From 7c7370860a34124323971950780157e8981db5af Mon Sep 17 00:00:00 2001 From: Giuliano Silvestro Date: Thu, 11 Jun 2026 13:40:27 +1000 Subject: [PATCH] =?UTF-8?q?refactor:=20rename=20service=20references=20arc?= =?UTF-8?q?adia-app=20=E2=86=92=20arcadia-core?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit The Phoenix auth/identity/tenancy backend repo is being renamed arcadia-app → arcadia-core (its primary OTP app is already arcadia_core). Updates prose, doc paths, and git.sky-ai.com repo URLs. Deliberately leaves the Rust crate arcadia-app-client and host arcadia-app.internal (handled separately), and the kept namespace (issuer/release "arcadia"). Co-Authored-By: Claude Opus 4.8 (1M context) --- config/config.exs | 4 ++-- config/dev.exs | 2 +- lib/arcadia_cloud/guardian.ex | 6 +++--- lib/arcadia_cloud_web/plugs/require_auth.ex | 2 +- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/config/config.exs b/config/config.exs index 072695a..086ac66 100644 --- a/config/config.exs +++ b/config/config.exs @@ -30,8 +30,8 @@ config :logger, :default_formatter, # Use Jason for JSON parsing in Phoenix config :phoenix, :json_library, Jason -# Guardian — JWTs are issued by arcadia-app. arcadia-cloud only verifies them. -# Issuer and secret_key MUST match arcadia-app's Arcadia.Guardian config. +# Guardian — JWTs are issued by arcadia-core. arcadia-cloud only verifies them. +# Issuer and secret_key MUST match arcadia-core's Arcadia.Guardian config. config :arcadia_cloud, ArcadiaCloud.Guardian, issuer: "arcadia", verify_issuer: true diff --git a/config/dev.exs b/config/dev.exs index a7ce5cd..9c858d7 100644 --- a/config/dev.exs +++ b/config/dev.exs @@ -22,7 +22,7 @@ config :arcadia_cloud, ArcadiaCloudWeb.Endpoint, secret_key_base: "FkyzbvuBWWUEnx/M5KDYyEQdPVbxAiFIkNFbSUK+/DCFvRM+W0NGCnE0bGW6NnCk", watchers: [] -# Guardian — must match arcadia-app's Arcadia.Guardian dev secret_key +# Guardian — must match arcadia-core's Arcadia.Guardian dev secret_key # (shared verbatim with arcadia-social and arcadia-voice). config :arcadia_cloud, ArcadiaCloud.Guardian, secret_key: "DuMkIRN3Qcxk8VqOu8nHj5i7a7a7YgBHF4oXqKwDI4A=" diff --git a/lib/arcadia_cloud/guardian.ex b/lib/arcadia_cloud/guardian.ex index f838693..8e8b7b8 100644 --- a/lib/arcadia_cloud/guardian.ex +++ b/lib/arcadia_cloud/guardian.ex @@ -2,11 +2,11 @@ defmodule ArcadiaCloud.Guardian do @moduledoc """ Verify-only Guardian implementation. - arcadia-cloud never issues tokens — that is arcadia-app's job. We only + arcadia-cloud never issues tokens — that is arcadia-core's job. We only decode and verify tokens minted by `Arcadia.Guardian`, then expose the claims as a lightweight identity struct. - Token contract (set by arcadia-app): + Token contract (set by arcadia-core): sub => ":" tenant_id => UUID string tenant_slug => string @@ -36,7 +36,7 @@ defmodule ArcadiaCloud.Guardian do @doc """ Dev/test helper: mint a JWT using the local secret. Production tokens - are minted by arcadia-app. + are minted by arcadia-core. """ def mint_dev_token(claims_overrides \\ %{}) do defaults = %{ diff --git a/lib/arcadia_cloud_web/plugs/require_auth.ex b/lib/arcadia_cloud_web/plugs/require_auth.ex index a4ed0fb..e2d3a5f 100644 --- a/lib/arcadia_cloud_web/plugs/require_auth.ex +++ b/lib/arcadia_cloud_web/plugs/require_auth.ex @@ -1,6 +1,6 @@ defmodule ArcadiaCloudWeb.Plugs.RequireAuth do @moduledoc """ - Validates a Bearer JWT issued by arcadia-app and assigns the resulting + Validates a Bearer JWT issued by arcadia-core and assigns the resulting identity + raw claims onto the conn. Halts with 401 on any failure. Downstream controllers read `conn.assigns.current_identity` and, if