use SQLDelight, remove ApiApps access from KeychainProvider

OpenKeychain/src/main/sqldelight/org/sufficientlysecure/keychain/ApiAllowedKeys.sq

@@ -0,0 +1,19 @@
+CREATE TABLE IF NOT EXISTS api_allowed_keys (
+    _id INTEGER PRIMARY KEY AUTOINCREMENT,
+    key_id INTEGER,
+    package_name TEXT NOT NULL,
+    UNIQUE (key_id, package_name),
+    FOREIGN KEY (package_name) REFERENCES api_apps (package_name) ON DELETE CASCADE
+);
+
+insertAllowedKey:
+INSERT INTO api_allowed_keys (package_name, key_id) VALUES (?, ?);
+
+deleteByPackageName:
+DELETE FROM api_allowed_keys
+    WHERE package_name = ?;
+
+getAllowedKeys:
+SELECT key_id
+    FROM api_allowed_keys
+    WHERE package_name = ?;

OpenKeychain/src/main/sqldelight/org/sufficientlysecure/keychain/ApiApps.sq

@@ -4,5 +4,23 @@ CREATE TABLE IF NOT EXISTS api_apps (
     package_signature BLOB
 );
 
-getAllowedKeys:
-SELECT
+insertApiApp:
+INSERT INTO api_apps (package_name, package_signature) VALUES (?, ?);
+
+selectAll:
+SELECT *
+    FROM api_apps;
+
+selectByPackageName:
+SELECT *
+    FROM api_apps
+    WHERE package_name = ?;
+
+deleteByPackageName:
+DELETE FROM api_apps
+    WHERE package_name = ?;
+
+getCertificate:
+SELECT package_signature
+    FROM api_apps
+    WHERE package_name = ?;