2026-04-02 11:51:40 -05:00
|
|
|
import fs from "node:fs";
|
|
|
|
|
import os from "node:os";
|
|
|
|
|
import path from "node:path";
|
|
|
|
|
import { afterEach, describe, expect, it } from "vitest";
|
|
|
|
|
import postgres from "postgres";
|
|
|
|
|
import { createBufferedTextFileWriter, runDatabaseBackup, runDatabaseRestore } from "./backup-lib.js";
|
|
|
|
|
import { ensurePostgresDatabase } from "./client.js";
|
|
|
|
|
import {
|
|
|
|
|
getEmbeddedPostgresTestSupport,
|
|
|
|
|
startEmbeddedPostgresTestDatabase,
|
|
|
|
|
} from "./test-embedded-postgres.js";
|
|
|
|
|
|
|
|
|
|
const cleanups: Array<() => Promise<void> | void> = [];
|
|
|
|
|
const embeddedPostgresSupport = await getEmbeddedPostgresTestSupport();
|
|
|
|
|
const describeEmbeddedPostgres = embeddedPostgresSupport.supported ? describe : describe.skip;
|
|
|
|
|
|
|
|
|
|
function createTempDir(prefix: string): string {
|
|
|
|
|
const dir = fs.mkdtempSync(path.join(os.tmpdir(), prefix));
|
|
|
|
|
cleanups.push(() => {
|
|
|
|
|
fs.rmSync(dir, { recursive: true, force: true });
|
|
|
|
|
});
|
|
|
|
|
return dir;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function createTempDatabase(): Promise<string> {
|
|
|
|
|
const db = await startEmbeddedPostgresTestDatabase("paperclip-db-backup-");
|
|
|
|
|
cleanups.push(db.cleanup);
|
|
|
|
|
return db.connectionString;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function createSiblingDatabase(connectionString: string, databaseName: string): Promise<string> {
|
|
|
|
|
const adminUrl = new URL(connectionString);
|
|
|
|
|
adminUrl.pathname = "/postgres";
|
|
|
|
|
await ensurePostgresDatabase(adminUrl.toString(), databaseName);
|
|
|
|
|
const targetUrl = new URL(connectionString);
|
|
|
|
|
targetUrl.pathname = `/${databaseName}`;
|
|
|
|
|
return targetUrl.toString();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
afterEach(async () => {
|
|
|
|
|
while (cleanups.length > 0) {
|
|
|
|
|
const cleanup = cleanups.pop();
|
|
|
|
|
await cleanup?.();
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (!embeddedPostgresSupport.supported) {
|
|
|
|
|
console.warn(
|
|
|
|
|
`Skipping embedded Postgres backup tests on this host: ${embeddedPostgresSupport.reason ?? "unsupported environment"}`,
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
describe("createBufferedTextFileWriter", () => {
|
|
|
|
|
it("preserves line boundaries across buffered flushes", async () => {
|
|
|
|
|
const tempDir = createTempDir("paperclip-buffered-writer-");
|
|
|
|
|
const outputPath = path.join(tempDir, "backup.sql");
|
|
|
|
|
const writer = createBufferedTextFileWriter(outputPath, 16);
|
|
|
|
|
const lines = [
|
|
|
|
|
"-- header",
|
|
|
|
|
"BEGIN;",
|
|
|
|
|
"",
|
|
|
|
|
"INSERT INTO test VALUES (1);",
|
|
|
|
|
"-- footer",
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
for (const line of lines) {
|
|
|
|
|
writer.emit(line);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
await writer.close();
|
|
|
|
|
|
|
|
|
|
expect(fs.readFileSync(outputPath, "utf8")).toBe(lines.join("\n"));
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
describeEmbeddedPostgres("runDatabaseBackup", () => {
|
|
|
|
|
it(
|
|
|
|
|
"backs up and restores large table payloads without materializing one giant string",
|
|
|
|
|
async () => {
|
|
|
|
|
const sourceConnectionString = await createTempDatabase();
|
|
|
|
|
const restoreConnectionString = await createSiblingDatabase(
|
|
|
|
|
sourceConnectionString,
|
|
|
|
|
"paperclip_restore_target",
|
|
|
|
|
);
|
|
|
|
|
const backupDir = createTempDir("paperclip-db-backup-output-");
|
|
|
|
|
