fieldwitness

Author	SHA1	Message	Date
Aaron D. Lee	17147856d1	Fix all 98 ruff lint errors across codebase Some checks failed CI / lint (push) Successful in 46s Details CI / typecheck (push) Failing after 22s Details CI / test (push) Failing after 20s Details - Remove unused imports (app.py, stego_routes.py, killswitch.py, etc.) - Sort import blocks (I001) - Add missing os import in stego_routes.py (F821) - Rename shadowed Click commands to avoid F811 (status→chain_status, show→chain_show) - Rename uppercase locals R→earth_r, _HAS_QRCODE_READ→_has_qrcode_read (N806) - Suppress false-positive F821 for get_username (closure scope) - Use datetime.UTC alias (UP017) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:30:01 -04:00
Aaron D. Lee	5c74a5f4aa	Fix black formatting and target Python 3.12 in CI Some checks failed CI / lint (push) Failing after 36s Details CI / typecheck (push) Failing after 37s Details CI / test (push) Failing after 24s Details Reformat 8 files and add --target-version py312 to avoid 3.13 AST parsing issues with Python 3.12 container. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:26:32 -04:00
Aaron D. Lee	6d6a626b6b	Fix CI: use public git.golfcards.club URL for checkout Some checks failed CI / lint (push) Failing after 23s Details CI / typecheck (push) Failing after 19s Details CI / test (push) Failing after 22s Details Container can't resolve internal gitea:3000 hostname. Clone from public HTTPS URL instead. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:25:16 -04:00
Aaron D. Lee	5dccc44c72	Fix CI: replace actions/checkout with git clone for node-less containers Some checks failed CI / lint (push) Failing after 11s Details CI / typecheck (push) Failing after 12s Details CI / test (push) Failing after 12s Details python:3.12-slim lacks node, so actions/checkout@v4 fails. Use manual git clone with Gitea environment variables instead. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:23:41 -04:00
Aaron D. Lee	4aaf61e472	Fix CI for Gitea Actions runner: use Python container images Some checks failed CI / lint (push) Failing after 6s Details CI / typecheck (push) Failing after 2s Details CI / test (push) Failing after 2s Details Replace actions/setup-python@v5 (skipped by act runner) with python:3.12-slim container images so Python is available directly. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:22:16 -04:00
Aaron D. Lee	f5f1c45890	Add Gitea Actions CI workflow (lint, typecheck, test matrix) Some checks failed CI / lint (push) Failing after 2m12s Details CI / typecheck (push) Failing after 38s Details CI / test (3.11) (push) Failing after 43s Details CI / test (3.12) (push) Failing after 32s Details CI / test (3.13) (push) Failing after 36s Details Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:16:11 -04:00
Aaron D. Lee	51c9b0a99a	Fix 14 bugs and add features from power-user security audit Critical fixes: - Fix admin_delete_user missing current_user_id argument (TypeError on every delete) - Fix self-signed cert OOM: bytes(2130706433) → IPv4Address("127.0.0.1") - Add @login_required to attestation routes (attest, log); verify stays public - Add auth guards to fieldkit (@admin_required on killswitch) and keys blueprints - Fix cleanup_temp_files NameError in generate() route Security hardening: - Unify temp storage to ~/.soosef/temp/ so killswitch purge covers web uploads - Replace Path.unlink() with secure deletion (shred fallback) in temp_storage - Add structured audit log (audit.jsonl) for admin, key, and killswitch actions New features: - Dead man's switch background enforcement thread in serve + check-deadman CLI - Key rotation: soosef keys rotate-identity/rotate-channel with archiving - Batch attestation: soosef attest batch <dir> with progress and error handling - Geofence CLI: set/check/clear commands with config persistence - USB CLI: snapshot/check commands against device whitelist - Verification receipt download (/verify/receipt JSON endpoint + UI button) - IdentityInfo.created_at populated from sidecar meta.json (mtime fallback) Data layer: - ChainStore.get() now O(1) via byte-offset index built during state rebuild - Add federation module (chain, models, serialization, entropy) Includes 45+ new tests across chain, deadman, key rotation, killswitch, and serialization modules. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 17:06:33 -04:00
Aaron D. Lee	fb2e036e66	Fix admin route name mismatch in user_new and user_created templates Templates referenced 'admin_user_new' (stegasoo convention) but the soosef route is named 'admin_new_user'. Caused 500 error when clicking "Add User" from admin panel. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 22:53:11 -04:00
Aaron D. Lee	5b1ac0b741	Fix Docker healthcheck hanging gunicorn workers The healthcheck tried HTTPS first (curl -fsk https://...) when HTTPS was disabled. The TLS ClientHello to a plain HTTP listener hung the sync worker indefinitely. With 2 workers, both got stuck, blocking all real HTTP requests. Fix: try HTTP first, add --max-time 3 to release quickly on failure. Compose override uses HTTP-only to match HTTPS_ENABLED=false default. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 19:46:04 -04:00
Aaron D. Lee	4f604ba7f8	Add Docker container setup (port 35811) - Dockerfile: builds from Sources/ context, installs stegasoo + verisoo + soosef - docker-compose.yml: single service with persistent volume at /root/.soosef - entrypoint.sh: auto-init on first run, gunicorn with 2 workers Build: cd soosef/docker && sudo docker compose build Run: sudo docker compose up -d Port 35811, HTTPS disabled by default (reverse proxy expected) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 18:07:16 -04:00
