---
category: reference
tags: [dev, vps, progress]
last_updated: 2026-03-15
confidence: high
---

# VPS Deployment Progress

Tracking the implementation of robot.wtf on the Debian 12 / Proxmox VM. See [[Tasks/VPS_Phases]] for the full plan.

## Completed

### V0: VM Infrastructure (2026-03-15)
- Ansible playbook provisioning: base packages, `/srv` directory structure, Python venv, crypto keys, SQLite schema
- RS256 signing keypair + EC P-256 ATProto client JWK generated
- Playbook idempotent, tested via full re-run
- VPS at 192.168.77.107 (WireGuard backplane), Caddy on separate host

### V1: Otterwiki on Caddy (2026-03-15)
- **V1-1/V1-2:** Data access layer ported from DynamoDB to SQLite (21 files, 2399 lines, 55 tests)
- **V1-3:** Gunicorn entry points, systemd units, Ansible deploy role (4 services on ports 8000-8003)
- **V1-4:** Caddy wildcard config with on-demand TLS, `/api/internal/check-slug` for cert validation
- **V1-5:** Full stack smoke tested — otterwiki serving pages, MCP connected via Claude Code

Key findings during V1:
- `RETAIN_PAGE_NAME_CASE = True` required (otterwiki lowercases filenames without it)
- `TREAT_UNDERSCORE_AS_SPACE_FOR_TITLES = True` for clean URLs
- ManagementMiddleware needed `/api/v1/*` and `/api/internal/*` passthroughs
- numpy/chromadb X86_V2 issue on the Proxmox VM (semantic search deferred)

### VS-1: ATProto OAuth Spike (2026-03-15)
- Bluesky cookbook demo adapted for robot.wtf
- Real Bluesky login completed end-to-end
- ATProto client JWK must be EC P-256 / ES256 (not RSA) — V0 playbook corrected
- DPoP nonce handling works, identity-only scope validated
- Findings at [[Dev/VS-1_ATProto_Spike]]

### V2: Migrate Dev Wiki (2026-03-15)
- Dev wiki cloned from dev.wikibot.io via git smart HTTP (`/.git/info/refs`)
- Running at https://dev.robot.wtf/ with MCP connected
- 3gw wiki NOT migrated (DNS CNAME exception keeps it on home server)
- MCP bearer token auth working for Claude Code

## In Progress

### VS-2: MCP OAuth for Claude.ai
- Making FastMCP's OAuth provider persistent (SQLite-backed) so Claude.ai doesn't lose auth on restart
- Caddy routes updated to proxy OAuth paths to MCP sidecar
- Manager agent running in otterwiki-mcp repo

### V3: ATProto OAuth Production Auth Service
- Evolving VS-1 spike into production auth service on port 8003
- Platform JWT cookie on `.robot.wtf` domain
- Signup flow (choose username from Bluesky handle)
- Manager agent running in robot.wtf repo

### V3: ATProto OAuth Production Auth Service (2026-03-15)
- Production auth on port 8003 with ATProto OAuth (Bluesky login)
- Platform JWT cookie on `.robot.wtf` domain
- Signup flow: choose username from Bluesky handle
- OAuth callback, session management, DPoP nonce handling

### V4: Management API + Wiki Lifecycle (2026-03-15)
- Wiki CRUD via REST API (`/api/wikis`) and web UI (`/app/create`, `/app/wiki/{slug}/*`)
- ACL enforcement (owner, collaborator roles)
- MCP token generation, hashing, regeneration
- Git repo initialization with Home.md bootstrap

### V5: MCP OAuth AS (2026-03-15)
- FastMCP OAuth provider with SQLite-backed persistence
- Claude.ai can connect via OAuth consent flow
- Caddy routes proxy OAuth paths to MCP sidecar

### V6: Frontend + Landing Page (2026-03-15)
- Static landing page at `robot.wtf/`
- Dashboard at `/app/` with wiki list and create CTA
- Wiki settings, MCP connection instructions, token regeneration
- OWASP audit completed (10 parallel agents)

### V7: Operational Hardening (2026-03-15)
- Healthcheck endpoints, backup cron, disk quota enforcement
- Logging, systemd units, graceful restarts

### Bugfixes (2026-03-16)
- Signup/login redirect fixed: users now land on dashboard instead of marketing page
- Landing page redirects authenticated users to dashboard
- Private wiki subdomains redirect unauthenticated browsers to login (not JSON 403)
- Two beta users (gruen, igor) manually onboarded with wiki records
- Details: [[Dev/2026-03-16_Beta_User_TLS_Fix]]

### Semantic Search + Infrastructure (2026-03-17)
- **Multi-tenant semantic search fixed:** slug derivation, auto-reindex empty backends, per-backend reindex lock, stale fallback removal. 104 tests.
- **FAISS backend safety:** query() TOCTOU race fixed (snapshot under lock), atomic save (temp files + rename), mismatch detection on load.
- **Async reindex:** POST /api/v1/reindex returns 202, background thread, GET /api/v1/reindex/status for polling. Dev wiki reindexed: 76 pages, 590 chunks.
- **Wiki template seeding:** New wikis seeded from `templates/default-wiki/` (Home, Getting Started, Agent Guide). Ansible deploys templates to VPS.
- **Wiki path consolidation:** Migrated all wikis from `/srv/wikis/` to `/srv/data/wikis/`. Quota script updated. Single canonical storage location.
- **Landing page copy updated.**
- **Broken beta user wikis (gruen, igor) deleted** — repos were bare, created incorrectly during manual onboarding. Users can recreate via UI.
- **OAuth finding:** Claude.ai does not use refresh tokens. Re-auths every hour. Mitigation (extend token lifetime) not yet implemented.

## Not Started

- Custom domains (non-robot.wtf)
- Per-wiki SQLite DB (re-enable admin panels)

## Architecture Notes

| Service | Port | Process | Status |
|---------|------|---------|--------|
| Otterwiki WSGI | 8000 | Gunicorn | Running |
| MCP sidecar | 8001 | uvicorn (FastMCP) | Running |
| Platform API | 8002 | Gunicorn | Running (stubs) |
| Auth service | 8003 | Gunicorn | Running (stubs) |

All deployed via Ansible (`ansible/deploy.yml`). Config in `/srv/data/robot.env` and `/srv/data/settings.cfg`, both generated from Jinja2 templates with `force: false` (won't overwrite existing secrets).

Repos:
- `robot.wtf` — platform code (Ansible, middleware, auth, management)
- `otterwiki-mcp` — standalone MCP server (FastMCP, 12 tools, dual auth)
- `otterwiki` — upstream fork (`wikibot-io` branch: lifecycle hooks, proxy auth, platform mode)
- `otterwiki-api` — REST API plugin
- `otterwiki-semantic-search` — semantic search plugin (ChromaDB/FAISS)