const sourceSql = postgres(sourceConnectionString, { max: 1, onnotice: () => {} });
|
|
|
|
|
const restoreSql = postgres(restoreConnectionString, { max: 1, onnotice: () => {} });
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE TYPE "public"."backup_test_state" AS ENUM ('pending', 'done');
|
|
|
|
|
`);
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE TABLE "public"."backup_test_records" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"title" text NOT NULL,
|
|
|
|
|
"payload" text NOT NULL,
|
|
|
|
|
"state" "public"."backup_test_state" NOT NULL,
|
|
|
|
|
"metadata" jsonb,
|
|
|
|
|
"created_at" timestamptz NOT NULL DEFAULT now()
|
|
|
|
|
);
|
|
|
|
|
`);
|
|
|
|
|
|
|
|
|
|
const payload = "x".repeat(8192);
|
|
|
|
|
for (let index = 0; index < 160; index += 1) {
|
|
|
|
|
const createdAt = new Date(Date.UTC(2026, 0, 1, 0, 0, index));
|
|
|
|
|
await sourceSql`
|
|
|
|
|
INSERT INTO "public"."backup_test_records" (
|
|
|
|
|
"title",
|
|
|
|
|
"payload",
|
|
|
|
|
"state",
|
|
|
|
|
"metadata",
|
|
|
|
|
"created_at"
|
|
|
|
|
)
|
|
|
|
|
VALUES (
|
|
|
|
|
${`row-${index}`},
|
|
|
|
|
${payload},
|
|
|
|
|
${index % 2 === 0 ? "pending" : "done"}::"public"."backup_test_state",
|
|
|
|
|
${JSON.stringify({ index, even: index % 2 === 0 })}::jsonb,
|
|
|
|
|
${createdAt}
|
|
|
|
|
)
|
|
|
|
|
`;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const result = await runDatabaseBackup({
|
|
|
|
|
connectionString: sourceConnectionString,
|
|
|
|
|
backupDir,
|
2026-04-07 09:54:39 +02:00
|
|
|
retention: { dailyDays: 7, weeklyWeeks: 4, monthlyMonths: 1 },
|
2026-04-02 11:51:40 -05:00
|
|
|
filenamePrefix: "paperclip-test",
|
[codex] Add backup endpoint and dev runtime hardening (#4087)
## Thinking Path
> - Paperclip is a local-first control plane for AI-agent companies.
> - Operators need predictable local dev behavior, recoverable instance
data, and scripts that do not churn the running app.
> - Several accumulated changes improve backup streaming, dev-server
health, static UI caching/logging, diagnostic-file ignores, and instance
isolation.
> - These are operational improvements that can land independently from
product UI work.
> - This pull request groups the dev-infra and backup changes from the
split branch into one standalone branch.
> - The benefit is safer local operation, easier manual backups, less
noisy dev output, and less cross-instance auth leakage.
## What Changed
- Added a manual instance database backup endpoint and route tests.
- Streamed backup/restore handling to avoid materializing large payloads
at once.
- Reduced dev static UI log/cache churn and ignored Node diagnostic
report captures.
- Added guarded dev auto-restart health polling coverage.
- Preserved worktree config during provisioning and scoped auth cookies
by instance.
- Added a Discord daily digest helper script and environment
documentation.
- Hardened adapter-route and startup feedback export tests around the
changed infrastructure.
## Verification
- `pnpm install --frozen-lockfile`
- `pnpm exec vitest run packages/db/src/backup-lib.test.ts
server/src/__tests__/instance-database-backups-routes.test.ts
server/src/__tests__/server-startup-feedback-export.test.ts
server/src/__tests__/adapter-routes.test.ts
server/src/__tests__/dev-runner-paths.test.ts
server/src/__tests__/health-dev-server-token.test.ts
server/src/__tests__/http-log-policy.test.ts
server/src/__tests__/vite-html-renderer.test.ts
server/src/__tests__/workspace-runtime.test.ts
server/src/__tests__/better-auth.test.ts`
- Split integration check: merged after the runtime/governance branch
and before UI branches with no merge conflicts.
