Add basic consents

Author: KillerX

backend/gqlgen.yml

@@ -12,6 +12,7 @@ schema:
   - ../gql/roles.graphqls
   - ../gql/churches.graphqls
   - ../gql/scoring.graphqls
+  - ../gql/consents.graphqls
 
 # Generated code locations
 exec:
@@ -42,6 +43,9 @@ models:
   HTML:
     model:
       - github.com/bcc-media/wayfarer/internal/graph/scalars.HTML
+  Markdown:
+    model:
+      - github.com/bcc-media/wayfarer/internal/graph/scalars.Markdown
   Upload:
     model:
       - github.com/99designs/gqlgen/graphql.Upload
@@ -226,6 +230,22 @@ models:
       AwardedByID:
         type: "*string"
 
+  Consent:
+    fields:
+      body:
+        resolver: true
+    extraFields:
+      BodyMarkdown:
+        type: string
+
+  UserConsent:
+    fields:
+      consent:
+        resolver: true
+    extraFields:
+      ConsentID:
+        type: string
+
 # Autobind - automatically bind Go types to GraphQL types if they match by name
 autobind:
   - github.com/bcc-media/wayfarer/internal/graph/api/model

backend/internal/cache/keys.go

@@ -70,6 +70,11 @@ const (
 
 	// Translations
 	PrefixTranslation = "translation:"
+
+	// Consents
+	PrefixConsent         = "consent:"
+	PrefixUserConsents    = "userconsents:"
+	PrefixLatestConsents  = "latestconsents"
 )
 
 // Key builders for different entity types
@@ -1014,3 +1019,18 @@ func FullLeaderboardKey(context, contextID, entityType string, params map[string
 func TranslationKey(entityType, entityID, langCode string) string {
 	return fmt.Sprintf("%s%s:%s:%s", PrefixTranslation, entityType, entityID, langCode)
 }
+
+// ConsentKey builds a cache key for a consent by ID
+func ConsentKey(consentID string) string {
+	return PrefixConsent + consentID
+}
+
+// UserConsentsKey builds a cache key for a user's accepted consents
+func UserConsentsKey(userID string) string {
+	return PrefixUserConsents + userID
+}
+
+// LatestConsentsKey builds a cache key for all latest published consents
+func LatestConsentsKey() string {
+	return PrefixLatestConsents
+}

backend/internal/database/migrations/00027_add_consent_tables.sql

@@ -0,0 +1,57 @@
+-- +goose Up
+-- +goose StatementBegin
+
+-- Consent definitions (English text in main table)
+-- key: identifies consent type (e.g., "privacy_policy", "terms_of_service")
+-- version: increments per key for tracking consent updates
+-- published_at: null = draft, non-null = active consent
+CREATE TABLE consents (
+    id CHAR(28) PRIMARY KEY CHECK (id ~ '^CN[0-9A-Z]{26}$'),
+    key VARCHAR(100) NOT NULL,
+    version INT NOT NULL DEFAULT 1,
+    title VARCHAR(255) NOT NULL,
+    body TEXT NOT NULL,
+    published_at TIMESTAMPTZ,
+    created_at TIMESTAMPTZ DEFAULT now(),
+    updated_at TIMESTAMPTZ DEFAULT now(),
+    UNIQUE (key, version)
+);
+
+CREATE INDEX idx_consents_key ON consents(key);
+CREATE INDEX idx_consents_published ON consents(published_at) WHERE published_at IS NOT NULL;
+
+-- Consent translations (shadow table pattern)
+CREATE TABLE consent_translations (
+    consent_id CHAR(28) NOT NULL REFERENCES consents(id) ON DELETE CASCADE,
+    language_code VARCHAR(10) NOT NULL,
+    title VARCHAR(255),
+    body TEXT,
+    created_at TIMESTAMPTZ DEFAULT now(),
+    updated_at TIMESTAMPTZ DEFAULT now(),
+    PRIMARY KEY (consent_id, language_code)
+);
+
+-- User consent acceptances
+-- ON DELETE RESTRICT for consent_id: prevent deleting consents that users have accepted
+CREATE TABLE user_consents (
+    id CHAR(28) PRIMARY KEY CHECK (id ~ '^UC[0-9A-Z]{26}$'),
+    user_id CHAR(28) NOT NULL REFERENCES users(id) ON DELETE CASCADE,
+    consent_id CHAR(28) NOT NULL REFERENCES consents(id) ON DELETE RESTRICT,
+    accepted_at TIMESTAMPTZ NOT NULL DEFAULT now(),
+    created_at TIMESTAMPTZ DEFAULT now(),
+    UNIQUE (user_id, consent_id)
+);
+
+CREATE INDEX idx_user_consents_user ON user_consents(user_id);
+CREATE INDEX idx_user_consents_consent ON user_consents(consent_id);
+
+-- +goose StatementEnd
+
+-- +goose Down
+-- +goose StatementBegin
+
+DROP TABLE IF EXISTS user_consents;
+DROP TABLE IF EXISTS consent_translations;
+DROP TABLE IF EXISTS consents;
+
+-- +goose StatementEnd

