diff --git a/.github/workflows/deploy_preview.yml b/.github/workflows/__deploy_preview.yml__
similarity index 100%
rename from .github/workflows/deploy_preview.yml
rename to .github/workflows/__deploy_preview.yml__
diff --git a/.github/workflows/deploy_prod.yml b/.github/workflows/__deploy_prod.yml__
similarity index 100%
rename from .github/workflows/deploy_prod.yml
rename to .github/workflows/__deploy_prod.yml__
diff --git a/.github/workflows/_deploy_prod.yml_ b/.github/workflows/_deploy_prod.yml_
deleted file mode 100644
index f9a2a9c..0000000
--- a/.github/workflows/_deploy_prod.yml_
+++ /dev/null
@@ -1,27 +0,0 @@
-name: Release to CloudFlare Prod
-
-on:
- push:
- branches:
- - prod
-
-permissions:
- contents: write
- issues: write
- pull-requests: write
-
-jobs:
-
- deploy_prod:
- runs-on: ubuntu-latest
- permissions:
- contents: read
- deployments: write
- name: Deploy to DeployStack.io
- environment:
- name: 'Production'
- url: https://deploystack.io/docs
- steps:
- - name: Checkout
- uses: actions/checkout@v4
- - run: echo "Executing webhook to deploy"
\ No newline at end of file
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 7d110cd..65cefce 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -34,10 +34,7 @@ jobs:
run: npm run lint:md
- name: Run Lint Links
- run: npm run lint:links
-
- - name: Run Lint Links
- run: npm run build
+ run: npm run lint:links
release:
name: Run Release
diff --git a/README.md b/README.md
index 268b310..8a13f21 100644
--- a/README.md
+++ b/README.md
@@ -1,128 +1,264 @@
# DeployStack Documentation
-This repository contains the official documentation site for [DeployStack](https://deploystack.io/docs/), The Complete MCP Management Platform, built with [fumadocs](https://fumadocs.vercel.app/). Visit [deploystack.io](https://deploystack.io) to learn more about our platform.
+This repository contains the official documentation for [DeployStack](https://docs.deploystack.io/) - The First MCP-as-a-Service Platform. Built with [Mintlify](https://mintlify.com), our documentation provides a modern, searchable experience for developers building with DeployStack's satellite infrastructure.
+
+Visit [docs.deploystack.io](https://docs.deploystack.io) to explore the live documentation.
## Technology Stack
-- **Framework**: Next.js 15 with App Router
-- **Documentation**: Fumadocs for modern docs experience
+- **Documentation Platform**: Mintlify
- **Content**: MDX (Markdown + React components)
-- **Styling**: Tailwind CSS
-- **Language**: TypeScript
+- **Deployment**: Automatic deployment via Mintlify platform
## Project Structure
```text
.
-├── docs/ # Documentation content (MDX files)
-│ ├── development/ # Development documentation
-│ │ ├── backend/ # Backend development guides
-│ │ ├── frontend/ # Frontend development guides
-│ │ └── gateway/ # Gateway architecture & implementation
-│ ├── self-hosted/ # Self-hosting guides
-│ ├── deploystack/ # Core DeployStack documentation
-│ ├── assets/ # Images and static assets
-│ └── ... # MCP guides and configuration docs
-├── app/ # Next.js app directory (fumadocs framework)
-├── lib/ # Documentation utilities & components
-└── source.config.ts # Fumadocs configuration
+├── general/ # Getting started and core concepts
+│ ├── architecture.mdx # System architecture overview
+│ ├── teams.mdx # Team management
+│ ├── roles.mdx # Role-based access control
+│ └── mcp-*.mdx # MCP server guides
+├── self-hosted/ # Self-hosting guides
+│ ├── quick-start.mdx # Quick start guide
+│ ├── setup.mdx # Installation instructions
+│ └── docker-compose.mdx # Docker deployment
+├── development/ # Development documentation
+│ ├── frontend/ # Frontend development guides
+│ │ ├── index.mdx # Frontend overview
+│ │ ├── ui/ # UI system documentation
+│ │ └── ...
+│ ├── backend/ # Backend development guides
+│ │ ├── index.mdx # Backend overview
+│ │ ├── api/ # API documentation
+│ │ ├── database/ # Database guides
+│ │ └── ...
+│ └── satellite/ # Satellite development guides
+│ ├── index.mdx # Satellite overview
+│ ├── architecture.mdx
+│ └── ...
+├── assets/ # Images and static assets
+│ └── images/
+│ ├── logo/ # Logo files
+│ └── ...
+├── docs.json # Mintlify configuration
+├── index.mdx # Documentation home page
+└── README.md # This file
```
-**Note**: The `app/` directory contains the fumadocs framework setup and should not be modified for content changes. All documentation content goes in the `docs/` directory.
+## Local Development
-## Development Setup
+Mintlify provides a local development CLI for previewing documentation changes:
```bash
-# Install dependencies
-npm ci
+# Install Mintlify CLI globally (one-time setup)
+npm install -g mintlify
+
+# Start local development server
+mintlify dev
+
+# The documentation will be available at http://localhost:3000
+```
+
+The local server provides:
+- Hot reloading for instant content updates
+- Navigation preview
+- Component rendering
+- Dark/light mode testing
+
+## Writing Documentation
+
+### Content Format
+
+All documentation is written in **MDX** (Markdown with JSX components):
-# Start documentation development server (http://localhost:3000)
-npm run dev
+```mdx
+---
+title: Your Page Title
+description: A brief description of the page content
+---
-# Build documentation site for production
-npm run build
+# Your Page Title
-# Start production server
-npm run start
+Write your content here using standard Markdown syntax.
-# Validate documentation quality
-npm run lint:md # Markdown linting
-npm run lint:links # Link validation
+
+Use Mintlify components for callouts and special content blocks.
+
+
+## Section Header
+
+More content here...
```
-## Contributing Guidelines
+### Mintlify Components
-### Writing Documentation
+Mintlify provides built-in components for enhanced documentation:
-1. **Content Format**: Write all documentation in MDX format (`.mdx` files)
-2. **Location**: Store all content in the `docs/` directory
-3. **Navigation**: Use `meta.json` files in each directory to control navigation structure
-4. **Assets**: Place images in `docs/assets/images/` with appropriate subdirectories
-5. **Links**: Use absolute paths for all references:
- - Documentation: `/docs/development/gateway/`
- - Images: `/docs/assets/images/example.png`
-6. **Brand Colors**: Use the primary color (`text-primary`, `bg-primary`) for consistency - avoid introducing other accent colors
+**Callouts:**
+```mdx
+General information
+Important information
+Helpful tips
+Important warnings
+Success status
+Critical warnings
+```
-### Navigation Structure
+**Code Groups:**
+```mdx
+
+```bash macOS/Linux
+npm install
+```
-Fumadocs automatically generates navigation from your file structure and `meta.json` files:
+```powershell Windows
+npm install
+```
+
+```
-- Each directory can have a `meta.json` file to configure its appearance in navigation
-- File-based routing: `docs/deploystack/index.mdx` becomes `/docs/deploystack`
-- Nested directories create hierarchical navigation
+**Cards:**
+```mdx
+
+
+ Begin your DeployStack journey
+
+
+ Explore the API documentation
+
+
+```
-### Adding New Content
+**Steps:**
+```mdx
+
+
+ Run `npm install` to install required packages
+
+
+ Set up your environment variables
+
+
+ Run `npm run dev` to start the development server
+
+
+```
-1. Create new `.mdx` files in the appropriate `docs/` subdirectory
-2. Add or update `meta.json` files to control navigation
-3. Follow established naming conventions
-4. Ensure all links use absolute paths
-5. Test locally with `npm run dev`
+### Navigation Configuration
-### Asset Management
+Navigation is controlled via `docs.json`:
-For diagrams and images:
+- **Tabs**: Top-level navigation sections (General, Self Hosted, Frontend Development, etc.)
+- **Groups**: Subsections within each tab
+- **Pages**: Individual documentation pages
-1. Use [drow.io](https://app.diagrams.net/) for creating diagrams
-2. Export as PNG or WebP format
-3. Optimize images for web (compress file sizes)
-4. Place files in appropriate subdirectories under `docs/assets/images/`
+To add a new page:
+1. Create the `.mdx` file in the appropriate directory
+2. Add the page path to `docs.json` under the relevant group
+3. Test locally with `mintlify dev`
-## Deployment Process
+### Content Guidelines
-Our deployment uses a two-branch workflow:
+**File Naming:**
+- Use kebab-case: `my-new-page.mdx`
+- Index files represent the directory: `index.mdx`
-- **`main`**: Development branch for content updates and testing
-- **`prod`**: Production branch that deploys to [deploystack.io/docs](https://deploystack.io/docs)
+**Links:**
+- Use absolute paths from documentation root: `/development/backend/api/index`
+- Mintlify automatically handles `.mdx` extensions
+
+**Images:**
+- Store in `assets/images/` with logical subdirectories
+- Reference with absolute paths: `/assets/images/logo/dark.webp`
+- Optimize images before committing (compress file sizes)
+
+**Frontmatter:**
+```yaml
+---
+title: Page Title (required)
+description: Page description for SEO (required)
+---
+```
+
+## Asset Management
+
+### Images and Diagrams
+
+1. **Diagrams**: Create with [draw.io](https://app.diagrams.net/)
+2. **Export Format**: PNG or WebP
+3. **Optimization**: Compress images before committing
+4. **Location**: Store in `assets/images/` with appropriate subdirectories
+
+## Contributing Guidelines
### Workflow
-1. Create feature branches from `main`
-2. Submit pull requests to `main`
-3. After approval and merge to `main`, changes are automatically validated
-4. Merge to `prod` to deploy to production
+1. **Fork or Branch**: Create a feature branch from `main`
+2. **Write Content**: Add or update documentation in MDX format
+3. **Test Locally**: Run `mintlify dev` to preview changes
+4. **Submit PR**: Create a pull request to `main` branch
+5. **Review**: Wait for review and address feedback
+6. **Merge**: Changes are automatically deployed after merge
-### Continuous Integration
+### Pull Request Guidelines
-The CI pipeline includes:
+- Write clear commit messages
+- Test all links and navigation
+- Verify code examples are correct
+- Check for spelling and grammar
+- Ensure images load correctly
+- Preview on mobile and desktop layouts
-- Markdown linting and validation
-- Link checking to prevent broken links
-- Automatic fumadocs build verification
-- Production deployment triggers
+### Documentation Standards
-## Local Development
+**Writing Style:**
+- Write in clear, concise language
+- Use active voice
+- Address the reader directly ("you")
+- Avoid jargon without explanation
+- Include code examples where helpful
+
+**Code Examples:**
+- Include complete, working examples
+- Add comments for clarity
+- Show expected output when relevant
+- Test all code before committing
+
+**Structure:**
+- Start with overview/introduction
+- Progress from basic to advanced
+- Use descriptive section headers
+- Include related documentation links at the end
+
+## Deployment
+
+### Automatic Deployment
+
+Mintlify automatically deploys documentation when changes are merged to `main`:
+
+- **Trigger**: Push or merge to `main` branch
+- **Build**: Mintlify builds the documentation
+- **Deploy**: Changes go live at docs.deploystack.io
+- **CDN**: Content served via Mintlify's global CDN
+
+### Branch Strategy
+
+- **`main`**: Production branch that deploys to docs.deploystack.io
+- **Feature Branches**: Create from `main` for new content or updates
+- **Pull Requests**: All changes must go through PR review
-When running `npm run dev`, the documentation site will be available at `http://localhost:3000`. The fumadocs framework provides:
+## Need Help?
-- Hot reloading for content changes
-- Automatic navigation generation
-- Built-in search functionality
-- Responsive design
-- Dark/light mode support
+- 📚 **Documentation**: [docs.deploystack.io](https://docs.deploystack.io)
+- 💬 **Discord**: [Join our community](https://discord.gg/42Ce3S7b3b)
+- 🐛 **Issues**: [GitHub Issues](https://github.com/deploystackio/documentation/issues)
+- 🌐 **Website**: [deploystack.io](https://deploystack.io)
+- 🚀 **Dashboard**: [cloud.deploystack.io](https://cloud.deploystack.io)
-## 💬 Need Help?
+## Links
-- 📚 Check our [Documentation](https://deploystack.io/docs)
-- 🎯 Report issues on [GitHub](https://github.com/deploystackio/documentation/issues)
-- 📧 Join our Discord at [https://discord.gg/UjFWwByB](https://discord.gg/UjFWwByB)
+- [Mintlify Documentation](https://mintlify.com/docs)
+- [MDX Documentation](https://mdxjs.com/)
+- [DeployStack Main Repository](https://github.com/deploystackio/deploystack)
+- [DeployStack Changelog](https://deploystack.io/changelog)
diff --git a/_DEPRECATED/gateway/api.mdx b/_DEPRECATED/gateway/api.mdx
deleted file mode 100644
index 719b609..0000000
--- a/_DEPRECATED/gateway/api.mdx
+++ /dev/null
@@ -1,146 +0,0 @@
----
-title: Gateway API Communication
-description: Backend communication patterns and URL management for CLI commands
-sidebar: API
-icon: Globe
----
-
-# Gateway API Communication
-
-The DeployStack Gateway CLI manages backend communication automatically through stored configuration and credential management. This guide covers how CLI commands interact with the backend and manage different environments.
-
-## Backend URL Management
-
-### Automatic URL Storage
-
-When users authenticate with the gateway, the backend URL is automatically stored alongside their credentials. This eliminates the need to specify the backend URL for every command after initial login.
-
-**Storage Location:**
-- **Primary**: macOS Keychain, Windows Credential Manager, or Linux Secret Service
-- **Fallback**: Encrypted file at `~/.deploystack/credentials.enc`
-
-The backend URL is stored as part of the `StoredCredentials` object and persists across CLI sessions.
-
-### URL Resolution Priority
-
-CLI commands resolve the backend URL using this priority order:
-
-1. **Command-line override** - `--url` flag when provided
-2. **Stored URL** - URL saved during authentication
-3. **Default fallback** - `https://cloud.deploystack.io`
-
-This approach supports both development workflows with local backends and production usage seamlessly.
-
-### Environment Detection
-
-The gateway automatically adapts behavior based on the backend URL:
-
-**Production Mode** (`https://cloud.deploystack.io`):
-- Strict HTTPS enforcement
-- Full SSL certificate validation
-- Standard error messages
-
-**Development Mode** (localhost or custom URLs):
-- HTTP connections allowed for localhost
-- Development-specific error messages
-- Additional debugging context
-
-## Command Implementation Patterns
-
-### Authentication Check
-
-All API-dependent commands should verify authentication before making requests. The credential storage handles token validation and expiration checking automatically.
-
-### Backend URL Usage
-
-Commands should retrieve stored credentials and use the embedded backend URL rather than requiring URL parameters. The URL resolution pattern ensures consistency across all commands.
-
-### Error Handling
-
-Different backend environments may return different error formats. Commands should handle both production and development error responses gracefully.
-
-## API Client Configuration
-
-### Credential Integration
-
-The API client accepts stored credentials and automatically extracts the appropriate backend URL. No additional URL configuration is required when credentials contain the backend information.
-
-### Request Headers
-
-All authenticated requests include:
-- Bearer token authentication
-- User-Agent identification
-- Content-Type specification
-
-### Timeout Handling
-
-Network operations include appropriate timeouts with different values for various operation types:
-- OAuth callback operations
-- API requests
-- Token refresh operations
-
-## Development Workflow
-
-### Local Backend Testing
-
-Developers working with local backends can authenticate once and have all commands automatically use the development server:
-
-The authentication flow stores the development URL, and subsequent commands use it automatically without additional configuration.
-
-### URL Override Capability
-
-Commands maintain `--url` override options for testing different backends or switching environments temporarily without re-authentication.
-
-### Environment Switching
-
-To switch between environments, users can either:
-- Re-authenticate with a different backend URL
-- Use command-line URL overrides for temporary testing
-
-## Security Considerations
-
-### URL Validation
-
-Backend URLs are validated during authentication to ensure they meet security requirements for the target environment.
-
-### Credential Isolation
-
-Each backend URL maintains separate credential storage, preventing credential leakage between development and production environments.
-
-### HTTPS Enforcement
-
-Production environments enforce HTTPS communication, while development environments allow HTTP for localhost testing.
-
-## Error Response Handling
-
-### Network Errors
-
-Commands should provide helpful error messages that include the backend URL being used, especially for development environments where connectivity issues are common.
-
-### Authentication Errors
-
-Token expiration and invalid token errors should guide users to re-authenticate, preserving their backend URL preference.
-
-### Backend-Specific Errors
-
-Different backend versions or configurations may return varying error formats. Commands should handle these gracefully and provide consistent user experience.
-
-## Integration Guidelines
-
-### New Command Development
-
-When developing new CLI commands that interact with the backend:
-
-1. Use the credential storage system for authentication
-2. Extract backend URL from stored credentials
-3. Implement URL override options for flexibility
-4. Handle environment-specific error cases
-5. Provide clear error messages with backend context
-
-### API Client Usage
-
-The DeployStack API client handles most backend communication complexity automatically. Commands should focus on business logic rather than HTTP details.
-
-### Testing Considerations
-
-Test commands against both production and development backends to ensure consistent behavior across environments. The URL storage system supports this testing workflow naturally.
diff --git a/_DEPRECATED/gateway/caching-system.mdx b/_DEPRECATED/gateway/caching-system.mdx
deleted file mode 100644
index bb5da8e..0000000
--- a/_DEPRECATED/gateway/caching-system.mdx
+++ /dev/null
@@ -1,219 +0,0 @@
----
-title: Gateway Caching System
-description: Team-aware tool caching architecture that enables fast gateway startup and automatic tool discovery across MCP servers
-sidebar: Caching System
-icon: Database
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Zap, Users, RefreshCw, Shield, Clock, HardDrive } from 'lucide-react';
-
-# Gateway Caching System
-
-The DeployStack Gateway implements a sophisticated team-aware caching system that dramatically improves performance by pre-discovering and caching tools from MCP servers. This enables instant gateway startup and seamless tool availability for development teams.
-
-## Architecture Overview
-
-The caching system operates on a **cache-as-manifest philosophy** where tools are proactively discovered and stored locally, serving as both a performance optimization and a configuration manifest that defines what should be running versus what is actually running in the persistent background process model.
-
-## Core Concepts
-
-
- }
- title="Fast Gateway Startup"
- >
- Cached tools enable instant gateway startup without waiting for MCP server discovery
-
-
- }
- title="Team-Aware Isolation"
- >
- Each team's tools are cached separately with complete isolation and security boundaries
-
-
- }
- title="Automatic Discovery"
- >
- Tools are automatically discovered and cached when switching teams or refreshing configurations
-
-
- }
- title="Secure Storage"
- >
- Cache files are stored securely with team-specific access controls and encryption
-
-
- }
- title="Intelligent Invalidation"
- >
- Cache is automatically invalidated based on configuration changes and time-based policies
-
-
- }
- title="Fallback Mechanisms"
- >
- Graceful fallback to cached data when live discovery fails or servers are unavailable
-
-
-
-## Cache Architecture
-
-### Storage Structure
-The caching system uses a hierarchical file-based storage approach:
-
-- **Base Directory**: `~/.deploystack/cache/`
-- **Team Isolation**: `teams/{teamId}/`
-- **Cache Files**: `tools-cache.json` per team
-
-This structure ensures complete isolation between teams while providing fast local access to cached tool information.
-
-### Cache Content
-Each team's cache contains:
-
-- **Tool Definitions**: Complete tool schemas with input parameters and descriptions
-- **Server Metadata**: Information about which MCP server provides each tool
-- **Namespaced Names**: Tools are namespaced as `serverName-toolName` for conflict resolution
-- **Discovery Timestamps**: When each tool was last discovered and validated
-- **Configuration Hashes**: Checksums to detect when server configurations change
-
-## Tool Discovery Workflow
-
-### Automatic Discovery Triggers
-Tool discovery is automatically triggered during:
-
-- **Team Switching**: When developers switch to a different team context
-- **Configuration Refresh**: When MCP server configurations are updated from the cloud
-- **Manual Refresh**: When developers explicitly request tool discovery
-- **Cache Invalidation**: When cached data becomes stale or invalid
-
-### Discovery Process
-The discovery workflow follows these steps:
-
-1. **Server Enumeration**: Identify all MCP servers configured for the team
-2. **Process Communication**: Connect to already-running MCP server processes as described in [Gateway Process Management](/development/gateway/process-management)
-3. **Tool Interrogation**: Query each running server for its available tools using MCP protocol
-4. **Schema Extraction**: Extract complete tool schemas including parameters and descriptions
-5. **Namespacing**: Apply server-specific namespacing to prevent tool name conflicts
-6. **Cache Storage**: Store discovered tools in the team-specific cache file
-
-**Note**: In the persistent background process model, tool discovery communicates with already-running MCP servers rather than spawning processes specifically for discovery.
