fix(server): use timestamp with timezone (#7847 )

fix(admin): organize admin panel (#7840 )
fix(admin): handle error login status (#7646 )
2026-02-04 16:44:56 +00:00 · 2024-08-13 15:32:24 +08:00 · 2024-08-13 14:51:54 +08:00 · 2024-08-13 14:51:54 +08:00 · 2024-08-13 14:51:54 +08:00 · 2024-08-13 14:51:31 +08:00
1472 changed files with 55538 additions and 19909 deletions
--- a/.env.template
+++ b/.env.template
@@ -1,14 +1,8 @@
-ENABLE_PLUGIN=
-ENABLE_TEST_PROPERTIES=
-ENABLE_BC_PROVIDER=
 CHANGELOG_URL=
 ENABLE_PRELOADING=
-ENABLE_NEW_SETTING_MODAL=
-ENABLE_SQLITE_PROVIDER=
 ENABLE_NEW_SETTING_UNSTABLE_API=
-ENABLE_NOTIFICATION_CENTER=
-ENABLE_CLOUD=
-ENABLE_MOVE_DATABASE=
-SHOULD_REPORT_TRACE=
-TRACE_REPORT_ENDPOINT=
-CAPTCHA_SITE_KEY=
+ENABLE_CAPTCHA=
+CAPTCHA_SITE_KEY=
+ENABLE_ENHANCE_SHARE_MODE=
+ALLOW_LOCAL_WORKSPACE=
+DEBUG_JOTAI=
--- a/.eslintrc.js
+++ b/.eslintrc.js
@@ -247,7 +247,8 @@ const config = {
        'react-hooks/exhaustive-deps': [
          'warn',
          {
-            additionalHooks: 'useAsyncCallback',
+            additionalHooks:
+              '(useAsyncCallback|useCatchEventCallback|useDraggable|useDropTarget)',
          },
        ],
      },
--- a/.github/actions/setup-version/action.yml
+++ b/.github/actions/setup-version/action.yml
@@ -17,7 +17,7 @@ runs:
          PACKAGE_VERSION=$(node -p "require('./package.json').version")
          TIME_VERSION=$(date +%Y%m%d%H%M)
          GIT_SHORT_HASH=$(git rev-parse --short HEAD)
-          APP_VERSION=$PACKAGE_VERSION-nightly-$TIME_VERSION-$GIT_SHORT_HASH
+          APP_VERSION=$PACKAGE_VERSION-nightly-$GIT_SHORT_HASH
        fi
        echo $APP_VERSION
        echo "APP_VERSION=$APP_VERSION" >> "$GITHUB_OUTPUT"
--- a/.github/deployment/front/affine.nginx.conf
+++ b/.github/deployment/front/affine.nginx.conf
@@ -6,6 +6,11 @@ server {
    try_files $uri/index.html $uri/ $uri /admin/index.html;
  }

+  location ~ ^/(_plugin|assets|imgs|js|plugins|static)/ {
+    root /app/dist/;
+    try_files $uri $uri/ =404;
+  }
+
  location / {
    root /app/dist/;
    index index.html;
--- a/.github/helm/affine/Chart.yaml
+++ b/.github/helm/affine/Chart.yaml
@@ -3,4 +3,4 @@ name: affine
 description: AFFiNE cloud chart
 type: application
 version: 0.0.0
-appVersion: "0.15.0"
+appVersion: "0.16.0"
--- a/.github/helm/affine/charts/graphql/Chart.yaml
+++ b/.github/helm/affine/charts/graphql/Chart.yaml
@@ -3,7 +3,7 @@ name: graphql
 description: AFFiNE GraphQL server
 type: application
 version: 0.0.0
-appVersion: "0.15.0"
+appVersion: "0.16.0"
 dependencies:
  - name: gcloud-sql-proxy
    version: 0.0.0
--- a/.github/helm/affine/charts/sync/Chart.yaml
+++ b/.github/helm/affine/charts/sync/Chart.yaml
@@ -3,7 +3,7 @@ name: sync
 description: AFFiNE Sync Server
 type: application
 version: 0.0.0
-appVersion: "0.15.0"
+appVersion: "0.16.0"
 dependencies:
  - name: gcloud-sql-proxy
    version: 0.0.0
--- a/.github/helm/affine/templates/ingress.yaml
+++ b/.github/helm/affine/templates/ingress.yaml
@@ -74,4 +74,11 @@ spec:
                name: affine-web
                port:
                  number: {{ .Values.web.service.port }}
+          - path: /js/worker.(.+).js
+            pathType: ImplementationSpecific
+            backend:
+              service:
+                name: affine-web
+                port:
+                  number: {{ .Values.web.service.port }}
 {{- end }}
--- a/.github/renovate.json
+++ b/.github/renovate.json
@@ -27,7 +27,8 @@
      "matchPackagePatterns": ["^@blocksuite"],
      "excludePackageNames": ["@blocksuite/icons"],
      "rangeStrategy": "replace",
-      "followTag": "canary"
+      "followTag": "canary",
+      "enabled": false
    },
    {
      "groupName": "all non-major dependencies",
--- a/.github/workflows/build-server-image.yml
+++ b/.github/workflows/build-server-image.yml
@@ -58,7 +58,6 @@ jobs:
        run: yarn nx build @affine/web --skip-nx-cache
        env:
          BUILD_TYPE: ${{ github.event.inputs.flavor }}
-          SHOULD_REPORT_TRACE: false
          PUBLIC_PATH: '/'
          SELF_HOSTED: true
          MIXPANEL_TOKEN: ${{ secrets.MIXPANEL_TOKEN }}
@@ -86,7 +85,6 @@ jobs:
        run: yarn nx build @affine/admin --skip-nx-cache
        env:
          BUILD_TYPE: ${{ github.event.inputs.flavor }}
-          SHOULD_REPORT_TRACE: false
          PUBLIC_PATH: '/admin/'
          SELF_HOSTED: true
          MIXPANEL_TOKEN: ${{ secrets.MIXPANEL_TOKEN }}
--- a/.github/workflows/build-test.yml
+++ b/.github/workflows/build-test.yml
@@ -443,6 +443,8 @@ jobs:
          ${{ matrix.tests.script }}
        env:
          DEV_SERVER_URL: http://localhost:8080
+          COPILOT_OPENAI_API_KEY: 1
+          COPILOT_FAL_API_KEY: 1

      - name: Upload test results
        if: ${{ failure() }}
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@@ -45,11 +45,10 @@ jobs:
          R2_ACCESS_KEY_ID: ${{ secrets.R2_ACCESS_KEY_ID }}
          R2_SECRET_ACCESS_KEY: ${{ secrets.R2_SECRET_ACCESS_KEY }}
          BUILD_TYPE: ${{ github.event.inputs.flavor }}
-          SHOULD_REPORT_TRACE: true
-          TRACE_REPORT_ENDPOINT: ${{ secrets.TRACE_REPORT_ENDPOINT }}
          CAPTCHA_SITE_KEY: ${{ secrets.CAPTCHA_SITE_KEY }}
          SENTRY_ORG: ${{ secrets.SENTRY_ORG }}
          SENTRY_PROJECT: 'affine-web'
+          SENTRY_RELEASE: ${{ steps.version.outputs.APP_VERSION }}
          SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
          SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
          PERFSEE_TOKEN: ${{ secrets.PERFSEE_TOKEN }}
@@ -79,8 +78,6 @@ jobs:
          R2_ACCESS_KEY_ID: ${{ secrets.R2_ACCESS_KEY_ID }}
          R2_SECRET_ACCESS_KEY: ${{ secrets.R2_SECRET_ACCESS_KEY }}
          BUILD_TYPE: ${{ github.event.inputs.flavor }}
-          SHOULD_REPORT_TRACE: true
-          TRACE_REPORT_ENDPOINT: ${{ secrets.TRACE_REPORT_ENDPOINT }}
          CAPTCHA_SITE_KEY: ${{ secrets.CAPTCHA_SITE_KEY }}
          SENTRY_ORG: ${{ secrets.SENTRY_ORG }}
          SENTRY_PROJECT: 'affine-admin'
--- a/.github/workflows/release-desktop.yml
+++ b/.github/workflows/release-desktop.yml
@@ -27,6 +27,8 @@ permissions:
  actions: write
  contents: write
  security-events: write
+  id-token: write
+  attestations: write

 env:
  BUILD_TYPE: ${{ github.event.inputs.build-type }}
@@ -56,6 +58,7 @@ jobs:
          SENTRY_PROJECT: 'affine'
          SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
          SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
+          SENTRY_RELEASE: ${{ steps.version.outputs.APP_VERSION }}
          RELEASE_VERSION: ${{ steps.version.outputs.APP_VERSION }}
          SKIP_NX_CACHE: 'true'
          MIXPANEL_TOKEN: ${{ secrets.MIXPANEL_TOKEN }}
@@ -158,6 +161,20 @@ jobs:
          mv packages/frontend/electron/out/*/make/zip/linux/x64/*.zip ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-linux-x64.zip
          mv packages/frontend/electron/out/*/make/*.AppImage ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-linux-x64.appimage

+      - uses: actions/attest-build-provenance@v1
+        if: ${{ matrix.spec.platform == 'darwin' }}
+        with:
+          subject-path: |
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-macos-${{ matrix.spec.arch }}.zip
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-macos-${{ matrix.spec.arch }}.dmg
+
+      - uses: actions/attest-build-provenance@v1
+        if: ${{ matrix.spec.platform == 'linux' }}
+        with:
+          subject-path: |
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-linux-x64.zip
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-linux-x64.appimage
+
      - name: Upload Artifact
        uses: actions/upload-artifact@v4
        with:
@@ -254,6 +271,9 @@ jobs:
      FILES_TO_BE_SIGNED: ${{ steps.get_files_to_be_signed.outputs.FILES_TO_BE_SIGNED }}
    steps:
      - uses: actions/checkout@v4
+      - name: Setup Version
+        id: version
+        uses: ./.github/actions/setup-version
      - name: Setup Node.js
        timeout-minutes: 10
        uses: ./.github/actions/setup-node
@@ -324,6 +344,13 @@ jobs:
          mv packages/frontend/electron/out/*/make/squirrel.windows/x64/*.exe ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-windows-x64.exe
          mv packages/frontend/electron/out/*/make/nsis.windows/x64/*.exe ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-windows-x64.nsis.exe

+      - uses: actions/attest-build-provenance@v1
+        with:
+          subject-path: |
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-windows-x64.zip
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-windows-x64.exe
+            ./builds/affine-${{ needs.before-make.outputs.RELEASE_VERSION }}-${{ env.BUILD_TYPE }}-windows-x64.nsis.exe
+
      - name: Upload Artifact
        uses: actions/upload-artifact@v4
        with:
@@ -364,7 +391,7 @@ jobs:
          path: ./
      - uses: actions/setup-node@v4
        with:
-          node-version: 18
+          node-version: 20
      - name: Generate Release yml
        run: |
          node ./packages/frontend/electron/scripts/generate-yml.js
--- a/.github/workflows/workers.yml
+++ b/.github/workflows/workers.yml
@@ -15,7 +15,7 @@ jobs:
    steps:
      - uses: actions/checkout@v4
      - name: Publish
-        uses: cloudflare/wrangler-action@v3.6.1
+        uses: cloudflare/wrangler-action@v3.7.0
        with:
          apiToken: ${{ secrets.CF_API_TOKEN }}
          accountId: ${{ secrets.CF_ACCOUNT_ID }}
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-20.14.0
+20.15.1
--- a/.yarn/patches/yjs-npm-13.6.18-ad0d5f7c43.patch
+++ b/.yarn/patches/yjs-npm-13.6.18-ad0d5f7c43.patch
@@ -0,0 +1,39 @@
+diff --git a/dist/yjs.cjs b/dist/yjs.cjs
+index d2dc06ae11a6eb44f8c8445d4298c0e89c3e4da2..a30ab04fa9f3b77666939caa88335c68c40f194c 100644
+--- a/dist/yjs.cjs
+++ b/dist/yjs.cjs
+@@ -414,7 +414,7 @@ const equalDeleteSets = (ds1, ds2) => {
+  */
+ 
+ 
+-const generateNewClientId = random__namespace.uint32;
+const generateNewClientId = random__namespace.uint53;
+ 
+ /**
+  * @typedef {Object} DocOpts
+diff --git a/dist/yjs.mjs b/dist/yjs.mjs
+index 20c9e58c32bcb6bc714200a2561fd1f542c49523..14267e5e36d9781ca3810d5b70ff8c051dac779e 100644
+--- a/dist/yjs.mjs
+++ b/dist/yjs.mjs
+@@ -378,7 +378,7 @@ const equalDeleteSets = (ds1, ds2) => {
+  */
+ 
+ 
+-const generateNewClientId = random.uint32;
+const generateNewClientId = random.uint53;
+ 
+ /**
+  * @typedef {Object} DocOpts
+diff --git a/src/utils/Doc.js b/src/utils/Doc.js
+index 62643617c86e57c64dd9babdb792fa8888357ec0..4df5048ab12af1ae0f1154da67f06dce1fda7b49 100644
+--- a/src/utils/Doc.js
+++ b/src/utils/Doc.js
+@@ -20,7 +20,7 @@ import * as map from 'lib0/map'
+ import * as array from 'lib0/array'
+ import * as promise from 'lib0/promise'
+ 
+-export const generateNewClientId = random.uint32
+export const generateNewClientId = random.uint53
+ 
+ /**
+  * @typedef {Object} DocOpts
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -993,14 +993,15 @@ dependencies = [

 [[package]]
 name = "napi"
-version = "3.0.0-alpha.2"
+version = "3.0.0-alpha.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "99d38fbf4cbfd7d2785d153f4dcce374d515d3dabd688504dd9093f8135829d0"
+checksum = "4ec04344cc540f5897e97c9821ab99e7eb276b4dca6f3e6e441dfa72e5bcde70"
 dependencies = [
 "anyhow",
 "bitflags 2.5.0",
 "chrono",
 "ctor",
+ "napi-build",
 "napi-sys",
 "once_cell",
 "serde",
@@ -1015,9 +1016,9 @@ checksum = "e1c0f5d67ee408a4685b61f5ab7e58605c8ae3f2b4189f0127d804ff13d5560a"

 [[package]]
 name = "napi-derive"
-version = "3.0.0-alpha.1"
+version = "3.0.0-alpha.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c230c813bfd4d6c7aafead3c075b37f0cf7fecb38be8f4cf5cfcee0b2c273ad0"
+checksum = "1c6240c4ddca592cde608bbfa26e2af397c3596e413a0c65c9bbcb65c2f1e485"
 dependencies = [
 "cfg-if",
 "convert_case",
@@ -1029,9 +1030,9 @@ dependencies = [

 [[package]]
 name = "napi-derive-backend"
-version = "2.0.0-alpha.1"
+version = "2.0.0-alpha.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4370cc24c2e58d0f3393527b282eb00f1158b304248f549e1ec81bd2927db5fe"
+checksum = "b32dcc50065508fe2f387076c17adbdf10e038d1c080d48b10196813d94ac6a8"
 dependencies = [
 "convert_case",
 "once_cell",
@@ -1535,18 +1536,18 @@ checksum = "61697e0a1c7e512e84a621326239844a24d8207b4669b41bc18b32ea5cbf988b"

 [[package]]
 name = "serde"
-version = "1.0.203"
+version = "1.0.204"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7253ab4de971e72fb7be983802300c30b5a7f0c2e56fab8abfc6a214307c0094"
+checksum = "bc76f558e0cbb2a839d37354c575f1dc3fdc6546b5be373ba43d95f231bf7c12"
 dependencies = [
 "serde_derive",
 ]

 [[package]]
 name = "serde_derive"
-version = "1.0.203"
+version = "1.0.204"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "500cbc0ebeb6f46627f50f3f5811ccf6bf00643be300b4c3eabc0ef55dc5b5ba"
+checksum = "e0cd7e117be63d3c3678776753929474f3b04a43a080c744d6b0ae2a8c28e222"
 dependencies = [
 "proc-macro2",
 "quote",
@@ -1555,9 +1556,9 @@ dependencies = [

 [[package]]
 name = "serde_json"
-version = "1.0.117"
+version = "1.0.120"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "455182ea6142b14f93f4bc5320a2b31c1f266b66a4a5c858b013302a5d8cbfc3"
+checksum = "4e0d21c9a8cae1235ad58a00c11cb40d4b1e5c784f1ef2c537876ed6ffd8b7c5"
 dependencies = [
 "itoa",
 "ryu",
@@ -2178,9 +2179,9 @@ checksum = "daf8dba3b7eb870caf1ddeed7bc9d2a049f3cfdfae7cb521b087cc33ae4c49da"

 [[package]]
 name = "uuid"
-version = "1.9.0"
+version = "1.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3ea73390fe27785838dcbf75b91b1d84799e28f1ce71e6f372a5dc2200c80de5"
+checksum = "81dfa00651efa65069b0b6b651f4aaa31ba9e3c3ce0137aaad053604ee7e0314"
 dependencies = [
 "getrandom",
 "rand",
--- a/README.md
+++ b/README.md
@@ -23,7 +23,7 @@

 <div align="center">
    <a href="https://affine.pro">Home Page</a> |
-    <a href="https://discord.com/invite/yz6tGVsf5p">Discord</a> |
+    <a href="https://discord.gg/whd5mjYqVw">Discord</a> |
    <a href="https://app.affine.pro">Live Demo</a> |
    <a href="https://affine.pro/blog/">Blog</a> |
    <a href="https://docs.affine.pro/docs/">Documentation</a>
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -6,8 +6,8 @@ We recommend users to always use the latest major version. Security updates will

 | Version         | Supported          |
 | --------------- | ------------------ |
-| 0.14.x (stable) | :white_check_mark: |
-| < 0.14.x        | :x:                |
+| 0.15.x (stable) | :white_check_mark: |
+| < 0.15.x        | :x:                |

