tking/bascule-workspace
SHA256
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
bascule-workspace/bascule-core/src
History
Tyler J King aa447f151e feat(bascule-core): add DelegationScope for Infrastructure shell pattern 
DelegationScope is orthogonal to ShellClass — an Application session
can have delegation authority to orchestrate System operations on
remote targets (the Infrastructure shell pattern for Ansible/Terraform).

TargetSelector supports: None, Hosts (explicit list), LabelSelector
(deferred to K8s API), TrustDomain (all hosts). Default: denied
(fail-closed).

DelegationDecision: Permitted, Denied (with reason), Deferred (for
async label resolution).

Added delegation field to SessionScope with #[serde(default)] for
backward-compatible deserialization.

7 unit tests for delegation scope checking.

Signed-off-by: Tyler King <tking@guildhouse.dev>
Signed-off-by: Tyler J King <tking727@gmail.com>
2026-04-15 15:16:24 -04:00
..
audit.rs initial: bascule v0.1.0 2026-03-18 16:40:48 -04:00
ceremony.rs initial: bascule v0.1.0 2026-03-18 16:40:48 -04:00
command.rs initial: bascule v0.1.0 2026-03-18 16:40:48 -04:00
delegation.rs feat(bascule-core): add DelegationScope for Infrastructure shell pattern 2026-04-15 15:16:24 -04:00
lib.rs feat(bascule-core): add DelegationScope for Infrastructure shell pattern 2026-04-15 15:16:24 -04:00
scope.rs feat(bascule-core): add DelegationScope for Infrastructure shell pattern 2026-04-15 15:16:24 -04:00
session.rs initial: bascule v0.1.0 2026-03-18 16:40:48 -04:00
shell_class.rs feat(bascule-core): add ShellClass enum with posture-based derivation 2026-04-15 10:36:45 -04:00