Create user_actions and user_action_events tables

[anjolovic]

Summary

• This work is behind a feature toggle (flipper): NO
• Creating two new database tables (user_actions and user_action_events) to support user action auditing
• Identity team owns and will maintain these components
• This is foundational database work for the user action auditing feature

Related issue(s)

• VI-863

Testing done

• New code is covered by unit tests
• This is a new feature, adding database tables for user action auditing
• Steps to verify:
  1. Run migrations locally: bin/rails db:drop db:create db:schema:load db:migrate
  2. Verify table structure in database matches requirements
  3. Test enum type constraints work for status values
  4. Verify foreign key relationships between tables
  5. Verify boolean constraints prevent three-state values
  6. Confirm indexes are properly created on status field

What areas of the site does it impact?

• Database schema changes only
• No direct user-facing impact yet
• Foundation for future user action auditing features

Acceptance criteria

• I fixed|updated|added unit tests and integration tests for each feature (if applicable)
• No error nor warning in the console
• No sensitive information is captured in logging, hardcoded, or specs
• Documentation has been updated (migrations are self-documenting with comments)
• Schema changes are clean with no unrelated tables or changes included

Database Changes

• Created user_actions table with:
  • Core fields: uuid (as primary key), acting_user_account_id, subject_user_account_id, user_action_event_id
  • Status using PostgreSQL native enum type (initial, success, error) with built-in index
  • Additional columns: user_verified (boolean, not null), ip_address, device_info
  • Timestamps (created_at, updated_at)
  • All required fields have null: false constraint
• Created user_action_events table with:
  • Fields: id (auto-generated), details (not null)
  • Timestamps (created_at, updated_at)
• Added foreign key relationships following strong_migrations best practices:
  • user_actions.acting_user_account_id -> user_accounts.id
  • user_actions.subject_user_account_id -> user_accounts.id
  • user_actions.user_action_event_id -> user_action_events.id
  • All foreign keys are validated in a separate migration

Implementation Details

1. Table Structure:

   • Follows the provided diagram exactly
   • Includes additional fields from requirements
   • Uses proper data types for each column

2. Constraints and Validations:

   • Boolean fields prevent three-state values with null: false
   • Foreign keys are properly validated
   • Status field uses native PostgreSQL enum

3. Indexing:

   • Status field indexed directly on enum definition
   • Foreign key fields automatically indexed

Requested Feedback

Please review:

1. Table structure alignment with diagram
2. Additional columns implementation
3. PostgreSQL native enum implementation for status
4. Foreign key implementation following strong_migrations pattern
5. Index implementation directly on enum field
6. Null constraints on required fields

[stevenjcumming]

This file is missing an end of file new line

[anjolovic]

I believe it's fixed now. Also, I am going to add this to RuboCop to always check and enforce newlines before commits.

   Layout/TrailingEmptyLines:
     Enabled: true
     EnforcedStyle: final_newline

[rileyanderson]

You could see if your text editor has a setting. In vscode it's:

This will ensure all the files you commit, not just ruby, have a new line

[rileyanderson]

We could use references here and then remove the add_foreign_keys at the end. This will make strong migrations happy and then we won't need the extra migrations to validate an empty table. This will also add an index to these columns, which we'll need.

t.references :acting_user_account, null: false, foreign_key: { to_table: :user_accounts }, type: :uuid
t.references :subject_user_account, null: false, foreign_key: { to_table: :user_accounts }, type: :uuid

[anjolovic]

Thanks! I've updated to use references.

[rileyanderson]

You don't need to set foreign_key: { validate: false } since these are empty

t.references :user_action_event, null: false, foreign_key: true

[anjolovic]

Good point! Removed validate: false since we're creating empty tables. This aligns better with strong_migrations recommendations since there's no existing data to validate. Also removed the separate validation migration since it's no longer needed.

[rileyanderson]

I believe this should be a text column. I don't think we are going to parse the user agent

[anjolovic]

Changed device_info from jsonb to text since we won't be parsing the user agent. Thanks for catching that!

[rileyanderson]

It looks like the schema didn't get updated with the latest changes. Could you re-run the migrations?

[anjolovic]

Yes. Working on fixing it.

[anjolovic]

I believe it's fixed now.

[anjolovic]

I am working on fixing the schema.rb to pick these changes.