Skip to content

Commit 461ab43

Browse files
baijumclaude
andcommitted
docs: mark Phase 5 complete and defer credential isolation to Phase 5.5
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
1 parent 3c64786 commit 461ab43

1 file changed

Lines changed: 5 additions & 4 deletions

File tree

docs/roadmap.md

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -65,21 +65,22 @@ Support running many applications on a single server.
6565

6666
**Done when:** At least 3 apps run simultaneously on one server with independent subdomains, isolated databases, and no resource contention under normal load. Resource limits are enforced per container.
6767

68-
**Status:** Partially addressed. Two apps (todo-app at app.anulectra.com, hello-world at app2.anulectra.com) run simultaneously with isolated databases and independent Caddy routes. Per-app resource limits and credential isolation remain to be implemented.
68+
**Status:** Complete. Three apps running simultaneously: todo-app (app.anulectra.com), hello-world (app2.anulectra.com), starter-app (app3.anulectra.com). Per-app Docker resource limits (CPU/memory) enforced on all app and platform containers. Credential isolation deferred to Phase 5.5.
6969

7070
## Phase 5.5 — Observability and Operations
7171

72-
Add the operational foundation required before opening the platform to self-hosters.
72+
Add the operational foundation required before opening the platform to self-hosters. Includes credential isolation deferred from Phase 5.
7373

74+
- Per-app credential isolation (separate PostgreSQL users/passwords per app, scoped MinIO buckets)
7475
- Monitoring: container health dashboard (Caddy metrics, Docker stats)
7576
- Logging: centralized log collection from all app containers
7677
- Backups: automated PostgreSQL backups with retention policy
7778
- Security: automated OS and Docker image security updates
7879
- Cost visibility: disk, memory, and bandwidth usage tracking
7980

80-
**Done when:** Platform operator can view health of all running apps, restore from a backup, and receive alerts when a container is unhealthy or disk is >80% full.
81+
**Done when:** Platform operator can view health of all running apps, restore from a backup, and receive alerts when a container is unhealthy or disk is >80% full. Each app has isolated credentials.
8182

82-
**Status:** Not started. No monitoring, backup, or alerting exists.
83+
**Status:** Not started. No monitoring, backup, or alerting exists. Credential isolation deferred from Phase 5.
8384

8485
## Phase 6 — Self-Hosting Ecosystem
8586

0 commit comments

Comments
 (0)