Spring Security: RBAC ( Laravel Style )

-- 1. Table Users (Jetstream Style)
CREATE TABLE users (
    id BIGINT IDENTITY(1,1) PRIMARY KEY,
    username NVARCHAR(255) NOT NULL UNIQUE,
    password NVARCHAR(255) NOT NULL,
    email NVARCHAR(255) UNIQUE,
    full_name NVARCHAR(255), -- รองรับภาษาไทย Thai_100_CI_AS
    profile_photo_path NVARCHAR(2048),
    created_at DATETIME2 DEFAULT GETDATE(),
    updated_at DATETIME2
);

-- 2. Table Roles (Spatie Style)
CREATE TABLE roles (
    id BIGINT IDENTITY(1,1) PRIMARY KEY,
    name NVARCHAR(100) NOT NULL UNIQUE, -- เช่น ROLE_ADMIN
    guard_name NVARCHAR(50) DEFAULT 'web'
);

-- 3. Table Permissions
CREATE TABLE permissions (
    id BIGINT IDENTITY(1,1) PRIMARY KEY,
    name NVARCHAR(100) NOT NULL UNIQUE, -- เช่น user-create
    guard_name NVARCHAR(50) DEFAULT 'web'
);

-- 4. User Has Roles (Pivot)
CREATE TABLE model_has_roles (
    role_id BIGINT NOT NULL,
    model_id BIGINT NOT NULL, -- user id
    PRIMARY KEY (role_id, model_id),
    CONSTRAINT fk_role FOREIGN KEY (role_id) REFERENCES roles(id) ON DELETE CASCADE,
    CONSTRAINT fk_user_role FOREIGN KEY (model_id) REFERENCES users(id) ON DELETE CASCADE
);

-- 5. Role Has Permissions (Pivot)
CREATE TABLE role_has_permissions (
    permission_id BIGINT NOT NULL,
    role_id BIGINT NOT NULL,
    PRIMARY KEY (permission_id, role_id),
    CONSTRAINT fk_perm FOREIGN KEY (permission_id) REFERENCES permissions(id) ON DELETE CASCADE,
    CONSTRAINT fk_role_perm FOREIGN KEY (role_id) REFERENCES roles(id) ON DELETE CASCADE
);