backend/internal/database/queries/consents.sql

@@ -0,0 +1,95 @@
+-- Consent queries
+
+-- name: GetConsentByID :one
+SELECT id, key, version, title, body, published_at, created_at, updated_at
+FROM consents WHERE id = @id::text;
+
+-- name: GetConsentsByIDs :many
+SELECT id, key, version, title, body, published_at, created_at, updated_at
+FROM consents WHERE id = ANY(@ids::text[]);
+
+-- name: GetLatestPublishedConsentByKey :one
+SELECT id, key, version, title, body, published_at, created_at, updated_at
+FROM consents
+WHERE key = @key::text AND published_at IS NOT NULL AND published_at <= now()
+ORDER BY version DESC LIMIT 1;
+
+-- name: GetAllLatestPublishedConsents :many
+SELECT DISTINCT ON (key) id, key, version, title, body, published_at, created_at, updated_at
+FROM consents
+WHERE published_at IS NOT NULL AND published_at <= now()
+ORDER BY key, version DESC;
+
+-- name: CreateConsent :one
+INSERT INTO consents (id, key, version, title, body, published_at)
+VALUES (@id::text, @key::text, @version::int, @title::text, @body::text, @published_at)
+RETURNING id, key, version, title, body, published_at, created_at, updated_at;
+
+-- name: UpdateConsent :one
+UPDATE consents SET
+    title = CASE WHEN @title::text = '' THEN title ELSE @title::text END,
+    body = CASE WHEN @body::text = '' THEN body ELSE @body::text END,
+    published_at = @published_at,
+    updated_at = now()
+WHERE id = @id::text
+RETURNING id, key, version, title, body, published_at, created_at, updated_at;
+
+-- name: GetNextVersionForConsentKey :one
+SELECT COALESCE(MAX(version), 0) + 1 as next_version FROM consents WHERE key = @key::text;
+
+-- User consent queries
+
+-- name: GetUserConsentsByUserID :many
+SELECT uc.id, uc.user_id, uc.consent_id, uc.accepted_at, uc.created_at,
+       c.key as consent_key, c.version as consent_version
+FROM user_consents uc
+INNER JOIN consents c ON uc.consent_id = c.id
+WHERE uc.user_id = @user_id::text;
+
+-- name: GetUserConsentsByUserIDs :many
+SELECT uc.id, uc.user_id, uc.consent_id, uc.accepted_at, uc.created_at,
+       c.key as consent_key, c.version as consent_version
+FROM user_consents uc
+INNER JOIN consents c ON uc.consent_id = c.id
+WHERE uc.user_id = ANY(@user_ids::text[]);
+
+-- name: GetUserConsentByUserAndConsent :one
+SELECT id, user_id, consent_id, accepted_at, created_at
+FROM user_consents WHERE user_id = @user_id::text AND consent_id = @consent_id::text;
+
+-- name: CreateUserConsent :one
+INSERT INTO user_consents (id, user_id, consent_id, accepted_at)
+VALUES (@id::text, @user_id::text, @consent_id::text, @accepted_at)
+RETURNING id, user_id, consent_id, accepted_at, created_at;
+
+-- name: GetMissingConsentsForUser :many
+SELECT c.id, c.key, c.version, c.title, c.body, c.published_at, c.created_at, c.updated_at
+FROM (
+    SELECT DISTINCT ON (key) id, key, version, title, body, published_at, created_at, updated_at
+    FROM consents
+    WHERE published_at IS NOT NULL AND published_at <= now()
+    ORDER BY key, version DESC
+) c
+WHERE NOT EXISTS (
+    SELECT 1 FROM user_consents uc WHERE uc.user_id = @user_id::text AND uc.consent_id = c.id
+);
+
+-- Translation queries
+
+-- name: GetConsentTranslationsByIDs :many
+SELECT consent_id, language_code, title, body
+FROM consent_translations
+WHERE consent_id = ANY(@entity_ids::text[])
+  AND language_code = @language_code::text;
+
+-- name: DeleteConsentTranslations :exec
+DELETE FROM consent_translations WHERE consent_id = @consent_id::text;
+
+-- name: UpsertConsentTranslation :one
+INSERT INTO consent_translations (consent_id, language_code, title, body)
+VALUES (@consent_id::text, @language_code::text, @title, @body)
+ON CONFLICT (consent_id, language_code) DO UPDATE SET
+    title = EXCLUDED.title,
+    body = EXCLUDED.body,
+    updated_at = now()
+RETURNING consent_id, language_code, title, body, created_at, updated_at;