mikkeli/pirate-station
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
pirate-station/HANDOFF.md

299 lines
8.4 KiB
Markdown
Raw Permalink Normal View History

docs: create handoff document for Pi deployment
2026-02-03 18:34:18 +09:00
# Pirate Station - Development Handoff
**Date:** 2026-02-03
**Phase:** Phase 1 (Foundation) Complete
**Next:** Phase 2 (CLI Tool)
**Environment:** Moving from dev machine to Raspberry Pi
---
## Current Status
### ✓ Phase 1: Foundation Complete
All code and configurations are ready. Docker runtime verification deferred to Pi deployment due to corporate proxy blocking Docker Hub access on dev machine.
**Commits:**
- `2691ded` - Go project with HTTP server and health check
- `38edbf6` - Multi-stage Dockerfile for cross-platform builds
- `257edf5` - Plan 01-01 completion
- `6cbf414` - Docker Compose dev environment
- `c09f4d7` - Plan 01-02 completion
- `c8cd06b` - Phase 1 completion metadata
**Requirements Delivered:**
-**INFRA-01**: Docker container isolation design (runtime verification deferred)
-**INFRA-02**: Single binary Go backend (fully verified)
---
## What Was Built
### Go HTTP Server
- **Location:** `cmd/server/main.go`, `internal/health/handler.go`
- **Port:** 32768 (high port to avoid Pi service conflicts)
- **Endpoints:**
- `/` - Returns "Pirate Station API"
- `/health` - Returns healthy when `/data` mounted, unhealthy otherwise
- **Binary Size:** 4.4MB (amd64), 4.2MB (arm64) - stripped static binary
- **Dependencies:** Go stdlib only (no external packages)
### Docker Configuration
- **Dockerfile:** `docker/Dockerfile`
- Multi-stage build (golang:1.25-bookworm → debian:bookworm-slim)
- CGO_ENABLED=0 for static binary
- Non-root user (appuser, UID 10001)
- Volume mount at `/data`
- Multi-arch support via buildx (amd64 + arm64)
- **Compose:** `docker-compose.yml`
- Dev environment with hot reload
- Bind mount for live editing
- Named volume for persistent data
- **Hot Reload:** `.air.toml`
- Watches Go files for changes
- Rebuilds automatically to `tmp/server`
---
## Known Blockers
### Docker Hub Registry Access
**Impact:** Cannot build/test Docker images on dev machine
**Cause:** Corporate proxy blocks registry-1.docker.io
**Status:** Deferred to Pi deployment
**Resolution Options:**
1. **Build on Pi** (Recommended) - Pi network config may allow registry access
2. **Configure proxy** - Set `HTTP_PROXY`/`HTTPS_PROXY` in Docker daemon
3. **Use mirror registry** - Modify Dockerfile to use gcr.io or quay.io
4. **Manual base images** - Pre-pull images on different network
---
## First Run on Raspberry Pi
### Prerequisites
- Git configured on Pi
- Docker installed
- Go 1.22+ installed (for local builds)
- Gitea set up (for future image pushes)
### Steps
1. **Clone repository on Pi:**
```bash
git clone <gitea-url>/acty/pirate-station.git
cd pirate-station
```
2. **Verify Go build works:**
```bash
go build -o tmp/server ./cmd/server
./tmp/server
# In another terminal:
curl http://localhost:32768/
curl http://localhost:32768/health
```
3. **Build Docker image:**
```bash
docker build -f docker/Dockerfile -t pirate-station:latest .
```
If build succeeds, check image size:
```bash
docker images pirate-station:latest --format "{{.Size}}"
# Should be under 150MB
```
4. **Test container isolation:**
```bash
# Create test data volume
docker volume create pirate-data
# Run container
docker run -d --name pirate-test -p 32768:32768 -v pirate-data:/data pirate-station:latest
# Test endpoints
curl http://localhost:32768/
curl http://localhost:32768/health
# Verify health returns "healthy" (volume is mounted)
# Cleanup
docker stop pirate-test
docker rm pirate-test
```
5. **Test dev environment:**
```bash
docker compose up --build
# Server should start on port 32768
# Edit cmd/server/main.go and watch for auto-rebuild
```
6. **Multi-arch build (optional):**
```bash
docker buildx create --name pirate-builder --use
docker buildx build --platform linux/amd64,linux/arm64 \
-f docker/Dockerfile \
-t gitea.local/acty/pirate-station:latest \
--push .
