admin/felhom-agent
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
19 Commits 1 Branch 0 Tags
43b7e96905afd1418674ff04965910beb38ee2e5
Commit Graph

19 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
admin 43b7e96905 docs(agent): add REPORT.md (latest-task report, overwritten each change) 
Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
 2026-06-08 14:47:38 +02:00
admin 7dcc80fde8 chore(agent): add CHANGELOG, version the agent at 0.1.0 
- CHANGELOG.md with the v0.1.0 (slice 1) entry
- main: version var (0.1.0, ldflags-overridable) + --version flag; version shown
  in selftest header and startup log

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
 2026-06-08 14:41:34 +02:00
admin a042316d6d feat(agent): scaffold + proxmox interaction layer (slice 1) 
Stand up the felhom-agent project (module gitea.dooplex.hu/admin/felhom-agent,
binary felhom-agent) and the internal/proxmox package: the typed library every
other agent module calls to talk to Proxmox.

- API-first Client (hand-rolled REST over net/http, PVEAPIToken auth) with typed
  read ops (version/nodes/status/lxc/config/storage) and async mutating ops
  (restore/vzdump/snapshot/rollback/delete-snapshot/setconfig/start/stop), each
  returning a UPID. WaitTask polls task status until stopped and asserts
  exitstatus OK (authz can surface at task exec, not the POST — phase1-2 §1.3).
- Fenced Privileged (root-CLI) backend for the THREE proven exceptions only
  (keyctl pct create, USB mount/fstab, SMART/sensors); each cites why it can't be
  the API. Fence is structural (Client never shells out, Privileged never HTTPs)
  and asserted in routing_test.go.
- TLS: SHA-256 leaf-cert pinning or CA file; insecure mode explicit + off by
  default. No blanket verification disable.
- 403 -> privilege-named APIError; failed task -> privilege-named TaskError.
- JSON config + env overrides (token never logged); slog logging.
- cmd/felhom-agent --selftest (read-only health report) + gated --selftest=task
  (reversible snapshot/rollback/delete exercise of WaitTask). No daemon loop yet.
- Types grounded in the spike findings and exact JSON shapes captured live from
  demo-felhom (PVE 9.2.2). Unit tests use a mock transport + runner.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
 2026-06-08 14:34:32 +02:00
admin 4d84207572 moved docs 2026-06-08 13:58:41 +02:00
admin 5b4253346d Merge pull request 'docs: rework references for repo rename proxmox-controller -> felhom-agent' (#1) from chore/rename-repo-refs into main 
Reviewed-on: #1
 2026-06-08 11:57:13 +00:00
admin 61bfea3610 docs: rework references for repo rename proxmox-controller -> felhom-agent 
Repo renamed on Gitea (admin/proxmox-controller -> admin/felhom-agent). Updates the
self-name reference in docs/proxmox-platform.md and the controller-source path
(deploy-felhom-compose -> felhom-controller) in the architecture docs. Docs-only; no
code or layout change.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
 2026-06-08 13:38:58 +02:00
admin e80678e9fd 01 updated 2026-06-08 12:59:37 +02:00
admin a2c413f17d updated hub arch 2026-06-08 12:55:06 +02:00
admin cb8330d2bd hub-architecture 2026-06-08 12:40:56 +02:00
admin 36451f57e0 04-control-plane-authorization.md 2026-06-08 10:13:24 +02:00
admin 333c65cbc4 phase4-signing-findings 2026-06-08 10:03:49 +02:00
admin bb0a9e7205 refresh 2026-06-08 09:15:16 +02:00
admin 8ae6e8abf3 update 2026-06-08 08:21:07 +02:00
admin c8837d442e review 2026-06-08 07:49:00 +02:00
admin dc9ac6084d module map added 2026-06-07 22:52:05 +02:00
admin 34fbf318ba topology&trust 2026-06-07 22:21:41 +02:00
admin 060bfb8ffd doc update 2026-06-07 20:46:01 +02:00
admin c806176317 update 2026-06-07 20:21:51 +02:00
admin 23169cbef7 docs updated 2026-06-07 20:20:52 +02:00