wayray

CloudNebulaProject/wayray

Fork 0

mirror of https://github.com/CloudNebulaProject/wayray.git synced 2026-04-10 13:10:41 +00:00

Commit graph

Author	SHA1	Message	Date
Till Wegmueller	643c4f042d	Rename binaries to illumos-style short names Follow illumos CLI naming conventions (zoneadm, svcadm, dladm): wayray-server → wrsrvd wayray-client → wrclient wayray-ctl → wradm wayray-greeter → wrlogin wayray-session-launcher → wrsessd wayray-gateway → wrgw wayray-wm-floating → wr-wm-floating wayray-wm-tiling → wr-wm-tiling Updated across all 23 documentation files, ADRs, book pages, roadmap, and CLAUDE.md. Added binary name table to CLAUDE.md.	2026-03-29 00:34:19 +01:00
Till Wegmueller	a04c04a22c	Add ADR-012: Cloud authentication via OAuth/OIDC greeter The greeter bridges cloud identity to local user context: - Device Authorization Grant (RFC 8628) as recommended flow for thin clients (QR code, no browser needed on server) - Authorization Code with PKCE as alternative - Claims-to-user mapping (IdP sub/email/groups -> local uid/gids) - Auto-provisioning on first login (useradd, ZFS home dataset) - Pluggable auth architecture (local, OIDC, smart card, Kerberos) - Ephemeral pre-auth session for greeter display - Session launcher interface unchanged regardless of auth method	2026-03-28 23:17:54 +01:00

Author

SHA1

Message

Date

Till Wegmueller

643c4f042d

Rename binaries to illumos-style short names

Follow illumos CLI naming conventions (zoneadm, svcadm, dladm):

  wayray-server           → wrsrvd
  wayray-client           → wrclient
  wayray-ctl              → wradm
  wayray-greeter          → wrlogin
  wayray-session-launcher → wrsessd
  wayray-gateway          → wrgw
  wayray-wm-floating      → wr-wm-floating
  wayray-wm-tiling        → wr-wm-tiling

Updated across all 23 documentation files, ADRs, book pages,
roadmap, and CLAUDE.md. Added binary name table to CLAUDE.md.

2026-03-29 00:34:19 +01:00

Till Wegmueller

a04c04a22c

Add ADR-012: Cloud authentication via OAuth/OIDC greeter

The greeter bridges cloud identity to local user context:
- Device Authorization Grant (RFC 8628) as recommended flow
  for thin clients (QR code, no browser needed on server)
- Authorization Code with PKCE as alternative
- Claims-to-user mapping (IdP sub/email/groups -> local uid/gids)
- Auto-provisioning on first login (useradd, ZFS home dataset)
- Pluggable auth architecture (local, OIDC, smart card, Kerberos)
- Ephemeral pre-auth session for greeter display
- Session launcher interface unchanged regardless of auth method

2026-03-28 23:17:54 +01:00

2 commits