4cfde1a74a
- Add role-based access control (admin/user roles) - Implement refresh token functionality - Add token revocation (logout) capability - Create admin-only endpoints - Add role validation middleware - Update documentation
40 lines
1.2 KiB
Python
40 lines
1.2 KiB
Python
"""add refresh tokens
|
|
|
|
Revision ID: 003
|
|
Revises: 002
|
|
Create Date: 2023-11-16
|
|
|
|
"""
|
|
from alembic import op
|
|
import sqlalchemy as sa
|
|
|
|
|
|
# revision identifiers, used by Alembic.
|
|
revision = '003'
|
|
down_revision = '002'
|
|
branch_labels = None
|
|
depends_on = None
|
|
|
|
|
|
def upgrade():
|
|
# Create refresh_tokens table
|
|
op.create_table(
|
|
'refresh_tokens',
|
|
sa.Column('id', sa.Integer(), nullable=False),
|
|
sa.Column('token', sa.String(), nullable=True),
|
|
sa.Column('expires_at', sa.DateTime(), nullable=True),
|
|
sa.Column('created_at', sa.DateTime(), nullable=True),
|
|
sa.Column('revoked', sa.Boolean(), nullable=True),
|
|
sa.Column('user_id', sa.Integer(), nullable=True),
|
|
sa.ForeignKeyConstraint(['user_id'], ['users.id'], ),
|
|
sa.PrimaryKeyConstraint('id')
|
|
)
|
|
op.create_index(op.f('ix_refresh_tokens_id'), 'refresh_tokens', ['id'], unique=False)
|
|
op.create_index(op.f('ix_refresh_tokens_token'), 'refresh_tokens', ['token'], unique=True)
|
|
|
|
|
|
def downgrade():
|
|
# Drop refresh_tokens table
|
|
op.drop_index(op.f('ix_refresh_tokens_token'), table_name='refresh_tokens')
|
|
op.drop_index(op.f('ix_refresh_tokens_id'), table_name='refresh_tokens')
|
|
op.drop_table('refresh_tokens') |