zoe/autojanet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
autojanet/dispatcher/dispatcher.py
Zoë 8301f641e0
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
fix: add k8s job creation timeout + logging to debug hang
2026-05-30 17:49:33 -07:00

347 lines
13 KiB
Python
Raw Blame History

#!/usr/bin/env python3
"""
AutoJanet Dispatcher
Runs as a CronJob every 2 minutes. Discovers the target Vikunja project by
name, resolves the kanban view and all 5 standard bucket IDs by name, then
claims tasks from the Todo bucket that have an `agent:<role>` label and
spawns a Kubernetes Job for the appropriate agent.
Config (env vars):
OPENBAO_ADDR, OPENBAO_ROLE_ID, OPENBAO_SECRET_ID
VIKUNJA_BASE_URL (default: http://vikunja.vikunja.svc.cluster.local:3456)
VIKUNJA_PROJECT_NAME (default: Autonomous Agent Platform)
K8S_NAMESPACE (default: autojanet)
AGENT_IMAGE
"""
import logging
import os
import re
import sys
import httpx
from kubernetes import client as k8s_client, config as k8s_config
logging.basicConfig(
level=logging.INFO,
format="%(asctime)s %(levelname)s %(message)s",
stream=sys.stdout,
)
log = logging.getLogger("dispatcher")
# ── Config ────────────────────────────────────────────────────────────────────
OPENBAO_ADDR = os.environ["OPENBAO_ADDR"]
OPENBAO_ROLE_ID = os.environ["OPENBAO_ROLE_ID"]
OPENBAO_SECRET_ID = os.environ["OPENBAO_SECRET_ID"]
VIKUNJA_BASE_URL = os.environ.get("VIKUNJA_BASE_URL", "http://vikunja.vikunja.svc.cluster.local:3456")
VIKUNJA_PROJECT_NAME = os.environ.get("VIKUNJA_PROJECT_NAME", "Autonomous Agent Platform")
K8S_NAMESPACE = os.environ.get("K8S_NAMESPACE", "autojanet")
AGENT_IMAGE = os.environ.get("AGENT_IMAGE", "registry.ctz.fyi/library/autojanet-agent:latest")
# Standard bucket names (case-insensitive match)
BUCKET_BACKLOG = "backlog"
BUCKET_TODO = "todo"
BUCKET_IN_PROGRESS = "in progress"
BUCKET_IN_REVIEW = "in review"
BUCKET_DONE = "done"
VALID_ROLES = {
"pm", "coder", "code-reviewer", "test-engineer", "devsecops", "secops",
"sre", "kubernetes-pilot", "linux-admin", "systems-engineer", "networking",
"dba", "prometheus-expert", "tofu-engineer", "release-manager",
"doc-updater", "doc-writer", "technical-writer", "cost-optimizer",
}
# ── OpenBao ───────────────────────────────────────────────────────────────────
def get_openbao_token() -> str:
resp = httpx.post(
f"{OPENBAO_ADDR}/v1/auth/approle/login",
json={"role_id": OPENBAO_ROLE_ID, "secret_id": OPENBAO_SECRET_ID},
timeout=10,
)
resp.raise_for_status()
return resp.json()["auth"]["client_token"]
def get_secret(bao_token: str, path: str, key: str) -> str:
resp = httpx.get(
f"{OPENBAO_ADDR}/v1/secret/data/{path}",
headers={"X-Vault-Token": bao_token},
timeout=10,
)
resp.raise_for_status()
return resp.json()["data"]["data"][key]
def get_vikunja_token(bao_token: str) -> str:
return get_secret(bao_token, "autojanet/pm/vikunja-token", "token")
# ── Vikunja discovery ─────────────────────────────────────────────────────────
def vikunja_get(vikunja_token: str, path: str, **params) -> list | dict:
resp = httpx.get(
f"{VIKUNJA_BASE_URL}/api/v1/{path}",
headers={"Authorization": f"Bearer {vikunja_token}"},
params=params or None,
timeout=15,
)
resp.raise_for_status()
return resp.json()
def find_project_id(vikunja_token: str, project_name: str) -> int:
"""Find project ID by exact name match."""
