gamedev 0.1.1 → 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/build/public/admin.html
CHANGED
|
@@ -25,14 +25,14 @@
|
|
|
25
25
|
<meta name="apple-mobile-web-app-capable" content="yes" />
|
|
26
26
|
<meta name="mobile-web-app-capable" content="yes" />
|
|
27
27
|
<link rel="preload" href="/SpaceMono-regular.woff2" as="font" type="font/woff2" crossorigin />
|
|
28
|
-
<link rel="stylesheet" type="text/css" href="/index.css?v=
|
|
28
|
+
<link rel="stylesheet" type="text/css" href="/index.css?v=1771613467677" />
|
|
29
29
|
<script>
|
|
30
30
|
window.PARTICLES_PATH = '/particles-4YQR4CFO.js'
|
|
31
31
|
</script>
|
|
32
32
|
</head>
|
|
33
33
|
<body>
|
|
34
34
|
<div id="root"></div>
|
|
35
|
-
<script src="/env.js?v=
|
|
35
|
+
<script src="/env.js?v=1771613467677"></script>
|
|
36
36
|
<script src="/admin-VV3XAOYE.js" type="module"></script>
|
|
37
37
|
</body>
|
|
38
38
|
</html>
|
package/build/public/index.html
CHANGED
|
@@ -44,14 +44,14 @@
|
|
|
44
44
|
<meta name="theme-color" content="#ffffff"> -->
|
|
45
45
|
|
|
46
46
|
<link rel="preload" href="/SpaceMono-regular.woff2" as="font" type="font/woff2" crossorigin />
|
|
47
|
-
<link rel="stylesheet" type="text/css" href="/index.css?v=
|
|
47
|
+
<link rel="stylesheet" type="text/css" href="/index.css?v=1771613467676" />
|
|
48
48
|
<script>
|
|
49
49
|
window.PARTICLES_PATH = '/particles-4YQR4CFO.js'
|
|
50
50
|
</script>
|
|
51
51
|
</head>
|
|
52
52
|
<body>
|
|
53
53
|
<div id="root"></div>
|
|
54
|
-
<script src="/env.js?v=
|
|
54
|
+
<script src="/env.js?v=1771613467676"></script>
|
|
55
55
|
<script src="/index-SXWBQVY4.js" type="module"></script>
|
|
56
56
|
</body>
|
|
57
57
|
</html>
|
package/package.json
CHANGED
|
@@ -1,50 +0,0 @@
|
|
|
1
|
-
# Runtime Admin Credential Access Plan
|
|
2
|
-
|
|
3
|
-
Last updated: 2026-02-19
|
|
4
|
-
|
|
5
|
-
## Goal
|
|
6
|
-
|
|
7
|
-
- Let authorized in-world admins copy `WORLD_ID` and `ADMIN_CODE` for app-server workflows.
|
|
8
|
-
- Avoid generic environment-variable access over the admin channel.
|
|
9
|
-
- Keep reveal behavior explicit, auditable, and rollout-controlled.
|
|
10
|
-
|
|
11
|
-
## Command Contract
|
|
12
|
-
|
|
13
|
-
- Admin WS command: `runtime_credentials_get`
|
|
14
|
-
- Response shape:
|
|
15
|
-
- `worldId`
|
|
16
|
-
- `hasAdminCode`
|
|
17
|
-
- `canRevealAdminCode`
|
|
18
|
-
- `adminCode` (nullable; only when reveal is enabled and caller is authorized)
|
|
19
|
-
|
|
20
|
-
## Feature Flag
|
|
21
|
-
|
|
22
|
-
- Runtime env flag: `ADMIN_CREDENTIAL_REVEAL_ENABLED`
|
|
23
|
-
- Default behavior: disabled (`false`)
|
|
24
|
-
|
|
25
|
-
## Work Units
|
|
26
|
-
|
|
27
|
-
- [x] PR-1: Contract + Guardrails Scaffolding
|
|
28
|
-
- Add tracked plan and command contract.
|
|
29
|
-
- Add runtime flag parsing + credential response/audit helpers.
|
|
30
|
-
|
|
31
|
-
- [x] PR-2: Runtime Server Command Handler
|
|
32
|
-
- Implement `runtime_credentials_get` in admin WS command handling.
