5 commits

Author	SHA256	Message	Date
Tyler King	f7c49387c1	feat: absorb llm-principal-broker as gsap_broker/delegations/ ... Merges the standalone llm-principal-broker (1,132 LOC) into fastapi-gsap as an in-process module. The previous architecture had two FastAPI processes where the broker called GSAP over HTTP on every delegation creation; now the lifecycle code uses GSAP's own async DB engine directly and inserts AuthorizationContextDB rows in the same transaction context. New module: gsap_broker/delegations/ models.py Pydantic request/response shapes storage.py DelegationDB SQLModel sharing the GSAP engine lifecycle.py DelegationManager — in-process AC issuance via AuthorizationContextDB.insert (no HTTP self-call) cleanup.py 30s background task for stale delegations router.py /delegations/* FastAPI router (4 endpoints) registrars/ base.py AgentRegistrar Protocol + AgentCredentials stub.py dev-mode no-op keycloak.py Keycloak Admin REST API entra.py Microsoft Entra Agent ID via Graph (lazy import) factory.py driver selection (auto/stub/keycloak/entra) Wiring: app.py mounts the delegations router and starts the cleanup task in the existing lifespan context manager. settings.py absorbs the keycloak_admin_*, entra_*, and agent_registrar fields from the old broker's settings. pyproject.toml adds an optional `entra` extra for the msal dep. Behaviour preservation: - Endpoints kept identical: POST /, POST /{id}/revoke, GET /{id}, GET / - Chronicle event codes preserved: 0x3001 / 0x3003 / 0x3004 - DelegationScope defaults unchanged (max_ttl_minutes=60, max_commands=500) - Capability ceiling -> capability_mask conversion documented inline Smoke test: `python -c "from gsap_broker.app import app"` loads cleanly with 26 routes including the four /delegations/ endpoints. The standalone llm-principal-broker repo is archived to ~/projects/archive/llm-principal-broker. Signed-off-by: Tyler King <tking@guildhouse.dev>	2026-04-08 13:37:06 -04:00
Tyler King	3ed75169c7	feat: MCP endpoint — governance primitives as MCP tools ... POST /mcp — Streamable HTTP JSON-RPC 2.0 (MCP spec 2024-11-05) 11 governance tools for consortia builders: request_ac — AC issuance (wraps /governance/authorize/) validate_ac — AC validation (wraps /governance/authorize/{token}/) post_cr — CR posting (wraps /governance/complete/) query_accord — AccordTemplate lookup request_delegation — proxy to LLM Principal Broker revoke_delegation — proxy to LLM Principal Broker get_delegation — proxy to LLM Principal Broker list_agents — proxy to LLM Principal Broker get_posture — DEFCON level and restrictions (30s cache) check_operation — dry-run operation check against posture session_info — current session context Tool handlers call existing broker internals — no logic duplication. Delegation tools proxy to LLM Principal Broker via HTTP. Every tool call recorded in Chronicle (MCP_TOOL_CALL 0x3020). Any MCP-compatible agent can discover and use governance operations through standard protocol — no Capstone, no Django required. All 7 smoke tests pass (init, list, posture, check_op, session, accord, error). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-04 18:42:29 -04:00
Tyler J King	0c77943ceb	feat: governed function runtime + billing drain ... GCAP-SPEC-FUNCTION-DESCRIPTOR-0001 implementation. Mirrors connector runtime pattern exactly. FunctionPlugin — trigger_events, handle(), descriptor(), knative_manifest() FunctionRegistry — trigger_index for event-driven routing FunctionRuntime — invoke() + dispatch() with Chronicle lineage governed_function decorator — SDK surface for function authors BillingProcessor — GSAP_CR_RECEIVED → billable event with Chronicle CID EchoFunction — dev/test API: /functions/ catalogue, invoke, dispatch, manifest, health 8 tests passing. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 22:12:29 -04:00
Tyler J King	0987704264	feat: governed connector module ... GCAP-SPEC-CONNECTOR-DESCRIPTOR-0001 implementation. ConnectorPlugin — abstract base for governed connectors. ConnectorRegistry — register/discover connectors. ConnectorRuntime — wraps invoke with Chronicle lineage. EchoConnector — dev/test example. API endpoints: GET /connectors/ — browse catalogue GET /connectors/{id}/ — connector descriptor POST /connectors/{id}/invoke/ — governed invocation GET /connectors/{id}/health/ — health check 5 tests passing. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 16:42:38 -04:00
Tyler J King	cbc9ad73f7	feat: fastapi-gsap — lightweight GSAP broker PoC ... Reference implementation of GCAP-SPEC-SHELLBOUND-BROKER-0001 in FastAPI. Designed for ISVs and enterprises implementing the governed shell authorization protocol. Architecture: FastAPI + SQLModel + Pydantic + async SQLite Single container deployment: Dockerfile included OpenAPI schema at /docs is the machine-readable GSAP contract Broker Interface (§5): POST /governance/authorize/ — Issue AC GET /governance/authorize/{p}/ — Poll elevation POST /governance/complete/ — Receive CR GET /governance/session/{id}/ — View chain of custody POST /governance/elevate/ — JIT elevation GET /governance/drivers/ — List drivers Identity Driver Interface (§2.2): IdentityDriver — abstract base (ISV extension point) KeycloakDriver — Keycloak implementation DriverRegistry — driver lookup and registration Chronicle integration (§1.4): Optional CloudEvents emission via CHRONICLE_WEBHOOK_URL Forgejo push event format for receiver compatibility Models: Pydantic schemas for AC, CR, Principal, Accord, Operation SQLModel DB models for persistence Tests: 6 async tests including full AC→CR cycle 695 lines across 27 files. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 14:10:21 -04:00