Developer guidesData model
Data model reference (Database & subgraph schema)
Technical reference for data schemas - database tables and subgraph entities
This reference documents the data models used throughout the Asset Tokenization Kit. The platform uses two data layers: a PostgreSQL database managed by Drizzle ORM for off-chain data, and a TheGraph subgraph for indexed blockchain data.
Data architecture overview
Off-Chain Data (PostgreSQL + Drizzle)
├── Authentication & Users
├── KYC Profiles
├── Exchange Rates
└── Settings
On-Chain Data (TheGraph Subgraph)
├── Accounts & Identities
├── Tokens & Balances
├── Compliance & Access Control
├── Events & Transactions
└── Statistics & AnalyticsData flow:
- Blockchain events → TheGraph indexer → GraphQL API → dApp
- User actions → dApp → PostgreSQL → API responses
- Transaction metadata → Both systems for complete view
Data schemas
All database schemas are defined in
kit/dapp/src/lib/db/schemas/
using Drizzle ORM.
Authentication schema
Location:
auth.ts
user table
Stores user accounts and authentication metadata.
Schema:
{
id: string; // Primary key (UUID)
name: string; // User display name
email: string; // Unique email address
emailVerified: boolean; // Email verification status
image: string | null; // Profile image URL
createdAt: Date; // Account creation timestamp
updatedAt: Date; // Last update timestamp
role: UserRole | null; // 'admin' | 'user'
banned: boolean | null; // Ban status
banReason: string | null; // Reason for ban
banExpires: Date | null; // Ban expiration date
wallet: Address | null; // Connected wallet address
lastLoginAt: Date | null; // Last login timestamp
// Multi-factor authentication
pincodeEnabled: boolean; // PIN code MFA enabled
pincodeVerificationId: string | null;
twoFactorEnabled: boolean; // TOTP 2FA enabled
twoFactorVerificationId: string | null;
secretCodesConfirmed: boolean; // Backup codes confirmed
secretCodeVerificationId: string | null;
}Indexes:
- Primary key:
id - Unique:
email
Relationships:
sessions(one-to-many)accounts(one-to-many) - OAuth providerskycProfiles(one-to-one)apikeys(one-to-many)passkeys(one-to-many)
session table
Active user sessions with device tracking.
Schema:
{
id: string; // Primary key
expiresAt: Date; // Session expiration
token: string; // Unique session token
createdAt: Date; // Creation timestamp
updatedAt: Date; // Last activity timestamp
ipAddress: string | null; // Client IP address
userAgent: string | null; // Browser/device info
userId: string; // FK to user.id
impersonatedBy: string | null; // Admin impersonation tracking
}Indexes:
- Primary key:
id - Unique:
token - Foreign key:
userId→user.id(cascade delete)
account table
OAuth provider accounts linked to users.
Schema:
{
id: string; // Primary key
accountId: string; // Provider-specific ID
providerId: string; // Provider name (google, github, etc.)
userId: string; // FK to user.id
accessToken: string | null; // OAuth access token
refreshToken: string | null; // OAuth refresh token
idToken: string | null; // OAuth ID token
accessTokenExpiresAt: Date | null;
refreshTokenExpiresAt: Date | null;
scope: string | null; // OAuth scopes
password: string | null; // Hashed password for credentials provider
createdAt: Date; // Account link timestamp
updatedAt: Date; // Last token refresh
}Foreign keys: userId → user.id (cascade delete)
verification table
Email verification and password reset tokens.
Schema:
{
id: string; // Primary key
identifier: string; // Email or phone number
value: string; // Verification code/token
expiresAt: Date; // Expiration timestamp
createdAt: Date; // Creation timestamp
updatedAt: Date; // Last update timestamp
}apikey table
API keys for programmatic access with rate limiting.
Schema:
{
id: string; // Primary key
name: string | null; // Human-readable name
start: string | null; // Visible key prefix
prefix: string | null; // Key prefix for identification
key: string; // Hashed API key
userId: string; // FK to user.id
// Rate limiting
refillInterval: number | null; // Token bucket refill interval (ms)
refillAmount: number | null; // Tokens added per interval
lastRefillAt: Date | null; // Last bucket refill time
rateLimitEnabled: boolean; // Rate limiting active
rateLimitTimeWindow: number; // Window size (ms, default 60000)
rateLimitMax: number; // Max requests per window (default 60)
requestCount: number | null; // Current request count
remaining: number | null; // Remaining tokens
lastRequest: Date | null; // Last request timestamp
// Lifecycle
enabled: boolean; // Key active status
expiresAt: Date | null; // Expiration date
createdAt: Date; // Creation timestamp
updatedAt: Date; // Last update timestamp
// Metadata
permissions: string | null; // JSON permissions array
metadata: string | null; // JSON metadata object
}Foreign keys: userId → user.id (cascade delete)
passkey table
WebAuthn passkeys for passwordless authentication.
