roof/pic - pic - Gitea: Git with a cup of tea

roof/pic

Fork 0

Commit Graph

Author	SHA1	Message	Date
roof	0bfe95320b	feat: Phase 2 — remove builtins layer, ServiceRegistry is installed-only Unit Tests / test (push) Successful in 11m31s Details Builtins (email/calendar/files) are no longer baked into the API image. ServiceRegistry now only knows about installed store services. When nothing is installed, Caddy and DNS get no service routes — no hardcoded fallback. Changes: - service_registry.py: remove _BUILTINS_DIR, _builtin_ids, _builtin_manifest, _load_manifest; get() and list_all() now delegate entirely to installed services - caddy_manager.py: remove _build_core_service_routes(); remove hardcoded fallback pairs from _http01_service_pairs(); empty registry → api block only - network_manager.py: _get_service_subdomains() returns [] when no registry - api/services/builtins/: deleted (email, calendar, files manifests) - Tests updated throughout: removed builtin-dependent assertions, added installed-service fixtures, updated fallback expectations to api-only Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-29 08:53:44 -04:00
roof	18b50d08c1	fix: post-Phase-0 corrections — data-dir bind mounts, reserved subdomains, list_active() Unit Tests / test (push) Successful in 11m31s Details Three related fixes discovered during review of Phase 0 and Phase 1 manifests: 1. validate_rendered_compose(): add allowed_data_dir param. After ${PIC_DATA_DIR} substitution, compose templates produce absolute paths; without this the validator would reject every service install. ServiceComposer.write_compose() now passes its resolved data_dir so only the designated data directory is exempt — /etc, /proc, docker.sock etc. still blocked. 2. _RESERVED_SUBDOMAINS: remove service-level subdomains (mail, calendar, files, webdav, webmail). The reserved list should protect PIC infrastructure endpoints (api, webui, admin) — not service subdomains that official store services (calendar, files, webmail) must be allowed to claim. Aligns with the existing _RESERVED_SUBS in service_registry.py. 3. ServiceRegistry.list_active(): new method returning only installed store services (no builtins). This is the forward-looking API that Phase 2 will make the primary read path once builtins are deleted. Adding it now unblocks the QA agent's test_optional_services_feature.py which was already testing the expected Phase 2 behaviour. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-29 07:35:43 -04:00

Author

SHA1

Message

Date

roof

0bfe95320b

feat: Phase 2 — remove builtins layer, ServiceRegistry is installed-only

Unit Tests / test (push) Successful in 11m31s

Details

Builtins (email/calendar/files) are no longer baked into the API image.
ServiceRegistry now only knows about installed store services. When nothing
is installed, Caddy and DNS get no service routes — no hardcoded fallback.

Changes:
- service_registry.py: remove _BUILTINS_DIR, _builtin_ids, _builtin_manifest,
  _load_manifest; get() and list_all() now delegate entirely to installed services
- caddy_manager.py: remove _build_core_service_routes(); remove hardcoded
  fallback pairs from _http01_service_pairs(); empty registry → api block only
- network_manager.py: _get_service_subdomains() returns [] when no registry
- api/services/builtins/: deleted (email, calendar, files manifests)
- Tests updated throughout: removed builtin-dependent assertions, added
  installed-service fixtures, updated fallback expectations to api-only

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-29 08:53:44 -04:00

roof

18b50d08c1

fix: post-Phase-0 corrections — data-dir bind mounts, reserved subdomains, list_active()

Unit Tests / test (push) Successful in 11m31s

Details

Three related fixes discovered during review of Phase 0 and Phase 1 manifests:

1. validate_rendered_compose(): add allowed_data_dir param. After ${PIC_DATA_DIR}
   substitution, compose templates produce absolute paths; without this the
   validator would reject every service install.  ServiceComposer.write_compose()
   now passes its resolved data_dir so only the designated data directory is
   exempt — /etc, /proc, docker.sock etc. still blocked.

2. _RESERVED_SUBDOMAINS: remove service-level subdomains (mail, calendar, files,
   webdav, webmail). The reserved list should protect PIC infrastructure endpoints
   (api, webui, admin) — not service subdomains that official store services
   (calendar, files, webmail) must be allowed to claim.  Aligns with the
   existing _RESERVED_SUBS in service_registry.py.

3. ServiceRegistry.list_active(): new method returning only installed store
   services (no builtins). This is the forward-looking API that Phase 2 will
   make the primary read path once builtins are deleted. Adding it now unblocks
   the QA agent's test_optional_services_feature.py which was already testing
   the expected Phase 2 behaviour.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-29 07:35:43 -04:00

2 Commits