claude-code-conduit

mikael-lovqvists-claude-agent/claude-code-conduit

Fork 0

Commit Graph

Author	SHA1	Message	Date
mikael-lovqvists-claude-agent	b1ccbfef41	Implement email support with per-user permission model (closes #2 ) New modules: - server/mailer.mjs: nodemailer transport wrapper - server/mail_perms.mjs: runtime permission store, persisted to disk New actions: - send-email: checks (caller, to, topic) permission before sending - set-mail-permission: grant/revoke permissions, gated by canApprove - get-mail-permissions: list current permissions Handler signature extended to handler(params, ctx) where ctx carries caller, users, mail_perm_store and mailer_send. Existing handlers ignore ctx so the change is backwards-compatible. SMTP config lives in secrets.json under optional 'smtp' key. Mail permissions path via --mail-perms or CONDUIT_MAIL_PERMS. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-03-17 22:34:26 +00:00
mikael-lovqvists-claude-agent	81ad722e84	Add ccc-keygen for secrets file generation --create <names> generates secrets.json with random 32-byte hex secrets --filter <names> extracts a subset of users into filtered-secrets.json --input/--output override default file paths Removes hardcoded user/agent assumptions from secrets.example.json. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-03-07 20:59:25 +00:00
mikael-lovqvists-claude-agent	67c1c3f9a4	Add HMAC auth, user permissions, snake_case rename Each request is signed with HMAC-SHA256 over timestamp+body using a per-user secret loaded from a --secrets file (never env vars or git). Users have a canApprove list controlling who may approve queued actions. Queue entries track submitted_by for permission checks on approve/deny. Also renames all identifiers to snake_case throughout the codebase. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-03-07 20:18:41 +00:00

Author

SHA1

Message

Date

mikael-lovqvists-claude-agent

b1ccbfef41

Implement email support with per-user permission model (closes #2 )

New modules:
- server/mailer.mjs: nodemailer transport wrapper
- server/mail_perms.mjs: runtime permission store, persisted to disk

New actions:
- send-email: checks (caller, to, topic) permission before sending
- set-mail-permission: grant/revoke permissions, gated by canApprove
- get-mail-permissions: list current permissions

Handler signature extended to handler(params, ctx) where ctx carries
caller, users, mail_perm_store and mailer_send. Existing handlers
ignore ctx so the change is backwards-compatible.

SMTP config lives in secrets.json under optional 'smtp' key.
Mail permissions path via --mail-perms or CONDUIT_MAIL_PERMS.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-17 22:34:26 +00:00

mikael-lovqvists-claude-agent

81ad722e84

Add ccc-keygen for secrets file generation

--create <names>  generates secrets.json with random 32-byte hex secrets
--filter <names>  extracts a subset of users into filtered-secrets.json
--input/--output  override default file paths

Removes hardcoded user/agent assumptions from secrets.example.json.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-07 20:59:25 +00:00

mikael-lovqvists-claude-agent

67c1c3f9a4

Add HMAC auth, user permissions, snake_case rename

Each request is signed with HMAC-SHA256 over timestamp+body using a
per-user secret loaded from a --secrets file (never env vars or git).
Users have a canApprove list controlling who may approve queued actions.
Queue entries track submitted_by for permission checks on approve/deny.

Also renames all identifiers to snake_case throughout the codebase.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-07 20:18:41 +00:00

3 Commits