coder
diff --git a/‎.claude/docs/DATABASE.md
Lines changed: 0 additions & 39 deletions b/‎.claude/docs/DATABASE.md
Lines changed: 0 additions & 39 deletions
diff --git a/‎.claude/docs/OAUTH2.md
Lines changed: 7 additions & 8 deletions b/‎.claude/docs/OAUTH2.md
Lines changed: 7 additions & 8 deletions
diff --git a/‎.claude/docs/TESTING.md
Lines changed: 4 additions & 31 deletions b/‎.claude/docs/TESTING.md
Lines changed: 4 additions & 31 deletions
diff --git a/‎.claude/docs/TROUBLESHOOTING.md
Lines changed: 12 additions & 21 deletions b/‎.claude/docs/TROUBLESHOOTING.md
Lines changed: 12 additions & 21 deletions
diff --git a/‎.claude/docs/WORKFLOWS.md
Lines changed: 2 additions & 8 deletions b/‎.claude/docs/WORKFLOWS.md
Lines changed: 2 additions & 8 deletions
@@ -58,31 +58,6 @@ If adding fields to auditable types:
    - `ActionSecret`: Field contains sensitive data
 3. Run `make gen` to verify no audit errors
 
-## In-Memory Database (dbmem) Updates
-
-### Critical Requirements
-
-When adding new fields to database structs:
-
-- **CRITICAL**: Update `coderd/database/dbmem/dbmem.go` in-memory implementations
-- The `Insert*` functions must include ALL new fields, not just basic ones
-- Common issue: Tests pass with real database but fail with in-memory database due to missing field mappings
-- Always verify in-memory database functions match the real database schema after migrations
-
-### Example Pattern
-
-```go
-// In dbmem.go - ensure ALL fields are included
-code := database.OAuth2ProviderAppCode{
-    ID:                  arg.ID,
-    CreatedAt:           arg.CreatedAt,
-    // ... existing fields ...
-    ResourceUri:         arg.ResourceUri,         // New field
-    CodeChallenge:       arg.CodeChallenge,       // New field
-    CodeChallengeMethod: arg.CodeChallengeMethod, // New field
-}
-```
-
 ## Database Architecture
 
 ### Core Components
@@ -116,7 +91,6 @@ roles, err := db.GetAuthorizationUserRoles(dbauthz.AsSystemRestricted(ctx), user
 
 1. **Nullable field errors**: Use `sql.Null*` types consistently
 2. **Missing audit entries**: Update `enterprise/audit/table.go`
-3. **dbmem inconsistencies**: Ensure in-memory implementations match schema
 
