No description

Find a file

ZDDC 050902fa9e chore: elevation slot in every tool + docs + helper file splits + smell cleanup Polish pass after the big refactor in `2d114fc`. == Header elevation slot propagated == shared/elevation.{js,css} surface a header checkbox for admins. 30-minute sudo-style cookie window (Max-Age=1800, SameSite=Lax). Only renders when /.profile/access reports can_elevate=true; quiet for non-admins. Slot added to all 7 tool templates and concat'd into all 7 build.sh files; admin in any tool now sees the toggle. Three text-rename ride-alongs in archive/classifier/transmittal templates: "Add Local Directory" → "Use Local Directory" (the same rename that landed in browse earlier in this branch). == Docs == - CLAUDE.md gets an "Admin elevation is sudo-style" paragraph in the "Things that bite if you forget" section. - AGENTS.md gets a dedicated "Admin elevation (sudo-style)" section alongside "Bearer tokens" — same depth as the existing auth docs. == Helper file splits == The retired form editor's shared helpers got bundled into a single zddc_admin.go in the cleanup; that name is now misleading. Split by concern: - admin_helpers.go: hasAnyAdminScope (the only admin-specific helper) - paths.go: resolvePath, urlPathOf, chainDirs (URL ↔ filesystem path math — used by several profile / zddc-file handlers) - profile_assets.go (renamed from zddc_admin_assets.go): custom CSS pipeline. URL renamed from /.profile/zddc/assets/ → /.profile/assets/ since /.profile/zddc/ no longer hosts an editor. - treeEntry moves to profilehandler.go (alongside AccessView, its only consumer). - writeError moves to profileprojects.go (its only consumer). == Smell cleanup == - zddc.HasAnyAdminGrant(fsRoot, email) — new elevation-independent primitive that walks the cascade and reports whether email is named in any admin: list anywhere. Replaces the synthetic-elevated probe hack in enumerateAccess (`Principal{Email, Elevated: true}` was "lying" to the elevation gate to ask what it would say). The handler's hasAnyAdminScope collapses to a 4-line wrapper that gates on p.Elevated and delegates. - Access-log middleware records `elevated` per request, so forensics can distinguish "admin acting as user" from "admin exercising power." - browse/js/app.js's ?file= deep link walks multi-segment paths. Each intermediate segment is matched + expanded; the leaf gets selected/previewed. Auto-shows hidden when any segment starts with . or _. Silently no-ops on unresolved segments. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>		2026-05-14 12:15:41 -05:00
.forgejo	fix(build,ci): auto-commit embedded refresh on beta cuts; pin chart to HEAD	2026-05-05 20:48:09 -05:00
archive	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
browse	feat(browse): SPA overhaul — context menu, YAML editor, icons, hovercard, deep links, autofilter	2026-05-14 12:12:42 -05:00
classifier	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
form	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
helm	fix(client): plug confused-deputy bind in client mode	2026-05-08 10:03:51 -05:00
landing	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
pandoc	fix(pandoc): print CSS — content overflowing the right page margin	2026-05-13 13:48:41 -05:00
shared	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
tables	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
tests	chore(build-label): drop three-word slug — use full timestamp + short SHA for alpha/beta cuts	2026-05-13 11:14:35 -05:00
transmittal	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
zddc	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
.gitignore	test: add tests/data/test-archive.sh — synthetic ZDDC fixture builder	2026-05-08 09:03:38 -05:00
AGENTS.md	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
ARCHITECTURE.md	chore: retire mdedit tool — markdown editor lives in browse now	2026-05-13 10:34:31 -05:00
build	chore: retire mdedit tool — markdown editor lives in browse now	2026-05-13 10:34:31 -05:00
CLAUDE.md	chore: elevation slot in every tool + docs + helper file splits + smell cleanup	2026-05-14 12:15:41 -05:00
deploy	refactor: separate website repo + deploy-host model	2026-05-02 09:14:40 -05:00
dev-server	Initial commit	2026-04-27 11:05:47 -05:00
freshen-channel	chore: retire mdedit tool — markdown editor lives in browse now	2026-05-13 10:34:31 -05:00
LICENSE.txt	Initial commit	2026-04-27 11:05:47 -05:00
package.json	Initial commit	2026-04-27 11:05:47 -05:00
playwright.config.js	chore: retire mdedit tool — markdown editor lives in browse now	2026-05-13 10:34:31 -05:00
README.md	chore: retire mdedit tool — markdown editor lives in browse now	2026-05-13 10:34:31 -05:00
SECURITY.md	docs: add SECURITY.md (vulnerability disclosure policy)	2026-05-04 17:53:13 -05:00

README.md

Zero Day Document Control (ZDDC)

The Universal Distributed Filing Cabinet

ZDDC is an information management convention plus a small set of single-file HTML tools. Every deliverable's filename encodes its tracking number, revision, status, and title; every transmittal folder is date-prefixed and self-describing. A plain shared folder becomes a fully searchable, auditable archive — no server, no database, no software required to read it.