-
-### Centralized Management
-All tool discovery operations are managed through a centralized `ToolDiscoveryManager` that:
-
-- **Eliminates Code Duplication**: Single source of truth for all discovery logic
-- **Provides Consistent Behavior**: Uniform discovery behavior across all Gateway components
-- **Handles Error Recovery**: Robust error handling with fallback mechanisms
-- **Manages Progress Feedback**: Consistent user feedback during discovery operations
-
-## Cache Invalidation Strategy
-
-### Time-Based Invalidation
-Cache entries are automatically invalidated based on:
-
-- **Maximum Age**: Default 24-hour time-to-live for cached tool information
-- **Configuration Changes**: Immediate invalidation when server configurations change
-- **Team Context Changes**: Cache clearing when switching between teams
-
-### Configuration-Based Invalidation
-The system detects configuration changes through:
-
-- **Server Configuration Hashing**: Checksums of server spawn commands and environment variables
-- **Team Membership Changes**: Detection of team member additions or removals
-- **Permission Updates**: Changes to team-based access policies
-
-### Manual Invalidation
-Developers and administrators can manually invalidate cache through:
-
-- **CLI Commands**: Explicit cache clearing and refresh commands
-- **Team Switching**: Automatic cache refresh when switching team contexts
-- **Configuration Updates**: Cache refresh when updating MCP server configurations
-
-## Performance Optimization
-
-### Cache-First Strategy
-The Gateway prioritizes cached data for optimal performance:
-
-- **Instant Tool Exposure**: Cached tools are immediately available to MCP clients
-- **Background Refresh**: Cache updates happen asynchronously without blocking operations
-- **Predictive Loading**: Frequently-used tools are kept warm in cache
-- **Lazy Discovery**: New servers are discovered on-demand when first accessed
-
-### Fallback Mechanisms
-When live discovery fails, the system provides graceful degradation:
-
-- **Cached Tool Fallback**: Use previously cached tools when servers are unavailable
-- **Partial Discovery**: Continue with available tools even if some servers fail
-- **Error State Caching**: Cache error states to avoid repeated failed discovery attempts
-- **Recovery Strategies**: Automatic retry with exponential backoff for failed discoveries
-
-## Team Isolation and Security
-
-### Access Control
-Each team's cache is completely isolated through:
-
-- **Directory Separation**: Team-specific cache directories prevent cross-team access
-- **File Permissions**: Operating system-level permissions restrict cache file access
-- **Encryption**: Sensitive cache data is encrypted using team-specific keys
-- **Audit Logging**: All cache operations are logged for security and compliance
-
-### Data Privacy
-The caching system ensures data privacy by:
-
-- **Local Storage Only**: Cache files are stored locally and never transmitted
-- **Credential Exclusion**: No sensitive credentials are stored in cache files
-- **Metadata Only**: Only tool schemas and metadata are cached, not actual data
-- **Automatic Cleanup**: Cache files are automatically cleaned up when teams are removed
-
-## Integration Points
-
-The caching system integrates seamlessly with other Gateway components:
-
-- **[MCP Configuration Management](/development/gateway/mcp)**: Uses team configurations to determine which servers to discover
-- **[Gateway Process Management](/development/gateway/process-management)**: Coordinates with process spawning for tool discovery
-- **[Gateway Project Structure](/development/gateway/structure)**: Implements the centralized architecture through the utils layer
-- **HTTP Proxy Server**: Provides cached tool information for immediate client responses
-
-## Cache Management Operations
-
-### Developer Commands
-The Gateway provides several commands for cache management:
-
-- **Status Checking**: View current cache status and tool counts
-- **Manual Refresh**: Force refresh of cached tools from all servers
-- **Cache Clearing**: Remove cached data for troubleshooting
-- **Discovery Testing**: Validate tool discovery for specific servers
-
-### Administrative Operations
-Enterprise administrators can manage caching through:
-
-- **Team-Wide Refresh**: Refresh cache for all team members
-- **Policy Enforcement**: Apply caching policies across teams
-- **Usage Analytics**: Monitor cache hit rates and discovery patterns
-- **Troubleshooting**: Diagnose cache-related issues and performance problems
-
-## Monitoring and Observability
-
-### Cache Metrics
-The system tracks comprehensive caching metrics:
-
-- **Cache Hit Rates**: Percentage of requests served from cache vs. live discovery
-- **Discovery Success Rates**: Success/failure rates for tool discovery operations
-- **Cache Size**: Storage usage and tool counts per team
-- **Refresh Frequency**: How often cache is refreshed and invalidated
-
-### Performance Indicators
-Key performance indicators include:
-
-- **Gateway Startup Time**: Time from start to tool availability
-- **Tool Discovery Duration**: Time required to discover tools from each server
-- **Cache Effectiveness**: Reduction in discovery time due to caching
-- **Error Recovery Time**: Time to recover from failed discovery operations
-
-This caching system ensures that the DeployStack Gateway provides instant tool availability while maintaining the security, isolation, and performance requirements of enterprise development teams.
diff --git a/_DEPRECATED/gateway/device-management.mdx b/_DEPRECATED/gateway/device-management.mdx
deleted file mode 100644
index 6e75ec9..0000000
--- a/_DEPRECATED/gateway/device-management.mdx
+++ /dev/null
@@ -1,178 +0,0 @@
----
-title: Device Management Architecture
-description: Technical implementation of device detection, caching, and management in the DeployStack Gateway CLI
-sidebar: Device Management
----
-
-# Gateway Device Management Architecture
-
-The DeployStack Gateway implements a sophisticated device management system that balances security, performance, and user experience. This document explains the technical architecture, design decisions, and implementation details from a developer perspective.
-
-## Architecture Overview
-
-The Gateway's device management system consists of three core components:
-
-**Device Detection System**
-- Hardware fingerprinting for unique device identification
-- System information collection for compatibility and analytics
-- Lightweight signature generation for cache validation
-
-**Device Information Cache**
-- High-performance caching to eliminate redundant device detection
-- Secure storage using OS keychain with encrypted fallback
-- Integrity validation and automatic cache invalidation
-
-**OAuth2 Integration**
-- Device registration during authentication flow
-- Device information included in token exchange
-- No separate device management endpoints required
-
-## The Performance Problem We Solved
-
-### Original Challenge
-
-Before implementing device caching, every Gateway command suffered from a significant performance bottleneck:
-
-- **Device fingerprinting took 3+ seconds** on every command execution
-- Commands like `deploystack refresh` and `deploystack mcp` felt sluggish
-- Users experienced poor CLI responsiveness
-- System resources were wasted on redundant hardware detection
-
-### Root Cause Analysis
-
-Device fingerprinting is inherently expensive because it requires:
-- Network interface enumeration to collect MAC addresses
-- System information queries across multiple OS APIs
-- Cryptographic hashing of collected hardware data
-- File system operations to gather system details
-
-This expensive operation was happening on **every single command** because device information is required for:
-- Backend API authentication and device tracking
-- Security validation and audit logging
-- Configuration management and team analytics
-
-## Device Caching Architecture
-
-### Design Principles
-
-**Performance First**
-- Cache-first architecture with graceful fallback
-- 30x performance improvement (3s → 0.1s)
-- Persistent cache across logout/login sessions
-
-**Security Without Compromise**
-- Hardware signature validation for cache integrity
-- Automatic invalidation on hardware changes
-- Encrypted storage with integrity checksums
-
-**Developer Experience**
-- Completely transparent to end users
-- No manual cache management required
-- Automatic background operation
-
-### Cache Storage Strategy
-
-We implemented a dual-storage approach for maximum reliability:
-
-**Primary: OS Keychain Storage**
-- macOS: Keychain Services
-- Windows: Credential Manager
-- Linux: Secret Service API
-- Benefits: Native OS security, encrypted at rest, user-scoped access
-
-**Fallback: Encrypted File Storage**
-- AES-256-GCM encryption with derived keys
-- Stored in `~/.deploystack/device-cache.enc`
-- File permissions restricted to user only (0o600)
-- Used when keychain access fails or is unavailable
-
-### Cache Validation System
-
-**Hardware Signature Validation**
-- Lightweight hardware signature (not full fingerprint)
-- Detects major hardware changes without expensive operations
-- Automatically invalidates cache when hardware changes detected
-
-**Integrity Protection**
-- SHA256 checksums with random salts prevent tampering
-- Cache version tracking for schema evolution
-- Automatic cleanup of corrupted or invalid cache entries
-
-**Time-Based Expiration**
-- 30-day cache lifetime for security
-- Automatic renewal during normal usage
-- Configurable expiration for different deployment scenarios
-
-## Device Detection Implementation
-
-### Hardware Fingerprinting Process
-
-**Network Interface Collection**
-- Enumerate all network interfaces
-- Extract MAC addresses from physical interfaces
-- Filter out virtual and temporary interfaces
-- Handle cross-platform interface naming differences
-
-**System Information Gathering**
-- Operating system type and version
-- System architecture (x64, arm64, etc.)
-- Hostname and system identifiers
-- Node.js runtime version for compatibility
-
-**Fingerprint Generation**
-- Combine hardware identifiers in deterministic order
-- Apply cryptographic hashing (SHA256)
-- Generate stable, unique device identifier
-- Ensure consistency across reboots and minor system changes
-
-### Lightweight Hardware Signatures
-
-For cache validation, we use a much faster "hardware signature" instead of full fingerprinting:
-
-**Why Separate Signatures?**
-- Full fingerprinting: 3+ seconds, comprehensive hardware analysis
-- Hardware signature: \<100ms, basic system identifiers
-- Signature detects major changes (new hardware, different machine)
-- Signature allows minor changes (software updates, network changes)
-
-**Signature Components**
-- Primary MAC address of main network interface
-- System hostname and basic OS identifiers
-- Minimal set of stable hardware characteristics
-- Fast to compute, sufficient for cache validation
-
-## Security Architecture
-
-### Threat Model Considerations
-
-**Cache Tampering Protection**
-- SHA256 checksums with random salts
-- Integrity validation on every cache access
-- Automatic invalidation of corrupted cache
-- Secure key derivation for encryption
-
-**Hardware Change Detection**
-- Automatic cache invalidation when hardware changes
-- Prevents cache reuse on different machines
-- Detects both major and minor hardware modifications
-- Balances security with usability
-
-**Storage Security**
-- OS keychain provides encrypted storage
-- Fallback encryption uses industry-standard AES-256-GCM
-- File permissions restrict access to user only
-- No plaintext device information stored
-
-### Privacy Considerations
-
-**Minimal Data Collection**
-- Only collect device information necessary for functionality
-- No tracking or analytics data in device cache
-- User control over device naming and identification
-- Clear data retention and cleanup policies
-
-**Data Isolation**
-- Device cache is user-scoped and isolated
-- No cross-user cache sharing or access
-- Secure cleanup when users are removed
-- Audit trail separate from cached data
diff --git a/_DEPRECATED/gateway/enterprise-management.mdx b/_DEPRECATED/gateway/enterprise-management.mdx
deleted file mode 100644
index e77463c..0000000
--- a/_DEPRECATED/gateway/enterprise-management.mdx
+++ /dev/null
@@ -1,303 +0,0 @@
----
-title: Enterprise MCP Management
-description: How the Gateway transforms MCP servers into enterprise governance tools with toggleable controls
-sidebar: Enterprise Management
-icon: Building2
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Building2, ToggleLeft, Eye, Shield } from 'lucide-react';
-
-# Enterprise MCP Management
-
-The DeployStack Gateway transforms individual MCP servers into enterprise governance tools, presenting each server as a toggleable tool with comprehensive management capabilities for organizational control.
-
-## Business Context
-
-### The Enterprise Challenge
-Traditional MCP implementations expose individual tools from multiple servers, creating a complex landscape that's difficult to govern at scale. Enterprise organizations need:
-
-- **Visibility**: Clear overview of which MCP servers are available and active
-- **Control**: Ability to enable/disable entire MCP servers based on policy
-- **Governance**: Centralized management with audit trails
-- **Compliance**: Team-based access controls and usage monitoring
-
-### DeployStack Solution
-The Gateway addresses these challenges by presenting **MCP servers as tools** rather than exposing individual server tools, enabling enterprise governance while maintaining developer productivity.
-
-## Architecture Overview
-
-
- }
- title="Server-as-Tool Model"
- >
- Each MCP server appears as a single toggleable tool with rich metadata
-
-
- }
- title="Management Actions"
- >
- Enable, disable, and status operations for operational control
-
-
- }
- title="Enterprise Visibility"
- >
- Rich descriptions and metadata from secure catalog integration
-
-
- }
- title="Policy Enforcement"
- >
- Team-based access controls with centralized governance
-
-
-
-## Tool Transformation
-
-### From Individual Tools to Server Management
-**Traditional MCP Approach:**
-```json
-{
- "tools": [
- {"name": "brightdata__search", "description": "Search the web"},
- {"name": "brightdata__scrape", "description": "Scrape webpage content"},
- {"name": "calculator__add", "description": "Add two numbers"},
- {"name": "calculator__multiply", "description": "Multiply numbers"}
- ]
-}
-```
-
-**DeployStack Enterprise Approach:**
-```json
-{
- "tools": [
- {
- "name": "brightdata-mcp",
- "description": "brightdata-mcp MCP server - Web scraping and data collection",
- "inputSchema": {
- "type": "object",
- "properties": {
- "action": {
- "type": "string",
- "enum": ["enable", "disable", "status"]
- }
- }
- }
- },
- {
- "name": "calculator-server",
- "description": "calculator-server MCP server - Mathematical operations and calculations",
- "inputSchema": {
- "type": "object",
- "properties": {
- "action": {
- "type": "string",
- "enum": ["enable", "disable", "status"]
- }
- }
- }
- }
- ]
-}
-```
-
-## Management Actions
-
-### Enable Action
-**Purpose**: Activate an MCP server for use
-**Usage**: `{"action": "enable"}`
-
-**Process:**
-1. Validates server configuration from team catalog
-2. Spawns MCP server process with injected credentials
-3. Establishes stdio communication channel
-4. Returns operational status and process information
-
-**Response Example:**
-```json
-{
- "server": "brightdata-mcp",
- "action": "enabled",
- "status": "running",
- "message": "brightdata-mcp MCP server has been enabled and is running"
-}
-```
-
-### Disable Action
-**Purpose**: Deactivate a running MCP server
-**Usage**: `{"action": "disable"}`
-
-**Process:**
-1. Locates running MCP server process
-2. Gracefully terminates process with 5-second timeout
-3. Cleans up resources and communication channels
-4. Confirms successful shutdown
-
-**Response Example:**
-```json
-{
- "server": "brightdata-mcp",
- "action": "disabled",
- "status": "stopped",
- "message": "brightdata-mcp MCP server has been disabled"
-}
-```
-
-### Status Action (Default)
-**Purpose**: Retrieve comprehensive server information
-**Usage**: `{"action": "status"}` or no action parameter
-
-**Information Provided:**
-- Current operational status (running/stopped)
-- Server description from enterprise catalog
-- Runtime environment details
-- Performance metrics (uptime, message count, error count)
-- Process health information
-
-**Response Example:**
-```json
-{
- "server": "brightdata-mcp",
- "action": "status_check",
- "status": "running",
- "description": "Web scraping and data collection platform",
- "runtime": "nodejs",
- "message": "brightdata-mcp MCP server is running",
- "uptime": 1847293,
- "messageCount": 42,
- "errorCount": 0
-}
-```
-
-## Enterprise Benefits
-
-### Centralized Governance
-- **Policy Enforcement**: Administrators control which MCP servers are available per team
-- **Access Control**: Team-based permissions determine server availability
-- **Audit Trail**: All enable/disable actions logged for compliance
-- **Resource Management**: Centralized control over computational resources
-
-### Developer Experience
-- **Simplified Interface**: Developers see clean server names instead of complex tool hierarchies
-- **Rich Metadata**: Comprehensive descriptions help developers understand capabilities
-- **Operational Control**: Developers can manage server lifecycle as needed
-- **Status Transparency**: Clear visibility into server health and performance
-
-### Operational Excellence
-- **Resource Optimization**: Servers only run when needed, reducing resource consumption
-- **Error Isolation**: Server-level management isolates issues to specific services
-- **Performance Monitoring**: Built-in metrics for operational visibility
-- **Graceful Degradation**: Individual server failures don't impact other services
-
-## Metadata Integration
-
-### Catalog-Driven Descriptions
-Server descriptions are pulled from the enterprise catalog stored securely:
-
-```typescript
-// From team configuration
-const installation = teamConfig.installations.find(
- inst => inst.installation_name === serverName
-);
-
-const description = installation?.server?.description || '';
-
-// Resulting tool description
-const toolDescription = `${serverName} MCP server${description ? ` - ${description}` : ''}`;
-```
-
-### Rich Server Information
-Each server tool includes:
-- **Installation Name**: Clean, human-readable identifier
-- **Description**: Business context from enterprise catalog
-- **Runtime**: Technical environment (nodejs, python, go, etc.)
-- **Team Context**: Access permissions and policies
-- **Operational Metrics**: Performance and health data
-
-## Security and Compliance
-
-### Credential Management
-- **Secure Injection**: Credentials injected at process spawn time
-- **No Exposure**: Developers never see or handle credentials directly
-- **Centralized Control**: All credentials managed through enterprise catalog
-- **Audit Trail**: Credential usage tracked for compliance
-
-### Access Control
-- **Team-Based**: Server availability determined by team membership
-- **Policy-Driven**: Enterprise policies control server access
-- **Role-Based**: Different permissions for different team roles
-- **Centralized Management**: All access control managed through cloud control plane
-
-### Monitoring and Compliance
-- **Usage Tracking**: All server interactions logged and monitored
-- **Performance Metrics**: Operational data for capacity planning
-- **Error Reporting**: Centralized error tracking and alerting
-- **Compliance Reporting**: Audit trails for regulatory requirements
-
-## Implementation Workflow
-
-### Tool Discovery Flow
-1. **Client Request**: Development tool calls `tools/list`
-2. **Server Enumeration**: Gateway iterates through team's MCP server configurations
-3. **Metadata Enrichment**: Descriptions pulled from secure catalog
-4. **Tool Generation**: Each server becomes a management tool
-5. **Response**: Clean list of server management tools returned
-
-### Tool Execution Flow
-1. **Action Request**: Client calls server tool with management action
-2. **Server Identification**: Gateway maps tool name to server configuration
-3. **Action Processing**: Enable/disable/status action executed
-4. **Process Management**: Server processes spawned/terminated as needed
-5. **Response**: Operational status and metadata returned
-
-## Developer Workflow
-
-### Typical Usage Pattern
-1. **Discovery**: Developer calls `tools/list` to see available MCP servers
-2. **Status Check**: Calls server tool with `status` action to understand current state
-3. **Activation**: Uses `enable` action to start needed MCP servers
-4. **Work**: Utilizes MCP server capabilities through other tools/interfaces
-5. **Cleanup**: Uses `disable` action to stop servers when done
-
-### VS Code Integration
-In VS Code, developers see:
-```
-🔧 Available Tools:
-├── brightdata-mcp - brightdata-mcp MCP server - Web scraping and data collection
-├── calculator-server - calculator-server MCP server - Mathematical operations
-└── github-integration - github-integration MCP server - GitHub API access
-```
-
-Each tool can be toggled on/off with simple actions, providing enterprise governance with developer-friendly controls.
-
-## Developer Tool Discovery
-
-### CLI-Based Exploration
-Before enabling MCP servers through the enterprise management interface, developers can explore available tools using the CLI tool discovery feature:
-
-**Command**: `deploystack mcp --tools `
-
-**Purpose**: Allows developers to understand what capabilities each MCP server provides before activation, enabling informed decisions about which servers to enable for their workflow.
-
-**Benefits**:
-- **Preview Capabilities**: See all available tools and their descriptions without starting the server
-- **Parameter Understanding**: Review required and optional parameters for each tool
-- **Informed Decisions**: Choose the right MCP servers based on actual tool availability
-- **Development Planning**: Plan workflows around available tool capabilities
-
-### Integration with Enterprise Management
-The CLI tool discovery complements the enterprise management approach:
-
-1. **Discovery Phase**: Developer uses `deploystack mcp --tools` to explore server capabilities
-2. **Planning Phase**: Developer identifies which servers provide needed functionality
-3. **Activation Phase**: Developer enables specific servers through enterprise management tools
-4. **Utilization Phase**: Developer uses the activated servers' capabilities in their workflow
-
-This workflow ensures developers make informed decisions about server activation while maintaining enterprise governance and control.
-
-The enterprise management layer transforms complex MCP server ecosystems into manageable, governable, and developer-friendly tools that meet both organizational requirements and developer productivity needs.
diff --git a/_DEPRECATED/gateway/index.mdx b/_DEPRECATED/gateway/index.mdx
deleted file mode 100644
index 047ea12..0000000
--- a/_DEPRECATED/gateway/index.mdx
+++ /dev/null
@@ -1,217 +0,0 @@
----
-title: Gateway Development
-description: Developer documentation for the DeployStack Gateway - the local secure proxy that manages MCP servers and credentials for enterprise teams.
-sidebar: Gateway
-icon: Terminal
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Terminal, Code2, Settings, Shield, Zap, Users, Rocket } from 'lucide-react';
-
-# DeployStack Gateway Development
-
-The DeployStack Gateway is the local secure proxy that connects developers to their team's MCP servers through a centralized control plane. It acts as a smart process manager and credential vault, running MCP server processes as persistent background services while enforcing access policies from the cloud.
-
-## Architecture Overview
-
-The Gateway implements a sophisticated Control Plane / Data Plane architecture with comprehensive transport support:
-
-- **Control Plane**: Authenticates with `cloud.deploystack.io` to download team configurations and access policies
-- **Data Plane**: Manages local MCP server processes with stdio, SSE, and Streamable HTTP transport protocols
-- **Security Layer**: Injects credentials securely into process environments without exposing them to developers
-- **Session Management**: Handles secure SSE connections with cryptographic session IDs for VS Code compatibility
-- **Transport Layer**: Supports both legacy SSE transport and modern Streamable HTTP transport for maximum client compatibility
-
-## Core Features
-
-
- }
- title="Triple Transport Support"
- >
- Supports stdio transport for CLI tools, SSE transport for VS Code compatibility, and Streamable HTTP for modern MCP clients
-
-
- }
- title="Secure Credential Injection"
- >
- Injects API tokens and credentials directly into process environments without developer exposure
-
-
- }
- title="Individual Tool Exposure"
- >
- Exposes individual MCP tools with namespacing (e.g., brightdata-search_engine) for direct use in development environments
-
-
- }
- title="Session Management"
- >
- Cryptographically secure session handling with automatic cleanup for persistent connections
-
-
- }
- title="Unified Proxy"
- >
- Single HTTP endpoint supporting multiple client types with intelligent request routing
-
-
- }
- title="Team-Based Access"
- >
- Enforces team-based access control policies downloaded from the cloud control plane
-
-
- }
- title="Tool Caching System"
- >
- Team-aware caching enables instant gateway startup and automatic tool discovery on team switching
-
-
-
-## Development Setup
-
-### Prerequisites
-
-- Node.js (v18 or higher)
-- npm (v8 or higher)
-- TypeScript development environment
-- A DeployStack account at [cloud.deploystack.io](https://cloud.deploystack.io)
-
-### Local Development
-
-```bash
-# Navigate to the gateway service
-cd services/gateway
-
-# Install dependencies
-npm install
-
-# Start development server
-npm run dev
-
-# Build for production
-npm run build
-
-# Start production build
-npm start
-```
-
-## Key Components
-
-### Authentication Module
-Handles secure authentication with the DeployStack cloud control plane and manages access tokens.
-
-### Configuration Sync
-Downloads and synchronizes team MCP server configurations, including process spawn commands and environment variables.