page = 1
while True:
projects = vikunja_get(vikunja_token, "projects", page=page, per_page=50)
if not projects:
break
for p in projects:
if p.get("title", "").strip().lower() == project_name.strip().lower():
log.info("Found project '%s' id=%d", project_name, p["id"])
return p["id"]
if len(projects) < 50:
break
page += 1
raise RuntimeError(f"Project '{project_name}' not found in Vikunja")
def find_kanban_view_id(vikunja_token: str, project_id: int) -> int:
"""Find the kanban view for a project."""
views = vikunja_get(vikunja_token, f"projects/{project_id}/views")
for v in views:
if v.get("view_kind") == "kanban":
log.info("Found kanban view id=%d", v["id"])
return v["id"]
raise RuntimeError(f"No kanban view found for project {project_id}")
def discover_buckets(vikunja_token: str, project_id: int, view_id: int) -> dict[str, int]:
"""
Return a dict mapping normalised bucket name -> bucket id.
Standard names: backlog, todo, in progress, in review, done
"""
buckets = vikunja_get(vikunja_token, f"projects/{project_id}/views/{view_id}/buckets")
mapping = {}
for b in buckets:
name = b.get("title", "").strip().lower()
mapping[name] = b["id"]
log.info("Bucket '%s' id=%d", b["title"], b["id"])
return mapping
def list_todo_tasks(vikunja_token: str, project_id: int) -> list[dict]:
"""Return all undone tasks with agent labels from the project."""
tasks = []
page = 1
while True:
batch = vikunja_get(vikunja_token, f"projects/{project_id}/tasks", page=page, per_page=50)
if not batch:
break
tasks.extend(batch)
if len(batch) < 50:
break
page += 1
return [t for t in tasks if not t.get("done") and t.get("labels")]
def extract_agent_role(task: dict) -> str | None:
labels = task.get("labels") or []
roles_found = []
for label in labels:
title = label.get("title", "")
m = re.match(r"^agent:(.+)$", title)
if m:
role = m.group(1)
if role in VALID_ROLES:
roles_found.append(role)
return roles_found[0] if len(roles_found) == 1 else None
def claim_task(task_id: int) -> bool:
"""Placeholder — bucket moving deferred. Always returns True."""
return True
def unclaim_task(task_id: int) -> None:
"""Placeholder — bucket moving deferred."""
pass
# ── Kubernetes ────────────────────────────────────────────────────────────────
def load_k8s_config() -> None:
try:
k8s_config.load_incluster_config()
except k8s_config.ConfigException:
k8s_config.load_kube_config()
def job_name(role: str, task_id: int) -> str:
safe_role = role.replace("-", "")[:12]
return f"agent-{safe_role}-{task_id}"
def job_already_exists(batch_v1: k8s_client.BatchV1Api, name: str) -> bool:
try:
batch_v1.read_namespaced_job(name=name, namespace=K8S_NAMESPACE)
return True
except k8s_client.ApiException as e:
if e.status == 404:
return False
raise
def spawn_agent_job(
batch_v1: k8s_client.BatchV1Api,
role: str,
task_id: int,
task_title: str,
) -> None:
name = job_name(role, task_id)
if job_already_exists(batch_v1, name):
log.info("Job %s already exists, skipping", name)
return
job = k8s_client.V1Job(
api_version="batch/v1",
kind="Job",
metadata=k8s_client.V1ObjectMeta(
name=name,
namespace=K8S_NAMESPACE,
labels={
"autojanet/type": "agent",
"autojanet/role": role,
"autojanet/task-id": str(task_id),
},
),
spec=k8s_client.V1JobSpec(
ttl_seconds_after_finished=3600,
backoff_limit=1,