- Confirmed this branch does not include `pnpm-lock.yaml`.
## Risks
- Medium risk: touches server startup, backup streaming, auth cookie
naming, dev health checks, and worktree provisioning.
- Backup endpoint behavior depends on existing board/admin access
controls and database backup helpers.
- No database migrations are included.
> For core feature work, check [`ROADMAP.md`](ROADMAP.md) first and
discuss it in `#dev` before opening the PR. Feature PRs that overlap
with planned core work may need to be redirected — check the roadmap
first. See `CONTRIBUTING.md`.
## Model Used
- OpenAI Codex, GPT-5.4 tool-enabled coding model, agentic
code-editing/runtime with local shell and GitHub CLI access; exact
context window and reasoning mode are not exposed by the Paperclip
harness.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
---------
Co-authored-by: Paperclip <noreply@paperclip.ing>
2026-04-20 06:08:55 -05:00
|
|
|
backupEngine: "javascript",
|
2026-04-02 11:51:40 -05:00
|
|
|
});
|
|
|
|
|
|
2026-04-07 09:41:13 +02:00
|
|
|
expect(result.backupFile).toMatch(/paperclip-test-.*\.sql\.gz$/);
|
|
|
|
|
expect(result.sizeBytes).toBeGreaterThan(0);
|
2026-04-02 11:51:40 -05:00
|
|
|
expect(fs.existsSync(result.backupFile)).toBe(true);
|
|
|
|
|
|
|
|
|
|
await runDatabaseRestore({
|
|
|
|
|
connectionString: restoreConnectionString,
|
|
|
|
|
backupFile: result.backupFile,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const counts = await restoreSql.unsafe<{ count: number }[]>(`
|
|
|
|
|
SELECT count(*)::int AS count
|
|
|
|
|
FROM "public"."backup_test_records"
|
|
|
|
|
`);
|
|
|
|
|
expect(counts[0]?.count).toBe(160);
|
|
|
|
|
|
|
|
|
|
const sampleRows = await restoreSql.unsafe<{
|
|
|
|
|
title: string;
|
|
|
|
|
payload: string;
|
|
|
|
|
state: string;
|
[codex] Add backup endpoint and dev runtime hardening (#4087)
## Thinking Path
> - Paperclip is a local-first control plane for AI-agent companies.
> - Operators need predictable local dev behavior, recoverable instance
data, and scripts that do not churn the running app.
> - Several accumulated changes improve backup streaming, dev-server
health, static UI caching/logging, diagnostic-file ignores, and instance
isolation.
> - These are operational improvements that can land independently from
product UI work.
> - This pull request groups the dev-infra and backup changes from the
split branch into one standalone branch.
> - The benefit is safer local operation, easier manual backups, less
noisy dev output, and less cross-instance auth leakage.
## What Changed
- Added a manual instance database backup endpoint and route tests.
- Streamed backup/restore handling to avoid materializing large payloads
at once.
- Reduced dev static UI log/cache churn and ignored Node diagnostic
report captures.
- Added guarded dev auto-restart health polling coverage.
- Preserved worktree config during provisioning and scoped auth cookies
by instance.
- Added a Discord daily digest helper script and environment
documentation.
- Hardened adapter-route and startup feedback export tests around the
changed infrastructure.
## Verification
- `pnpm install --frozen-lockfile`
- `pnpm exec vitest run packages/db/src/backup-lib.test.ts
server/src/__tests__/instance-database-backups-routes.test.ts
server/src/__tests__/server-startup-feedback-export.test.ts
server/src/__tests__/adapter-routes.test.ts
server/src/__tests__/dev-runner-paths.test.ts
server/src/__tests__/health-dev-server-token.test.ts
server/src/__tests__/http-log-policy.test.ts
server/src/__tests__/vite-html-renderer.test.ts
server/src/__tests__/workspace-runtime.test.ts
server/src/__tests__/better-auth.test.ts`
- Split integration check: merged after the runtime/governance branch
and before UI branches with no merge conflicts.
- Confirmed this branch does not include `pnpm-lock.yaml`.
## Risks
- Medium risk: touches server startup, backup streaming, auth cookie
naming, dev health checks, and worktree provisioning.
