systemprompt-cloud 0.0.1

SystemPrompt Cloud infrastructure - API client, credentials, OAuth
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145

# systemprompt-cloud

Cloud infrastructure services for SystemPrompt including API client, credentials, OAuth, and tenant management.

## Structure

```
cloud/
├── Cargo.toml
├── status.md
└── src/
    ├── lib.rs                      # Crate root, public exports, Environment, OAuthProvider enums
    ├── constants.rs                # OAuth, checkout, credential, path constants
    ├── context.rs                  # CloudContext, ResolvedTenant
    ├── credentials.rs              # CloudCredentials management
    ├── credentials_bootstrap.rs    # CredentialsBootstrap global initialization
    ├── error.rs                    # CloudError, CloudResult
    ├── tenants.rs                  # TenantStore, StoredTenant, TenantType
    ├── api_client/
    │   ├── mod.rs                  # API client exports
    │   ├── client.rs               # CloudApiClient core HTTP methods
    │   ├── tenant_api.rs           # Tenant-specific API methods
    │   ├── streams.rs              # SSE streaming for provisioning/checkout events
    │   └── types.rs                # Re-exports from systemprompt-models
    ├── auth/
    │   ├── mod.rs                  # Auth exports
    │   └── token.rs                # JWT token expiry decoding
    ├── checkout/
    │   ├── mod.rs                  # Checkout exports
    │   ├── client.rs               # Checkout callback flow handling
    │   └── provisioning.rs         # Wait for provisioning (SSE + polling)
    ├── cli_session/
    │   ├── mod.rs                  # Session exports, SessionKey enum
    │   ├── session.rs              # CliSession, CliSessionBuilder
    │   └── store.rs                # SessionStore (multi-session management)
    ├── oauth/
    │   ├── mod.rs                  # OAuth exports
    │   └── client.rs               # OAuth flow with local callback server
    └── paths/
        ├── mod.rs                  # Path resolution exports
        ├── cloud.rs                # CloudPath, CloudPaths (credential/tenant paths)
        ├── context.rs              # UnifiedContext (combined path resolution)
        ├── discovery.rs            # DiscoveredProject (project root discovery)
        └── project.rs              # ProjectPath, ProfilePath, ProjectContext
```

## Module Overview

| Module | Purpose |
|--------|---------|
| `api_client` | HTTP client for SystemPrompt Cloud API with SSE streaming support |
| `auth` | JWT token handling and expiry checking |
| `checkout` | Paddle checkout callback flow and provisioning wait logic |
| `cli_session` | CLI session management with multi-tenant support |
| `context` | Cloud context resolution combining credentials and profile |
| `credentials` | Credential storage, validation, and file operations |
| `credentials_bootstrap` | Global singleton for credential initialization |
| `error` | Domain-specific error types with recovery hints |
| `oauth` | OAuth authentication flow with local callback server |
| `paths` | Path resolution for credentials, tenants, profiles, and projects |
| `tenants` | Local tenant cache storage and management |

## Public API

### Types

| Type | Source | Description |
|------|--------|-------------|
| `CloudApiClient` | `api_client/client.rs` | HTTP client for SystemPrompt Cloud API |
| `CloudCredentials` | `credentials.rs` | API token and authentication data |
| `CredentialsBootstrap` | `credentials_bootstrap.rs` | Global credential initialization |
| `CloudContext` | `context.rs` | Resolved cloud context with tenant info |
| `ResolvedTenant` | `context.rs` | Resolved tenant information |
| `CliSession` | `cli_session.rs` | CLI session with auth tokens |
| `SessionStore` | `cli_session.rs` | Multi-session storage |
| `SessionKey` | `cli_session.rs` | Session identifier (Local or Tenant) |
| `TenantStore` | `tenants.rs` | Local tenant cache storage |
| `StoredTenant` | `tenants.rs` | Cached tenant data |
| `TenantType` | `tenants.rs` | Local or Cloud tenant type |
| `CloudError` | `error.rs` | Cloud operation errors |
| `Environment` | `lib.rs` | Production or Sandbox environment |
| `OAuthProvider` | `lib.rs` | GitHub or Google OAuth |
| `CloudPath` | `paths/cloud.rs` | User-scoped paths (credentials, tenants) |
| `CloudPaths` | `paths/cloud.rs` | Resolved cloud paths |
| `ProjectPath` | `paths/project.rs` | Project-scoped paths |
| `ProfilePath` | `paths/project.rs` | Profile-relative paths |
| `ProjectContext` | `paths/project.rs` | Project path resolution context |
| `DiscoveredProject` | `paths/discovery.rs` | Discovered project root |
| `UnifiedContext` | `paths/context.rs` | Combined path resolution |

### API Client Types

| Type | Source | Description |
|------|--------|-------------|
| `UserMeResponse` | `api_client/types.rs` | Current user information |
| `Tenant` | `api_client/types.rs` | Tenant metadata |
| `TenantInfo` | `api_client/types.rs` | Detailed tenant info |
| `TenantStatus` | `api_client/types.rs` | Tenant provisioning status |
| `TenantSecrets` | `api_client/types.rs` | Tenant secrets (JWT, database URL) |
| `Plan` | `api_client/types.rs` | Subscription plan |
| `CheckoutResponse` | `api_client/types.rs` | Paddle checkout result |
| `CheckoutEvent` | `api_client/types.rs` | SSE checkout event |
| `ProvisioningEvent` | `api_client/types.rs` | SSE provisioning event |
| `DeployResponse` | `api_client/types.rs` | Deployment result |
| `RegistryToken` | `api_client/types.rs` | Container registry credentials |

### Functions

| Function | Source | Description |
|----------|--------|-------------|
| `run_oauth_flow` | `oauth/client.rs` | Execute OAuth authentication flow |
| `run_checkout_callback_flow` | `checkout/client.rs` | Handle Paddle checkout callback |
| `wait_for_provisioning` | `checkout/provisioning.rs` | Wait for tenant provisioning |
| `resolve_path` | `paths/mod.rs` | Resolve path relative to base directory |
| `expand_home` | `paths/mod.rs` | Expand ~ in paths |
| `get_cloud_paths` | `paths/cloud.rs` | Get cloud paths from profile |

### Templates

| Type | Source | Description |
|------|--------|-------------|
| `OAuthTemplates` | `oauth/client.rs` | HTML templates for OAuth callbacks |
| `CheckoutTemplates` | `checkout/client.rs` | HTML templates for checkout callbacks |

## Dependencies

- `systemprompt-models` - Profile and module models
- `systemprompt-identifiers` - Typed identifiers
- `systemprompt-logging` - CLI service output
- `reqwest` - HTTP client
- `reqwest-eventsource` - SSE client
- `axum` - Callback server
- `serde` / `serde_json` - Serialization
- `chrono` - Timestamps
- `anyhow` / `thiserror` - Error handling
- `tokio` - Async runtime
- `tracing` - Logging
- `clap` - CLI argument parsing
- `validator` - Struct validation