 ## Reporting a Vulnerability

--- a/docs/reference/package.json
+++ b/docs/reference/package.json
@@ -9,7 +9,7 @@
  "devDependencies": {
    "nodemon": "^3.1.0",
    "serve": "^14.2.1",
-    "typedoc": "^0.25.13"
+    "typedoc": "^0.26.0"
  },
  "nodemonConfig": {
    "watch": [
@@ -19,5 +19,5 @@
    ],
    "ext": "ts,md,json"
  },
-  "version": "0.15.0"
+  "version": "0.16.0"
 }
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@affine/monorepo",
-  "version": "0.15.0",
+  "version": "0.16.0",
  "private": true,
  "author": "toeverything",
  "license": "MIT",
@@ -59,8 +59,8 @@
    "@faker-js/faker": "^8.4.1",
    "@istanbuljs/schema": "^0.1.3",
    "@magic-works/i18n-codegen": "^0.6.0",
-    "@nx/vite": "19.2.3",
-    "@playwright/test": "^1.44.0",
+    "@nx/vite": "^19.5.3",
+    "@playwright/test": "=1.44.1",
    "@taplo/cli": "^0.7.0",
    "@testing-library/react": "^16.0.0",
    "@toeverything/infra": "workspace:*",
@@ -75,7 +75,7 @@
    "@vitest/coverage-istanbul": "1.6.0",
    "@vitest/ui": "1.6.0",
    "cross-env": "^7.0.3",
-    "electron": "^30.1.1",
+    "electron": "~30.2.0",
    "eslint": "^8.57.0",
    "eslint-config-prettier": "^9.1.0",
    "eslint-plugin-import-x": "^0.5.0",
@@ -95,7 +95,7 @@
    "nanoid": "^5.0.7",
    "nx": "^19.0.0",
    "nyc": "^17.0.0",
-    "oxlint": "0.5.0",
+    "oxlint": "0.7.0",
    "prettier": "^3.2.5",
    "semver": "^7.6.0",
    "serve": "^14.2.1",
@@ -107,8 +107,8 @@
    "vite-plugin-istanbul": "^6.0.0",
    "vite-plugin-static-copy": "^1.0.2",
    "vitest": "1.6.0",
-    "vitest-fetch-mock": "^0.2.2",
-    "vitest-mock-extended": "^1.3.1"
+    "vitest-fetch-mock": "^0.3.0",
+    "vitest-mock-extended": "^2.0.0"
  },
  "packageManager": "yarn@4.3.1",
  "resolutions": {
--- a/packages/backend/native/index.d.ts
+++ b/packages/backend/native/index.d.ts
@@ -1,20 +1,20 @@
 /* auto-generated by NAPI-RS */
 /* eslint-disable */
-export class Tokenizer {
+export declare class Tokenizer {
  count(content: string, allowedSpecial?: Array<string> | undefined | null): number
 }

-export function fromModelName(modelName: string): Tokenizer | null
+export declare function fromModelName(modelName: string): Tokenizer | null

-export function getMime(input: Uint8Array): string
+export declare function getMime(input: Uint8Array): string

 /**
 * Merge updates in form like `Y.applyUpdate(doc, update)` way and return the
 * result binary.
 */
-export function mergeUpdatesInApplyWay(updates: Array<Buffer>): Buffer
+export declare function mergeUpdatesInApplyWay(updates: Array<Buffer>): Buffer

-export function mintChallengeResponse(resource: string, bits?: number | undefined | null): Promise<string>
+export declare function mintChallengeResponse(resource: string, bits?: number | undefined | null): Promise<string>

-export function verifyChallengeResponse(response: string, bits: number, resource: string): Promise<boolean>
+export declare function verifyChallengeResponse(response: string, bits: number, resource: string): Promise<boolean>

--- a/packages/backend/native/package.json
+++ b/packages/backend/native/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@affine/server-native",
-  "version": "0.15.0",
+  "version": "0.16.0",
  "engines": {
    "node": ">= 10.16.0 < 11 || >= 11.8.0"
  },
@@ -33,12 +33,12 @@
    "build:debug": "napi build"
  },
  "devDependencies": {
-    "@napi-rs/cli": "3.0.0-alpha.55",
+    "@napi-rs/cli": "3.0.0-alpha.60",
    "lib0": "^0.2.93",
    "nx": "^19.0.0",
    "nx-cloud": "^19.0.0",
    "tiktoken": "^1.0.15",
    "tinybench": "^2.8.0",
-    "yjs": "^13.6.14"
+    "yjs": "patch:yjs@npm%3A13.6.18#~/.yarn/patches/yjs-npm-13.6.18-ad0d5f7c43.patch"
  }
 }
--- a/packages/backend/server/migrations/20240416042935_lifetime_subscription/migration.sql
+++ b/packages/backend/server/migrations/20240416042935_lifetime_subscription/migration.sql
@@ -0,0 +1,3 @@
+-- AlterTable
+ALTER TABLE "user_subscriptions" ALTER COLUMN "stripe_subscription_id" DROP NOT NULL,
+ALTER COLUMN "end" DROP NOT NULL;
--- a/packages/backend/server/migrations/20240625052649_add_fork_session/migration.sql
+++ b/packages/backend/server/migrations/20240625052649_add_fork_session/migration.sql
@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "ai_sessions_metadata" ADD COLUMN     "parent_session_id" VARCHAR(36);
--- a/packages/backend/server/migrations/20240708034904_prompt_level_config/migration.sql
+++ b/packages/backend/server/migrations/20240708034904_prompt_level_config/migration.sql
@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "ai_prompts_metadata" ADD COLUMN     "config" JSON;
--- a/packages/backend/server/migrations/20240731043837_standardize_table_columns/migration.sql
+++ b/packages/backend/server/migrations/20240731043837_standardize_table_columns/migration.sql
@@ -0,0 +1,146 @@
+-- AlterTable
+ALTER TABLE "_data_migrations" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "started_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "finished_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "ai_prompts_messages" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "ai_prompts_metadata" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "ai_sessions_messages" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "session_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "ai_sessions_metadata" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "doc_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "deleted_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "parent_session_id" SET DATA TYPE VARCHAR;
+
+-- AlterTable
+ALTER TABLE "app_runtime_settings" ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "deleted_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "last_updated_by" SET DATA TYPE VARCHAR;
+
+-- AlterTable
+ALTER TABLE "features" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "multiple_users_sessions" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "snapshot_histories"
+ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "guid" SET DATA TYPE VARCHAR,
+ALTER COLUMN "timestamp" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "snapshots" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "updates" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_connected_accounts" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_features" ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_invoices" ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_sessions" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "session_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_stripe_customers" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "user_subscriptions" ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "start" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "end" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "next_bill_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "canceled_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "trial_start" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "trial_end" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "users" ALTER COLUMN "name" SET DATA TYPE VARCHAR,
+ALTER COLUMN "email" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "verification_tokens" ALTER COLUMN "token" SET DATA TYPE VARCHAR,
+ALTER COLUMN "expiresAt" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "workspace_features" ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "workspace_page_user_permissions"
+ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "page_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "workspace_pages" ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "page_id" SET DATA TYPE VARCHAR;
+
+-- AlterTable
+ALTER TABLE "workspace_user_permissions" ALTER COLUMN "id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "workspace_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "user_id" SET DATA TYPE VARCHAR,
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- AlterTable
+ALTER TABLE "workspaces" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMP(3);
+
+-- DropTable
+DROP TABLE "accounts";
+
+-- DropTable
+DROP TABLE "blobs";
+
+-- DropTable
+DROP TABLE "new_features_waiting_list";
+
+-- DropTable
+DROP TABLE "optimized_blobs";
+
+-- DropTable
+DROP TABLE "sessions";
+
+-- DropTable
+DROP TABLE "user_workspace_permissions";
+
+-- DropTable
+DROP TABLE "verificationtokens";
--- a/packages/backend/server/migrations/20240813053919_use_timestamp_with_timezone/migration.sql
+++ b/packages/backend/server/migrations/20240813053919_use_timestamp_with_timezone/migration.sql
@@ -0,0 +1,95 @@
+/*
+  Warnings:
+
+  - The primary key for the `snapshot_histories` table will be changed. If it partially fails, the table could be left without primary key constraint.
+
+*/
+-- AlterTable
+ALTER TABLE "_data_migrations" ALTER COLUMN "started_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "finished_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "ai_prompts_messages" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "ai_prompts_metadata" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "ai_sessions_messages" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "ai_sessions_metadata" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "deleted_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "app_runtime_settings" ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "deleted_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "features" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "multiple_users_sessions" ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "snapshot_histories" ALTER COLUMN "timestamp" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "snapshots" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "updates" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_connected_accounts" ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_features" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_invoices" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_sessions" ALTER COLUMN "expires_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_stripe_customers" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "user_subscriptions" ALTER COLUMN "start" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "end" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "next_bill_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "canceled_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "trial_start" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "trial_end" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "updated_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "users" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "email_verified" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "verification_tokens" ALTER COLUMN "expiresAt" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "workspace_features" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3),
+ALTER COLUMN "expired_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "workspace_page_user_permissions" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "workspace_user_permissions" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
+
+-- AlterTable
+ALTER TABLE "workspaces" ALTER COLUMN "created_at" SET DATA TYPE TIMESTAMPTZ(3);
--- a/packages/backend/server/package.json
+++ b/packages/backend/server/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@affine/server",
  "private": true,
-  "version": "0.15.0",
+  "version": "0.16.0",
  "description": "Affine Node.js server",
  "type": "module",
  "bin": {
@@ -20,9 +20,9 @@
  },
  "dependencies": {
    "@apollo/server": "^4.10.2",
-    "@aws-sdk/client-s3": "^3.552.0",
-    "@fal-ai/serverless-client": "^0.10.2",
-    "@google-cloud/opentelemetry-cloud-monitoring-exporter": "^0.18.0",
+    "@aws-sdk/client-s3": "^3.620.0",
+    "@fal-ai/serverless-client": "^0.13.0",
+    "@google-cloud/opentelemetry-cloud-monitoring-exporter": "^0.19.0",
    "@google-cloud/opentelemetry-cloud-trace-exporter": "^2.2.0",
    "@google-cloud/opentelemetry-resource-util": "^2.2.0",
    "@keyv/redis": "^2.8.4",
@@ -35,7 +35,7 @@
    "@nestjs/platform-socket.io": "^10.3.7",
    "@nestjs/schedule": "^4.0.1",
    "@nestjs/serve-static": "^4.0.2",
-    "@nestjs/throttler": "5.1.2",
+    "@nestjs/throttler": "5.2.0",
    "@nestjs/websockets": "^10.3.7",
    "@node-rs/argon2": "^1.8.0",
    "@node-rs/crc32": "^1.10.0",
@@ -46,11 +46,11 @@
    "@opentelemetry/exporter-zipkin": "^1.25.0",
    "@opentelemetry/host-metrics": "^0.35.2",
    "@opentelemetry/instrumentation": "^0.52.0",
-    "@opentelemetry/instrumentation-graphql": "^0.41.0",
+    "@opentelemetry/instrumentation-graphql": "^0.42.0",
    "@opentelemetry/instrumentation-http": "^0.52.0",
-    "@opentelemetry/instrumentation-ioredis": "^0.41.0",
-    "@opentelemetry/instrumentation-nestjs-core": "^0.38.0",
-    "@opentelemetry/instrumentation-socket.io": "^0.40.0",
+    "@opentelemetry/instrumentation-ioredis": "^0.42.0",
+    "@opentelemetry/instrumentation-nestjs-core": "^0.39.0",
+    "@opentelemetry/instrumentation-socket.io": "^0.41.0",
    "@opentelemetry/resources": "^1.25.0",
    "@opentelemetry/sdk-metrics": "^1.25.0",
    "@opentelemetry/sdk-node": "^0.52.0",
@@ -95,7 +95,7 @@
    "ts-node": "^10.9.2",
    "typescript": "^5.4.5",
    "ws": "^8.16.0",
-    "yjs": "^13.6.14",
+    "yjs": "patch:yjs@npm%3A13.6.18#~/.yarn/patches/yjs-npm-13.6.18-ad0d5f7c43.patch",
    "zod": "^3.22.4"
  },
  "devDependencies": {
--- a/packages/backend/server/schema.prisma
+++ b/packages/backend/server/schema.prisma
@@ -11,18 +11,18 @@ datasource db {

 model User {
  id              String    @id @default(uuid()) @db.VarChar
-  name            String
-  email           String    @unique
-  emailVerifiedAt DateTime? @map("email_verified")
+  name            String    @db.VarChar
+  email           String    @unique @db.VarChar
+  emailVerifiedAt DateTime? @map("email_verified") @db.Timestamptz(3)
  avatarUrl       String?   @map("avatar_url") @db.VarChar
-  createdAt       DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt       DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)
  /// Not available if user signed up through OAuth providers
  password        String?   @db.VarChar
  /// Indicate whether the user finished the signup progress.
  /// for example, the value will be false if user never registered and invited into a workspace by others.
  registered      Boolean   @default(true)

-  features              UserFeatures[]
+  features              UserFeature[]
  customer              UserStripeCustomer?
  subscriptions         UserSubscription[]
  invoices              UserInvoice[]
@@ -38,16 +38,16 @@ model User {
 }

 model ConnectedAccount {
-  id                String    @id @default(uuid()) @db.VarChar(36)
-  userId            String    @map("user_id") @db.VarChar(36)
+  id                String    @id @default(uuid()) @db.VarChar
+  userId            String    @map("user_id") @db.VarChar
  provider          String    @db.VarChar
  providerAccountId String    @map("provider_account_id") @db.VarChar
  scope             String?   @db.Text
  accessToken       String?   @map("access_token") @db.Text
  refreshToken      String?   @map("refresh_token") @db.Text
-  expiresAt         DateTime? @map("expires_at") @db.Timestamptz(6)
-  createdAt         DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
-  updatedAt         DateTime  @updatedAt @map("updated_at") @db.Timestamptz(6)
+  expiresAt         DateTime? @map("expires_at") @db.Timestamptz(3)
+  createdAt         DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)
+  updatedAt         DateTime  @updatedAt @map("updated_at") @db.Timestamptz(3)

  user User @relation(fields: [userId], references: [id], onDelete: Cascade)

@@ -57,9 +57,9 @@ model ConnectedAccount {
 }

 model Session {
-  id        String    @id @default(uuid()) @db.VarChar(36)
-  expiresAt DateTime? @map("expires_at") @db.Timestamptz(6)
-  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
+  id        String    @id @default(uuid()) @db.VarChar
+  expiresAt DateTime? @map("expires_at") @db.Timestamptz(3)
+  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)

  userSessions UserSession[]

@@ -67,11 +67,11 @@ model Session {
 }

 model UserSession {
-  id        String    @id @default(uuid()) @db.VarChar(36)
-  sessionId String    @map("session_id") @db.VarChar(36)
-  userId    String    @map("user_id") @db.VarChar(36)
-  expiresAt DateTime? @map("expires_at") @db.Timestamptz(6)
-  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
+  id        String    @id @default(uuid()) @db.VarChar
+  sessionId String    @map("session_id") @db.VarChar
+  userId    String    @map("user_id") @db.VarChar
+  expiresAt DateTime? @map("expires_at") @db.Timestamptz(3)
+  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)

  session Session @relation(fields: [sessionId], references: [id], onDelete: Cascade)
  user    User    @relation(fields: [userId], references: [id], onDelete: Cascade)
@@ -81,10 +81,10 @@ model UserSession {
 }

 model VerificationToken {
-  token      String   @db.VarChar(36)
+  token      String   @db.VarChar
  type       Int      @db.SmallInt
  credential String?  @db.Text
-  expiresAt  DateTime @db.Timestamptz(6)
+  expiresAt  DateTime @db.Timestamptz(3)

  @@unique([type, token])
  @@map("verification_tokens")
@@ -93,12 +93,12 @@ model VerificationToken {
 model Workspace {
  id        String   @id @default(uuid()) @db.VarChar
  public    Boolean
-  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  pages           WorkspacePage[]
  permissions     WorkspaceUserPermission[]
  pagePermissions WorkspacePageUserPermission[]
-  features        WorkspaceFeatures[]
+  features        WorkspaceFeature[]

  @@map("workspaces")
 }
@@ -109,8 +109,8 @@ model Workspace {
 //   Only the ones that have ever changed will have records here,
 //   and for others we will make sure it's has a default value return in our bussiness logic.
 model WorkspacePage {
-  workspaceId String  @map("workspace_id") @db.VarChar(36)
-  pageId      String  @map("page_id") @db.VarChar(36)
+  workspaceId String  @map("workspace_id") @db.VarChar
+  pageId      String  @map("page_id") @db.VarChar
  public      Boolean @default(false)
  // Page/Edgeless
  mode        Int     @default(0) @db.SmallInt
@@ -121,31 +121,15 @@ model WorkspacePage {
  @@map("workspace_pages")
 }

