mirror of
https://github.com/blackboxprogramming/BlackRoad-Operating-System.git
synced 2026-03-17 06:57:17 -05:00
e84407660d
Implements complete Phase 2 scaffold across 6 core modules: ## New Modules ### 1. Backend API Enhancements - Add system router with /version, /config/public, /os/state endpoints - Register system router in main.py - Add comprehensive tests for system endpoints ### 2. Core OS Runtime (core_os/) - Implement UserSession, Window, OSState models - Add state management functions (open_window, close_window, etc.) - Create Backend API adapter for communication - Include full test suite for models and state ### 3. Operator Engine (operator_engine/) - Build job registry with example jobs - Implement simple scheduler with lifecycle management - Optional HTTP server on port 8001 - Complete tests for jobs and scheduler ### 4. Web Client Enhancements - Add CoreOSClient JavaScript class - Integrate system API endpoints - Event-driven architecture for state updates - Zero dependencies, vanilla JavaScript ### 5. Prism Console (prism-console/) - Modern dark-themed admin UI - Multi-tab navigation (Overview, Jobs, Agents, Logs, System) - Real-time metrics dashboard - Backend API integration with auto-refresh ### 6. Documentation (codex-docs/) - Complete MkDocs-based documentation - Architecture guides and component docs - Infrastructure setup guides - API reference documentation ## CI/CD - Add core-os-tests.yml workflow - Add operator-tests.yml workflow - Add docs-build.yml workflow ## Documentation - Create BLACKROAD_OS_REPO_MAP.md cross-reference - Add README for each module - Comprehensive integration documentation ## Summary - 37 new files created - ~3,500 lines of new code - 5 test suites with 15+ tests - 3 new CI workflows - 10+ documentation pages All modules are minimal working skeletons ready for integration. Designed to be extracted into separate repos if needed. Phase 2 scaffold complete and ready for review.
7.7 KiB
7.7 KiB
Infrastructure Overview
BlackRoad OS infrastructure spans DNS, CDN, compute, and data layers.
Infrastructure Stack
┌─────────────────────────────────────────┐
│ Cloudflare (DNS, CDN, SSL, DDoS) │
│ ↓ │
│ ├── blackroad.systems │
│ ├── os.blackroad.systems │
│ ├── api.blackroad.systems │
│ ├── prism.blackroad.systems │
│ └── 10+ other domains │
└─────────────────────────────────────────┘
↓
┌─────────────────────────────────────────┐
│ Railway (Production Backend) │
│ ↓ │
│ ├── FastAPI Application │
│ ├── PostgreSQL Database │
│ └── Redis Cache │
└─────────────────────────────────────────┘
↓
┌─────────────────────────────────────────┐
│ GitHub (Code, CI/CD) │
│ ↓ │
│ ├── Source code repository │
│ ├── GitHub Actions workflows │
│ └── GitHub Pages (static frontend) │
└─────────────────────────────────────────┘
Cloudflare Configuration
DNS Management
All domains point to Cloudflare nameservers:
ns1.cloudflare.comns2.cloudflare.com
CNAME Records
os.blackroad.systems → blackroad-os-production.up.railway.app
api.blackroad.systems → blackroad-os-production.up.railway.app
prism.blackroad.systems → blackroad-os-production.up.railway.app
SSL/TLS
- Mode: Full (strict)
- Certificate: Cloudflare Universal SSL
- Min TLS: 1.2
- HSTS: Enabled
Features Enabled
- ✅ DDoS protection
- ✅ WAF (Web Application Firewall)
- ✅ Caching (static assets)
- ✅ Auto-minify (JS, CSS, HTML)
- ✅ Brotli compression
- ✅ HTTP/2 and HTTP/3
Railway Deployment
Services
- Web Service: FastAPI backend
- PostgreSQL: Managed database
- Redis: Managed cache
Configuration
Railway.toml:
[build]
builder = "DOCKERFILE"
dockerfilePath = "backend/Dockerfile"
[deploy]
startCommand = "cd backend && uvicorn app.main:app --host 0.0.0.0 --port $PORT"
healthcheck.path = "/health"
Environment Variables
Required vars (set in Railway dashboard):
DATABASE_URL- PostgreSQL connection string (auto-injected)REDIS_URL- Redis connection string (auto-injected)SECRET_KEY- JWT signing keyENVIRONMENT- "production"ALLOWED_ORIGINS- Comma-separated list of allowed CORS origins