|
|
33
|
-
- Gate by deploy capability and add reveal audit logging.
|
|
34
|
-
- Add targeted tests.
|
|
35
|
-
|
|
36
|
-
- [x] PR-3: Admin Client API
|
|
37
|
-
- Add `getRuntimeCredentials()` API in client admin system.
|
|
38
|
-
- Keep returned credentials in memory only.
|
|
39
|
-
|
|
40
|
-
- [x] PR-4: World Pane UX
|
|
41
|
-
- Add admin-only credential section with copy actions.
|
|
42
|
-
- Add explicit reveal/copy action for `ADMIN_CODE`.
|
|
43
|
-
|
|
44
|
-
- [x] PR-5: Rollout + Docs
|
|
45
|
-
- Add operator runbook for enabling/disabling reveal.
|
|
46
|
-
- Set rollout defaults in dev/prod config.
|
|
47
|
-
|
|
48
|
-
## Dependencies
|
|
49
|
-
|
|
50
|
-
- `PR-1 -> PR-2 -> PR-3 -> PR-4 -> PR-5`
|
|
@@ -1,50 +0,0 @@
|
|
|
1
|
-
# Runtime Admin Credential Reveal Runbook
|
|
2
|
-
|
|
3
|
-
Last updated: 2026-02-19
|
|
4
|
-
|
|
5
|
-
## Purpose
|
|
6
|
-
|
|
7
|
-
- Control whether runtime admins can reveal/copy `ADMIN_CODE` from the editor World pane.
|
|
8
|
-
- `WORLD_ID` remains visible to authorized runtime admins.
|
|
9
|
-
|
|
10
|
-
## Runtime Flag
|
|
11
|
-
|
|
12
|
-
- `ADMIN_CREDENTIAL_REVEAL_ENABLED`
|
|
13
|
-
- `false`: `ADMIN_CODE` stays hidden (`canRevealAdminCode=false`)
|
|
14
|
-
- `true`: runtime may return `ADMIN_CODE` to authorized deploy-capable admins
|
|
15
|
-
|
|
16
|
-
## Local Runtime (direct)
|
|
17
|
-
|
|
18
|
-
- Set in runtime env (`.env`):
|
|
19
|
-
|
|
20
|
-
```bash
|
|
21
|
-
ADMIN_CREDENTIAL_REVEAL_ENABLED=true
|
|
22
|
-
```
|
|
23
|
-
|
|
24
|
-
- Restart runtime after changes.
|
|
25
|
-
|
|
26
|
-
## Managed Worlds (world-service provisioned pods)
|
|
27
|
-
|
|
28
|
-
- Set world-service env:
|
|
29
|
-
- `RUNTIME_ADMIN_CREDENTIAL_REVEAL_ENABLED`
|
|
30
|
-
- world-service passes this into each provisioned runtime pod as:
|
|
31
|
-
- `ADMIN_CREDENTIAL_REVEAL_ENABLED`
|
|
32
|
-
|
|
33
|
-
### Recommended rollout defaults
|
|
34
|
-
|
|
35
|
-
- Dev: `RUNTIME_ADMIN_CREDENTIAL_REVEAL_ENABLED=true`
|
|
36
|
-
- Prod: `RUNTIME_ADMIN_CREDENTIAL_REVEAL_ENABLED=false`
|
|
37
|
-
|
|
38
|
-
## Verification
|
|
39
|
-
|
|
40
|
-
1. Open world editor as an authorized admin.
|
|
41
|
-
2. Open `World` pane and locate `Runtime Credentials`.
|
|
42
|
-
3. Confirm:
|
|
43
|
-
- `WORLD_ID` copy works.
|
|
44
|
-
- `ADMIN_CODE` reveal/copy behavior matches the configured flag.
|
|
45
|
-
|
|
46
|
-
## Rollback
|
|
47
|
-
|
|
48
|
-
1. Set `ADMIN_CREDENTIAL_REVEAL_ENABLED=false` (direct runtime), or
|
|
49
|
-
2. Set `RUNTIME_ADMIN_CREDENTIAL_REVEAL_ENABLED=false` (world-service managed),
|
|
50
|
-
3. Restart/redeploy affected runtime pods.
|