mirror of
https://github.com/ruvnet/RuView
synced 2026-06-28 13:23:19 +00:00
rUv
20ad75f30c
* feat(ADR-131): HOMECORE-UI operational dashboard + BFF gateway Complete two-tier Cognitum operator dashboard (ADR-131), served by homecore-server at /homecore, plus the single-origin BFF gateway that wires it to real backends. Front-end (zero-dep vanilla TS/JS + CSS, exact Cognitum design tokens): - All 10 panels (§4.1-4.10): dashboard, SEED fleet + detail, fleet map, entities (live WS subscribe_events, never polls), rooms, COGs, calibration wizard, events + automation builder, witness/audit, settings. - §6 UX invariants in code: first-class provenance, prominent stale/veto/ fragility, null(not-trained) vs withheld vs error, --mono everywhere, Hailo vs CPU COG distinction. - api.js calls the gateway routes in production; mock demoted to a dev-only ?demo=1 fixture (no mock in prod); typed error states. - Tests under plain node: import-graph, boot, render-smoke (22), interaction (3), prod-errors (13) — 5 files green; bundle ~137 KB (~37x smaller than HA), <2 ms/cold-render. BFF gateway (homecore-server/src/gateway.rs, compiled + tested on Rust 1.89): - /api/cal/* reverse-proxy to the calibration API (ADR-151). - GET /api/homecore/rooms with the RoomState adapter (breathing->breathing_bpm, heartbeat:null->heart_bpm:null, injected anomaly.threshold/room_id). - GET /api/homecore/cogs supervisor over /var/lib/cognitum/apps/. - GET /api/homecore/appliance from /proc + TCP service probes. - SEED-device/appliance routes return typed 503 upstream_unavailable. - cargo test -p homecore-server = 12/12; run live (curl-verified); fixed a real double-v1 proxy-URL bug found during live testing. Honest scope: W1/W2/W4/W6-appliance functional; W3/W5/W6-Hailo/federation return typed 503 (depend on services/hardware not in this repo). Co-Authored-By: claude-flow <ruv@ruv.net> * fix(homecore-ui): resolve code-review findings — SSRF guard, CORS/trace coverage, §6 honesty, crash guards Addresses the high-effort review of PR #1082: - SECURITY: cal_proxy rejects path-traversal/confused-deputy SSRF (`.`/`..` segments, backslash, %2e%2e/%2f, absolute) on raw+decoded forms → 400, before attaching the server-side calibration bearer. - CORRECTNESS: /api/homecore/* + /api/cal/* now covered by the shared CORS allowlist (build_cors_layer, exported from homecore-api) + TraceLayer — previously merged outside router()'s layers (no CORS, no tracing). - §6 HONESTY (no fabricated data): dashboard renders '—' for null metrics (not "null%"/"null°C"); cogs Hailo pill reflects the REAL appliance probe (not hardcoded "connected"); room anomaly threshold passed through / null, not a fabricated 0.5. - ROBUSTNESS: cogs asArray(hef) guards a non-array manifest field; calibration progress guards target<=0 (no NaN%/Infinity%); restart clears the poll timer. - CLEANUP: mock.js is now a cached DYNAMIC import (demo-only) — never bundled in production (§2.2). - New ui/tests/unit-fixes.mjs pins the above; ADR-131 + CHANGELOG updated. Co-Authored-By: claude-flow <ruv@ruv.net> --------- Co-authored-by: Nick Ruest <127058086+nicholas-ruest@users.noreply.github.com>
35 lines
1.7 KiB
CSS
35 lines
1.7 KiB
CSS
/*
|
|
* HOMECORE-UI design tokens — ADR-131 §3.1 / §3.2.
|
|
*
|
|
* These values are extracted verbatim from the production Cognitum
|
|
* platform (seed.cognitum.one/store + /status). DO NOT introduce new
|
|
* colours, typefaces, or border radii — ADR-131 §3.3 invariant. A user
|
|
* navigating from the Cog Store into HOMECORE must not notice a seam.
|
|
*/
|
|
:root {
|
|
/* §3.1 colour palette */
|
|
--bg: #0a0e1a; /* page background (very dark navy) */
|
|
--bg2: #111627; /* secondary background / nav strip */
|
|
--card: #171d30; /* card / panel surface */
|
|
--card-h: #1e2540; /* card hover state */
|
|
--border: #252d45; /* all border strokes (~0.67px, subtle) */
|
|
--t1: #e0e4f0; /* primary text (near-white) */
|
|
--t2: #8890a8; /* secondary / muted text */
|
|
--t3: #505872; /* tertiary / disabled text */
|
|
--cyan: #4ecdc4; /* primary action colour */
|
|
--cyan-d: rgba(78,205,196,0.15);
|
|
--green: #6bcb77; /* success / online / healthy */
|
|
--green-d: rgba(107,203,119,0.15);
|
|
--amber: #d4a574; /* warning / stale / degraded */
|
|
--amber-d: rgba(212,165,116,0.15);
|
|
--red: #e06060; /* error / offline / veto */
|
|
--red-d: rgba(224,96,96,0.15);
|
|
--purple: #a78bfa; /* informational / epoch / chain */
|
|
--purple-d: rgba(167,139,250,0.15);
|
|
--r: 10px; /* standard border radius */
|
|
|
|
/* §3.2 typography */
|
|
--font: 'Segoe UI', system-ui, -apple-system, sans-serif;
|
|
--mono: 'Cascadia Code', 'Fira Code', Consolas, monospace;
|
|
}
|