Skip to content

Feature performance improvements #79

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
vsilent merged 123 commits into from
Jan 16, 2026
Merged

Feature performance improvements #79

vsilent merged 123 commits into from
Jan 16, 2026

Conversation

@vsilent
Copy link
Collaborator

@vsilent vsilent commented Jan 16, 2026

No description provided.

vsilent and others added 30 commits June 27, 2024 09:43
limit docker image search with ?name parameter. Find exact tag by name
185de0c
Add ability to connect on-premise own server
c8e701a
Server cloud setting columns like region should allow null for the ow…
dda0930 
…n server case, need to discuss more
set provider to 'own' when deal with on-premise or own server conenction
02385bf
agreement accept, and management for admin api
97f5f84
github actions untilities versioning update, agreement funcs added
c91de51
cargo update
f1ad3c4
.sqlx added to the repo for offline build
5e9ca01
test offline build
095b7ba
test offline build
0229021
@vsilent
Update docker.yml
96b0f95
workflow SQLX_OFFLINE
970f876
Merge branch 'dev' of https://github.com/trydirect/stacker into dev
4225c62
workflow SQLX_OFFLINE
715a2cb
workflow SQLX_OFFLINE
c93f16a
workflow SQLX_OFFLINE
bb0c645
workflow SQLX_OFFLINE
70a743d
workflow SQLX_OFFLINE
1c8ea9a
workflow SQLX_OFFLINE
ab16922
workflow SQLX_OFFLINE
2e698bd
.sqlx files
a631162
.sqlx files
cbe46b6
initial commands
3e731e5
All hardcoded IDs removed, Casbin rules use SERIAL
129bd71
fixed warnings
6c52f29
project.body->metadata, agent registration/commands tests, middleware…
1e1e7ca 
… updates, Prevented auth middleware panic by returning Poll::Pending if the mutex is busy.Increased heartbeat wait timeout to align with long-polling. Left the duplicate Casbin migration as a no-op to avoid conflicts. Added a rule to casbin for public registration of agent(testing purpose)
TODO updates
9267f9f
take vault creds from .env instead
a56c531
agent commander
e7bb6be
casbin rules for agent, vault for token rotation
71e448e
vsilent and others added 15 commits January 12, 2026 13:54
remove FK constraint from commands
bb44e26
agent's path in wait()
b9e4785
Added deployment capabilities route: capabilities.rs with static comm…
d6faf38 
…and catalog, capability filtering, and payload including status, heartbeat, version, system_info, raw capabilities, and allowed commands. Unit tests cover filtering and payload cases.remove duplicates
command_queue fix
2950ef3
command_queue fix
9c0a6f7
Removed push logic from create.rs,Removed VaultClient dependency, we …
6769848 
…don't push anything to agent
casbin rule for enqueu endpoint
7494535
@claude
Fix: Add Casbin agent role permissions for Status Panel
4522654 
Problem:
Status Panel agents authenticate with 'agent' role but get 403
when accessing /api/v1/agent/commands/report endpoint.

Root Cause:
- Agent authentication (f_agent.rs) creates pseudo-user with role 'agent'
- Earlier migration (20251222160220) added agent permissions
- However, permissions may be missing on remote server

Solution:
- Create idempotent migration ensuring agent role has necessary permissions
- Grant 'agent' role access to:
  * POST /api/v1/agent/commands/report (command reporting)
  * GET /api/v1/agent/commands/wait/:deployment_hash (command polling)
- Ensure agent role inherits from group_anonymous

This allows Status Panel agents to report command results without
requiring per-agent Casbin rules, leveraging Vault token management
for authentication.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
match report from agent by column id not command_id
1074ab6
fetch by command_id not by id
624f46f
sqlx files
af45537
User auth cache, compress internal requests
9a036ac
cache cookies
6d82d3f
STACKER_AGENT_POLL_TIMEOUT_SECS, STACKER_AGENT_POLL_INTERVAL_SECS con…
0187e24 
…fig settings
casbin_reload config driven
4ea47ac
@gitguardian
Copy link

gitguardian bot commented Jan 16, 2026
edited
Loading

⚠️ GitGuardian has uncovered 1 secret following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secret in your pull request
GitGuardian id GitGuardian status Secret Commit Filename
24149610 Triggered Bearer Token 0a8b589 src/connectors/admin_service/jwt.rs View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secret safely. Learn here the best practices.
  3. Revoke and rotate this secret.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 16, 2026
View reviewed changes
vsilent and others added 12 commits January 16, 2026 11:52
sqlx files for offline build
e7aedbe
updated changelog and readme
e8b99ce
defaults
8b750de
self-hosted build disabled
8046d52
Added next_poll_secs to the response body metadata for the agent wait…
5beb4ad 
… endpoin,part of meta
@vsilent @github-advanced-security
Potential fix for code scanning alert no. 14: Cleartext transmission …
7aad273 
…of sensitive information

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
test fix, vault v1
746a5a6
Merge branch 'feature-performance-improvements' of https://github.com…
cb54da4 
…/trydirect/stacker into feature-performance-improvements

merge fix
skip when Postgres isn’t reachable, so these won’t fail in CI without…
ebbf0d8 
… a DB
Fixed the missing fixture by switching the test to an existing mock p…
098e8dc 
…ayload and removing the unused import.
fix blocked requests by removed that mutex and switched to Rc<RefCell…
61629ea 
…> so requests are no longer serialized
fix docker.yml copy dist, npm fix
2ddd365
@vsilent vsilent merged commit 7d93d66 into main Jan 16, 2026
10 of 12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@vsilent