From e09a10a7f98b588374823bc40b41fb09f796b235 Mon Sep 17 00:00:00 2001
From: giancarlo <giancarlopsk@gmail.com>
Date: Mon, 29 Apr 2024 20:04:11 +0700
Subject: [PATCH] Update notification and membership models, add extension
 installing method

Several updates are made to the notification model, mainly removing the 'entity_id', 'entity_type', and 'language_code' fields from the properties. We've also updated the 'accounts_memberships' table, by preventing its updates except for 'account_role'.
---
 apps/web/lib/database.types.ts                | 13 ++-----
 .../migrations/20221215192558_schema.sql      | 38 ++++++++++++++++---
 .../src/hooks/use-fetch-notifications.ts      |  6 +--
 packages/supabase/src/database.types.ts       | 13 ++-----
 4 files changed, 41 insertions(+), 29 deletions(-)

diff --git a/apps/web/lib/database.types.ts b/apps/web/lib/database.types.ts
index 6a8e511c5..9fde44908 100644
--- a/apps/web/lib/database.types.ts
+++ b/apps/web/lib/database.types.ts
@@ -327,11 +327,8 @@ export type Database = {
           channel: Database["public"]["Enums"]["notification_channel"]
           created_at: string
           dismissed: boolean
-          entity_id: string | null
-          entity_type: string | null
           expires_at: string | null
           id: number
-          language_code: string
           link: string | null
           type: Database["public"]["Enums"]["notification_type"]
         }
@@ -341,11 +338,8 @@ export type Database = {
           channel?: Database["public"]["Enums"]["notification_channel"]
           created_at?: string
           dismissed?: boolean
-          entity_id?: string | null
-          entity_type?: string | null
           expires_at?: string | null
           id?: never
-          language_code?: string
           link?: string | null
           type?: Database["public"]["Enums"]["notification_type"]
         }
@@ -355,11 +349,8 @@ export type Database = {
           channel?: Database["public"]["Enums"]["notification_channel"]
           created_at?: string
           dismissed?: boolean
-          entity_id?: string | null
-          entity_type?: string | null
           expires_at?: string | null
           id?: never
-          language_code?: string
           link?: string | null
           type?: Database["public"]["Enums"]["notification_type"]
         }
@@ -861,6 +852,10 @@ export type Database = {
         }
         Returns: boolean
       }
+      install_extensions: {
+        Args: Record<PropertyKey, never>
+        Returns: undefined
+      }
       is_account_owner: {
         Args: {
           account_id: string
diff --git a/apps/web/supabase/migrations/20221215192558_schema.sql b/apps/web/supabase/migrations/20221215192558_schema.sql
index 5f5e24607..fea6710b1 100644
--- a/apps/web/supabase/migrations/20221215192558_schema.sql
+++ b/apps/web/supabase/migrations/20221215192558_schema.sql
@@ -421,7 +421,9 @@ begin
             public.get_upper_system_role())
     where
         target_account_id = account_id
-        and user_id = new_owner_id;
+        and user_id = new_owner_id
+        and account_role <>(
+            public.get_upper_system_role());
 
 end;
 
@@ -579,9 +581,12 @@ from
 
 -- Open up access to roles table for authenticated users and service_role
 grant
-select, insert, delete, update
-  on table public.roles to authenticated,
-  service_role;
+select
+,
+  insert,
+  delete,
+update on table public.roles to authenticated,
+service_role;
 
 -- define the system role uuid as a static UUID to be used as a default
 -- account_id for system roles when the account_id is null. Useful for constraints.
@@ -680,7 +685,8 @@ select
 ,
   insert,
 update,
-delete on table public.accounts_memberships to authenticated, service_role;
+delete on table public.accounts_memberships to authenticated,
+service_role;
 
 -- Indexes on the accounts_memberships table
 create index ix_accounts_memberships_account_id on public.accounts_memberships (account_id);
@@ -721,6 +727,26 @@ create
 or replace trigger prevent_account_owner_membership_delete_check before delete on public.accounts_memberships for each row
 execute function kit.prevent_account_owner_membership_delete ();
 
+-- Function "kit.prevent_memberships_update"
+-- Trigger to prevent updates to account memberships with the exception of the account_role
+create
+or replace function kit.prevent_memberships_update () returns trigger
+set
+  search_path = '' as $$
+begin
+    if new.account_role <> old.account_role then
+        return new;
+    end if;
+
+    raise exception 'Only the account_role can be updated';
+
+end; $$ language plpgsql;
+
+create
+or replace trigger prevent_memberships_update_check before
+update on public.accounts_memberships for each row
+execute function kit.prevent_memberships_update ();
+
 -- Function "public.has_role_on_account"
 -- Function to check if a user has a role on an account
 create
@@ -1290,7 +1316,7 @@ with
     )
   );
 
--- UPDATE(public.invitations):
+-- UPDATE(invitations):
 -- Users can update invitations to users of an account they are a member of and have the 'invites.manage' permission AND
 -- the target role is not higher than the user's role
 create policy invitations_update on public.invitations
diff --git a/packages/features/notifications/src/hooks/use-fetch-notifications.ts b/packages/features/notifications/src/hooks/use-fetch-notifications.ts
index 7fcd525be..7ed2ec904 100644
--- a/packages/features/notifications/src/hooks/use-fetch-notifications.ts
+++ b/packages/features/notifications/src/hooks/use-fetch-notifications.ts
@@ -9,8 +9,6 @@ type Notification = {
   type: 'info' | 'warning' | 'error';
   created_at: string;
   link: string | null;
-  entity_id: string | null;
-  entity_type: string | null;
 };
 
 export function useFetchNotifications({
@@ -58,9 +56,7 @@ export function useFetchNotifications({
            dismissed, 
            type, 
            created_at, 
-           link, 
-           entity_id, 
-           entity_type
+           link
            `,
         )
         .in('account_id', accountIds)
diff --git a/packages/supabase/src/database.types.ts b/packages/supabase/src/database.types.ts
index 6a8e511c5..9fde44908 100644
--- a/packages/supabase/src/database.types.ts
+++ b/packages/supabase/src/database.types.ts
@@ -327,11 +327,8 @@ export type Database = {
           channel: Database["public"]["Enums"]["notification_channel"]
           created_at: string
           dismissed: boolean
-          entity_id: string | null
-          entity_type: string | null
           expires_at: string | null
           id: number
-          language_code: string
           link: string | null
           type: Database["public"]["Enums"]["notification_type"]
         }
@@ -341,11 +338,8 @@ export type Database = {
           channel?: Database["public"]["Enums"]["notification_channel"]
           created_at?: string
           dismissed?: boolean
-          entity_id?: string | null
-          entity_type?: string | null
           expires_at?: string | null
           id?: never
-          language_code?: string
           link?: string | null
           type?: Database["public"]["Enums"]["notification_type"]
         }
@@ -355,11 +349,8 @@ export type Database = {
           channel?: Database["public"]["Enums"]["notification_channel"]
           created_at?: string
           dismissed?: boolean
-          entity_id?: string | null
-          entity_type?: string | null
           expires_at?: string | null
           id?: never
-          language_code?: string
           link?: string | null
           type?: Database["public"]["Enums"]["notification_type"]
         }
@@ -861,6 +852,10 @@ export type Database = {
         }
         Returns: boolean
       }
+      install_extensions: {
+        Args: Record<PropertyKey, never>
+        Returns: undefined
+      }
       is_account_owner: {
         Args: {
           account_id: string