Leonardo
7c20b518d4
Repositorio estava ha ~5 sessoes sem commit. Consolida tudo desde d088a89.
Ver commit.md na raiz para descricao completa por sessao.
# Numeros
- A# auditoria abertos: 0/30
- V# verificacoes abertos: 5/52 (todos adiados com plano)
- T# testes escritos: 10/10
- Vitest: 192/192
- SQL integration: 33/33
- E2E (Playwright, novo): 5/5
- Migrations: 17 (10 novas Sessao 6)
- Areas auditadas: 7 (+documentos com 10 V#)
# Highlights Sessao 6 (hoje)
- V#34/V#41 Opcao B2: tenant_features com plano + override (RPC SECURITY DEFINER, tela /saas/tenant-features)
- A#20 rev2 self-hosted: defesa em 5 camadas (honeypot + rate limit + math captcha condicional + paranoid mode + dashboard /saas/security)
- Documentos hardening (V#43-V#49): tenant scoping em storage policies (vazamento entre clinicas eliminado), RPC validate_share_token, signatures policy granular
- SaaS Twilio Config (/saas/twilio-config): UI editavel para SID/webhook/cotacao; AUTH_TOKEN permanece em env var
- T#9 + T#10: useAgendaEvents.spec.js + Playwright E2E (descobriu bug no front que foi corrigido)
# Sessoes anteriores (1-5) consolidadas
- Sessao 1: auth/router/session, normalizeRole extraido
- Sessao 2: agenda - composables/services consolidados
- Sessao 3: pacientes - tenant_id em todas queries
- Sessao 4: security review pagina publica - 14/15 vulnerabilidades corrigidas
- Sessao 5: SaaS - P0 (A#30: 7 tabelas com RLS off corrigidas)
# .gitignore ajustado
- supabase/* + !supabase/functions/ (mantem 10 edge functions, ignora .temp/migrations gerados pelo CLI)
- database-novo/backups/ (regeneravel via db.cjs backup)
- test-results/ + playwright-report/
- .claude/settings.local.json (config local com senha de dev removida do tracking)
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
67 lines
2.1 KiB
SQL
67 lines
2.1 KiB
SQL
-- Tables: Addons / Créditos
|
|
-- Gerado automaticamente em 2026-04-17T12:23:05.228Z
|
|
-- Total: 3
|
|
|
|
CREATE TABLE public.addon_credits (
|
|
id uuid DEFAULT gen_random_uuid() NOT NULL,
|
|
tenant_id uuid NOT NULL,
|
|
owner_id uuid,
|
|
addon_type text NOT NULL,
|
|
balance integer DEFAULT 0 NOT NULL,
|
|
total_purchased integer DEFAULT 0 NOT NULL,
|
|
total_consumed integer DEFAULT 0 NOT NULL,
|
|
low_balance_threshold integer DEFAULT 10,
|
|
low_balance_notified boolean DEFAULT false,
|
|
daily_limit integer,
|
|
hourly_limit integer,
|
|
daily_used integer DEFAULT 0,
|
|
hourly_used integer DEFAULT 0,
|
|
daily_reset_at timestamp with time zone,
|
|
hourly_reset_at timestamp with time zone,
|
|
from_number_override text,
|
|
expires_at timestamp with time zone,
|
|
is_active boolean DEFAULT true,
|
|
created_at timestamp with time zone DEFAULT now(),
|
|
updated_at timestamp with time zone DEFAULT now()
|
|
);
|
|
|
|
CREATE TABLE public.addon_products (
|
|
id uuid DEFAULT gen_random_uuid() NOT NULL,
|
|
slug text NOT NULL,
|
|
name text NOT NULL,
|
|
description text,
|
|
addon_type text NOT NULL,
|
|
icon text DEFAULT 'pi pi-box'::text,
|
|
credits_amount integer DEFAULT 0,
|
|
price_cents integer DEFAULT 0 NOT NULL,
|
|
currency text DEFAULT 'BRL'::text,
|
|
is_active boolean DEFAULT true,
|
|
is_visible boolean DEFAULT true,
|
|
sort_order integer DEFAULT 0,
|
|
metadata jsonb DEFAULT '{}'::jsonb,
|
|
created_at timestamp with time zone DEFAULT now(),
|
|
updated_at timestamp with time zone DEFAULT now(),
|
|
deleted_at timestamp with time zone
|
|
);
|
|
|
|
CREATE TABLE public.addon_transactions (
|
|
id uuid DEFAULT gen_random_uuid() NOT NULL,
|
|
tenant_id uuid NOT NULL,
|
|
owner_id uuid,
|
|
addon_type text NOT NULL,
|
|
type text NOT NULL,
|
|
amount integer NOT NULL,
|
|
balance_before integer DEFAULT 0 NOT NULL,
|
|
balance_after integer DEFAULT 0 NOT NULL,
|
|
product_id uuid,
|
|
queue_id uuid,
|
|
description text,
|
|
admin_user_id uuid,
|
|
payment_method text,
|
|
payment_reference text,
|
|
price_cents integer,
|
|
currency text DEFAULT 'BRL'::text,
|
|
created_at timestamp with time zone DEFAULT now(),
|
|
metadata jsonb DEFAULT '{}'::jsonb
|
|
);
|