open-edge-platform · ANUSHABHASKAR · Mar 27, 2026 · Mar 27, 2026 · Mar 27, 2026 · Mar 27, 2026
diff --git a/kvm-poc/README.md b/kvm-poc/README.md
@@ -0,0 +1,161 @@
+# KVM PoC — Intel AMT Remote Desktop Viewer
+
+A proof-of-concept browser-based KVM (Keyboard, Video, Mouse) viewer for Intel AMT
+devices, using a Go WebSocket relay and an Angular frontend.
+
+| Directory | Language | Role |
+|---|---|---|
+| `server/` | Go | Control-plane REST + data-plane WebSocket relay |
+| `kvm-angular-app/` | Angular 17 | Browser UI — consent flow, connection form, KVM canvas |
+
+---
+
+## Prerequisites
+
+| Tool | Version |
+|---|---|
+| Go | 1.21+ |
+| Node.js | 18+ |
+| npm | 9+ |
+
+Runtime access needed:
+- **MPS host** — Management Presence Server hostname (e.g. `mps.example.com`)
+- **Device GUID** — UUID of the target AMT device
+- **JWT token** — bearer token issued by the orchestration stack for MPS API access
+
+---
+
+## Quick Start
+
+**Terminal 1 — Go relay server**
+```bash
+cd server
+go build -o kvm_server kvm_server.go
+./kvm_server
+# Listens on http://localhost:8080
+```
+
+**Terminal 2 — Angular viewer**
+```bash
+cd kvm-angular-app
+npm install
+npm start
+# Served on http://localhost:4200
+# /api and /ws are proxied to localhost:8080 via proxy.conf.json
+```
+
+Open **http://localhost:4200** in Chrome or Edge.
+
+---
+
+## UI Flow and Connection Steps
+
+### Step 1 — Enter connection details
+
+Open **http://localhost:4200** and fill in the three required fields:
+
+| Field | Description |
+|---|---|
+| **MPS Host** | Hostname of the Management Presence Server |
+| **Device GUID** | UUID of the target AMT device |
+| **JWT Token** | Bearer token for MPS REST API authorization |
+
+---
+
+### Step 2 — Request user consent (Control Plane)
+
+AMT requires explicit consent from the device user before a KVM session can open.
+
+1. Click **Request Consent Code**.
+2. The browser sends `GET /api/consent/{deviceGuid}` with the JWT token to the Go server.
+3. The Go server forwards the request to the MPS REST API: `GET /api/v1/amt/kvm/{guid}`.
+4. MPS instructs the AMT device to display a **6-digit code** on its physical screen.
+5. The Go server returns 200 and the browser shows an input field for the code.
+
+---
+
+### Step 3 — Submit the consent code (Control Plane)
+
+1. The device user reads the 6-digit code from the AMT device screen and tells the operator.
+2. Enter the 6-digit code in the browser and click **Submit Code**.
+3. The browser sends `POST /api/consent/{deviceGuid}` with `{ consentCode: "NNNNNN" }` and the JWT token.
+4. The Go server forwards to MPS REST API: `POST /api/v1/amt/kvm/{guid}`.
+5. MPS validates the code and returns 200 — consent is approved.
+6. The **Connect KVM** button becomes active.
+
+---
+
+### Step 4 — Connect KVM session (Control Plane)
+
+1. Click **Connect KVM**.
+2. The browser sends `POST /api/connect` to the Go server with the payload:
+   ```json
+   {
+     "mpsHost":    "<mps-hostname>",
+     "deviceGuid": "<device-uuid>",
+     "port":       16994,
+     "mode":       "kvm",
+     "jwtToken":   "<jwt>"
+   }
+   ```
+3. The Go server uses the JWT to fetch an AMT redirect token from MPS REST.
+4. The Go server opens a WebSocket to MPS: `wss://<mpsHost>/relay/webrelay.ashx?...`
+5. The Go server completes the AMT Redirect protocol handshake over that WebSocket:
+   - Sends `RedirectStart`
+   - Performs Digest authentication
+   - Sends `ChannelOpen` to activate the KVM channel on the AMT device
+6. The Go server returns `200 OK` to the browser — the KVM channel is now open.
+
+---
+
+### Step 5 — Live screen and input (Data Plane)
+
+1. On receiving 200, the browser opens a WebSocket: `ws://localhost:8080/ws`.
+2. The Go server connects both ends together — browser WebSocket ↔ MPS WebSocket — and relays bytes in both directions.
+
+**Screen data (AMT → Browser):**
+- AMT sends RFB `FramebufferUpdate` messages containing 64×64 pixel tiles (Raw encoding, RGB565).
+- Go server relays the frames → browser receives binary WebSocket messages.
+- The Angular viewer decodes the tiles and draws them on an HTML5 canvas.