-
-### Process Manager
-Manages the lifecycle of MCP server processes, including:
-- On-demand process spawning
-- Stdio communication handling
-- Process cleanup and resource management
-- Environment variable injection
-
-### HTTP Proxy Server
-Exposes multiple endpoints for different client types:
-- **GET /sse**: SSE connection establishment for VS Code and legacy clients
-- **POST /message**: Session-based JSON-RPC for SSE clients
-- **POST /mcp**: Streamable HTTP endpoint for modern MCP clients
-- **GET /health**: Health check endpoint for monitoring
-
-### Session Manager
-Handles secure SSE connections with:
-- Cryptographically secure session ID generation
-- Session lifecycle management and cleanup
-- Connection state tracking and validation
-- Automatic timeout and resource management
-
-### Enterprise Management Layer
-Transforms MCP servers into enterprise governance tools:
-- Each MCP server appears as a toggleable tool
-- Enable/disable/status actions for operational control
-- Rich metadata from secure catalog integration
-- Team-based access policy enforcement
-
-### Security Layer
-Ensures credentials are handled securely:
-- Encrypted storage of downloaded configurations
-- Secure environment variable injection
-- No credential exposure to developer environment
-- Session-based authentication for persistent connections
-
-## Configuration Format
-
-The Gateway works with MCP server configurations in this format:
-
-```json
-{
- "name": "brightdata",
- "command": "npx",
- "args": ["@brightdata/mcp"],
- "env": {
- "API_TOKEN": "secure-token-from-vault"
- }
-}
-```
-
-## Development Workflow
-
-1. **Authentication**: Gateway authenticates with cloud control plane
-2. **Config Download**: Downloads team's MCP server configurations
-3. **Persistent Process Startup**: Starts all configured MCP servers as background processes when gateway launches
-4. **HTTP Server**: Starts local HTTP server with multiple endpoints immediately available:
- - SSE endpoint: `localhost:9095/sse` (for VS Code and legacy clients)
- - Messages endpoint: `localhost:9095/message` (for session-based JSON-RPC)
- - MCP endpoint: `localhost:9095/mcp` (for modern Streamable HTTP clients)
- - Health endpoint: `localhost:9095/health` (for monitoring)
-5. **Request Handling**: Receives MCP requests from development tools and intelligently routes to appropriate transport
-6. **Process Management**: Maintains persistent background processes as described in [Gateway Process Management](/development/gateway/process-management).
-7. **Credential Injection**: Securely injects environment variables into running processes at startup
-8. **Tool Routing**: Routes namespaced tool calls to persistent MCP servers via stdio transport
-9. **Transport Selection**: Automatically detects client capabilities and uses appropriate transport (SSE or Streamable HTTP)
-
-For detailed information about the caching system, see [Gateway Caching System](/development/gateway/caching-system).
-
-## Language Support
-
-The Gateway is language-agnostic and supports MCP servers written in:
-
-- **Node.js**: `npx`, `node` commands
-- **Python**: `python`, `pip`, `pipenv` commands
-- **Go**: Compiled binary execution
-- **Rust**: Compiled binary execution
-- **Any Language**: Via appropriate runtime commands
-
-## Security Considerations
-
-### Credential Management
-- Credentials are never written to disk in plain text
-- Environment variables are injected directly into spawned processes
-- No credential exposure to the developer's shell environment
-
-### Process Isolation
-- Each MCP server runs in its own isolated process
-- Process cleanup ensures no resource leaks
-- Automatic process termination after idle periods
-
-### Network Security
-- Local HTTP server only binds to localhost
-- No external network exposure by default
-- Secure communication with cloud control plane
-
-## Contributing
-
-The Gateway is actively under development. Key areas for contribution:
-
-- **Process Management**: Improving spawn/cleanup logic
-- **Security**: Enhancing credential handling
-- **Performance**: Optimizing stdio communication
-- **Platform Support**: Adding Windows/Linux compatibility
-- **Error Handling**: Robust error recovery
diff --git a/_DEPRECATED/gateway/mcp.mdx b/_DEPRECATED/gateway/mcp.mdx
deleted file mode 100644
index 73391e0..0000000
--- a/_DEPRECATED/gateway/mcp.mdx
+++ /dev/null
@@ -1,165 +0,0 @@
----
-title: Gateway MCP Configuration Management
-description: How the DeployStack Gateway CLI downloads, processes, and securely stores MCP server configurations for teams
-sidebar: MCP Configuration
-icon: Bot
----
-
-# Gateway MCP Configuration Management
-
-The DeployStack Gateway CLI automatically manages MCP (Model Context Protocol) server configurations for teams, downloading installation data from the backend API and storing it securely for local process management.
-
-## Overview
-
-The Gateway implements a sophisticated MCP configuration system that:
-
-- **Downloads** team MCP installations from the backend API
-- **Processes** raw API data into Gateway-ready server configurations
-- **Stores** both raw and processed data securely using OS-level storage
-- **Manages** team context switching with automatic config updates
-
-## API Integration
-
-### Legacy Team-Based Endpoint
-The Gateway can fetch MCP installations from the legacy team-based endpoint:
-```
-GET /api/teams/{teamId}/mcp/installations
-```
-
-### Modern Three-Tier Gateway Endpoint
-For optimal performance and device-specific configurations, the Gateway uses the modern three-tier endpoint:
-```
-GET /api/gateway/me/mcp-configurations?hardware_id={hardwareId}
-```
-
-This endpoint automatically merges Template + Team + User configurations and returns ready-to-use server configurations with device-specific user arguments and environment variables. For detailed information about this endpoint, see the [Backend API Documentation](/development/backend/api).
-
-### Response Structure
-The API returns team MCP installations with this interface:
-```typescript
-interface MCPInstallationsResponse {
- success: boolean;
- data: MCPInstallation[];
-}
-```
-
-## Data Storage Architecture
-
-### Dual Storage Approach
-The Gateway stores **both** raw API data and processed configurations:
-
-1. **Raw Installations** - Complete API response for audit and debugging
-2. **Processed Server Configs** - Gateway-ready configurations for process spawning
-
-### Storage Interface
-```typescript
-interface TeamMCPConfig {
- team_id: string;
- team_name: string;
- installations: MCPInstallation[]; // Raw API data
- servers: MCPServerConfig[]; // Processed configs
- last_updated: string;
-}
-```
-
-### Secure Storage
-- **Primary**: OS Keychain (macOS Keychain, Windows Credential Manager, Linux Secret Service)
-- **Fallback**: AES-256-CBC encrypted files
-- **Key Format**: `${userEmail}-${teamId}` for team isolation
-
-## Configuration Processing
-
-The Gateway transforms raw API installations into executable server configurations:
-
-### Runtime Detection
-- **Node.js**: `npx @package-name`
-- **Python**: `python -m package_name`
-- **Go**: Direct binary execution
-- **Custom**: Uses `installation_methods` from API
-
-### Environment Variable Merging
-1. Server default environment variables
-2. User-customized overrides from `user_environment_variables`
-3. Secure injection at process spawn time
-
-## Team Context Integration
-
-### Automatic Management
-- **Login**: Downloads default team's MCP configuration
-- **Team Switch**: Clears old config, downloads new team's config
-- **Logout**: Clears all stored MCP configurations
-
-### Configuration Lifecycle
-1. API authentication and team selection
-2. MCP installations download via API
-3. Data validation and filtering
-4. Configuration processing and transformation
-5. Secure storage with team isolation
-6. Runtime access for process management
-
-## Developer Commands
-
-### Configuration Management
-- `deploystack mcp --status` - Show current configuration status
-- `deploystack mcp --refresh` - Force refresh from API
-- `deploystack mcp --clear` - Clear stored configuration
-- `deploystack mcp --test` - Run processing validation tests
-
-### Debug Information
-The `deploystack mcp` command shows raw stored data including:
-- Complete team information
-- Processed server configurations
-- Raw API installation data
-- Environment variables (with sensitive data masking)
-
-## Security Considerations
-
-### Data Isolation
-- Each team's configuration stored with unique keys
-- No cross-team data access possible
-- Automatic cleanup on team changes
-
-### Credential Protection
-- Environment variables injected at runtime only
-- No plain text storage of sensitive data
-- OS-level keychain integration for maximum security
-
-## Tool Discovery and Caching
-
-Beyond configuration management, the Gateway implements an advanced tool discovery system that automatically identifies and caches individual tools from each MCP server. This system operates seamlessly with the configuration management to provide:
-
-### Automatic Discovery
-- **Team Switching**: Tools are automatically discovered from all servers when switching teams
-- **Configuration Updates**: Tool cache is refreshed when server configurations change
-- **Manual Refresh**: Developers can explicitly refresh tools using CLI commands
-
-### Team-Aware Caching
-- **Isolated Storage**: Each team's discovered tools are cached separately
-- **Fast Startup**: Gateway starts instantly using cached tool information
-- **Fallback Support**: Cached tools remain available even when servers are temporarily unavailable
-
-For comprehensive details about the tool discovery and caching system, see [Gateway Caching System](/development/gateway/caching-system).
-
-## Developer Commands
-
-### Configuration Management
-- `deploystack mcp --status` - Show current configuration status
-- `deploystack mcp --refresh` - Force refresh from API
-- `deploystack mcp --clear` - Clear stored configuration
-
-### Tool Discovery
-- `deploystack mcp --tools ` - Discover and display tools from a specific MCP server (requires running gateway)
-- `deploystack teams --switch ` - Switch teams with automatic tool discovery
-
-**Note**: The `--tools` command only works when the gateway is running (`deploystack start`), as it communicates with already-running MCP server processes rather than spawning them on-demand.
-
-## Integration Points
-
-The stored MCP configurations are consumed by:
-
-- **Process Manager** - Spawns MCP server processes using stored configs as described in [Process Management](/development/gateway/process-management)
-- **HTTP Proxy** - Routes requests to appropriate MCP servers using cached tool information
-- **Environment Injection** - Securely provides credentials to spawned processes
-- **Tool Discovery System** - Uses configurations to discover and cache available tools as detailed in [Gateway Caching System](/development/gateway/caching-system)
-
-This system ensures that the Gateway has immediate access to team-specific MCP server configurations while maintaining security and team isolation throughout the development workflow.
diff --git a/_DEPRECATED/gateway/meta.json b/_DEPRECATED/gateway/meta.json
deleted file mode 100644
index f72ea6f..0000000
--- a/_DEPRECATED/gateway/meta.json
+++ /dev/null
@@ -1,9 +0,0 @@
-{
- "title": "Gateway Development",
- "description": "Documentation for DeployStack Gateway Development",
- "icon": "Plug",
- "root": false,
- "pages": [
- "..."
- ]
-}
diff --git a/_DEPRECATED/gateway/oauth.mdx b/_DEPRECATED/gateway/oauth.mdx
deleted file mode 100644
index c610dcc..0000000
--- a/_DEPRECATED/gateway/oauth.mdx
+++ /dev/null
@@ -1,367 +0,0 @@
----
-title: Gateway OAuth Implementation
-description: OAuth2 client implementation for CLI authentication with DeployStack backend
-sidebar: OAuth
-icon: Shield
----
-
-# Gateway OAuth Implementation
-
-The DeployStack Gateway implements an OAuth2 client for secure CLI authentication with the DeployStack backend. This enables users to authenticate via their browser and use the CLI with proper access tokens.
-
-## Architecture Overview
-
-The gateway acts as an OAuth2 client implementing the **Authorization Code flow with PKCE** (Proof Key for Code Exchange) for enhanced security. The implementation consists of:
-
-- **OAuth2 Client** - Handles the complete authorization flow
-- **Callback Server** - Temporary HTTP server for receiving authorization codes
-- **API Client** - Makes authenticated requests to backend APIs
-- **Credential Storage** - Secure token storage and retrieval
-
-## OAuth2 Flow Process
-
-### 1. Authorization Request
-
-When a user runs the login command, the CLI:
-
-- Generates a cryptographically secure PKCE code verifier (128 random bytes)
-- Creates a SHA256 code challenge from the verifier
-- Generates a random state parameter for CSRF protection
-- Builds the authorization URL with all required OAuth2 parameters
-- Opens the user's default browser to the authorization endpoint
-- Starts a temporary callback server on localhost port 8976
-
-The authorization URL includes:
-- `response_type=code` for authorization code flow
-- `client_id=deploystack-gateway-cli` for client identification
-- `redirect_uri=http://localhost:8976/oauth/callback` for callback handling
-- Requested scopes (see [OAuth Scope Management](#oauth-scope-management) below)
-- PKCE parameters: `code_challenge` and `code_challenge_method=S256`
-- Random `state` parameter for security
-
-### 2. User Authorization
-
-The browser opens to the backend's consent page where the user:
-
-- Reviews the requested permissions and scopes
-- Sees security warnings about CLI access
-- Can approve or deny the authorization request
-- Is redirected back to the CLI's callback server upon decision
-
-### 3. Callback Handling
-
-The temporary callback server:
-
-- Listens only on localhost for security
-- Validates the callback path (`/oauth/callback`)
-- Extracts the authorization code and state parameters
-- Validates the state parameter matches the original request
-- Displays a success or error page to the user
-- Automatically shuts down after receiving the callback
-
-### 4. Token Exchange with Device Registration
-
-After receiving the authorization code, the CLI:
-
-- Detects device information (hostname, OS, hardware fingerprint)
-- Exchanges the code for access and refresh tokens
-- Includes the PKCE code verifier for verification
-- **Automatically registers the device** during token exchange
-- Validates the token response from the backend
-- Fetches user information using the new access token
-- Stores credentials securely for future use
-
-#### Automatic Device Registration
-
-During the token exchange process, the gateway automatically registers the current device with the backend for security and management purposes:
-
-**Device Information Collected:**
-- `device_name`: User-friendly name (defaults to hostname)
-- `hostname`: System hostname
-- `hardware_id`: Unique hardware fingerprint based on MAC addresses and system info
-- `os_type`: Operating system (macOS, Windows, Linux)
-- `os_version`: OS version string
-- `arch`: System architecture (x64, arm64, etc.)
-- `node_version`: Node.js version for compatibility tracking
-- `user_agent`: CLI version and platform information
-
-**Security Benefits:**
-- Device registration happens only during authenticated login sessions
-- **No separate device registration endpoints exist** - this prevents unauthorized device registration and enhances security
-- Hardware fingerprinting provides unique device identification
-- Enables device management and access control in the backend
-- Eliminates the need for manual device registration API calls
-
-**Process Flow:**
-1. Gateway detects current device information using system APIs
-2. Device info is included in the OAuth2 token request
-3. Backend validates the token request and registers the device
-4. Device information is returned in the token response
-5. Gateway logs successful device registration to the user (e.g., "📱 Device registered: MacBook-Pro.local")
-
-**Error Handling:**
-If device registration fails during token exchange:
-- The OAuth2 login process continues successfully
-- User authentication is not affected
-- Device context may be limited for some features
-- Error is logged but doesn't break the login flow
-
-## PKCE Security Implementation
-
-The gateway implements PKCE (Proof Key for Code Exchange) following RFC 7636:
-
-- **Code Verifier**: 128 random bytes encoded as base64url
-- **Code Challenge**: SHA256 hash of the verifier, base64url encoded
-- **Challenge Method**: Always uses `S256` (SHA256)
-- **State Validation**: Cryptographically secure random state parameter
-
-PKCE provides security benefits:
-- Prevents authorization code interception attacks
-- No client secret required (suitable for public clients)
-- Protects against malicious applications
-
-## Client Configuration
-
-The gateway is pre-registered with the backend as:
-
-- **Client ID**: `deploystack-gateway-cli`
-- **Client Type**: Public client (no secret required)
-- **Redirect URIs**: `http://localhost:8976/oauth/callback`, `http://127.0.0.1:8976/oauth/callback`
-- **Allowed Scopes**: See source code at `services/gateway/src/utils/auth-config.ts`
-- **PKCE**: Required with SHA256 method
-- **Token Lifetime**: 1 week access tokens, 30 day refresh tokens
-
-## Command Integration
-
-### Login Command
-
-The login command orchestrates the complete OAuth2 flow:
-
-- Checks if the user is already authenticated
-- Displays "already logged in" message if credentials are valid
-- Initiates the OAuth2 flow if authentication is needed
-- Handles browser opening and callback server management
-- Stores credentials securely upon successful authentication
-- Provides clear success confirmation with user email
-
-### Authenticated Commands
-
-Commands like `whoami`, `teams`, and `start` use stored credentials:
-
-- Check authentication status before proceeding
-- Display helpful error messages if not authenticated
-- Use Bearer token authentication for API requests
-- Automatically refresh expired tokens when possible
-- Handle token expiration gracefully
-
-## Error Handling
-
-The OAuth implementation includes comprehensive error handling:
-
-### Error Types
-
-- **TIMEOUT**: OAuth callback not received within time limit
-- **ACCESS_DENIED**: User denied the authorization request
-- **BROWSER_ERROR**: Failed to open browser automatically
-- **NETWORK_ERROR**: Network connectivity issues
-- **STORAGE_ERROR**: Failed to store credentials securely
-- **TOKEN_EXPIRED**: Access token has expired
-- **INVALID_TOKEN**: Token format or signature invalid
-- **INVALID_GRANT**: Authorization code or refresh token invalid
-
-### User Guidance
-
-Each error type provides specific user guidance:
-- Timeout errors suggest retrying the command
-- Access denied errors explain the approval requirement
-- Browser errors offer manual URL opening
-- Network errors suggest connectivity checks
-- Storage errors indicate keychain permission issues
-
-## Browser Integration
-
-The CLI provides seamless browser integration:
-
-- **Automatic Opening**: Uses the system's default browser
-- **Cross-Platform**: Works on Windows, macOS, and Linux
-- **Fallback Handling**: Displays manual URL if auto-open fails
-- **User Feedback**: Clear messages about browser actions
-- **Security Warnings**: Alerts for development server usage
-
-## Token Management
-
-### Token Refresh
-
-The gateway automatically handles token refresh:
-
-- Monitors token expiration with 5-minute buffer
-- Attempts refresh before tokens expire
-- Uses refresh tokens for seamless re-authentication
-- Falls back to full re-authentication if refresh fails
-- Updates stored credentials with new tokens
-
-### Token Validation
-
-Before each API request, the gateway:
-
-- Checks token expiration locally
-- Validates token format and structure
-- Handles 401 responses with automatic refresh
-- Provides clear error messages for invalid tokens
-
-## Development vs Production
-
-The OAuth client adapts to different environments:
-
-### Development Mode
-- Uses HTTP for localhost callback server
-- Accepts self-signed certificates for development
-- Displays security warnings for non-production servers
-- Provides detailed error information for debugging
-
-### Production Mode
-- Enforces HTTPS for all communications
-- Validates SSL certificates strictly
-- Uses secure callback URLs
-- Limits error information exposure
-
-## Integration with Backend
-
-The gateway OAuth client integrates with the [backend OAuth2 server](/development/backend/oauth2-server):
-
-- **Client Registration**: Pre-registered with known client ID
-- **PKCE Support**: Uses SHA256 method as required by backend
-- **Scope Validation**: Requests only backend-supported scopes
-- **Token Format**: Handles backend's custom JWT-like token format
-- **Error Responses**: Processes standard OAuth2 error responses
-- **Endpoint Discovery**: Uses standard OAuth2 endpoint paths
-- **Device Registration**: Automatic device registration during token exchange
-
-### Device Management Integration
-
-The gateway's device registration integrates seamlessly with the backend's device management system:
-
-**Backend Integration Points:**
-- **OAuth2 Token Endpoint**: Extended to accept optional `device_info` in token requests
-- **Device Service**: Uses existing `DeviceService.registerOrUpdateDevice()` method
-- **Database Storage**: Device information stored in the `devices` table
-- **User Association**: Devices automatically linked to the authenticated user
-
-**Token Request Enhancement:**
-The gateway includes device information in the OAuth2 token request:
-```json
-{
- "grant_type": "authorization_code",
- "code": "authorization_code_here",
- "redirect_uri": "http://localhost:8976/oauth/callback",
- "client_id": "deploystack-gateway-cli",
- "code_verifier": "pkce_verifier_here",
- "device_info": {
- "device_name": "MacBook-Pro.local",
- "hostname": "MacBook-Pro.local",
- "hardware_id": "a1b2c3d4e5f6789012345678901234ab",
- "os_type": "macOS",
- "os_version": "14.2.1",
- "arch": "arm64",
- "node_version": "v20.10.0",
- "user_agent": "DeployStack-CLI/1.0.0 (darwin; arm64)"
- }
-}
-```
-
-**Token Response Enhancement:**
-When device registration succeeds, the backend includes device information in the token response:
-```json
-{
- "access_token": "...",
- "token_type": "Bearer",
- "expires_in": 3600,
- "refresh_token": "...",
- "scope": "mcp:read account:read...",
- "device": {
- "id": "550e8400-e29b-41d4-a716-446655440000",
- "device_name": "MacBook-Pro.local",
- "is_active": true,
- "is_trusted": true,
- "created_at": "2025-08-23T10:20:30Z"
- }
-}
-```
-
-**Security Design:**
-- Device registration only occurs during authenticated OAuth2 flows
-- **No separate device creation endpoints exist** - this architectural decision prevents unauthorized device registration and eliminates potential security vulnerabilities
-- Hardware fingerprinting ensures unique device identification across multiple login sessions
-- Device information is validated using JSON schema before processing
-- Gateway automatically handles device lookup using hardware fingerprints without requiring manual registration
-
-For comprehensive information about device management and hardware fingerprinting, see the [Device Management Documentation](/device-management).
-
-## Security Considerations
-
-The OAuth implementation follows security best practices:
-
-- **PKCE Required**: All authorization requests use PKCE
-- **State Validation**: Prevents CSRF attacks
-- **Localhost Binding**: Callback server only accepts local connections
-- **Timeout Protection**: All operations have reasonable timeouts
-- **Secure Storage**: Credentials stored using OS keychain
-- **No Secrets**: Public client design eliminates secret management
-
-For detailed security implementation including credential storage, token expiration, and local file security, see the [Gateway Security Guide](/development/gateway/security).
-
-## OAuth Scope Management
-
-The gateway requests specific OAuth scopes during authentication to access backend APIs. Scope configuration must stay synchronized between the gateway and backend.
