core#242 PROD follow-up: tenant EC2 user-data must stage /etc/molecule-bootstrap/personas #128

New Issue

Open

opened 2026-05-08 16:53:24 +00:00 by claude-ceo-assistant · 0 comments

claude-ceo-assistant commented 2026-05-08 16:53:24 +00:00

Owner

Copy Link

Sub-issue of core#242 (CP provisioner persona injection)

The LOCAL surface shipped — docker-compose.yml bind-mounts ${HOME}/.molecule-ai/personas into the platform container at /etc/molecule-bootstrap/personas so org_import.go::loadPersonaEnvFile finds files locally.

The PROD surface remains: tenant EC2s don't have /etc/molecule-bootstrap/personas/ populated, so loadPersonaEnvFile silently no-ops on every workspace import. Per saved memory feedback_unified_credentials_file, the canonical pattern post-2026-05-06 is AWS Secrets Manager-fetched-at-boot rather than scp-from-operator. So:

Proposed approach

1. Mirror persona env files into AWS Secrets Manager. One secret per persona (or one consolidated secret for all 28). Sync from operator-host /etc/molecule-bootstrap/personas/ whenever the rotation cron fires.
2. Extend CP user-data (ec2.go provisioner) to fetch + stage at first boot. Read the secret(s) via the EC2 instance profile; write to /etc/molecule-bootstrap/personas/<role>/env on the EC2 host filesystem; the existing platform-service docker-run already mounts /etc into the container so the platform sees them.
3. Re-fetch on rotation. When persona tokens rotate (monthly cron), tenant EC2s need fresh values. Either: (a) trigger a per-tenant CP redeploy (heavy), or (b) add a per-tenant agent on the EC2 that polls Secrets Manager and overwrites the local files on change.

Option 3a is simpler and matches the existing CP redeploy pattern. Operator-host rotation cron also enqueues a CP-redeploy-fan-out job that re-pushes user-data to each tenant.

Acceptance criteria

• AWS Secrets Manager has persona env content (one secret per persona or consolidated; design call)
• ec2.go user-data fetches + stages persona files at first boot using instance-profile auth
• Provisioning a fresh tenant + importing a workspace with role: dev-lead results in workspaces_secrets rows with GITEA_USER=dev-lead, etc.
• Rotation cron (existing /opt/molecule/rotate-personas.py) extended to mirror to Secrets Manager + queue per-tenant redeploy

Out of scope

• Per-EC2 polling daemon (option 3b above) — defer until rotation+redeploy cadence proves insufficient
• Multi-region replication of persona secrets — current scale doesn't need it

Refs

• core#242 (parent; LOCAL surface merged in PR — see commit history)
• saved memory feedback_unified_credentials_file (AWS Secrets Manager is SSOT pattern post-suspension)
• saved memory feedback_local_must_mimic_production (in-container path matches prod, established by LOCAL surface fix)
• /opt/molecule/rotate-personas.py on operator host (where the rotation cron runs; needs the extension)

## Sub-issue of core#242 (CP provisioner persona injection) The LOCAL surface shipped — docker-compose.yml bind-mounts `${HOME}/.molecule-ai/personas` into the platform container at `/etc/molecule-bootstrap/personas` so `org_import.go::loadPersonaEnvFile` finds files locally. The PROD surface remains: tenant EC2s don't have `/etc/molecule-bootstrap/personas/` populated, so `loadPersonaEnvFile` silently no-ops on every workspace import. Per saved memory `feedback_unified_credentials_file`, the canonical pattern post-2026-05-06 is AWS Secrets Manager-fetched-at-boot rather than scp-from-operator. So: ## Proposed approach 1. **Mirror persona env files into AWS Secrets Manager.** One secret per persona (or one consolidated secret for all 28). Sync from operator-host `/etc/molecule-bootstrap/personas/` whenever the rotation cron fires. 2. **Extend CP user-data (`ec2.go` provisioner) to fetch + stage at first boot.** Read the secret(s) via the EC2 instance profile; write to `/etc/molecule-bootstrap/personas/<role>/env` on the EC2 host filesystem; the existing platform-service docker-run already mounts `/etc` into the container so the platform sees them. 3. **Re-fetch on rotation.** When persona tokens rotate (monthly cron), tenant EC2s need fresh values. Either: (a) trigger a per-tenant CP redeploy (heavy), or (b) add a per-tenant agent on the EC2 that polls Secrets Manager and overwrites the local files on change. Option 3a is simpler and matches the existing CP redeploy pattern. Operator-host rotation cron also enqueues a CP-redeploy-fan-out job that re-pushes user-data to each tenant. ## Acceptance criteria - AWS Secrets Manager has persona env content (one secret per persona or consolidated; design call) - `ec2.go` user-data fetches + stages persona files at first boot using instance-profile auth - Provisioning a fresh tenant + importing a workspace with `role: dev-lead` results in `workspaces_secrets` rows with `GITEA_USER=dev-lead`, etc. - Rotation cron (existing `/opt/molecule/rotate-personas.py`) extended to mirror to Secrets Manager + queue per-tenant redeploy ## Out of scope - Per-EC2 polling daemon (option 3b above) — defer until rotation+redeploy cadence proves insufficient - Multi-region replication of persona secrets — current scale doesn't need it ## Refs - core#242 (parent; LOCAL surface merged in PR — see commit history) - saved memory `feedback_unified_credentials_file` (AWS Secrets Manager is SSOT pattern post-suspension) - saved memory `feedback_local_must_mimic_production` (in-container path matches prod, established by LOCAL surface fix) - `/opt/molecule/rotate-personas.py` on operator host (where the rotation cron runs; needs the extension)

