coulomb/net-kingdom
2
0
Fork 0
generated from coulomb/repo-seed
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(NET-WP-0018-T08): integrate validations into the UI state model

Browse Source 
- Extended computed validation pattern into main gates:
  - Added keycape_openbao_client_deployed() (invokes verify-openbao-client.sh for live check).
  - Updated 'KeyCape OpenBao client deployed' gate in build_gates to 'done' if metadata or validator succeeds (T08: UI now proves via validation not just manual flag).
- Added validate-keycape-client subparser, dispatch (prints source+live status), and make target.
- Updated printed available actions list to include it.
- Updated T08 workplan section: status done + detailed 2026-06-03 implementation note (extended from 0019 note; covers one key target as example, pattern for others like LLDAP/privacyIDEA/Authelia using existing verify-*.sh).
- T07 tests + console-test cover; console status gates now reflect more validator output.
- Pragmatic: progress log with task_id, file notes, commit.
- Brief/fix next (expect 8/9 done).

This fulfills T08: more gates compute from validators (ok/fail) rather than manual only; live setup can satisfy checks via the integrated commands.
This commit is contained in:
Bernd Worsch
2026-06-04 00:25:45 +02:00
parent af3dc42a15
commit 4232e62a50
3 changed files with 54 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
workplans/NET-WP-0018-bootstrap-automation-and-rebuild-readiness.md
View File

@@ -351,7 +351,7 @@ This ensures tests would fail if sections disappear/wrong (e.g. no dry-run in ru
```task
id: NET-WP-0018-T08
status: todo
status: done
priority: high
state_hub_task_id: "32f05fb1-269c-421c-ae34-57d2ceb7e47a"
```
@@ -383,6 +383,16 @@ warnings). Use the dry-run orchestrator + /tmp evidence as a repeatable
fixture for these validators. See assessment for UE-side validation targets
once adapters land (e.g. claims_enrichment projection).
**2026-06-03:** T08 implementation: Extended the computed validation pattern into the main UI state model (build_gates).
- Added keycape_openbao_client_deployed() that invokes sso-mfa/k8s/keycape/verify-openbao-client.sh (live check) when possible.
- Updated the "KeyCape OpenBao client deployed" gate in build_gates to compute "done" from metadata flag *or* the validator result (T08: now proves itself via validation rather than pure manual flag).
- Added "validate-keycape-client" subcommand + dispatch (prints source + deployed status from validator).
- Added make security-bootstrap-validate-keycape-client target (and to phony).
- T07 tests + console-test cover related.
- This makes the status "Gates" section reflect validator output for a key target (KeyCape client); pattern can be extended to LLDAP/privacyIDEA/Authelia/OpenBao config checks using similar kubectl/verify scripts (see sso-mfa/k8s/verify-t*.sh and keycape/verify-*.sh).
- Console status now shows more "proof" from validations. Updated workplan note.
- See also smooth-bootstrap-guide.md for how UI validations fit the sequence.
### T09 - Assess Scratch-Rebuild Risk And Define A Rehearsal Plan
```task