Sync: add infrastructure as code notes
This commit is contained in:
@@ -499,6 +499,247 @@
|
||||
<mxCell id="e-prop-folder-lbl" connectable="0" parent="e-prop-folder" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#fb923c;" value="property_id" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ═══════════════════════════════════════════════════════════════
|
||||
PUBLIC SCHEMA SWIMLANE(平台运营层)
|
||||
Color: slate-900 bg / cyan-400 accent (#0f172a / #22d3ee variant: #7dd3fc)
|
||||
Positioned ABOVE existing content at y=-1160
|
||||
════════════════════════════════════════════════════════════════ -->
|
||||
<mxCell id="region-public" parent="1"
|
||||
style="swimlane;startSize=36;fillColor=#0c1a2e;strokeColor=#7dd3fc;fontColor=#7dd3fc;fontSize=13;fontStyle=1;swimlaneLine=1;rounded=1;arcSize=2;"
|
||||
value="PUBLIC SCHEMA(平台运营层)" vertex="1">
|
||||
<mxGeometry height="560" width="3400" x="-860" y="-1200" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 1. tenants ── -->
|
||||
<mxCell id="pub-tenants" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.tenants</b>
<hr/>
🔑 PK id: uuid
schema_name: varchar(63) [UNIQUE, immutable]
name: varchar(255)
short_name: varchar(100)
contact_name / contact_email
region: varchar(100)
plan: basic/professional/enterprise
status: creating/active/suspended/
 pending_delete/deleted/failed
suspended_until: timestamptz
suspended_reason: varchar(50)
deleted_at: timestamptz
paid_until: date
on_trial: bool
is_canary: bool
created_at / updated_at: timestamptz
created_by: uuid
extra: jsonb" vertex="1">
|
||||
<mxGeometry height="310" width="290" x="30" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 2. domains ── -->
|
||||
<mxCell id="pub-domains" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.domains</b>
<hr/>
🔑 PK id: uuid
🔗 FK tenant_id → tenants
domain: varchar(253) [UNIQUE]
is_primary: bool [UNIQUE partial]
created_at: timestamptz
⚠ domain 创建后不可修改" vertex="1">
|
||||
<mxGeometry height="135" width="250" x="340" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 3. tenant_status_logs ── -->
|
||||
<mxCell id="pub-tenant-status-logs" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.tenant_status_logs</b>
<hr/>
🔑 PK id: uuid
🔗 FK tenant_id → tenants
from_status: varchar(20) [NULL=初始]
to_status: varchar(20)
reason: text
operator_id: uuid [NULL=Celery]
operator_name: varchar(100) [快照]
created_at: timestamptz
⚠ append-only — NO UPDATE/DELETE" vertex="1">
|
||||
<mxGeometry height="175" width="270" x="340" y="200" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 4. platform_admins ── -->
|
||||
<mxCell id="pub-admins" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.platform_admins</b>
<hr/>
🔑 PK id: uuid
username: varchar(150) [UNIQUE]
email: varchar(254) [UNIQUE]
display_name: varchar(100)
password_hash: varchar(255)
role: super_admin/ops_operator/
 read_only_auditor
is_active: bool
mfa_enabled: bool [TOTP 确认后→TRUE]
last_login_at: timestamptz
created_at / updated_at: timestamptz
🔗 FK created_by → platform_admins" vertex="1">
|
||||
<mxGeometry height="225" width="270" x="640" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 5. admin_mfa_devices ── -->
|
||||
<mxCell id="pub-mfa" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.admin_mfa_devices</b>
<hr/>
🔑 PK id: uuid
🔗 FK admin_id → platform_admins
device_name: varchar(100)
totp_secret: varchar(255) [加密]
is_confirmed: bool
created_at: timestamptz
last_used_at: timestamptz" vertex="1">
|
||||
<mxGeometry height="150" width="250" x="930" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 6. admin_sessions ── -->
|
||||
<mxCell id="pub-sessions" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.admin_sessions</b>
<hr/>
🔑 PK id: uuid
🔗 FK admin_id → platform_admins
session_token: varchar(255) [UNIQUE]
ip_address: inet
user_agent: text
is_active: bool
created_at: timestamptz
expires_at: timestamptz [30min rolling]
revoked_at: timestamptz
🔗 FK revoked_by → platform_admins" vertex="1">
|
||||
<mxGeometry height="190" width="255" x="930" y="220" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 7. ip_whitelist ── -->
|
||||
<mxCell id="pub-ip" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.ip_whitelist</b>
<hr/>
🔑 PK id: uuid
cidr: cidr [如 203.0.113.0/24]
label: varchar(100)
is_active: bool
created_at: timestamptz
🔗 FK created_by → platform_admins" vertex="1">
|
||||
