workstation: per-user code_layout — workspace puts project repos under ~/code (ancamilea + tripit)
Viktor asked to restructure Anca's setup: her ~/code WAS the infra clone itself; he wants ~/code to be the directory where all her project repos (tripit etc.) live side by side, with infra moved to a subdirectory. - roster.yaml gains per-user 'code_layout: single|workspace' + 'repos', validated + derived by roster_engine.py (12 new tests, 40 total). - t3-provision-users reconcile: auto-migrates a single-layout ~/code to ~/code/infra (running processes follow the moved inode), hoists nested project clones to the workspace root, clones roster repos from Forgejo AS the user (their PAT makes private repos work), and wires the documented forgejo remote + forgejo/master upstream into clones that predate that contract. - Fixed a latent TSV bug: empty jq @tsv fields collapse under tab-IFS read, shifting later fields left (groups was only safe by being the last field) — emit '-' sentinels instead. - start-claude.sh session freshen is layout-aware (freshens each repo under ~/code for workspace users). - managed claudeMd + AGENTS.md non-admin recipe + multi-tenancy.md updated in the same change. Applied live: ancamilea = workspace (infra at ~/code/infra, her existing tripit clone hoisted to ~/code/tripit, master upstream switched to forgejo/master); emo stays single layout, untouched. [ci skip]
This commit is contained in:
Viktor Barzin
parent
3b6a5c6737
commit
2825cb1703
8 changed files with 306 additions and 44 deletions
|
|
@ -13,6 +13,7 @@ per person and are recorded explicitly (no email->username derivation).
|
|||
from __future__ import annotations
|
||||
|
||||
import json
|
||||
import re
|
||||
import sys
|
||||
from dataclasses import dataclass, field
|
||||
from typing import Iterable
|
||||
|
|
@ -21,6 +22,13 @@ import yaml
|
|||
|
||||
BASE_PORT = 3773
|
||||
VALID_TIERS = ("admin", "power-user", "namespace-owner")
|
||||
# single - ~/code IS the locked infra clone (the original non-admin layout)
|
||||
# workspace - ~/code is a plain directory of per-project clones; the locked
|
||||
# infra clone lives at ~/code/infra and `repos` clone alongside it
|
||||
VALID_CODE_LAYOUTS = ("single", "workspace")
|
||||
# Repo names become root-executed clone/mv paths under ~/code — plain
|
||||
# leading-alphanumeric names only (no separators, dotfiles, or option-like names).
|
||||
_REPO_NAME_RE = re.compile(r"^[A-Za-z0-9][A-Za-z0-9._-]*$")
|
||||
# Tier -> supplementary groups the reconcile ENSURES (additive-only; never stripped).
|
||||
TIER_GROUPS: dict[str, tuple[str, ...]] = {
|
||||
"admin": ("code-shared", "docker", "sudo"),
|
||||
|
|
@ -48,6 +56,8 @@ class User:
|
|||
k8s_user: str
|
||||
tier: str
|
||||
namespaces: tuple[str, ...] = ()
|
||||
code_layout: str = "single"
|
||||
repos: tuple[str, ...] = ()
|
||||
|
||||
|
||||
@dataclass(frozen=True)
|
||||
|
|
@ -62,6 +72,8 @@ class Account:
|
|||
shell: str
|
||||
login_locked: bool
|
||||
groups: tuple[str, ...]
|
||||
code_layout: str = "single"
|
||||
repos: tuple[str, ...] = ()
|
||||
|
||||
|
||||
@dataclass(frozen=True)
|
||||
|
|
@ -98,7 +110,31 @@ def _parse_user(os_user: str, spec: dict) -> User:
|
|||
raise RosterError(f"user {os_user!r}: namespace-owner requires namespaces")
|
||||
if tier != "namespace-owner" and namespaces:
|
||||
raise RosterError(f"user {os_user!r}: only namespace-owner may set namespaces")
|
||||
return User(os_user, spec["authentik_user"], spec["k8s_user"], tier, namespaces)
|
||||
code_layout = spec.get("code_layout", "single")
|
||||
if code_layout not in VALID_CODE_LAYOUTS:
|
||||
raise RosterError(
|
||||
f"user {os_user!r}: unknown code_layout {code_layout!r} "
|
||||
f"(valid: {list(VALID_CODE_LAYOUTS)})"
|
||||
)
|
||||
repos = tuple(spec.get("repos") or ())
|
||||
if repos and code_layout != "workspace":
|
||||
raise RosterError(f"user {os_user!r}: repos require code_layout: workspace")
|
||||
for repo in repos:
|
||||
if not _REPO_NAME_RE.match(repo):
|
||||
raise RosterError(f"user {os_user!r}: unsafe repo name {repo!r}")
|
||||
if "infra" in repos:
|
||||
raise RosterError(
|
||||
f"user {os_user!r}: infra is implicit at ~/code/infra — drop it from repos"
|
||||
)
|
||||
return User(
|
||||
os_user,
|
||||
spec["authentik_user"],
|
||||
spec["k8s_user"],
|
||||
tier,
|
||||
namespaces,
|
||||
code_layout,
|
||||
repos,
|
||||
)
|
||||
|
||||
|
||||
def load_roster(text: str) -> Roster:
|
||||
|
|
@ -205,6 +241,8 @@ def derive_desired_state(
|
|||
shell=DEFAULT_SHELL,
|
||||
login_locked=True,
|
||||
groups=TIER_GROUPS[u.tier],
|
||||
code_layout=u.code_layout,
|
||||
repos=u.repos,
|
||||
)
|
||||
for u in roster.users.values()
|
||||
}
|
||||
|
|
@ -257,6 +295,8 @@ def _desired_state_to_dict(ds: DesiredState) -> dict:
|
|||
"shell": a.shell,
|
||||
"login_locked": a.login_locked,
|
||||
"groups": list(a.groups),
|
||||
"code_layout": a.code_layout,
|
||||
"repos": list(a.repos),
|
||||
}
|
||||
for name, a in ds.accounts.items()
|
||||
},
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue