Echo
75ec2b8e3c
- Phase 1: CLI args (--enroll flag), enroll module skeleton, config support - Phase 2: Registration request, polling loop (24h timeout), main.rs integration - Phase 3: PKI extraction, atomic cert writing, whitelist auto-append, mTLS transition - Phase 4: E2E test suite, README/DEPLOYMENT docs, CI pipeline - Phase 5: SPEC.md, API_DOCUMENTATION.md, CHANGELOG.md, ROADMAP.md sync Security review: APPROVED (0 critical, 0 high findings) Cross-distro compatible: Debian/Ubuntu, RHEL/CentOS/Fedora, Alpine, Arch Linux
28 lines
891 B
Rust
28 lines
891 B
Rust
//! Linux Patch API - Secure Remote Package Management
|
|
//!
|
|
//! A Rust-based API service for secure remote management of patching processes
|
|
//! and software add/remove operations on Linux systems.
|
|
//!
|
|
//! # Architecture
|
|
//!
|
|
//! - **API Layer**: HTTP/HTTPS endpoints with mTLS authentication
|
|
//! - **Auth Layer**: Certificate validation and IP whitelist enforcement
|
|
//! - **Job Manager**: Async job queue with WebSocket status streaming
|
|
//! - **Package Backend**: Pluggable package manager adapters
|
|
//! - **Audit Logger**: systemd journal + file fallback
|
|
//! - **Config Manager**: YAML config with auto-reload
|
|
|
|
pub mod api;
|
|
pub mod auth;
|
|
pub mod config;
|
|
pub mod enroll;
|
|
pub mod jobs;
|
|
pub mod logging;
|
|
pub mod packages;
|
|
pub mod systemd;
|
|
|
|
// Re-export commonly used types from submodules
|
|
pub use config::loader::AppConfig;
|
|
pub use jobs::manager::JobManager;
|
|
pub use logging::init::init_logging;
|