Schema:
{
id: string; // Primary key
name: string | null; // User-assigned name
publicKey: string; // Public key for verification
userId: string; // FK to user.id
credentialID: string; // Unique credential identifier
counter: number; // Signature counter
deviceType: string; // 'platform' | 'cross-platform'
backedUp: boolean; // Credential backup status
transports: string | null; // Supported transports (JSON array)
createdAt: Date | null; // Registration timestamp
aaguid: string | null; // Authenticator GUID
}Foreign keys: userId → user.id (cascade delete)
KYC schema
Location:
kyc.ts
kyc_profiles table
User KYC/identity verification data.
Schema:
{
id: string; // Primary key
userId: string; // FK to user.id (unique)
firstName: string; // Legal first name
lastName: string; // Legal last name
dob: Date; // Date of birth
country: string; // ISO country code
residencyStatus: ResidencyStatus; // 'citizen' | 'permanent_resident' | 'temporary_resident'
nationalId: string; // National ID number
createdAt: Date; // Profile creation timestamp
updatedAt: Date; // Last update timestamp
}Indexes:
- Primary key:
id - Unique:
userId - Index:
country,firstName,lastName
Foreign keys: userId → user.id (cascade delete)
Types exported:
KycProfile- Select typeNewKycProfile- Insert type
Exchange rates schema
Location:
exchange-rates.ts
Dual-table design optimized for fast current rate access and historical analysis.
currencies table
ISO-4217 currency reference data.
Schema:
{
code: string; // Primary key (3-char ISO code)
name: string; // Full currency name
decimals: string; // Decimal places (0-8, default 2)
}fx_rates table
Time-series exchange rate history.
Schema:
{
baseCode: string; // FK to currencies.code
quoteCode: string; // FK to currencies.code
provider: string; // Rate provider ('ECB', 'er-api', 'manual')
effectiveAt: Date; // When rate became effective
rate: string; // Decimal(38,18) - high precision
createdAt: Date; // Record creation time
}Primary key: (baseCode, quoteCode, provider, effectiveAt)
Indexes:
idx_fx_rates_base_quote_ts: Forward pair lookupsidx_fx_rates_quote_base_ts: Reverse pair lookupsidx_fx_rates_provider_ts: Provider-specific queries
Design notes:
- Composite key ensures uniqueness per provider/time
- Designed for monthly partitioning
- High-precision rates support both fiat and crypto
fx_rates_latest table
Current exchange rates cache for O(1) retrieval.
Schema:
{
baseCode: string; // FK to currencies.code
quoteCode: string; // FK to currencies.code
provider: string; // Rate provider
rate: string; // Current rate (Decimal 38,18)
effectiveAt: Date; // When rate became effective
updatedAt: Date; // Last update timestamp
}Primary key: (baseCode, quoteCode, provider)
Indexes:
idx_fx_latest_quote_base: Reverse lookupsidx_fx_latest_provider: Provider queries
Design notes:
- Small table (<1000 rows) stays in memory
- UPSERT on rate updates
- Sub-millisecond p99 latency
Settings schema
Location:
settings.ts
settings table
Application-wide configuration key-value store.
Schema:
{
key: string; // Primary key
value: string; // Setting value (JSON if complex)
lastUpdated: Date; // Last modification timestamp
}Valid keys:
BASE_CURRENCY- Default currency (default: 'EUR')SYSTEM_ADDRESS- Deployed system contract addressSYSTEM_ADDONS_SKIPPED- User skipped addon setup (default: 'false')
Default values defined in DEFAULT_SETTINGS constant.
Location:
schema.graphql
The subgraph indexes all blockchain events and maintains denormalized views for efficient querying.
Core entities
Account
Represents any Ethereum address (EOA or contract).
Fields:
type Account @entity {
id: Bytes! # Ethereum address
isContract: Boolean! # Smart contract vs EOA
contractName: String # Name if known contract
balances: [TokenBalance!]! # Token holdings
stats: AccountStatsState # Aggregated metrics
systemStats: [AccountSystemStatsState!]!
tokenFactoryStats: [AccountTokenFactoryStatsState!]!
identities: [Identity!]! # Linked identities
registeredIdentities: [RegisteredIdentity!]!