The name "Zero Day Document Control" comes from the convention itself — adopt it on day zero of a project, with no setup time. The tools are optional interfaces around the structure; the structure works without them.

For end users: https://zddc.varasys.io/ introduces the project, links to all tool channels (stable / beta / alpha), and prints copy-paste shell snippets to install on a self-hosted deployment.

Tools

Tool	What it does
Archive Browser	Browse, search, and filter a project archive folder. Group by transmittal, export selections as ZIP.
Transmittal Creator	Self-contained HTML transmittal records with SHA-256 checksums and optional digital signatures.
Document Classifier	Spreadsheet-like bulk-renamer that copy/pastes with Excel and writes back to disk.
Form Renderer	Schema-driven `*.form.yaml` editor — every form spec auto-mounts an editable form at `<name>.form.html`.
Tables	Sortable, filterable, in-place-editable grid view over a directory of YAML rows; click a row → edit in the form renderer. Auto-mounts on any directory containing a `table.yaml`.
Browse	File-tree navigator with previews and an in-place markdown editor (YAML front matter, outline, server-side DOCX/HTML/PDF download); the everywhere-available companion to the Archive Browser when you want plain folder navigation rather than tracking-number aggregation.
Landing	The project picker served at the deployment root of a `zddc-server`.

Each tool is published in three channels (stable, beta, alpha) as static files served from https://zddc.varasys.io/releases/. Local use: download a .html file from releases/ and open it in a browser. Server use: run zddc-server — the current-stable build of every tool is baked into the binary at compile time, so a fresh deployment Just Works with zero config. Which tool a directory URL serves is driven by the .zddc cascade: a baked-in defaults.zddc.yaml (dump it with zddc-server show-defaults) declares, per folder, default_tool (the no-slash form — archive under archive/, transmittal under staging/, browse under working/+reviewing/ (browse hosts the in-place markdown editor), classifier under incoming/, tables at archive/<party>/mdl, landing at root) and dir_tool (the trailing-slash form; defaults to browse); operators override at any level. A .zip file is also a navigable directory (GET …/Foo.zip/), and GET /dir/?zip=1 streams an ACL-filtered zip of a subtree. Override the tool source per-directory by writing an apps: entry in any .zddc file (channel/version/URL/path) — fetched once and cached in <ZDDC_ROOT>/_app/ — or drop a real .html file at any path.

File-naming convention

The full specification — filename format, tracking numbers, revision rules, status codes, folder naming, and the transmittal workflow — lives at https://zddc.varasys.io/reference.html.

Quick example: 123456-EL-SPC-2623_A (IFR) - Specification For Switchgear.pdf

Build & develop

git clone https://codeberg.org/VARASYS/ZDDC.git && cd ZDDC

./build                                  # dev build of every tool (writes to dist/ only)
sh archive/build.sh                      # iterate on one HTML tool

./build alpha                            # lockstep alpha cut for all nine artifacts
./build beta                             # lockstep beta cut
./build release                          # lockstep stable, coordinated next version
./build release 1.2.0                    # lockstep stable at explicit version

npm install && npx playwright install chromium && npm test    # tests
./dev-server start                       # cache-busting HTTP on :8000

Authoritative build/release docs are in AGENTS.md. Architecture notes (single-file rationale, JS module pattern, security model) are in ARCHITECTURE.md. zddc-server (optional Go HTTP server with ACL and a virtual archive index) is in zddc/README.md. Example Helm charts for deploying zddc-server (production + dev) are under helm/.

Contributing

ZDDC is an open source project hosted on Codeberg at https://codeberg.org/VARASYS/ZDDC. Bug reports, feature requests, and pull requests welcome.

ZDDC is designed for zero configuration to start and minimal configuration overall — feature proposals are filtered through that lens.

License

GNU Affero General Public License v3.0. Free to use, modify, and distribute, including commercially, under the terms of the license. Provided "as is" without warranty.