feat(db): user invitations and rbac (#1937)

* feat: add user_canvases table and related functionality

- Created a new table "user_canvases" to store user-specific canvas data including scale, x, and y coordinates.
- Implemented row-level security and foreign key constraints for user and canvas references.
- Added migration to copy existing canvas data to the new user_canvases table.
- Updated project and canvas routers to handle user canvas retrieval and updates.
- Introduced utility functions for creating default user canvas entries.
- Adjusted relevant components to utilize user canvas data instead of general canvas data.

* feat: add project invitations and roles

- Introduced a new "project_invitations" table with fields for inviter, invitee, status, role, and expiration.
- Created ENUM types for "invitation_status" and "project_role".
- Updated "user_projects" to include a role field and set default values for existing records.
- Added foreign key constraints for project and user references in invitations.
- Implemented row-level security for the new invitations table.
- Updated relevant schemas and seed data to accommodate new functionality.

Author: satya-nutella

apps/backend/supabase/migrations/0004_pink_expediter.sql

@@ -0,0 +1,26 @@
+CREATE TYPE "public"."invitation_status" AS ENUM('pending', 'accepted', 'expired');--> statement-breakpoint
+CREATE TYPE "public"."project_role" AS ENUM('owner', 'admin');--> statement-breakpoint
+CREATE TABLE "project_invitations" (
+	"id" uuid PRIMARY KEY DEFAULT gen_random_uuid() NOT NULL,
+	"project_id" uuid NOT NULL,
+	"inviter_id" uuid NOT NULL,
+	"invitee_email" varchar NOT NULL,
+	"status" "invitation_status" DEFAULT 'pending' NOT NULL,
+	"token" varchar NOT NULL,
+	"role" "project_role" NOT NULL,
+	"expires_at" timestamp with time zone NOT NULL,
+	"created_at" timestamp with time zone DEFAULT now() NOT NULL,
+	"updated_at" timestamp with time zone DEFAULT now() NOT NULL,
+	CONSTRAINT "project_invitations_token_unique" UNIQUE("token")
+);
+--> statement-breakpoint
+ALTER TABLE "project_invitations" ENABLE ROW LEVEL SECURITY;--> statement-breakpoint
+
+ALTER TABLE "user_projects" ADD COLUMN "role" "project_role";--> statement-breakpoint
+-- Set all existing records to 'owner' role (assuming existing users should be owners)
+UPDATE "user_projects" SET "role" = 'owner' WHERE "role" IS NULL;
+-- Make the role column NOT NULL after setting default values
+ALTER TABLE "user_projects" ALTER COLUMN "role" SET NOT NULL;
+
+ALTER TABLE "project_invitations" ADD CONSTRAINT "project_invitations_project_id_projects_id_fk" FOREIGN KEY ("project_id") REFERENCES "public"."projects"("id") ON DELETE cascade ON UPDATE cascade;--> statement-breakpoint
+ALTER TABLE "project_invitations" ADD CONSTRAINT "project_invitations_inviter_id_users_id_fk" FOREIGN KEY ("inviter_id") REFERENCES "public"."users"("id") ON DELETE cascade ON UPDATE cascade;