}Relationships:
- One-to-many:
balances,identities,registeredIdentities - One-to-one:
stats
Event
Immutable blockchain event log.
Fields:
type Event @entity(immutable: true) {
id: Bytes! # txHash + logIndex
eventName: String! # Event signature name
txIndex: BigInt! # Log index in transaction
blockNumber: BigInt! # Block height
blockTimestamp: BigInt! # Unix timestamp
transactionHash: Bytes! # Transaction hash
emitter: Account! # Contract that emitted event
sender: Account! # Transaction sender
involved: [Account!]! # All accounts in event
values: [EventValue!]! # Event parameters
}Derived fields: values from EventValue.entry
System
ATK system deployment with all registries.
Fields:
type System @entity {
id: Bytes! # System contract address
deployedInTransaction: Bytes! # Deployment tx hash
account: Account # Account representation
compliance: Compliance # Compliance engine
identityRegistryStorage: IdentityRegistryStorage
identityFactory: IdentityFactory
identityRegistry: IdentityRegistry
trustedIssuersRegistry: TrustedIssuersRegistry
topicSchemeRegistry: TopicSchemeRegistry
tokenFactoryRegistry: TokenFactoryRegistry
complianceModuleRegistry: ComplianceModuleRegistry
systemAddonRegistry: SystemAddonRegistry
systemAccessManager: SystemAccessManager
organisationIdentity: Identity # Issuer identity
systemStats: SystemStatsState # Aggregated metrics
tokenTypeStats: [TokenTypeStatsState!]
identityStats: IdentityStatsState
}Token entities
Token
ERC-3643 security token.
Fields:
type Token @entity {
id: Bytes! # Token contract address
name: String! # Token name
symbol: String! # Token symbol
decimals: Int! # Decimal places
tokenType: String! # 'bond' | 'equity' | 'fund' | 'stablecoin' | 'deposit'
totalSupply: BigDecimal! # Current total supply
cap: BigDecimal # Supply cap (if capped)
paused: Boolean! # Pause status
compliance: Compliance! # Compliance contract
identityRegistry: IdentityRegistry! # Identity registry
balances: [TokenBalance!]! # All holder balances
transfers: [Transfer!]! # Transfer history
mints: [Mint!]! # Mint events
burns: [Burn!]! # Burn events
complianceModules: [TokenComplianceModule!]!
# Bond-specific fields
maturityDate: BigInt # Unix timestamp
faceValue: BigDecimal # Per-unit face value
denominationAsset: Token # Denomination currency
isMatured: Boolean # Maturity status
# Statistics
holderCount: BigInt! # Number of unique holders
transferCount: BigInt! # Total transfers
mintCount: BigInt! # Total mints
burnCount: BigInt! # Total burns
}TokenBalance
Account's balance in a specific token.
Fields:
type TokenBalance @entity {
id: Bytes! # token.id + account.id
token: Token! # Token reference
account: Account! # Holder reference
balance: BigDecimal! # Current balance
frozenBalance: BigDecimal! # Frozen amount
isFrozen: Boolean! # Full freeze status
lastUpdated: BigInt! # Last change timestamp
}Indexes: Composite ID enables fast token/account lookups
Transfer
Token transfer event.
Fields:
type Transfer @entity(immutable: true) {
id: Bytes! # txHash + logIndex
token: Token! # Token transferred
from: Account! # Sender
to: Account! # Recipient
value: BigDecimal! # Amount transferred
blockNumber: BigInt! # Block height
blockTimestamp: BigInt! # Unix timestamp
transactionHash: Bytes! # Transaction hash
}Compliance entities
Compliance
Main compliance contract for a token.
Fields:
type Compliance @entity {
id: Bytes! # Compliance contract address
token: Token! # Associated token
modules: [ComplianceModule!]! # Active modules
requiredClaimTopics: [BigInt!]! # Required claim topics
}ComplianceModule
Individual compliance rule module.
Fields:
type ComplianceModule @entity {
id: Bytes! # Module contract address
name: String! # Module type name
moduleType: String! # Classification
isGlobal: Boolean! # System-wide vs token-specific
tokens: [TokenComplianceModule!]! # Tokens using module
}TokenComplianceModule
Junction table for token-module relationship.
