mirror of
https://github.com/Memo-2023/mana-monorepo.git
synced 2026-05-14 19:01:08 +02:00
a1caeaa7f3
First concrete piece of M3 (docs/plans/mana-mcp-and-personas.md). The
tick loop itself and the Claude Agent SDK + MCP integration are M3.b;
the action/feedback persistence endpoints are M3.c. This commit just
stands up the service so the remaining pieces have a shell to land in.
Service shape (Bun/Hono on :3070)
- src/config.ts
Env-driven configuration: auth URL, MCP URL, service key for
action/feedback callbacks (M3.c), Anthropic API key, deterministic
PERSONA_SEED_SECRET (must match scripts/personas/password.ts so the
runner can log back in without any stored credentials), tick
interval and concurrency, RUNNER_PAUSED kill-switch. Production
start asserts all secrets are set and the dev fallback secret is
rotated.
- src/password.ts
Bit-for-bit identical HMAC-SHA256 password derivation to
scripts/personas/password.ts. Duplicated deliberately: the two
sides can't share code (one is a repo-root utility script, the
other is a workspace service) but must stay in sync — comment
at the top calls this out.
- src/clients/auth.ts
Two upstream calls the runner needs for one tick: POST /auth/login
and GET /api/auth/organization/list. loginAndResolvePersonalSpace()
wraps both and picks the persona's auto-created personal space as
the write target (throws if none exists — Spaces-Foundation should
always have seeded one on signup).
- src/index.ts
Hono app: /health, /metrics (stub), and a dev-only /diag/login
endpoint that takes a persona email, derives the password, logs
in, resolves the personal space, and returns {userId, spaceId} as
an end-to-end sanity check. Disabled in production.
No tick loop yet — RUNNER_PAUSED prints an info line on boot, but
nothing fires. The dispatcher + Claude Agent SDK + MCP client land in
M3.b; the internal POST callbacks into mana-auth for persona_actions /
persona_feedback land in M3.c.
Infra
- Port 3070 added to docs/PORT_SCHEMA.md.
- Service listed in root CLAUDE.md next to mana-mcp.
- services/mana-persona-runner/CLAUDE.md documents what's built today,
what lands in M3.b/c, and the local diag smoke recipe.
Boot smoke verified: /health returns ok + paused/interval/concurrency,
/diag/login without email returns 400.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
8 KiB
8 KiB
Port Schema
⚠️ PARTIALLY ASPIRATIONAL. The clean range layout below (3000–3009 core, 3010–3019 infra, 3020–3029 AI/ML, …) was drafted 2026-03-28 as a target state. Many services do match it; many don't. Authoritative per-service ports live in each
services/*/CLAUDE.mdalongside the source defaults inapp/main.py/config.ts/ etc.Real ports today (2026-04-08)
Windows GPU server (
192.168.178.11):
- mana-stt
3020(Scheduled TaskManaSTT, public:gpu-stt.mana.how)- mana-tts
3022(TaskManaTTS, public:gpu-tts.mana.how)- mana-image-gen
3023(TaskManaImageGen, public:gpu-img.mana.how)- mana-llm
3025(TaskManaLLM, public:gpu-llm.mana.how)- mana-video-gen
3026(TaskManaVideoGen, public:gpu-video.mana.how)- Ollama
11434(public:gpu-ollama.mana.how)Mac Mini (production):
- mana-auth
3001- mana-media
3015- mana-search
3021(overlaps with the planned range slot, not a host collision since search runs on Mac Mini and stt runs on the GPU box)- mana-crawler
3023(same — Mac Mini, no host collision with image-gen on GPU)- mana-notify
3040- mana-mail
3042- mana-sync
3050- mana-credits
3061, mana-user3062, mana-subscriptions3063, mana-analytics3064, mana-events3065, mana-research3068(new 2026-04-17, Bun/Hono, public:research.mana.how), mana-mcp3069(new 2026-04-22, Bun/Hono, MCP gateway over Streamable HTTP — seeservices/mana-mcp/CLAUDE.md), mana-persona-runner3070(new 2026-04-22, Bun/Hono, drives M2 personas through Claude + MCP on a tick loop — seeservices/mana-persona-runner/CLAUDE.md)Not deployed:
mana-voice-bot(default port3024, no scheduled task, no cloudflared route, no launchd plist).No production port collisions exist today. The two latent collisions that PORT_SCHEMA.md previously warned about (image-gen ↔ video-gen on 3026, voice-bot ↔ sync on 3050) were resolved on 2026-04-08 by:
- Moving the only
mana-image-gento be the Windows-only diffusers variant on port 3023 (the Mac flux2.c variant was deleted)- Moving
mana-voice-bot's source default from 3050 to 3024Some services still don't match the planned range layout below (mana-credits is at 3061 not 3002, mana-user 3062 not 3004, etc). Either execute the move and update this doc, or accept reality and rewrite the planned tables to reflect what's actually running.
