glm-5.1
6aa2fcc6ff
Reorient @alkdev/storage around a single SQLite database host with Honker
for pub/sub, event streams, and task queues. PostgreSQL is removed as a
target (ADR-038), eliminating dual schema maintenance and infrastructure
complexity. Honker provides DB + pubsub + queues in one .db file (ADR-039).
Add system/tenant DB model (ADR-040): identity tables in system.db, all
graph data in tenant-{orgId}.db files. Identity tables move from the hub
into storage (ADR-041). Scoping columns (ownerId, projectId) added to
graphs table (ADR-042). Graph types get scope (system/tenant/user) to
protect infrastructure schemas (ADR-043).
Define Drizzle-Honker session adapter (ADR-044): ~100-line adapter enabling
Drizzle typed queries and Honker pubsub/queue on a single connection with
transactional consistency.
Resolve OQ-03, OQ-04, OQ-19, OQ-21, OQ-22, OQ-23, OQ-24. Add new
open questions OQ-26 through OQ-29 for Honker integration specifics.
New docs: honker-integration.md (adapter, event patterns, migration).
Scrub all PG/jsonb/libsql references from existing spec docs.
2.9 KiB
ADR-042: Scoping Columns on Graph Instances
Status
Accepted
Context
The original graphs table had no concept of ownership, organization, or project. A graph row was identified by id and name with no way to answer "which org owns this call graph?" or "list all graphs for this project."
In the system/tenant DB model (ADR-040), the tenant DB is inherently org-scoped (the entire .db file is one org). But within a tenant DB, graph instances still need to be scoped to:
- An owner — which account created/owns this graph
- A project — which project this graph belongs to (for project-scoped graphs like call graphs and session trees)
The metagraph pattern stores node/edge attributes as JSON, but scoping columns must be real columns because they appear in WHERE clauses, JOIN conditions, and need indexes.
Decision
Add ownerId and projectId columns to the graphs table:
graphs {
...commonCols,
graphTypeId,
name,
description,
status,
ownerId, -- TEXT, nullable — logical reference to accounts.id in system DB
projectId, -- TEXT, nullable — logical reference to projects (graph or domain table)
}
No orgId column — the tenant DB itself IS the org scope. Adding orgId would be redundant within a single-tenant DB file.
These are logical references consistent with ADR-020 (no nodeTypeId on nodes) and OQ-24 (identityId as logical reference). No FK constraint because the referenced tables live in a different database file (system DB). The hub/consumer enforces referential integrity at the application layer.
Nullability semantics:
ownerIdNULL — system-owned graph (e.g., the ACL graph type definition seeded at setup). Not associated with any account.projectIdNULL — org-level graph (e.g., the org's ACL instance). Not scoped to a specific project.
Indexes: idx_graphs_owner_id on (ownerId), idx_graphs_project_id on (projectId), idx_graphs_owner_id_project_id on (ownerId, projectId) for combined lookups.
Consequences
Positive:
- "List all graphs for project X" is a simple indexed query, not a JSON path extraction
- "Who owns this graph?" is a column read, not a traversal
- Consistent with the rule from the hub's architecture: "if a field appears in WHERE clauses, JOIN conditions, or needs a constraint, it should be a proper column — not buried in metadata or JSON"
- No FK constraints means no cross-DB coupling — the tenant DB works without the system DB open
Negative:
- Orphaned graphs possible if an account is deleted in the system DB but the tenant DB's
graphs.ownerIdstill references it. Application-layer cleanup required. - Adding columns to the
graphstable is a schema change that affects all consumers. The columns are nullable to ease the transition.
References
- ADR-040: System DB + tenant DB (explains why no
orgId) - ADR-020: No nodeTypeId on nodes (same logical-reference pattern)
- ADR-008: Common columns pattern