Fields:
type TokenComplianceModule @entity {
id: Bytes! # Composite ID
token: Token! # Token reference
module: ComplianceModule! # Module reference
params: Bytes! # ABI-encoded parameters
addedAt: BigInt! # Addition timestamp
removedAt: BigInt # Removal timestamp (null if active)
isActive: Boolean! # Currently active
}Identity entities
Identity
On-chain identity contract (ERC-734/735).
Fields:
type Identity @entity {
id: Bytes! # Identity contract address
account: Account! # Linked account
keys: [IdentityKey!]! # Management keys
claims: [IdentityClaim!]! # Attached claims
isVerified: Boolean! # Verification status
country: Int # Country code (if registered)
}IdentityClaim
Claim attached to an identity (ERC-735).
Fields:
type IdentityClaim @entity {
id: Bytes! # Claim ID
identity: Identity! # Identity owning claim
topic: BigInt! # Claim topic
scheme: BigInt! # Signature scheme
issuer: Account! # Claim issuer
signature: Bytes! # Claim signature
data: Bytes! # Claim data
uri: String! # Claim URI
addedAt: BigInt! # Addition timestamp
removedAt: BigInt # Removal timestamp
isActive: Boolean! # Currently valid
}RegisteredIdentity
Identity registered in the identity registry.
Fields:
type RegisteredIdentity @entity {
id: Bytes! # Registry address + account
account: Account! # Registered account
identity: Identity! # Linked identity contract
country: Int! # Country code
registeredAt: BigInt! # Registration timestamp
updatedAt: BigInt! # Last update
isVerified: Boolean! # Verification status
}Access control entities
AccessControl
Role-based access control configuration.
Fields:
type AccessControl @entity {
id: Bytes! # Access control address
system: System! # Owning system
roleAdmins: [AccessControlRoleAdmin!]!
# Core roles
admin: [Account!]!
# People roles
systemManager: [Account!]!
identityManager: [Account!]!
tokenManager: [Account!]!
complianceManager: [Account!]!
addonManager: [Account!]!
claimPolicyManager: [Account!]!
claimIssuer: [Account!]!
auditor: [Account!]!
organisationIdentityManager: [Account!]!
# System roles
systemModule: [Account!]!
identityRegistryModule: [Account!]!
tokenFactoryRegistryModule: [Account!]!
tokenFactoryModule: [Account!]!
addonRegistryModule: [Account!]!
addonModule: [Account!]!
# Asset roles
governance: [Account!]!
supplyManagement: [Account!]!
custodian: [Account!]!
emergency: [Account!]!
# Addon roles
fundsManager: [Account!]!
saleAdmin: [Account!]!
}Statistics entities
SystemStatsState
Aggregated system-wide metrics.
Fields:
type SystemStatsState @entity {
id: Bytes! # System address
system: System! # System reference
totalTokens: BigInt! # Total tokens deployed
totalHolders: BigInt! # Unique token holders
totalTransfers: BigInt! # All-time transfers
totalVolume: BigDecimal! # All-time transfer volume
totalIdentities: BigInt! # Registered identities
lastUpdated: BigInt! # Last metric update
}TokenTypeStatsState
Metrics by token type.
Fields:
type TokenTypeStatsState @entity {
id: Bytes! # system.id + tokenType
system: System! # System reference
tokenType: String! # 'bond' | 'equity' | etc.
count: BigInt! # Number of this type
totalSupply: BigDecimal! # Combined supply
transferCount: BigInt! # Total transfers
volume: BigDecimal! # Transfer volume
}CountryAssetCount
Per-system counter of assets grouped by ISO 3166-1 country code.
Fields:
type CountryAssetCount @entity {
id: Bytes! # system.id + 16-bit country code
system: System! # Parent system aggregate
countryCode: BigInt! # Numeric ISO 3166-1 code (uint16)
assetCount: BigInt! # Number of assets created in this jurisdiction
}Usage:
- Incremented whenever a token factory emits a
*Createdevent with a jurisdiction code (bonds, deposits, equities, funds, stablecoins). - Enables geography dashboards by querying
countryAssetCountsfiltered bysystemand slicing by the encoded country code. - The dApp ships a reusable
<WorldHeatmap>widget (@/components/stats/world-heatmap) that plotstotalsByCountryas a choropleth with ISO 3166-1 numeric keys, giving operations teams an instant view of market coverage. - The ORPC resolver pre-fills every ISO 3166-1 numeric code with a zero balance, so consumers can diff against static country catalogs without adding null guards.
- Preserves the numeric ISO 3166-1 code in
countryCode, making it easy to map to legacy compliance datasets that use numeric values.
