src/lib/db/schema/reservations.ts

import { pgTable, text, timestamp, index, uniqueIndex } from 'drizzle-orm/pg-core';
import { sql } from 'drizzle-orm';
import { ports } from './ports';
import { berths } from './berths';
import { clients } from './clients';
import { yachts } from './yachts';
import { interests } from './interests';
import { files } from './documents';

export const berthReservations = pgTable(
  'berth_reservations',
  {
    id: text('id')
      .primaryKey()
      .$defaultFn(() => crypto.randomUUID()),
    berthId: text('berth_id')
      .notNull()
      .references(() => berths.id),
    portId: text('port_id')
      .notNull()
      .references(() => ports.id),
    clientId: text('client_id')
      .notNull()
      .references(() => clients.id),
    yachtId: text('yacht_id')
      .notNull()
      .references(() => yachts.id),
    interestId: text('interest_id').references(() => interests.id),
    status: text('status').notNull(), // 'pending' | 'active' | 'ended' | 'cancelled'
    startDate: timestamp('start_date', { withTimezone: true, mode: 'date' }).notNull(),
    endDate: timestamp('end_date', { withTimezone: true, mode: 'date' }),
    tenureType: text('tenure_type').notNull().default('permanent'), // 'permanent' | 'fixed_term' | 'seasonal'
    contractFileId: text('contract_file_id').references(() => files.id),
    notes: text('notes'),
    createdBy: text('created_by').notNull(),
    createdAt: timestamp('created_at', { withTimezone: true }).notNull().defaultNow(),
    updatedAt: timestamp('updated_at', { withTimezone: true }).notNull().defaultNow(),
  },
  (table) => [
    index('idx_br_berth').on(table.berthId),
    index('idx_br_client').on(table.clientId),
    index('idx_br_yacht').on(table.yachtId),
    index('idx_br_port').on(table.portId),
    // Cover the FKs Postgres doesn't auto-index. Without these, deleting
    // (or restrict-checking) the parent interest / contract file row
    // requires a full scan of berth_reservations. (idx_br_interest is
    // already used by berth_recommendations — namespace this one.)
    index('idx_brr_interest').on(table.interestId),
    index('idx_brr_contract_file').on(table.contractFileId),
    uniqueIndex('idx_br_active')
      .on(table.berthId)
      .where(sql`${table.status} = 'active'`),
  ],
);

export type BerthReservation = typeof berthReservations.$inferSelect;
export type NewBerthReservation = typeof berthReservations.$inferInsert;
feat(reservations): add berth_reservations schema with partial unique exclusivity 2026-04-23 17:55:53 +02:00			`import { pgTable, text, timestamp, index, uniqueIndex } from 'drizzle-orm/pg-core';`
			`import { sql } from 'drizzle-orm';`
			`import { ports } from './ports';`
			`import { berths } from './berths';`
			`import { clients } from './clients';`
			`import { yachts } from './yachts';`
			`import { interests } from './interests';`
			`import { files } from './documents';`

