Skip to content

chore(schema): canonical remediation — chitty_id, P/L/T/E/A, entities registry, R2 ACL #34

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
chitcommit wants to merge 1 commit into
base: feat/hono-migration-phase-1
Choose a base branch
from
Open

chore(schema): canonical remediation — chitty_id, P/L/T/E/A, entities registry, R2 ACL #34

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
111 changes: 111 additions & 0 deletions docs/migrations/phase3-users-chittyid-migration.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,111 @@
# Phase 3 — Migrate users.id from uuid to canonical ChittyID

**Status:** Planned, not executed. Document only.
**Canon:** chittycanon://gov/governance#core-types
**Target:** Neon project `steep-cloud-28172078`

## Rationale

Phase 1 (this PR) keeps `users.id` as a uuid PK and adds nullable `users.chitty_id`. This is
backward-compatible: existing Replit-Auth-emitted user records (if any are seeded from the
legacy stack) continue to work; new ChittyAuth flows populate `chitty_id` immediately.

Phase 3 promotes `chitty_id` to the canonical PK and rewires all FK references. It is a
breaking change at the DB layer and MUST be coordinated with all consumers:

- Worker `worker/src/auth.ts` (claims → user lookup)
- Express `server/storage.ts` (legacy)
- Any downstream service that reads `users.id` via shared Neon access

## Pre-conditions

1. ChittyAuth issues `sub = chitty_id` for every authenticated principal.
2. All existing users in production have `users.chitty_id IS NOT NULL`.
3. Worker no longer reads `users.id` — only `users.chitty_id`.
4. All FK tables (`assets.user_id`, `evidence.user_id`, etc.) have a `user_chitty_id varchar`
column shadowing the uuid (added in a prior, separate migration).

## The 5-step migration

### Step 1 — Backfill `user_chitty_id` on all FK tables

```sql
BEGIN;
UPDATE assets a SET user_chitty_id = u.chitty_id FROM users u WHERE a.user_id = u.id;
UPDATE evidence e SET user_chitty_id = u.chitty_id FROM users u WHERE e.user_id = u.id;
UPDATE timeline_events t SET user_chitty_id = u.chitty_id FROM users u WHERE t.user_id = u.id;
UPDATE warranties w SET user_chitty_id = u.chitty_id FROM users u WHERE w.user_id = u.id;
UPDATE insurance_policies i SET user_chitty_id = u.chitty_id FROM users u WHERE i.user_id = u.id;
UPDATE legal_cases l SET user_chitty_id = u.chitty_id FROM users u WHERE l.user_id = u.id;

-- Validate: zero NULLs
DO $$ BEGIN
IF EXISTS (SELECT 1 FROM assets WHERE user_chitty_id IS NULL)
OR EXISTS (SELECT 1 FROM evidence WHERE user_chitty_id IS NULL)
OR EXISTS (SELECT 1 FROM timeline_events WHERE user_chitty_id IS NULL)
OR EXISTS (SELECT 1 FROM warranties WHERE user_chitty_id IS NULL)
OR EXISTS (SELECT 1 FROM insurance_policies WHERE user_chitty_id IS NULL)
OR EXISTS (SELECT 1 FROM legal_cases WHERE user_chitty_id IS NULL)
THEN RAISE EXCEPTION 'Backfill incomplete'; END IF;
END $$;
COMMIT;
```

### Step 2 — Add new FK constraints alongside legacy ones

```sql
BEGIN;
ALTER TABLE assets ADD CONSTRAINT fk_assets_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
ALTER TABLE evidence ADD CONSTRAINT fk_evidence_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
ALTER TABLE timeline_events ADD CONSTRAINT fk_timeline_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
ALTER TABLE warranties ADD CONSTRAINT fk_warranties_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
ALTER TABLE insurance_policies ADD CONSTRAINT fk_insurance_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
ALTER TABLE legal_cases ADD CONSTRAINT fk_legal_cases_user_chitty FOREIGN KEY (user_chitty_id) REFERENCES users(chitty_id);
COMMIT;
```

### Step 3 — Cut over Worker code

Deploy a Worker release that reads exclusively `user_chitty_id`. Old uuid `user_id`
columns remain populated but unread. **Bake time: minimum 7 days** to catch stragglers.