Aaron D. Lee	067c4073ee	Add Verisoo attest/verify web MVP — full attestation lifecycle Attest page (/attest): - Image upload with optional caption and location - EXIF auto-extraction toggle - Creates Ed25519-signed attestation record - Stores in verisoo append-only binary log + LMDB index - Displays: record ID, attestor fingerprint, timestamp, image hashes Verify page (/verify): - Image upload for verification against local attestation log - SHA-256 exact matching + perceptual hash matching (pHash, dHash) - Shows match type (exact/perceptual), hash distances, attestor info - Color-coded distance badges (green=0, info<5, warning<10, danger>=10) Attestation log (/attest/log): - Lists recent attestations with short ID, attestor, timestamp, SHA-256 - Shows total record count Verified: full lifecycle works — attest image → verify same image → exact match found Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 17:02:49 -04:00
Aaron D. Lee	317ef0f2ae	Port encode/decode/tools/about routes from stegasoo (2,083 lines) New file stego_routes.py: - register_stego_routes() mounts all encode/decode routes on the Flask app - Async encode with ThreadPoolExecutor + progress polling - Subprocess isolation for crash-safe stegasoo operations - Image + audio encode/decode with full validation - Encode result display with download - Tools API routes (capacity, EXIF, rotate, compress, convert) - About page with crypto documentation Real templates (replacing stubs): - encode.html (889 lines): full form with carrier upload, passphrase, PIN, RSA key, embed mode selection, async progress bar - decode.html (681 lines): decode form with credential inputs - encode_result.html (242 lines): result display with download - about.html (602 lines): security documentation All routes verified working with auth flow. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 16:52:18 -04:00
Aaron D. Lee	10838ce828	Replace stub templates with real stegasoo UI for generate, tools, admin Generate page: - Full form with passphrase word count slider, PIN/RSA toggles - Credential display with copy buttons, QR code, entropy breakdown - Channel key generation accordion - Added QR code routes (generate_qr, generate_qr_download) - Added RSA key download route (download_key) - Fixed route name: encode_page → encode Tools page: - Image capacity checker, EXIF viewer/editor, rotation, compression - Format conversion, image comparison - (API routes for tools pending — UI renders but actions need backend) Admin users page: - User table with role badges, creation dates - Add/delete/reset password actions - Fixed route names to match soosef conventions - Added user_count and current_user to template context Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 16:42:42 -04:00
Aaron D. Lee	a23a034838	Wire up auth, stego routes, and full web UI with login flow Auth system: - Copy auth.py from stegasoo, adapt DB path to ~/.soosef/auth/soosef.db - Add setup/login/logout/recover/account routes - Add admin user management routes (users, create, delete, reset) - Full RBAC: admin_required and login_required decorators working Stego routes (mounted directly in app.py): - Generate credentials with QR code support - Encode/decode/tools placeholder pages (full route migration is Phase 1b) - Channel status API, capacity comparison API, download API Support modules (copied verbatim from stegasoo): - subprocess_stego.py: crash-safe subprocess isolation - stego_worker.py: worker script for subprocess - temp_storage.py: file-based temp storage with auto-expiry - ssl_utils.py: self-signed cert generation Templates and JS: - All stegasoo templates copied to stego/ subdirectory - Auth templates (login, setup, account, recover) at root - Admin templates (users, settings) - JS files: soosef.js (renamed from stegasoo.js), auth.js, generate.js Verified: full login flow works (setup → login → authenticated routes) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 15:53:58 -04:00
Aaron D. Lee	2f93dfce98	Add vendor assets, fix CLI imports, make web UI bootable - Copy Bootstrap 5, Bootstrap Icons, and html5-qrcode from stegasoo - Fix stegasoo CLI import (cli group, not main wrapper) - Add .gitignore and README.md - Verified: soosef init, soosef serve, all routes, key export/import all work Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 14:48:18 -04:00
Aaron D. Lee	b8d4eb5933	Add core modules, web frontend, CLI, keystore, and fieldkit Core: - paths.py: centralized ~/.soosef/ path constants - config.py: JSON config loader with dataclass defaults - exceptions.py: SoosefError hierarchy - cli.py: unified Click CLI wrapping stegasoo + verisoo + native commands Keystore: - manager.py: unified key management (Ed25519 identity + channel keys) - models.py: IdentityInfo, KeystoreStatus dataclasses - export.py: encrypted key bundle export/import for USB transfer Fieldkit: - killswitch.py: ordered emergency data destruction (keys first) - deadman.py: dead man's switch with check-in timer - tamper.py: SHA-256 file integrity baseline + checking - usb_monitor.py: pyudev USB whitelist enforcement - geofence.py: haversine-based GPS boundary checking Web frontend (Flask app factory + blueprints): - app.py: create_app() factory with context processor - blueprints: stego, attest, fieldkit, keys, admin - templates: base.html (dark theme, unified nav), dashboard, all section pages - static: CSS, favicon Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 14:30:13 -04:00
Aaron D. Lee	06485879d2	Initial repo skeleton with pyproject.toml and project guide Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 14:21:30 -04:00

17 Commits