tegwick
b1aac08eb2
Seed a non-secret service inventory (environments, hosts, clusters, services, endpoints, access paths, evidence, gaps) with a JSON schema, a renderer, and a generated service-catalog view. Adds the `make ops-inventory-view` target, probe ActivityDefinition, and docs. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
5.3 KiB
5.3 KiB
Ops Hub Service Catalog Now View
Source: ops/service-inventory.yml
Inventory last reviewed: 2026-06-05
This is the repo-native first view for CUST-WP-0047. It exists so an
operator can answer what is running where before the full standalone
ops-hub application is available.
Summary
| Metric | Count |
|---|---|
| Environments | 4 |
| Hosts | 3 |
| Clusters | 3 |
| Services | 8 |
| Services: observed_ok | 2 |
| Services: unknown | 6 |
Service Catalog
| Service | Where | Owner | Endpoint | Health | Data | Access | Top Gap |
|---|---|---|---|---|---|---|---|
| Gitea (gitea) | CoulombCore type: k3s; cluster: coulombcore-k3s; namespace: default |
railiance-apps | https://gitea.coulomb.social/v2/ Expected: status 401, OCI registry auth challenge |
unknown 2026-05-16: Inventory draft records Helm release gitea, namespace default, app version 1.25.4, NodePort 32166, and registry auth challenge. |
database:gitea-db pvc:default/gitea-shared-storage |
k8s: unknown (coulombcore-k3s/default) | Package token and push/pull verification need current evidence. |
| Gitea Database (gitea-database) | CoulombCore type: k3s; cluster: coulombcore-k3s; namespace: databases |
railiance-platform | - | unknown 2026-05-16: /home/worsch/helix-forge/wiki/OpsHubInventory.md |
- | k8s: unknown (coulombcore-k3s/databases) | Backup and restore evidence not recorded in ops inventory. |
| Gitea Shared Storage (gitea-shared-storage) | CoulombCore type: k3s; cluster: coulombcore-k3s; namespace: default |
railiance-platform railiance-apps |
- | unknown 2026-05-16: /home/worsch/helix-forge/wiki/OpsHubInventory.md |
- | k8s: unknown (coulombcore-k3s/default/pvc/gitea-shared-storage) | Package blob backup and restore evidence not confirmed. |
| State Hub (state-hub) | Local Workstation type: local-process; host: local-workstation; ports: 8000 |
state-hub the-custodian |
http://127.0.0.1:8000/state/health Expected: status 200, health response |
observed_ok 2026-06-05: State Hub accepted inbox, task, and progress API calls. |
postgresql:state-hub | http: observed_ok (http://127.0.0.1:8000) | Future cluster deployment readiness still needs ops evidence. |
| Inter-Hub (inter-hub) | ThreePhoenix Production type: external; public_endpoint: https://hub.coulomb.social |
inter-hub | https://hub.coulomb.social/api/v2/openapi.json Expected: status 200, OpenAPI document |
unknown 2026-05-16: /home/worsch/helix-forge/wiki/OpsHubInventory.md |
- | https: unknown (https://hub.coulomb.social) | ops-hub bootstrap requires authenticated UI flow or deployment-side migration. |
| activity-core (activity-core) | Railiance01 type: k3s; cluster: railiance01-k3s; namespace: activity-core |
activity-core the-custodian |
activity-core API health endpoint Expected: status 200, healthy DB and Temporal status |
observed_ok 2026-05-23: API health, worker rollout, Temporal CLI schedule listing, and State Hub bridge were verified. |
postgresql:activity-core temporal:activity-core nats:railiance01 |
k8s: observed_ok (railiance01-k3s/activity-core) | Add explicit ops inventory probes and evidence events. |
| Ops Bridge (ops-bridge) | Local Workstation type: bridge; host: local-workstation |
ops-bridge | - | unknown 2026-05-16: Bridge is useful for connected-server visibility but is not itself the service catalog. |
- | ssh-tunnel: unknown (connected remote servers) | Emit reachability evidence into ops-hub instead of relying on bridge state as inventory. |
| Haskell Build Agent (haskell-build-agent) | Local Workstation type: systemd; host: haskell-build-vm |
the-custodian | http://127.0.0.1:18000 Expected: VM can reach State Hub through SSH forward |
unknown undated: Build agent is a systemd service and registers with State Hub on boot. |
- | ssh: unknown (local workstation reverse tunnel port 12222) | Current tunnel and capability registration need live evidence in ops-hub. |
Open Operating Gaps
Gitea (gitea)
- Package token and push/pull verification need current evidence.
- Backup and restore evidence for database and shared storage not recorded in ops inventory.
Gitea Database (gitea-database)
- Backup and restore evidence not recorded in ops inventory.
Gitea Shared Storage (gitea-shared-storage)
- Package blob backup and restore evidence not confirmed.
State Hub (state-hub)
- Future cluster deployment readiness still needs ops evidence.
Inter-Hub (inter-hub)
- ops-hub bootstrap requires authenticated UI flow or deployment-side migration.
activity-core (activity-core)
- Add explicit ops inventory probes and evidence events.
Ops Bridge (ops-bridge)
- Emit reachability evidence into ops-hub instead of relying on bridge state as inventory.
Haskell Build Agent (haskell-build-agent)
- Current tunnel and capability registration need live evidence in ops-hub.
Next Evidence Events
ops-service-observedfor each runtime object confirmed by a probe.ops-endpoint-verifiedfor HTTP, HTTPS, tunnel, or cluster endpoints.ops-access-path-checkedfor non-secret access path checks.ops-backup-verifiedwhere backup and restore evidence exists.ops-inventory-driftwhen observed state differs from this inventory.