### Step 4 — Drop legacy FK + uuid columns

```sql
BEGIN;
ALTER TABLE assets DROP CONSTRAINT assets_user_id_fkey;
ALTER TABLE assets DROP COLUMN user_id;
ALTER TABLE evidence DROP CONSTRAINT evidence_user_id_fkey;
ALTER TABLE evidence DROP COLUMN user_id;
-- ...repeat for each table
ALTER TABLE users DROP CONSTRAINT users_pkey;
ALTER TABLE users ALTER COLUMN chitty_id SET NOT NULL;
ALTER TABLE users ADD CONSTRAINT users_pkey PRIMARY KEY (chitty_id);
ALTER TABLE users DROP COLUMN id;
COMMIT;
```

### Step 5 — Rename `user_chitty_id` → `user_id` everywhere

```sql
BEGIN;
ALTER TABLE assets RENAME COLUMN user_chitty_id TO user_id;
ALTER TABLE evidence RENAME COLUMN user_chitty_id TO user_id;
ALTER TABLE timeline_events RENAME COLUMN user_chitty_id TO user_id;
ALTER TABLE warranties RENAME COLUMN user_chitty_id TO user_id;
ALTER TABLE insurance_policies RENAME COLUMN user_chitty_id TO user_id;
ALTER TABLE legal_cases RENAME COLUMN user_chitty_id TO user_id;
COMMIT;
```

## Rollback

Any step is reversible until Step 4 commits. After Step 4, restore from the pre-step-4
Neon branch (Neon's point-in-time restore retains 7 days by default; verify before
executing).

## Validation

After Step 5, every row in every per-service table MUST have `user_id` matching
`/^[0-9]{2}-[A-Z]-[0-9]{3}-[0-9]{4}-[PLTEA]-[0-9]{4}-[A-Z]-[0-9]$/` (the canonical
ChittyID regex including all five P/L/T/E/A types).
279 changes: 279 additions & 0 deletions drizzle/0001_init.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,279 @@
-- Migration 0001 — Initial canonical schema for ChittyAssets
-- Target: Neon project steep-cloud-28172078 (greenfield)
-- Canon: chittycanon://gov/governance#core-types (P/L/T/E/A)
--
-- Entity-type assignments (annotated on app-layer entities table in 0002):
-- users -> P (Person): natural actor with agency
-- assets -> T (Thing): object without agency, asset/artifact
-- evidence -> T (Thing): document/artifact attached to an asset
-- timeline_events -> E (Event): occurrence in time
-- warranties -> T (Thing): contract-as-artifact
-- insurance_policies -> T (Thing): policy-document-as-artifact
-- legal_cases -> E (Event): proceeding with docket/status progression
-- ai_analysis_results -> E (Event): analysis run in time
--
-- All ChittyID-bearing rows use chitty_id varchar in canonical format
-- VV-G-LLL-SSSS-T-YM-C-X. Phase 3 (see docs/migrations/phase3-users-chittyid-migration.md)
-- migrates users.id from uuid to chitty_id; this migration keeps uuid PKs for
-- per-service tables so a backward-compatible deploy is possible.

BEGIN;

-- =====================================================================
-- Sessions (Replit Auth legacy; retained until ChittyAuth-only cutover)
-- =====================================================================
CREATE TABLE IF NOT EXISTS sessions (
sid varchar PRIMARY KEY,
sess jsonb NOT NULL,
expire timestamp NOT NULL
);
CREATE INDEX IF NOT EXISTS "IDX_session_expire" ON sessions (expire);
COMMENT ON TABLE sessions IS 'Express session store. Legacy; removed after ChittyAuth-only cutover.';

-- =====================================================================
-- Users — Person (P)
-- =====================================================================
CREATE TABLE IF NOT EXISTS users (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE, -- canonical Person ChittyID, populated by ChittyAuth
email varchar UNIQUE,
first_name varchar,
last_name varchar,
profile_image_url varchar,
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now(),
deleted_at timestamptz
);
COMMENT ON TABLE users IS 'Person (P) — natural actor with agency. Canon: chittycanon://gov/governance#core-types';
COMMENT ON COLUMN users.chitty_id IS 'Canonical ChittyID (Person, T=P). Format VV-G-LLL-SSSS-P-YM-C-X. Phase 3 promotes this to PK.';
COMMENT ON COLUMN users.deleted_at IS 'GDPR soft-delete; audit trail preserved in ChittyLedger.';