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

fix/175-env-matched-pair-guard

fix/vitest-pool-worker-startup-timeouts

refactor/sop-tier-check-extract-script

fix/sop-tier-check-pr-target-security

ci/sop-tier-check-deploy

fix/issue53-admin-token-pair-guard

fix/org-import-started-event-name

refactor/delete-uses-cascade-helper

fix/org-import-reconcile-and-audit

fix/preserve-model-secret-on-restart

feat/persona-bind-mount-local-dev

feat/canary-tier-filter

feat/plugin-version-subscription

feat/plugin-hot-reload-classifier

feat/plugin-atomic-install

feat/air-hot-reload-dev

feat/persona-env-injection

fix/external-resolver-hardening

fix/issue75-class-D-gh-api-to-gitea-rest

fix/cherry-3-files-vitest-postgres-e2eapi

fix/promote-vitest-postgres-fixes

fix/saas-plugin-install-eic

fix/issue-94-e2e-api-parallel-safe-class-b

migrate/issue-71-vanity-imports

fix/handlers-postgres-port-collision-class-b

fix/issue-96-canvas-vitest-cold-start-timeout

fix/hermes-agent-doc-gitea-migration

fix/196-retarget-main-to-staging-gitea-rest

fix/gitea-ci-flakes-issue-88

fix/pin-upload-artifact-v3-gitea

fix/issue-72-auto-sync-token-canary-v2

fix/issue75-class-F-gh-run-list-to-statuses

fix/issue75-class-A-gh-pr-to-gitea-rest

feat/issue-63-local-build-from-gitea-v2

fix/195-auto-promote-staging-gitea-rest

fix/144-branch-protection-check-name-parity-audit

fix/harness-replays-pre-clone-manifest

chore/trigger-auto-sync-verification

fix/codeql-stub-on-gitea-156

chore/issue173-retrigger-after-ecr-repo-create

fix/issue173-inline-aws-ecr-login

fix/issue173-shell-docker-push

chore/retrigger-harness-replays-post-class-g

fix/issue173-buildx-driver-and-cache

fix/post-suspension-clone-manifest

fix/issue173-followup-platform-dockerfile

fix/post-suspension-github-urls

fix/170-goroutine-bleed-test-isolation

fix/issue173-publish-workspace-server-image

fix/issue36-a2a-proxy-preflight

fix/codeql-continue-on-error-156

feat/demo-mock-3-bigorg-mock-runtime

feat/demo-mock-1-purchase-success-modal

fix/publish-path-filter-add-scripts

fix/clone-manifest-gitea

chore/touch-publish-workflow-to-trigger

chore/retrigger-publish-post-aws-secrets

chore/cherry-pick-pr23-into-main

chore/backsync-main-into-staging-task-166

fix/auto-sync-use-devops-token

chore/retrigger-staging-on-fixed-runner-image

chore/drop-github-app-auth-and-ecr-swap

docs/readme-comprehensive-refresh-2026-05-06

feat/rfc-2945-pr-c-2-canvas-chat-history

fix/issue10-runtime-aware-plugin-install

fix/s8-bind-loopback-dev

fix/14-cascade-gitea-dispatch

docs/molecule-core-bulk-sed

chore/pin-artifact-actions-v3

fix/lowercase-org-slug

fix/script-ghcr-and-lint-paths

docs/workspace-runtime-readme-source-edit

feat/eic-tunnel-pool-core-11

chore/rfc-2945-pr-c-3-delete-historyhydration

fix/2872-sqlmock-regex-tightening

fix/cp-orphan-sweeper-2989

feat/registry-prefix-env-driven-issue-6

docs/readme-refresh-2026-05-06

runtime-v1.0.0

runtime-v0.0.35

runtime-v0.0.34

runtime-v0.0.33

runtime-v0.0.32

runtime-v0.0.31

runtime-v0.0.30

runtime-v0.0.29

runtime-v0.0.28

runtime-v0.0.27

runtime-v0.0.26

runtime-v0.0.25

runtime-v0.0.24

runtime-v0.0.23

runtime-v0.0.22

runtime-v0.0.21

runtime-v0.0.20

runtime-v0.0.19

runtime-v0.0.18

runtime-v0.0.17

runtime-v0.0.16

runtime-v0.0.15

runtime-v0.0.14

runtime-v0.0.13

runtime-v0.0.12

runtime-v0.0.11

runtime-v0.0.10

runtime-v0.0.9

runtime-v0.0.8

runtime-v0.0.7

runtime-v0.0.6

runtime-v0.0.5

runtime-v0.0.4

runtime-v0.0.3

runtime-v0.0.2

runtime-v0.0.1

ci-trigger-1776771586

ci-retry-1776771601

ci-retrigger-1776771591

Labels

Clear labels   

tier:high

High risk per dev-sop §SOP-6 — ceo only, 24h cooldown

  

tier:low

Low risk per dev-sop §SOP-6 — engineers/managers/ceo can approve

  

tier:medium

Medium risk per dev-sop §SOP-6 — managers/ceo can approve

No Label

tier:high

tier:low

tier:medium

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: molecule-ai/molecule-core#128

No description provided.