LocalAuthority/agents.md at cd0ab2a0c6581fb68ec322952d295739a012fe61 · bogdan/LocalAuthority

LocalAuthority / agents.md

bogdan Use SQLite for runtime host registry

cd0ab2a 4 days ago History

1 contributor

58 lines | 2.415kb

Blame
Raw

# Agent Notes

Madagascar Local Authority is the local authority application for the Madagascar network.

Start with these documents:

- [README.md](README.md) - current repository, deployment model, runtime paths, GitPrep remote.
- [.doc/host-manager.md](.doc/host-manager.md) - application behavior, OTP, Work Orders, local CA, registry rules.
- [.doc/local-hosts.md](.doc/local-hosts.md) - local DNS rules, resolver sync, source priority.
- [.doc/development-log.md](.doc/development-log.md) - scope and architecture decisions over time.

Operational rules:

- Develop in this checkout: `/Users/bogdan/Documents/Workspaces/Xdev/Madagascar/LocalAuthority`.
- Canonical git remote is GitPrep: `git@192.168.2.102:repositories/bogdan/LocalAuthority.git`.
- Jumper is the runtime/deployment target, not the primary editing location.
- Development work must be committed locally before testing or archiving; do not leave useful changes as forgotten dirty working-tree state.
- Push committed code to `jumper-runtime` for live testing on jumper.
- Push committed code to `origin`/GitPrep for archival/canonical history.
- `scripts/deploy_to_jumper.sh` is available for explicit rsync deploys, but the normal development loop is commit plus push.
- Runtime registry and Work Orders live in `var/host-manager.sqlite` on jumper.
- Do not deploy `config/` unless the user explicitly asks to replace seed/snapshot/export files.
- Treat `config/hosts.yaml`, `config/local-hosts.tsv`, and `config/work-orders.yaml` as compatibility exports/seeds, not the live source of truth.
- Do not install npm, pip, or CPAN packages directly on hosts. Distribution packages are acceptable when needed.
- Perl from the distribution and core/distribution modules are allowed.
- CPAN modules are allowed only after requesting an audit and RPM packaging for the local audited repository.
- Secrets live outside git, mainly under `/etc/xdev/host-manager.env` on jumper.

Before code changes:

```bash
git status --short
```

Before deployment:

```bash
perl -c scripts/host_manager.pl
perl -c scripts/mdns_host_seed.pl
```

Normal live-test deployment after a committed change:

```bash
git push jumper-runtime HEAD:main
```

Archive/canonical push:

```bash
git push origin main
```

After deployment, verify:

```bash
ssh jumper.madagascar.xdev.ro 'systemctl is-active host-manager && curl -fsS http://127.0.0.1:8088/healthz >/dev/null'
```