-- =====================================================================
-- Enums
-- =====================================================================
CREATE TYPE asset_type AS ENUM (
'real_estate','vehicle','artwork','jewelry','electronics',
'documents','business_assets','intellectual_property','other'
);
CREATE TYPE asset_status AS ENUM (
'active','disposed','lost','stolen','in_dispute','under_review'
);
CREATE TYPE verification_status AS ENUM (
'pending','verified','rejected','expired'
);
CREATE TYPE chitty_chain_status AS ENUM (
'draft','frozen','minted','settled','disputed'
);
CREATE TYPE evidence_type AS ENUM (
'receipt','contract','photo','video','insurance_document',
'warranty','maintenance_record','legal_filing','correspondence','other'
);
CREATE TYPE timeline_event_type AS ENUM (
'acquisition','modification','maintenance','insurance_update',
'valuation_change','location_change','status_change','evidence_added','other'
);
CREATE TYPE legal_case_status AS ENUM (
'active','settled','dismissed','pending','on_appeal'
);

-- =====================================================================
-- Assets — Thing (T)
-- =====================================================================
CREATE TABLE IF NOT EXISTS assets (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE, -- canonical Thing ChittyID
chitty_id_v2 varchar UNIQUE, -- future Mod-97 Base32
user_id varchar NOT NULL REFERENCES users(id),
name text NOT NULL,
description text,
asset_type asset_type NOT NULL,
status asset_status DEFAULT 'active',
purchase_price numeric(12,2),
current_value numeric(12,2),
purchase_date timestamptz,
location text,
serial_number varchar,
model varchar,
manufacturer varchar,
condition varchar,
trust_score numeric(3,1) DEFAULT 0.0,
blockchain_hash varchar,
block_number varchar,
ipfs_hash varchar,
freeze_timestamp timestamptz,
settlement_timestamp timestamptz,
minting_fee numeric(8,6),
verification_status verification_status DEFAULT 'pending',
chitty_chain_status chitty_chain_status DEFAULT 'draft',
tags text[],
metadata jsonb,
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now(),
deleted_at timestamptz
);
CREATE INDEX IF NOT EXISTS idx_assets_user_id ON assets (user_id);
CREATE INDEX IF NOT EXISTS idx_assets_chitty_id ON assets (chitty_id);
CREATE INDEX IF NOT EXISTS idx_assets_metadata_gin ON assets USING GIN (metadata);
COMMENT ON TABLE assets IS 'Thing (T) — object without agency. The central artifact of ChittyAssets. Canon: chittycanon://gov/governance#core-types';
COMMENT ON COLUMN assets.chitty_id IS 'Canonical ChittyID (Thing, T=T). Format VV-G-LLL-SSSS-T-YM-C-X.';

