jordan/rdev

Fork 0

Commit Graph

Author	SHA1	Message	Date
jordan	96219a647f	feat: add POST /projects/{id}/notify/reprovision to migrate notify host All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details Implements ReprovisionNotifyHost to migrate a project's email sending from an old notify host to a new one (e.g., from project-name-based to slug-based host). Preserves the project's notify account and send key. - Adds ReprovisionNotifyHost to port.NotifyProvisioner interface - Implements revokeHostAccess on notifyAdminAPI + adminClient - Implements Provisioner.ReprovisionNotifyHost (12-step migration) in provisioner_reprovision.go (split to keep provisioner.go < 500 lines) - Adds NotifyHandler.Reprovision handler (POST /notify/reprovision) - Updates OpenAPI spec with reprovision endpoint Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-23 21:28:59 -07:00
jordan	fa0d030def	feat: improve notify domain verification reliability and add status endpoints All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details - Add verifyWithRetry to provisioner: 60s initial DNS propagation delay, 5 retries with 30s backoff before marking verification as failed - Add GetNotifyDomainStatus: polls Resend API for domain verification status, returns "not_configured" when Resend not set up - Add VerifyProjectNotify: synchronous re-verification for handler use - Add getDomainStatus to resendAPI interface + resendClient implementation - Add NotifyDomainStatus domain struct (host, resend_domain_id, status) - Guard NOTIFY_RESEND_DOMAIN_ID storage against empty string writes - New handler: GET /projects/{id}/notify/status (returns verification state) - New handler: POST /projects/{id}/notify/verify (triggers re-verification) - Add verify-notify-domain cookbook step to persona-community, slackpath-1, and slackpath-4 trees (polls status for up to 6 min) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-23 16:25:55 -07:00
jordan	4f01015132	feat: implement project access enforcement and management API All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details - Fix no-op RequireProjectAccess middleware to enforce project_ids - Apply project access middleware to all project-scoped routes - Filter GET /projects by allowed project IDs for restricted keys - Add GET /me endpoint with key identity, scopes, and project access info - Add PATCH /keys/{id} for partial key updates (name, scopes, project_ids, allowed_ips, expires_in) - Add GET/POST/DELETE /projects/{id}/access for project-centric access management - Auto-grant creating key access when using POST /project/create-and-build - Accept grant_to_key_ids in create-and-build to grant multiple keys on project creation - Move newProvisionerWithDeps test helper from production code to test file Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-21 15:38:37 -07:00

Author

SHA1

Message

Date

jordan

96219a647f

feat: add POST /projects/{id}/notify/reprovision to migrate notify host

ci/woodpecker/push/woodpecker Pipeline was successful

Details

Implements ReprovisionNotifyHost to migrate a project's email sending
from an old notify host to a new one (e.g., from project-name-based to
slug-based host). Preserves the project's notify account and send key.

- Adds ReprovisionNotifyHost to port.NotifyProvisioner interface
- Implements revokeHostAccess on notifyAdminAPI + adminClient
- Implements Provisioner.ReprovisionNotifyHost (12-step migration)
  in provisioner_reprovision.go (split to keep provisioner.go < 500 lines)
- Adds NotifyHandler.Reprovision handler (POST /notify/reprovision)
- Updates OpenAPI spec with reprovision endpoint

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-23 21:28:59 -07:00

jordan

fa0d030def

feat: improve notify domain verification reliability and add status endpoints

ci/woodpecker/push/woodpecker Pipeline was successful

Details

- Add verifyWithRetry to provisioner: 60s initial DNS propagation delay,
  5 retries with 30s backoff before marking verification as failed
- Add GetNotifyDomainStatus: polls Resend API for domain verification status,
  returns "not_configured" when Resend not set up
- Add VerifyProjectNotify: synchronous re-verification for handler use
- Add getDomainStatus to resendAPI interface + resendClient implementation
- Add NotifyDomainStatus domain struct (host, resend_domain_id, status)
- Guard NOTIFY_RESEND_DOMAIN_ID storage against empty string writes
- New handler: GET /projects/{id}/notify/status (returns verification state)
- New handler: POST /projects/{id}/notify/verify (triggers re-verification)
- Add verify-notify-domain cookbook step to persona-community,
  slackpath-1, and slackpath-4 trees (polls status for up to 6 min)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-23 16:25:55 -07:00

jordan

4f01015132

feat: implement project access enforcement and management API

ci/woodpecker/push/woodpecker Pipeline was successful

Details

- Fix no-op RequireProjectAccess middleware to enforce project_ids
- Apply project access middleware to all project-scoped routes
- Filter GET /projects by allowed project IDs for restricted keys
- Add GET /me endpoint with key identity, scopes, and project access info
- Add PATCH /keys/{id} for partial key updates (name, scopes, project_ids, allowed_ips, expires_in)
- Add GET/POST/DELETE /projects/{id}/access for project-centric access management
- Auto-grant creating key access when using POST /project/create-and-build
- Accept grant_to_key_ids in create-and-build to grant multiple keys on project creation
- Move newProvisionerWithDeps test helper from production code to test file

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-21 15:38:37 -07:00

3 Commits