Originally drafted: 2026-03-28 Reality reconciled: 2026-04-08
Principles
- Each range has a clear purpose (100 ports per range)
- Backend 30xx and Frontend 50xx use matching last digits where possible
- No conflicts - every port assigned exactly once
- Room for growth in each range
3000-3009: Core Platform Services
| Port | Service | Runtime | Description |
|---|---|---|---|
| 3001 | mana-auth | Hono/Bun | Authentication, JWT, sessions |
| 3002 | mana-credits | Go | Credit system, billing |
| 3003 | mana-subscriptions | Go | Stripe subscriptions |
| 3004 | mana-user | Go | User profiles, settings |
| 3005 | mana-analytics | Go | Usage analytics, DuckDB |
| 3006-3009 | (reserved) |
3010-3019: Core Infrastructure Services
| Port | Service | Runtime | Description |
|---|---|---|---|
| 3010 | mana-sync | Go | Local-first data sync (WebSocket + HTTP) |
| 3011 | mana-media | NestJS | Content-addressable storage, thumbnails |
| 3012 | mana-search | Go | Web search via SearXNG |
| 3013 | mana-notify | Go | Notifications (email, push, webhook) |
| 3014 | mana-crawler | Go | Web crawler, content extraction |
| 3015 | mana-landing-builder | NestJS | Org landing page builder |
| 3016 | mana-api-gateway | Go | API keys, rate limiting, usage tracking |
| 3018 | mana-geocoding | Hono/Bun | Self-hosted geocoding (Pelias proxy) |
| 3017, 3019 | (reserved) |
3020-3029: AI/ML Services
| Port | Service | Runtime | Description |
|---|---|---|---|
| 3020 | mana-llm | Python | LLM abstraction (Ollama, OpenRouter) |
| 3021 | mana-stt | Python | Speech-to-Text (Whisper) |
| 3022 | mana-tts | Python | Text-to-Speech (Kokoro, Piper) |
| 3023 | mana-image-gen | Python | Image generation (FLUX) |
| 3024 | mana-voice-bot | Python | Voice-to-voice assistant |
| 3025-3029 | (reserved) |
3030-3059: App Compute Servers
Only apps that need server-side compute (AI, external APIs, file operations). Pure CRUD apps use mana-sync directly.
| Port | Service | Runtime | Description |
|---|---|---|---|
| 3030 | chat-server | Hono/Bun | AI chat, streaming, spaces |
| 3031 | todo-server | Hono/Bun | RRULE expansion, reminders |
| 3032 | calendar-server | Hono/Bun | CalDAV sync, Google Calendar, notifications |
| 3033 | contacts-server | Hono/Bun | Google Contacts, vCard import/export |
| 3034 | storage-server | Hono/Bun | S3 file ops, versioning, shares |
| 3035 | picture-server | Hono/Bun | Replicate AI, generation orchestration |
| 3036 | cards-server | Hono/Bun | AI card generation |
| 3037 | mukke-server | Hono/Bun | Audio processing, BPM, ID3 tags |
| 3038 | food-server | Hono/Bun | Gemini meal analysis |
| 3039 | plants-server | Hono/Bun | Gemini plant analysis |
| 3040 | presi-server | Hono/Bun | Share links |
| 3042 | mana-mail | Hono/Bun | JMAP proxy to Stalwart, account provisioning |
| 3043-3059 | (reserved) |
4000-4099: Misc
| Port | Service | Description |
|---|---|---|
| 4400 | landings | Nginx static landing pages |
5000-5059: Web Frontends (SvelteKit)
| Port | Service | Corresponds to Server |
|---|---|---|
| 5000 | mana-web | Hub/Dashboard |
| 5010 | chat-web | 3030 chat-server |
| 5011 | todo-web | 3031 todo-server |
| 5012 | calendar-web | 3032 calendar-server |
| 5013 | clock-web | (local-first only) |
| 5014 | contacts-web | 3033 contacts-server |
| 5015 | storage-web | 3034 storage-server |
| 5016 | presi-web | 3040 presi-server |
| 5017 | food-web | 3038 food-server |
| 5018 | quotes-web | (local-first only) |
| 5019 | photos-web | (local-first + mana-media) |
| 5020 | skilltree-web | (local-first only) |
| 5021 | picture-web | 3035 picture-server |
| 5022 | citycorners-web | (local-first only) |
| 5023 | cards-web | 3036 cards-server |
| 5024 | mukke-web | 3037 mukke-server |
| 5025 | inventory-web | (local-first only) |
| 5026 | context-web | (local-first only) |
| 5027 | questions-web | (local-first only) |
| 5028 | plants-web | 3039 plants-server |
| 5029 | moodlit-web | (future) |
| 5030-5049 | (reserved) |
5050-5059: Playground/Dev Tools
| Port | Service | Description |
|---|---|---|
| 5050 | llm-playground | LLM testing UI |
5100-5199: Games
| Port | Service | Description |
|---|---|---|
| 5100 | whopixels | Pixel art game |
8000-8099: Monitoring Dashboards
| Port | Service | Description |
|---|---|---|
| 8000 | grafana | Metrics dashboards |
| 8010 | umami | Web analytics |
| 8020 | glitchtip | Error tracking |
9000-9199: Infrastructure & Exporters
| Port | Service | Description |
|---|---|---|
| 5432 | postgres | PostgreSQL |
| 6379 | redis | Redis cache |
| 9000 | minio (S3 API) | Object storage |
| 9001 | minio (Console) | MinIO admin UI |
| 9090 | victoriametrics | Metrics storage |
| 9091 | pushgateway | Deploy metrics |
| 9093 | alertmanager | Alert routing |
| 9100 | node-exporter | Host metrics |
| 9110 | cadvisor | Container metrics |
| 9121 | redis-exporter | Redis metrics |
| 9187 | postgres-exporter | Postgres metrics |
SearXNG (Internal Only)
| Port | Service | Description |
|---|---|---|
| 8080 | searxng | Meta-search (not exposed to host) |
Adding a New Service
- Pick the next free port in the appropriate range
- Update this document
- Update
docker-compose.macmini.yml - Update
scripts/generate-env.mjsif the service has a dev env - Update
docker/prometheus/prometheus.ymlif the service exposes metrics