Migrate from role-based to permission-based auth (#336)

backend/.sqlc/migrations/20241215194302_initial_schema.sql

@@ -4,12 +4,6 @@ CREATE EXTENSION IF NOT EXISTS "uuid-ossp";
 CREATE EXTENSION IF NOT EXISTS pgcrypto;
 SET TIME ZONE 'UTC';
 
-CREATE TYPE user_role AS ENUM (
-    'admin',
-    'startup_owner',
-    'investor'
-);
-
 CREATE TYPE project_status AS ENUM (
     'draft',
     'pending',
@@ -22,7 +16,7 @@ CREATE TABLE IF NOT EXISTS users (
     id uuid PRIMARY KEY DEFAULT gen_random_uuid(),
     email varchar UNIQUE NOT NULL,
     password char(256) NOT NULL,
-    role user_role NOT NULL,
+    permissions integer NOT NULL DEFAULT 0,
     email_verified boolean NOT NULL DEFAULT false,
     created_at bigint NOT NULL DEFAULT extract(epoch from now()),
     updated_at bigint NOT NULL DEFAULT extract(epoch from now()),
@@ -118,7 +112,10 @@ CREATE TABLE IF NOT EXISTS transactions (
     tx_hash varchar NOT NULL,
     from_address varchar NOT NULL,
     to_address varchar NOT NULL,
-    value_amount decimal(65,18) NOT NULL
+    value_amount decimal(65,18) NOT NULL,
+    created_by uuid NOT NULL REFERENCES users(id),
+    created_at bigint NOT NULL DEFAULT extract(epoch from now()),
+    updated_at bigint NOT NULL DEFAULT extract(epoch from now())
 );
 
 CREATE INDEX IF NOT EXISTS idx_users_email ON users(email);
@@ -152,5 +149,4 @@ DROP TABLE IF EXISTS verify_email_tokens;
 DROP TABLE IF EXISTS users;
 
 DROP TYPE IF EXISTS project_status;
-DROP TYPE IF EXISTS user_role;
 -- +goose StatementEnd

backend/.sqlc/queries/projects.sql

@@ -22,8 +22,9 @@ ORDER BY created_at DESC;
 
 -- name: GetProjectByID :one
 SELECT * FROM projects 
-WHERE id = $1 AND company_id = $2 
-LIMIT 1; 
+WHERE id = $1 
+  AND (company_id = $2 OR $3 & 1 = 1) -- Check for PermViewAllProjects (1 << 0)
+LIMIT 1;
 
 -- name: UpdateProjectAnswer :one
 UPDATE project_answers 
@@ -169,11 +170,6 @@ RETURNING *;
 DELETE FROM project_comments
 WHERE id = $1; 
 
--- name: GetProjectByIDAdmin :one
-SELECT * FROM projects 
-WHERE id = $1 
-LIMIT 1; 
-
 -- name: ResolveProjectComment :one
 UPDATE project_comments
 SET 

backend/.sqlc/queries/transactions.sql

@@ -6,7 +6,12 @@ INSERT INTO transactions (
     tx_hash,
     from_address,
     to_address,
-    value_amount
+    value_amount,
+    created_by,
+    created_at,
+    updated_at
 ) VALUES (
-    $1, $2, $3, $4, $5, $6, $7
-) RETURNING *; 
+    $1, $2, $3, $4, $5, $6, $7, $8,
+    extract(epoch from now()),
+    extract(epoch from now())
+) RETURNING *;

backend/.sqlc/queries/users.sql

@@ -1,5 +1,5 @@
 -- name: GetUserByID :one
-SELECT id, email, role, email_verified, token_salt
+SELECT id, email, permissions, email_verified, token_salt
 FROM users 
 WHERE id = $1;
 
@@ -11,9 +11,9 @@ SELECT EXISTS(SELECT 1 FROM users WHERE email = $1);
 
 -- name: NewUser :one
 INSERT INTO users
-(email, password, role)
+(email, password, permissions)
 VALUES
-($1, $2, $3) RETURNING id, email, email_verified, role, token_salt;
+($1, $2, $3) RETURNING id, email, email_verified, permissions, token_salt;
 
 -- name: GetUserByEmail :one
 SELECT * FROM users WHERE email = $1 LIMIT 1;