Commit Graph

  • ca853a84b7 chore(creds): encrypted secrets [agent NK-WP-0005] Bernd Worsch 2026-03-21 10:59:13 +00:00
  • 5d032db3dd chore(creds): encrypted secrets [agent NK-WP-0005] Bernd Worsch 2026-03-21 10:51:47 +00:00
  • 0ea05b302c chore(creds): encrypted secrets [agent NK-WP-0005] Bernd Worsch 2026-03-21 10:50:22 +00:00
  • 963a4700ef chore(creds): encrypted secrets [agent NK-WP-0005] Bernd Worsch 2026-03-21 10:44:37 +00:00
  • 33b9b93dba chore(creds): encrypted secrets [agent NK-WP-0005] Bernd Worsch 2026-03-21 10:42:39 +00:00
  • f227dfbd3d fix(privacyidea): add PI_ADDRESS/PI_PORT; switch readiness probe to tcpSocket Bernd Worsch 2026-03-21 10:41:13 +00:00
  • 9587d14803 fix(privacyidea): override PRIVACYIDEA_CONFIGFILE to use mounted pi.cfg Bernd Worsch 2026-03-21 09:43:35 +00:00
  • bececac7b8 fix(privacyidea): correct image to ghcr.io/gpappsoft, port 5001→8080 Bernd Worsch 2026-03-21 09:37:38 +00:00
  • bcae4bc6dd fix(workplans): portable key-cape path in NK-WP-0003-T08; add /creds-init skill tegwick 2026-03-21 10:01:14 +01:00
  • 0670e17b42 chore(workplans): revise workplans post NK-WP-0005 Bernd Worsch 2026-03-21 08:47:44 +00:00
  • 95656f2324 feat(creds): NK-WP-0005 — agent-driven credential bootstrap Bernd Worsch 2026-03-21 08:38:52 +00:00
  • 8db000e5f0 feat(workplan): NK-WP-0005 — agent-driven credential bootstrap tegwick 2026-03-21 09:25:36 +01:00
  • b4a3a5966f chore(consistency): NK-WP-0004 complete — correct regressed task statuses tegwick 2026-03-21 09:19:37 +01:00
  • 6fdfe8a669 chore Bernd Worsch 2026-03-21 00:15:58 +00:00
  • 01c8a07f3a fix(sso-mfa): NK-WP-0003-T04 — correct privacyIDEA image and port Bernd Worsch 2026-03-20 23:54:18 +00:00
  • c10d7d2f8a feat(creds): implement NK-WP-0004 Credential Management Foundation Bernd Worsch 2026-03-20 23:39:35 +00:00
  • a96d72193c New Workplans tegwick 2026-03-21 00:23:19 +01:00
  • 2bbe328aec docs(sso-mfa): record T04 blocker — wrong image reference (ImagePullBackOff) Bernd Worsch 2026-03-20 17:16:35 +00:00
  • bee0936d5d docs(sso-mfa): fix stale Keycloak refs and add T04 apply section to WORKPLAN Bernd Worsch 2026-03-20 07:33:47 +00:00
  • a375b3814d fix(sso-mfa): use ipWhiteList for Traefik v2 in LLDAP and privacyIDEA middleware Bernd Worsch 2026-03-20 07:28:06 +00:00
  • 6d25d088d7 feat(sso-mfa): T02/T03 live apply — age-encrypted secrets, CNPG cluster (NK-WP-0001-T02/T03) Bernd Worsch 2026-03-20 02:57:41 +00:00
  • 0d5d12cb67 Added provided capabilities section tegwick 2026-03-20 01:01:52 +01:00
  • 6c062e1295 feat(sso-mfa): T07/T08 user mgmt, backups, DR & break-glass (NK-WP-0001-T07/T08) Bernd Worsch 2026-03-19 09:17:03 +00:00
  • 69e900ddb1 feat(sso-mfa): T06 realm config & MFA flow manifests (NK-WP-0001-T06) Bernd Worsch 2026-03-19 09:04:07 +00:00
  • c0e17611cc chore(sso-mfa): mark T05 complete in WORKPLAN.md Bernd Worsch 2026-03-19 08:32:35 +00:00
