alkdev/alknet
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
19b3d3a078afbc1cee842f3e195b9ea09fcbdf94
alknet/tasks/architecture/adr-027-crate-decomposition.md
glm-5.1 19b3d3a078 docs: write Phase 0 architecture foundation — ADRs 026-034, spec docs, and task updates 
Phase 0a — ADRs (9 new):
- ADR-026: Transport/interface separation (three-layer model)
- ADR-027: Crate decomposition (core, secret, storage, flowgraph, napi, CLI)
- ADR-028: Auth as irpc service (AuthProtocol behind feature flag)
- ADR-029: Identity as core type (Identity + IdentityProvider in alknet-core)
- ADR-030: Static/dynamic config split (ArcSwap, ConfigReloadHandle)
- ADR-031: Forwarding policy (rule-based allow/deny, TransportKind-aware)
- ADR-032: Event boundary discipline (domain, irpc, call protocol boundaries)
- ADR-033: OperationEnv universal composition (three dispatch paths)
- ADR-034: Head/worker terminology (replace hub/spoke)

Phase 0b — New spec documents (7):
- identity.md, services.md, interface.md, configuration.md,
  storage.md, flowgraph.md, secret-service.md

Updated existing docs:
- auth.md: reference identity.md for canonical definitions, add AuthProtocol
- open-questions.md: resolve OQ-12, OQ-16, OQ-18, OQ-22, OQ-23-25
- README.md: add all new docs, ADRs 026-034

Marked 19 architecture tasks as completed.
2026-06-07 09:32:58 +00:00

3.6 KiB
Raw Blame History

id, name, status, depends_on, scope, risk, impact, level
id name status depends_on scope risk impact level
architecture/adr-027-crate-decomposition Write ADR-027 — Crate decomposition completed
architecture/adr-029-identity-core-type
moderate medium project implementation

Description

Write ADR-027 defining the crate decomposition for the alknet project: what crates exist, what each contains, and crucially what the dependency graph looks like (which must be acyclic).

Crate structure:

  • alknet-core: transport, SSH, call protocol, config, auth types, identity, OperationSpec, Interface trait. Depends on: russh, tokio, irpc (feature-gated), serde. Does NOT depend on: alknet-secret, alknet-storage, alknet-flowgraph.
  • alknet-secret: BIP39, SLIP-0010 Ed25519 HD key derivation, AES-256-GCM, SecretProtocol irpc service. Depends on: bip39, ed25519-bip32 (or rust-bip32-ed25519), aes-gcm, sha2, irpc. Does NOT depend on: alknet-core, alknet-storage.
  • alknet-storage: SQLite-backed metagraph, identity tables, ACL graph, honker integration, StorageProtocol irpc service. Depends on: rusqlite, honker, petgraph, jsonschema, irpc. Does NOT depend on alknet-core (but implements alknet-core's IdentityProvider trait via the trait, not a crate dep). Does NOT depend on alknet-secret (but references EncryptedData type format).
  • alknet-flowgraph: FlowGraph<N,E> over petgraph, operation graph, call graph, type compatibility. Depends on: petgraph, serde, jsonschema. Does NOT depend on: alknet-core, alknet-storage, alknet-secret.
  • alknet-napi: Node.js native addon. Depends on: alknet-core.
  • alknet (CLI binary): Assembles everything. Depends on: alknet-core, alknet-secret (feature), alknet-storage (feature), alknet-flowgraph (feature), toml.

The narrow interface points: Identity type, IdentityProvider trait, and OperationSpec are in alknet-core. External crates implement core traits or serialize to formats core understands.

This ADR must also address the irpc feature flag question (OQ: resolved — irpc is behind a feature flag in alknet-core, independent in other crates) and the storage/secret irpc dependency question (resolved — each crate depends on irpc independently).

Acceptance Criteria

  • docs/architecture/decisions/027-crate-decomposition.md exists
  • ADR follows established format
  • Context explains why decomposition is needed: core shouldn't depend on heavy services; different deployment topologies need different subsets; circular dependencies prevent clean builds
  • Decision states: the six crates, their contents, and their dependencies
  • Includes the dependency graph ASCII art from integration-plan.md
  • States the narrow interface points: Identity, IdentityProvider, OperationSpec
  • States that irpc is a feature flag in alknet-core and an independent dep elsewhere
  • States that alknet-storage implements IdentityProvider via the trait (not a crate dependency on alknet-core)
  • States that alknet-storage references alknet-secret's EncryptedData wire format (type-level compatibility, not crate dep)
  • Consequences: core is lean; services are pluggable; no circular deps; deployment topology determines which crates to include
  • References: integration-plan.md dependency graph, ADR-029

References

  • docs/research/integration-plan.md — Phase 2, dependency graph
  • docs/research/core.md — alknet-core contents
  • docs/research/services.md — service protocols
  • docs/research/storage.md — alknet-storage contents
  • docs/research/flow.md — alknet-flowgraph contents

Notes

To be filled by implementation agent

Summary

To be filled on completion

Reference in New Issue View Git Blame Copy Permalink