- Backup endpoint behavior depends on existing board/admin access
controls and database backup helpers.
- No database migrations are included.
> For core feature work, check [`ROADMAP.md`](ROADMAP.md) first and
discuss it in `#dev` before opening the PR. Feature PRs that overlap
with planned core work may need to be redirected — check the roadmap
first. See `CONTRIBUTING.md`.
## Model Used
- OpenAI Codex, GPT-5.4 tool-enabled coding model, agentic
code-editing/runtime with local shell and GitHub CLI access; exact
context window and reasoning mode are not exposed by the Paperclip
harness.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
---------
Co-authored-by: Paperclip <noreply@paperclip.ing>
2026-04-20 06:08:55 -05:00
|
|
|
metadata: { index: number; even: boolean } | string;
|
2026-04-02 11:51:40 -05:00
|
|
|
}[]>(`
|
|
|
|
|
SELECT "title", "payload", "state"::text AS "state", "metadata"
|
|
|
|
|
FROM "public"."backup_test_records"
|
|
|
|
|
WHERE "title" IN ('row-0', 'row-159')
|
|
|
|
|
ORDER BY "title"
|
|
|
|
|
`);
|
[codex] Add backup endpoint and dev runtime hardening (#4087)
## Thinking Path
> - Paperclip is a local-first control plane for AI-agent companies.
> - Operators need predictable local dev behavior, recoverable instance
data, and scripts that do not churn the running app.
> - Several accumulated changes improve backup streaming, dev-server
health, static UI caching/logging, diagnostic-file ignores, and instance
isolation.
> - These are operational improvements that can land independently from
product UI work.
> - This pull request groups the dev-infra and backup changes from the
split branch into one standalone branch.
> - The benefit is safer local operation, easier manual backups, less
noisy dev output, and less cross-instance auth leakage.
## What Changed
- Added a manual instance database backup endpoint and route tests.
- Streamed backup/restore handling to avoid materializing large payloads
at once.
- Reduced dev static UI log/cache churn and ignored Node diagnostic
report captures.
- Added guarded dev auto-restart health polling coverage.
- Preserved worktree config during provisioning and scoped auth cookies
by instance.
- Added a Discord daily digest helper script and environment
documentation.
- Hardened adapter-route and startup feedback export tests around the
changed infrastructure.
## Verification
- `pnpm install --frozen-lockfile`
- `pnpm exec vitest run packages/db/src/backup-lib.test.ts
server/src/__tests__/instance-database-backups-routes.test.ts
server/src/__tests__/server-startup-feedback-export.test.ts
server/src/__tests__/adapter-routes.test.ts
server/src/__tests__/dev-runner-paths.test.ts
server/src/__tests__/health-dev-server-token.test.ts
server/src/__tests__/http-log-policy.test.ts
server/src/__tests__/vite-html-renderer.test.ts
server/src/__tests__/workspace-runtime.test.ts
server/src/__tests__/better-auth.test.ts`
- Split integration check: merged after the runtime/governance branch
and before UI branches with no merge conflicts.
- Confirmed this branch does not include `pnpm-lock.yaml`.
## Risks
- Medium risk: touches server startup, backup streaming, auth cookie
naming, dev health checks, and worktree provisioning.
- Backup endpoint behavior depends on existing board/admin access
controls and database backup helpers.
- No database migrations are included.
> For core feature work, check [`ROADMAP.md`](ROADMAP.md) first and
discuss it in `#dev` before opening the PR. Feature PRs that overlap
with planned core work may need to be redirected — check the roadmap
first. See `CONTRIBUTING.md`.