-// @deprecated, use WorkspaceUserPermission
-model DeprecatedUserWorkspacePermission {
+model WorkspaceUserPermission {
  id          String   @id @default(uuid()) @db.VarChar
  workspaceId String   @map("workspace_id") @db.VarChar
-  subPageId   String?  @map("sub_page_id") @db.VarChar
-  userId      String?  @map("entity_id") @db.VarChar
-  /// Read/Write/Admin/Owner
-  type        Int      @db.SmallInt
-  /// Whether the permission invitation is accepted by the user
-  accepted    Boolean  @default(false)
-  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
-
-  @@unique([workspaceId, subPageId, userId])
-  @@map("user_workspace_permissions")
-}
-
-model WorkspaceUserPermission {
-  id          String   @id @default(uuid()) @db.VarChar(36)
-  workspaceId String   @map("workspace_id") @db.VarChar(36)
-  userId      String   @map("user_id") @db.VarChar(36)
+  userId      String   @map("user_id") @db.VarChar
  // Read/Write
  type        Int      @db.SmallInt
  /// Whether the permission invitation is accepted by the user
  accepted    Boolean  @default(false)
-  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  user      User      @relation(fields: [userId], references: [id], onDelete: Cascade)
  workspace Workspace @relation(fields: [workspaceId], references: [id], onDelete: Cascade)
@@ -155,15 +139,15 @@ model WorkspaceUserPermission {
 }

 model WorkspacePageUserPermission {
-  id          String   @id @default(uuid()) @db.VarChar(36)
-  workspaceId String   @map("workspace_id") @db.VarChar(36)
-  pageId      String   @map("page_id") @db.VarChar(36)
-  userId      String   @map("user_id") @db.VarChar(36)
+  id          String   @id @default(uuid()) @db.VarChar
+  workspaceId String   @map("workspace_id") @db.VarChar
+  pageId      String   @map("page_id") @db.VarChar
+  userId      String   @map("user_id") @db.VarChar
  // Read/Write
  type        Int      @db.SmallInt
  /// Whether the permission invitation is accepted by the user
  accepted    Boolean  @default(false)
-  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  user      User      @relation(fields: [userId], references: [id], onDelete: Cascade)
  workspace Workspace @relation(fields: [workspaceId], references: [id], onDelete: Cascade)
@@ -176,9 +160,9 @@ model WorkspacePageUserPermission {
 // for example:
 // - early access is a feature that allow some users to access the insider version
 // - pro plan is a quota that allow some users access to more resources after they pay
-model UserFeatures {
+model UserFeature {
  id        Int    @id @default(autoincrement())
-  userId    String @map("user_id") @db.VarChar(36)
+  userId    String @map("user_id") @db.VarChar
  featureId Int    @map("feature_id") @db.Integer

  // we will record the reason why the feature is enabled/disabled
@@ -186,16 +170,16 @@ model UserFeatures {
  // - pro_plan_v1: "user buy the pro plan"
  reason    String    @db.VarChar
  // record the quota enabled time
-  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)
  // record the quota expired time, pay plan is a subscription, so it will expired
-  expiredAt DateTime? @map("expired_at") @db.Timestamptz(6)
+  expiredAt DateTime? @map("expired_at") @db.Timestamptz(3)
  // whether the feature is activated
  // for example:
  // - if we switch the user to another plan, we will set the old plan to deactivated, but dont delete it
  activated Boolean   @default(false)

-  feature Features @relation(fields: [featureId], references: [id], onDelete: Cascade)
-  user    User     @relation(fields: [userId], references: [id], onDelete: Cascade)
+  feature Feature @relation(fields: [featureId], references: [id], onDelete: Cascade)
+  user    User    @relation(fields: [userId], references: [id], onDelete: Cascade)

  @@index([userId])
  @@map("user_features")
@@ -204,9 +188,9 @@ model UserFeatures {
 // feature gates is a way to enable/disable features for a workspace
 // for example:
 // - copilet is a feature that allow some users in a workspace to access the copilet feature
-model WorkspaceFeatures {
+model WorkspaceFeature {
  id          Int    @id @default(autoincrement())
-  workspaceId String @map("workspace_id") @db.VarChar(36)
+  workspaceId String @map("workspace_id") @db.VarChar
  featureId   Int    @map("feature_id") @db.Integer

  // we will record the reason why the feature is enabled/disabled
@@ -214,21 +198,21 @@ model WorkspaceFeatures {
  // - copilet_v1: "owner buy the copilet feature package"
  reason    String    @db.VarChar
  // record the feature enabled time
-  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)
  // record the quota expired time, pay plan is a subscription, so it will expired
-  expiredAt DateTime? @map("expired_at") @db.Timestamptz(6)
+  expiredAt DateTime? @map("expired_at") @db.Timestamptz(3)
  // whether the feature is activated
  // for example:
  // - if owner unsubscribe a feature package, we will set the feature to deactivated, but dont delete it
  activated Boolean   @default(false)

-  feature   Features  @relation(fields: [featureId], references: [id], onDelete: Cascade)
+  feature   Feature   @relation(fields: [featureId], references: [id], onDelete: Cascade)
  workspace Workspace @relation(fields: [workspaceId], references: [id], onDelete: Cascade)

  @@map("workspace_features")
 }

-model Features {
+model Feature {
  id        Int      @id @default(autoincrement())
  feature   String   @db.VarChar
  version   Int      @default(0) @db.Integer
@@ -236,82 +220,15 @@ model Features {
  type      Int      @db.Integer
  // configs, define by feature conntroller
  configs   Json     @db.Json
-  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

-  UserFeatureGates  UserFeatures[]
-  WorkspaceFeatures WorkspaceFeatures[]
+  UserFeatureGates  UserFeature[]
+  WorkspaceFeatures WorkspaceFeature[]

  @@unique([feature, version])
  @@map("features")
 }

-model DeprecatedNextAuthAccount {
-  id                String  @id @default(cuid())
-  userId            String  @map("user_id")
-  type              String
-  provider          String
-  providerAccountId String  @map("provider_account_id")
-  refresh_token     String? @db.Text
-  access_token      String? @db.Text
-  expires_at        Int?
-  token_type        String?
-  scope             String?
-  id_token          String? @db.Text
-  session_state     String?
-
-  @@unique([provider, providerAccountId])
-  @@map("accounts")
-}
-
-model DeprecatedNextAuthSession {
-  id           String   @id @default(cuid())
-  sessionToken String   @unique @map("session_token")
-  userId       String   @map("user_id")
-  expires      DateTime
-
-  @@map("sessions")
-}
-
-model DeprecatedNextAuthVerificationToken {
-  identifier String
-  token      String   @unique
-  expires    DateTime
-
-  @@unique([identifier, token])
-  @@map("verificationtokens")
-}
-
-// deprecated, use [ObjectStorage]
-model Blob {
-  id          Int       @id @default(autoincrement()) @db.Integer
-  hash        String    @db.VarChar
-  workspaceId String    @map("workspace_id") @db.VarChar
-  blob        Bytes     @db.ByteA
-  length      BigInt
-  createdAt   DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
-  // not for keeping, but for snapshot history
-  deletedAt   DateTime? @map("deleted_at") @db.Timestamptz(6)
-
-  @@unique([workspaceId, hash])
-  @@map("blobs")
-}
-
-// deprecated, use [ObjectStorage]
-model OptimizedBlob {
-  id          Int       @id @default(autoincrement()) @db.Integer
-  hash        String    @db.VarChar
-  workspaceId String    @map("workspace_id") @db.VarChar
-  params      String    @db.VarChar
-  blob        Bytes     @db.ByteA
-  length      BigInt
-  createdAt   DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
-  // not for keeping, but for snapshot history
-  deletedAt   DateTime? @map("deleted_at") @db.Timestamptz(6)
-
-  @@unique([workspaceId, hash, params])
-  @@map("optimized_blobs")
-}
-
 // the latest snapshot of each doc that we've seen
 // Snapshot + Updates are the latest state of the doc
 model Snapshot {
@@ -320,10 +237,10 @@ model Snapshot {
  blob        Bytes    @db.ByteA
  seq         Int      @default(0) @db.Integer
  state       Bytes?   @db.ByteA
-  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(3)
  // the `updated_at` field will not record the time of record changed,
  // but the created time of last seen update that has been merged into snapshot.
-  updatedAt   DateTime @map("updated_at") @db.Timestamptz(6)
+  updatedAt   DateTime @map("updated_at") @db.Timestamptz(3)

  @@id([id, workspaceId])
  @@map("snapshots")
@@ -334,37 +251,28 @@ model Update {
  id          String   @map("guid") @db.VarChar
  seq         Int      @db.Integer
  blob        Bytes    @db.ByteA
-  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt   DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  @@id([workspaceId, id, seq])
  @@map("updates")
 }

 model SnapshotHistory {
-  workspaceId String   @map("workspace_id") @db.VarChar(36)
-  id          String   @map("guid") @db.VarChar(36)
-  timestamp   DateTime @db.Timestamptz(6)
+  workspaceId String   @map("workspace_id") @db.VarChar
+  id          String   @map("guid") @db.VarChar
+  timestamp   DateTime @db.Timestamptz(3)
  blob        Bytes    @db.ByteA
  state       Bytes?   @db.ByteA
-  expiredAt   DateTime @map("expired_at") @db.Timestamptz(6)
+  expiredAt   DateTime @map("expired_at") @db.Timestamptz(3)

  @@id([workspaceId, id, timestamp])
  @@map("snapshot_histories")
 }

-model NewFeaturesWaitingList {
-  id        String   @id @default(uuid()) @db.VarChar
-  email     String   @unique
-  type      Int      @db.SmallInt
-  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
-
-  @@map("new_features_waiting_list")
-}
-
 model UserStripeCustomer {
  userId           String   @id @map("user_id") @db.VarChar
  stripeCustomerId String   @unique @map("stripe_customer_id") @db.VarChar
-  createdAt        DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt        DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  user User @relation(fields: [userId], references: [id], onDelete: Cascade)

@@ -373,30 +281,30 @@ model UserStripeCustomer {

 model UserSubscription {
  id                   Int       @id @default(autoincrement()) @db.Integer
-  userId               String    @map("user_id") @db.VarChar(36)
+  userId               String    @map("user_id") @db.VarChar
  plan                 String    @db.VarChar(20)
  // yearly/monthly
  recurring            String    @db.VarChar(20)
-  // subscription.id
-  stripeSubscriptionId String    @unique @map("stripe_subscription_id")
+  // subscription.id, null for linefetime payment
+  stripeSubscriptionId String?   @unique @map("stripe_subscription_id")
  // subscription.status, active/past_due/canceled/unpaid...
  status               String    @db.VarChar(20)
  // subscription.current_period_start
-  start                DateTime  @map("start") @db.Timestamptz(6)
-  // subscription.current_period_end
-  end                  DateTime  @map("end") @db.Timestamptz(6)
+  start                DateTime  @map("start") @db.Timestamptz(3)
+  // subscription.current_period_end, null for lifetime payment
+  end                  DateTime? @map("end") @db.Timestamptz(3)
  // subscription.billing_cycle_anchor
-  nextBillAt           DateTime? @map("next_bill_at") @db.Timestamptz(6)
+  nextBillAt           DateTime? @map("next_bill_at") @db.Timestamptz(3)
  // subscription.canceled_at
-  canceledAt           DateTime? @map("canceled_at") @db.Timestamptz(6)
+  canceledAt           DateTime? @map("canceled_at") @db.Timestamptz(3)
  // subscription.trial_start
-  trialStart           DateTime? @map("trial_start") @db.Timestamptz(6)
+  trialStart           DateTime? @map("trial_start") @db.Timestamptz(3)
  // subscription.trial_end
-  trialEnd             DateTime? @map("trial_end") @db.Timestamptz(6)
+  trialEnd             DateTime? @map("trial_end") @db.Timestamptz(3)
  stripeScheduleId     String?   @map("stripe_schedule_id") @db.VarChar

-  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
-  updatedAt DateTime @updatedAt @map("updated_at") @db.Timestamptz(6)
+  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(3)
+  updatedAt DateTime @updatedAt @map("updated_at") @db.Timestamptz(3)
  user      User     @relation(fields: [userId], references: [id], onDelete: Cascade)

  @@unique([userId, plan])
@@ -405,7 +313,7 @@ model UserSubscription {

 model UserInvoice {
  id               Int      @id @default(autoincrement()) @db.Integer
-  userId           String   @map("user_id") @db.VarChar(36)
+  userId           String   @map("user_id") @db.VarChar
  stripeInvoiceId  String   @unique @map("stripe_invoice_id")
  currency         String   @db.VarChar(3)
  // CNY 12.50 stored as 1250
@@ -413,8 +321,8 @@ model UserInvoice {
  status           String   @db.VarChar(20)
  plan             String   @db.VarChar(20)
  recurring        String   @db.VarChar(20)
-  createdAt        DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
-  updatedAt        DateTime @updatedAt @map("updated_at") @db.Timestamptz(6)
+  createdAt        DateTime @default(now()) @map("created_at") @db.Timestamptz(3)
+  updatedAt        DateTime @updatedAt @map("updated_at") @db.Timestamptz(3)
  // billing reason
  reason           String   @db.VarChar
  lastPaymentError String?  @map("last_payment_error") @db.Text
@@ -442,7 +350,7 @@ model AiPromptMessage {
  content     String       @db.Text
  attachments Json?        @db.Json
  params      Json?        @db.Json
-  createdAt   DateTime     @default(now()) @map("created_at") @db.Timestamptz(6)
+  createdAt   DateTime     @default(now()) @map("created_at") @db.Timestamptz(3)

  prompt AiPrompt @relation(fields: [promptId], references: [id], onDelete: Cascade)

@@ -457,7 +365,8 @@ model AiPrompt {
  // it is only used in the frontend and does not affect the backend
  action    String?  @db.VarChar
  model     String   @db.VarChar
-  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(6)
+  config    Json?    @db.Json
+  createdAt DateTime @default(now()) @map("created_at") @db.Timestamptz(3)

  messages AiPromptMessage[]
  sessions AiSession[]
@@ -466,14 +375,14 @@ model AiPrompt {
 }

 model AiSessionMessage {
-  id          String       @id @default(uuid()) @db.VarChar(36)
-  sessionId   String       @map("session_id") @db.VarChar(36)
+  id          String       @id @default(uuid()) @db.VarChar
+  sessionId   String       @map("session_id") @db.VarChar
  role        AiPromptRole
  content     String       @db.Text
  attachments Json?        @db.Json
  params      Json?        @db.Json
-  createdAt   DateTime     @default(now()) @map("created_at") @db.Timestamptz(6)
-  updatedAt   DateTime     @updatedAt @map("updated_at") @db.Timestamptz(6)
+  createdAt   DateTime     @default(now()) @map("created_at") @db.Timestamptz(3)
+  updatedAt   DateTime     @updatedAt @map("updated_at") @db.Timestamptz(3)

  session AiSession @relation(fields: [sessionId], references: [id], onDelete: Cascade)

@@ -481,15 +390,17 @@ model AiSessionMessage {
 }

 model AiSession {
-  id          String    @id @default(uuid()) @db.VarChar(36)
-  userId      String    @map("user_id") @db.VarChar(36)
-  workspaceId String    @map("workspace_id") @db.VarChar(36)
-  docId       String    @map("doc_id") @db.VarChar(36)
-  promptName  String    @map("prompt_name") @db.VarChar(32)
-  messageCost Int       @default(0)
-  tokenCost   Int       @default(0)
-  createdAt   DateTime  @default(now()) @map("created_at") @db.Timestamptz(6)
-  deletedAt   DateTime? @map("deleted_at") @db.Timestamptz(6)
+  id              String    @id @default(uuid()) @db.VarChar
+  userId          String    @map("user_id") @db.VarChar
+  workspaceId     String    @map("workspace_id") @db.VarChar
+  docId           String    @map("doc_id") @db.VarChar
+  promptName      String    @map("prompt_name") @db.VarChar(32)
+  // the session id of the parent session if this session is a forked session
+  parentSessionId String?   @map("parent_session_id") @db.VarChar
+  messageCost     Int       @default(0)
+  tokenCost       Int       @default(0)
+  createdAt       DateTime  @default(now()) @map("created_at") @db.Timestamptz(3)
+  deletedAt       DateTime? @map("deleted_at") @db.Timestamptz(3)

  user     User               @relation(fields: [userId], references: [id], onDelete: Cascade)
  prompt   AiPrompt           @relation(fields: [promptName], references: [name], onDelete: Cascade)
@@ -499,10 +410,10 @@ model AiSession {
 }

 model DataMigration {
-  id         String    @id @default(uuid()) @db.VarChar(36)
+  id         String    @id @default(uuid()) @db.VarChar
  name       String    @db.VarChar
-  startedAt  DateTime  @default(now()) @map("started_at") @db.Timestamptz(6)
-  finishedAt DateTime? @map("finished_at") @db.Timestamptz(6)
+  startedAt  DateTime  @default(now()) @map("started_at") @db.Timestamptz(3)
+  finishedAt DateTime? @map("finished_at") @db.Timestamptz(3)

  @@map("_data_migrations")
 }
@@ -522,9 +433,9 @@ model RuntimeConfig {
  key           String            @db.VarChar
  value         Json              @db.Json
  description   String            @db.Text
-  updatedAt     DateTime          @updatedAt @map("updated_at") @db.Timestamptz(6)
-  deletedAt     DateTime?         @map("deleted_at") @db.Timestamptz(6)
-  lastUpdatedBy String?           @map("last_updated_by") @db.VarChar(36)
+  updatedAt     DateTime          @updatedAt @map("updated_at") @db.Timestamptz(3)
+  deletedAt     DateTime?         @map("deleted_at") @db.Timestamptz(3)
+  lastUpdatedBy String?           @map("last_updated_by") @db.VarChar

  lastUpdatedByUser User? @relation(fields: [lastUpdatedBy], references: [id])

--- a/packages/backend/server/src/app.module.ts
+++ b/packages/backend/server/src/app.module.ts
@@ -16,6 +16,7 @@ import { ADD_ENABLED_FEATURES, ServerConfigModule } from './core/config';
 import { DocModule } from './core/doc';
 import { FeatureModule } from './core/features';
 import { QuotaModule } from './core/quota';
+import { CustomSetupModule } from './core/setup';
 import { StorageModule } from './core/storage';
 import { SyncModule } from './core/sync';
 import { UserModule } from './core/user';
@@ -151,14 +152,16 @@ function buildAppModule() {
  factor
    // common fundamental modules
    .use(...FunctionalityModules)
+    .useIf(config => config.flavor.sync, WebSocketModule)
+
    // auth
-    .use(AuthModule)
+    .use(UserModule, AuthModule)

