feat: config surface, NCL contracts, override-layer mutation, on+re update
Config surface — per-project config introspection, coherence verification, and
audited mutation without destroying NCL structure (ADR-008):
- crates/ontoref-daemon/src/config.rs — typed DaemonNclConfig (parse-at-boundary
pattern); all section structs derive ConfigFields + config_section(id, ncl_file)
emitting inventory::submit!(ConfigFieldsEntry{...}) at link time
- crates/ontoref-derive/src/lib.rs — #[derive(ConfigFields)] proc-macro; serde
rename support; serde_rename_of() helper extracted to fix excessive_nesting
- crates/ontoref-daemon/src/main.rs — 3-tuple bootstrap block (nickel_import_path,
loaded_ncl_config: Option<DaemonNclConfig>, stdin_raw); apply_ui_config takes
&UiConfig; NATS call site typed; resolve_asset_dir cfg(feature = "ui")
- crates/ontoref-daemon/src/api.rs — config GET/PUT endpoints, quickref, coherence,
cross-project comparison; index_section_fields() extracted (excessive_nesting)
- crates/ontoref-daemon/src/config_coherence.rs — multi-consumer coherence;
merge_meta_into_section() extracted; and() replaces unnecessary and_then
NCL contracts for ontoref's own config:
- .ontoref/contracts.ncl — LogConfig (LogLevel, LogRotation, PositiveInt) and
DaemonConfig (Port, optional overrides); std.contract.from_validator throughout
- .ontoref/config.ncl — log | C.LogConfig applied
- .ontology/manifest.ncl — contracts_path, log/daemon contract refs, daemon section
with DaemonRuntimeConfig consumer and 7 declared fields
Protocol:
- adrs/adr-008-ncl-first-config-validation-and-override-layer.ncl — NCL contracts
as single validation gate; Rust structs are contract-trusted; override-layer
mutation writes {section}.overrides.ncl + _overrides_meta, never touches source
on+re update:
- .ontology/core.ncl — config-surface node (28 practices); adr-lifecycle extended
to adr-007 + adr-008; 6 new edges (ManifestsIn daemon, DependsOn ontology-crate,
Complements api-catalog-surface/dag-formalized/self-describing/adopt-ontoref)
- .ontology/state.ncl — protocol-maturity blocker and self-description-coverage
catalyst updated for session 2026-03-26
- README.md / CHANGELOG.md updated
2026-03-26 20:20:22 +00:00
|
|
|
let C = import "contracts.ncl" in
|
|
|
|
|
|
2026-03-13 00:21:04 +00:00
|
|
|
{
|
|
|
|
|
nickel_import_paths = [".", ".ontology", "ontology/schemas", "adrs", "reflection/requirements", "reflection/schemas"],
|
|
|
|
|
|
|
|
|
|
ui = {
|
|
|
|
|
templates_dir = "crates/ontoref-daemon/templates",
|
|
|
|
|
public_dir = "crates/ontoref-daemon/public",
|
|
|
|
|
tls_cert = "",
|
|
|
|
|
tls_key = "",
|
|
|
|
|
logo = "ontoref-logo.svg",
|
|
|
|
|
},
|
|
|
|
|
|
feat: config surface, NCL contracts, override-layer mutation, on+re update
Config surface — per-project config introspection, coherence verification, and
audited mutation without destroying NCL structure (ADR-008):
- crates/ontoref-daemon/src/config.rs — typed DaemonNclConfig (parse-at-boundary
pattern); all section structs derive ConfigFields + config_section(id, ncl_file)
emitting inventory::submit!(ConfigFieldsEntry{...}) at link time
- crates/ontoref-derive/src/lib.rs — #[derive(ConfigFields)] proc-macro; serde
rename support; serde_rename_of() helper extracted to fix excessive_nesting
- crates/ontoref-daemon/src/main.rs — 3-tuple bootstrap block (nickel_import_path,
loaded_ncl_config: Option<DaemonNclConfig>, stdin_raw); apply_ui_config takes
&UiConfig; NATS call site typed; resolve_asset_dir cfg(feature = "ui")
- crates/ontoref-daemon/src/api.rs — config GET/PUT endpoints, quickref, coherence,
cross-project comparison; index_section_fields() extracted (excessive_nesting)
- crates/ontoref-daemon/src/config_coherence.rs — multi-consumer coherence;
merge_meta_into_section() extracted; and() replaces unnecessary and_then
NCL contracts for ontoref's own config:
- .ontoref/contracts.ncl — LogConfig (LogLevel, LogRotation, PositiveInt) and