template=k8s_client.V1PodTemplateSpec(
metadata=k8s_client.V1ObjectMeta(
labels={
"autojanet/type": "agent",
"autojanet/role": role,
"autojanet/task-id": str(task_id),
}
),
spec=k8s_client.V1PodSpec(
service_account_name=f"agent-{role}",
restart_policy="Never",
node_selector={"kubernetes.io/arch": "amd64"},
containers=[
k8s_client.V1Container(
name="agent",
image=AGENT_IMAGE,
image_pull_policy="Always",
env=[
k8s_client.V1EnvVar(name="AGENT_ROLE", value=role),
k8s_client.V1EnvVar(name="TASK_ID", value=str(task_id)),
k8s_client.V1EnvVar(name="TASK_TITLE", value=task_title),
k8s_client.V1EnvVar(name="OPENBAO_ADDR", value=OPENBAO_ADDR),
k8s_client.V1EnvVar(name="VIKUNJA_BASE_URL",value=VIKUNJA_BASE_URL),
k8s_client.V1EnvVar(name="LITELLM_BASE_URL",value="https://llm.ctz.fyi"),
k8s_client.V1EnvVar(name="FORGEJO_BASE_URL",value="https://git.ctz.fyi"),
k8s_client.V1EnvVar(
name="OPENBAO_ROLE_ID",
value_from=k8s_client.V1EnvVarSource(
secret_key_ref=k8s_client.V1SecretKeySelector(
name=f"agent-{role}-approle",
key="role_id",
)
),
),
k8s_client.V1EnvVar(
name="OPENBAO_SECRET_ID",
value_from=k8s_client.V1EnvVarSource(
secret_key_ref=k8s_client.V1SecretKeySelector(
name=f"agent-{role}-approle",
key="secret_id",
)
),
),
],
resources=k8s_client.V1ResourceRequirements(
requests={"cpu": "250m", "memory": "512Mi"},
limits={"cpu": "2000m", "memory": "2Gi"},
),
security_context=k8s_client.V1SecurityContext(
allow_privilege_escalation=False,
run_as_non_root=True,
run_as_user=1000,
capabilities=k8s_client.V1Capabilities(drop=["ALL"]),
),
)
],
),
),
),
)
log.info("Creating k8s job %s", name)
batch_v1.create_namespaced_job(namespace=K8S_NAMESPACE, body=job, _request_timeout=30)
log.info("Spawned job %s for role=%s task=%d", name, role, task_id)
# ── Main ──────────────────────────────────────────────────────────────────────
def main() -> None:
log.info("Dispatcher starting")
# Auth
bao_token = get_openbao_token()
vikunja_token = get_vikunja_token(bao_token)
log.info("Authenticated to OpenBao and Vikunja")
# Discover project + kanban view + buckets by name
project_id = find_project_id(vikunja_token, VIKUNJA_PROJECT_NAME)
view_id = find_kanban_view_id(vikunja_token, project_id)
buckets = discover_buckets(vikunja_token, project_id, view_id)
todo_id = buckets.get(BUCKET_TODO)
in_progress_id = buckets.get(BUCKET_IN_PROGRESS)
if not todo_id or not in_progress_id:
log.warning("Could not find all standard buckets. Found: %s", list(buckets.keys()))
# k8s
load_k8s_config()
batch_v1 = k8s_client.BatchV1Api()
# Scan + claim tasks
tasks = list_todo_tasks(vikunja_token, project_id)
log.info("Found %d candidate tasks", len(tasks))
claimed = 0
for task in tasks:
task_id = task["id"]
title = task.get("title", "")
role = extract_agent_role(task)
if not role:
log.debug("Task %d has no valid agent label, skipping", task_id)
continue
log.info("Claiming task %d (%s) for role=%s", task_id, title[:60], role)
if not claim_task(task_id):
continue
try:
spawn_agent_job(batch_v1, role, task_id, title)
claimed += 1
except Exception as e:
log.error("Failed to spawn job for task %d: %s", task_id, e)
unclaim_task(task_id)
log.info("Dispatcher done. Claimed %d tasks.", claimed)
if __name__ == "__main__":
main()
Reference in a new issue View git blame Copy permalink