```
---
## File Structure
```
pirate-station/
├── cmd/
│ └── server/
│ └── main.go # HTTP server entry point
├── internal/
│ └── health/
│ └── handler.go # Health check endpoint
├── docker/
│ └── Dockerfile # Multi-stage container build
├── .planning/ # GSD planning artifacts
│ ├── PROJECT.md # Project definition
│ ├── ROADMAP.md # 6-phase roadmap
│ ├── REQUIREMENTS.md # 21 v1 requirements
│ ├── STATE.md # Current progress
│ └── phases/
│ └── 01-foundation/
│ ├── 01-CONTEXT.md # Phase 1 decisions
│ ├── 01-RESEARCH.md # Go/Docker research
│ ├── 01-01-PLAN.md # Plan 1: Go + Dockerfile
│ ├── 01-01-SUMMARY.md # Plan 1 completion report
│ ├── 01-02-PLAN.md # Plan 2: Compose + verification
│ ├── 01-02-SUMMARY.md # Plan 2 completion report
│ └── 01-VERIFICATION.md # Phase verification report
├── docker-compose.yml # Dev environment
├── .air.toml # Hot reload config
├── .dockerignore # Build context exclusions
├── go.mod # Go module definition
└── go.sum # Dependency checksums
```
---
## Next Steps: Phase 2 - CLI Tool
**Goal:** Admin can manage user accounts via CLI
**Requirements:**
- CLI-01: Create user account
- CLI-02: Delete user account
- CLI-03: Change user password
- CLI-04: List all users
**Before planning Phase 2:**
Run `/gsd:discuss-phase 2` to gather context and make decisions about:
- User storage format (SQLite, JSON, etc.)
- Password hashing algorithm (bcrypt vs argon2)
- CLI tool structure (subcommands vs flags)
- Where user database lives (in /data volume)
**Or skip directly to planning:**
Run `/gsd:plan-phase 2` if you want to proceed without discussion.
---
## Key Decisions Made
| Decision | Rationale |
|----------|-----------|
| Go stdlib only | Minimize binary size, maintain simplicity |
| Port 32768 | High port avoids Pi service conflicts |
| Debian slim base | Better debugging vs Alpine, acceptable size |
| Health check verifies /data | Enables orchestration readiness probes |
| Static binary (CGO_ENABLED=0) | True portability across platforms |
| Non-root container user | Security best practice |
| Multi-stage Dockerfile | 95% smaller image vs single-stage |
| Docker Compose for dev | Bind mount + hot reload for fast iteration |
---
## Commands Reference
### Development
```bash
# Local Go build and run
go build -o tmp/server ./cmd/server
./tmp/server
# Dev environment with hot reload
docker compose up --build
# Test endpoints
curl http://localhost:32768/
curl http://localhost:32768/health
```
### Docker Production
```bash
# Build image
docker build -f docker/Dockerfile -t pirate-station:latest .
# Run container
docker run -d -p 32768:32768 -v pirate-data:/data pirate-station:latest
# Multi-arch build
docker buildx build --platform linux/amd64,linux/arm64 \
-f docker/Dockerfile -t pirate-station:multiarch .
```
### GSD Commands
```bash
# Resume project
/gsd:resume-work
# Check progress
/gsd:progress
# Plan next phase
/gsd:discuss-phase 2 # Gather context first
/gsd:plan-phase 2 # Create execution plan
# Execute phase
/gsd:execute-phase 2 # Run all plans in phase
```
---
## Verification Checklist for Pi
When you first run on Pi, verify these items to confirm Phase 1 is fully complete:
- [ ] Go binary compiles on Pi
- [ ] Server starts and responds on port 32768
- [ ] Health endpoint returns correct status
- [ ] Docker image builds successfully (no registry errors)
- [ ] Image size is under 150MB
- [ ] Container runs as non-root user (appuser)
- [ ] Container can only access /data volume
- [ ] Host filesystem is isolated (cannot read /tmp/host-secret.txt from container)
- [ ] Docker Compose dev environment starts
- [ ] Hot reload detects Go file changes and rebuilds
Once all items pass, Phase 1 verification is complete and Phase 2 can begin.
---
## Support
- **Planning docs:** `.planning/` directory
- **Verification report:** `.planning/phases/01-foundation/01-VERIFICATION.md`
- **Phase summaries:** `.planning/phases/01-foundation/*-SUMMARY.md`
- **GSD help:** `/gsd:help`
---
*Last updated: 2026-02-03*
*Next session: Raspberry Pi deployment + Phase 2 planning*
Reference in New Issue Copy Permalink