feat: add OAuth tables (clients, codes, tokens) to schema

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-04 09:17:53 +02:00
parent c04b9b0e09
commit f47e1d74ae
4 changed files with 939 additions and 0 deletions
--- a/src/db/schema.ts
+++ b/src/db/schema.ts
@@ -126,3 +126,36 @@ export const apiKeys = sqliteTable("api_keys", {
 		.notNull()
 		.$defaultFn(() => new Date()),
 });
+
+export const oauthClients = sqliteTable("oauth_clients", {
+	id: integer("id").primaryKey({ autoIncrement: true }),
+	clientId: text("client_id").notNull().unique(),
+	clientName: text("client_name"),
+	redirectUris: text("redirect_uris").notNull(), // JSON array
+	createdAt: integer("created_at", { mode: "timestamp" })
+		.notNull()
+		.$defaultFn(() => new Date()),
+});
+
+export const oauthCodes = sqliteTable("oauth_codes", {
+	id: integer("id").primaryKey({ autoIncrement: true }),
+	code: text("code").notNull().unique(),
+	clientId: text("client_id").notNull(),
+	codeChallenge: text("code_challenge").notNull(),
+	codeChallengeMethod: text("code_challenge_method").notNull().default("S256"),
+	redirectUri: text("redirect_uri").notNull(),
+	expiresAt: integer("expires_at", { mode: "timestamp" }).notNull(),
+	used: integer("used").notNull().default(0),
+});
+
+export const oauthTokens = sqliteTable("oauth_tokens", {
+	id: integer("id").primaryKey({ autoIncrement: true }),
+	accessTokenHash: text("access_token_hash").notNull().unique(),
+	refreshTokenHash: text("refresh_token_hash").notNull().unique(),
+	clientId: text("client_id").notNull(),
+	expiresAt: integer("expires_at", { mode: "timestamp" }).notNull(), // access token expiry
+	refreshExpiresAt: integer("refresh_expires_at", { mode: "timestamp" }).notNull(), // refresh token expiry
+	createdAt: integer("created_at", { mode: "timestamp" })
+		.notNull()
+		.$defaultFn(() => new Date()),
+});