## Model Used
- OpenAI Codex, GPT-5.4 tool-enabled coding model, agentic
code-editing/runtime with local shell and GitHub CLI access; exact
context window and reasoning mode are not exposed by the Paperclip
harness.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
---------
Co-authored-by: Paperclip <noreply@paperclip.ing>
2026-04-20 06:08:55 -05:00
|
|
|
expect(sampleRows.map((row) => ({
|
|
|
|
|
...row,
|
|
|
|
|
metadata: typeof row.metadata === "string" ? JSON.parse(row.metadata) : row.metadata,
|
|
|
|
|
}))).toEqual([
|
2026-04-02 11:51:40 -05:00
|
|
|
{
|
|
|
|
|
title: "row-0",
|
|
|
|
|
payload,
|
|
|
|
|
state: "pending",
|
|
|
|
|
metadata: { index: 0, even: true },
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
title: "row-159",
|
|
|
|
|
payload,
|
|
|
|
|
state: "done",
|
|
|
|
|
metadata: { index: 159, even: false },
|
|
|
|
|
},
|
|
|
|
|
]);
|
|
|
|
|
} finally {
|
|
|
|
|
await sourceSql.end();
|
|
|
|
|
await restoreSql.end();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
60_000,
|
|
|
|
|
);
|
2026-04-06 08:35:59 -05:00
|
|
|
|
|
|
|
|
it(
|
Expand database backups to non-system schemas (#4859)
## Thinking Path
> - Paperclip is the control plane for autonomous AI companies.
> - Reliable backups are part of operating that control plane safely.
> - The previous backup path was public-schema oriented and did not
clearly cover plugin-owned schemas or migration history.
> - Paperclip now has plugin database namespaces and Drizzle migration
state that must survive backup/restore.
> - This pull request expands logical database backups to non-system
schemas and documents the backup boundary.
> - The benefit is safer restore behavior for core and plugin-owned
database state without implying full filesystem disaster recovery.
## What Changed
- Include non-system database schemas in JavaScript and pg_dump backup
paths.
- Preserve enum, table, sequence, index, constraint, migration, and
plugin-schema objects across backup/restore.
- Add restore coverage for plugin-owned schemas and Drizzle migration
history.
- Clarify docs that DB backups are logical database backups, not full
instance filesystem backups.
## Verification
- `pnpm install --frozen-lockfile`
- `pnpm exec vitest run packages/db/src/backup-lib.test.ts`
- Result: 1 test file passed, 4 tests passed.
- Confirmed this PR does not include `pnpm-lock.yaml` or
`.github/workflows/*` changes.
## Risks
- Medium: backup generation touches schema discovery and restore
ordering, so unusual database objects may need additional coverage
later.
- No migrations are included.
> For core feature work, check [`ROADMAP.md`](ROADMAP.md) first and
discuss it in `#dev` before opening the PR. Feature PRs that overlap
with planned core work may need to be redirected — check the roadmap
first. See `CONTRIBUTING.md`.
## Model Used
- OpenAI Codex, GPT-5 coding agent, tool use enabled, medium reasoning
effort. Exact hosted context-window details are not exposed in this
runtime.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
Note: no UI changes are included in this PR, so screenshots are not
applicable.
---------
Co-authored-by: Paperclip <noreply@paperclip.ing>
2026-04-30 12:54:35 -05:00
|
|
|
"backs up and restores non-public database schemas and migration history",
|
|
|
|
|
async () => {
|
|
|
|
|
const sourceConnectionString = await createTempDatabase();
|
|
|
|
|
const restoreConnectionString = await createSiblingDatabase(
|
|
|
|
|
sourceConnectionString,
|
|
|
|
|
"paperclip_full_logical_restore_target",
