Skip to content

Phase 4: Operator auth, API keys, Sentinel ML, Claude API analysis#18

Merged
nullEFFORT merged 1 commit intomainfrom
phase4-auth-and-analysis
Mar 5, 2026
Merged

Phase 4: Operator auth, API keys, Sentinel ML, Claude API analysis#18
nullEFFORT merged 1 commit intomainfrom
phase4-auth-and-analysis

Conversation

@nullEFFORT
Copy link
Owner

@nullEFFORT nullEFFORT commented Mar 5, 2026
edited
Loading

Summary

  • JWT authentication for REST API (login, refresh, register, me)
  • gRPC API key authentication with interceptor
  • Sentinel ML adapter with 70/30 deterministic/ML blending
  • Claude API contextual analysis with 60/40 blending
  • Auth wired to all 36 existing API endpoints
  • Chain of custody logging uses operator username
  • api_keys table + operator.last_login_at migration
  • 56 grooming + 50 normal chat example sets
  • Updated README, ROADMAP, .env.example

Test plan

  • All 70 tests passing
  • Verify unauthenticated requests return 401
  • Register, login, verify JWT flow
  • Generate API key, test gRPC auth
  • Verify docs are current

Closes #3, Closes #13, Closes #14, Closes #15, Closes #16, Closes #17
Partially addresses #5 (API key auth done, TLS still pending)

Generated with Claude Code

@nullEFFORT @claude
Phase 4: Operator auth, API keys, Sentinel ML, Claude API analysis
aa5dcb0 
- JWT authentication for REST API (login, refresh, register, me endpoints)
- gRPC API key authentication with interceptor (generate, list, revoke)
- Sentinel ML adapter with contrastive learning integration (70/30 blend)
- Claude API contextual analysis for high-risk messages (60/40 blend)
- Auth wired to all 36 existing API endpoints (require Bearer token)
- Chain of custody logging now uses operator username as actor
- api_keys table migration, operator.last_login_at column
- 56 grooming pattern examples + 50 normal chat examples for ML training
- Rate-limited LLM analysis (sliding window, configurable max/min)
- Graceful degradation when Sentinel or Claude unavailable
- Updated README, ROADMAP, .env.example with new endpoints and config

Closes #3, Closes #5, Closes #13, Closes #14, Closes #15, Closes #16, Closes #17

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@nullEFFORT nullEFFORT added enhancement New feature or request server Server-side code security Security-sensitive labels Mar 5, 2026
@nullEFFORT nullEFFORT mentioned this pull request Mar 5, 2026
Closed
4 tasks
@nullEFFORT nullEFFORT merged commit bed52fb into main Mar 5, 2026
4 checks passed
@nullEFFORT nullEFFORT deleted the phase4-auth-and-analysis branch March 7, 2026 04:48
nullEFFORT added a commit that referenced this pull request Mar 7, 2026
@nullEFFORT
Merge pull request #18 from nullEFFORT/phase4-auth-and-analysis
05a47d2 
Phase 4: Operator auth, API keys, Sentinel ML, Claude API analysis
nullEFFORT added a commit that referenced this pull request Mar 7, 2026
@nullEFFORT
Merge pull request #18 from nullEFFORT/phase4-auth-and-analysis
f0374f5 
Phase 4: Operator auth, API keys, Sentinel ML, Claude API analysis
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

enhancement New feature or request security Security-sensitive server Server-side code

Projects

None yet

Milestone

Phase 4: Auth & Analysis Engine

1 participant

@nullEFFORT