felhom.eu

admin/felhom.eu

Fork 0

Commit Graph

Author	SHA1	Message	Date
admin	94a236328b	docs(spike): phase 5 PBS mechanism findings (DooPlex server ← N100 client) Empirical PBS validation before the slice-6 Phase B spec. Records: PBS install on Debian-13 DooPlex (trixie key ships in proxmox-archive-keyring, no standalone .gpg), datastore + cert fingerprint, the PBS privsep gotcha (grant role on user AND token), the encrypted pbs storage + key location (/etc/pve/priv/storage/<id>.enc), the snapshot volid format + native fields (→ PBSSnapshot shape), restore-from-PBS works unchanged, the verify mechanism (server-side; agent drives it remotely via the PBS API, result read from snapshot verification.state), no operator-token privilege gap, and zero-knowledge confirmed (server can't decrypt without the client key). PBS+datastore+storage left up for Phase B; no secrets committed. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-09 16:26:57 +02:00
admin	0d832def7b	fix: update repo-name refs after deploy-felhom-compose -> felhom-controller rename - hub/internal/web/templatefetcher.go: raw-template URL now points at the renamed repo (was relying on Gitea's post-rename redirect) - documentation/ (moved here from the felhom-agent repo): fix controller-source path refs (deploy-felhom-compose -> felhom-controller) and the platform repo name (proxmox-controller -> felhom-agent) Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-08 14:03:13 +02:00
admin	715f644bf0	moved documentation to felhom.eu	2026-06-08 13:50:14 +02:00

Author

SHA1

Message

Date

admin

94a236328b

docs(spike): phase 5 PBS mechanism findings (DooPlex server ← N100 client)

Empirical PBS validation before the slice-6 Phase B spec. Records: PBS install on
Debian-13 DooPlex (trixie key ships in proxmox-archive-keyring, no standalone .gpg),
datastore + cert fingerprint, the PBS privsep gotcha (grant role on user AND token),
the encrypted pbs storage + key location (/etc/pve/priv/storage/<id>.enc), the snapshot
volid format + native fields (→ PBSSnapshot shape), restore-from-PBS works unchanged,
the verify mechanism (server-side; agent drives it remotely via the PBS API, result read
from snapshot verification.state), no operator-token privilege gap, and zero-knowledge
confirmed (server can't decrypt without the client key). PBS+datastore+storage left up
for Phase B; no secrets committed.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-09 16:26:57 +02:00

admin

0d832def7b

fix: update repo-name refs after deploy-felhom-compose -> felhom-controller rename

- hub/internal/web/templatefetcher.go: raw-template URL now points at the renamed
  repo (was relying on Gitea's post-rename redirect)
- documentation/ (moved here from the felhom-agent repo): fix controller-source path
  refs (deploy-felhom-compose -> felhom-controller) and the platform repo name
  (proxmox-controller -> felhom-agent)

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-08 14:03:13 +02:00

admin

715f644bf0

moved documentation to felhom.eu

2026-06-08 13:50:14 +02:00

3 Commits