    // business modules
    .use(DocModule)

    // sync server only
-    .useIf(config => config.flavor.sync, WebSocketModule, SyncModule)
+    .useIf(config => config.flavor.sync, SyncModule)

    // graphql server only
    .useIf(
@@ -166,7 +169,6 @@ function buildAppModule() {
      ServerConfigModule,
      GqlModule,
      StorageModule,
-      UserModule,
      WorkspaceModule,
      FeatureModule,
      QuotaModule
@@ -175,13 +177,11 @@ function buildAppModule() {
    // self hosted server only
    .useIf(
      config => config.isSelfhosted,
+      CustomSetupModule,
      ServeStaticModule.forRoot({
        rootPath: join('/app', 'static'),
        exclude: ['/admin*'],
-      })
-    )
-    .useIf(
-      config => config.isSelfhosted,
+      }),
      ServeStaticModule.forRoot({
        rootPath: join('/app', 'static', 'admin'),
        serveRoot: '/admin',
--- a/packages/backend/server/src/app.ts
+++ b/packages/backend/server/src/app.ts
@@ -29,7 +29,7 @@ export async function createApp() {
    graphqlUploadExpress({
      // TODO(@darkskygit): dynamic limit by quota maybe?
      maxFileSize: 100 * 1024 * 1024,
-      maxFiles: 5,
+      maxFiles: 32,
    })
  );

--- a/packages/backend/server/src/config/affine.env.ts
+++ b/packages/backend/server/src/config/affine.env.ts
@@ -12,6 +12,7 @@ AFFiNE.ENV_MAP = {
  MAILER_PASSWORD: 'mailer.auth.pass',
  MAILER_SENDER: 'mailer.from.address',
  MAILER_SECURE: ['mailer.secure', 'boolean'],
+  DATABASE_URL: 'database.datasourceUrl',
  OAUTH_GOOGLE_CLIENT_ID: 'plugins.oauth.providers.google.clientId',
  OAUTH_GOOGLE_CLIENT_SECRET: 'plugins.oauth.providers.google.clientSecret',
  OAUTH_GITHUB_CLIENT_ID: 'plugins.oauth.providers.github.clientId',
--- a/packages/backend/server/src/core/auth/current-user.ts
+++ b/packages/backend/server/src/core/auth/current-user.ts
@@ -1,6 +1,6 @@
 import type { ExecutionContext } from '@nestjs/common';
 import { createParamDecorator } from '@nestjs/common';
-import { User } from '@prisma/client';
+import { User, UserSession } from '@prisma/client';

 import { getRequestResponseFromContext } from '../../fundamentals';

@@ -53,3 +53,5 @@ export interface CurrentUser
  hasPassword: boolean | null;
  emailVerified: boolean;
 }
+
+export { type UserSession };
--- a/packages/backend/server/src/core/auth/guard.ts
+++ b/packages/backend/server/src/core/auth/guard.ts
@@ -1,15 +1,22 @@
 import type {
  CanActivate,
  ExecutionContext,
+  FactoryProvider,
  OnModuleInit,
 } from '@nestjs/common';
 import { Injectable, SetMetadata, UseGuards } from '@nestjs/common';
 import { ModuleRef, Reflector } from '@nestjs/core';
+import type { Request } from 'express';

 import {
  AuthenticationRequired,
+  Config,
  getRequestResponseFromContext,
+  mapAnyError,
+  parseCookies,
 } from '../../fundamentals';
+import { WEBSOCKET_OPTIONS } from '../../fundamentals/websocket';
+import { CurrentUser, UserSession } from './current-user';
 import { AuthService, parseAuthUserSeqNum } from './service';

 function extractTokenFromHeader(authorization: string) {
@@ -38,37 +45,9 @@ export class AuthGuard implements CanActivate, OnModuleInit {
  async canActivate(context: ExecutionContext) {
    const { req, res } = getRequestResponseFromContext(context);

-    // check cookie
-    let sessionToken: string | undefined =
-      req.cookies[AuthService.sessionCookieName];
-
-    if (!sessionToken && req.headers.authorization) {
-      sessionToken = extractTokenFromHeader(req.headers.authorization);
-    }
-
-    if (sessionToken) {
-      const userSeq = parseAuthUserSeqNum(
-        req.headers[AuthService.authUserSeqHeaderName]
-      );
-
-      const { user, expiresAt } = await this.auth.getUser(
-        sessionToken,
-        userSeq
-      );
-      if (res && user && expiresAt) {
-        await this.auth.refreshUserSessionIfNeeded(
-          req,
-          res,
-          sessionToken,
-          user.id,
-          expiresAt
-        );
-      }
-
-      if (user) {
-        req.sid = sessionToken;
-        req.user = user;
-      }
+    const userSession = await this.signIn(req);
+    if (res && userSession && userSession.session.expiresAt) {
+      await this.auth.refreshUserSessionIfNeeded(req, res, userSession.session);
    }

    // api is public
@@ -84,9 +63,44 @@ export class AuthGuard implements CanActivate, OnModuleInit {
    if (!req.user) {
      throw new AuthenticationRequired();
    }
-
    return true;
  }
+
+  async signIn(
+    req: Request
+  ): Promise<{ user: CurrentUser; session: UserSession } | null> {
+    if (req.user && req.session) {
+      return {
+        user: req.user,
+        session: req.session,
+      };
+    }
+
+    parseCookies(req);
+    let sessionToken: string | undefined =
+      req.cookies[AuthService.sessionCookieName];
+
+    if (!sessionToken && req.headers.authorization) {
+      sessionToken = extractTokenFromHeader(req.headers.authorization);
+    }
+
+    if (sessionToken) {
+      const userSeq = parseAuthUserSeqNum(
+        req.headers[AuthService.authUserSeqHeaderName]
+      );
+
+      const userSession = await this.auth.getUserSession(sessionToken, userSeq);
+
+      if (userSession) {
+        req.session = userSession.session;
+        req.user = userSession.user;
+      }
+
+      return userSession;
+    }
+
+    return null;
+  }
 }

 /**
@@ -111,3 +125,35 @@ export const Auth = () => {

 // api is public accessible
 export const Public = () => SetMetadata(PUBLIC_ENTRYPOINT_SYMBOL, true);
+
+export const AuthWebsocketOptionsProvider: FactoryProvider = {
+  provide: WEBSOCKET_OPTIONS,
+  useFactory: (config: Config, guard: AuthGuard) => {
+    return {
+      ...config.websocket,
+      allowRequest: async (
+        req: any,
+        pass: (err: string | null | undefined, success: boolean) => void
+      ) => {
+        if (!config.websocket.requireAuthentication) {
+          return pass(null, true);
+        }
+
+        try {
+          const authentication = await guard.signIn(req);
+
+          if (authentication) {
+            return pass(null, true);
+          } else {
+            return pass('unauthenticated', false);
+          }
+        } catch (e) {
+          const error = mapAnyError(e);
+          error.log('Websocket');
+          return pass('unauthenticated', false);
+        }
+      },
+    };
+  },
+  inject: [Config, AuthGuard],
+};
--- a/packages/backend/server/src/core/auth/index.ts
+++ b/packages/backend/server/src/core/auth/index.ts
@@ -6,15 +6,21 @@ import { FeatureModule } from '../features';
 import { QuotaModule } from '../quota';
 import { UserModule } from '../user';
 import { AuthController } from './controller';
-import { AuthGuard } from './guard';
+import { AuthGuard, AuthWebsocketOptionsProvider } from './guard';
 import { AuthResolver } from './resolver';
 import { AuthService } from './service';
 import { TokenService, TokenType } from './token';

@Module({
  imports: [FeatureModule, UserModule, QuotaModule],
-  providers: [AuthService, AuthResolver, TokenService, AuthGuard],
-  exports: [AuthService, AuthGuard],
+  providers: [
+    AuthService,
+    AuthResolver,
+    TokenService,
+    AuthGuard,
+    AuthWebsocketOptionsProvider,
+  ],
+  exports: [AuthService, AuthGuard, AuthWebsocketOptionsProvider],
  controllers: [AuthController],
 })
 export class AuthModule {}
--- a/packages/backend/server/src/core/auth/resolver.ts
+++ b/packages/backend/server/src/core/auth/resolver.ts
@@ -21,6 +21,7 @@ import {
  Throttle,
  URLHelper,
 } from '../../fundamentals';
+import { Admin } from '../common';
 import { UserService } from '../user';
 import { UserType } from '../user/types';
 import { validators } from '../utils/validators';
@@ -291,4 +292,19 @@ export class AuthResolver {

    return emailVerifiedAt !== null;
  }
+
+  @Admin()
+  @Mutation(() => String, {
+    description: 'Create change password url',
+  })
+  async createChangePasswordUrl(
+    @Args('userId') userId: string,
+    @Args('callbackUrl') callbackUrl: string
+  ): Promise<string> {
+    const token = await this.token.createToken(
+      TokenType.ChangePassword,
+      userId
+    );
+    return this.url.link(callbackUrl, { token });
+  }
 }
--- a/packages/backend/server/src/core/auth/service.ts
+++ b/packages/backend/server/src/core/auth/service.ts
@@ -1,18 +1,11 @@
 import { Injectable, OnApplicationBootstrap } from '@nestjs/common';
 import { Cron, CronExpression } from '@nestjs/schedule';
-import type { User } from '@prisma/client';
+import type { User, UserSession } from '@prisma/client';
 import { PrismaClient } from '@prisma/client';
 import type { CookieOptions, Request, Response } from 'express';
-import { assign, omit } from 'lodash-es';
+import { assign, pick } from 'lodash-es';

-import {
-  Config,
-  CryptoHelper,
-  EmailAlreadyUsed,
-  MailService,
-  WrongSignInCredentials,
-  WrongSignInMethod,
-} from '../../fundamentals';
+import { Config, EmailAlreadyUsed, MailService } from '../../fundamentals';
 import { FeatureManagementService } from '../features/management';
 import { QuotaService } from '../quota/service';
 import { QuotaType } from '../quota/types';
@@ -48,13 +41,11 @@ export function sessionUser(
    'id' | 'email' | 'avatarUrl' | 'name' | 'emailVerifiedAt'
  > & { password?: string | null }
 ): CurrentUser {
-  return assign(
-    omit(user, 'password', 'registered', 'emailVerifiedAt', 'createdAt'),
-    {
-      hasPassword: user.password !== null,
-      emailVerified: user.emailVerifiedAt !== null,
-    }
-  );
+  // use pick to avoid unexpected fields
+  return assign(pick(user, 'id', 'email', 'avatarUrl', 'name'), {
+    hasPassword: user.password !== null,
+    emailVerified: user.emailVerifiedAt !== null,
+  });
 }

@Injectable()
@@ -74,20 +65,19 @@ export class AuthService implements OnApplicationBootstrap {
    private readonly mailer: MailService,
    private readonly feature: FeatureManagementService,
    private readonly quota: QuotaService,
-    private readonly user: UserService,
-    private readonly crypto: CryptoHelper
+    private readonly user: UserService
  ) {}

  async onApplicationBootstrap() {
    if (this.config.node.dev) {
      try {
-        const [email, name, pwd] = ['dev@affine.pro', 'Dev User', 'dev'];
+        const [email, name, password] = ['dev@affine.pro', 'Dev User', 'dev'];
        let devUser = await this.user.findUserByEmail(email);
        if (!devUser) {
-          devUser = await this.user.createUser({
+          devUser = await this.user.createUser_without_verification({
            email,
            name,
-            password: await this.crypto.encryptPassword(pwd),
+            password,
          });
        }
        await this.quota.switchUserQuota(devUser.id, QuotaType.ProPlanV1);
@@ -114,61 +104,42 @@ export class AuthService implements OnApplicationBootstrap {
      throw new EmailAlreadyUsed();
    }

-    const hashedPassword = await this.crypto.encryptPassword(password);
-
    return this.user
      .createUser({
        name,
        email,
-        password: hashedPassword,
+        password,
      })
      .then(sessionUser);
  }

  async signIn(email: string, password: string) {
-    const user = await this.user.findUserWithHashedPasswordByEmail(email);
-
-    if (!user) {
-      throw new WrongSignInCredentials();
-    }
-
-    if (!user.password) {
-      throw new WrongSignInMethod();
-    }
-
-    const passwordMatches = await this.crypto.verifyPassword(
-      password,
-      user.password
-    );
-
-    if (!passwordMatches) {
-      throw new WrongSignInCredentials();
-    }
+    const user = await this.user.signIn(email, password);

    return sessionUser(user);
  }

-  async getUser(
+  async getUserSession(
    token: string,
    seq = 0
-  ): Promise<{ user: CurrentUser | null; expiresAt: Date | null }> {
+  ): Promise<{ user: CurrentUser; session: UserSession } | null> {
    const session = await this.getSession(token);

    // no such session
    if (!session) {
-      return { user: null, expiresAt: null };
+      return null;
    }

    const userSession = session.userSessions.at(seq);

    // no such user session
    if (!userSession) {
-      return { user: null, expiresAt: null };
+      return null;
    }

    // user session expired
    if (userSession.expiresAt && userSession.expiresAt <= new Date()) {
-      return { user: null, expiresAt: null };
+      return null;
    }

    const user = await this.db.user.findUnique({
@@ -176,10 +147,10 @@ export class AuthService implements OnApplicationBootstrap {
    });

    if (!user) {
-      return { user: null, expiresAt: null };
+      return null;
    }

-    return { user: sessionUser(user), expiresAt: userSession.expiresAt };
+    return { user: sessionUser(user), session: userSession };
  }

  async getUserList(token: string) {
@@ -278,12 +249,13 @@ export class AuthService implements OnApplicationBootstrap {
  async refreshUserSessionIfNeeded(
    _req: Request,
    res: Response,
-    sessionId: string,
-    userId: string,
-    expiresAt: Date,
+    session: UserSession,
    ttr = this.config.auth.session.ttr
  ): Promise<boolean> {
-    if (expiresAt && expiresAt.getTime() - Date.now() > ttr * 1000) {
+    if (
+      session.expiresAt &&
+      session.expiresAt.getTime() - Date.now() > ttr * 1000
+    ) {
      // no need to refresh
      return false;
    }
@@ -294,17 +266,14 @@ export class AuthService implements OnApplicationBootstrap {

    await this.db.userSession.update({
      where: {
-        sessionId_userId: {
-          sessionId,
-          userId,
-        },
+        id: session.id,
      },
      data: {
        expiresAt: newExpiresAt,
      },
    });

-    res.cookie(AuthService.sessionCookieName, sessionId, {
+    res.cookie(AuthService.sessionCookieName, session.sessionId, {
      expires: newExpiresAt,
      ...this.cookieOptions,
    });
@@ -382,8 +351,7 @@ export class AuthService implements OnApplicationBootstrap {
    id: string,
    newPassword: string
  ): Promise<Omit<User, 'password'>> {
-    const hashedPassword = await this.crypto.encryptPassword(newPassword);
-    return this.user.updateUser(id, { password: hashedPassword });
+    return this.user.updateUser(id, { password: newPassword });
  }

  async changeEmail(
--- a/packages/backend/server/src/core/config/index.ts
+++ b/packages/backend/server/src/core/config/index.ts
@@ -2,11 +2,19 @@ import './config';

 import { Module } from '@nestjs/common';

-import { ServerConfigResolver, ServerRuntimeConfigResolver } from './resolver';
+import {
+  ServerConfigResolver,
+  ServerRuntimeConfigResolver,
+  ServerServiceConfigResolver,
+} from './resolver';

@Module({
-  providers: [ServerConfigResolver, ServerRuntimeConfigResolver],
+  providers: [
+    ServerConfigResolver,
+    ServerRuntimeConfigResolver,
+    ServerServiceConfigResolver,
+  ],
 })
 export class ServerConfigModule {}
-export { ADD_ENABLED_FEATURES, ServerConfigType } from './resolver';
+export { ADD_ENABLED_FEATURES } from './server-feature';
 export { ServerFeature } from './types';
--- a/packages/backend/server/src/core/config/resolver.ts
+++ b/packages/backend/server/src/core/config/resolver.ts
@@ -9,27 +9,17 @@ import {
  ResolveField,
  Resolver,
 } from '@nestjs/graphql';
-import { RuntimeConfig, RuntimeConfigType } from '@prisma/client';
+import { PrismaClient, RuntimeConfig, RuntimeConfigType } from '@prisma/client';
 import { GraphQLJSON, GraphQLJSONObject } from 'graphql-scalars';

-import { Config, DeploymentType, URLHelper } from '../../fundamentals';
+import { Config, URLHelper } from '../../fundamentals';
 import { Public } from '../auth';
 import { Admin } from '../common';
+import { FeatureType } from '../features';
+import { AvailableUserFeatureConfig } from '../features/resolver';
 import { ServerFlags } from './config';
-import { ServerFeature } from './types';
-
-const ENABLED_FEATURES: Set<ServerFeature> = new Set();
-export function ADD_ENABLED_FEATURES(feature: ServerFeature) {
-  ENABLED_FEATURES.add(feature);
-}
-
-registerEnumType(ServerFeature, {
-  name: 'ServerFeature',
-});
-
-registerEnumType(DeploymentType, {
-  name: 'ServerDeploymentType',
-});
+import { ENABLED_FEATURES } from './server-feature';
+import { ServerConfigType } from './types';

@ObjectType()
 export class PasswordLimitsType {
@@ -45,36 +35,6 @@ export class CredentialsRequirementType {
  password!: PasswordLimitsType;
 }