|
|
|
|
|
);
|
|
|
|
|
const backupDir = createTempDir("paperclip-db-full-logical-backup-");
|
|
|
|
|
const sourceSql = postgres(sourceConnectionString, { max: 1, onnotice: () => {} });
|
|
|
|
|
const restoreSql = postgres(restoreConnectionString, { max: 1, onnotice: () => {} });
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE SCHEMA IF NOT EXISTS "drizzle";
|
|
|
|
|
CREATE TABLE IF NOT EXISTS "drizzle"."__drizzle_migrations" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"hash" text NOT NULL,
|
|
|
|
|
"created_at" bigint
|
|
|
|
|
);
|
|
|
|
|
INSERT INTO "drizzle"."__drizzle_migrations" ("hash", "created_at")
|
|
|
|
|
VALUES ('paperclip-migration-history', 1770000000000);
|
|
|
|
|
`);
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE TABLE "public"."backup_parent_records" (
|
|
|
|
|
"id" uuid PRIMARY KEY,
|
|
|
|
|
"name" text NOT NULL
|
|
|
|
|
);
|
|
|
|
|
INSERT INTO "public"."backup_parent_records" ("id", "name")
|
|
|
|
|
VALUES ('11111111-1111-4111-8111-111111111111', 'parent');
|
|
|
|
|
`);
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE TABLE "public"."plugin_rows" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"note" text NOT NULL
|
|
|
|
|
);
|
|
|
|
|
CREATE TABLE "public"."audit_rows" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"secret_note" text
|
|
|
|
|
);
|
|
|
|
|
INSERT INTO "public"."plugin_rows" ("note")
|
|
|
|
|
VALUES ('public-collision');
|
|
|
|
|
INSERT INTO "public"."audit_rows" ("secret_note")
|
|
|
|
|
VALUES ('public-secret');
|
|
|
|
|
`);
|
|
|
|
|
await sourceSql.unsafe(`
|
|
|
|
|
CREATE SCHEMA "plugin_backup_scope";
|
|
|
|
|
CREATE TYPE "plugin_backup_scope"."plugin_status" AS ENUM ('ready', 'done');
|
|
|
|
|
CREATE TABLE "plugin_backup_scope"."plugin_rows" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"parent_id" uuid NOT NULL REFERENCES "public"."backup_parent_records"("id") ON DELETE CASCADE,
|
|
|
|
|
"status" "plugin_backup_scope"."plugin_status" NOT NULL,
|
|
|
|
|
"note" text NOT NULL
|
|
|
|
|
);
|
|
|
|
|
CREATE TABLE "plugin_backup_scope"."audit_rows" (
|
|
|
|
|
"id" serial PRIMARY KEY,
|
|
|
|
|
"secret_note" text
|
|
|
|
|
);
|
|
|
|
|
CREATE UNIQUE INDEX "plugin_rows_note_uq" ON "plugin_backup_scope"."plugin_rows" ("note");
|
|
|
|
|
INSERT INTO "plugin_backup_scope"."plugin_rows" ("parent_id", "status", "note")
|
|
|
|
|
VALUES ('11111111-1111-4111-8111-111111111111', 'ready', 'first');
|
|
|
|
|
INSERT INTO "plugin_backup_scope"."audit_rows" ("secret_note")
|
|
|
|
|
VALUES ('plugin-secret');
|
|
|
|
|
`);
|
|
|
|
|
|
|
|
|
|
const result = await runDatabaseBackup({
|
|
|
|
|
connectionString: sourceConnectionString,
|
|
|
|
|
backupDir,
|
|
|
|
|
retention: { dailyDays: 7, weeklyWeeks: 4, monthlyMonths: 1 },
|
|
|
|
|
filenamePrefix: "paperclip-full-logical-test",
|
|
|
|
|
backupEngine: "javascript",
|
|
|
|
|
excludeTables: ["plugin_rows"],
|
|
|
|
|
nullifyColumns: {
|
|
|
|
|
audit_rows: ["secret_note"],
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
await runDatabaseRestore({
|
|
|
|
|
connectionString: restoreConnectionString,
|
|
|
|
|
backupFile: result.backupFile,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const migrationRows = await restoreSql.unsafe<{ hash: string }[]>(`
|
|
|
|
|
SELECT "hash"
|
|
|
|
|
FROM "drizzle"."__drizzle_migrations"
|
|
|
|
|
WHERE "hash" = 'paperclip-migration-history'
|
|
|
|
|
`);
|
|
|
|
|
expect(migrationRows).toEqual([{ hash: "paperclip-migration-history" }]);
|
|
|
|
|
|
|
|
|
|