+
+**Input events (Browser → AMT):**
+- Mouse move/click on the canvas → Angular sends RFB `PointerEvent` as binary WebSocket frame.
+- Keypress on the canvas → Angular sends RFB `KeyEvent` as binary WebSocket frame.
+- Go server relays both to AMT device via MPS, which controls the remote desktop.
+
+---
+
+## Project Structure
+
+```
+kvm-poc/
+├── README.md
+├── server/
+│   ├── kvm_server.go     ← Go: REST /api/connect + /api/consent proxy + WebSocket relay
+│   └── go.mod
+└── kvm-angular-app/
+    ├── proxy.conf.json   ← Dev proxy: /api/* and /ws → localhost:8080
+    └── src/app/
+        ├── app.ts        ← Form inputs, consent flow, connect/disconnect
+        ├── app.html      ← UI template
+        ├── services/
+        │   └── kvm.service.ts          ← POST /api/connect, opens WebSocket /ws
+        └── components/
+            └── kvm-viewer.component.ts ← Renders RFB frames on canvas, sends input events
+```
+
+---
+
+## Troubleshooting
+
+| Symptom | Cause | Action |
+|---|---|---|
+| **Connect KVM** button disabled | Consent not yet approved | Complete the 6-digit consent code step first |
+| Consent request fails 401 | JWT token invalid or expired | Re-issue JWT token from the orchestration stack |
+| Canvas blank after connect | Go server not reachable | Confirm `./kvm_server` is running on port 8080 |
+| WebSocket closes immediately | MPS host unreachable | Verify MPS host and network/firewall access |
+| Keyboard input not working | Canvas lost focus | Click the canvas once; it auto-focuses on mouse enter |
+
+---
+
+
diff --git a/kvm-poc/kvm-angular-app/.claude/CLAUDE.md b/kvm-poc/kvm-angular-app/.claude/CLAUDE.md
@@ -0,0 +1,55 @@
+
+You are an expert in TypeScript, Angular, and scalable web application development. You write functional, maintainable, performant, and accessible code following Angular and TypeScript best practices.
+
+## TypeScript Best Practices
+
+- Use strict type checking
+- Prefer type inference when the type is obvious
+- Avoid the `any` type; use `unknown` when type is uncertain
+
+## Angular Best Practices
+
+- Always use standalone components over NgModules
+- Must NOT set `standalone: true` inside Angular decorators. It's the default in Angular v20+.
+- Use signals for state management
+- Implement lazy loading for feature routes
+- Do NOT use the `@HostBinding` and `@HostListener` decorators. Put host bindings inside the `host` object of the `@Component` or `@Directive` decorator instead
+- Use `NgOptimizedImage` for all static images.
+  - `NgOptimizedImage` does not work for inline base64 images.
+
+## Accessibility Requirements
+
+- It MUST pass all AXE checks.
+- It MUST follow all WCAG AA minimums, including focus management, color contrast, and ARIA attributes.
+
+### Components
+
+- Keep components small and focused on a single responsibility
+- Use `input()` and `output()` functions instead of decorators
+- Use `computed()` for derived state
+- Set `changeDetection: ChangeDetectionStrategy.OnPush` in `@Component` decorator
+- Prefer inline templates for small components
+- Prefer Reactive forms instead of Template-driven ones
+- Do NOT use `ngClass`, use `class` bindings instead
+- Do NOT use `ngStyle`, use `style` bindings instead
+- When using external templates/styles, use paths relative to the component TS file.
+
+## State Management
+
+- Use signals for local component state
+- Use `computed()` for derived state
+- Keep state transformations pure and predictable
+- Do NOT use `mutate` on signals, use `update` or `set` instead
+
+## Templates
+
+- Keep templates simple and avoid complex logic
+- Use native control flow (`@if`, `@for`, `@switch`) instead of `*ngIf`, `*ngFor`, `*ngSwitch`
+- Use the async pipe to handle observables
+- Do not assume globals like (`new Date()`) are available.
+
+## Services
+
+- Design services around a single responsibility
+- Use the `providedIn: 'root'` option for singleton services
+- Use the `inject()` function instead of constructor injection
diff --git a/kvm-poc/kvm-angular-app/.cursor/rules/cursor.mdc b/kvm-poc/kvm-angular-app/.cursor/rules/cursor.mdc
@@ -0,0 +1,60 @@
+---
+context: true
+priority: high
+scope: project
+---
+
+You are an expert in TypeScript, Angular, and scalable web application development. You write functional, maintainable, performant, and accessible code following Angular and TypeScript best practices.
+
+## TypeScript Best Practices
+
+- Use strict type checking
+- Prefer type inference when the type is obvious
+- Avoid the `any` type; use `unknown` when type is uncertain
+
+## Angular Best Practices
+
+- Always use standalone components over NgModules
+- Must NOT set `standalone: true` inside Angular decorators. It's the default in Angular v20+.