Deployment Process
- Push to
mainbranch - GitHub Action triggers
- Railway builds Docker image
- Runs Alembic migrations
- Starts FastAPI server
- Health check validation
- Traffic cutover
Monitoring
- Health Check:
/healthendpoint every 30s - Logs: Via Railway dashboard or CLI
- Metrics: Built-in Railway metrics
- Alerts: Slack/email notifications (configured in Railway)
GitHub Configuration
Repository Structure
- Main Repo:
blackboxprogramming/BlackRoad-Operating-System - Branches:
main,claude/*, feature branches - Protected:
mainbranch (require PR reviews)
CI/CD Workflows
Located in .github/workflows/:
- ci.yml - HTML/JS validation
- backend-tests.yml - Backend tests
- deploy.yml - GitHub Pages deploy
- railway-deploy.yml - Railway backend deploy
- railway-automation.yml - Env validation
Secrets
Required GitHub secrets:
RAILWAY_TOKEN- Railway deployment tokenCLOUDFLARE_API_TOKEN- Cloudflare API access (future)
GitHub Pages
- Branch: Deployed from
gh-pagesbranch - Content: Static frontend from
backend/static/ - URL:
https://blackboxprogramming.github.io/BlackRoad-Operating-System/
Domain Architecture
Primary Domains
| Domain | Purpose | Points To |
|---|---|---|
blackroad.systems |
Corporate site | Railway backend |
os.blackroad.systems |
Main OS interface | Railway backend |
api.blackroad.systems |
API gateway | Railway backend |
prism.blackroad.systems |
Admin console | Railway backend |
blackroadai.com |
AI products | Railway backend (future) |
lucidia.earth |
AI narrative | Railway backend (future) |
Secondary Domains
blackroad.me- Personal identityblackroad.network- Developer networkblackroad.pro- Professional servicesblackroad.cloud- Cloud services
Data Layer
PostgreSQL (Railway)
- Version: 14+
- Size: Shared CPU, 512MB RAM (starter)
- Backup: Daily automatic backups
- Migrations: Alembic-managed
- Access: Via DATABASE_URL env var
Redis (Railway)
- Version: 7+
- Size: Shared, 128MB (starter)
- Usage: Session storage, caching
- Persistence: AOF enabled
- Access: Via REDIS_URL env var
Future: RoadChain
- Platform: DigitalOcean Droplets
- Nodes: 3-5 distributed nodes
- Consensus: Proof of Authority (PoA)
- Storage: Tamper-evident ledger
Scaling Strategy
Phase 1 (Current)
- Single Railway instance
- Managed PostgreSQL
- Managed Redis
- Cloudflare CDN
Phase 2 (3-6 months)
- Horizontal scaling (Railway)
- Database read replicas
- Redis clustering
- Cloudflare Workers for edge functions
Phase 3 (12+ months)
- Kubernetes (GKE/EKS)
- Multi-region deployment
- Distributed RoadChain
- CDN for video streaming
Cost Breakdown
Current (Estimated)
- Railway: ~$20/mo (Hobby plan)
- Cloudflare: $0 (Free plan)
- GitHub: $0 (Public repo)
- Domains: ~$100/year (10 domains @ $10 each)
Total: ~$20/mo + $100/year = ~$28/mo average
Phase 2 (Projected)
- Railway: ~$50/mo (Pro plan)
- Cloudflare: $20/mo (Pro plan)
- DigitalOcean: $30/mo (3 droplets)
- GitHub: $0
Total: ~$100/mo
Security
SSL/TLS
- Cloudflare Universal SSL
- Auto-renewing certificates
- HSTS enabled
DDoS Protection
- Cloudflare DDoS mitigation
- Rate limiting (future)
- IP blocking (manual)
Secrets Management
- Railway environment variables (encrypted)
- GitHub Secrets (encrypted)
- Never commit
.envfiles
Access Control
- Railway: Team-based access
- Cloudflare: Role-based access
- GitHub: Protected branches
Monitoring & Observability
Current
- Railway health checks
- Basic logging
- Error tracking (Sentry integration)
Future
- Prometheus metrics
- Grafana dashboards
- ELK stack for logs
- Uptime monitoring (UptimeRobot)
- Performance monitoring (New Relic)
Disaster Recovery
Backups
- Database: Daily automatic (Railway)
- Code: Git version control
- Secrets: Secure password manager
Recovery Plan
- Restore from Railway DB backup
- Redeploy from Git (
mainbranch) - Update DNS if needed (Cloudflare)
- Verify health checks
RTO: ~30 minutes RPO: 24 hours (daily backups)