-
-### Current Scopes
-
-For the current list of supported scopes, check the source code at:
-- **Gateway scopes**: `services/gateway/src/utils/auth-config.ts` in the `scopes` array
-- **Backend validation**: `services/backend/src/services/oauth/authorizationService.ts` in the `validateScope()` method
-
-### Adding New Scopes
-
-When the backend adds support for a new OAuth scope, you must update the gateway configuration:
-
-1. **Add the scope** to the `scopes` array in `services/gateway/src/utils/auth-config.ts`
-2. **Add a description** to the `SCOPE_DESCRIPTIONS` object in the same file
-3. **Test the login flow** to ensure the new scope is requested and granted
-
-Example:
-```typescript
-// In services/gateway/src/utils/auth-config.ts
-scopes: [
- 'mcp:read',
- 'mcp:categories:read',
- 'your-new-scope', // Add new scope here
- // ... other scopes
-],
-
-// And add description
-export const SCOPE_DESCRIPTIONS: Record = {
- 'mcp:read': 'Access your MCP server installations and configurations',
- 'your-new-scope': 'Description of what this scope allows', // Add description
- // ... other descriptions
-};
-```
-
-### Scope Synchronization
-
-**Critical**: The gateway and backend must have matching scope configurations:
-- If backend supports a scope but gateway doesn't request it, users won't get that permission
-- If gateway requests a scope but backend doesn't support it, authentication will fail
-
-Always coordinate scope changes between both services.
-
-## Testing OAuth Flow
-
-During development, the OAuth flow can be tested:
-
-1. Start the backend in development mode
-2. Build the gateway CLI
-3. Run the login command with development URL
-4. Complete the browser authorization flow
-5. Verify authentication with the whoami command
-
-The OAuth implementation provides a secure, user-friendly authentication experience that follows industry standards while integrating seamlessly with the DeployStack backend.
diff --git a/_DEPRECATED/gateway/process-management.mdx b/_DEPRECATED/gateway/process-management.mdx
deleted file mode 100644
index 37991f9..0000000
--- a/_DEPRECATED/gateway/process-management.mdx
+++ /dev/null
@@ -1,227 +0,0 @@
----
-title: Gateway Process Management
-description: How the DeployStack Gateway manages MCP server processes with persistent background processes, secure credential injection, and enterprise governance
-sidebar: Process Management
-icon: Cpu
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Zap, Shield, Monitor, RefreshCw, AlertTriangle, Users } from 'lucide-react';
-
-# Gateway Process Management
-
-The DeployStack Gateway implements sophisticated process management to handle MCP server lifecycles with enterprise-grade security, performance, and governance. Each MCP server runs as a persistent background process with secure credential injection and continuous availability.
-
-## Architecture Overview
-
-The Gateway's process management system operates on a **persistent background process** model, similar to Claude Desktop, where all configured MCP server processes are started when the gateway launches and run continuously until shutdown. This approach provides instant tool availability and eliminates the latency associated with process spawning during development workflows.
-
-## Core Concepts
-
-
- }
- title="Persistent Background Processes"
- >
- All configured MCP servers start with the gateway and run continuously, providing instant tool availability
-
-
- }
- title="Secure Credential Injection"
- >
- API tokens and credentials are injected directly into process environments without developer exposure
-
-
- }
- title="Runtime State Management"
- >
- Comprehensive tracking of running processes with health monitoring and team isolation
-
-
- }
- title="Graceful Lifecycle Management"
- >
- Proper MCP shutdown sequence following protocol specifications for clean termination
-
-
- }
- title="State Comparison & Recovery"
- >
- Compares expected vs actual running processes with automatic recovery mechanisms
-
-
- }
- title="Team Context Switching"
- >
- Seamless switching between teams with complete process lifecycle management
-
-
-
-## Selective Restart Capability
-
-The Gateway supports **selective restart** functionality, allowing individual MCP servers to be managed without requiring a full gateway restart. This feature dramatically improves configuration update performance and eliminates downtime for unchanged servers.
-
-### Key Features
-
-- **Individual Server Control**: Add, remove, or restart specific MCP servers via HTTP API
-- **Change Detection**: Automatically detects added, removed, and modified server configurations
-- **Fallback Safety**: Falls back to full restart if selective operations fail
-- **Zero Downtime**: Unchanged servers continue running during configuration updates
-
-### API Endpoints
-
-The Gateway exposes HTTP endpoints for selective server management:
-
-- `POST /api/mcp/servers` - Add new MCP servers to running gateway
-- `DELETE /api/mcp/servers/:serverName` - Remove specific servers
-- `POST /api/mcp/servers/:serverName/restart` - Restart individual servers
-
-### Implementation Services
-
-- **Selective Restart Service**: Handles HTTP communication with running gateway processes
-- **Configuration Change Service**: Detects configuration differences and orchestrates selective operations
-- **Process Manager Integration**: Provides individual server lifecycle control capabilities
-
-## Process Lifecycle
-
-### Gateway Startup Phase
-When the Gateway starts (`deploystack start`), all configured MCP servers for the selected team are launched simultaneously:
-
-- **Team Configuration Loading**: Downloads and validates team MCP server configurations
-- **Bulk Process Spawning**: Starts all configured MCP servers as background processes
-- **Runtime Detection**: Automatic detection of Node.js, Python, Go, or custom runtime requirements
-- **Environment Preparation**: Secure injection of team-specific credentials and configuration
-- **MCP Protocol Handshake**: Establishes JSON-RPC communication with 30-second timeout for package downloads
-- **Runtime State Registration**: Adds all successfully started processes to the runtime state manager
-
-### Continuous Operation Phase
-During normal operation, all MCP servers run continuously in the background:
-
-- **Persistent Availability**: All tools are immediately available without process spawning delays
-- **Request Routing**: Direct routing of tool calls to already-running MCP server processes
-- **Health Monitoring**: Continuous monitoring of process status, uptime, and responsiveness
-- **State Comparison**: Regular comparison of expected vs actual running processes
-- **Error Logging**: Proper distinction between informational stderr output and actual errors
-
-### Team Context Switching
-When switching teams, the Gateway performs complete process lifecycle management:
-
-- **Graceful Shutdown**: Stops all MCP servers for the current team following MCP protocol
-- **Configuration Refresh**: Downloads new team's MCP server configurations
-- **Process Restart**: Starts all MCP servers for the new team
-- **State Synchronization**: Updates runtime state to reflect the new team context
-
-### Gateway Shutdown Phase
-When the Gateway stops (`deploystack stop` or Ctrl+C), processes are terminated gracefully:
-
-- **MCP Protocol Compliance**: Follows proper MCP shutdown sequence (close stdin → wait → SIGTERM → wait → SIGKILL)
-- **Parallel Shutdown**: All processes are stopped concurrently for faster shutdown
-- **Resource Cleanup**: Ensures all file descriptors and system resources are properly released
-- **State Cleanup**: Clears runtime state and removes process tracking information
-
-## Security Model
-
-### Credential Isolation
-The Gateway implements a **zero-exposure credential model** where:
-
-- Credentials are never written to disk in plain text
-- Environment variables are injected directly into spawned processes
-- No credential access from the developer's shell environment
-- Automatic credential rotation when team configurations change
-
-### Process Isolation
-Each MCP server runs in complete isolation with:
-
-- **Separate Process Space**: No shared memory or resources between MCP servers
-- **Independent Environments**: Each process has its own environment variable set
-- **Resource Boundaries**: CPU and memory limits to prevent resource exhaustion
-- **Network Isolation**: Controlled network access based on server requirements
-
-## Enterprise Governance
-
-### Tool-Level Management
-The Gateway transforms traditional MCP servers into enterprise-manageable tools by presenting each server as:
-
-- **Enable/Disable Controls**: Administrators can control which MCP servers are available
-- **Status Monitoring**: Real-time visibility into process health and performance
-- **Usage Analytics**: Tracking of tool usage patterns and resource consumption
-- **Access Policies**: Team-based access control enforcement
-
-### Operational Controls
-Enterprise administrators gain operational control through:
-
-- **Centralized Configuration**: All MCP server configurations managed through the cloud control plane
-- **Policy Enforcement**: Automatic enforcement of team-based access policies
-- **Audit Logging**: Comprehensive logging of all process management activities
-- **Resource Management**: Monitoring and control of system resource usage
-
-## Performance Optimization
-
-### Resource Efficiency
-The Gateway optimizes resource usage through the persistent background process model:
-
-- **Continuous Operation**: All processes run continuously, eliminating spawn/cleanup overhead
-- **Shared Process Pool**: Multiple tool requests reuse the same persistent MCP server processes
-- **Memory Stability**: Consistent memory usage patterns with no spawn/cleanup cycles
-- **CPU Optimization**: Direct request routing to running processes minimizes CPU overhead
-
-### Response Time Optimization
-Instant response times are achieved through:
-
-- **Zero Latency**: Tools are immediately available from already-running processes
-- **Parallel Processing**: Concurrent handling of multiple tool requests across persistent processes
-- **Persistent Connections**: Maintained stdio connections eliminate connection establishment overhead
-- **Cache-as-Manifest**: Cached tool information serves as configuration manifest for instant startup
-
-## Error Handling and Recovery
-
-### Failure Detection
-The Gateway monitors for various failure scenarios:
-
-- **Process Crashes**: Automatic detection of terminated or crashed processes
-- **Communication Failures**: Identification of broken stdio communication channels
-- **Timeout Conditions**: Detection of unresponsive processes
-- **Resource Exhaustion**: Monitoring for memory or CPU limit violations
-
-### Recovery Strategies
-When failures are detected, the Gateway implements:
-
-- **Automatic Restart**: Immediate restart of crashed processes with exponential backoff
-- **Fallback Mechanisms**: Graceful degradation when processes are unavailable
-- **Error Reporting**: Detailed error reporting to developers and administrators
-- **Circuit Breaker**: Temporary disabling of problematic processes to prevent cascading failures
-
-## Integration Points
-
-The process management system integrates with other Gateway components:
-
-- **[MCP Configuration Management](/development/gateway/mcp)**: Uses team configurations to determine spawn parameters
-- **[Caching System](/development/gateway/caching-system)**: Coordinates with tool discovery and caching mechanisms
-- **[Project Structure](/development/gateway/structure)**: Implements the architecture defined in the core modules
-- **HTTP Proxy Server**: Provides process information for request routing decisions
-
-## Monitoring and Observability
-
-### Process Metrics
-The Gateway tracks comprehensive metrics including:
-
-- **Process Count**: Number of active MCP server processes
-- **Resource Usage**: CPU, memory, and file descriptor consumption
-- **Request Throughput**: Number of requests processed per process
-- **Error Rates**: Frequency and types of process errors
-- **Response Times**: Latency metrics for tool requests
-
-### Health Indicators
-Key health indicators monitored include:
-
-- **Process Responsiveness**: Time to respond to health check requests
-- **Memory Growth**: Detection of memory leaks or excessive memory usage
-- **Error Patterns**: Identification of recurring error conditions
-- **Resource Limits**: Proximity to configured resource boundaries
-
-This process management system ensures that the DeployStack Gateway can reliably handle enterprise workloads while maintaining the security, performance, and governance requirements of modern development teams.
diff --git a/_DEPRECATED/gateway/security.mdx b/_DEPRECATED/gateway/security.mdx
deleted file mode 100644
index 2148544..0000000
--- a/_DEPRECATED/gateway/security.mdx
+++ /dev/null
@@ -1,374 +0,0 @@
----
-title: Gateway Security
-description: Security implementation and best practices for the DeployStack Gateway CLI
-sidebar: Security
-icon: Lock
----
-
-# Gateway Security
-
-The DeployStack Gateway implements multiple layers of security to protect user credentials, ensure secure communication, and maintain system integrity. This document covers the security architecture and implementation details.
-
-## Credential Storage Security
-
-### OS Keychain Integration
-
-The gateway uses the **Zowe Secrets SDK** for cross-platform secure credential storage, providing native integration with each operating system's secure storage mechanism:
-
-**Platform-specific storage:**
-- **macOS**: Keychain Access using the Security.framework
-- **Windows**: Credential Manager using CredWrite/CredRead APIs
-- **Linux**: Secret Service API using libsecret
-
-The keychain integration stores credentials with the service name `deploystack-gateway` and uses the user's email address as the account identifier. This approach leverages the operating system's built-in security features including:
-
-- Hardware-backed encryption where available
-- User authentication requirements for access
-- Automatic credential isolation between users
-- Integration with system security policies
-
-### Encrypted File Fallback
-
-When OS keychain access is unavailable or fails, credentials are stored in encrypted files as a secure fallback:
-
-**Encryption Details:**
-- **Algorithm**: AES-256-CBC encryption
-- **Key Derivation**: Fixed key with padding (development approach)
-- **Initialization Vector**: Random 16-byte IV generated per encryption
-- **Storage Format**: `IV:encrypted_data` in hexadecimal encoding
-
-**File Security:**
-- **Location**: `~/.deploystack/credentials.enc`
-- **Permissions**: `0o600` (owner read/write only)
-- **Directory Permissions**: `0o700` (owner access only)
-
-### Account Management
-
-The gateway maintains a secure account tracking system:
-
-**Account List:**
-- **Location**: `~/.deploystack/accounts.json`
-- **Content**: Array of user email addresses (no sensitive data)
-- **Purpose**: Enables credential discovery from keychain storage
-- **Format**: JSON array with most recent accounts first
-
-**Security Considerations:**
-- Contains only email addresses, no tokens or passwords
-- Used for keychain credential lookup
-- Automatically maintained during login/logout operations
-- Cleaned up when credentials are cleared
-
-## Token Security
-
-### Access Token Format
-
-Access tokens use a custom JWT-like format designed for the DeployStack backend:
-
-**Token Structure:**
-```
-.
-```
-
-**Components:**
-- **Random Token**: 512-bit cryptographically secure random value
-- **Payload**: Base64-encoded JSON containing user info, scopes, and expiration
-- **Database Storage**: Argon2 hash of the complete token for verification
-
-**Security Features:**
-- No client-side signature verification required
-- Embedded user information reduces database lookups
-- Cryptographically secure random component
-- Server-side hash verification prevents tampering
-
-### Token Expiration
-
-**Access Tokens**: 1 week (604,800 seconds)
-- Provides reasonable balance between security and usability
-- Reduces frequent re-authentication during development
-- Long enough for typical CLI usage patterns
-- Short enough to limit exposure if compromised
-
-**Refresh Tokens**: 30 days
-- Enables seamless token renewal
-- Longer lifetime for better user experience
-- Stored securely alongside access tokens
-- Automatically used for token refresh
-
-### Token Validation
-
-The gateway implements comprehensive token validation:
-
-**Local Validation:**
-- Checks token expiration with 5-minute buffer
-- Validates token format and structure
-- Prevents unnecessary API calls with expired tokens
-
-**Server Validation:**
-- Backend verifies token hash using Argon2
-- Checks database expiration timestamps
-- Validates user permissions and scopes
-
-## Network Security
-
-### HTTPS Enforcement
-
-The gateway enforces secure communication:
-
-**Production Requirements:**
-- All API communications must use HTTPS
-- SSL certificate validation is strictly enforced
-- Self-signed certificates are rejected
-- Insecure HTTP connections are blocked
-
-**Development Flexibility:**
-- Localhost connections allow HTTP for development
-- Self-signed certificates accepted for local testing
-- Security warnings displayed for non-production servers
-- Clear distinction between development and production modes
-
-### Request Security
-
-All API requests include comprehensive security headers:
-
-**Standard Headers:**
-- **Authorization**: Bearer token authentication
-- **Content-Type**: Proper content type specification
-- **User-Agent**: Identifies the CLI client and version
-
-**Security Measures:**
-- Bearer token authentication for all authenticated requests
-- Proper content type validation
-- Request timeout protection
-- Automatic retry logic with exponential backoff
-
-### Callback Server Security
-
-The temporary OAuth callback server implements multiple security layers:
-
-**Network Security:**
-- **Binding**: Only accepts connections from localhost/127.0.0.1
-- **Port**: Fixed port 8976 for consistency
-- **Protocol**: HTTP (acceptable for localhost)
-
-**Request Validation:**
-- **Path Validation**: Only `/oauth/callback` path is handled
-- **Parameter Validation**: Required OAuth parameters are verified
-- **State Validation**: CSRF protection through state parameter
-
-**Lifecycle Management:**
-- **Auto-cleanup**: Server automatically shuts down after callback
-- **Timeout Protection**: Configurable timeout (default: 5 minutes)
-- **Resource Cleanup**: Proper cleanup of server resources
-
-## OAuth2 Security (PKCE)
-
-The gateway implements PKCE (Proof Key for Code Exchange) following RFC 7636:
-
-### Code Verifier Generation
-
-**Specifications:**
-- **Length**: 128 characters (96 random bytes base64url encoded)
-- **Entropy**: Cryptographically secure random generation
-- **Format**: Base64url encoding without padding
-- **Uniqueness**: New verifier generated for each authentication
-
-### Code Challenge Generation
-
-**Process:**
-- **Input**: Code verifier string
-- **Hashing**: SHA256 hash of the verifier
-- **Encoding**: Base64url encoding of the hash
-- **Method**: Always uses `S256` (SHA256)
-
-### State Parameter Security
-
-**Generation:**
-- **Length**: 32 random bytes base64url encoded
-- **Purpose**: CSRF protection
-- **Validation**: Strict comparison with received state
-- **Storage**: Temporarily stored during OAuth flow
-
-**PKCE Security Benefits:**
-- Prevents authorization code interception attacks
-- Eliminates need for client secrets in public clients
-- Provides cryptographic proof of authorization request origin
-- Protects against malicious applications
-
-## Error Handling Security
-
-### Secure Error Messages
-
-The gateway implements secure error handling principles:
-
-**User-Facing Messages:**
-- Generic error descriptions to avoid information disclosure
-- Helpful guidance without revealing system internals
-- No exposure of tokens, credentials, or sensitive data
-- Clear action items for users to resolve issues
-
-**Error Categories:**
-- **Authentication Errors**: Login and token-related issues
-- **Network Errors**: Connectivity and communication problems
-- **Storage Errors**: Credential storage and retrieval issues
-- **Authorization Errors**: Permission and scope-related problems
-
-### Timeout Protection
-
-All network operations include timeout protection:
-
-**Timeout Types:**
-- **OAuth Callback**: 5-minute default timeout for user authorization
-- **API Requests**: Reasonable timeouts for backend communication
-- **Token Refresh**: Quick timeout for refresh operations
-- **Browser Opening**: Timeout for automatic browser launch
-
-**Security Benefits:**
-- Prevents indefinite resource consumption
-- Limits exposure time for temporary servers
-- Provides clear failure modes
-- Enables graceful error recovery
-
-## File System Security
-
-### Directory Permissions
-
-The gateway creates secure directories for credential storage:
-
-**Directory Structure:**
-- **Base Directory**: `~/.deploystack/`
-- **Permissions**: `0o700` (owner read/write/execute only)
-- **Creation**: Automatic creation with secure permissions
-- **Platform Compatibility**: Works across Windows, macOS, and Linux
-
-### File Permissions
-
-**Credential Files:**
-- **Encrypted Credentials**: `0o600` (owner read/write only)
-- **Account List**: `0o644` (owner write, others read - no sensitive data)
-- **Temporary Files**: Secure permissions and automatic cleanup
-
-### Secure File Cleanup
-
-Credential removal includes comprehensive cleanup:
-
-**Cleanup Process:**
-- **Keychain Removal**: Credentials removed from OS keychain
-- **File Deletion**: Encrypted files securely deleted
-- **Account List**: Account entries removed from tracking
-- **Directory Cleanup**: Empty directories removed when appropriate
-
-**Security Considerations:**
-- Multiple cleanup attempts for reliability
-- Graceful handling of partial failures
-- No sensitive data left in temporary files
-- Proper error handling during cleanup
-
-## Development vs Production Security
-
-### Environment Detection
-
-The gateway automatically detects and adapts to different environments:
-
-**Development Mode Indicators:**
-- URLs containing `localhost`
-- Non-HTTPS protocols for local servers
-- Development-specific configuration options
-
-**Production Mode Requirements:**
-- HTTPS enforcement for all communications
-- Strict SSL certificate validation
-- Limited error information exposure
-- Enhanced security warnings
-
-### Security Warnings
-
-The CLI provides appropriate security warnings:
-
-**Development Warnings:**
-- Alerts when connecting to non-production servers
-- Warnings about HTTP usage in development
-- Reminders about development-only features
-
-**Production Safeguards:**
-- Blocks insecure connections
-- Validates server certificates
-- Limits debug information exposure
-
-## Security Best Practices
-
-### 1. Credential Protection
-- Never log credentials or tokens in plain text
-- Use OS keychain as primary storage mechanism
-- Encrypt fallback storage with strong encryption
-- Restrict file permissions to owner-only access
-- Implement secure credential cleanup
-
-### 2. Network Security
-- Enforce HTTPS in production environments
-- Validate SSL certificates strictly
-- Use secure headers in all requests
-- Implement proper request timeouts
-- Handle network errors gracefully
-
-### 3. OAuth2 Security
-- Always use PKCE for authorization code flow
-- Validate state parameters to prevent CSRF attacks
-- Use cryptographically secure random values
-- Implement proper token refresh logic
-- Handle authorization errors appropriately
-
-### 4. Error Handling
-- Avoid exposing sensitive data in error messages
-- Log detailed errors for debugging (server-side only)
-- Provide helpful user guidance without revealing internals
-- Implement proper timeout handling
-- Use structured error codes for programmatic handling
-
-### 5. Process Security
-- Exit cleanly after operations complete
-- Clean up temporary resources properly
-- Handle interruption signals gracefully
-- Validate all user inputs
-- Implement proper resource management
-
-For OAuth2 flow details and implementation specifics, see the [Gateway OAuth Guide](/development/gateway/oauth).
