Inventory quartet and initial leases

2025-12-17 15:54:20 +00:00
parent 44edf6734b
commit 901444a6d5
21 changed files with 291 additions and 0 deletions
--- a/10-inventory/hosts/README.md
+++ b/10-inventory/hosts/README.md
@@ -0,0 +1,14 @@
+# Hosts
+
+Each host lives in its own directory:
+
+```
+10-inventory/hosts/<role>-<scope>-<id>/
+```
+
+Minimum:
+
+- `README.md` (purpose + trust boundary)
+- `hardware.md` (what it is)
+- `os.md` (what it runs)
+
--- a/10-inventory/hosts/op-console-mac/README.md
+++ b/10-inventory/hosts/op-console-mac/README.md
@@ -0,0 +1,16 @@
+# op-console-mac
+
+## Purpose
+
+Console host used to run `op-core-vm`.
+
+## Trust boundary
+
+- The host is a console, not a source of trust.
+- Critical actions happen only inside `op-core-vm`.
+- No long-lived secrets are kept on the host if avoidable.
+
+## References
+
+- Doctrine: `00-doctrine/operator-charter.md`
+- Lease: `20-identity/leases/op-console-mac.md`
--- a/10-inventory/hosts/op-console-mac/hardware.md
+++ b/10-inventory/hosts/op-console-mac/hardware.md
@@ -0,0 +1,10 @@
+# Hardware (op-console-mac)
+
+- Model:
+- Serial:
+- CPU:
+- RAM:
+- Storage:
+- Network:
+- Location:
+
--- a/10-inventory/hosts/op-console-mac/os.md
+++ b/10-inventory/hosts/op-console-mac/os.md
@@ -0,0 +1,12 @@
+# OS (op-console-mac)
+
+- OS:
+- Version:
+- Install method:
+- Disk encryption:
+- Update policy:
+
+## Notes
+
+- The VM is the authority source; the host is replaceable.
+
--- a/10-inventory/hosts/op-witness-phone/README.md
+++ b/10-inventory/hosts/op-witness-phone/README.md
@@ -0,0 +1,15 @@
+# op-witness-phone
+
+## Purpose
+
+Witness device for verification (alerts, confirmations, second factors).
+
+## Trust boundary
+
+- The phone is a witness, not a workstation.
+- Prefer read-only access; no critical admin actions originate here.
+
+## References
+
+- Doctrine: `00-doctrine/operator-charter.md`
+- Lease: `20-identity/leases/op-witness-phone.md`
--- a/10-inventory/hosts/op-witness-phone/hardware.md
+++ b/10-inventory/hosts/op-witness-phone/hardware.md
@@ -0,0 +1,7 @@
+# Hardware (op-witness-phone)
+
+- Model:
+- Serial/IMEI:
+- Storage:
+- Network:
+
--- a/10-inventory/hosts/op-witness-phone/os.md
+++ b/10-inventory/hosts/op-witness-phone/os.md
@@ -0,0 +1,7 @@
+# OS (op-witness-phone)
+
+- OS:
+- Version:
+- Update policy:
+- Lock screen policy:
+
--- a/10-inventory/hosts/srv-local-core/README.md
+++ b/10-inventory/hosts/srv-local-core/README.md
@@ -0,0 +1,11 @@
+# srv-local-core
+
+## Purpose
+
+Local core server: stable services and state that must still be rebuildable.
+
+## Authority boundary
+
+- Provisioning and changes originate from `op-core-vm`.
+- Host state is treated as disposable; the source of truth lives in `ops/`.
+
--- a/10-inventory/hosts/srv-local-core/hardware.md
+++ b/10-inventory/hosts/srv-local-core/hardware.md
@@ -0,0 +1,10 @@
+# Hardware (srv-local-core)
+
+- Model:
+- Serial:
+- CPU:
+- RAM:
+- Storage:
+- Network:
+- Location:
+
--- a/10-inventory/hosts/srv-local-core/os.md
+++ b/10-inventory/hosts/srv-local-core/os.md
@@ -0,0 +1,8 @@
+# OS (srv-local-core)
+
+- OS:
+- Version:
+- Install method:
+- Disk encryption:
+- Update policy:
+
--- a/10-inventory/hosts/srv-local-shield/README.md
+++ b/10-inventory/hosts/srv-local-shield/README.md
@@ -0,0 +1,11 @@
+# srv-local-shield
+
+## Purpose
+
+Local shield node: boundary services (gateway, filtering, segmentation).
+
+## Authority boundary
+
+- Provisioning and changes originate from `op-core-vm`.
+- Configuration is managed as code; rebuilds are expected.
+
--- a/10-inventory/hosts/srv-local-shield/hardware.md
+++ b/10-inventory/hosts/srv-local-shield/hardware.md
@@ -0,0 +1,10 @@
+# Hardware (srv-local-shield)
+
+- Model:
+- Serial:
+- CPU:
+- RAM:
+- Storage:
+- Network:
+- Location:
+
--- a/10-inventory/hosts/srv-local-shield/os.md
+++ b/10-inventory/hosts/srv-local-shield/os.md
@@ -0,0 +1,8 @@
+# OS (srv-local-shield)
+
+- OS:
+- Version:
+- Install method:
+- Disk encryption:
+- Update policy:
+