-- =====================================================================
-- Evidence — Thing (T)
-- =====================================================================
CREATE TABLE IF NOT EXISTS evidence (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
asset_id varchar NOT NULL REFERENCES assets(id),
user_id varchar NOT NULL REFERENCES users(id),
name text NOT NULL,
evidence_type evidence_type NOT NULL,
file_path text,
file_size integer,
mime_type varchar,
extracted_data jsonb,
ai_analysis jsonb,
blockchain_hash varchar,
verification_status verification_status DEFAULT 'pending',
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now(),
deleted_at timestamptz
);
CREATE INDEX IF NOT EXISTS idx_evidence_asset_id ON evidence (asset_id);
CREATE INDEX IF NOT EXISTS idx_evidence_user_id ON evidence (user_id);
CREATE INDEX IF NOT EXISTS idx_evidence_extracted_data_gin ON evidence USING GIN (extracted_data);
COMMENT ON TABLE evidence IS 'Thing (T) — document/artifact attached to an asset. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- Timeline events — Event (E)
-- =====================================================================
CREATE TABLE IF NOT EXISTS timeline_events (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
asset_id varchar NOT NULL REFERENCES assets(id),
user_id varchar NOT NULL REFERENCES users(id),
event_type timeline_event_type NOT NULL,
title text NOT NULL,
description text,
event_date timestamptz NOT NULL,
related_evidence_id varchar REFERENCES evidence(id),
metadata jsonb,
created_at timestamptz NOT NULL DEFAULT now()
);
CREATE INDEX IF NOT EXISTS idx_timeline_events_asset_id ON timeline_events (asset_id);
CREATE INDEX IF NOT EXISTS idx_timeline_events_event_date ON timeline_events (event_date);
COMMENT ON TABLE timeline_events IS 'Event (E) — occurrence in time against an asset. Append-only. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- Warranties — Thing (T)
-- =====================================================================
CREATE TABLE IF NOT EXISTS warranties (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
asset_id varchar NOT NULL REFERENCES assets(id),
user_id varchar NOT NULL REFERENCES users(id),
provider text NOT NULL,
type varchar NOT NULL,
start_date timestamptz NOT NULL,
end_date timestamptz NOT NULL,
coverage text,
terms text,
cost numeric(10,2),
is_active boolean DEFAULT true,
notification_sent boolean DEFAULT false,
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now()
);
CREATE INDEX IF NOT EXISTS idx_warranties_asset_id ON warranties (asset_id);
CREATE INDEX IF NOT EXISTS idx_warranties_end_date ON warranties (end_date);
COMMENT ON TABLE warranties IS 'Thing (T) — contract-as-artifact granting coverage. The contract document is the Thing; coverage events are timeline_events. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- Insurance policies — Thing (T)
-- =====================================================================
CREATE TABLE IF NOT EXISTS insurance_policies (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
asset_id varchar NOT NULL REFERENCES assets(id),
user_id varchar NOT NULL REFERENCES users(id),
provider text NOT NULL,
policy_number varchar NOT NULL,
type varchar NOT NULL,
coverage_amount numeric(12,2),
premium numeric(10,2),
deductible numeric(10,2),
start_date timestamptz NOT NULL,
end_date timestamptz NOT NULL,
is_active boolean DEFAULT true,
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now()
);
CREATE INDEX IF NOT EXISTS idx_insurance_policies_asset_id ON insurance_policies (asset_id);
CREATE INDEX IF NOT EXISTS idx_insurance_policies_policy_number ON insurance_policies (policy_number);
COMMENT ON TABLE insurance_policies IS 'Thing (T) — policy document as artifact. Claims/coverage events are recorded as timeline_events. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- Legal cases — Event (E)
-- =====================================================================
CREATE TABLE IF NOT EXISTS legal_cases (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
user_id varchar NOT NULL REFERENCES users(id),
case_number varchar,
title text NOT NULL,
description text,
status legal_case_status DEFAULT 'active',
court text,
judge text,
filing_date timestamptz,
next_hearing timestamptz,
related_assets text[],
attorneys jsonb,
created_at timestamptz NOT NULL DEFAULT now(),
updated_at timestamptz NOT NULL DEFAULT now()
);
CREATE INDEX IF NOT EXISTS idx_legal_cases_user_id ON legal_cases (user_id);
CREATE INDEX IF NOT EXISTS idx_legal_cases_status ON legal_cases (status);
COMMENT ON TABLE legal_cases IS 'Event (E) — legal proceeding with docket/status progression. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- AI analysis results — Event (E)
-- =====================================================================
CREATE TABLE IF NOT EXISTS ai_analysis_results (
id varchar PRIMARY KEY DEFAULT gen_random_uuid(),
chitty_id varchar UNIQUE,
evidence_id varchar NOT NULL REFERENCES evidence(id),
analysis_type varchar NOT NULL,
confidence numeric(3,2),
results jsonb NOT NULL,
processing_time integer,
model_used varchar,
created_at timestamptz NOT NULL DEFAULT now()
);
CREATE INDEX IF NOT EXISTS idx_ai_analysis_evidence_id ON ai_analysis_results (evidence_id);
CREATE INDEX IF NOT EXISTS idx_ai_analysis_results_gin ON ai_analysis_results USING GIN (results);
COMMENT ON TABLE ai_analysis_results IS 'Event (E) — AI analysis run in time against an evidence artifact. Append-only. Canon: chittycanon://gov/governance#core-types';

-- =====================================================================
-- updated_at trigger
-- =====================================================================
CREATE OR REPLACE FUNCTION set_updated_at()
RETURNS TRIGGER AS $$
BEGIN
NEW.updated_at = now();
RETURN NEW;
END;
$$ LANGUAGE plpgsql;

DO $$
DECLARE t text;
BEGIN
FOREACH t IN ARRAY ARRAY['users','assets','evidence','warranties','insurance_policies','legal_cases']
LOOP
EXECUTE format(
'DROP TRIGGER IF EXISTS trg_%1$s_updated_at ON %1$s;
CREATE TRIGGER trg_%1$s_updated_at BEFORE UPDATE ON %1$s
FOR EACH ROW EXECUTE FUNCTION set_updated_at();', t);
END LOOP;
END $$;

COMMIT;
Loading