feat(api-security): encrypt user fields and ai usage logs

2026-04-06 15:55:27 +08:00
parent 13abfc1e52
commit 4c6aeb3e6c
9 changed files with 595 additions and 67 deletions
@@ -63,7 +63,8 @@ enum NotificationStatus {

 model User {
  id                    String              @id @default(cuid())
-  email                 String              @unique
+  email                 String
+  emailHash             String?             @unique
  nickname              String?
  avatarUrl             String?
  status                UserStatus          @default(ACTIVE)
@@ -97,11 +98,13 @@ model AuthIdentity {
  provider       AuthProvider
  providerUserId String
  email          String?
+  emailHash      String?
  createdAt      DateTime     @default(now())
  updatedAt      DateTime     @updatedAt
  user           User         @relation(fields: [userId], references: [id], onDelete: Cascade)

  @@unique([provider, providerUserId])
+  @@index([emailHash])
  @@index([userId])
  @@map("auth_identities")
 }