didericis/bot-bottle
1
0
Fork 0
Code Issues 7 Pull Requests 15 Actions Packages Projects Releases Wiki Activity

PRD 0048: SSH deploy-key provisioning #170

Merged
didericis merged 4 commits from prd/0048-ssh-deploy-key-provisioning into main 2026-06-03 11:58:39 -04:00
Conversation 1 Commits 4 Files Changed 12
+982 -12

4 Commits

Author SHA1 Message Date
didericis-claude 6a16f7753f docs(prd): activate PRD 0048 — SSH deploy-key provisioning
test / unit (pull_request) Successful in 37s
Details
test / integration (pull_request) Successful in 41s
Details
2026-06-03 15:56:35 +00:00
didericis-claude 531a899721 feat(prd-0048): implement SSH deploy-key provisioning with contrib/gitea 
- manifest_git.py: add ProvisionedKeyConfig dataclass; extend GitEntry
  with ProvisionedKey field (optional); make IdentityFile default to ""
  so provisioned_key entries can be constructed without a static path;
  add _parse_provisioned_key_config; update from_repos_entry to accept
  provisioned_key as an alternative to identity (mutually exclusive,
  parser rejects both-or-neither)

- deploy_key_provisioner.py (new): DeployKeyProvisioner ABC with create()
  and delete() abstract methods; get_provisioner() factory with lazy
  contrib import for gitea

- contrib/gitea/deploy_key_provisioner.py (new): GiteaDeployKeyProvisioner
  generating ed25519 keypairs via ssh-keygen and managing them through
  the Gitea deploy-key API (POST/DELETE); 404 on delete is success;
  all other errors raise RuntimeError

- git_gate.py: add _provision_dynamic_key() called in GitGate.prepare()
  for entries with ProvisionedKey — generates key, writes private key
  and key ID files to stage_dir, patches GitGateUpstream.identity_file;
  add revoke_git_gate_provisioned_keys() for teardown — raises on failure

- docker/launch.py: call revoke_git_gate_provisioned_keys() in teardown()
  after stack.close() so revocation runs after containers stop and
  failures propagate (not suppressed)

- smolmachines/launch.py: extract _teardown_smolmachines() helper that
  catches stack.close() errors (warn + re-raise) then calls revocation;
  same fatal-on-failure contract as docker backend

- test_manifest_git.py: 9 new cases for provisioned_key parsing
- test_deploy_key_provisioner.py (new): factory smoke tests
- test_contrib_gitea_deploy_key.py (new): create/delete/error/split tests

Closes #169
 2026-06-03 15:56:22 +00:00
didericis-claude fb64c50276 docs(prd): address review feedback on PRD 0048
test / unit (pull_request) Successful in 40s
Details
test / integration (pull_request) Successful in 54s
Details 
- Rename deploy_key → provisioned_key throughout (manifest key,
  dataclass names, internal field names, test descriptions)
- Revocation failure at teardown now halts cleanup and propagates
  loudly; a stranded key is a security concern that must surface
 2026-06-03 11:33:30 -04:00
didericis-claude 24f770458b docs(prd): add SSH deploy-key provisioning plan (PRD 0048) 
Introduces the design for short-lived deploy keys provisioned at spin-up
and revoked at teardown, plus the contrib package structure for
platform-specific provisioner implementations. First contrib provider
targets the Gitea deploy-key API.

Closes #169
 2026-06-03 11:33:30 -04:00