authelia/internal/storage/migrations/V0007.ConsistencyFixes.post...

UPDATE webauthn_devices
SET aaguid = '00000000-00000000-00000000-00000000'
WHERE aaguid IS NULL;

ALTER TABLE webauthn_devices
    ALTER COLUMN aaguid SET NOT NULL;

ALTER TABLE totp_configurations
    DROP CONSTRAINT IF EXISTS totp_configurations_username_key1,
    DROP CONSTRAINT IF EXISTS totp_configurations_username_key;

ALTER TABLE webauthn_devices
    DROP CONSTRAINT IF EXISTS webauthn_devices_username_description_key1,
    DROP CONSTRAINT IF EXISTS webauthn_devices_kid_key1,
    DROP CONSTRAINT IF EXISTS webauthn_devices_lookup_key1,
    DROP CONSTRAINT IF EXISTS webauthn_devices_username_description_key,
    DROP CONSTRAINT IF EXISTS webauthn_devices_kid_key,
    DROP CONSTRAINT IF EXISTS webauthn_devices_lookup_key;

DROP INDEX IF EXISTS totp_configurations_username_key1;
DROP INDEX IF EXISTS webauthn_devices_username_description_key1;
DROP INDEX IF EXISTS webauthn_devices_kid_key1;
DROP INDEX IF EXISTS webauthn_devices_lookup_key1;
DROP INDEX IF EXISTS totp_configurations_username_key;
DROP INDEX IF EXISTS webauthn_devices_username_description_key;
DROP INDEX IF EXISTS webauthn_devices_kid_key;
DROP INDEX IF EXISTS webauthn_devices_lookup_key;

CREATE UNIQUE INDEX totp_configurations_username_key1 ON totp_configurations (username);
CREATE UNIQUE INDEX webauthn_devices_kid_key1 ON webauthn_devices (kid);
CREATE UNIQUE INDEX webauthn_devices_lookup_key1 ON webauthn_devices (username, description);

ALTER TABLE oauth2_consent_session
    DROP CONSTRAINT oauth2_consent_session_subject_fkey,
    DROP CONSTRAINT oauth2_consent_session_preconfiguration_fkey;

ALTER TABLE oauth2_consent_preconfiguration
    DROP CONSTRAINT oauth2_consent_preconfiguration_subject_fkey;

ALTER TABLE oauth2_access_token_session
    DROP CONSTRAINT oauth2_access_token_session_challenge_id_fkey,
    DROP CONSTRAINT oauth2_access_token_session_subject_fkey;

ALTER TABLE oauth2_authorization_code_session
    DROP CONSTRAINT oauth2_authorization_code_session_challenge_id_fkey,
    DROP CONSTRAINT oauth2_authorization_code_session_subject_fkey;

ALTER TABLE oauth2_openid_connect_session
    DROP CONSTRAINT oauth2_openid_connect_session_challenge_id_fkey,
    DROP CONSTRAINT oauth2_openid_connect_session_subject_fkey;

ALTER TABLE oauth2_pkce_request_session
    DROP CONSTRAINT oauth2_pkce_request_session_challenge_id_fkey,
    DROP CONSTRAINT oauth2_pkce_request_session_subject_fkey;

ALTER TABLE oauth2_refresh_token_session
    DROP CONSTRAINT oauth2_refresh_token_session_challenge_id_fkey,
    DROP CONSTRAINT oauth2_refresh_token_session_subject_fkey;

ALTER TABLE oauth2_consent_session
    ADD CONSTRAINT oauth2_consent_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT,
    ADD CONSTRAINT oauth2_consent_session_preconfiguration_fkey
        FOREIGN KEY (preconfiguration)
            REFERENCES oauth2_consent_preconfiguration (id) ON UPDATE CASCADE ON DELETE CASCADE;

ALTER TABLE oauth2_consent_preconfiguration
    ADD CONSTRAINT oauth2_consent_preconfiguration_subjct_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;

ALTER TABLE oauth2_access_token_session
    ADD CONSTRAINT oauth2_access_token_session_challenge_id_fkey
        FOREIGN KEY (challenge_id)
            REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,
    ADD CONSTRAINT oauth2_access_token_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;

ALTER TABLE oauth2_authorization_code_session
    ADD CONSTRAINT oauth2_authorization_code_session_challenge_id_fkey
        FOREIGN KEY (challenge_id)
            REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,
    ADD CONSTRAINT oauth2_authorization_code_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;

