Add security functions and policies

2025-12-24 15:31:13 -05:00 · 2025-09-28 18:26:02 +00:00
parent d6aa5f683f
commit d97c41f393
5 changed files with 734 additions and 11 deletions
--- a/src/integrations/supabase/types.ts
+++ b/src/integrations/supabase/types.ts
@@ -14,6 +14,33 @@ export type Database = {
  }
  public: {
    Tables: {
+      admin_audit_log: {
+        Row: {
+          action: string
+          admin_user_id: string
+          created_at: string
+          details: Json | null
+          id: string
+          target_user_id: string
+        }
+        Insert: {
+          action: string
+          admin_user_id: string
+          created_at?: string
+          details?: Json | null
+          id?: string
+          target_user_id: string
+        }
+        Update: {
+          action?: string
+          admin_user_id?: string
+          created_at?: string
+          details?: Json | null
+          id?: string
+          target_user_id?: string
+        }
+        Relationships: []
+      }
      companies: {
        Row: {
          average_rating: number | null
@@ -753,6 +780,14 @@ export type Database = {
      [_ in never]: never
    }
    Functions: {
+      can_manage_user: {
+        Args: { _manager_id: string; _target_user_id: string }
+        Returns: boolean
+      }
+      get_user_management_permissions: {
+        Args: { _user_id: string }
+        Returns: Json
+      }
      has_role: {
        Args: {
          _role: Database["public"]["Enums"]["app_role"]
@@ -764,6 +799,19 @@ export type Database = {
        Args: { _user_id: string }
        Returns: boolean
      }
+      is_superuser: {
+        Args: { _user_id: string }
+        Returns: boolean
+      }
+      log_admin_action: {
+        Args: {
+          _action: string
+          _admin_user_id: string
+          _details?: Json
+          _target_user_id: string
+        }
+        Returns: undefined
+      }
      update_company_ratings: {
        Args: { target_company_id: string }
        Returns: undefined