refactor(project-management): overhaul auth flow and rename handover skills#181
Draft
asthabh23 wants to merge 8 commits into
Draft
refactor(project-management): overhaul auth flow and rename handover skills#181asthabh23 wants to merge 8 commits into
asthabh23 wants to merge 8 commits into
Conversation
…login to support all content sources
- Rename authoring → handover-author, development → handover-developer, admin → handover-admin
- Auth skill now uses admin.hlx.page/login/{org}/{site}, captures token from auth_token cookie on login completion
- All admin.hlx.page API calls use x-auth-token header
- DA content operations (admin.da.live) retain separate Adobe IMS Bearer auth
- Token file stores both authToken (admin.hlx.page) and imsToken (DA) in ~/.aem/ims-token.json
- Tested against DA, Google Drive, and SharePoint content sources
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- admin.hlx.page/login/{org} works without site name
- User can provide org name or a preview/live URL (org is parsed from it)
- Removed unnecessary site dependency from auth flow
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
… all skills - Fix token ordering in handover-author, handover-developer, handover-admin - Add missing x-auth-token header to unauthenticated sites.json calls - Correct "cookie" wording to "header" in ops SKILL.md - Fix token storage table description in auth SKILL.md Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…nd skill namespace rename
- Move token storage from ~/.aem/ to .claude-plugin/project-config.json
- Route auth through /auth/{provider} instead of /login/{org} to support
Microsoft, Google, and Adobe identity providers based on content source
- Unify all APIs (admin.hlx.page, admin.da.live, Config Service) on
x-auth-token header, removing separate IMS/Bearer flow
- Add org validation step in handover orchestrator with retry loop
- Fix parallel agent execution to read SKILL.md directly instead of
invoking Skill tool (resolves permission prompt issue)
- Rename skill namespace from project-management:* to aem-project-management:*
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…andover context only Auth skill saves tokens to ~/.aem/ims-token.json (user-level, shared), reads authProvider from .claude-plugin/project-config.json when set by handover orchestrator. Handover stores only project context (org, contentSource, authProvider) in project-config — no token fields. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…ntent source question
- Auth skill uses /login/{org}/{site}/main which auto-redirects to the
correct identity provider. Resolves org from project-config or
ops-config, site from git remote or ops-config.
- Ops skill asks for preview/live URL upfront to get both org and site
in one question. Saves both to ~/.aem/ops-config.json.
- Handover orchestrator simplified: project-config stores only org and
allGuides flag. Site derived from git remote.
- Removes authProvider/contentSource fields from project-config entirely.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…ogin message Removes Playwright dependency entirely — uses a local HTTP callback server instead. The user's real browser handles login, and clicking "Send" delivers the token via POST to localhost. Also adds prominent user-facing instruction before launching the browser. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Tessl Skill Lint
|
- Add explicit "Use when" clause to handover-admin/author/developer descriptions - Remove redundant emphasis patterns (❌/✅ lists,⚠️ warnings, CRITICAL PATH sections) - Add inline API validation after sites.json calls with immediate error feedback - Extract 230-line developer guide template to resources/developer-guide-template.md (brings handover-developer under 500-line hard limit, was 609) - Move ops security/confirmation rules to resources/security.md - Move ops sensitive data handling to resources/sensitive.md - Move ops error handling to resources/errors.md - Remove Intent Detection Patterns section from ops (duplicated routing table) - Trim handover orchestrator by ~40% (remove MANDATORY RULES, CRITICAL PATH, Benefits of parallel execution, and verbose rationale blocks) - Restore Success Criteria tables to handover-admin/author/developer Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
/login/{org}/{site}/main, eliminating the content source question.~/.aem/ims-token.json(user-level, shared across projects).project-config.jsonstores only handover context (org, allGuides flag), not token fields.authoring→handover-author,development→handover-developer,admin→handover-adminfor clearer namespace alignment.x-auth-tokenheaders added; parallel agent execution reads SKILL.md directly instead of invoking Skill tool.Test plan
~/.aem/ims-token.json/login/{org}/{site}/mainproject-config.jsoncontains only org/allGuides (no token fields)handover-author,handover-developer,handover-adminskills resolve correctly under new namesops-config.json🤖 Generated with Claude Code