API access (ORPC):
import { orpc } from "@/orpc/orpc-client";
import { useSuspenseQuery } from "@tanstack/react-query";
import { WorldHeatmap } from "@/components/stats/world-heatmap";
// Server-side usage (e.g., TanStack Start loader or server function)
const { data } = useSuspenseQuery(
orpc.system.stats.countryAssetCount.queryOptions({ input: {} })
);
return (
<WorldHeatmap data={data.totalsByCountry} legendTitle="Assets per country" />
);The route resolves the active system through systemMiddleware, fetches the
CountryAssetCount aggregates from the subgraph, and returns a record keyed by
ISO 3166-1 numeric codes. Jurisdictions without on-chain activity are still
present with a zero count, allowing deterministic joins on the client. The same
value is persisted on each entity via the countryCode BigInt, mirroring the
on-chain payload for downstream reconciliation.
Use the heatmap in tandem with observability dashboards—operations can compare the UI choropleth with the jurisdictional panels exposed via the Helm-deployed monitoring stack to verify that asset launches stay within targeted regions.
Querying data
import { db } from "@/lib/db";
import { user, kycProfiles } from "@/lib/db/schemas";
import { eq } from "drizzle-orm";
// Get user with KYC profile
const userWithKyc = await db
.select()
.from(user)
.leftJoin(kycProfiles, eq(kycProfiles.userId, user.id))
.where(eq(user.id, userId))
.get();
// Get latest exchange rate
import { fxRatesLatest } from "@/lib/db/schemas/exchange-rates";
const rate = await db
.select()
.from(fxRatesLatest)
.where(
and(
eq(fxRatesLatest.baseCode, "USD"),
eq(fxRatesLatest.quoteCode, "EUR"),
eq(fxRatesLatest.provider, "ECB")
)
)
.get();# Get token with holders
query GetToken($id: Bytes!) {
token(id: $id) {
id
name
symbol
decimals
totalSupply
holderCount
balances(first: 10, orderBy: balance, orderDirection: desc) {
account {
id
}
balance
}
}
}
# Get account's portfolio
query GetPortfolio($account: Bytes!) {
account(id: $account) {
balances(where: { balance_gt: "0" }) {
token {
id
name
symbol
decimals
}
balance
frozenBalance
}
}
}
# Get recent transfers
query GetRecentTransfers($token: Bytes!) {
transfers(
where: { token: $token }
first: 20
orderBy: blockTimestamp
orderDirection: desc
) {
id
from {
id
}
to {
id
}
value
blockTimestamp
}
}Data relationships
Cross-system relationships
-
User → Wallet → Identity:
- Database:
user.wallet(Address) - Subgraph:
Account.identities→Identity - Link:
user.wallet === Account.id
- Database:
-
User → KYC → Identity Registration:
- Database:
user.id→kycProfiles.userId - Subgraph:
Account.registeredIdentities→RegisteredIdentity - Sync: KYC approval triggers identity registration on-chain
- Database:
-
Token → Holders → Users:
- Subgraph:
Token.balances→TokenBalance.account - Database:
Account.id→user.wallet - Join: Match addresses to get user profiles
- Subgraph:
Schema migrations
Database migrations
Managed by Drizzle Kit in
kit/dapp/drizzle.config.ts.
Generate migration:
cd kit/dapp
bun run db:generateApply migration:
bun run db:migratePush schema directly (dev only):
bun run db:pushSubgraph updates
Subgraph schema changes require redeployment.
Update schema:
- Edit
kit/subgraph/schema.graphql - Run
bun run subgraph:codegen - Update mappings in
kit/subgraph/src/ - Redeploy:
bun run deploy
Next steps
- Deploy infrastructure: See Deployment Guide for production setup
- Query APIs: Review API Reference for data access patterns
- Contract interactions: Check Contract Reference for on-chain operations
- Review code: Explore implementations in
kit/dapp/src/lib/db/andkit/subgraph/src/
For testing strategies that validate data integrity, continue to Testing & QA.
Data model overview
The Asset Tokenization Kit employs a dual-layer data architecture that combines off-chain PostgreSQL storage with on-chain TheGraph indexing. This hybrid approach delivers fast user experiences while maintaining an immutable audit trail of all blockchain state changes, enabling both real-time operational queries and comprehensive historical analysis.
Token entities
Security token entities form the core of ATK's digital asset infrastructure, tracking ownership, balances, and transfer history across all asset types. These entities connect smart contract state with TheGraph's indexing layer to power real-time portfolio views, compliance monitoring, and settlement tracking.