-@ObjectType()
-export class ServerConfigType {
-  @Field({
-    description:
-      'server identical name could be shown as badge on user interface',
-  })
-  name!: string;
-
-  @Field({ description: 'server version' })
-  version!: string;
-
-  @Field({ description: 'server base url' })
-  baseUrl!: string;
-
-  @Field(() => DeploymentType, { description: 'server type' })
-  type!: DeploymentType;
-
-  /**
-   * @deprecated
-   */
-  @Field({ description: 'server flavor', deprecationReason: 'use `features`' })
-  flavor!: string;
-
-  @Field(() => [ServerFeature], { description: 'enabled server features' })
-  features!: ServerFeature[];
-
-  @Field({ description: 'enable telemetry' })
-  enableTelemetry!: boolean;
-}
-
 registerEnumType(RuntimeConfigType, {
  name: 'RuntimeConfigType',
 });
@@ -115,7 +75,8 @@ export class ServerFlagsType implements ServerFlags {
 export class ServerConfigResolver {
  constructor(
    private readonly config: Config,
-    private readonly url: URLHelper
+    private readonly url: URLHelper,
+    private readonly db: PrismaClient
  ) {}

  @Public()
@@ -165,13 +126,65 @@ export class ServerConfigResolver {
      return flags;
    }, {} as ServerFlagsType);
  }
+
+  @ResolveField(() => Boolean, {
+    description: 'whether server has been initialized',
+  })
+  async initialized() {
+    return (await this.db.user.count()) > 0;
+  }
 }

+@Resolver(() => ServerConfigType)
+export class ServerFeatureConfigResolver extends AvailableUserFeatureConfig {
+  constructor(config: Config) {
+    super(config);
+  }
+
+  @ResolveField(() => [FeatureType], {
+    description: 'Features for user that can be configured',
+  })
+  override availableUserFeatures() {
+    return super.availableUserFeatures();
+  }
+}
+
+@ObjectType()
+class ServerServiceConfig {
+  @Field()
+  name!: string;
+
+  @Field(() => GraphQLJSONObject)
+  config!: any;
+}
+
+interface ServerServeConfig {
+  https: boolean;
+  host: string;
+  port: number;
+  externalUrl: string;
+}
+
+interface ServerMailerConfig {
+  host?: string | null;
+  port?: number | null;
+  secure?: boolean | null;
+  service?: string | null;
+  sender?: string | null;
+}
+
+interface ServerDatabaseConfig {
+  host: string;
+  port: number;
+  user?: string | null;
+  database: string;
+}
+
+@Admin()
@Resolver(() => ServerRuntimeConfigType)
 export class ServerRuntimeConfigResolver {
  constructor(private readonly config: Config) {}

-  @Admin()
  @Query(() => [ServerRuntimeConfigType], {
    description: 'get all server runtime configurable settings',
  })
@@ -179,7 +192,6 @@ export class ServerRuntimeConfigResolver {
    return this.config.runtime.list();
  }

-  @Admin()
  @Mutation(() => ServerRuntimeConfigType, {
    description: 'update server runtime configurable setting',
  })
@@ -190,7 +202,6 @@ export class ServerRuntimeConfigResolver {
    return await this.config.runtime.set(id as any, value);
  }

-  @Admin()
  @Mutation(() => [ServerRuntimeConfigType], {
    description: 'update multiple server runtime configurable settings',
  })
@@ -205,3 +216,57 @@ export class ServerRuntimeConfigResolver {
    return results;
  }
 }
+
+@Admin()
+@Resolver(() => ServerServiceConfig)
+export class ServerServiceConfigResolver {
+  constructor(private readonly config: Config) {}
+
+  @Query(() => [ServerServiceConfig])
+  serverServiceConfigs() {
+    return [
+      {
+        name: 'server',
+        config: this.serve(),
+      },
+      {
+        name: 'mailer',
+        config: this.mail(),
+      },
+      {
+        name: 'database',
+        config: this.database(),
+      },
+    ];
+  }
+
+  serve(): ServerServeConfig {
+    return this.config.server;
+  }
+
+  mail(): ServerMailerConfig {
+    const sender =
+      typeof this.config.mailer.from === 'string'
+        ? this.config.mailer.from
+        : this.config.mailer.from?.address;
+
+    return {
+      host: this.config.mailer.host,
+      port: this.config.mailer.port,
+      secure: this.config.mailer.secure,
+      service: this.config.mailer.service,
+      sender,
+    };
+  }
+
+  database(): ServerDatabaseConfig {
+    const url = new URL(this.config.database.datasourceUrl);
+
+    return {
+      host: url.hostname,
+      port: Number(url.port),
+      user: url.username,
+      database: url.pathname.slice(1) ?? url.username,
+    };
+  }
+}
--- a/packages/backend/server/src/core/config/server-feature.ts
+++ b/packages/backend/server/src/core/config/server-feature.ts
@@ -0,0 +1,7 @@
+import { ServerFeature } from './types';
+
+export const ENABLED_FEATURES: Set<ServerFeature> = new Set();
+export function ADD_ENABLED_FEATURES(feature: ServerFeature) {
+  ENABLED_FEATURES.add(feature);
+}
+export { ServerFeature };
--- a/packages/backend/server/src/core/config/types.ts
+++ b/packages/backend/server/src/core/config/types.ts
@@ -1,5 +1,47 @@
+import { Field, ObjectType, registerEnumType } from '@nestjs/graphql';
+
+import { DeploymentType } from '../../fundamentals';
+
 export enum ServerFeature {
  Copilot = 'copilot',
  Payment = 'payment',
  OAuth = 'oauth',
 }
+
+registerEnumType(ServerFeature, {
+  name: 'ServerFeature',
+});
+
+registerEnumType(DeploymentType, {
+  name: 'ServerDeploymentType',
+});
+
+@ObjectType()
+export class ServerConfigType {
+  @Field({
+    description:
+      'server identical name could be shown as badge on user interface',
+  })
+  name!: string;
+
+  @Field({ description: 'server version' })
+  version!: string;
+
+  @Field({ description: 'server base url' })
+  baseUrl!: string;
+
+  @Field(() => DeploymentType, { description: 'server type' })
+  type!: DeploymentType;
+
+  /**
+   * @deprecated
+   */
+  @Field({ description: 'server flavor', deprecationReason: 'use `features`' })
+  flavor!: string;
+
+  @Field(() => [ServerFeature], { description: 'enabled server features' })
+  features!: ServerFeature[];
+
+  @Field({ description: 'enable telemetry' })
+  enableTelemetry!: boolean;
+}
--- a/packages/backend/server/src/core/features/feature.ts
+++ b/packages/backend/server/src/core/features/feature.ts
@@ -32,7 +32,7 @@ export async function getFeature(prisma: PrismaTransaction, featureId: number) {
    return cachedFeature;
  }

-  const feature = await prisma.features.findFirst({
+  const feature = await prisma.feature.findFirst({
    where: {
      id: featureId,
    },
--- a/packages/backend/server/src/core/features/index.ts
+++ b/packages/backend/server/src/core/features/index.ts
@@ -2,7 +2,10 @@ import { Module } from '@nestjs/common';

 import { UserModule } from '../user';
 import { EarlyAccessType, FeatureManagementService } from './management';
-import { FeatureManagementResolver } from './resolver';
+import {
+  AdminFeatureManagementResolver,
+  FeatureManagementResolver,
+} from './resolver';
 import { FeatureService } from './service';

 /**
@@ -17,6 +20,7 @@ import { FeatureService } from './service';
    FeatureService,
    FeatureManagementService,
    FeatureManagementResolver,
+    AdminFeatureManagementResolver,
  ],
  exports: [FeatureService, FeatureManagementService],
 })
--- a/packages/backend/server/src/core/features/management.ts
+++ b/packages/backend/server/src/core/features/management.ts
@@ -1,6 +1,6 @@
 import { Injectable, Logger } from '@nestjs/common';

-import { Config } from '../../fundamentals';
+import { Config, type EventPayload, OnEvent } from '../../fundamentals';
 import { UserService } from '../user/service';
 import { FeatureService } from './service';
 import { FeatureType } from './types';
@@ -167,4 +167,9 @@ export class FeatureManagementService {
  async listFeatureWorkspaces(feature: FeatureType) {
    return this.feature.listFeatureWorkspaces(feature);
  }
+
+  @OnEvent('user.admin.created')
+  async onAdminUserCreated({ id }: EventPayload<'user.admin.created'>) {
+    await this.addAdmin(id);
+  }
 }
--- a/packages/backend/server/src/core/features/resolver.ts
+++ b/packages/backend/server/src/core/features/resolver.ts
@@ -1,21 +1,18 @@
 import {
  Args,
-  Context,
-  Int,
  Mutation,
  Parent,
-  Query,
  registerEnumType,
  ResolveField,
  Resolver,
 } from '@nestjs/graphql';
+import { difference } from 'lodash-es';

-import { UserNotFound } from '../../fundamentals';
-import { sessionUser } from '../auth/service';
+import { Config } from '../../fundamentals';
 import { Admin } from '../common';
-import { UserService } from '../user/service';
 import { UserType } from '../user/types';
 import { EarlyAccessType, FeatureManagementService } from './management';
+import { FeatureService } from './service';
 import { FeatureType } from './types';

 registerEnumType(EarlyAccessType, {
@@ -24,10 +21,7 @@ registerEnumType(EarlyAccessType, {

@Resolver(() => UserType)
 export class FeatureManagementResolver {
-  constructor(
-    private readonly users: UserService,
-    private readonly feature: FeatureManagementService
-  ) {}
+  constructor(private readonly feature: FeatureManagementService) {}

  @ResolveField(() => [FeatureType], {
    name: 'features',
@@ -36,57 +30,48 @@ export class FeatureManagementResolver {
  async userFeatures(@Parent() user: UserType) {
    return this.feature.getActivatedUserFeatures(user.id);
  }
+}

-  @Admin()
-  @Mutation(() => Int)
-  async addToEarlyAccess(
-    @Args('email') email: string,
-    @Args({ name: 'type', type: () => EarlyAccessType }) type: EarlyAccessType
-  ): Promise<number> {
-    const user = await this.users.findUserByEmail(email);
-    if (user) {
-      return this.feature.addEarlyAccess(user.id, type);
-    } else {
-      const user = await this.users.createAnonymousUser(email, {
-        registered: false,
-      });
-      return this.feature.addEarlyAccess(user.id, type);
-    }
-  }
+export class AvailableUserFeatureConfig {
+  constructor(private readonly config: Config) {}

-  @Admin()
-  @Mutation(() => Int)
-  async removeEarlyAccess(@Args('email') email: string): Promise<number> {
-    const user = await this.users.findUserByEmail(email);
-    if (!user) {
-      throw new UserNotFound();
-    }
-    return this.feature.removeEarlyAccess(user.id);
-  }
-
-  @Admin()
-  @Query(() => [UserType])
-  async earlyAccessUsers(
-    @Context() ctx: { isAdminQuery: boolean }
-  ): Promise<UserType[]> {
-    // allow query other user's subscription
-    ctx.isAdminQuery = true;
-    return this.feature.listEarlyAccess().then(users => {
-      return users.map(sessionUser);
-    });
-  }
-
-  @Admin()
-  @Mutation(() => Boolean)
-  async addAdminister(@Args('email') email: string): Promise<boolean> {
-    const user = await this.users.findUserByEmail(email);
-
-    if (!user) {
-      throw new UserNotFound();
-    }
-
-    await this.feature.addAdmin(user.id);
-
-    return true;
+  async availableUserFeatures() {
+    return this.config.isSelfhosted
+      ? [FeatureType.Admin]
+      : [FeatureType.EarlyAccess, FeatureType.AIEarlyAccess, FeatureType.Admin];
+  }
+}
+
+@Admin()
+@Resolver(() => Boolean)
+export class AdminFeatureManagementResolver extends AvailableUserFeatureConfig {
+  constructor(
+    config: Config,
+    private readonly feature: FeatureService
+  ) {
+    super(config);
+  }
+
+  @Mutation(() => [FeatureType], {
+    description: 'update user enabled feature',
+  })
+  async updateUserFeatures(
+    @Args('id') id: string,
+    @Args({ name: 'features', type: () => [FeatureType] })
+    features: FeatureType[]
+  ) {
+    const configurableFeatures = await this.availableUserFeatures();
+
+    const removed = difference(configurableFeatures, features);
+    await Promise.all(
+      features.map(feature =>
+        this.feature.addUserFeature(id, feature, 'admin panel')
+      )
+    );
+    await Promise.all(
+      removed.map(feature => this.feature.removeUserFeature(id, feature))
+    );
+
+    return features;
  }
 }
--- a/packages/backend/server/src/core/features/service.ts
+++ b/packages/backend/server/src/core/features/service.ts
@@ -1,6 +1,7 @@
 import { Injectable } from '@nestjs/common';
 import { PrismaClient } from '@prisma/client';

+import { CannotDeleteAllAdminAccount } from '../../fundamentals';
 import { WorkspaceType } from '../workspaces/types';
 import { FeatureConfigType, getFeature } from './feature';
 import { FeatureKind, FeatureType } from './types';
@@ -10,7 +11,7 @@ export class FeatureService {
  constructor(private readonly prisma: PrismaClient) {}

  async getFeature<F extends FeatureType>(feature: F) {
-    const data = await this.prisma.features.findFirst({
+    const data = await this.prisma.feature.findFirst({
      where: {
        feature,
        type: FeatureKind.Feature,
@@ -36,7 +37,7 @@ export class FeatureService {
    expiredAt?: Date | string
  ) {
    return this.prisma.$transaction(async tx => {
-      const latestFlag = await tx.userFeatures.findFirst({
+      const latestFlag = await tx.userFeature.findFirst({
        where: {
          userId,
          feature: {
@@ -53,7 +54,7 @@ export class FeatureService {
      if (latestFlag) {
        return latestFlag.id;
      } else {
-        const featureId = await tx.features
+        const featureId = await tx.feature
          .findFirst({
            where: { feature, type: FeatureKind.Feature },
            orderBy: { version: 'desc' },
@@ -65,7 +66,7 @@ export class FeatureService {
          throw new Error(`Feature ${feature} not found`);
        }

-        return tx.userFeatures
+        return tx.userFeature
          .create({
            data: {
              reason,
@@ -81,7 +82,10 @@ export class FeatureService {
  }

  async removeUserFeature(userId: string, feature: FeatureType) {
-    return this.prisma.userFeatures
+    if (feature === FeatureType.Admin) {
+      await this.ensureNotLastAdmin(userId);
+    }
+    return this.prisma.userFeature
      .updateMany({
        where: {
          userId,
@@ -98,13 +102,27 @@ export class FeatureService {
      .then(r => r.count);
  }

+  async ensureNotLastAdmin(userId: string) {
+    const count = await this.prisma.userFeature.count({
+      where: {
+        userId: { not: userId },
+        feature: { feature: FeatureType.Admin, type: FeatureKind.Feature },
+        activated: true,
+      },
+    });
+
+    if (count === 0) {
+      throw new CannotDeleteAllAdminAccount();
+    }
+  }
+
  /**
   * get user's features, will included inactivated features
   * @param userId user id
   * @returns list of features
   */
  async getUserFeatures(userId: string) {
-    const features = await this.prisma.userFeatures.findMany({
+    const features = await this.prisma.userFeature.findMany({
      where: {
        userId,
        feature: { type: FeatureKind.Feature },
@@ -129,7 +147,7 @@ export class FeatureService {
  }

  async getActivatedUserFeatures(userId: string) {
-    const features = await this.prisma.userFeatures.findMany({
+    const features = await this.prisma.userFeature.findMany({
      where: {
        userId,
        feature: { type: FeatureKind.Feature },
@@ -156,7 +174,7 @@ export class FeatureService {
  }

  async listFeatureUsers(feature: FeatureType) {
-    return this.prisma.userFeatures
+    return this.prisma.userFeature
      .findMany({
        where: {
          activated: true,
@@ -182,7 +200,7 @@ export class FeatureService {
  }

  async hasUserFeature(userId: string, feature: FeatureType) {
-    return this.prisma.userFeatures
+    return this.prisma.userFeature
      .count({
        where: {
          userId,
@@ -206,7 +224,7 @@ export class FeatureService {
    expiredAt?: Date | string
  ) {
    return this.prisma.$transaction(async tx => {
-      const latestFlag = await tx.workspaceFeatures.findFirst({
+      const latestFlag = await tx.workspaceFeature.findFirst({
        where: {
          workspaceId,
          feature: {
@@ -223,7 +241,7 @@ export class FeatureService {
        return latestFlag.id;
      } else {
        // use latest version of feature
-        const featureId = await tx.features
+        const featureId = await tx.feature
          .findFirst({
            where: { feature, type: FeatureKind.Feature },
            select: { id: true },
@@ -235,7 +253,7 @@ export class FeatureService {
          throw new Error(`Feature ${feature} not found`);
        }

-        return tx.workspaceFeatures
+        return tx.workspaceFeature
          .create({
            data: {
              reason,
@@ -251,7 +269,7 @@ export class FeatureService {
  }

  async removeWorkspaceFeature(workspaceId: string, feature: FeatureType) {
-    return this.prisma.workspaceFeatures
+    return this.prisma.workspaceFeature
      .updateMany({
        where: {
          workspaceId,
@@ -274,7 +292,7 @@ export class FeatureService {
   * @returns list of features
   */
  async getWorkspaceFeatures(workspaceId: string) {
-    const features = await this.prisma.workspaceFeatures.findMany({
+    const features = await this.prisma.workspaceFeature.findMany({
      where: {
        workspace: { id: workspaceId },
        feature: {
@@ -301,7 +319,7 @@ export class FeatureService {
  }

  async listFeatureWorkspaces(feature: FeatureType): Promise<WorkspaceType[]> {
-    return this.prisma.workspaceFeatures
+    return this.prisma.workspaceFeature
      .findMany({
        where: {
          activated: true,
@@ -324,7 +342,7 @@ export class FeatureService {
  }

  async hasWorkspaceFeature(workspaceId: string, feature: FeatureType) {
-    return this.prisma.workspaceFeatures
+    return this.prisma.workspaceFeature
      .count({
        where: {
          workspaceId,
--- a/packages/backend/server/src/core/quota/quota.ts
+++ b/packages/backend/server/src/core/quota/quota.ts
@@ -13,7 +13,7 @@ export class QuotaConfig {
      return cachedQuota;
    }