 ### Query Issues
 
@@ -139,19 +113,6 @@ func TestDatabaseFunction(t *testing.T) {
 }
 ```
 
-### In-Memory Testing
-
-```go
-func TestInMemoryDatabase(t *testing.T) {
-    db := dbmem.New()
-
-    // Test with in-memory database
-    result, err := db.GetSomething(ctx, param)
-    require.NoError(t, err)
-    require.Equal(t, expected, result)
-}
-```
-
 ## Best Practices
 
 ### Schema Design
 
@@ -112,14 +112,13 @@ Always run the full test suite after OAuth2 changes:
 ## Common OAuth2 Issues
 
 1. **OAuth2 endpoints returning wrong error format** - Ensure OAuth2 endpoints return RFC 6749 compliant errors
-2. **OAuth2 tests failing but scripts working** - Check in-memory database implementations in `dbmem.go`
-3. **Resource indicator validation failing** - Ensure database stores and retrieves resource parameters correctly
-4. **PKCE tests failing** - Verify both authorization code storage and token exchange handle PKCE fields
-5. **RFC compliance failures** - Verify against actual RFC specifications, not assumptions
-6. **Authorization context errors in public endpoints** - Use `dbauthz.AsSystemRestricted(ctx)` pattern
-7. **Default value mismatches** - Ensure database migrations match application code defaults
-8. **Bearer token authentication issues** - Check token extraction precedence and format validation
-9. **URI validation failures** - Support both standard schemes and custom schemes per protocol requirements
+2. **Resource indicator validation failing** - Ensure database stores and retrieves resource parameters correctly
+3. **PKCE tests failing** - Verify both authorization code storage and token exchange handle PKCE fields
+4. **RFC compliance failures** - Verify against actual RFC specifications, not assumptions
+5. **Authorization context errors in public endpoints** - Use `dbauthz.AsSystemRestricted(ctx)` pattern
+6. **Default value mismatches** - Ensure database migrations match application code defaults
+7. **Bearer token authentication issues** - Check token extraction precedence and format validation
+8. **URI validation failures** - Support both standard schemes and custom schemes per protocol requirements
 
 ## Authorization Context Patterns
 
 
@@ -39,31 +39,6 @@
 2. **Verify information disclosure protections**
 3. **Test token security and proper invalidation**
 
-## Database Testing
-
-### In-Memory Database Testing
-
-When adding new database fields:
-
-- **CRITICAL**: Update `coderd/database/dbmem/dbmem.go` in-memory implementations
-- The `Insert*` functions must include ALL new fields, not just basic ones
-- Common issue: Tests pass with real database but fail with in-memory database due to missing field mappings
-- Always verify in-memory database functions match the real database schema after migrations
-
-Example pattern:
-
-```go
-// In dbmem.go - ensure ALL fields are included
-code := database.OAuth2ProviderAppCode{
-    ID:                  arg.ID,
-    CreatedAt:           arg.CreatedAt,
-    // ... existing fields ...
-    ResourceUri:         arg.ResourceUri,         // New field
-    CodeChallenge:       arg.CodeChallenge,       // New field
-    CodeChallengeMethod: arg.CodeChallengeMethod, // New field
-}
-```
-
 ## Test Organization
 
 ### Test File Structure
@@ -107,15 +82,13 @@ coderd/
 
 ### Database-Related
 
-1. **Tests passing locally but failing in CI** - Check if `dbmem` implementation needs updating
-2. **SQL type errors** - Use `sql.Null*` types for nullable fields
-3. **Race conditions in tests** - Use unique identifiers instead of hardcoded names
+1. **SQL type errors** - Use `sql.Null*` types for nullable fields
+2. **Race conditions in tests** - Use unique identifiers instead of hardcoded names
 
 ### OAuth2 Testing
 
-1. **OAuth2 tests failing but scripts working** - Check in-memory database implementations in `dbmem.go`
-2. **PKCE tests failing** - Verify both authorization code storage and token exchange handle PKCE fields
-3. **Resource indicator validation failing** - Ensure database stores and retrieves resource parameters correctly
+1. **PKCE tests failing** - Verify both authorization code storage and token exchange handle PKCE fields
+2. **Resource indicator validation failing** - Ensure database stores and retrieves resource parameters correctly
 
 ### General Issues
 
 
@@ -21,59 +21,50 @@
      }
      ```
 
-3. **Tests passing locally but failing in CI**
-   - **Solution**: Check if `dbmem` implementation needs updating
-   - Update `coderd/database/dbmem/dbmem.go` for Insert/Update methods
-   - Missing fields in dbmem can cause tests to fail even if main implementation is correct
-
 ### Testing Issues
 
-4. **"package should be X_test"**
+3. **"package should be X_test"**
    - **Solution**: Use `package_test` naming for test files
    - Example: `identityprovider_test` for black-box testing
 
-5. **Race conditions in tests**
+4. **Race conditions in tests**
    - **Solution**: Use unique identifiers instead of hardcoded names
    - Example: `fmt.Sprintf("test-client-%s-%d", t.Name(), time.Now().UnixNano())`
    - Never use hardcoded names in concurrent tests
 
-6. **Missing newlines**
+5. **Missing newlines**
    - **Solution**: Ensure files end with newline character
    - Most editors can be configured to add this automatically
 
 ### OAuth2 Issues
 
-7. **OAuth2 endpoints returning wrong error format**
+6. **OAuth2 endpoints returning wrong error format**
    - **Solution**: Ensure OAuth2 endpoints return RFC 6749 compliant errors
    - Use standard error codes: `invalid_client`, `invalid_grant`, `invalid_request`
    - Format: `{"error": "code", "error_description": "details"}`
 
-8. **OAuth2 tests failing but scripts working**
-   - **Solution**: Check in-memory database implementations in `dbmem.go`
-   - Ensure all OAuth2 fields are properly copied in Insert/Update methods
-
-9. **Resource indicator validation failing**
+7. **Resource indicator validation failing**
    - **Solution**: Ensure database stores and retrieves resource parameters correctly
    - Check both authorization code storage and token exchange handling
 
-10. **PKCE tests failing**
+8. **PKCE tests failing**
     - **Solution**: Verify both authorization code storage and token exchange handle PKCE fields
     - Check `CodeChallenge` and `CodeChallengeMethod` field handling
 
 ### RFC Compliance Issues
 
-11. **RFC compliance failures**
+9. **RFC compliance failures**
     - **Solution**: Verify against actual RFC specifications, not assumptions
     - Use WebFetch tool to get current RFC content for compliance verification
     - Read the actual RFC specifications before implementation
 
-12. **Default value mismatches**
+10. **Default value mismatches**
     - **Solution**: Ensure database migrations match application code defaults
     - Example: RFC 7591 specifies `client_secret_basic` as default, not `client_secret_post`
 
 ### Authorization Issues
 
-13. **Authorization context errors in public endpoints**
+11. **Authorization context errors in public endpoints**
     - **Solution**: Use `dbauthz.AsSystemRestricted(ctx)` pattern
     - Example:
 
@@ -84,17 +75,17 @@
 
 ### Authentication Issues
 
-14. **Bearer token authentication issues**
+12. **Bearer token authentication issues**
     - **Solution**: Check token extraction precedence and format validation
     - Ensure proper RFC 6750 Bearer Token Support implementation
 
-15. **URI validation failures**
+13. **URI validation failures**
     - **Solution**: Support both standard schemes and custom schemes per protocol requirements
     - Native OAuth2 apps may use custom schemes
 
 ### General Development Issues
 
-16. **Log message formatting errors**
+14. **Log message formatting errors**
     - **Solution**: Use lowercase, descriptive messages without special characters
     - Follow Go logging conventions
 
 
@@ -81,11 +81,6 @@
    - Add each new field with appropriate action (ActionTrack, ActionIgnore, ActionSecret)
    - Run `make gen` to verify no audit errors
 
-6. **In-memory database (dbmem) updates**:
-   - When adding new fields to database structs, ensure `dbmem` implementation copies all fields
-   - Check `coderd/database/dbmem/dbmem.go` for Insert/Update methods
-   - Missing fields in dbmem can cause tests to fail even if main implementation is correct
-
 ### Database Generation Process
 
 1. Modify SQL files in `coderd/database/queries/`
@@ -164,9 +159,8 @@
 
 1. **Development server won't start** - Use `./scripts/develop.sh` instead of manual commands
 2. **Database migration errors** - Check migration file format and use helper scripts
-3. **Test failures after database changes** - Update `dbmem` implementations
-4. **Audit table errors** - Update `enterprise/audit/table.go` with new fields
-5. **OAuth2 compliance issues** - Ensure RFC-compliant error responses
+3. **Audit table errors** - Update `enterprise/audit/table.go` with new fields
+4. **OAuth2 compliance issues** - Ensure RFC-compliant error responses
 
 ### Debug Commands