-
-## Security Auditing
-
-### Credential Audit
-
-**File System Checks:**
-- Verify credential directory permissions (`~/.deploystack/`)
-- Check encrypted file permissions (`credentials.enc`)
-- Validate account list format (`accounts.json`)
-
-**Keychain Verification:**
-- Check for stored credentials in OS keychain
-- Verify service name and account identifiers
-- Validate keychain access permissions
-
-### Network Security Audit
-
-**Connection Monitoring:**
-- Monitor HTTPS usage in production
-- Verify SSL certificate validation
-- Check for secure header usage
-
-**Certificate Validation:**
-- Verify SSL certificate chains
-- Check certificate expiration dates
-- Validate certificate authority trust
-
-### Security Monitoring
-
-**Authentication Events:**
-- Monitor login success and failure rates
-- Track token refresh patterns
-- Identify unusual authentication behavior
-
-**Error Analysis:**
-- Review authentication error patterns
-- Monitor network connectivity issues
-- Analyze credential storage problems
-
-The gateway's security implementation follows industry best practices and provides multiple layers of protection for user credentials and system integrity.
diff --git a/_DEPRECATED/gateway/session-management.mdx b/_DEPRECATED/gateway/session-management.mdx
deleted file mode 100644
index 36d2e95..0000000
--- a/_DEPRECATED/gateway/session-management.mdx
+++ /dev/null
@@ -1,320 +0,0 @@
----
-title: Session Management
-description: Cryptographically secure session lifecycle management for SSE and Streamable HTTP connections
-sidebar: Session Management
-icon: Key
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Key, Clock, Shield, Trash2 } from 'lucide-react';
-
-# Session Management
-
-The DeployStack Gateway implements a robust session management system that provides cryptographically secure session handling for both persistent SSE connections and optional Streamable HTTP sessions while ensuring automatic cleanup and resource management.
-
-## Architecture Overview
-
-The session management system consists of multiple components working together to provide secure connections across different transport protocols:
-
-- **SessionManager**: Handles session lifecycle, validation, and SSE stream management
-- **SSEHandler**: Manages Server-Sent Events connections and message routing
-- **StreamableHTTPHandler**: Manages Streamable HTTP connections with optional session support
-- **Transport Layer**: Intelligent routing between SSE and Streamable HTTP based on client capabilities
-
-## Core Components
-
-
- }
- title="Cryptographic Security"
- >
- 256-bit entropy session IDs with base64url encoding for maximum security
-
-
- }
- title="Lifecycle Management"
- >
- Automatic session creation, validation, activity tracking, and timeout handling
-
-
- }
- title="Connection Validation"
- >
- Session-bound SSE streams with comprehensive validation and error handling
-
-
- }
- title="Automatic Cleanup"
- >
- Resource cleanup on disconnect, timeout, or error conditions
-
-
-
-## Session ID Generation
-
-### Cryptographic Properties
-- **Algorithm**: Node.js `crypto.randomBytes(32)`
-- **Entropy**: 256 bits (32 bytes) of cryptographically secure randomness
-- **Encoding**: Base64url for URL safety and compatibility
-- **Format**: `L8B-xaw3HBZEftyo-JCrHoGWb_iikRZiwGfp9B71-GA`
-
-### Security Features
-- **Unpredictability**: Cryptographically secure random number generation
-- **Collision Resistance**: 2^256 possible values make collisions virtually impossible
-- **URL Safety**: Base64url encoding ensures compatibility in query parameters
-- **No Sequential Patterns**: Each session ID is completely independent
-
-### Validation Process
-```typescript
-private validateSessionId(sessionId: string): boolean {
- if (!sessionId || typeof sessionId !== 'string') return false;
- if (sessionId.length < 32) return false;
- if (!/^[A-Za-z0-9_-]+$/.test(sessionId)) return false;
- return true;
-}
-```
-
-## Session Lifecycle
-
-### 1. Creation Phase
-**Triggers**:
-- SSE connection establishment via `GET /sse`
-- Optional session creation for Streamable HTTP via `POST /mcp` with session headers
-
-**Process:**
-1. Generate cryptographically secure session ID
-2. Create session object with metadata
-3. Associate with SSE stream (for SSE transport) or track session state (for Streamable HTTP)
-4. Schedule automatic cleanup timer
-5. Send endpoint event to client (SSE) or return session headers (Streamable HTTP)
-
-**Session Object:**
-```typescript
-interface SessionInfo {
- id: string;
- createdAt: number;
- lastActivity: number;
- sseStream: ServerResponse;
- clientInfo?: { name: string; version: string };
- mcpInitialized: boolean;
- requestCount: number;
- errorCount: number;
-}
-```
-
-### 2. Active Phase
-**Duration**: Until timeout or disconnect
-
-**Activities:**
-- **Activity Tracking**: Updated on every JSON-RPC request
-- **Request Counting**: Incremented for each message processed
-- **Error Tracking**: Incremented on processing failures
-- **Client Info Storage**: MCP client metadata stored during initialization
-
-### 3. Cleanup Phase
-**Triggers:**
-- Client disconnect (`close` event)
-- Connection error (`error` event)
-- Stream finish (`finish` event)
-- 30-minute inactivity timeout
-
-**Process:**
-1. Close SSE stream if still open
-2. Remove session from active sessions map
-3. Log cleanup completion
-4. Free associated resources
-
-## Connection Management
-
-### SSE Stream Handling
-The session manager maintains direct references to SSE streams for efficient message delivery:
-
-```typescript
-sendToSession(sessionId: string, event: { id?: string; event?: string; data: string }): boolean {
- const session = this.sessions.get(sessionId);
- if (!session || session.sseStream.destroyed) {
- return false;
- }
-
- try {
- let sseData = '';
- if (event.id) sseData += `id: ${event.id}\n`;
- if (event.event) sseData += `event: ${event.event}\n`;
- sseData += `data: ${event.data}\n\n`;
-
- session.sseStream.write(sseData);
- return true;
- } catch (error) {
- this.cleanupSession(sessionId);
- return false;
- }
-}
-```
-
-### Connection State Tracking
-- **Stream Health**: Monitors SSE stream status and handles disconnects
-- **Activity Monitoring**: Tracks last activity timestamp for timeout detection
-- **Error Handling**: Graceful handling of connection failures and cleanup
-- **Resource Management**: Prevents memory leaks through automatic cleanup
-
-## Security Considerations
-
-### Session Security
-- **Unpredictable IDs**: Impossible to guess or enumerate session IDs
-- **Time-Limited**: Automatic expiration prevents indefinite access
-- **Connection-Bound**: Sessions tied to specific SSE connections
-- **Validation**: Comprehensive validation on every request
-
-### Timeout Management
-- **Inactivity Timeout**: 30 minutes of inactivity triggers cleanup
-- **Automatic Scheduling**: Cleanup scheduled at session creation
-- **Activity Extension**: Timeout reset on each valid request
-- **Resource Protection**: Prevents accumulation of stale sessions
-
-### Error Handling
-- **Graceful Degradation**: Connection errors don't crash the system
-- **Automatic Recovery**: Failed connections cleaned up automatically
-- **Error Isolation**: Session errors don't affect other sessions
-- **Logging**: Comprehensive error logging for debugging
-
-## Performance Optimization
-
-### Memory Management
-- **Efficient Storage**: Sessions stored in Map for O(1) lookup
-- **Automatic Cleanup**: Prevents memory leaks through timeout handling
-- **Resource Tracking**: Monitors session count and resource usage
-- **Garbage Collection**: Proper cleanup enables efficient garbage collection
-
-### Connection Efficiency
-- **Persistent Connections**: SSE streams maintained for duration of session
-- **Minimal Overhead**: Lightweight session objects with essential data only
-- **Fast Lookup**: Session validation and retrieval optimized for speed
-- **Batch Operations**: Efficient handling of multiple concurrent sessions
-
-## Monitoring and Debugging
-
-### Session Statistics
-The session manager provides comprehensive statistics for monitoring:
-
-```typescript
-getStatus() {
- return {
- activeCount: this.sessions.size,
- sessions: Array.from(this.sessions.values()).map(session => ({
- id: session.id,
- createdAt: session.createdAt,
- lastActivity: session.lastActivity,
- uptime: Date.now() - session.createdAt,
- requestCount: session.requestCount,
- errorCount: session.errorCount,
- clientInfo: session.clientInfo,
- mcpInitialized: session.mcpInitialized
- }))
- };
-}
-```
-
-### Logging and Observability
-- **Session Creation**: Logged with session ID for tracking
-- **Activity Updates**: Request and error counts tracked
-- **Cleanup Events**: Cleanup reasons and timing logged
-- **Error Conditions**: Detailed error logging for troubleshooting
-
-## Transport-Specific Session Handling
-
-### SSE Transport Sessions
-SSE transport requires persistent sessions for connection management:
-
-- **Mandatory Sessions**: All SSE connections must have associated sessions
-- **Stream Binding**: Sessions are bound to specific SSE streams
-- **Real-time Communication**: Messages sent via SSE events in real-time
-- **Connection Lifecycle**: Session lifecycle tied to SSE connection state
-
-### Streamable HTTP Transport Sessions
-Streamable HTTP transport supports optional sessions for enhanced functionality:
-
-- **Optional Sessions**: Sessions can be used but are not required
-- **Stateless Operation**: Supports both stateless and session-based operation
-- **Header-Based**: Session IDs passed via `Mcp-Session-Id` header
-- **Flexible Lifecycle**: Sessions can span multiple HTTP requests
-
-## Integration Points
-
-### SSE Handler Integration
-The session manager works closely with the SSE handler:
-
-```typescript
-// Session creation during SSE establishment
-const sessionId = this.sessionManager.createSession(reply.raw);
-
-// Message routing through sessions
-this.sseHandler.sendMessage(sessionId, response);
-
-// Error handling via sessions
-this.sseHandler.sendError(sessionId, errorResponse);
-```
-
-### Streamable HTTP Handler Integration
-The session manager provides optional session support for Streamable HTTP:
-
-```typescript
-// Optional session validation for Streamable HTTP
-const sessionId = request.headers['mcp-session-id'];
-if (sessionId) {
- const session = this.sessionManager.getSession(sessionId);
- if (session) {
- this.sessionManager.updateActivity(sessionId);
- }
-}
-
-// Stateless operation when no session provided
-if (!sessionId) {
- // Handle request without session context
-}
-```
-
-### HTTP Proxy Integration
-Session validation across both transports in the HTTP proxy:
-
-```typescript
-// Transport-aware session handling
-if (isSSETransport) {
- // SSE requires session validation
- const session = this.sessionManager.getSession(sessionId);
- if (!session) {
- throw new Error('Invalid session for SSE transport');
- }
- this.sessionManager.updateActivity(sessionId);
-} else if (isStreamableHTTP && sessionId) {
- // Streamable HTTP optional session support
- const session = this.sessionManager.getSession(sessionId);
- if (session) {
- this.sessionManager.updateActivity(sessionId);
- }
-}
-```
-
-## Best Practices
-
-### Session Lifecycle
-- **Immediate Creation**: Sessions created immediately on SSE connection
-- **Activity Tracking**: Update activity on every valid request
-- **Graceful Cleanup**: Always clean up resources on session end
-- **Error Handling**: Handle all error conditions gracefully
-
-### Security Practices
-- **Validate Always**: Validate session ID on every request
-- **Time Limits**: Enforce reasonable session timeouts
-- **Resource Limits**: Monitor and limit concurrent sessions if needed
-- **Audit Trail**: Log session activities for security monitoring
-
-### Performance Practices
-- **Efficient Lookup**: Use Map for O(1) session lookup
-- **Minimal Data**: Store only essential session data
-- **Cleanup Scheduling**: Schedule cleanup to prevent resource leaks
-- **Error Recovery**: Implement robust error recovery mechanisms
-
-The session management system provides a secure, efficient, and robust foundation for persistent SSE connections while maintaining enterprise-grade security and operational requirements.
diff --git a/_DEPRECATED/gateway/sse-transport.mdx b/_DEPRECATED/gateway/sse-transport.mdx
deleted file mode 100644
index 64f7ec6..0000000
--- a/_DEPRECATED/gateway/sse-transport.mdx
+++ /dev/null
@@ -1,219 +0,0 @@
----
-title: SSE Transport Implementation
-description: Server-Sent Events transport layer for VS Code compatibility and dual-endpoint architecture
-sidebar: SSE Transport
-icon: Radio
----
-
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Radio, MessageSquare, Shield, Zap } from 'lucide-react';
-
-# SSE Transport Implementation
-
-The DeployStack Gateway implements Server-Sent Events (SSE) transport to provide VS Code compatibility through a clean dual-endpoint architecture.
-
-## Architecture Overview
-
-The Gateway uses a **dual-endpoint architecture** for SSE-based communication:
-
-- **GET /sse**: Establishes SSE connection and returns session endpoint
-- **POST /message**: Handles JSON-RPC requests with session context
-
-## Core Components
-
-
- }
- title="SSE Handler"
- >
- Manages Server-Sent Events connections, event formatting, and message routing
-
-
- }
- title="Session Manager"
- >
- Handles cryptographically secure session lifecycle with automatic cleanup
-
-
- }
- title="Dual Endpoints"
- >
- Supports both SSE and traditional HTTP clients with intelligent routing
-
-
- }
- title="Real-time Communication"
- >
- Persistent connections enable real-time bidirectional communication
-
-
-
-## Connection Flow
-
-### 1. SSE Connection Establishment
-```http
-GET /sse HTTP/1.1
-Accept: text/event-stream
-```
-
-**Response:**
-```
-HTTP/1.1 200 OK
-Content-Type: text/event-stream
-Cache-Control: no-cache
-Connection: keep-alive
-
-event: endpoint
-data: /message?session=L8B-xaw3HBZEftyo-JCrHoGWb_iikRZiwGfp9B71-GA
-```
-
-### 2. Session-Based JSON-RPC
-```http
-POST /message?session=L8B-xaw3HBZEftyo-JCrHoGWb_iikRZiwGfp9B71-GA
-Content-Type: application/json
-
-{
- "jsonrpc": "2.0",
- "id": 1,
- "method": "initialize",
- "params": {
- "clientInfo": {"name": "vscode", "version": "1.0.0"},
- "protocolVersion": "2025-03-26"
- }
-}
-```
-
-**HTTP Response:**
-```json
-{"status": "accepted", "messageId": 1}
-```
-
-**SSE Response:**
-```
-id: msg-1753710728979-95czkmmq8
-event: message
-data: {"jsonrpc":"2.0","id":1,"result":{"serverInfo":{"name":"deploystack-gateway","version":"1.0.0"},"protocolVersion":"2025-03-26","capabilities":{"tools":{"listChanged":false}}}}
-```
-
-## Session Management
-
-### Session ID Generation
-- **Algorithm**: Cryptographically secure random bytes (32 bytes = 256 bits)
-- **Encoding**: Base64url for URL safety
-- **Format**: `L8B-xaw3HBZEftyo-JCrHoGWb_iikRZiwGfp9B71-GA`
-- **Validation**: Length and character set validation
-
-### Session Lifecycle
-1. **Creation**: Generated on SSE connection establishment
-2. **Validation**: Verified on each JSON-RPC request
-3. **Activity Tracking**: Updated on every message
-4. **Timeout**: 30-minute inactivity timeout
-5. **Cleanup**: Automatic resource cleanup on disconnect
-
-### Security Features
-- **Cryptographic Security**: 256-bit entropy prevents session prediction
-- **Automatic Expiration**: Sessions expire after 30 minutes of inactivity
-- **Connection Validation**: Session tied to specific SSE stream
-- **Resource Cleanup**: Automatic cleanup prevents memory leaks
-
-## Message Routing
-
-### Supported Methods
-The SSE transport handles all standard MCP protocol methods:
-
-- **initialize**: Gateway initialization with capabilities
-- **notifications/initialized**: Client initialization confirmation
-- **tools/list**: Returns available MCP servers as toggleable tools
-- **tools/call**: Executes MCP server management actions
-- **resources/list**: Returns empty resources (handled locally)
-- **resources/templates/list**: Returns empty templates (handled locally)
-- **prompts/list**: Returns empty prompts (handled locally)
-
-### Error Handling
-Errors are sent via SSE with proper JSON-RPC error format:
-
-```
-id: err-1753710744580-061x9gi8x
-event: error
-data: {"jsonrpc":"2.0","error":{"code":-32603,"message":"Internal server error","data":"Server not available"},"id":2}
-```
-
-## VS Code Integration
-
-### Expected Client Behavior
-1. **Connection**: Client connects to `http://localhost:9095/sse` via SSE
-2. **Endpoint Discovery**: Receives session endpoint via `endpoint` event
-3. **Initialization**: Sends `initialize` request to session endpoint
-4. **Tool Discovery**: Calls `tools/list` to discover available MCP servers
-5. **Tool Management**: Uses `tools/call` to enable/disable/status MCP servers
-
-### Configuration
-VS Code MCP client configuration:
-```json
-{
- "mcpServers": {
- "deploystack": {
- "url": "http://localhost:9095/sse"
- }
- }
-}
-```
-
-## Performance Considerations
-
-### Connection Management
-- **Keep-Alive**: Persistent SSE connections reduce connection overhead
-- **Heartbeat**: Optional heartbeat messages maintain connection health
-- **Timeout Handling**: Automatic cleanup prevents resource exhaustion
-
-### Memory Management
-- **Session Cleanup**: Automatic cleanup on disconnect or timeout
-- **Stream Management**: Proper SSE stream lifecycle management
-- **Error Recovery**: Graceful handling of connection failures
-
-### Client Detection
-The Gateway detects SSE clients based on:
-- **Accept Header**: `text/event-stream` indicates SSE client
-- **User-Agent**: VS Code, Cursor, or other MCP clients
-- **Request Method**: GET for SSE establishment, POST for session-based messaging
-
-## Implementation Details
-
-### SSE Event Format
-All SSE events follow this structure:
-```
-id:
-event:
-data:
-
-```
-
-### Event Types
-- **endpoint**: Session endpoint URL
-- **message**: JSON-RPC response
-- **error**: JSON-RPC error response
-- **notification**: Server notifications
-
-### Connection Cleanup
-Cleanup triggers include:
-- Client disconnect (`close` event)
-- Connection error (`error` event)
-- Stream finish (`finish` event)
-- Session timeout (30 minutes)
-
-## Security Considerations
-
-### Session Security
-- **Unpredictable IDs**: Cryptographically secure generation
-- **Time-Limited**: Automatic expiration prevents indefinite access
-- **Connection-Bound**: Sessions tied to specific SSE connections
-
-### Network Security
-- **Localhost Only**: Server binds only to localhost interface
-- **No External Access**: No exposure to external networks
-- **CORS Configuration**: Restricted to authorized origins
-
-The SSE transport implementation provides a robust, secure, and performant foundation for VS Code integration with clean dual-endpoint architecture.
diff --git a/_DEPRECATED/gateway/structure.mdx b/_DEPRECATED/gateway/structure.mdx
deleted file mode 100644
index cae4dd9..0000000
--- a/_DEPRECATED/gateway/structure.mdx
+++ /dev/null
@@ -1,134 +0,0 @@
----
-title: Gateway Project Structure
-description: Directory structure and architecture of the DeployStack Gateway CLI
-sidebar: Project Structure
-icon: FolderTree
----
-
-# Gateway Project Structure
-
-The DeployStack Gateway is structured as a TypeScript CLI application using Commander.js with a modular architecture designed for maintainability and extensibility.
-
-## Directory Overview
-
-```bash
-services/gateway/
-├── src/ # Source code
-│ ├── index.ts # CLI entry point and command registration
-│ ├── commands/ # Command implementations
-│ │ ├── login.ts # Authentication with cloud.deploystack.io
-│ │ ├── start.ts # Start the gateway server
-│ │ ├── refresh.ts # Root-level refresh command
-│ │ └── ... # Other CLI commands
-│ ├── core/ # Core business logic
-│ │ ├── auth/ # Authentication handling
-│ │ ├── server/ # HTTP proxy server with SSE support
-│ │ ├── process/ # MCP process management
-│ │ ├── mcp/ # MCP configuration management
-│ │ └── config/ # Configuration utilities
-│ ├── services/ # Shared business services
-│ │ ├── refresh-service.ts # Shared MCP configuration refresh logic
-│ │ ├── server-start-service.ts # Centralized server startup logic
-│ │ └── ... # Other shared services
-│ ├── utils/ # Shared utilities
-│ │ ├── logger.ts # Centralized logging
-│ │ └── ... # Other utilities
-│ └── types/ # TypeScript type definitions
-├── bin/gateway.js # Executable entry point
-├── dist/ # Compiled JavaScript (gitignored)
-├── tests/ # Test suite
-├── package.json # Dependencies and scripts
-├── tsconfig.json # TypeScript configuration
-└── README.md # Gateway-specific documentation
-```
-
-## Key Design Decisions
-
-### Modular Architecture
-The codebase is organized into distinct modules:
-- **Commands**: User-facing CLI commands
-- **Core**: Business logic separated by domain
-- **Services**: Shared business services for cross-command functionality
-- **Utils**: Reusable utilities and helpers
-
-### Process Management
-The `process/` module handles the complexity of:
-- Managing persistent background MCP server processes
-- Runtime state tracking and team isolation
-- Managing stdio communication with running processes
-- Injecting environment variables securely at startup
-- Graceful process lifecycle management following MCP protocol
-
-### Security First
-- Credentials are never stored in plain text
-- All sensitive data is encrypted at rest
-- Environment injection happens at runtime only
-
-### Developer Experience
-- Intuitive command structure (`deploystack login`, `deploystack start`, `deploystack mcp`)
-- Rich CLI feedback with colors and progress indicators
-- Clear error messages with actionable solutions
-- MCP server management and tool discovery capabilities
-
-## Module Responsibilities
-
-### Commands Layer
-Each command file exports a function that registers itself with Commander.js:
-```typescript
-export function registerLoginCommand(program: Command) {
- program
- .command('login')
- .description('Authenticate with DeployStack cloud')
- .action(async () => {
- // Implementation
- });
-}
-```
-
-### Core Modules
-
-**auth/**: Handles OAuth flow and token management
-- Secure storage of access tokens
-- Automatic token refresh
-- Session management
-
-**server/**: HTTP proxy server with dual transport support
-- **proxy.ts**: Dual-endpoint routing (GET /sse for SSE connections, POST /message for session-based JSON-RPC)
-- **session-manager.ts**: Cryptographically secure session lifecycle management
-- **sse-handler.ts**: Server-Sent Events implementation for VS Code compatibility
-
-**process/**: MCP server process lifecycle
-- Persistent background process management
-- Runtime state tracking with team isolation
-- Stdio transport implementation for continuous communication
-- Graceful lifecycle management following MCP protocol
-- Enterprise management layer (MCP servers as toggleable tools)
-
-**mcp/**: Configuration management and processing
-- Team configuration synchronization with cloud control plane
-- Raw API data storage and processed config generation
-- Secure credential injection and environment variable management
-- MCP server tool discovery and capability exploration
-- Team-aware tool caching system as detailed in [Caching System](/development/gateway/caching-system)
-- Installation method processing for correct server spawning
-
-**services/**: Shared business services for cross-command functionality
-- **refresh-service.ts**: Centralized MCP configuration refresh logic used by both `deploystack refresh` and `deploystack mcp --refresh` commands
-- Eliminates code duplication while maintaining identical behavior across commands
-- Provides consistent error handling and user feedback
-
-**utils/**: Shared utilities and centralized services
-- **tool-discovery-manager.ts**: Centralized tool discovery eliminating code duplication across commands
-- Logging, configuration, and encryption utilities
-- Progress indicators and error handling
-
-**config/**: Configuration utilities and defaults
-- Default gateway settings and validation
-- Configuration file management
-- Environment-specific overrides
-
-### Build Output
-The TypeScript code is compiled to CommonJS for maximum compatibility:
-- Source maps for debugging
-- Minified for production
-- External dependencies preserved
diff --git a/_DEPRECATED/gateway/teams.mdx b/_DEPRECATED/gateway/teams.mdx
deleted file mode 100644
index b31e18a..0000000
--- a/_DEPRECATED/gateway/teams.mdx
+++ /dev/null
@@ -1,140 +0,0 @@
----
-title: Team Context in Gateway CLI
-description: Understanding team-scoped operations and MCP server installations in the DeployStack Gateway CLI
-sidebar: Team Context
-icon: Users
----
-
-# Team Context in Gateway CLI
-
-The DeployStack Gateway CLI is fundamentally **team-centric**. All MCP server installations and operations are scoped to the currently selected team, reflecting the architectural design where teams serve as isolated workspaces for deployment resources.