DaemonConfig (Port, optional overrides); std.contract.from_validator throughout
- .ontoref/config.ncl — log | C.LogConfig applied
- .ontology/manifest.ncl — contracts_path, log/daemon contract refs, daemon section
with DaemonRuntimeConfig consumer and 7 declared fields
Protocol:
- adrs/adr-008-ncl-first-config-validation-and-override-layer.ncl — NCL contracts
as single validation gate; Rust structs are contract-trusted; override-layer
mutation writes {section}.overrides.ncl + _overrides_meta, never touches source
on+re update:
- .ontology/core.ncl — config-surface node (28 practices); adr-lifecycle extended
to adr-007 + adr-008; 6 new edges (ManifestsIn daemon, DependsOn ontology-crate,
Complements api-catalog-surface/dag-formalized/self-describing/adopt-ontoref)
- .ontology/state.ncl — protocol-maturity blocker and self-description-coverage
catalyst updated for session 2026-03-26
- README.md / CHANGELOG.md updated
2026-03-26 20:20:22 +00:00
|
|
|
log | C.LogConfig = {
|
2026-03-13 00:21:04 +00:00
|
|
|
level = "info",
|
feat: unified auth model, project onboarding, install pipeline, config management
The full scope across this batch: POST /sessions key→token exchange, SessionStore dual-index with revoke_by_id, CLI Bearer injection (ONTOREF_TOKEN), ontoref setup
--gen-keys, install scripts, daemon config form roundtrip, ADR-004/005, on+re self-description update (fully-self-described), and landing page refresh.
2026-03-13 20:56:31 +00:00
|
|
|
path = "logs",
|
2026-03-13 00:21:04 +00:00
|
|
|
rotation = "daily",
|
|
|
|
|
compress = false,
|
feat: unified auth model, project onboarding, install pipeline, config management
The full scope across this batch: POST /sessions key→token exchange, SessionStore dual-index with revoke_by_id, CLI Bearer injection (ONTOREF_TOKEN), ontoref setup
--gen-keys, install scripts, daemon config form roundtrip, ADR-004/005, on+re self-description update (fully-self-described), and landing page refresh.
2026-03-13 20:56:31 +00:00
|
|
|
archive = "logs-archive",
|
2026-03-13 00:21:04 +00:00
|
|
|
max_files = 7,
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
mode_run = {
|
|
|
|
|
rules = [
|
|
|
|
|
{ when = { mode_id = "validate-ontology" }, allow = true, reason = "validation always allowed" },
|
|
|
|
|
{ when = { actor = "agent" }, allow = true, reason = "agent actor always allowed" },
|
|
|
|
|
{ when = { actor = "ci" }, allow = true, reason = "ci actor always allowed" },
|
|
|
|
|
],
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
nats_events = {
|
|
|
|
|
enabled = false,
|
|
|
|
|
url = "nats://localhost:4222",
|
|
|
|
|
emit = [],
|
|
|
|
|
subscribe = [],
|
|
|
|
|
handlers_dir = "reflection/handlers",
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
actor_init = [
|
|
|
|
|
{ actor = "agent", mode = "describe capabilities", auto_run = true },
|
|
|
|
|
{ actor = "developer", mode = "", auto_run = false },
|
|
|
|
|
{ actor = "ci", mode = "", auto_run = false },
|
|
|
|
|
],
|
|
|
|
|
|
|
|
|
|
quick_actions = [
|
|
|
|
|
{
|
|
|
|
|
id = "gen-docs",
|
|
|
|
|
label = "Generate documentation",
|
|
|
|
|
icon = "book-open",
|
|
|
|
|
category = "docs",
|
|
|
|
|
mode = "generate-mdbook",
|
|
|
|
|
actors = ["developer", "agent"],
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
id = "sync-onto",
|
|
|
|
|
label = "Sync ontology",
|
|
|
|
|
icon = "refresh",
|
|
|
|
|
category = "sync",
|
|
|
|
|
mode = "sync-ontology",
|
|
|
|
|
actors = ["developer", "ci", "agent"],
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
id = "coder-workflow",
|
|
|
|
|
label = "Coder workflow",
|
|
|
|
|
icon = "code",
|
|
|
|
|
category = "process",
|
|
|
|
|
mode = "coder-workflow",
|
|
|
|
|
actors = ["developer", "agent"],
|
|
|
|
|
},
|
|
|
|
|
],
|
2026-03-16 01:48:17 +00:00
|
|
|
|
|
|
|
|
card = import "../card.ncl",
|
2026-03-13 00:21:04 +00:00
|
|
|
}
|