<mxGeometry height="135" width="240" x="640" y="295" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 8. platform_audit_logs ── -->
|
||||
<mxCell id="pub-audit" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.platform_audit_logs</b>
<hr/>
🔑 PK id: uuid
operator_id: uuid [NULL=系统]
operator_name: varchar(100) [快照]
action_type: varchar(50)
target_type: varchar(30)
target_id / target_name: varchar
payload_summary: text
result: SUCCESS/FAILED
error_message: text
ip_address: inet
created_at: timestamptz
⚠ append-only — 建议月度 RANGE 分区" vertex="1">
|
||||
<mxGeometry height="225" width="265" x="1210" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 9. backup_schedules ── -->
|
||||
<mxCell id="pub-bk-schedules" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.backup_schedules</b>
<hr/>
🔑 PK id: uuid
🔗 FK tenant_id → tenants [NULL=全局]
frequency: hourly/daily/weekly
scheduled_time: time [UTC]
retention_count: int
storage_target: local/s3/r2/gcs
is_active: bool
created_at / updated_at: timestamptz
🔗 FK created_by → platform_admins
UNIQUE(tenant_id)" vertex="1">
|
||||
<mxGeometry height="195" width="265" x="1510" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 10. backup_records ── -->
|
||||
<mxCell id="pub-bk-records" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.backup_records</b>
<hr/>
🔑 PK id: uuid
🔗 FK tenant_id → tenants
trigger_type: auto/manual/
 pre_upgrade/pre_restore
status: pending/in_progress/
 success/failed
storage_target / storage_path: text
size_bytes: bigint
started_at / completed_at
error_message: text
🔗 FK triggered_by → platform_admins
upgrade_event_id: uuid
created_at: timestamptz" vertex="1">
|
||||
<mxGeometry height="245" width="265" x="1510" y="270" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 11. export_tasks ── -->
|
||||
<mxCell id="pub-exports" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.export_tasks</b>
<hr/>
🔑 PK id: uuid
🔗 FK tenant_id → tenants
🔗 FK requested_by → platform_admins
modules: text[]
format: csv/json/sql_dump
status: pending/in_progress/done/failed
storage_path / download_url: text
expires_at: timestamptz [24h]
size_bytes: bigint
started_at / completed_at
created_at: timestamptz" vertex="1">
|
||||
<mxGeometry height="215" width="265" x="1210" y="300" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 12. system_versions ── -->
|
||||
<mxCell id="pub-versions" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.system_versions</b>
<hr/>
🔑 PK id: uuid
version_number: varchar(50) [UNIQUE]
release_notes: text
artifact_url: text
status: current/previous/archived
 [UNIQUE partial: status='current']
released_at: timestamptz
🔗 FK created_by → platform_admins" vertex="1">
|
||||
<mxGeometry height="165" width="265" x="1810" y="50" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── 13. upgrade_events ── -->
|
||||
<mxCell id="pub-upgrades" parent="region-public"
|
||||
style="text;html=1;strokeColor=#7dd3fc;fillColor=#0c1a2e;align=left;verticalAlign=top;spacingLeft=8;spacingTop=4;overflow=hidden;rotatable=0;fontSize=10;fontFamily=monospace;fontColor=#e2e8f0;whiteSpace=pre;"
|
||||
value="<b>public.upgrade_events</b>
<hr/>
🔑 PK id: uuid
🔗 FK from_version_id → system_versions
🔗 FK to_version_id → system_versions
event_type: upgrade/rollback
strategy: full/canary
status: pending/health_check/
 in_progress/success/failed/rolled_back
tenant_progress: jsonb [{tenant,status,...}]
rollback_reason: text
incident_report: text
started_at / completed_at
🔗 FK initiated_by → platform_admins
created_at: timestamptz" vertex="1">
|
||||
<mxGeometry height="255" width="280" x="1810" y="240" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- ── Internal edges (PUBLIC schema) ── -->
|
||||
<!-- tenants → domains -->
|
||||
<mxCell id="pe-tenant-domain" edge="1" parent="region-public" source="pub-tenants" target="pub-domains"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
<mxCell id="pe-tenant-domain-lbl" connectable="0" parent="pe-tenant-domain"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- tenants → tenant_status_logs -->
|
||||
<mxCell id="pe-tenant-statuslog" edge="1" parent="region-public" source="pub-tenants" target="pub-tenant-status-logs"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="320" y="295" />
|
||||