-
-## Team Selection Architecture
-
-### Secure Storage Location
-
-Team selection is stored securely alongside authentication credentials using:
-- **Primary**: OS keychain (macOS Keychain, Windows Credential Manager, Linux Secret Service)
-- **Fallback**: Encrypted file at `~/.deploystack/credentials.enc`
-
-The selected team information is part of the `StoredCredentials` interface:
-
-```typescript
-interface StoredCredentials {
- // ... other credential fields
- selectedTeam?: {
- id: string; // Team ID for API operations
- name: string; // Team name for display
- };
-}
-```
-
-### Automatic Default Selection
-
-When users authenticate via `deploystack login`, the CLI automatically:
-
-1. Fetches user's teams from `/api/teams/me`
-2. Identifies the default team (`is_default: true`)
-3. Sets it as the selected team in secure storage
-4. Confirms selection to the user
-
-### Team Switching
-
-Users can change their active team context using:
-
-```bash
-deploystack teams --switch
-```
-
-This updates the stored team selection, affecting all subsequent CLI operations.
-
-## MCP Server Installation Scope
-
-### Database Architecture
-
-MCP server installations are stored in the `mcpServerInstallations` table with team-based foreign keys:
-
-```sql
-mcpServerInstallations:
- - team_id (FK to teams.id) -- Scopes installation to specific team
- - server_id (FK to mcpServers.id) -- References the MCP server definition
- - user_environment_variables -- Team-specific encrypted credentials
-```
-
-### Team-Scoped Operations
-
-All MCP-related CLI operations operate within the selected team context:
-
-- **Credential Injection**: Environment variables are team-specific
-- **Server Availability**: Only team's installed servers are accessible
-- **Configuration Sync**: Gateway downloads only selected team's configurations
-- **Process Management**: Spawned MCP processes use team-scoped credentials
-
-> **MCP Configuration Management**: For detailed information about how the Gateway downloads, processes, and stores MCP server configurations from the backend API, see the [Gateway MCP Configuration documentation](/development/gateway/mcp).
-
-### Cross-Team Isolation
-
-The architecture ensures complete isolation between teams:
-
-- Team A cannot access Team B's MCP server installations
-- Credentials are encrypted per team context
-- No cross-team data leakage in local processes
-
-## CLI Implementation Details
-
-### Storage Methods
-
-The `CredentialStorage` class provides team selection methods:
-
-- `updateSelectedTeam(teamId, teamName)` - Updates selected team
-- `getSelectedTeam()` - Retrieves current selection
-- Team data is persisted with other authentication credentials
-
-### Team-Aware Commands
-
-Key commands that depend on team context:
-
-- `deploystack start` - Starts gateway for selected team's MCP servers
-- `deploystack teams` - Shows selection status and switching options
-- Future MCP management commands will operate on selected team
-
-### API Integration
-
-Team context affects backend communication:
-
-- All MCP-related API calls include team context
-- Configuration sync requests are team-scoped
-- Credential retrieval is filtered by team membership
-
-## Developer Guidelines
-
-### Working with Team Context
-
-When developing CLI features that interact with MCP servers:
-
-1. **Always check team selection** before MCP operations
-2. **Use team ID for API calls** (not just team name)
-3. **Scope local storage** by team when caching configurations
-4. **Validate team access** before exposing functionality
-
-### Future Considerations
-
-The team context system is designed to support:
-
-- Multi-team development workflows
-- Team-specific MCP server catalogs
-- Role-based access to different tool sets
-- Enterprise governance and audit trails
-
-For complete team management information, see the [Teams documentation](/teams).
-
-## Error Handling
-
-CLI commands should gracefully handle team context issues:
-
-- **No team selected**: Prompt user to select a team
-- **Invalid team**: Guide user to available teams
-- **Team access revoked**: Require re-authentication
-- **Team deleted**: Clear selection and prompt for new team
-
-This team-centric design ensures that the Gateway CLI operates as a secure, isolated workspace aligned with organizational boundaries while maintaining a smooth developer experience.
diff --git a/_DEPRECATED/gateway/tech-stack.mdx b/_DEPRECATED/gateway/tech-stack.mdx
deleted file mode 100644
index 1564320..0000000
--- a/_DEPRECATED/gateway/tech-stack.mdx
+++ /dev/null
@@ -1,264 +0,0 @@
----
-title: Gateway Tech Stack
-description: CLI framework and npm packages used in the DeployStack Gateway
-sidebar: Tech Stack
-icon: Package
----
-
-# Gateway Tech Stack
-
-The DeployStack Gateway is built with a carefully selected set of Node.js packages that prioritize developer experience, security, and performance.
-
-## Core Framework
-
-### Commander.js
-Our CLI framework of choice for building the gateway's command-line interface.
-
-**Why Commander?**
-- Battle-tested by major CLIs (Vue CLI, Create React App)
-- Excellent TypeScript support
-- Simple yet powerful API
-- Extensive documentation and community
-
-### Fastify
-High-performance HTTP server framework for the proxy server implementation.
-
-**Why Fastify?**
-- Excellent TypeScript support with built-in type definitions
-- High performance with low overhead
-- Rich plugin ecosystem for middleware
-- Built-in JSON schema validation
-- Comprehensive logging and error handling
-
-## UI and Feedback
-
-### Chalk
-Terminal string styling for colorful and readable output.
-
-**Features:**
-- Semantic color methods for different message types
-- Support for 256 colors and Truecolor
-- Auto-detects color support
-- Respects NO_COLOR environment variable
-
-### Ora
-Elegant terminal spinners for long-running operations.
-
-**Use Cases:**
-- Authentication flows
-- Configuration syncing
-- Process spawning feedback
-- Network operations
-
-### CLI-Progress
-Customizable progress bars for detailed operation feedback.
-
-**Features:**
-- Single and multi-bar support
-- Customizable formats and styles
-- Ideal for file operations and bulk processing
-
-## Interactive Components
-
-### Inquirer.js
-Interactive command line prompts for user input.
-
-**Prompt Types:**
-- Text input for credentials
-- Password input with masking
-- Selection lists for configuration options
-- Confirmations for destructive operations
-
-## Development Tools
-
-### TypeScript
-Full TypeScript support for type safety and better developer experience.
-
-**Benefits:**
-- Type safety catches errors at compile time
-- Better IDE support with autocomplete
-- Self-documenting code through types
-- Easier refactoring
-
-### tsx
-Run TypeScript files directly without compilation during development.
-
-### Build Tool - tsup
-Fast TypeScript bundler powered by esbuild.
-
-**Why tsup?**
-- Lightning fast builds using esbuild
-- Zero config with sensible defaults
-- Built-in TypeScript support
-- Generates CommonJS and ESM outputs
-
-**Configuration Example:**
-```typescript
-export default defineConfig({
- entry: ['src/index.ts'],
- format: ['cjs'],
- target: 'node16',
- clean: true,
- sourcemap: true,
-});
-```
-
-## Utility Libraries
-
-### File System Operations
-
-**fs-extra**
-Enhanced file system module with promise support and extra methods.
-- Includes all standard fs methods
-- Adds useful methods like `copy`, `remove`, `ensureDir`
-- Promise-based API for cleaner async code
-- Essential for team-aware tool caching system
-
-**glob**
-File pattern matching using shell-style wildcards.
-- Find files matching patterns like `*.ts` or `src/**/*.js`
-- Essential for batch operations
-
-### Process Management
-
-**execa**
-Better child process execution for spawning MCP servers.
-- Improved error handling
-- Promise-based interface
-- Better Windows support
-- Automatic escaping of arguments
-
-**ps-tree**
-Process tree management for proper cleanup.
-- Find all child processes of a parent
-- Ensure clean shutdown of spawned MCP servers
-
-### Configuration
-
-**cosmiconfig**
-Flexible configuration file loader.
-- Searches for config in multiple formats (.json, .yml, .js)
-- Supports `.deploystackrc`, `deploystack.config.js`, package.json
-- Follows common patterns used by ESLint, Prettier, etc.
-
-**dotenv**
-Environment variable loading from .env files.
-- Load configuration from `.env` files
-- Support for different environments (.env.local, .env.production)
-
-### Security
-
-**keytar**
-Native OS keychain integration for secure credential storage.
-- macOS: Keychain Access
-- Windows: Credential Manager
-- Linux: Secret Service API
-- No plain text passwords on disk
-
-**crypto-js**
-Additional encryption for sensitive data.
-- AES encryption for config files
-- Secure hashing for verification
-
-**crypto (Node.js built-in)**
-Native cryptographic functionality for session management.
-- Cryptographically secure random bytes generation
-- Session ID generation with 256-bit entropy
-- Base64url encoding for URL-safe session identifiers
-
-### Networking
-
-**axios**
-Feature-rich HTTP client for cloud API communication.
-- Interceptors for auth token injection
-- Automatic retry logic
-- Request/response transformation
-
-**http-proxy**
-HTTP proxy for routing MCP requests to appropriate servers.
-- Route requests based on MCP server name
-- Inject authentication headers
-- Handle stdio-to-HTTP translation
-
-## Testing Stack
-
-**vitest**
-Fast unit testing framework with native TypeScript support.
-- Compatible with Jest API
-- Built-in TypeScript support
-- Extremely fast execution
-
-**supertest**
-HTTP assertion library for testing the proxy server.
-- Test HTTP endpoints
-- Assert response status, headers, and body
-- Works seamlessly with vitest
-
-**msw (Mock Service Worker)**
-API mocking for integration tests.
-- Mock cloud API responses
-- Test error scenarios
-- Intercept HTTP requests
-
-## Why This Stack?
-
-### 1. **Developer Experience**
-- Commander provides intuitive command structure
-- Chalk + Ora + CLI-Progress create rich, informative output
-- TypeScript ensures type safety and better IDE support
-
-### 2. **Security First**
-- Keytar integrates with OS keychains (macOS Keychain, Windows Credential Manager, Linux Secret Service)
-- Crypto-js for additional encryption layers
-- No plain text credential storage
-
-### 3. **Performance**
-- tsup/esbuild for fast builds
-- Minimal dependencies for quick startup
-- Lazy loading of heavy operations
-
-### 4. **Cross-Platform**
-- All packages support Windows, macOS, and Linux
-- Platform-specific features handled gracefully
-
-### 5. **Enterprise Ready**
-- Comprehensive error handling
-- Detailed logging capabilities
-- Extensible architecture
-
-## Installation
-
-All dependencies are managed through npm:
-
-```bash
-cd services/gateway
-npm install
-```
-
-## Development Workflow
-
-```bash
-# Development with hot reload
-npm run dev
-
-# Run TypeScript directly
-npm run start:dev
-
-# Build for production
-npm run build
-
-# Run tests
-npm test
-```
-
-## Package Selection Criteria
-
-When adding new packages, we consider:
-
-1. **Security**: Regular updates, no known vulnerabilities
-2. **Maintenance**: Active development, responsive maintainers
-3. **Size**: Minimal impact on CLI startup time
-4. **Compatibility**: Works across all target platforms
-5. **TypeScript**: First-class TypeScript support preferred
-
-This tech stack provides a solid foundation for building a secure, performant, and user-friendly CLI that meets enterprise requirements while maintaining excellent developer experience.
diff --git a/_DEPRECATED/gateway/testing.mdx b/_DEPRECATED/gateway/testing.mdx
deleted file mode 100644
index ef12d8b..0000000
--- a/_DEPRECATED/gateway/testing.mdx
+++ /dev/null
@@ -1,110 +0,0 @@
----
-title: Gateway Testing
-description: Testing commands and workflows for the DeployStack Gateway
-sidebar: Testing
-icon: TestTube
----
-
-# Gateway Testing
-
-The DeployStack Gateway includes testing infrastructure for ensuring reliability and quality of the CLI application.
-
-## Test Commands
-
-### Unit Tests
-```bash
-npm run test:unit
-```
-Currently displays a placeholder message as tests are not yet implemented.
-
-### Linting
-```bash
-npm run lint
-```
-Runs ESLint with automatic fixing of common issues. Essential for maintaining code quality.
-
-### Build Verification
-```bash
-npm run build
-```
-Compiles TypeScript to JavaScript and verifies the build process.
-
-## Development Workflow
-
-### Local Development
-```bash
-npm run dev
-```
-Starts the gateway in development mode with hot reload using `ts-node-dev`.
-
-### Manual Testing
-```bash
-npm run link
-```
-Links the local gateway for testing CLI commands globally.
-
-After linking, test commands directly:
-```bash
-deploystack version
-deploystack status
-deploystack --help
-```
-
-## Release Testing
-
-### Pre-release Checks
-```bash
-npm run release
-```
-Runs linting checks before creating a release through `release-it`.
-
-### CI/CD Testing
-The GitHub Actions workflow automatically runs:
-- Build verification
-- Linting checks
-- Unit tests (when implemented)
-
-## Testing Strategy
-
-### CLI-Specific Testing
-- **Command validation**: Ensure all commands parse correctly
-- **Output formatting**: Verify chalk styling and user messages
-- **Error handling**: Test failure scenarios and exit codes
-- **Cross-platform**: Validate behavior on Windows, macOS, and Linux
-
-### Integration Points
-- **Authentication flows**: Test login/logout workflows
-- **Configuration management**: Verify config file operations
-- **Process management**: Test MCP server spawning and cleanup
-- **Proxy functionality**: Validate HTTP proxy routing
-
-## Future Testing Implementation
-
-The gateway will include comprehensive testing using:
-- **vitest** for unit testing
-- **supertest** for HTTP endpoint testing
-- **msw** for API mocking
-- Cross-platform testing in CI/CD
-
-## Development Tips
-
-### Quick Validation
-```bash
-# Check command structure
-deploystack --help
-
-# Verify version info
-deploystack version
-
-# Test error handling
-deploystack invalid-command
-```
-
-### Build and Test Cycle
-```bash
-npm run lint # Fix code style issues
-npm run build # Verify compilation
-npm run link # Test locally
-```
-
-This testing approach ensures the gateway maintains high quality while remaining focused on the essential CLI functionality.
\ No newline at end of file
diff --git a/app/[[...slug]]/page.tsx b/app/[[...slug]]/page.tsx
deleted file mode 100644
index 8984065..0000000
--- a/app/[[...slug]]/page.tsx
+++ /dev/null
@@ -1,129 +0,0 @@
-import type { Metadata } from 'next';
-import { DocsLayout } from 'fumadocs-ui/layouts/docs';
-import { DocsPage, DocsBody } from 'fumadocs-ui/page';
-import { notFound } from 'next/navigation';
-import { source } from '@/lib/source';
-import { generatePageMetadata, getCanonicalUrl } from '@/lib/seo-utils';
-import { getFinalPageTitle } from '@/lib/h1-extractor';
-import { readFile } from 'fs/promises';
-import { getMDXComponents } from '@/mdx-components';
-import { docsOptions } from '../layout.config';
-import { generateTechArticleSchema, generateBreadcrumbSchema, combineSchemas } from '@/lib/structured-data';
-
-export default async function Page({
- params,
-}: {
- params: Promise<{ slug?: string[] }>;
-}) {
- const { slug } = await params;
- const page = source.getPage(slug);
-
- if (!page) {
- notFound();
- }
-
- const MDX = page.data.body;
-
- // Generate structured data for all pages with content
- let structuredData = '';
- if (slug && slug.length > 0) {
- const slugString = slug.join('/');
- const url = `https://deploystack.io/docs/${slugString}`;
-
- // Get the final title (same logic as in generateMetadata)
- let finalTitle = page.data.title;
- try {
- const filePath = page.file.path;
- const absolutePath = `./docs/${filePath}`;
- const rawContent = await readFile(absolutePath, 'utf-8');
- finalTitle = getFinalPageTitle(rawContent, page.data.title);
- } catch (error) {
- finalTitle = page.data.title;
- }
-
- const articleSchema = generateTechArticleSchema({
- title: finalTitle,
- description: page.data.description,
- slug,
- url,
- });
-
- const breadcrumbSchema = generateBreadcrumbSchema(slug);
- structuredData = combineSchemas(articleSchema, breadcrumbSchema);
- }
-
- // Always use the unified source pageTree that includes all sections
- // Instead of switching between different trees, show all sections together
- const pageTree = source.pageTree;
-
- // Always use DocsLayout with sidebar for all pages including root
- return (
- <>
- {structuredData && (
-
- )}
-
-
-
-
-
-
-
-
- );
-}
-
-export async function generateStaticParams() {
- // Simply use the unified source generateParams
- return source.generateParams();
-}
-
-export async function generateMetadata({
- params,
-}: {
- params: Promise<{ slug?: string[] }>;
-}): Promise {
- const { slug } = await params;
- const page = source.getPage(slug);
-
- if (!page) {
- return {};
- }
-
- const slugString = slug ? slug.join('/') : '';
- const url = getCanonicalUrl(slugString);
-
- // Read the raw MDX file to extract H1 heading
- let finalTitle = page.data.title;
- try {
- // Get the absolute path from the page info
- const filePath = page.file.path;
- const absolutePath = `./docs/${filePath}`;
- const rawContent = await readFile(absolutePath, 'utf-8');
- finalTitle = getFinalPageTitle(rawContent, page.data.title);
- } catch (error) {
- // Fallback to frontmatter title if file reading fails
- console.warn('Failed to read MDX file for H1 extraction:', error);
- finalTitle = page.data.title;
- }
-
- return generatePageMetadata({
- title: finalTitle,
- description: page.data.description || 'DeployStack Documentation and API Reference',
- slug: slugString,
- url,
- });
-}
diff --git a/app/global.css b/app/global.css
deleted file mode 100644
index d07929f..0000000
--- a/app/global.css
+++ /dev/null
@@ -1,70 +0,0 @@
-/* Import Tailwind CSS v4 and Fumadocs UI presets */
-@import 'tailwindcss';
-@import 'fumadocs-ui/css/neutral.css';
-@import 'fumadocs-ui/css/preset.css';
-
-/* Include Fumadocs UI source for Tailwind v4 */
-@source '../node_modules/fumadocs-ui/dist/**/*.js';
-
-/* Define primary color in Tailwind v4 @theme directive */
-@theme {
- /* Primary color - Teal theme matching DeployStack brand */
- --color-primary: hsl(177, 79%, 28%); /* Teal-700 */
- --color-primary-foreground: hsl(0, 0%, 100%); /* White text on primary */
-
- /* Additional variants */
- --color-primary-hover: hsl(176, 79%, 23%); /* Darker teal for hover states */
- --color-primary-light: hsl(174, 72%, 56%); /* Lighter teal variant */
- --color-primary-dark: hsl(176, 100%, 16%); /* Darker teal variant */
-}
-
-/* Dark mode color overrides */
-:root {
- /* Light mode is default, defined in @theme above */
-}
-
-.dark {
- /* Dark mode primary colors */
- --color-primary: hsl(174, 72%, 56%); /* Lighter teal for dark mode */
- --color-primary-foreground: hsl(176, 100%, 6%); /* Dark text on primary in dark mode */
-
- --color-primary-hover: hsl(173, 68%, 64%); /* Lighter on hover in dark mode */
- --color-primary-light: hsl(172, 66%, 70%); /* Even lighter variant */
- --color-primary-dark: hsl(177, 79%, 28%); /* Original teal for contrast */
-}
-
-/* Custom navbar styling to match main site */
-/* Navbar height override removed since navbar is now inside content area */
-
-/* Ensure logo and navigation styling matches main site */
-.fd-nav-title {
- font-weight: 600;
- font-size: 18px;
-}
-
-/* Style the login button to match main site */
-[data-fumadocs-nav] a[href*="login"] {
- background: var(--color-primary);
- color: var(--color-primary-foreground);
- border-radius: 9999px;
- padding: 0.5rem 1rem;
- font-weight: 500;
- transition: background-color 0.2s ease;
-}
-
-[data-fumadocs-nav] a[href*="login"]:hover {
- background: var(--color-primary-hover);
-}
-
-/* Ensure Documentation link is highlighted when active */
-[data-fumadocs-nav] a[href="/docs"][data-active="true"] {
- color: var(--color-primary);
- font-weight: 600;
-}
-
-/* Optional: Add your own global styles or font imports here */
-/* For example, to set a default font:
-body {
- font-family: 'Inter', sans-serif; // Make sure to import 'Inter' or your chosen font
-}
-*/
diff --git a/app/layout.config.tsx b/app/layout.config.tsx
deleted file mode 100644
index 1ad7d90..0000000
--- a/app/layout.config.tsx
+++ /dev/null
@@ -1,42 +0,0 @@
-import type { BaseLayoutProps } from 'fumadocs-ui/layouts/shared';
-
-// Base configuration shared between both layouts
-const baseConfig = {
- nav: {
- title: 'DeployStack Docs',
- url: '/',
- },
- githubUrl: 'https://github.com/deploystackio/documentation',
-};
-
-// Configuration for the home page (root URL) with all links visible
-export const homeOptions: BaseLayoutProps = {
- ...baseConfig,
- links: [
- {
- text: 'Changelog',
- url: 'https://deploystack.io/changelog',
- external: true,
- },
- {
- type: 'custom',
- secondary: true,
- children: (
-
- Login
-
- ),
- },
- ],
-};
-
-export const docsOptions: BaseLayoutProps = {
- ...baseConfig
-};
-
-export const baseOptions = docsOptions;
diff --git a/app/layout.tsx b/app/layout.tsx
deleted file mode 100644
index 8f776b1..0000000
--- a/app/layout.tsx
+++ /dev/null
@@ -1,52 +0,0 @@
-import { RootProvider } from 'fumadocs-ui/provider';
-import type { ReactNode } from 'react';
-import type { Metadata } from 'next';
-import { generateWebSiteSchema, generateOrganizationSchema, combineSchemas } from '@/lib/structured-data';
-import './global.css'; // Import global styles
-
-export const metadata: Metadata = {
- title: {
- template: '%s | DeployStack Docs',
- default: 'DeployStack Docs',
- },
- description: 'DeployStack Full Documentation and API',
- metadataBase: new URL('https://deploystack.io'),
- icons: {
- icon: '/favicon.png',
- shortcut: '/favicon.png',
- },
- openGraph: {
- type: 'website',
- locale: 'en',
- siteName: 'DeployStack Documentation',
- },
- twitter: {
- site: '@deploystack',
- },
-};
-
-export default function Layout({ children }: { children: ReactNode }) {
- // Generate site-wide structured data
- const websiteSchema = generateWebSiteSchema();
- const organizationSchema = generateOrganizationSchema();
- const structuredData = combineSchemas(websiteSchema, organizationSchema);
-
- return (
-
-
-
-
-
- {children}
-
-
- );
-}
diff --git a/app/sitemap.ts b/app/sitemap.ts
deleted file mode 100644
index cdecdaa..0000000
--- a/app/sitemap.ts
+++ /dev/null
@@ -1,19 +0,0 @@
-import { MetadataRoute } from 'next';
-import { source } from '@/lib/source';
-
-export const dynamic = 'force-static';
-
-export default function sitemap(): MetadataRoute.Sitemap {
- // Get all pages from source.getPages() which combines all sources
- const allPages = source.getPages();
-
- // Map pages to sitemap entries
- const sitemapEntries = allPages.map((page) => ({
- url: new URL(page.url, 'https://docs.deploystack.io').toString(),
- lastModified: page.data.lastModified ? new Date(page.data.lastModified) : undefined,
- changeFrequency: 'weekly' as const,
- priority: page.url === '/' ? 1.0 : page.url.startsWith('/development') || page.url.startsWith('/self-hosted') ? 0.7 : 0.8,
- }));
-
- return sitemapEntries;
-}
diff --git a/docs/assets/images/deploystack/deploystack-iac-flow-via-github-app.drawio b/assets/images/deploystack/deploystack-iac-flow-via-github-app.drawio
similarity index 100%
rename from docs/assets/images/deploystack/deploystack-iac-flow-via-github-app.drawio
rename to assets/images/deploystack/deploystack-iac-flow-via-github-app.drawio
diff --git a/docs/assets/images/docker-to-iac/aws-fargate.drawio.png b/assets/images/docker-to-iac/aws-fargate.drawio.png
similarity index 100%
rename from docs/assets/images/docker-to-iac/aws-fargate.drawio.png
rename to assets/images/docker-to-iac/aws-fargate.drawio.png
diff --git a/docs/assets/images/docker-to-iac/render.com-dashboard-blueprints.png b/assets/images/docker-to-iac/render.com-dashboard-blueprints.png
similarity index 100%
rename from docs/assets/images/docker-to-iac/render.com-dashboard-blueprints.png
rename to assets/images/docker-to-iac/render.com-dashboard-blueprints.png
diff --git a/assets/images/logo/dark.svg b/assets/images/logo/dark.svg
new file mode 100644
index 0000000..f147a2c
--- /dev/null
+++ b/assets/images/logo/dark.svg
@@ -0,0 +1,8 @@
+
+
+
diff --git a/assets/images/logo/dark.webp b/assets/images/logo/dark.webp
new file mode 100644
index 0000000..667b56f
Binary files /dev/null and b/assets/images/logo/dark.webp differ
diff --git a/assets/images/logo/light.svg b/assets/images/logo/light.svg
new file mode 100644
index 0000000..8be2af0
--- /dev/null
+++ b/assets/images/logo/light.svg
@@ -0,0 +1,8 @@
+
+
+
diff --git a/assets/images/logo/light.webp b/assets/images/logo/light.webp
new file mode 100644
index 0000000..24c1a8a
Binary files /dev/null and b/assets/images/logo/light.webp differ
diff --git a/docs/development/backend/api.mdx b/development/backend/api/index.mdx
similarity index 96%
rename from docs/development/backend/api.mdx
rename to development/backend/api/index.mdx
index 847363d..e34fe8a 100644
--- a/docs/development/backend/api.mdx
+++ b/development/backend/api/index.mdx
@@ -1,6 +1,7 @@
---
title: API Documentation Generation
description: Complete guide to generating OpenAPI specifications, Swagger documentation, and API testing tools for DeployStack Backend development.
