MailAssist/supabase_quick_replies_schema.sql at main · shopifydevc/MailAssist · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
-- Quick Replies Table
-- Stores pre-written response templates for agents
-- Matches existing schema patterns

CREATE TABLE IF NOT EXISTS public.quick_replies (
  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
  title TEXT NOT NULL,
  content TEXT NOT NULL,
  category TEXT DEFAULT 'General',
  tags TEXT[] DEFAULT '{}',
  created_by UUID REFERENCES public.users(id) ON DELETE SET NULL,
  user_email TEXT, -- For scoping to shared Gmail account
  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
  updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
);

-- Index for faster category lookups
CREATE INDEX IF NOT EXISTS idx_quick_replies_category ON public.quick_replies(category);

-- Index for faster tag searches
CREATE INDEX IF NOT EXISTS idx_quick_replies_tags ON public.quick_replies USING GIN(tags);

-- Index for user_email scoping
CREATE INDEX IF NOT EXISTS idx_quick_replies_user_email ON public.quick_replies(user_email);

-- Index for created_by lookups
CREATE INDEX IF NOT EXISTS idx_quick_replies_created_by ON public.quick_replies(created_by);

-- Create trigger to update updated_at
CREATE TRIGGER update_quick_replies_updated_at
BEFORE UPDATE ON public.quick_replies
FOR EACH ROW
EXECUTE FUNCTION update_updated_at_column();

-- Enable RLS (if you're using RLS)
ALTER TABLE public.quick_replies ENABLE ROW LEVEL SECURITY;

-- Policy: All authenticated users can read quick replies for their shared account
CREATE POLICY "Users can read quick replies"
  ON public.quick_replies
  FOR SELECT
  TO authenticated
  USING (
    user_email IN (
      SELECT user_email FROM public.tokens WHERE user_email IS NOT NULL
    )
  );

-- Policy: Only admins/managers can create quick replies
-- Note: This assumes you have a user_roles table or similar role checking mechanism
-- Adjust based on your actual role checking setup
CREATE POLICY "Admins can create quick replies"
  ON public.quick_replies
  FOR INSERT
  TO authenticated
  WITH CHECK (
    EXISTS (
      SELECT 1 FROM public.users
      WHERE users.id = auth.uid()
      AND users.role IN ('admin', 'manager')
      AND users.user_email = quick_replies.user_email
    )
  );

-- Policy: Only admins/managers can update quick replies
CREATE POLICY "Admins can update quick replies"
  ON public.quick_replies
  FOR UPDATE
  TO authenticated
  USING (
    EXISTS (
      SELECT 1 FROM public.users
      WHERE users.id = auth.uid()
      AND users.role IN ('admin', 'manager')
      AND users.user_email = quick_replies.user_email
    )
  );

-- Policy: Only admins/managers can delete quick replies
-- NOTE: Updated policies below allow all users to create/edit/delete their own quick replies
-- Drop old policies first, then create new ones

-- Drop old admin-only policies
DROP POLICY IF EXISTS "Admins can create quick replies" ON public.quick_replies;
DROP POLICY IF EXISTS "Admins can update quick replies" ON public.quick_replies;
DROP POLICY IF EXISTS "Admins can delete quick replies" ON public.quick_replies;

-- Updated INSERT policy: All authenticated users can create quick replies
CREATE POLICY "Users can create quick replies"
  ON public.quick_replies
  FOR INSERT
  TO authenticated
  WITH CHECK (
    user_email IN (
      SELECT user_email FROM public.tokens WHERE user_email IS NOT NULL
    )
  );

-- Updated UPDATE policy: Users can edit their own, admins/managers can edit any
CREATE POLICY "Users can update quick replies"
  ON public.quick_replies
  FOR UPDATE
  TO authenticated
  USING (
    user_email IN (
      SELECT user_email FROM public.tokens WHERE user_email IS NOT NULL
    )
    AND (
      created_by = auth.uid() OR
      EXISTS (
        SELECT 1 FROM public.users
        WHERE users.id = auth.uid()
        AND users.role IN ('admin', 'manager')
        AND users.user_email = quick_replies.user_email
      )
    )
  );

-- Updated DELETE policy: Users can delete their own, admins/managers can delete any
CREATE POLICY "Users can delete quick replies"
  ON public.quick_replies
  FOR DELETE
  TO authenticated
  USING (
    user_email IN (
      SELECT user_email FROM public.tokens WHERE user_email IS NOT NULL
    )
    AND (
      created_by = auth.uid() OR
      EXISTS (
        SELECT 1 FROM public.users
        WHERE users.id = auth.uid()
        AND users.role IN ('admin', 'manager')
        AND users.user_email = quick_replies.user_email
      )
    )
  );