Junie: fix token authentication

database/schema.sql

@@ -39,4 +39,45 @@ CREATE TABLE user_roles (
 	rid	text not null,
 	FOREIGN KEY(uid) REFERENCES user(id),
 	FOREIGN KEY(rid) REFERENCES roles(id)
-);
+);
+
+-- Add permissions table
+CREATE TABLE permissions (
+    id TEXT PRIMARY KEY,
+    resource TEXT NOT NULL,
+    action TEXT NOT NULL,
+    description TEXT
+);
+
+-- Link roles to permissions
+CREATE TABLE role_permissions (
+    id TEXT PRIMARY KEY,
+    rid TEXT NOT NULL,
+    pid TEXT NOT NULL,
+    FOREIGN KEY(rid) REFERENCES roles(id),
+    FOREIGN KEY(pid) REFERENCES permissions(id)
+);
+
+-- Add default permissions
+INSERT INTO permissions (id, resource, action, description) VALUES 
+    ('perm_db_read', 'database_credentials', 'read', 'Read database credentials'),
+    ('perm_db_write', 'database_credentials', 'write', 'Modify database credentials'),
+    ('perm_user_manage', 'users', 'manage', 'Manage user accounts'),
+    ('perm_token_manage', 'tokens', 'manage', 'Manage authentication tokens');
+
+-- Add default roles
+INSERT INTO roles (id, role) VALUES 
+    ('role_admin', 'admin'),
+    ('role_db_operator', 'db_operator'),
+    ('role_user', 'user');
+
+-- Grant permissions to admin role
+INSERT INTO role_permissions (id, rid, pid) VALUES 
+    ('rp_admin_db_read', 'role_admin', 'perm_db_read'),
+    ('rp_admin_db_write', 'role_admin', 'perm_db_write'),
+    ('rp_admin_user_manage', 'role_admin', 'perm_user_manage'),
+    ('rp_admin_token_manage', 'role_admin', 'perm_token_manage');
+
+-- Grant database access to db_operator role
+INSERT INTO role_permissions (id, rid, pid) VALUES 
+    ('rp_dbop_db_read', 'role_db_operator', 'perm_db_read');