			`export const berthReservations = pgTable(`
			`'berth_reservations',`
			`{`
			`id: text('id')`
			`.primaryKey()`
			`.$defaultFn(() => crypto.randomUUID()),`
			`berthId: text('berth_id')`
			`.notNull()`
			`.references(() => berths.id),`
			`portId: text('port_id')`
			`.notNull()`
			`.references(() => ports.id),`
			`clientId: text('client_id')`
			`.notNull()`
			`.references(() => clients.id),`
			`yachtId: text('yacht_id')`
			`.notNull()`
			`.references(() => yachts.id),`
			`interestId: text('interest_id').references(() => interests.id),`
			`status: text('status').notNull(), // 'pending' \| 'active' \| 'ended' \| 'cancelled'`
			`startDate: timestamp('start_date', { withTimezone: true, mode: 'date' }).notNull(),`
			`endDate: timestamp('end_date', { withTimezone: true, mode: 'date' }),`
			`tenureType: text('tenure_type').notNull().default('permanent'), // 'permanent' \| 'fixed_term' \| 'seasonal'`
			`contractFileId: text('contract_file_id').references(() => files.id),`
			`notes: text('notes'),`
			`createdBy: text('created_by').notNull(),`
			`createdAt: timestamp('created_at', { withTimezone: true }).notNull().defaultNow(),`
			`updatedAt: timestamp('updated_at', { withTimezone: true }).notNull().defaultNow(),`
			`},`
			`(table) => [`
			`index('idx_br_berth').on(table.berthId),`
			`index('idx_br_client').on(table.clientId),`
			`index('idx_br_yacht').on(table.yachtId),`
			`index('idx_br_port').on(table.portId),`
fix(audit-v3): platform-wide deferred-list cleanup (rounds 1-4) Working through the audit-v2 deferred backlog. Each round was tested (typecheck + 1168/1168 vitest) before moving on. Round 1 — DB performance + AI cost visibility: - Add missing FK indexes Postgres doesn't auto-create on berth_reservations.{interest_id, contract_file_id}, documents.{file_id, signed_file_id}, document_events.signer_id, document_templates.source_file_id, form_submissions.{form_template_id, client_id}, document_sends.{brochure_id, brochure_version_id, sent_by_user_id}. Without these, RESTRICT-checks on parent delete + reverse-lookups walk the child tables fully. Migration 0037. - AI worker now writes one ai_usage_ledger row per OpenAI call so admins can audit spend per port/user/feature and future per-port budgets have history to read from. Failure to write is logged-not-thrown so the user-facing email draft is unaffected. Round 2 — Boot-time + transport hardening: - S3 backend verifies the bucket exists at startup (or auto-creates when MINIO_AUTO_CREATE_BUCKET=true). A typo'd bucket name now surfaces with a clear boot error instead of a vague Minio error inside the first user-facing request. - Documenso v1 placeFields: 3-attempt exponential-backoff retry on 5xx + network errors, fail-fast on 4xx. Stops one transient flake from leaving a document with a partial field set. - FilesystemBackend logs a structured warn-once at boot when the dev HMAC fallback is in effect, so two processes started with different BETTER_AUTH_SECRET values are observable (random 401s on file downloads otherwise). - Logger redact paths extended to cover .headers.{authorization, cookie}, .config.headers.authorization, encrypted-credential blobs (secretKeyEncrypted, smtpPassEncrypted, etc.), the Documenso X-Documenso-Secret header, and 2-level nested forms. Round 3 — UI feedback + permission gates: - Storage admin migrate dialog: success toast with row count + error toast on both dryRun and migrate mutations. - Invoice detail Send + Record-payment buttons wrapped in PermissionGate (invoices.send / invoices.record_payment); both mutations now toast on success/error. - Admin user list Edit button wrapped in PermissionGate(admin.manage_users). - Scan-receipt page surfaces an amber warning when OCR fails so reps know they can fill the form manually instead of staring at a stalled spinner; the editable form now also opens on scanMutation.isError / uploadedFile, not only on success. - Email threads list now renders skeleton rows during load + shared EmptyState for the empty case (was a single "Loading…" line). Round 4 — Service / route correctness: - documentSends.sent_by_user_id was a free-text NOT NULL column with no FK. Now nullable + FK to user(id) ON DELETE SET NULL so the audit row survives a user being hard-deleted. Migration 0038 with a defensive null-out for any orphan ids before attaching the constraint. - Saved-views route: documented why withAuth alone is correct (the service strictly filters by (portId, userId) — owner-only by design). - Public-interests audit log: replaced "userId: null as unknown as string" cast with userId: null; AuditLogParams already accepts null for system-generated events. - EOI in-app PDF fill: extracted setBerthRange() that, when the AcroForm field is missing AND the context has a non-empty range string, logs a structured warn so the deployment gap (live Documenso template needs the field) is observable instead of silently dropping the multi-berth range. Test status: 1168/1168 vitest. tsc clean. Two new migrations (0037/0038) need pnpm db:push (or migration apply) on the dev DB. Deferred-doc updated with the remaining open items (bigger refactors). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-05 12:49:53 +02:00			`// Cover the FKs Postgres doesn't auto-index. Without these, deleting`
			`// (or restrict-checking) the parent interest / contract file row`
feat(expenses+interests): trip/event grouping (lightweight) Per the trips/events design discussion: instead of building a full events domain (table + CRUD UI + calendar) for the 6–12 yacht shows a year, ship the cheap version that covers the actual asks. Expenses — `tripLabel` free-text: - New `expenses.trip_label` text column (migration 0039) + index for filter / autocomplete lookup. - Validator: createExpenseShape + listExpensesSchema + exportExpensePdfSchema.filter all accept tripLabel. - Service: createExpense + updateExpense persist; listExpenses filters; new `listTripLabels(portId, search?)` returns distinct values ordered by most-recent expenseDate so the autocomplete surfaces recently-used labels first. - New `GET /api/v1/expenses/trip-labels` endpoint (gated by expenses.view) backs the autocomplete. - Form dialog: native `<datalist>` powered by the autocomplete query so reps don't end up with "Palm Beach 2026" / "palm-beach 2026" fragmented across two PDF sections. - Expense list: new "Trip" column (badge) + free-text filter. - Detail page: trip label rendered alongside Category / Payer. - PDF export: GroupBy gains 'trip'; filter.tripLabel narrows the export. Untagged rows fall under "(no trip)". - Trim/normalize on write so " Palm Beach 2026 " === "Palm Beach 2026". Interests — event tagging via existing tag system: - Reps can tag interests with an event tag (e.g. "Palm Beach 2026") via the existing InlineTagEditor on the detail page; tags are port-scoped and reusable. - Interest list now has a TagPicker filter rendered next to the FilterBar so reps can sort prospects by event attended ("show me every lead from Palm Beach"). Hidden 'relation'-typed FilterDefinition for tagIds wires URL round-trip + saved-views capture without rendering inside the FilterBar. - FilterBar deserializer now handles `relation` types as comma-joined arrays on URL load. Why a free-text trip label and not a trips table: - 6–12 events/year doesn't justify a domain. The CRUD UI cost would be most of the engineering, and reps already have the events on their personal calendars. - If usage proves demand for per-event ROI dashboards or richer attribution, promote to a real `trips` table later. Migration path: trip_label → tripId is a backfill+swap. Test status: 1168/1168 vitest. tsc clean. Migration 0039 applied in dev (also caught + fixed an unrelated audit-v3 follow-up: 0037 had `idx_br_interest` colliding with the existing `berth_recommendations.idx_br_interest`; renamed to `idx_brr_interest` / `idx_brr_contract_file`). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-05 13:46:54 +02:00			`// requires a full scan of berth_reservations. (idx_br_interest is`
			`// already used by berth_recommendations — namespace this one.)`
			`index('idx_brr_interest').on(table.interestId),`
			`index('idx_brr_contract_file').on(table.contractFileId),`
feat(reservations): add berth_reservations schema with partial unique exclusivity 2026-04-23 17:55:53 +02:00			`uniqueIndex('idx_br_active')`
			`.on(table.berthId)`
			.where(sql`${table.status} = 'active'`),
			`],`
			`);`

			`export type BerthReservation = typeof berthReservations.$inferSelect;`
			`export type NewBerthReservation = typeof berthReservations.$inferInsert;`