+sidebarTitle: Overview
---
# API Documentation Generation
@@ -18,7 +19,7 @@ The DeployStack Backend uses Fastify with Swagger plugins to automatically gener
## Security First
-**IMPORTANT**: Before developing any protected API endpoints, read the [API Security Best Practices](/development/backend/api-security) documentation. It covers critical security patterns including:
+**IMPORTANT**: Before developing any protected API endpoints, read the [API Security Best Practices](/development/backend/api/security) documentation. It covers critical security patterns including:
- **Authorization Before Validation**: Why `preValidation` must be used instead of `preHandler` for authorization
- **Proper Error Responses**: Ensuring unauthorized users get 403 Forbidden, not validation errors
@@ -544,6 +545,39 @@ const routeSchema = {
};
```
+## Naming Convention
+
+**CRITICAL**: The DeployStack Backend uses **snake_case** for all API request and response field names.
+
+### Examples:
+- Query parameters: `category_id`, `sort_by`, `user_agent`
+- Response fields: `has_more`, `total_requests`, `created_at`
+- Request body fields: `team_id`, `server_id`, `process_id`
+
+### Why snake_case?
+- **Consistency**: Matches database column naming conventions
+- **REST API Standards**: snake_case is common in RESTful APIs
+- **Satellite Integration**: Ensures compatibility with satellite event system
+
+### Examples from Existing Routes:
+```typescript
+// Query parameters (snake_case)
+interface QueryParams {
+ category_id?: string;
+ sort_by?: 'name' | 'github_stars';
+ user_agent?: string;
+}
+
+// Response fields (snake_case)
+interface Response {
+ has_more: boolean;
+ total_requests: number;
+ created_at: string;
+}
+```
+
+**Note**: TypeScript interfaces and JavaScript variables can use camelCase internally, but all external API fields MUST use snake_case.
+
## Adding Documentation to Routes
The DeployStack Backend uses **reusable JSON Schema constants** for both validation and documentation generation. This approach provides a single source of truth for API schemas.
diff --git a/docs/development/backend/api-pagination.mdx b/development/backend/api/pagination.mdx
similarity index 100%
rename from docs/development/backend/api-pagination.mdx
rename to development/backend/api/pagination.mdx
diff --git a/docs/development/backend/api-security.mdx b/development/backend/api/security.mdx
similarity index 99%
rename from docs/development/backend/api-security.mdx
rename to development/backend/api/security.mdx
index c248a0f..94bb98b 100644
--- a/docs/development/backend/api-security.mdx
+++ b/development/backend/api/security.mdx
@@ -763,6 +763,6 @@ Before deploying any protected endpoint, verify:
## Related Documentation
-- [API Documentation Generation](/development/backend/api) - General API development patterns
+- [API Documentation Generation](/development/backend/api/) - General API development patterns
- [Authentication System](/development/backend/auth) - User authentication implementation
- [Role-Based Access Control](/development/backend/roles) - Permission system details
diff --git a/docs/development/backend/auth.mdx b/development/backend/auth.mdx
similarity index 97%
rename from docs/development/backend/auth.mdx
rename to development/backend/auth.mdx
index 5185896..37152d7 100644
--- a/docs/development/backend/auth.mdx
+++ b/development/backend/auth.mdx
@@ -261,12 +261,12 @@ Supporting tables for full functionality:
## API Reference
-For a complete list of authentication API endpoints and their specifications, see the [Backend API Documentation](/development/backend/api). The API documentation includes OpenAPI specifications with detailed request/response schemas for all authentication endpoints.
+For a complete list of authentication API endpoints and their specifications, see the [Backend API Documentation](/development/backend/api/). The API documentation includes OpenAPI specifications with detailed request/response schemas for all authentication endpoints.
## Related Documentation
- [Security Policy](/development/backend/security) - Security implementation details
-- [Database Schema](/development/backend/database) - Complete database structure
-- [API Documentation](/development/backend/api) - Full API reference
+- [Database Schema](/development/backend/database/) - Complete database structure
+- [API Documentation](/development/backend/api/) - Full API reference
- [OAuth Provider Implementation](/development/backend/oauth-providers) - Third-party OAuth login setup
- [OAuth2 Server Implementation](/development/backend/oauth2-server) - OAuth2 server for API access
diff --git a/docs/development/backend/cloud-credentials.mdx b/development/backend/cloud-credentials.mdx
similarity index 100%
rename from docs/development/backend/cloud-credentials.mdx
rename to development/backend/cloud-credentials.mdx
diff --git a/docs/development/backend/database.mdx b/development/backend/database/index.mdx
similarity index 99%
rename from docs/development/backend/database.mdx
rename to development/backend/database/index.mdx
index 378c6ea..8aad2a1 100644
--- a/docs/development/backend/database.mdx
+++ b/development/backend/database/index.mdx
@@ -1,6 +1,7 @@
---
title: Database Management
description: Multi-database support with SQLite and Turso using environment-based configuration and Drizzle ORM for DeployStack Backend development.
+sidebarTitle: Overview
---
# Database Management
@@ -21,8 +22,8 @@ The backend uses an environment-based configuration system where database creden
> **Setup Instructions**: For step-by-step setup instructions, see the [Database Setup Guide](/self-hosted/database-setup).
> **Database-Specific Guides**: For detailed technical information about specific databases, see:
-> - [SQLite Development Guide](/development/backend/database-sqlite)
-> - [Turso Development Guide](/development/backend/database-turso)
+> - [SQLite Development Guide](/development/backend/database/sqlite)
+> - [Turso Development Guide](/development/backend/database/turso)
### Environment Variables
diff --git a/docs/development/backend/database-sqlite.mdx b/development/backend/database/sqlite.mdx
similarity index 99%
rename from docs/development/backend/database-sqlite.mdx
rename to development/backend/database/sqlite.mdx
index f93f899..47a9c7d 100644
--- a/docs/development/backend/database-sqlite.mdx
+++ b/development/backend/database/sqlite.mdx
@@ -1,6 +1,7 @@
---
title: SQLite Database Development Guide
description: Technical implementation details and best practices for SQLite integration in DeployStack Backend development.
+sidebarTitle: SQLite Database
---
# SQLite Database Development Guide
diff --git a/docs/development/backend/database-turso.mdx b/development/backend/database/turso.mdx
similarity index 99%
rename from docs/development/backend/database-turso.mdx
rename to development/backend/database/turso.mdx
index 1a6b192..196d169 100644
--- a/docs/development/backend/database-turso.mdx
+++ b/development/backend/database/turso.mdx
@@ -1,6 +1,7 @@
---
title: Turso Database Development
description: Complete guide to using Turso distributed SQLite database with DeployStack Backend, including setup, configuration, and best practices.
+sidebarTitle: Turso Database
---
# Turso Database Development
diff --git a/docs/development/backend/environment-variables.mdx b/development/backend/environment-variables.mdx
similarity index 98%
rename from docs/development/backend/environment-variables.mdx
rename to development/backend/environment-variables.mdx
index 87d99fe..aa2f710 100644
--- a/docs/development/backend/environment-variables.mdx
+++ b/development/backend/environment-variables.mdx
@@ -1,7 +1,6 @@
---
title: Environment Variables
description: Complete guide to configuring and using environment variables in the DeployStack backend application for both development and production environments.
-sidebar: Environment Variables
---
# Backend Environment Variables
@@ -434,6 +433,6 @@ docker exec -it container-name printenv NODE_ENV
## Related Documentation
- [Backend Development Guide](/development/backend) - Main backend development guide
-- [Database Configuration](/development/backend/database) - Database setup and configuration
-- [API Documentation](/development/backend/api) - API development guide
+- [Database Configuration](/development/backend/database/) - Database setup and configuration
+- [API Documentation](/development/backend/api/) - API development guide
- [Deploy DeployStack](/self-hosted/docker-compose) - Deploy DeployStack with Docker Compose
diff --git a/docs/development/backend/events.mdx b/development/backend/events.mdx
similarity index 98%
rename from docs/development/backend/events.mdx
rename to development/backend/events.mdx
index 10e2a55..a81f10a 100644
--- a/docs/development/backend/events.mdx
+++ b/development/backend/events.mdx
@@ -7,7 +7,7 @@ description: Type-safe event system for decoupled communication between core sys
The Global Event Bus enables decoupled communication between core systems and plugins through a type-safe event system. Core systems emit events when important actions occur, and plugins can react without direct coupling to business logic.
-**Note**: This documentation covers the **internal backend event bus** for plugin communication. If you're looking for the **satellite events system** (incoming events from satellites), see [Satellite Events](/development/backend/satellite-events).
+**Note**: This documentation covers the **internal backend event bus** for plugin communication. If you're looking for the **satellite events system** (incoming events from satellites), see [Satellite Events](/development/backend/satellite/events).
## Overview
diff --git a/docs/development/backend/global-settings.mdx b/development/backend/global-settings.mdx
similarity index 100%
rename from docs/development/backend/global-settings.mdx
rename to development/backend/global-settings.mdx
diff --git a/docs/development/backend/index.mdx b/development/backend/index.mdx
similarity index 83%
rename from docs/development/backend/index.mdx
rename to development/backend/index.mdx
index 3e6a234..20fd76a 100644
--- a/docs/development/backend/index.mdx
+++ b/development/backend/index.mdx
@@ -1,11 +1,10 @@
---
title: Backend Development
description: Complete guide to developing and contributing to the DeployStack backend - a high-performance Node.js application built with Fastify, TypeScript, and extensible plugin architecture.
-sidebar: Getting Started
+sidebarTitle: Overview
---
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Database, Shield, Plug, Settings, Mail, TestTube, Wrench, BookOpen, Terminal, ListTodo } from 'lucide-react';
+
# DeployStack Backend Development
@@ -32,95 +31,95 @@ The development server starts at `http://localhost:3000` with API documentation
## Development Guides
-
+}
- href="/deploystack/development/backend/api"
+ icon="book-open"
+ href="/development/backend/api/index"
title="API Documentation"
>
Learn how to generate OpenAPI specifications, use Swagger UI, and implement JSON Schema validation for automatic API documentation.
}
- href="/deploystack/development/backend/database"
+ icon="database"
+ href="/development/backend/database/index"
title="Database Management"
>
SQLite and PostgreSQL setup, schema management, migrations, and Drizzle ORM best practices.
}
- href="/deploystack/development/backend/plugins"
+ icon="plug"
+ href="/development/backend/plugins"
title="Plugin System"
>
Create extensible plugins with isolated routes, database extensions, and security features for custom functionality.
}
- href="/deploystack/development/backend/global-settings"
+ icon="settings"
+ href="/development/backend/global-settings"
title="Global Settings"
>
Configuration management system with encrypted storage, role-based access, and plugin extensions.
}
- href="/deploystack/development/backend/security"
+ icon="shield"
+ href="/development/backend/security"
title="Security & Roles"
>
Authentication, authorization, role-based access control, and security best practices.
}
- href="/deploystack/development/backend/mail"
+ icon="mail"
+ href="/development/backend/mail"
title="Mail System"
>
Email service configuration, SMTP setup, template management, and transactional email sending.
}
- href="/deploystack/development/backend/test"
+ icon="test-tube"
+ href="/development/backend/test"
title="Testing"
>
Testing strategies, examples, and best practices for backend development and API testing.
}
- href="/deploystack/development/backend/roles"
+ icon="wrench"
+ href="/development/backend/roles"
title="Roles Management"
>
User roles, permissions system, and access control implementation details.
}
- href="/deploystack/development/backend/satellite-communication"
+ icon="terminal"
+ href="/development/backend/satellite-communication"
title="Satellite Communication"
>
API endpoints for satellite registration, configuration management, and command orchestration with polling-based communication.
}
- href="/deploystack/development/backend/job-queue"
+ icon="list-todo"
+ href="/development/backend/job-queue"
title="Background Job Queue"
>
Database-backed job processing system with persistent storage, automatic retries, and rate limiting for long-running background tasks.
}
- href="/deploystack/development/backend/satellite-events"
+ icon="terminal"
+ href="/development/backend/satellite/events"
title="Satellite Events"
>
Real-time event processing from satellites with convention-based handlers routing to business tables for operational visibility.
-
+
## Project Structure
diff --git a/docs/development/backend/job-queue.mdx b/development/backend/job-queue.mdx
similarity index 97%
rename from docs/development/backend/job-queue.mdx
rename to development/backend/job-queue.mdx
index 0b00d3a..59dd5d7 100644
--- a/docs/development/backend/job-queue.mdx
+++ b/development/backend/job-queue.mdx
@@ -3,8 +3,6 @@ title: Background Job Queue
description: Database-backed job processing system with persistent storage, automatic retries, and rate limiting for long-running background tasks in DeployStack.
---
-import { Callout } from 'fumadocs-ui/components/callout';
-
# Background Job Queue System
The DeployStack backend includes a custom background job queue system for processing long-running tasks that cannot be completed within a typical HTTP request/response cycle. The system uses database-backed persistence with automatic retries and rate limiting.
@@ -51,9 +49,9 @@ Built-in support through the `scheduled_for` field. Jobs scheduled for future ex
## When to Use Job Queue vs Events
-
+
The job queue system complements rather than replaces the [Global Event Bus](/development/backend/events).
-
+
**Use Job Queue for:**
- Long-running operations (>30 seconds)
@@ -410,9 +408,9 @@ GROUP BY b.id;
## Database Schema
-
+
For the complete database schema, see [schema.sqlite.ts](https://github.com/deploystackio/deploystack/blob/main/services/backend/src/db/schema.sqlite.ts) in the backend directory.
-
+
### Jobs Table
@@ -504,10 +502,10 @@ Worker interface remains compatible, simplifying migration.
## Related Documentation
-- [Database Management](/development/backend/database) - Database configuration and schema
+- [Database Management](/development/backend/database/) - Database configuration and schema
- [Global Event Bus](/development/backend/events) - Event system for real-time notifications
- [Logging](/development/backend/logging) - Logging best practices and patterns
-- [API Documentation](/development/backend/api) - REST API endpoints and patterns
+- [API Documentation](/development/backend/api/) - REST API endpoints and patterns
## Common Use Cases
@@ -530,4 +528,4 @@ Generate complex reports from large datasets without blocking API requests.
The background job queue system provides a simple, reliable way to process long-running tasks in DeployStack. Built on familiar SQLite/Turso infrastructure, it requires no additional services while providing persistence, retry logic, and rate limiting. Workers follow a straightforward pattern making them easy to implement and test.
-For routine operations, the system handles thousands of jobs efficiently. For specialized needs requiring higher throughput or distributed processing, the architecture supports clear migration paths to more advanced solutions.
+For routine operations, the system handles thousands of jobs efficiently. For specialized needs requiring higher throughput or distributed processing, the architecture supports clear migration paths to more advanced solutions.
\ No newline at end of file
diff --git a/docs/development/backend/logging.mdx b/development/backend/logging.mdx
similarity index 98%
rename from docs/development/backend/logging.mdx
rename to development/backend/logging.mdx
index ecacf35..4a81224 100644
--- a/docs/development/backend/logging.mdx
+++ b/development/backend/logging.mdx
@@ -1,11 +1,10 @@
---
title: Backend Logging & Log Level Configuration
description: Complete guide to configuring and using log levels in the DeployStack backend for development and production environments.
-sidebar: Logging
+sidebarTitle: Logging
---
-import { Callout } from 'fumadocs-ui/components/callout';
-import { CodeBlock } from 'fumadocs-ui/components/codeblock';
+
# Backend Log Level Configuration
@@ -380,9 +379,9 @@ server.log.error('Plugin failed to load', { pluginId, error });
## Fixing Console.log Issues
-
+
**Important**: Replace all `console.log` statements with proper Pino logger calls to ensure consistent formatting and log level filtering.
-
+
### Problem: Inconsistent Log Output
diff --git a/docs/development/backend/mail.mdx b/development/backend/mail.mdx
similarity index 97%
rename from docs/development/backend/mail.mdx
rename to development/backend/mail.mdx
index c540ea5..f197874 100644
--- a/docs/development/backend/mail.mdx
+++ b/development/backend/mail.mdx
@@ -3,7 +3,7 @@ title: Email Integration Documentation
description: Complete email system with Nodemailer, Pug templates, SMTP configuration, background job integration, and type-safe helper methods for DeployStack Backend.
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Email Integration Documentation
@@ -21,9 +21,9 @@ The email system provides a comprehensive solution for sending templated emails
## Recommended: Sending Emails via Background Jobs
-
+
**For all user-facing email operations, use the background job queue instead of direct email sending.**
-
+
The background job approach provides significant benefits over direct email sending:
@@ -114,9 +114,9 @@ For complete details on the job queue system, see the [Background Job Queue Docu
## Direct Email Sending (Advanced)
-
+
**Direct email sending is only recommended for specific use cases requiring immediate feedback.**
-
+
### When to Use Direct Sending
@@ -225,7 +225,7 @@ To create custom templates:
#### Color Guidelines
-When adding colors to email templates, follow the official DeployStack color system to maintain brand consistency. See the [UI Design System](/development/frontend/ui-design-system) page for color specifications.
