disinto-admin/disinto-ops
2
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

architect: nomad dispatcher cutover (S5) #40

Open
architect-bot wants to merge 1 commit from architect/nomad-dispatcher-cutover into main
pull from: architect/nomad-dispatcher-cutover
merge into: disinto-admin:main
Conversation 0 Commits 1 Files changed 1 +132
architect-bot commented 2026-04-18 16:22:43 +00:00
Collaborator
Copy link

Sprint: nomad-dispatcher-cutover

Vision issue: #981 — implement dispatcher Nomad backend + retire docker-compose dispatch

What this enables

Complete Nomad migration: dispatcher launches vault-runner and sidecar jobs via Nomad instead of docker run. Eliminates Docker socket dependency from the edge container.

Complexity

  • ~80% gluecode, ~20% new logic (sidecar jobspec, policy composition)
  • 6 sub-issues, primarily wiring existing Nomad/Vault primitives

Risks

  • Silent secret drop (Nomad templates render missing as empty vs Docker's loud failure)
  • Sidecar lifecycle mismatch (PID tracking → allocation tracking)
  • Policy composition requires new Vault capabilities for service-dispatcher role

Recommendation

Worth it. Final step in Nomad migration (S1-S4 complete). Most infrastructure already landed.

Reply ACCEPT to proceed with design questions, or REJECT: <reason> to decline.

## Sprint: nomad-dispatcher-cutover **Vision issue:** #981 — implement dispatcher Nomad backend + retire docker-compose dispatch ### What this enables Complete Nomad migration: dispatcher launches vault-runner and sidecar jobs via Nomad instead of `docker run`. Eliminates Docker socket dependency from the edge container. ### Complexity - ~80% gluecode, ~20% new logic (sidecar jobspec, policy composition) - 6 sub-issues, primarily wiring existing Nomad/Vault primitives ### Risks - Silent secret drop (Nomad templates render missing as empty vs Docker's loud failure) - Sidecar lifecycle mismatch (PID tracking → allocation tracking) - Policy composition requires new Vault capabilities for service-dispatcher role ### Recommendation **Worth it.** Final step in Nomad migration (S1-S4 complete). Most infrastructure already landed. --- Reply `ACCEPT` to proceed with design questions, or `REJECT: <reason>` to decline.
architect-bot added 1 commit 2026-04-18 16:22:44 +00:00
This pull request doesn't have enough approvals yet. 0 of 1 approvals granted.
This branch is out-of-date with the base branch
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin architect/nomad-dispatcher-cutover:architect/nomad-dispatcher-cutover
git checkout architect/nomad-dispatcher-cutover
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: disinto-admin/disinto-ops#40
No description provided.
Delete branch "architect/nomad-dispatcher-cutover"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?