Email verification DB fields

[pdeziel]

Scope of changes

This adds a migration to add the email verification fields to the user table in the DB and updates the SQL handling code to create/read/update the new fields.

Fixes SC-14153

Type of change

• new feature
• bug fix
• documentation
• testing
• technical debt
• other (describe)

Acceptance criteria

Describe how reviewers can test this change to be sure that it works correctly. Add a checklist if possible.

Author checklist

• I have manually tested the change and/or added automation in the form of unit tests or integration tests
• I have updated the dependencies list
• I have recompiled and included new protocol buffers to reflect changes I made
• I have added new test fixtures as needed to support added tests
• Check this box if a reviewer can merge this pull request after approval (leave it unchecked if you want to do it yourself)
• I have moved the associated Shortcut story to "Ready for Review"

Reviewer(s) checklist

• Any new user-facing content that has been added for this PR has been QA'ed to ensure correct grammar, spelling, and understandability.
• Are there any TODOs in this PR that should be turned into stories?

[shortcut-integration]

This pull request has been linked to Shortcut Story #14153: Email Token Database Migration.

[pdeziel]

I tried to add a UNIQUE constraint here because we will need to look up the user record by the token. However, it seems that it's not allowed for the ALTER TABLE statement. Realistically it shouldn't matter since it's unlikely that two hashes would be the same but I was wondering if we wanted the constraint anyway.

[bbengfort]

The UNIQUE constraint also makes lookups faster since there is an index, so we probably would want the constraint. When you say it's not allowed is the problem that you can't do

ALTER TABLE users ADD COLUMN email_verification_token TEXT UNIQUE DEFAULT NULL?

Is it possible to do

CREATE UNIQUE INDEX unique_email_verification_token ON users (email_verification_token);?

(note that SQLite does allow nullable unique fields and multiple NULL values do not count towards uniqueness -- but this is a SQLite thing not a SQL thing -- https://stackoverflow.com/questions/22699409/sqlite-null-and-unique).

[pdeziel]

Thanks, I wasn't able to apply the constraint on the token column but I was able to add a unique index.

[bbengfort]

Looks good - thanks for updating the model!

[bbengfort]

The UNIQUE constraint also makes lookups faster since there is an index, so we probably would want the constraint. When you say it's not allowed is the problem that you can't do

ALTER TABLE users ADD COLUMN email_verification_token TEXT UNIQUE DEFAULT NULL?

Is it possible to do

CREATE UNIQUE INDEX unique_email_verification_token ON users (email_verification_token);?

(note that SQLite does allow nullable unique fields and multiple NULL values do not count towards uniqueness -- but this is a SQLite thing not a SQL thing -- https://stackoverflow.com/questions/22699409/sqlite-null-and-unique).