ALTER TABLE oauth2_openid_connect_session
    ADD CONSTRAINT oauth2_openid_connect_session_challenge_id_fkey
        FOREIGN KEY (challenge_id)
            REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,
    ADD CONSTRAINT oauth2_openid_connect_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;

ALTER TABLE oauth2_pkce_request_session
    ADD CONSTRAINT oauth2_pkce_request_session_challenge_id_fkey
        FOREIGN KEY (challenge_id)
            REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,
    ADD CONSTRAINT oauth2_pkce_request_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;

ALTER TABLE oauth2_refresh_token_session
    ADD CONSTRAINT oauth2_refresh_token_session_challenge_id_fkey
        FOREIGN KEY (challenge_id)
            REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,
    ADD CONSTRAINT oauth2_refresh_token_session_subject_fkey
        FOREIGN KEY (subject)
            REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;
refactor: merge master and fix missing rebinds (#4404) * build(deps): update module github.com/jackc/pgx/v5 to v5.1.0 (#4365) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * docs: add smkent as a contributor for code, design, and ideas (#4367) * update README.md * update .all-contributorsrc Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com> * build(deps): update module github.com/ory/fosite to v0.43.0 (#4269) This updates fosite and refactors our usage out of compose. * refactor(cmd): restrict bootstrap pnpm tasks to dev environment (#4370) * build(deps): update alpine docker tag to v3.16.3 (#4362) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update module github.com/ory/x to v0.0.514 (#4368) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * refactor: sql formatting (#4371) * refactor: sql spacing * refactor editor config * docs: clarify cloudflare docs (#4373) * build(deps): update dependency @types/react-dom to v18.0.9 (#4379) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update typescript-eslint monorepo to v5.43.0 (#4380) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency @types/jest to v29.2.3 (#4381) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency esbuild to v0.15.14 (#4383) * build(deps): update material-ui monorepo to v5.10.14 (#4385) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency vite to v3.2.4 (#4386) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update font awesome to v6.2.1 (#4389) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency typescript to v4.9.3 (#4390) * docs: adjust issue templates (#4391) * docs: adjust issue templates * docs: adjust wording * build(deps): update dependency jest-watch-typeahead to v2.2.1 (#4392) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency i18next to v22.0.6 (#4395) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update github.com/duosecurity/duo_api_golang digest to 091daa0 (#4396) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update traefik docker tag to v2.9.5 (#4398) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update module github.com/jackc/pgx/v5 to v5.1.1 (#4400) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update mariadb docker tag to v10.10.2 (#4399) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency eslint-plugin-react to v7.31.11 (#4401) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * build(deps): update dependency eslint to v8.28.0 (#4402) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * fix(storage): schema inconsistency (#4262) * fix: missing pg rebinds * fix: refactoring issues * fix: refactoring issues Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com> Co-authored-by: Amir Zarrinkafsh <nightah@me.com> 2022-11-19 06:42:03 +00:00			`UPDATE webauthn_devices`
			`SET aaguid = '00000000-00000000-00000000-00000000'`
			`WHERE aaguid IS NULL;`

			`ALTER TABLE webauthn_devices`
			`ALTER COLUMN aaguid SET NOT NULL;`

			`ALTER TABLE totp_configurations`
			`DROP CONSTRAINT IF EXISTS totp_configurations_username_key1,`
			`DROP CONSTRAINT IF EXISTS totp_configurations_username_key;`

			`ALTER TABLE webauthn_devices`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_username_description_key1,`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_kid_key1,`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_lookup_key1,`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_username_description_key,`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_kid_key,`
			`DROP CONSTRAINT IF EXISTS webauthn_devices_lookup_key;`

			`DROP INDEX IF EXISTS totp_configurations_username_key1;`
			`DROP INDEX IF EXISTS webauthn_devices_username_description_key1;`
			`DROP INDEX IF EXISTS webauthn_devices_kid_key1;`
			`DROP INDEX IF EXISTS webauthn_devices_lookup_key1;`
			`DROP INDEX IF EXISTS totp_configurations_username_key;`
			`DROP INDEX IF EXISTS webauthn_devices_username_description_key;`
			`DROP INDEX IF EXISTS webauthn_devices_kid_key;`
			`DROP INDEX IF EXISTS webauthn_devices_lookup_key;`