+- Use signals for state management
+- Implement lazy loading for feature routes
+- Do NOT use the `@HostBinding` and `@HostListener` decorators. Put host bindings inside the `host` object of the `@Component` or `@Directive` decorator instead
+- Use `NgOptimizedImage` for all static images.
+  - `NgOptimizedImage` does not work for inline base64 images.
+
+## Accessibility Requirements
+
+- It MUST pass all AXE checks.
+- It MUST follow all WCAG AA minimums, including focus management, color contrast, and ARIA attributes.
+
+### Components
+
+- Keep components small and focused on a single responsibility
+- Use `input()` and `output()` functions instead of decorators
+- Use `computed()` for derived state
+- Set `changeDetection: ChangeDetectionStrategy.OnPush` in `@Component` decorator
+- Prefer inline templates for small components
+- Prefer Reactive forms instead of Template-driven ones
+- Do NOT use `ngClass`, use `class` bindings instead
+- Do NOT use `ngStyle`, use `style` bindings instead
+- When using external templates/styles, use paths relative to the component TS file.
+
+## State Management
+
+- Use signals for local component state
+- Use `computed()` for derived state
+- Keep state transformations pure and predictable
+- Do NOT use `mutate` on signals, use `update` or `set` instead
+
+## Templates
+
+- Keep templates simple and avoid complex logic
+- Use native control flow (`@if`, `@for`, `@switch`) instead of `*ngIf`, `*ngFor`, `*ngSwitch`
+- Use the async pipe to handle observables
+- Do not assume globals like (`new Date()`) are available.
+
+## Services
+
+- Design services around a single responsibility
+- Use the `providedIn: 'root'` option for singleton services
+- Use the `inject()` function instead of constructor injection
diff --git a/kvm-poc/kvm-angular-app/.editorconfig b/kvm-poc/kvm-angular-app/.editorconfig
@@ -0,0 +1,17 @@
+# Editor configuration, see https://editorconfig.org
+root = true
+
+[*]
+charset = utf-8
+indent_style = space
+indent_size = 2
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+[*.ts]
+quote_type = single
+ij_typescript_use_double_quotes = false
+
+[*.md]
+max_line_length = off
+trim_trailing_whitespace = false
diff --git a/kvm-poc/kvm-angular-app/.gemini/GEMINI.md b/kvm-poc/kvm-angular-app/.gemini/GEMINI.md
@@ -0,0 +1,55 @@
+
+You are an expert in TypeScript, Angular, and scalable web application development. You write functional, maintainable, performant, and accessible code following Angular and TypeScript best practices.
+
+## TypeScript Best Practices
+
+- Use strict type checking
+- Prefer type inference when the type is obvious
+- Avoid the `any` type; use `unknown` when type is uncertain
+
+## Angular Best Practices
+
+- Always use standalone components over NgModules
+- Must NOT set `standalone: true` inside Angular decorators. It's the default in Angular v20+.
+- Use signals for state management
+- Implement lazy loading for feature routes
+- Do NOT use the `@HostBinding` and `@HostListener` decorators. Put host bindings inside the `host` object of the `@Component` or `@Directive` decorator instead
+- Use `NgOptimizedImage` for all static images.
+  - `NgOptimizedImage` does not work for inline base64 images.
+
+## Accessibility Requirements
+
+- It MUST pass all AXE checks.
+- It MUST follow all WCAG AA minimums, including focus management, color contrast, and ARIA attributes.
+
+### Components
+
+- Keep components small and focused on a single responsibility
+- Use `input()` and `output()` functions instead of decorators
+- Use `computed()` for derived state
+- Set `changeDetection: ChangeDetectionStrategy.OnPush` in `@Component` decorator
+- Prefer inline templates for small components
+- Prefer Reactive forms instead of Template-driven ones
+- Do NOT use `ngClass`, use `class` bindings instead
+- Do NOT use `ngStyle`, use `style` bindings instead
+- When using external templates/styles, use paths relative to the component TS file.
+
+## State Management
+
+- Use signals for local component state
+- Use `computed()` for derived state
+- Keep state transformations pure and predictable
+- Do NOT use `mutate` on signals, use `update` or `set` instead
+
+## Templates
+
+- Keep templates simple and avoid complex logic
+- Use native control flow (`@if`, `@for`, `@switch`) instead of `*ngIf`, `*ngFor`, `*ngSwitch`
+- Use the async pipe to handle observables
+- Do not assume globals like (`new Date()`) are available.
+
+## Services
+
+- Design services around a single responsibility
+- Use the `providedIn: 'root'` option for singleton services
+- Use the `inject()` function instead of constructor injection