Skip to main content

Runbooks

Current runbook commands:

make validate-contracts
make test
make smoke
make test-postgres
make test-nats
make smoke-nats
make test-delivery-retry
make smoke-delivery-retry
make smoke-keycloak
make docker-build
make compose-up
make compose-smoke
make compose-down
make helm-template
make docs-build
make aws-bootstrap-fmt
make aws-bootstrap-validate
make aws-preflight-check
make aws-bootstrap-plan
make aws-bootstrap-apply-dryrun
make aws-iac-check
make ci-validate
make ci-helm-render
make aws-dev-smoke-check

AWS dev deployed persona smoke runs inside the manual GitLab smoke_aws_dev job after deploy_aws_dev succeeds. Enable the full OP-083 path with AWS_DEV_PERSONA_SMOKE_ENABLED=true plus protected/masked AWS_DEV_SMOKE_* variables. It validates authenticated session/API docs, tenant bootstrap, enrollment token issue/revoke, agent exchange/heartbeat, and assets list/detail with redacted artifacts.

Planned runbooks:

  • AWS dev bootstrap order: docs/planning/aws-dev-bootstrap-runbook.md.
  • AWS dev pre-apply checklist: docs/planning/aws-dev-pre-apply-checklist.md.
  • AWS dev first apply runbook: docs/planning/aws-dev-first-apply-runbook.md.
  • AWS dev deployment order: docs/planning/aws-dev-deployment-runbook.md.
  • Console bootstrap and persona journeys: docs/planning/console-bootstrap-persona-journeys.md.
  • Production/staging IdP realm promotion and service-account lifecycle.
  • NATS consumer lag and redelivery troubleshooting.
  • Audit hash-chain verification.
  • Postgres RLS incident checks.
  • Webhook delivery DLQ replay UI and operator workflow.
  • Environment promotion and rollback.