<mxPoint x="320" y="288" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-tenant-statuslog-lbl" connectable="0" parent="pe-tenant-statuslog"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N append-only" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- platform_admins → admin_mfa_devices -->
|
||||
<mxCell id="pe-admin-mfa" edge="1" parent="region-public" source="pub-admins" target="pub-mfa"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
<mxCell id="pe-admin-mfa-lbl" connectable="0" parent="pe-admin-mfa"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- platform_admins → admin_sessions -->
|
||||
<mxCell id="pe-admin-session" edge="1" parent="region-public" source="pub-admins" target="pub-sessions"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="905" y="235" />
|
||||
<mxPoint x="905" y="315" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-admin-session-lbl" connectable="0" parent="pe-admin-session"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- platform_admins → ip_whitelist (created_by) -->
|
||||
<mxCell id="pe-admin-ip" edge="1" parent="region-public" source="pub-admins" target="pub-ip"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;dashed=1;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="755" y="280" />
|
||||
<mxPoint x="755" y="363" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-admin-ip-lbl" connectable="0" parent="pe-admin-ip"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="created_by" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- tenants → backup_schedules -->
|
||||
<mxCell id="pe-tenant-bksched" edge="1" parent="region-public" source="pub-tenants" target="pub-bk-schedules"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;dashed=1;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="320" y="430" />
|
||||
<mxPoint x="1642" y="430" />
|
||||
<mxPoint x="1642" y="248" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-tenant-bksched-lbl" connectable="0" parent="pe-tenant-bksched"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N (NULL=全局)" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- tenants → backup_records -->
|
||||
<mxCell id="pe-tenant-bkrec" edge="1" parent="region-public" source="pub-tenants" target="pub-bk-records"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;dashed=1;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="320" y="480" />
|
||||
<mxPoint x="1642" y="480" />
|
||||
<mxPoint x="1642" y="395" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-tenant-bkrec-lbl" connectable="0" parent="pe-tenant-bkrec"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- tenants → export_tasks -->
|
||||
<mxCell id="pe-tenant-export" edge="1" parent="region-public" source="pub-tenants" target="pub-exports"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;dashed=1;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="320" y="520" />
|
||||
<mxPoint x="1342" y="520" />
|
||||
<mxPoint x="1342" y="408" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-tenant-export-lbl" connectable="0" parent="pe-tenant-export"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="1:N" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- system_versions → upgrade_events (from/to) -->
|
||||
<mxCell id="pe-ver-upgrade" edge="1" parent="region-public" source="pub-versions" target="pub-upgrades"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
<mxCell id="pe-ver-upgrade-lbl" connectable="0" parent="pe-ver-upgrade"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="from/to version" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
|
||||
<!-- upgrade_events → backup_records (upgrade_event_id) -->
|
||||
<mxCell id="pe-upgrade-bkrec" edge="1" parent="region-public" source="pub-upgrades" target="pub-bk-records"
|
||||
style="edgeStyle=orthogonalEdgeStyle;rounded=0;strokeColor=#7dd3fc;dashed=1;endArrow=ERmany;startArrow=ERone;fontSize=9;">
|
||||
<mxGeometry relative="1" as="geometry">
|
||||
<Array as="points">
|
||||
<mxPoint x="1808" y="392" />
|
||||
<mxPoint x="1775" y="392" />
|
||||
</Array>
|
||||
</mxGeometry>
|
||||
</mxCell>
|
||||
<mxCell id="pe-upgrade-bkrec-lbl" connectable="0" parent="pe-upgrade-bkrec"
|
||||
style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;fontSize=9;fontColor=#7dd3fc;" value="upgrade_event_id" vertex="1">
|
||||
<mxGeometry relative="1" as="geometry" />
|
||||
</mxCell>
|
||||
</root>
|
||||
</mxGraphModel>
|
||||
</diagram>
|
||||
|
||||
Reference in New Issue
Block a user