  • 0754dc32e6 feat(sso-mfa): T05 SSO stack pivot — Keycloak → Authelia + LLDAP + KeyCape (NK-WP-0001-T05) Bernd Worsch 2026-03-19 08:31:51 +00:00
  • d0ed7d9cd6 feat(sso-mfa): T05 Keycloak manifests (NK-WP-0001-T05) Bernd Worsch 2026-03-19 02:00:51 +00:00
  • 1d94652ba1 feat(sso-mfa): T04 privacyIDEA manifests (NK-WP-0001-T04) Bernd Worsch 2026-03-19 01:22:41 +00:00
  • 87d85261ca docs: add SCOPE.md for rapid orientation tegwick 2026-03-17 23:10:45 +01:00
  • 8929bf65bc feat(sso-mfa): T03 PostgreSQL manifests (NK-WP-0001-T03) tegwick 2026-03-05 09:22:13 +01:00
  • 2ebb231f19 custodian integration and some cleanuo tegwick 2026-03-04 23:31:28 +01:00
  • 7c3cde06b5 docs: introduce CONFIG.md config point registry (CP-NK-001) tegwick 2026-03-02 11:47:14 +01:00
  • ee794a61ab feat(sso-mfa): T02 K8s foundations manifests (NK-WP-0001-T02) tegwick 2026-03-02 09:49:39 +01:00
  • c5761884f4 feat(sso-mfa): Phase 0a bootstrap tooling (NK-WP-0001-T01) tegwick 2026-03-02 09:01:50 +01:00
  • 52d44daec2 refactor(local-identity): post-Stage4 cleanups and micro-fixes tegwick 2026-03-02 08:25:21 +01:00
  • 3890dca25d chore(workplan): mark NK-WP-0002 fully complete (all 4 stages done) tegwick 2026-03-02 08:07:20 +01:00
  • e7bafd69fc feat(local-identity): Stage 4 — security hardening (NK-WP-0002-T04) tegwick 2026-03-02 08:06:56 +01:00
  • ae348d0e54 docs(decisions): record D4 (ESO) and D5 (local-identity in-repo) tegwick 2026-03-02 01:06:58 +01:00
  • ec4626fb84 chore(workplan): mark NK-WP-0002-T03 done, record commit hash tegwick 2026-03-02 01:06:01 +01:00
  • d35823df08 feat(local-identity): Stage 3 — minimal native OIDC provider (NK-WP-0002-T03) tegwick 2026-03-02 01:05:50 +01:00
  • 25c92863cf chore(workplan): mark NK-WP-0002-T02 done, record commit hash tegwick 2026-03-02 00:24:04 +01:00
  • dad8365e6a feat(local-identity): Stage 2 — Keycloak export & bootstrap integration (NK-WP-0002-T02) tegwick 2026-03-02 00:23:39 +01:00
  • 666a56f4ed feat(local-identity): add --username and --fullname overrides to init tegwick 2026-03-02 00:11:04 +01:00
  • 45cba35054 chore(workplan): mark NK-WP-0002-T01 done (Stage 1 complete) tegwick 2026-03-02 00:02:40 +01:00
  • 4491beaffe feat(local-identity): implement Stage 1 — core file store (NK-WP-0002-T01) tegwick 2026-03-02 00:01:54 +01:00
  • 6ed0061962 feat(local-identity): add NK-WP-0002 workplan and LocalIdentity.md tegwick 2026-03-01 23:49:06 +01:00
  • 873fbcf052 docs(workplan): add D4/D5 decisions, T02 prerequisite, EP-NK-001 reference tegwick 2026-03-01 23:11:51 +01:00
  • 534906d509 docs(workplan): update NK-WP-0001 with resolved decisions D1/D2/D3 tegwick 2026-03-01 22:51:11 +01:00
  • 004a8d6e6b Add CLAUDE.md, wiki protoplans, and NK-WP-0001 workplan tegwick 2026-02-28 17:21:51 +01:00
  • a852627f0c Initial commit Coulomb Social 2026-02-28 09:41:41 +00:00