-    const quota = await tx.features.findFirst({
+    const quota = await tx.feature.findFirst({
      where: {
        id: featureId,
      },
--- a/packages/backend/server/src/core/quota/schema.ts
+++ b/packages/backend/server/src/core/quota/schema.ts
@@ -155,6 +155,25 @@ export const Quotas: Quota[] = [
      copilotActionLimit: 10,
    },
  },
+  {
+    feature: QuotaType.LifetimeProPlanV1,
+    type: FeatureKind.Quota,
+    version: 1,
+    configs: {
+      // quota name
+      name: 'Lifetime Pro',
+      // single blob limit 100MB
+      blobLimit: 100 * OneMB,
+      // total blob limit 1TB
+      storageQuota: 1024 * OneGB,
+      // history period of validity 30 days
+      historyPeriod: 30 * OneDay,
+      // member limit 10
+      memberLimit: 10,
+      // copilot action limit 10
+      copilotActionLimit: 10,
+    },
+  },
 ];

 export function getLatestQuota(type: QuotaType) {
@@ -165,6 +184,7 @@ export function getLatestQuota(type: QuotaType) {

 export const FreePlan = getLatestQuota(QuotaType.FreePlanV1);
 export const ProPlan = getLatestQuota(QuotaType.ProPlanV1);
+export const LifetimeProPlan = getLatestQuota(QuotaType.LifetimeProPlanV1);

 export const Quota_FreePlanV1_1 = {
  feature: Quotas[5].feature,
--- a/packages/backend/server/src/core/quota/service.ts
+++ b/packages/backend/server/src/core/quota/service.ts
@@ -3,7 +3,6 @@ import { PrismaClient } from '@prisma/client';

 import type { EventPayload } from '../../fundamentals';
 import { OnEvent, PrismaTransaction } from '../../fundamentals';
-import { SubscriptionPlan } from '../../plugins/payment/types';
 import { FeatureManagementService } from '../features/management';
 import { FeatureKind } from '../features/types';
 import { QuotaConfig } from './quota';
@@ -18,7 +17,7 @@ export class QuotaService {

  // get activated user quota
  async getUserQuota(userId: string) {
-    const quota = await this.prisma.userFeatures.findFirst({
+    const quota = await this.prisma.userFeature.findFirst({
      where: {
        userId,
        feature: {
@@ -45,7 +44,7 @@ export class QuotaService {

  // get user all quota records
  async getUserQuotas(userId: string) {
-    const quotas = await this.prisma.userFeatures.findMany({
+    const quotas = await this.prisma.userFeature.findMany({
      where: {
        userId,
        feature: {
@@ -59,6 +58,9 @@ export class QuotaService {
        expiredAt: true,
        featureId: true,
      },
+      orderBy: {
+        id: 'asc',
+      },
    });
    const configs = await Promise.all(
      quotas.map(async quota => {
@@ -93,7 +95,7 @@ export class QuotaService {
        return;
      }

-      const featureId = await tx.features
+      const featureId = await tx.feature
        .findFirst({
          where: { feature: quota, type: FeatureKind.Quota },
          select: { id: true },
@@ -106,7 +108,7 @@ export class QuotaService {
      }

      // we will deactivate all exists quota for this user
-      await tx.userFeatures.updateMany({
+      await tx.userFeature.updateMany({
        where: {
          id: undefined,
          userId,
@@ -119,7 +121,7 @@ export class QuotaService {
        },
      });

-      await tx.userFeatures.create({
+      await tx.userFeature.create({
        data: {
          userId,
          featureId,
@@ -134,7 +136,7 @@ export class QuotaService {
  async hasQuota(userId: string, quota: QuotaType, tx?: PrismaTransaction) {
    const executor = tx ?? this.prisma;

-    return executor.userFeatures
+    return executor.userFeature
      .count({
        where: {
          userId,
@@ -152,15 +154,18 @@ export class QuotaService {
  async onSubscriptionUpdated({
    userId,
    plan,
+    recurring,
  }: EventPayload<'user.subscription.activated'>) {
    switch (plan) {
-      case SubscriptionPlan.AI:
+      case 'ai':
        await this.feature.addCopilot(userId, 'subscription activated');
        break;
-      case SubscriptionPlan.Pro:
+      case 'pro':
        await this.switchUserQuota(
          userId,
-          QuotaType.ProPlanV1,
+          recurring === 'lifetime'
+            ? QuotaType.LifetimeProPlanV1
+            : QuotaType.ProPlanV1,
          'subscription activated'
        );
        break;
@@ -175,16 +180,22 @@ export class QuotaService {
    plan,
  }: EventPayload<'user.subscription.canceled'>) {
    switch (plan) {
-      case SubscriptionPlan.AI:
+      case 'ai':
        await this.feature.removeCopilot(userId);
        break;
-      case SubscriptionPlan.Pro:
-        await this.switchUserQuota(
-          userId,
-          QuotaType.FreePlanV1,
-          'subscription canceled'
-        );
+      case 'pro': {
+        // edge case: when user switch from recurring Pro plan to `Lifetime` plan,
+        // a subscription canceled event will be triggered because `Lifetime` plan is not subscription based
+        const quota = await this.getUserQuota(userId);
+        if (quota.feature.name !== QuotaType.LifetimeProPlanV1) {
+          await this.switchUserQuota(
+            userId,
+            QuotaType.FreePlanV1,
+            'subscription canceled'
+          );
+        }
        break;
+      }
      default:
        break;
    }
--- a/packages/backend/server/src/core/quota/types.ts
+++ b/packages/backend/server/src/core/quota/types.ts
@@ -17,6 +17,7 @@ import { ByteUnit, OneDay, OneKB } from './constant';
 export enum QuotaType {
  FreePlanV1 = 'free_plan_v1',
  ProPlanV1 = 'pro_plan_v1',
+  LifetimeProPlanV1 = 'lifetime_pro_plan_v1',
  // only for test, smaller quota
  RestrictedPlanV1 = 'restricted_plan_v1',
 }
@@ -25,6 +26,7 @@ const quotaPlan = z.object({
  feature: z.enum([
    QuotaType.FreePlanV1,
    QuotaType.ProPlanV1,
+    QuotaType.LifetimeProPlanV1,
    QuotaType.RestrictedPlanV1,
  ]),
  configs: z.object({
--- a/packages/backend/server/src/core/setup/controller.ts
+++ b/packages/backend/server/src/core/setup/controller.ts
@@ -0,0 +1,66 @@
+import { Body, Controller, Post, Req, Res } from '@nestjs/common';
+import { PrismaClient } from '@prisma/client';
+import type { Request, Response } from 'express';
+
+import {
+  ActionForbidden,
+  EventEmitter,
+  InternalServerError,
+  MutexService,
+  PasswordRequired,
+} from '../../fundamentals';
+import { AuthService, Public } from '../auth';
+import { UserService } from '../user/service';
+
+interface CreateUserInput {
+  email: string;
+  password: string;
+}
+
+@Controller('/api/setup')
+export class CustomSetupController {
+  constructor(
+    private readonly db: PrismaClient,
+    private readonly user: UserService,
+    private readonly auth: AuthService,
+    private readonly event: EventEmitter,
+    private readonly mutex: MutexService
+  ) {}
+
+  @Public()
+  @Post('/create-admin-user')
+  async createAdmin(
+    @Req() req: Request,
+    @Res() res: Response,
+    @Body() input: CreateUserInput
+  ) {
+    if (!input.password) {
+      throw new PasswordRequired();
+    }
+
+    await using lock = await this.mutex.lock('createFirstAdmin');
+
+    if (!lock) {
+      throw new InternalServerError();
+    }
+
+    if ((await this.db.user.count()) > 0) {
+      throw new ActionForbidden('First user already created');
+    }
+
+    const user = await this.user.createUser({
+      email: input.email,
+      password: input.password,
+      registered: true,
+    });
+
+    try {
+      await this.event.emitAsync('user.admin.created', user);
+      await this.auth.setCookie(req, res, user);
+      res.send({ id: user.id, email: user.email, name: user.name });
+    } catch (e) {
+      await this.user.deleteUser(user.id);
+      throw e;
+    }
+  }
+}
--- a/packages/backend/server/src/core/setup/index.ts
+++ b/packages/backend/server/src/core/setup/index.ts
@@ -0,0 +1,11 @@
+import { Module } from '@nestjs/common';
+
+import { AuthModule } from '../auth';
+import { UserModule } from '../user';
+import { CustomSetupController } from './controller';
+
+@Module({
+  imports: [AuthModule, UserModule],
+  controllers: [CustomSetupController],
+})
+export class CustomSetupModule {}
--- a/packages/backend/server/src/core/sync/events/events.gateway.ts
+++ b/packages/backend/server/src/core/sync/events/events.gateway.ts
@@ -50,12 +50,7 @@ function Awareness(workspaceId: string): `${string}:awareness` {
  return `${workspaceId}:awareness`;
 }

-@WebSocketGateway({
-  cors: !AFFiNE.node.prod,
-  transports: ['websocket'],
-  // see: https://socket.io/docs/v4/server-options/#maxhttpbuffersize
-  maxHttpBufferSize: 1e8, // 100 MB
-})
+@WebSocketGateway()
 export class EventsGateway implements OnGatewayConnection, OnGatewayDisconnect {
  protected logger = new Logger(EventsGateway.name);
  private connectionCount = 0;
--- a/packages/backend/server/src/core/user/resolver.ts
+++ b/packages/backend/server/src/core/user/resolver.ts
@@ -13,8 +13,7 @@ import GraphQLUpload from 'graphql-upload/GraphQLUpload.mjs';
 import { isNil, omitBy } from 'lodash-es';

 import {
-  Config,
-  CryptoHelper,
+  CannotDeleteOwnAccount,
  type FileUpload,
  Throttle,
  UserNotFound,
@@ -28,6 +27,7 @@ import { validators } from '../utils/validators';
 import { UserService } from './service';
 import {
  DeleteAccount,
+  ManageUserInput,
  RemoveAvatar,
  UpdateUserInput,
  UserOrLimitedUser,
@@ -167,9 +167,6 @@ class CreateUserInput {

  @Field(() => String, { nullable: true })
  name!: string | null;
-
-  @Field(() => String, { nullable: true })
-  password!: string | null;
 }

@Admin()
@@ -177,11 +174,16 @@ class CreateUserInput {
 export class UserManagementResolver {
  constructor(
    private readonly db: PrismaClient,
-    private readonly user: UserService,
-    private readonly crypto: CryptoHelper,
-    private readonly config: Config
+    private readonly user: UserService
  ) {}

+  @Query(() => Int, {
+    description: 'Get users count',
+  })
+  async usersCount(): Promise<number> {
+    return this.db.user.count();
+  }
+
  @Query(() => [UserType], {
    description: 'List registered users',
  })
@@ -216,28 +218,34 @@ export class UserManagementResolver {
    return sessionUser(user);
  }

+  @Query(() => UserType, {
+    name: 'userByEmail',
+    description: 'Get user by email for admin',
+    nullable: true,
+  })
+  async getUserByEmail(@Args('email') email: string) {
+    const user = await this.db.user.findUnique({
+      select: { ...this.user.defaultUserSelect, password: true },
+      where: {
+        email,
+      },
+    });
+
+    if (!user) {
+      return null;
+    }
+
+    return sessionUser(user);
+  }
+
  @Mutation(() => UserType, {
    description: 'Create a new user',
  })
  async createUser(
    @Args({ name: 'input', type: () => CreateUserInput }) input: CreateUserInput
  ) {
-    validators.assertValidEmail(input.email);
-    if (input.password) {
-      const config = await this.config.runtime.fetchAll({
-        'auth/password.max': true,
-        'auth/password.min': true,
-      });
-      validators.assertValidPassword(input.password, {
-        max: config['auth/password.max'],
-        min: config['auth/password.min'],
-      });
-    }
-
-    const { id } = await this.user.createAnonymousUser(input.email, {
-      password: input.password
-        ? await this.crypto.encryptPassword(input.password)
-        : undefined,
+    const { id } = await this.user.createUser({
+      email: input.email,
      registered: true,
    });

@@ -248,8 +256,42 @@ export class UserManagementResolver {
  @Mutation(() => DeleteAccount, {
    description: 'Delete a user account',
  })
-  async deleteUser(@Args('id') id: string): Promise<DeleteAccount> {
+  async deleteUser(
+    @CurrentUser() user: CurrentUser,
+    @Args('id') id: string
+  ): Promise<DeleteAccount> {
+    if (user.id === id) {
+      throw new CannotDeleteOwnAccount();
+    }
    await this.user.deleteUser(id);
    return { success: true };
  }
+
+  @Mutation(() => UserType, {
+    description: 'Update a user',
+  })
+  async updateUser(
+    @Args('id') id: string,
+    @Args('input') input: ManageUserInput
+  ): Promise<UserType> {
+    const user = await this.db.user.findUnique({
+      where: { id },
+    });
+
+    if (!user) {
+      throw new UserNotFound();
+    }
+
+    input = omitBy(input, isNil);
+    if (Object.keys(input).length === 0) {
+      return sessionUser(user);
+    }
+
+    return sessionUser(
+      await this.user.updateUser(user.id, {
+        email: input.email,
+        name: input.name,
+      })
+    );
+  }
 }
--- a/packages/backend/server/src/core/user/service.ts
+++ b/packages/backend/server/src/core/user/service.ts
@@ -3,12 +3,18 @@ import { Prisma, PrismaClient } from '@prisma/client';

 import {
  Config,
+  CryptoHelper,
  EmailAlreadyUsed,
  EventEmitter,
  type EventPayload,
  OnEvent,
+  WrongSignInCredentials,
+  WrongSignInMethod,
 } from '../../fundamentals';
 import { Quota_FreePlanV1_1 } from '../quota/schema';
+import { validators } from '../utils/validators';
+
+type CreateUserInput = Omit<Prisma.UserCreateInput, 'name'> & { name?: string };

@Injectable()
 export class UserService {
@@ -26,6 +32,7 @@ export class UserService {

  constructor(
    private readonly config: Config,
+    private readonly crypto: CryptoHelper,
    private readonly prisma: PrismaClient,
    private readonly emitter: EventEmitter
  ) {}
@@ -35,7 +42,7 @@ export class UserService {
      name: 'Unnamed',
      features: {
        create: {
-          reason: 'created by invite sign up',
+          reason: 'sign up',
          activated: true,
          feature: {
            connect: {
@@ -47,7 +54,37 @@ export class UserService {
    };
  }

-  async createUser(data: Prisma.UserCreateInput) {
+  async createUser(data: CreateUserInput) {
+    validators.assertValidEmail(data.email);
+    const user = await this.findUserByEmail(data.email);
+
+    if (user) {
+      throw new EmailAlreadyUsed();
+    }
+
+    if (data.password) {
+      const config = await this.config.runtime.fetchAll({
+        'auth/password.max': true,
+        'auth/password.min': true,
+      });
+      validators.assertValidPassword(data.password, {
+        max: config['auth/password.max'],
+        min: config['auth/password.min'],
+      });
+    }
+
+    return this.createUser_without_verification(data);
+  }
+
+  async createUser_without_verification(data: CreateUserInput) {
+    if (data.password) {
+      data.password = await this.crypto.encryptPassword(data.password);
+    }
+
+    if (!data.name) {
+      data.name = data.email.split('@')[0];
+    }
+
    return this.prisma.user.create({
      select: this.defaultUserSelect,
      data: {
@@ -57,23 +94,6 @@ export class UserService {
    });
  }

-  async createAnonymousUser(
-    email: string,
-    data?: Partial<Prisma.UserCreateInput>
-  ) {
-    const user = await this.findUserByEmail(email);
-
-    if (user) {
-      throw new EmailAlreadyUsed();
-    }
-
-    return this.createUser({
-      email,
-      name: email.split('@')[0],
-      ...data,
-    });
-  }
-
  async findUserById(id: string) {
    return this.prisma.user
      .findUnique({
@@ -86,6 +106,7 @@ export class UserService {
  }

  async findUserByEmail(email: string) {
+    validators.assertValidEmail(email);
    return this.prisma.user.findFirst({
      where: {
        email: {
@@ -101,6 +122,7 @@ export class UserService {
   * supposed to be used only for `Credential SignIn`
   */
  async findUserWithHashedPasswordByEmail(email: string) {
+    validators.assertValidEmail(email);
    return this.prisma.user.findFirst({
      where: {
        email: {
@@ -111,15 +133,27 @@ export class UserService {
    });
  }

