clavitor

Commit Graph

Author	SHA1	Message	Date
James	659caa20b8	clavis-vault: api/lib/cmd updates + drop _old scaffolding Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 12:10:59 -04:00
James	5cf089a58e	Multi-project update: import system, edition system, web UI, CLI, website, POP sync Vault: importer refactor with mapping-driven parsers, auth.js login flow, edition system enhancements (commercial features), agent UI fixes, mTLS improvements, schema and handler updates. CLI: cvt protocol updates, keystore changes, JS bridge additions. Website (clavitor.ai): expanded main.go with new routes/templates, admin panel with Paddle checkout and credentials API. POP sync: mTLS CA support, command examples. Marketing: pricing architecture doc. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-05 06:40:40 -04:00
James	230acd394e	feat: vault v2 rewrite — CVT tokens, scoped access, agents-as-entries, 14 importers Complete vault rewrite with correct foundation: - CVT encrypted envelope tokens (type 0x00 wire, type 0x01 client credential) - Agents and scopes stored as L1-encrypted entries (no separate tables) - Scope-based access control with AgentCanAccess() set intersection - Owner-only admin enforcement (agents cannot manage agents/scopes) - 14 password manager importers (Proton, Bitwarden, 1Password, LastPass, Dashlane, KeePass, KeePassXC, NordPass, Keeper, RoboForm, Enpass, Safari/iCloud, Chrome, Firefox) - FIELD_SPEC single source of truth for field kind and tier - L2/L3 client-side encryption on import (PRF required) - Domain classification service on clavitor.ai/classify - Scope auto-assignment during import (13 categories) - Light theme default (Figtree font, matching clavitor.ai branding) - Unified page shell across all screens (topbar on every page) - Batch import with progress indicator - ZIP extraction for Proton Pass exports - Proton dedup by title+user+url - 55 tests passing (26 API + 29 lib) - Key leak detection tests (L1/L2/L3 never in responses) - CLI updated for CVT token format - Old code archived in _old/ Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 13:36:04 -04:00

Author

SHA1

Message

Date

James

659caa20b8

clavis-vault: api/lib/cmd updates + drop _old scaffolding

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-08 12:10:59 -04:00

James

5cf089a58e

Multi-project update: import system, edition system, web UI, CLI, website, POP sync

Vault: importer refactor with mapping-driven parsers, auth.js login flow,
edition system enhancements (commercial features), agent UI fixes,
mTLS improvements, schema and handler updates.

CLI: cvt protocol updates, keystore changes, JS bridge additions.

Website (clavitor.ai): expanded main.go with new routes/templates,
admin panel with Paddle checkout and credentials API.

POP sync: mTLS CA support, command examples.

Marketing: pricing architecture doc.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-05 06:40:40 -04:00

James

230acd394e

feat: vault v2 rewrite — CVT tokens, scoped access, agents-as-entries, 14 importers

Complete vault rewrite with correct foundation:

- CVT encrypted envelope tokens (type 0x00 wire, type 0x01 client credential)
- Agents and scopes stored as L1-encrypted entries (no separate tables)
- Scope-based access control with AgentCanAccess() set intersection
- Owner-only admin enforcement (agents cannot manage agents/scopes)
- 14 password manager importers (Proton, Bitwarden, 1Password, LastPass,
  Dashlane, KeePass, KeePassXC, NordPass, Keeper, RoboForm, Enpass,
  Safari/iCloud, Chrome, Firefox)
- FIELD_SPEC single source of truth for field kind and tier
- L2/L3 client-side encryption on import (PRF required)
- Domain classification service on clavitor.ai/classify
- Scope auto-assignment during import (13 categories)
- Light theme default (Figtree font, matching clavitor.ai branding)
- Unified page shell across all screens (topbar on every page)
- Batch import with progress indicator
- ZIP extraction for Proton Pass exports
- Proton dedup by title+user+url
- 55 tests passing (26 API + 29 lib)
- Key leak detection tests (L1/L2/L3 never in responses)
- CLI updated for CVT token format
- Old code archived in _old/

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-31 13:36:04 -04:00

3 Commits