			`CREATE UNIQUE INDEX totp_configurations_username_key1 ON totp_configurations (username);`
			`CREATE UNIQUE INDEX webauthn_devices_kid_key1 ON webauthn_devices (kid);`
			`CREATE UNIQUE INDEX webauthn_devices_lookup_key1 ON webauthn_devices (username, description);`

			`ALTER TABLE oauth2_consent_session`
			`DROP CONSTRAINT oauth2_consent_session_subject_fkey,`
			`DROP CONSTRAINT oauth2_consent_session_preconfiguration_fkey;`

			`ALTER TABLE oauth2_consent_preconfiguration`
			`DROP CONSTRAINT oauth2_consent_preconfiguration_subject_fkey;`

			`ALTER TABLE oauth2_access_token_session`
			`DROP CONSTRAINT oauth2_access_token_session_challenge_id_fkey,`
			`DROP CONSTRAINT oauth2_access_token_session_subject_fkey;`

			`ALTER TABLE oauth2_authorization_code_session`
			`DROP CONSTRAINT oauth2_authorization_code_session_challenge_id_fkey,`
			`DROP CONSTRAINT oauth2_authorization_code_session_subject_fkey;`

			`ALTER TABLE oauth2_openid_connect_session`
			`DROP CONSTRAINT oauth2_openid_connect_session_challenge_id_fkey,`
			`DROP CONSTRAINT oauth2_openid_connect_session_subject_fkey;`

			`ALTER TABLE oauth2_pkce_request_session`
			`DROP CONSTRAINT oauth2_pkce_request_session_challenge_id_fkey,`
			`DROP CONSTRAINT oauth2_pkce_request_session_subject_fkey;`

			`ALTER TABLE oauth2_refresh_token_session`
			`DROP CONSTRAINT oauth2_refresh_token_session_challenge_id_fkey,`
			`DROP CONSTRAINT oauth2_refresh_token_session_subject_fkey;`

			`ALTER TABLE oauth2_consent_session`
			`ADD CONSTRAINT oauth2_consent_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT,`
			`ADD CONSTRAINT oauth2_consent_session_preconfiguration_fkey`
			`FOREIGN KEY (preconfiguration)`
			`REFERENCES oauth2_consent_preconfiguration (id) ON UPDATE CASCADE ON DELETE CASCADE;`

			`ALTER TABLE oauth2_consent_preconfiguration`
			`ADD CONSTRAINT oauth2_consent_preconfiguration_subjct_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`

			`ALTER TABLE oauth2_access_token_session`
			`ADD CONSTRAINT oauth2_access_token_session_challenge_id_fkey`
			`FOREIGN KEY (challenge_id)`
			`REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,`
			`ADD CONSTRAINT oauth2_access_token_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`

			`ALTER TABLE oauth2_authorization_code_session`
			`ADD CONSTRAINT oauth2_authorization_code_session_challenge_id_fkey`
			`FOREIGN KEY (challenge_id)`
			`REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,`
			`ADD CONSTRAINT oauth2_authorization_code_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`

			`ALTER TABLE oauth2_openid_connect_session`
			`ADD CONSTRAINT oauth2_openid_connect_session_challenge_id_fkey`
			`FOREIGN KEY (challenge_id)`
			`REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,`
			`ADD CONSTRAINT oauth2_openid_connect_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`

			`ALTER TABLE oauth2_pkce_request_session`
			`ADD CONSTRAINT oauth2_pkce_request_session_challenge_id_fkey`
			`FOREIGN KEY (challenge_id)`
			`REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,`
			`ADD CONSTRAINT oauth2_pkce_request_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`

			`ALTER TABLE oauth2_refresh_token_session`
			`ADD CONSTRAINT oauth2_refresh_token_session_challenge_id_fkey`
			`FOREIGN KEY (challenge_id)`
			`REFERENCES oauth2_consent_session (challenge_id) ON UPDATE CASCADE ON DELETE CASCADE,`
			`ADD CONSTRAINT oauth2_refresh_token_session_subject_fkey`
			`FOREIGN KEY (subject)`
			`REFERENCES user_opaque_identifier (identifier) ON UPDATE RESTRICT ON DELETE RESTRICT;`