-  async findOrCreateUser(
-    email: string,
-    data?: Partial<Prisma.UserCreateInput>
-  ) {
-    const user = await this.findUserByEmail(email);
-    if (user) {
-      return user;
+  async signIn(email: string, password: string) {
+    const user = await this.findUserWithHashedPasswordByEmail(email);
+
+    if (!user) {
+      throw new WrongSignInCredentials();
    }
-    return this.createAnonymousUser(email, data);
+
+    if (!user.password) {
+      throw new WrongSignInMethod();
+    }
+
+    const passwordMatches = await this.crypto.verifyPassword(
+      password,
+      user.password
+    );
+
+    if (!passwordMatches) {
+      throw new WrongSignInCredentials();
+    }
+
+    return user;
  }

  async fulfillUser(
@@ -160,9 +194,38 @@ export class UserService {

  async updateUser(
    id: string,
-    data: Prisma.UserUpdateInput,
+    data: Omit<Partial<Prisma.UserCreateInput>, 'id'>,
    select: Prisma.UserSelect = this.defaultUserSelect
  ) {
+    if (data.password) {
+      const config = await this.config.runtime.fetchAll({
+        'auth/password.max': true,
+        'auth/password.min': true,
+      });
+      validators.assertValidPassword(data.password, {
+        max: config['auth/password.max'],
+        min: config['auth/password.min'],
+      });
+
+      data.password = await this.crypto.encryptPassword(data.password);
+    }
+
+    if (data.email) {
+      validators.assertValidEmail(data.email);
+      const emailTaken = await this.prisma.user.count({
+        where: {
+          email: data.email,
+          id: {
+            not: id,
+          },
+        },
+      });
+
+      if (emailTaken) {
+        throw new EmailAlreadyUsed();
+      }
+    }
+
    const user = await this.prisma.user.update({ where: { id }, data, select });

    this.emitter.emit('user.updated', user);
--- a/packages/backend/server/src/core/user/types.ts
+++ b/packages/backend/server/src/core/user/types.ts
@@ -7,6 +7,7 @@ import {
 } from '@nestjs/graphql';
 import type { User } from '@prisma/client';

+import type { Payload } from '../../fundamentals/event/def';
 import { CurrentUser } from '../auth/current-user';

@ObjectType()
@@ -81,3 +82,20 @@ export class UpdateUserInput implements Partial<User> {
  @Field({ description: 'User name', nullable: true })
  name?: string;
 }
+
+@InputType()
+export class ManageUserInput {
+  @Field({ description: 'User email', nullable: true })
+  email?: string;
+
+  @Field({ description: 'User name', nullable: true })
+  name?: string;
+}
+
+declare module '../../fundamentals/event/def' {
+  interface UserEvents {
+    admin: {
+      created: Payload<{ id: string }>;
+    };
+  }
+}
--- a/packages/backend/server/src/core/workspaces/resolvers/workspace.ts
+++ b/packages/backend/server/src/core/workspaces/resolvers/workspace.ts
@@ -342,7 +342,8 @@ export class WorkspaceResolver {
        // only invite if the user is not already in the workspace
        if (originRecord) return originRecord.id;
      } else {
-        target = await this.users.createAnonymousUser(email, {
+        target = await this.users.createUser({
+          email,
          registered: false,
        });
      }
--- a/packages/backend/server/src/data/migrations/1698652531198-user-features-init.ts
+++ b/packages/backend/server/src/data/migrations/1698652531198-user-features-init.ts
@@ -2,7 +2,7 @@ import { PrismaClient } from '@prisma/client';

 import { Features } from '../../core/features';
 import { Quotas } from '../../core/quota/schema';
-import { migrateNewFeatureTable, upsertFeature } from './utils/user-features';
+import { upsertFeature } from './utils/user-features';

 export class UserFeaturesInit1698652531198 {
  // do the migration
@@ -11,7 +11,6 @@ export class UserFeaturesInit1698652531198 {
    for (const feature of Features) {
      await upsertFeature(db, feature);
    }
-    await migrateNewFeatureTable(db);

    for (const quota of Quotas) {
      await upsertFeature(db, quota);
--- a/packages/backend/server/src/data/migrations/1699005339766-page-permission.ts
+++ b/packages/backend/server/src/data/migrations/1699005339766-page-permission.ts
@@ -1,94 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-export class PagePermission1699005339766 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    let turn = 0;
-    let lastTurnCount = 50;
-    const done = new Set<string>();
-
-    while (lastTurnCount === 50) {
-      const workspaces = await db.workspace.findMany({
-        skip: turn * 50,
-        take: 50,
-        orderBy: {
-          createdAt: 'asc',
-        },
-      });
-      lastTurnCount = workspaces.length;
-
-      for (const workspace of workspaces) {
-        if (done.has(workspace.id)) {
-          continue;
-        }
-
-        const oldPermissions =
-          await db.deprecatedUserWorkspacePermission.findMany({
-            where: {
-              workspaceId: workspace.id,
-            },
-          });
-
-        for (const oldPermission of oldPermissions) {
-          // mark subpage public
-          if (oldPermission.subPageId) {
-            const existed = await db.workspacePage.findUnique({
-              where: {
-                workspaceId_pageId: {
-                  workspaceId: oldPermission.workspaceId,
-                  pageId: oldPermission.subPageId,
-                },
-              },
-            });
-            if (!existed) {
-              await db.workspacePage.create({
-                select: null,
-                data: {
-                  workspaceId: oldPermission.workspaceId,
-                  pageId: oldPermission.subPageId,
-                  public: true,
-                },
-              });
-            }
-          } else if (oldPermission.userId) {
-            // workspace user permission
-            const existed = await db.workspaceUserPermission.findUnique({
-              where: {
-                id: oldPermission.id,
-              },
-            });
-
-            if (!existed) {
-              await db.workspaceUserPermission
-                .create({
-                  select: null,
-                  data: {
-                    // this id is used at invite email, should keep
-                    id: oldPermission.id,
-                    workspaceId: oldPermission.workspaceId,
-                    userId: oldPermission.userId,
-                    type: oldPermission.type,
-                    accepted: oldPermission.accepted,
-                  },
-                })
-                .catch(() => {
-                  // duplicated
-                });
-            }
-          } else {
-            // ignore wrong data
-          }
-        }
-
-        done.add(workspace.id);
-      }
-
-      turn++;
-    }
-  }
-
-  // revert the migration
-  static async down(db: PrismaClient) {
-    await db.workspaceUserPermission.deleteMany({});
-    await db.workspacePageUserPermission.deleteMany({});
-  }
-}
--- a/packages/backend/server/src/data/migrations/1702620653283-old-user-feature.ts
+++ b/packages/backend/server/src/data/migrations/1702620653283-old-user-feature.ts
@@ -5,7 +5,7 @@ export class OldUserFeature1702620653283 {
  // do the migration
  static async up(db: PrismaClient) {
    await db.$transaction(async tx => {
-      const latestFreePlan = await tx.features.findFirstOrThrow({
+      const latestFreePlan = await tx.feature.findFirstOrThrow({
        where: { feature: QuotaType.FreePlanV1 },
        orderBy: { version: 'desc' },
        select: { id: true },
@@ -17,7 +17,7 @@ export class OldUserFeature1702620653283 {
        select: { id: true },
      });

-      await tx.userFeatures.createMany({
+      await tx.userFeature.createMany({
        data: userIds.map(({ id: userId }) => ({
          userId,
          featureId: latestFreePlan.id,
@@ -31,6 +31,6 @@ export class OldUserFeature1702620653283 {
  // revert the migration
  // WARN: this will drop all user features
  static async down(db: PrismaClient) {
-    await db.userFeatures.deleteMany({});
+    await db.userFeature.deleteMany({});
  }
 }
--- a/packages/backend/server/src/data/migrations/1703756315970-unamed-account.ts
+++ b/packages/backend/server/src/data/migrations/1703756315970-unamed-account.ts
@@ -9,9 +9,6 @@ export class UnamedAccount1703756315970 {
      const users = await db.$queryRaw<
        User[]
      >`SELECT * FROM users WHERE name ~ E'^[\\s\\u2000-\\u200F]*$';`;
-      console.log(
-        `renaming ${users.map(({ email }) => email).join('|')} users`
-      );

      await Promise.all(
        users.map(({ id, email }) =>
--- a/packages/backend/server/src/data/migrations/1703828796699-workspace-blobs.ts
+++ b/packages/backend/server/src/data/migrations/1703828796699-workspace-blobs.ts
@@ -1,38 +0,0 @@
-import { ModuleRef } from '@nestjs/core';
-import { PrismaClient } from '@prisma/client';
-
-import { WorkspaceBlobStorage } from '../../core/storage';
-
-export class WorkspaceBlobs1703828796699 {
-  // do the migration
-  static async up(db: PrismaClient, injector: ModuleRef) {
-    const blobStorage = injector.get(WorkspaceBlobStorage, { strict: false });
-    let hasMore = true;
-    let turn = 0;
-    const eachTurnCount = 50;
-
-    while (hasMore) {
-      const blobs = await db.blob.findMany({
-        skip: turn * eachTurnCount,
-        take: eachTurnCount,
-        orderBy: {
-          createdAt: 'asc',
-        },
-      });
-
-      hasMore = blobs.length === eachTurnCount;
-      turn += 1;
-
-      await Promise.all(
-        blobs.map(async ({ workspaceId, hash, blob }) =>
-          blobStorage.put(workspaceId, hash, blob)
-        )
-      );
-    }
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {
-    // old data kept, no need to downgrade the migration
-  }
-}
--- a/packages/backend/server/src/data/migrations/1710319359062-oauth.ts
+++ b/packages/backend/server/src/data/migrations/1710319359062-oauth.ts
@@ -1,39 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { loop } from './utils/loop';
-
-export class Oauth1710319359062 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await loop(async (skip, take) => {
-      const oldRecords = await db.deprecatedNextAuthAccount.findMany({
-        skip,
-        take,
-        orderBy: {
-          providerAccountId: 'asc',
-        },
-      });
-
-      await db.connectedAccount.createMany({
-        data: oldRecords.map(record => ({
-          userId: record.userId,
-          provider: record.provider,
-          scope: record.scope,
-          providerAccountId: record.providerAccountId,
-          accessToken: record.access_token,
-          refreshToken: record.refresh_token,
-          expiresAt: record.expires_at
-            ? new Date(record.expires_at * 1000)
-            : null,
-        })),
-      });
-
-      return oldRecords.length;
-    }, 10);
-  }
-
-  // revert the migration
-  static async down(db: PrismaClient) {
-    await db.connectedAccount.deleteMany({});
-  }
-}
--- a/packages/backend/server/src/data/migrations/1712068777394-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1712068777394-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class Prompts1712068777394 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1713185798895-refresh-prompt.ts
+++ b/packages/backend/server/src/data/migrations/1713185798895-refresh-prompt.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class RefreshPrompt1713185798895 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1713522040090-update-prompt.ts
+++ b/packages/backend/server/src/data/migrations/1713522040090-update-prompt.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompt1713522040090 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1713777617122-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1713777617122-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1713777617122 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1713864641056-update-prompt.ts
+++ b/packages/backend/server/src/data/migrations/1713864641056-update-prompt.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompt1713864641056 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714021969665-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714021969665-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714021969665 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714386922280-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714386922280-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714386922280 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714454280973-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714454280973-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714454280973 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714982671938-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714982671938-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714982671938 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714992100105-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714992100105-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714992100105 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1714998654392-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1714998654392-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1714998654392 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1715149980782-add-make-it-real-with-text-prompt.ts
+++ b/packages/backend/server/src/data/migrations/1715149980782-add-make-it-real-with-text-prompt.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class AddMakeItRealWithTextPrompt1715149980782 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1715672224087-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1715672224087-update-prompts.ts
@@ -1,22 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1715672224087 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(db: PrismaClient) {
-    await db.aiPrompt.updateMany({
-      where: {
-        model: 'gpt-4o',
-      },
-      data: {
-        model: 'gpt-4-vision-preview',
-      },
-    });
-  }
-}
--- a/packages/backend/server/src/data/migrations/1715936358947-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1715936358947-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1715936358947 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1716451792364-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1716451792364-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1716451792364 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1716800288136-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1716800288136-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1716800288136 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1716882419364-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1716882419364-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1716882419364 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1717139930406-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1717139930406-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1717139930406 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1717140940966-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1717140940966-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1717140940966 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1717490700326-update-prompts.ts
+++ b/packages/backend/server/src/data/migrations/1717490700326-update-prompts.ts
@@ -1,13 +0,0 @@
-import { PrismaClient } from '@prisma/client';
-
-import { refreshPrompts } from './utils/prompts';
-
-export class UpdatePrompts1717490700326 {
-  // do the migration
-  static async up(db: PrismaClient) {
-    await refreshPrompts(db);
-  }
-
-  // revert the migration
-  static async down(_db: PrismaClient) {}
-}
--- a/packages/backend/server/src/data/migrations/1719917815802-lifetime-pro-quota.ts
+++ b/packages/backend/server/src/data/migrations/1719917815802-lifetime-pro-quota.ts
@@ -0,0 +1,14 @@
+import { PrismaClient } from '@prisma/client';
+
+import { QuotaType } from '../../core/quota';
+import { upsertLatestQuotaVersion } from './utils/user-quotas';
+
+export class LifetimeProQuota1719917815802 {
+  // do the migration
+  static async up(db: PrismaClient) {
+    await upsertLatestQuotaVersion(db, QuotaType.LifetimeProPlanV1);
+  }
+
+  // revert the migration
+  static async down(_db: PrismaClient) {}
+}
--- a/packages/backend/server/src/data/migrations/1721299086340-refresh-unnamed-user.ts
+++ b/packages/backend/server/src/data/migrations/1721299086340-refresh-unnamed-user.ts
@@ -0,0 +1,15 @@
+import { PrismaClient } from '@prisma/client';
+
+export class RefreshUnnamedUser1721299086340 {
+  // do the migration
+  static async up(db: PrismaClient) {
+    await db.$executeRaw`
+      UPDATE users
+      SET name = split_part(email, '@', 1)
+      WHERE name = 'Unnamed' AND position('@' in email) > 0;
+    `;
+  }
+
+  // revert the migration
+  static async down(_db: PrismaClient) {}
+}
--- a/packages/backend/server/src/data/migrations/99999-self-host-admin.ts
+++ b/packages/backend/server/src/data/migrations/99999-self-host-admin.ts
@@ -2,33 +2,14 @@ import { ModuleRef } from '@nestjs/core';
 import { PrismaClient } from '@prisma/client';

 import { FeatureManagementService } from '../../core/features';
-import { UserService } from '../../core/user';
-import { Config, CryptoHelper } from '../../fundamentals';
+import { Config } from '../../fundamentals';

 export class SelfHostAdmin1 {
  // do the migration
  static async up(db: PrismaClient, ref: ModuleRef) {
    const config = ref.get(Config, { strict: false });
    if (config.isSelfhosted) {
-      const crypto = ref.get(CryptoHelper, { strict: false });
-      const user = ref.get(UserService, { strict: false });
      const feature = ref.get(FeatureManagementService, { strict: false });
-      if (
-        !process.env.AFFINE_ADMIN_EMAIL ||
-        !process.env.AFFINE_ADMIN_PASSWORD
-      ) {
-        throw new Error(
-          'You have to set AFFINE_ADMIN_EMAIL and AFFINE_ADMIN_PASSWORD environment variables to generate the initial user for self-hosted AFFiNE Server.'
-        );
-      }
-
-      await user.findOrCreateUser(process.env.AFFINE_ADMIN_EMAIL, {
-        name: 'AFFINE First User',
-        emailVerifiedAt: new Date(),
-        password: await crypto.encryptPassword(
-          process.env.AFFINE_ADMIN_PASSWORD
-        ),
-      });

      const firstUser = await db.user.findFirst({
        orderBy: {
--- a/packages/backend/server/src/data/migrations/utils/user-features.ts
+++ b/packages/backend/server/src/data/migrations/utils/user-features.ts
@@ -1,11 +1,6 @@
 import { Prisma, PrismaClient } from '@prisma/client';

-import {
-  CommonFeature,
-  FeatureKind,
-  Features,
-  FeatureType,
-} from '../../../core/features';
+import { CommonFeature, Features, FeatureType } from '../../../core/features';

 // upgrade features from lower version to higher version
 export async function upsertFeature(
@@ -13,7 +8,7 @@ export async function upsertFeature(
  feature: CommonFeature
 ): Promise<void> {
  const hasEqualOrGreaterVersion =
-    (await db.features.count({
+    (await db.feature.count({
      where: {
        feature: feature.feature,
        version: {
@@ -23,7 +18,7 @@ export async function upsertFeature(
    })) > 0;
  // will not update exists version
  if (!hasEqualOrGreaterVersion) {
-    await db.features.create({
+    await db.feature.create({
      data: {
        feature: feature.feature,
        type: feature.type,
@@ -43,66 +38,3 @@ export async function upsertLatestFeatureVersion(
  const latestFeature = feature[0];
  await upsertFeature(db, latestFeature);
 }
-
-export async function migrateNewFeatureTable(prisma: PrismaClient) {
-  const waitingList = await prisma.newFeaturesWaitingList.findMany();
-  const latestEarlyAccessFeatureId = await prisma.features
-    .findFirst({
-      where: { feature: FeatureType.EarlyAccess, type: FeatureKind.Feature },
-      select: { id: true },
-      orderBy: { version: 'desc' },
-    })
-    .then(r => r?.id);
-  if (!latestEarlyAccessFeatureId) {
-    throw new Error('Feature EarlyAccess not found');
-  }
-  for (const oldUser of waitingList) {
-    const user = await prisma.user.findFirst({
-      where: {
-        email: oldUser.email,
-      },
-    });
-    if (user) {
-      const hasEarlyAccess = await prisma.userFeatures.count({
-        where: {
-          userId: user.id,
-          feature: {
-            feature: FeatureType.EarlyAccess,
-          },
-          activated: true,
-        },
-      });
-      if (hasEarlyAccess === 0) {
-        await prisma.$transaction(async tx => {
-          const latestFlag = await tx.userFeatures.findFirst({
-            where: {
-              userId: user.id,
-              feature: {
-                feature: FeatureType.EarlyAccess,
-                type: FeatureKind.Feature,
-              },
-              activated: true,
-            },
-            orderBy: {
-              createdAt: 'desc',
-            },
-          });
-          if (latestFlag) {
-            return latestFlag.id;
-          } else {
-            return tx.userFeatures
-              .create({
-                data: {
-                  reason: 'Early access user',
-                  activated: true,
-                  userId: user.id,
-                  featureId: latestEarlyAccessFeatureId,
-                },
-              })
-              .then(r => r.id);
-          }
-        });
-      }
-    }
-  }
-}
--- a/packages/backend/server/src/data/migrations/utils/user-quotas.ts
+++ b/packages/backend/server/src/data/migrations/utils/user-quotas.ts
@@ -15,7 +15,7 @@ export async function upgradeQuotaVersion(
  // migrate all users that using old quota to new quota
  await db.$transaction(
    async tx => {
-      const latestQuotaVersion = await tx.features.findFirstOrThrow({
+      const latestQuotaVersion = await tx.feature.findFirstOrThrow({
        where: { feature: quota.feature },
        orderBy: { version: 'desc' },
        select: { id: true },
@@ -39,7 +39,7 @@ export async function upgradeQuotaVersion(
      });