const pluginRows = await restoreSql.unsafe<{ note: string; status: string; parent_name: string }[]>(`
|
|
|
|
|
SELECT r."note", r."status"::text AS "status", p."name" AS "parent_name"
|
|
|
|
|
FROM "plugin_backup_scope"."plugin_rows" r
|
|
|
|
|
JOIN "public"."backup_parent_records" p ON p."id" = r."parent_id"
|
|
|
|
|
`);
|
|
|
|
|
expect(pluginRows).toEqual([{ note: "first", status: "ready", parent_name: "parent" }]);
|
|
|
|
|
|
|
|
|
|
const publicCollisionRows = await restoreSql.unsafe<{ count: number }[]>(`
|
|
|
|
|
SELECT count(*)::int AS count
|
|
|
|
|
FROM "public"."plugin_rows"
|
|
|
|
|
`);
|
|
|
|
|
expect(publicCollisionRows[0]?.count).toBe(0);
|
|
|
|
|
|
|
|
|
|
const publicAuditRows = await restoreSql.unsafe<{ secret_note: string | null }[]>(`
|
|
|
|
|
SELECT "secret_note"
|
|
|
|
|
FROM "public"."audit_rows"
|
|
|
|
|
`);
|
|
|
|
|
expect(publicAuditRows).toEqual([{ secret_note: null }]);
|
|
|
|
|
|
|
|
|
|
const pluginAuditRows = await restoreSql.unsafe<{ secret_note: string | null }[]>(`
|
|
|
|
|
SELECT "secret_note"
|
|
|
|
|
FROM "plugin_backup_scope"."audit_rows"
|
|
|
|
|
`);
|
|
|
|
|
expect(pluginAuditRows).toEqual([{ secret_note: "plugin-secret" }]);
|
|
|
|
|
|
|
|
|
|
await expect(
|
|
|
|
|
restoreSql.unsafe(`
|
|
|
|
|
INSERT INTO "plugin_backup_scope"."plugin_rows" ("parent_id", "status", "note")
|
|
|
|
|
VALUES ('11111111-1111-4111-8111-111111111111', 'done', 'first')
|
|
|
|
|
`),
|
|
|
|
|
).rejects.toThrow();
|
|
|
|
|
} finally {
|
|
|
|
|
await sourceSql.end();
|
|
|
|
|
await restoreSql.end();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
60_000,
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
it(
|
|
|
|
|
"restores legacy public-only backups without migration history",
|
2026-04-06 08:35:59 -05:00
|
|
|
async () => {
|
|
|
|
|
const restoreConnectionString = await createTempDatabase();
|
|
|
|
|
const restoreSql = postgres(restoreConnectionString, { max: 1, onnotice: () => {} });
|
|
|
|
|
const backupDir = createTempDir("paperclip-db-restore-manual-");
|
|
|
|
|
const backupFile = path.join(backupDir, "manual.sql");
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
await fs.promises.writeFile(
|
|
|
|
|
backupFile,
|
|
|
|
|
[
|
|
|
|
|
"-- Paperclip database backup",
|
|
|
|
|
"-- Created: 2026-04-06T00:00:00.000Z",
|
|
|
|
|
"",
|
|
|
|
|
"BEGIN;",
|
|
|
|
|
"-- paperclip statement breakpoint 69f6f3f1-42fd-46a6-bf17-d1d85f8f3900",
|
|
|
|
|
"CREATE TABLE public.restore_stream_test (id integer primary key, payload text not null);",
|
|
|
|
|
"-- paperclip statement breakpoint 69f6f3f1-42fd-46a6-bf17-d1d85f8f3900",
|
|
|
|
|
"INSERT INTO public.restore_stream_test (id, payload)",
|
|
|
|
|
"VALUES (1, 'hello');",
|
|
|
|
|
"-- paperclip statement breakpoint 69f6f3f1-42fd-46a6-bf17-d1d85f8f3900",
|
|
|
|
|
"COMMIT;",
|
|
|
|
|
"-- paperclip statement breakpoint 69f6f3f1-42fd-46a6-bf17-d1d85f8f3900",
|
|
|
|
|
].join("\n"),
|
|
|
|
|
"utf8",
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
await runDatabaseRestore({
|
|
|
|
|
connectionString: restoreConnectionString,
|
|
|
|
|
backupFile,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const rows = await restoreSql.unsafe<{ payload: string }[]>(`
|
|
|
|
|
SELECT payload
|
|
|
|
|
FROM public.restore_stream_test
|
|
|
|
|
`);
|
|
|
|
|
expect(rows).toEqual([{ payload: "hello" }]);
|
|
|
|
|
} finally {
|
|
|
|
|
await restoreSql.end();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
20_000,
|
|
|
|
|
);
|
2026-04-02 11:51:40 -05:00
|
|
|
});
|