster-wide and already exist from migrations applied to the
        -- primary `postgres` database. We only need to stub Supabase schemas.

        -- Create auth schema with minimal users table stub.
        create schema auth;
        create table auth.users (
            id uuid primary key,
            email text,
            is_sso_user boolean,
            raw_user_meta_data jsonb,
            created_at timestamptz default now(),
            banned_until timestamptz
        );
        create table auth.sso_providers (
            id uuid primary key
        );
        create table auth.sso_domains (
            id uuid primary key default gen_random_uuid(),
            sso_provider_id uuid references auth.sso_providers(id),
            domain text not null
        );
        create table auth.identities (
            user_id uuid references auth.users(id),
            provider text,
            provider_id text,
            identity_data jsonb
        );
        create table auth.sessions (
            id uuid primary key default gen_random_uuid(),
            user_id uuid references auth.users(id)
        );

        -- Stub for auth.uid() function.
        create function auth.uid() returns uuid as $uid$
            select null::uuid;
        $uid$ language sql stable;

    END IF;
END
$$;

-- Required for postgres to give ownership of catalog_stats to stats_loader.
grant stats_loader to postgres;

-- Required for stats materialization to create flow_checkpoints_v1 and flow_materializations_v2.
grant create on schema public to stats_loader;

-- TODO(johnny): Required for `authenticated` to own `drafts_ext` and `publication_specs_ext`.
-- We should make them owed by postgres and grant usage instead.
grant create on schema public to authenticated;

-- The production database has a Flow materialization of Stripe customer data.
-- This is a partial table which matches the portions we use today.
create schema stripe;

create table stripe.customers (
    id text primary key,
    address json,
    "address/city" text,
    "address/country" text,
    "address/line1" text,
    "address/line2" text,
    "address/postal_code" text,
    "address/state" text,
    balance bigint,
    created bigint,
    currency text,
    default_source text,
    delinquent boolean,
    description text,
    email text,
    invoice_prefix text,
    invoice_settings json,
    "invoice_settings/custom_fields" json,
    "invoice_settings/default_payment_method" text,
    metadata json,
    name text,
    phone text,
    flow_document json not null
);

grant usage on schema stripe to postgres;

commit;