      // deactivate all old quota for the user
-      await tx.userFeatures.updateMany({
+      await tx.userFeature.updateMany({
        where: {
          id: undefined,
          userId: {
@@ -55,7 +55,7 @@ export async function upgradeQuotaVersion(
        },
      });

-      await tx.userFeatures.createMany({
+      await tx.userFeature.createMany({
        data: userIds.map(({ id: userId }) => ({
          userId,
          featureId: latestQuotaVersion.id,
--- a/packages/backend/server/src/fundamentals/config/runtime/service.ts
+++ b/packages/backend/server/src/fundamentals/config/runtime/service.ts
@@ -3,7 +3,7 @@ import {
  Inject,
  Injectable,
  Logger,
-  OnApplicationBootstrap,
+  OnModuleInit,
 } from '@nestjs/common';
 import { PrismaClient } from '@prisma/client';
 import { difference, keyBy } from 'lodash-es';
@@ -45,7 +45,7 @@ function validateConfigType<K extends keyof FlattenedAppRuntimeConfig>(
 * })
 */
@Injectable()
-export class Runtime implements OnApplicationBootstrap {
+export class Runtime implements OnModuleInit {
  private readonly logger = new Logger('App:RuntimeConfig');

  constructor(
@@ -54,7 +54,7 @@ export class Runtime implements OnApplicationBootstrap {
    @Inject(forwardRef(() => Cache)) private readonly cache: Cache
  ) {}

-  async onApplicationBootstrap() {
+  async onModuleInit() {
    await this.upgradeDB();
  }

--- a/packages/backend/server/src/fundamentals/error/def.ts
+++ b/packages/backend/server/src/fundamentals/error/def.ts
@@ -63,7 +63,7 @@ export class UserFriendlyError extends Error {
    // disallow message override for `internal_server_error`
    // to avoid leak internal information to user
    let msg =
-      name === 'internal_server_error' ? defaultMsg : message ?? defaultMsg;
+      name === 'internal_server_error' ? defaultMsg : (message ?? defaultMsg);

    if (typeof msg === 'function') {
      msg = msg(args);
@@ -95,7 +95,7 @@ export class UserFriendlyError extends Error {

    new Logger(context).error(
      'Internal server error',
-      this.cause ? (this.cause as any).stack ?? this.cause : this.stack
+      this.cause ? ((this.cause as any).stack ?? this.cause) : this.stack
    );
  }
 }
@@ -254,6 +254,10 @@ export const USER_FRIENDLY_ERRORS = {
    message: ({ min, max }) =>
      `Password must be between ${min} and ${max} characters`,
  },
+  password_required: {
+    type: 'invalid_input',
+    message: 'Password is required.',
+  },
  wrong_sign_in_method: {
    type: 'invalid_input',
    message:
@@ -408,6 +412,10 @@ export const USER_FRIENDLY_ERRORS = {
    args: { plan: 'string', recurring: 'string' },
    message: 'You are trying to access a unknown subscription plan.',
  },
+  cant_update_lifetime_subscription: {
+    type: 'action_forbidden',
+    message: 'You cannot update a lifetime subscription.',
+  },

  // Copilot errors
  copilot_session_not_found: {
@@ -440,7 +448,8 @@ export const USER_FRIENDLY_ERRORS = {
  },
  copilot_message_not_found: {
    type: 'resource_not_found',
-    message: `Copilot message not found.`,
+    args: { messageId: 'string' },
+    message: ({ messageId }) => `Copilot message ${messageId} not found.`,
  },
  copilot_prompt_not_found: {
    type: 'resource_not_found',
@@ -455,7 +464,7 @@ export const USER_FRIENDLY_ERRORS = {
    type: 'internal_server_error',
    args: { provider: 'string', kind: 'string', message: 'string' },
    message: ({ provider, kind, message }) =>
-      `Provider ${provider} failed with ${kind} error: ${message || 'unknown'}.`,
+      `Provider ${provider} failed with ${kind} error: ${message || 'unknown'}`,
  },

  // Quota & Limit errors
@@ -489,4 +498,12 @@ export const USER_FRIENDLY_ERRORS = {
    type: 'internal_server_error',
    message: 'Mailer service is not configured.',
  },
+  cannot_delete_all_admin_account: {
+    type: 'action_forbidden',
+    message: 'Cannot delete all admin accounts.',
+  },
+  cannot_delete_own_account: {
+    type: 'action_forbidden',
+    message: 'Cannot delete own account.',
+  },
 } satisfies Record<string, UserFriendlyErrorOptions>;
--- a/packages/backend/server/src/fundamentals/error/errors.gen.ts
+++ b/packages/backend/server/src/fundamentals/error/errors.gen.ts
@@ -101,6 +101,12 @@ export class InvalidPasswordLength extends UserFriendlyError {
  }
 }

+export class PasswordRequired extends UserFriendlyError {
+  constructor(message?: string) {
+    super('invalid_input', 'password_required', message);
+  }
+}
+
 export class WrongSignInMethod extends UserFriendlyError {
  constructor(message?: string) {
    super('invalid_input', 'wrong_sign_in_method', message);
@@ -350,6 +356,12 @@ export class SubscriptionPlanNotFound extends UserFriendlyError {
  }
 }

+export class CantUpdateLifetimeSubscription extends UserFriendlyError {
+  constructor(message?: string) {
+    super('action_forbidden', 'cant_update_lifetime_subscription', message);
+  }
+}
+
 export class CopilotSessionNotFound extends UserFriendlyError {
  constructor(message?: string) {
    super('resource_not_found', 'copilot_session_not_found', message);
@@ -391,10 +403,14 @@ export class CopilotActionTaken extends UserFriendlyError {
    super('action_forbidden', 'copilot_action_taken', message);
  }
 }
+@ObjectType()
+class CopilotMessageNotFoundDataType {
+  @Field() messageId!: string
+}

 export class CopilotMessageNotFound extends UserFriendlyError {
-  constructor(message?: string) {
-    super('resource_not_found', 'copilot_message_not_found', message);
+  constructor(args: CopilotMessageNotFoundDataType, message?: string | ((args: CopilotMessageNotFoundDataType) => string)) {
+    super('resource_not_found', 'copilot_message_not_found', message, args);
  }
 }
@ObjectType()
@@ -471,6 +487,18 @@ export class MailerServiceIsNotConfigured extends UserFriendlyError {
    super('internal_server_error', 'mailer_service_is_not_configured', message);
  }
 }
+
+export class CannotDeleteAllAdminAccount extends UserFriendlyError {
+  constructor(message?: string) {
+    super('action_forbidden', 'cannot_delete_all_admin_account', message);
+  }
+}
+
+export class CannotDeleteOwnAccount extends UserFriendlyError {
+  constructor(message?: string) {
+    super('action_forbidden', 'cannot_delete_own_account', message);
+  }
+}
 export enum ErrorNames {
  INTERNAL_SERVER_ERROR,
  TOO_MANY_REQUEST,
@@ -486,6 +514,7 @@ export enum ErrorNames {
  OAUTH_ACCOUNT_ALREADY_CONNECTED,
  INVALID_EMAIL,
  INVALID_PASSWORD_LENGTH,
+  PASSWORD_REQUIRED,
  WRONG_SIGN_IN_METHOD,
  EARLY_ACCESS_REQUIRED,
  SIGN_UP_FORBIDDEN,
@@ -517,6 +546,7 @@ export enum ErrorNames {
  SAME_SUBSCRIPTION_RECURRING,
  CUSTOMER_PORTAL_CREATE_FAILED,
  SUBSCRIPTION_PLAN_NOT_FOUND,
+  CANT_UPDATE_LIFETIME_SUBSCRIPTION,
  COPILOT_SESSION_NOT_FOUND,
  COPILOT_SESSION_DELETED,
  NO_COPILOT_PROVIDER_AVAILABLE,
@@ -533,7 +563,9 @@ export enum ErrorNames {
  COPILOT_QUOTA_EXCEEDED,
  RUNTIME_CONFIG_NOT_FOUND,
  INVALID_RUNTIME_CONFIG_TYPE,
-  MAILER_SERVICE_IS_NOT_CONFIGURED
+  MAILER_SERVICE_IS_NOT_CONFIGURED,
+  CANNOT_DELETE_ALL_ADMIN_ACCOUNT,
+  CANNOT_DELETE_OWN_ACCOUNT
 }
 registerEnumType(ErrorNames, {
  name: 'ErrorNames'
@@ -542,5 +574,5 @@ registerEnumType(ErrorNames, {
 export const ErrorDataUnionType = createUnionType({
  name: 'ErrorDataUnion',
  types: () =>
-    [UnknownOauthProviderDataType, MissingOauthQueryParameterDataType, InvalidPasswordLengthDataType, WorkspaceNotFoundDataType, NotInWorkspaceDataType, WorkspaceAccessDeniedDataType, WorkspaceOwnerNotFoundDataType, DocNotFoundDataType, DocAccessDeniedDataType, VersionRejectedDataType, InvalidHistoryTimestampDataType, DocHistoryNotFoundDataType, BlobNotFoundDataType, SubscriptionAlreadyExistsDataType, SubscriptionNotExistsDataType, SameSubscriptionRecurringDataType, SubscriptionPlanNotFoundDataType, CopilotPromptNotFoundDataType, CopilotProviderSideErrorDataType, RuntimeConfigNotFoundDataType, InvalidRuntimeConfigTypeDataType] as const,
+    [UnknownOauthProviderDataType, MissingOauthQueryParameterDataType, InvalidPasswordLengthDataType, WorkspaceNotFoundDataType, NotInWorkspaceDataType, WorkspaceAccessDeniedDataType, WorkspaceOwnerNotFoundDataType, DocNotFoundDataType, DocAccessDeniedDataType, VersionRejectedDataType, InvalidHistoryTimestampDataType, DocHistoryNotFoundDataType, BlobNotFoundDataType, SubscriptionAlreadyExistsDataType, SubscriptionNotExistsDataType, SameSubscriptionRecurringDataType, SubscriptionPlanNotFoundDataType, CopilotMessageNotFoundDataType, CopilotPromptNotFoundDataType, CopilotProviderSideErrorDataType, RuntimeConfigNotFoundDataType, InvalidRuntimeConfigTypeDataType] as const,
 });
--- a/packages/backend/server/src/fundamentals/index.ts
+++ b/packages/backend/server/src/fundamentals/index.ts
@@ -36,5 +36,6 @@ export {
  getRequestFromHost,
  getRequestResponseFromContext,
  getRequestResponseFromHost,
+  parseCookies,
 } from './utils/request';
 export type * from './utils/types';
--- a/packages/backend/server/src/fundamentals/mailer/mail.service.ts
+++ b/packages/backend/server/src/fundamentals/mailer/mail.service.ts
@@ -3,6 +3,7 @@ import { Inject, Injectable, Optional } from '@nestjs/common';
 import { Config } from '../config';
 import { MailerServiceIsNotConfigured } from '../error';
 import { URLHelper } from '../helpers';
+import { metrics } from '../metrics';
 import type { MailerService, Options } from './mailer';
 import { MAILER_SERVICE } from './mailer';
 import { emailTemplate } from './template';
@@ -19,10 +20,20 @@ export class MailService {
      throw new MailerServiceIsNotConfigured();
    }

-    return this.mailer.sendMail({
-      from: this.config.mailer?.from,
-      ...options,
-    });
+    metrics.mail.counter('total').add(1);
+    try {
+      const result = await this.mailer.sendMail({
+        from: this.config.mailer?.from,
+        ...options,
+      });
+
+      metrics.mail.counter('sent').add(1);
+
+      return result;
+    } catch (e) {
+      metrics.mail.counter('error').add(1);
+      throw e;
+    }
  }

  hasConfigured() {
--- a/packages/backend/server/src/fundamentals/mailer/template.ts
+++ b/packages/backend/server/src/fundamentals/mailer/template.ts
@@ -148,7 +148,7 @@ export const emailTemplate = ({
                  </a>
                </td>
                <td style="padding: 0 10px">
-                  <a href="https://discord.gg/Arn7TqJBvG" target="_blank"
+                  <a href="https://discord.gg/whd5mjYqVw" target="_blank"
                    ><img
                      src="https://cdn.affine.pro/mail/2023-8-9/Discord.png"
                      alt="AFFiNE discord link"
--- a/packages/backend/server/src/fundamentals/metrics/metrics.ts
+++ b/packages/backend/server/src/fundamentals/metrics/metrics.ts
@@ -35,7 +35,8 @@ export type KnownMetricScopes =
  | 'auth'
  | 'controllers'
  | 'doc'
-  | 'sse';
+  | 'sse'
+  | 'mail';

 const metricCreators: MetricCreators = {
  counter(meter: Meter, name: string, opts?: MetricOptions) {
--- a/packages/backend/server/src/fundamentals/mutex/mutex.ts
+++ b/packages/backend/server/src/fundamentals/mutex/mutex.ts
@@ -1,10 +1,10 @@
 import { randomUUID } from 'node:crypto';

 import { Inject, Injectable, Logger, Scope } from '@nestjs/common';
-import { ModuleRef } from '@nestjs/core';
-import { CONTEXT } from '@nestjs/graphql';
+import { ModuleRef, REQUEST } from '@nestjs/core';
+import type { Request } from 'express';

-import type { GraphqlContext } from '../graphql';
+import { GraphqlContext } from '../graphql';
 import { retryable } from '../utils/promise';
 import { Locker } from './local-lock';

@@ -17,7 +17,7 @@ export class MutexService {
  private readonly locker: Locker;

  constructor(
-    @Inject(CONTEXT) private readonly context: GraphqlContext,
+    @Inject(REQUEST) private readonly request: Request | GraphqlContext,
    private readonly ref: ModuleRef
  ) {
    // nestjs will always find and injecting the locker from local module
@@ -31,11 +31,12 @@ export class MutexService {
  }

  protected getId() {
-    let id = this.context.req.headers['x-transaction-id'] as string;
+    const req = 'req' in this.request ? this.request.req : this.request;
+    let id = req.headers['x-transaction-id'] as string;

    if (!id) {
      id = randomUUID();
-      this.context.req.headers['x-transaction-id'] = id;
+      req.headers['x-transaction-id'] = id;
    }

    return id;
--- a/packages/backend/server/src/fundamentals/nestjs/exception.ts
+++ b/packages/backend/server/src/fundamentals/nestjs/exception.ts
@@ -2,8 +2,10 @@ import { ArgumentsHost, Catch, Logger } from '@nestjs/common';
 import { BaseExceptionFilter } from '@nestjs/core';
 import { GqlContextType } from '@nestjs/graphql';
 import { ThrottlerException } from '@nestjs/throttler';
+import { BaseWsExceptionFilter } from '@nestjs/websockets';
 import { Response } from 'express';
 import { of } from 'rxjs';
+import { Socket } from 'socket.io';

 import {
  InternalServerError,
@@ -44,6 +46,20 @@ export class GlobalExceptionFilter extends BaseExceptionFilter {
  }
 }

+export class GlobalWsExceptionFilter extends BaseWsExceptionFilter {
+  // @ts-expect-error satisfies the override
+  override handleError(client: Socket, exception: any): void {
+    const error = mapAnyError(exception);
+    error.log('Websocket');
+    metrics.socketio
+      .counter('unhandled_error')
+      .add(1, { status: error.status });
+    client.emit('error', {
+      error: toWebsocketError(error),
+    });
+  }
+}
+
 /**
 * Only exists for websocket error body backward compatibility
 *
--- a/packages/backend/server/src/fundamentals/prisma/config.ts
+++ b/packages/backend/server/src/fundamentals/prisma/config.ts
@@ -0,0 +1,17 @@
+import type { Prisma } from '@prisma/client';
+
+import { defineStartupConfig, ModuleConfig } from '../config';
+
+interface PrismaStartupConfiguration extends Prisma.PrismaClientOptions {
+  datasourceUrl: string;
+}
+
+declare module '../config' {
+  interface AppConfig {
+    database: ModuleConfig<PrismaStartupConfiguration>;
+  }
+}
+
+defineStartupConfig('database', {
+  datasourceUrl: '',
+});
--- a/packages/backend/server/src/fundamentals/prisma/index.ts
+++ b/packages/backend/server/src/fundamentals/prisma/index.ts
@@ -1,18 +1,22 @@
+import './config';
+
 import { Global, Module, Provider } from '@nestjs/common';
 import { PrismaClient } from '@prisma/client';

+import { Config } from '../config';
 import { PrismaService } from './service';

 // only `PrismaClient` can be injected
 const clientProvider: Provider = {
  provide: PrismaClient,
-  useFactory: () => {
+  useFactory: (config: Config) => {
    if (PrismaService.INSTANCE) {
      return PrismaService.INSTANCE;
    }

-    return new PrismaService();
+    return new PrismaService(config.database);
  },
+  inject: [Config],
 };

@Global()
--- a/Show More
+++ b/Show More
@@ -1 +1 @@
 .14.0
 .15.1