Pawla Abdul
5c8fe9a62b
- 001: guard has_table check; skip if session_data already TEXT - 002: guard each ADD COLUMN / CREATE TABLE; guard password migration - 003: guard has_table; guard nullable check - 004: guard has_table; skip if users.id already TEXT - env.py: add Base.metadata.create_all after run_migrations to bootstrap fresh DBs - api/user.py: make hashed_password nullable; add email_verified, image, email_inbound_token fields Co-Authored-By: Paperclip <noreply@paperclip.ing>
104 lines
3.0 KiB
Python
104 lines
3.0 KiB
Python
"""Encrypt existing plaintext session_data with Fernet.
|
|
|
|
Revision ID: 001_encrypt_session_data
|
|
Revises:
|
|
Create Date: 2026-03-19
|
|
"""
|
|
|
|
import json
|
|
import os
|
|
|
|
import sqlalchemy as sa
|
|
from cryptography.fernet import Fernet
|
|
from sqlalchemy import text
|
|
|
|
from alembic import op
|
|
|
|
revision = "001_encrypt_session_data"
|
|
down_revision = None
|
|
branch_labels = None
|
|
depends_on = None
|
|
|
|
|
|
def _get_fernet() -> Fernet:
|
|
key = os.environ.get("CARTSNITCH_FERNET_KEY")
|
|
if not key:
|
|
raise RuntimeError("CARTSNITCH_FERNET_KEY must be set to run this migration")
|
|
return Fernet(key.encode())
|
|
|
|
|
|
def _is_fernet_token(value: str) -> bool:
|
|
"""Check if a string looks like a Fernet token (base64 starting with gAAAAA)."""
|
|
return value.startswith("gAAAAA")
|
|
|
|
|
|
def upgrade() -> None:
|
|
conn = op.get_bind()
|
|
inspector = sa.inspect(conn)
|
|
|
|
# Fresh DB — table created by Base.metadata.create_all with correct TEXT type
|
|
if not inspector.has_table("user_store_accounts"):
|
|
return
|
|
|
|
# Already migrated? Skip if session_data is already TEXT (not JSON)
|
|
cols = {c["name"]: c for c in inspector.get_columns("user_store_accounts")}
|
|
if "session_data" not in cols:
|
|
return
|
|
col_type = str(cols["session_data"]["type"]).lower()
|
|
if "text" in col_type and "json" not in col_type:
|
|
return # already TEXT — nothing to do
|
|
|
|
# Change column type from JSON to TEXT to hold Fernet ciphertext
|
|
op.alter_column(
|
|
"user_store_accounts",
|
|
"session_data",
|
|
type_=sa.Text(),
|
|
existing_type=sa.JSON(),
|
|
existing_nullable=True,
|
|
postgresql_using="session_data::text",
|
|
)
|
|
|
|
rows = conn.execute(
|
|
text("SELECT id, session_data FROM user_store_accounts WHERE session_data IS NOT NULL")
|
|
).fetchall()
|
|
|
|
f = _get_fernet()
|
|
for row_id, session_data in rows:
|
|
raw = str(session_data)
|
|
if _is_fernet_token(raw):
|
|
continue
|
|
plaintext = raw if isinstance(session_data, str) else json.dumps(session_data)
|
|
encrypted = f.encrypt(plaintext.encode()).decode()
|
|
conn.execute(
|
|
text("UPDATE user_store_accounts SET session_data = :data WHERE id = :id"),
|
|
{"data": encrypted, "id": row_id},
|
|
)
|
|
|
|
|
|
def downgrade() -> None:
|
|
conn = op.get_bind()
|
|
rows = conn.execute(
|
|
text("SELECT id, session_data FROM user_store_accounts WHERE session_data IS NOT NULL")
|
|
).fetchall()
|
|
|
|
f = _get_fernet()
|
|
for row_id, session_data in rows:
|
|
raw = str(session_data)
|
|
if not _is_fernet_token(raw):
|
|
continue
|
|
decrypted = f.decrypt(raw.encode()).decode()
|
|
conn.execute(
|
|
text("UPDATE user_store_accounts SET session_data = :data WHERE id = :id"),
|
|
{"data": decrypted, "id": row_id},
|
|
)
|
|
|
|
# Revert column type from TEXT back to JSON
|
|
op.alter_column(
|
|
"user_store_accounts",
|
|
"session_data",
|
|
type_=sa.JSON(),
|
|
existing_type=sa.Text(),
|
|
existing_nullable=True,
|
|
postgresql_using="session_data::json",
|
|
)
|