npm - codeharbor - Versions diffs - 0.1.13 → 0.1.15 - Mend

codeharbor 0.1.13 → 0.1.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/.env.example CHANGED Viewed

@@ -74,6 +74,11 @@ ADMIN_PORT=8787
 # Strongly recommended for any non-localhost access.
 # Required when exposing admin via reverse proxy/tunnel/public domain.
 ADMIN_TOKEN=
+# Optional multi-token RBAC (JSON array).
+# Each item: {"token":"...","role":"admin|viewer","actor":"ops-name"}
+# Example:
+# ADMIN_TOKENS_JSON=[{"token":"admin-secret","role":"admin","actor":"ops-admin"},{"token":"viewer-secret","role":"viewer","actor":"ops-audit"}]
+ADMIN_TOKENS_JSON=
 # Optional IP allowlist (comma-separated, for example: 127.0.0.1,192.168.1.10).
 ADMIN_IP_ALLOWLIST=
 # Optional browser origin allowlist for CORS (comma-separated).

package/README.md CHANGED Viewed

@@ -311,7 +311,7 @@ Optional overrides:
 codeharbor admin serve --host 127.0.0.1 --port 8787
 ```
-If you bind Admin to a non-loopback host and `ADMIN_TOKEN` is empty, startup is rejected by default.
+If you bind Admin to a non-loopback host and both `ADMIN_TOKEN` and `ADMIN_TOKENS_JSON` are empty, startup is rejected by default.
 Explicit bypass exists but is not recommended:
 ```bash
@@ -336,7 +336,7 @@ Main endpoints:
 - `GET /api/admin/health`
 - `GET /api/admin/audit?limit=50`
-When `ADMIN_TOKEN` is set, requests must include:
+When `ADMIN_TOKEN` or `ADMIN_TOKENS_JSON` is set, requests must include:
 ```http
 Authorization: Bearer <ADMIN_TOKEN>
@@ -345,9 +345,16 @@ Authorization: Bearer <ADMIN_TOKEN>
 Access control options:
 - `ADMIN_TOKEN`: require bearer token for `/api/admin/*`
+- `ADMIN_TOKENS_JSON`: optional multi-token RBAC list (supports `admin` and `viewer` roles)
 - `ADMIN_IP_ALLOWLIST`: optional comma-separated client IP whitelist (for example `127.0.0.1,192.168.1.10`)
 - `ADMIN_ALLOWED_ORIGINS`: optional CORS origin allowlist for browser-based cross-origin admin access
+RBAC behavior:
+- `viewer` tokens can call read endpoints (`GET /api/admin/*`)
+- `admin` tokens can call read + write endpoints (`PUT/POST/DELETE /api/admin/*`)
+- for `ADMIN_TOKENS_JSON`, audit actor is derived from token identity (`actor` field), not `x-admin-actor`
 Note: `PUT /api/admin/config/global` writes to `.env` and marks changes as restart-required.
 ### Admin UI Quick Walkthrough
@@ -403,14 +410,23 @@ If any check fails, it prints actionable fix commands (for example `codeharbor i
   - `/stop` cancel in-flight execution (if running) and reset session context
   - `/agents status` show multi-agent workflow status for current session (when enabled)
   - `/agents run <objective>` run Planner -> Executor -> Reviewer workflow (when enabled)
+  - `/autodev status` show AutoDev doc/task summary + run snapshot (when enabled)
+  - `/autodev run [taskId]` auto-pick pending task (or run specified task) from `TASK_LIST.md` (when enabled)
 ### Multi-Agent Workflow (Phase B, Opt-In)
 - `AGENT_WORKFLOW_ENABLED=true`
-  - enable `/agents` workflow commands
+  - enable `/agents` and `/autodev` workflow commands
 - `AGENT_WORKFLOW_AUTO_REPAIR_MAX_ROUNDS`
   - reviewer reject loop upper bound (default `1`)
+AutoDev (`/autodev`) conventions:
+- Workspace must contain `REQUIREMENTS.md` and `TASK_LIST.md`.
+- `TASK_LIST.md` should include task IDs and status markers (`⬜`, `🔄`, `✅`, `❌`, `🚫`) in table rows or checklist rows.
+- `/autodev run` selects `🔄` task first, then `⬜` task.
+- When reviewer verdict is `APPROVED`, CodeHarbor updates the task status to `✅` automatically.
 Default is disabled to keep legacy behavior unchanged.
 ## CLI Compatibility Mode