+When adding colors to email templates, follow the official DeployStack color system to maintain brand consistency. See the [UI Design System](/development/frontend/ui/) page for color specifications.
## Advanced Email Options
@@ -404,7 +404,7 @@ for (let i = 0; i < users.length; i++) {
- [Background Job Queue](/development/backend/job-queue) - Complete job queue system documentation
- [Global Settings](/development/backend/global-settings) - SMTP and system configuration
-- [API Documentation](/development/backend/api) - REST API patterns and standards
+- [API Documentation](/development/backend/api/) - REST API patterns and standards
## Summary
diff --git a/docs/development/backend/mcp-configuration-architecture.mdx b/development/backend/mcp-configuration-architecture.mdx
similarity index 98%
rename from docs/development/backend/mcp-configuration-architecture.mdx
rename to development/backend/mcp-configuration-architecture.mdx
index 289b973..79706d5 100644
--- a/docs/development/backend/mcp-configuration-architecture.mdx
+++ b/development/backend/mcp-configuration-architecture.mdx
@@ -1,7 +1,6 @@
---
title: MCP Configuration Architecture
description: Developer guide to DeployStack's three-tier MCP server configuration system for arguments and environment variables.
-sidebar: MCP Configuration Architecture
---
# MCP Configuration Architecture
@@ -406,8 +405,8 @@ Configuration schema automatically transformed from official registry:
For specific implementation details:
-- [Backend API](/development/backend/api) - Complete API endpoint documentation
-- [Database Schema](/development/backend/database) - Database structure and relationships
+- [Backend API](/development/backend/api/) - Complete API endpoint documentation
+- [Database Schema](/development/backend/database/) - Database structure and relationships
- [Job Queue System](/development/backend/job-queue) - Background job processing for registry sync
- [Teams](/teams) - Team management and structure
- [MCP Configuration System](/mcp-configuration) - User-facing configuration guide
diff --git a/docs/development/backend/oauth-providers.mdx b/development/backend/oauth-providers.mdx
similarity index 94%
rename from docs/development/backend/oauth-providers.mdx
rename to development/backend/oauth-providers.mdx
index d771638..f63fa5d 100644
--- a/docs/development/backend/oauth-providers.mdx
+++ b/development/backend/oauth-providers.mdx
@@ -1,11 +1,12 @@
---
-title: OAuth Provider Implementation
-description: Developer guide for implementing third-party OAuth providers (GitHub, Google, etc.) for user authentication in DeployStack
+title: OAuth2 Provider Implementation
+description: Developer guide for implementing third-party OAuth2 providers (GitHub, Google, etc.) for user authentication in DeployStack
+sidebarTitle: OAuth2 Providers
---
-# OAuth Provider Implementation
+# OAuth2 Provider Implementation
-This document describes how to implement third-party OAuth providers for user authentication in DeployStack. The system currently supports GitHub OAuth as a reference implementation, but the architecture is designed to easily accommodate additional providers like Google, Microsoft, GitLab, and others.
+This document describes how to implement third-party OAuth2 providers for user authentication in DeployStack. The system currently supports GitHub OAuth2 as a reference implementation, but the architecture is designed to easily accommodate additional providers like Google, Microsoft, GitLab, and others.
For general authentication architecture, see [Backend Authentication System](/development/backend/auth). For OAuth2 server implementation (API access), see [OAuth2 Server Implementation](/development/backend/oauth2-server).
diff --git a/docs/development/backend/oauth2-server.mdx b/development/backend/oauth2-server.mdx
similarity index 98%
rename from docs/development/backend/oauth2-server.mdx
rename to development/backend/oauth2-server.mdx
index 22f7c1d..c0c8177 100644
--- a/docs/development/backend/oauth2-server.mdx
+++ b/development/backend/oauth2-server.mdx
@@ -1,6 +1,7 @@
---
title: OAuth2 Server Implementation
description: Developer guide for the OAuth2 authorization server that enables programmatic API access via Bearer tokens
+sidebarTitle: OAuth2 Server
---
# OAuth2 Server Implementation
@@ -231,7 +232,7 @@ The OAuth2 server implements standard OAuth2 endpoints following RFC 6749 and RF
- **Registration Endpoint** (`/api/oauth2/register`) - RFC 7591 compliant client registration
-For complete API specifications including request parameters, response schemas, and examples, see the [Backend API Documentation](/development/backend/api). The API documentation provides OpenAPI specifications for all OAuth2 endpoints.
+For complete API specifications including request parameters, response schemas, and examples, see the [Backend API Documentation](/development/backend/api/). The API documentation provides OpenAPI specifications for all OAuth2 endpoints.
## OAuth2 Scopes
@@ -553,5 +554,5 @@ The OAuth2 server supports MCP clients through dynamic registration:
- [Backend Authentication System](/development/backend/auth) - Core authentication
- [Satellite OAuth Authentication](/development/satellite/oauth-authentication) - MCP client authentication
- [Security Policy](/development/backend/security) - Security details
-- [API Documentation](/development/backend/api) - API reference
+- [API Documentation](/development/backend/api/) - API reference
- [OAuth Provider Implementation](/development/backend/oauth-providers) - Third-party OAuth login setup
\ No newline at end of file
diff --git a/docs/development/backend/plugins.mdx b/development/backend/plugins.mdx
similarity index 100%
rename from docs/development/backend/plugins.mdx
rename to development/backend/plugins.mdx
diff --git a/docs/development/backend/roles.mdx b/development/backend/roles.mdx
similarity index 98%
rename from docs/development/backend/roles.mdx
rename to development/backend/roles.mdx
index a814f2f..a07408c 100644
--- a/docs/development/backend/roles.mdx
+++ b/development/backend/roles.mdx
@@ -106,7 +106,7 @@ fastify.post('/teams/:teamId/resources', {
}, handler);
```
-See [API Security Best Practices](/development/backend/api-security) for detailed information about team-aware permissions and security patterns.
+See [API Security Best Practices](/development/backend/api/security) for detailed information about team-aware permissions and security patterns.
### Programmatic Checks
diff --git a/docs/development/backend/satellite-communication.mdx b/development/backend/satellite/communication.mdx
similarity index 97%
rename from docs/development/backend/satellite-communication.mdx
rename to development/backend/satellite/communication.mdx
index 4e3ecfb..4c3de16 100644
--- a/docs/development/backend/satellite-communication.mdx
+++ b/development/backend/satellite/communication.mdx
@@ -1,6 +1,7 @@
---
title: Satellite Communication
description: Backend API endpoints for satellite registration, command orchestration, and configuration management with team-aware MCP server distribution.
+sidebarTitle: Communication
---
# Satellite Communication
@@ -89,7 +90,7 @@ The system uses three distinct communication patterns:
- Satellites emit events when actions occur, batched every 3 seconds
- Contains: Point-in-time occurrences with precise timestamps
- Used for: Real-time UI updates, audit trails, user notifications
-- See [Satellite Events](/development/backend/satellite-events) for detailed implementation
+- See [Satellite Events](/development/backend/satellite/events) for detailed implementation
### Dual Deployment Models
@@ -105,7 +106,7 @@ The system uses three distinct communication patterns:
### Security Architecture
-The satellite pairing process implements a secure **two-phase JWT-based authentication system** that prevents unauthorized satellite connections. For complete implementation details, see [API Security - Registration Token Authentication](/development/backend/api-security#registration-token-authentication).
+The satellite pairing process implements a secure **two-phase JWT-based authentication system** that prevents unauthorized satellite connections. For complete implementation details, see [API Security - Registration Token Authentication](/development/backend/api/security#registration-token-authentication).
**Phase 1: Token Generation**
- Administrators generate temporary registration tokens through admin APIs
@@ -488,13 +489,13 @@ sqlite3 services/backend/persistent_data/database/deploystack.db
## API Documentation
-For detailed API endpoints, request/response formats, and authentication patterns, see the [API Specification](/development/backend/api) generated from the backend OpenAPI schema.
+For detailed API endpoints, request/response formats, and authentication patterns, see the [API Specification](/development/backend/api/) generated from the backend OpenAPI schema.
## Related Documentation
For detailed satellite architecture and implementation:
-- [Satellite Events](/development/backend/satellite-events) - Real-time event processing system
-- [API Security](/development/backend/api-security) - Security patterns and authorization
-- [Database Management](/development/backend/database) - Schema and data management
+- [Satellite Events](/development/backend/satellite/events) - Real-time event processing system
+- [API Security](/development/backend/api/security) - Security patterns and authorization
+- [Database Management](/development/backend/database/) - Schema and data management
- [OAuth2 Server](/development/backend/oauth2-server) - OAuth2 implementation details
diff --git a/docs/development/backend/satellite-events.mdx b/development/backend/satellite/events.mdx
similarity index 90%
rename from docs/development/backend/satellite-events.mdx
rename to development/backend/satellite/events.mdx
index 8affe0c..646e8ef 100644
--- a/docs/development/backend/satellite-events.mdx
+++ b/development/backend/satellite/events.mdx
@@ -1,6 +1,7 @@
---
title: Satellite Events System
description: Real-time event processing from satellites to backend with convention-based handler architecture and business logic routing.
+sidebarTitle: Events
---
# Satellite Events System
@@ -93,7 +94,7 @@ export interface EventHandler {
**Authentication**: Satellite API key (Bearer token via `requireSatelliteAuth()` middleware)
-**Request Schema**:
+**Request Schema** (uses snake_case for all fields):
```json
{
"events": [
@@ -101,12 +102,14 @@ export interface EventHandler {
"type": "mcp.server.started",
"timestamp": "2025-01-10T10:30:45.123Z",
"data": {
- "processId": "proc-123",
- "serverId": "filesystem-team-xyz",
- "serverName": "Filesystem MCP",
- "teamId": "team-xyz",
+ "process_id": "proc-123",
+ "server_id": "filesystem-team-xyz",
+ "server_slug": "filesystem",
+ "team_id": "team-xyz",
"pid": 12345,
- "localPort": 8080
+ "transport": "stdio",
+ "tool_count": 0,
+ "spawn_duration_ms": 234
}
}
]
@@ -173,18 +176,18 @@ Updates `satelliteProcesses` table when server successfully spawns.
**Business Logic**: Sets status='running', records start time and process PID.
-**Required Fields**: `processId`, `serverId`, `serverName`, `teamId`
+**Required Fields** (snake_case): `process_id`, `server_id`, `server_slug`, `team_id`, `transport`, `tool_count`, `spawn_duration_ms`
-**Optional Fields**: `pid`, `localPort`
+**Optional Fields**: `pid` (OS process ID)
#### mcp.server.crashed
Updates `satelliteProcesses` table when server exits unexpectedly.
**Business Logic**: Sets status='failed', logs error details and exit code.
-**Required Fields**: `processId`, `serverId`, `serverName`, `teamId`
+**Required Fields** (snake_case): `process_id`, `server_id`, `server_slug`, `team_id`, `exit_code`, `signal`, `uptime_seconds`, `crash_count`, `will_restart`
-**Optional Fields**: `exitCode`, `signal`, `errorMessage`, `stackTrace`
+**Optional Fields**: None (all fields required for proper crash tracking)
### Tool Execution
@@ -193,14 +196,16 @@ Inserts record into `satelliteUsageLogs` for analytics and audit trails.
**Business Logic**: Logs tool execution with metrics, user context, and performance data.
-**Required Fields**: `toolName`, `serverId`, `teamId`
+**Required Fields** (snake_case): `tool_name`, `server_id`, `team_id`, `duration_ms`, `success`
-**Optional Fields**: `processId`, `userId`, `durationMs`, `statusCode`, `errorMessage`, `requestSizeBytes`, `responseSizeBytes`, `userAgent`, `ipAddress`
+**Optional Fields**: `error_message` (string, only present when success=false)
## Creating New Event Handlers
### Handler Template
+**CRITICAL**: All event data fields MUST use **snake_case** naming convention to match satellite event emission and backend API standards.
+
Create a new file in `services/backend/src/events/satellite/`:
```typescript
@@ -213,23 +218,24 @@ export const EVENT_TYPE = 'your.event.type';
export const SCHEMA = {
type: 'object',
properties: {
- requiredField: {
+ required_field: {
type: 'string',
minLength: 1,
description: 'Description of this field'
},
- optionalField: {
+ optional_field: {
type: 'number',
description: 'Optional numeric field'
}
},
- required: ['requiredField'],
+ required: ['required_field'],
additionalProperties: true
} as const;
+// TypeScript interface can use camelCase internally
interface YourEventData {
- requiredField: string;
- optionalField?: number;
+ required_field: string;
+ optional_field?: number;
}
export async function handle(
@@ -246,7 +252,7 @@ export async function handle(
status: 'updated',
updated_at: eventTimestamp
})
- .where(eq(yourTable.id, data.requiredField));
+ .where(eq(yourTable.id, data.required_field));
}
```
@@ -558,6 +564,6 @@ LIMIT 10;
## Related Documentation
- [Satellite Event System](/development/satellite/event-system) - Satellite-side event emission
-- [Satellite Communication](/development/backend/satellite-communication) - Full satellite communication architecture
-- [API Documentation](/development/backend/api) - OpenAPI specification generation
-- [Database Management](/development/backend/database) - Schema and migrations
+- [Satellite Communication](/development/backend/satellite/communication) - Full satellite communication architecture
+- [API Documentation](/development/backend/api/) - OpenAPI specification generation
+- [Database Management](/development/backend/database/) - Schema and migrations
diff --git a/docs/development/backend/security.mdx b/development/backend/security.mdx
similarity index 100%
rename from docs/development/backend/security.mdx
rename to development/backend/security.mdx
diff --git a/docs/development/backend/test.mdx b/development/backend/test.mdx
similarity index 99%
rename from docs/development/backend/test.mdx
rename to development/backend/test.mdx
index 96ec6e6..fc27c27 100644
--- a/docs/development/backend/test.mdx
+++ b/development/backend/test.mdx
@@ -1,6 +1,7 @@
---
title: Backend End-to-End Testing
description: Complete E2E testing setup with Jest, Supertest, and automated database cleanup for DeployStack Backend development.
+sidebarTitle: Backend E2E Testing
---
# Backend End-to-End Testing
diff --git a/docs/development/backend/user-preferences-system.mdx b/development/backend/user-preferences-system.mdx
similarity index 99%
rename from docs/development/backend/user-preferences-system.mdx
rename to development/backend/user-preferences-system.mdx
index b531dbf..b63ebae 100644
--- a/docs/development/backend/user-preferences-system.mdx
+++ b/development/backend/user-preferences-system.mdx
@@ -267,7 +267,7 @@ If you need to rename or remove preferences:
## Related Documentation
-- [API Security](/development/backend/api-security) - Security patterns and authorization
+- [API Security](/development/backend/api/security) - Security patterns and authorization
- [Role Management](/development/backend/roles) - Permission system details
- [Database Schema](https://github.com/deploystackio/deploystack/blob/main/services/backend/src/db/schema.sqlite.ts) - Complete database schema reference
diff --git a/docs/development/frontend/architecture.mdx b/development/frontend/architecture.mdx
similarity index 99%
rename from docs/development/frontend/architecture.mdx
rename to development/frontend/architecture.mdx
index 90a1260..4735239 100644
--- a/docs/development/frontend/architecture.mdx
+++ b/development/frontend/architecture.mdx
@@ -1,7 +1,7 @@
---
title: Frontend Architecture
description: Comprehensive guide to DeployStack frontend application architecture, design patterns, and development principles
-sidebar: Architecture
+sidebarTitle: Architecture
---
# Frontend Architecture
@@ -68,7 +68,7 @@ Components are **reusable UI building blocks** that encapsulate specific functio
#### Component Categories
-1. **UI Components** (`/ui`): Generic, design-system components - read the [UI Design System](/development/frontend/ui-design-system)
+1. **UI Components** (`/ui`): Generic, design-system components - read the [UI Design System](/development/frontend/ui/)
- Examples: Buttons, Modals, Inputs
- Stateless and focused on presentation
- Use shadcn-vue components where applicable
@@ -373,7 +373,7 @@ export function createColumns(): ColumnDef[] {
### Table Components
-For table implementations, use the shadcn-vue Table components as documented in the [Table Design System](/development/frontend/ui-design-system-table). Never use raw HTML table elements.
+For table implementations, use the shadcn-vue Table components as documented in the [Table Design System](/development/frontend/ui/-table). Never use raw HTML table elements.
## Component Communication Patterns
diff --git a/docs/development/frontend/environment-variables.mdx b/development/frontend/environment-variables.mdx
similarity index 99%
rename from docs/development/frontend/environment-variables.mdx
rename to development/frontend/environment-variables.mdx
index a060226..441ad58 100644
--- a/docs/development/frontend/environment-variables.mdx
+++ b/development/frontend/environment-variables.mdx
@@ -1,7 +1,6 @@
---
title: Environment Variables
description: Complete guide to configuring and using environment variables in the DeployStack frontend application for both development and production environments.
-sidebar: Environment Variables
---
# Frontend Environment Variables
diff --git a/docs/development/frontend/event-bus.mdx b/development/frontend/event-bus.mdx
similarity index 99%
rename from docs/development/frontend/event-bus.mdx
rename to development/frontend/event-bus.mdx
index c21fab4..5aa22c7 100644
--- a/docs/development/frontend/event-bus.mdx
+++ b/development/frontend/event-bus.mdx
@@ -1,7 +1,6 @@
---
title: Global Event Bus
description: Complete guide to using the global event bus system for cross-component communication in the DeployStack frontend.
-sidebar: Event Bus
---
# Global Event Bus
diff --git a/docs/development/frontend/global-settings.mdx b/development/frontend/global-settings.mdx
similarity index 99%
rename from docs/development/frontend/global-settings.mdx
rename to development/frontend/global-settings.mdx
index 92ad71e..3b2c962 100644
--- a/docs/development/frontend/global-settings.mdx
+++ b/development/frontend/global-settings.mdx
@@ -1,7 +1,7 @@
---
title: Global Settings Frontend Integration
description: Complete guide to the flexible global settings component system for creating custom setting interfaces with connection testing and validation.
-sidebar: Global Settings
+sidebarTitle: Global Settings
---
# Global Settings Frontend Integration
@@ -507,7 +507,7 @@ function previousStep() {
## Integration with Existing Systems
### Design System
-Follow the established [UI Design System](/development/frontend/ui-design-system) patterns. Use shadcn-vue components and maintain consistency with the overall design.
+Follow the established [UI Design System](/development/frontend/ui/) patterns. Use shadcn-vue components and maintain consistency with the overall design.
### Internationalization
Add i18n support following the [Internationalization Guide](/development/frontend/internationalization). Create dedicated translation files for your settings components.
diff --git a/docs/development/frontend/index.mdx b/development/frontend/index.mdx
similarity index 90%
rename from docs/development/frontend/index.mdx
rename to development/frontend/index.mdx
index 7a2bcdb..e08571f 100644
--- a/docs/development/frontend/index.mdx
+++ b/development/frontend/index.mdx
@@ -1,7 +1,7 @@
---
title: Frontend Development Guide
description: Complete guide to developing and contributing to the DeployStack frontend application built with Vue 3, TypeScript, and Vite.
-sidebar: Getting Started
+sidebarTitle: Overview
---
# DeployStack Frontend Development
@@ -68,15 +68,15 @@ The frontend follows a feature-based modular architecture with clear separation
For comprehensive component development guidelines, including Vue SFC best practices, component structure patterns, and implementation standards, see the [Frontend Architecture - Component Implementation Standards](/development/frontend/architecture#component-implementation-standards) section.
-For table-specific implementations, refer to the [Table Design System](/development/frontend/ui-design-system-table) guide.
+For table-specific implementations, refer to the [Table Design System](/development/frontend/ui/-table) guide.
## UI Components and Styling
-The frontend uses **TailwindCSS** for styling with **shadcn-vue** component library for consistent UI elements. For comprehensive styling guidelines, component patterns, and design standards, see the [UI Design System](/development/frontend/ui-design-system) documentation.
+The frontend uses **TailwindCSS** for styling with **shadcn-vue** component library for consistent UI elements. For comprehensive styling guidelines, component patterns, and design standards, see the [UI Design System](/development/frontend/ui/) documentation.
### ⚠️ **Mandatory Design Patterns**
-All structured information displays must follow the **[Structured Data Display Pattern](/development/frontend/ui-design-system-structured-data)**. This includes:
+All structured information displays must follow the **[Structured Data Display Pattern](/development/frontend/ui/-structured-data)**. This includes:
- User profiles and settings
- Form layouts
- Configuration displays
@@ -125,8 +125,8 @@ The frontend uses a service layer pattern with direct `fetch()` calls for API co
Continue reading the detailed guides:
- [Frontend Architecture](/development/frontend/architecture) - Application architecture, patterns, and development principles
-- [UI Design System](/development/frontend/ui-design-system) - Component patterns, styling guidelines, and design standards
-- **[Structured Data Display Pattern](/development/frontend/ui-design-system-structured-data)** - **Mandatory pattern** for consistent information display
+- [UI Design System](/development/frontend/ui/) - Component patterns, styling guidelines, and design standards
+- **[Structured Data Display Pattern](/development/frontend/ui/-structured-data)** - **Mandatory pattern** for consistent information display
- [Environment Variables](/development/frontend/environment-variables) - Complete environment configuration guide
- [Global Event Bus](/development/frontend/event-bus) - Cross-component communication system
- [Internationalization (i18n)](/development/frontend/internationalization) - Multi-language support
diff --git a/docs/development/frontend/internationalization.mdx b/development/frontend/internationalization.mdx
similarity index 100%
rename from docs/development/frontend/internationalization.mdx
rename to development/frontend/internationalization.mdx
diff --git a/docs/development/frontend/plugins.mdx b/development/frontend/plugins.mdx
similarity index 100%
rename from docs/development/frontend/plugins.mdx
rename to development/frontend/plugins.mdx
diff --git a/docs/development/frontend/router-optimization.mdx b/development/frontend/router-optimization.mdx
similarity index 99%
rename from docs/development/frontend/router-optimization.mdx
rename to development/frontend/router-optimization.mdx
index 0117876..5898a0a 100644
--- a/docs/development/frontend/router-optimization.mdx
+++ b/development/frontend/router-optimization.mdx
@@ -1,6 +1,7 @@
---
title: Router Optimization & Authentication Caching
description: Complete guide to the router performance optimizations and smart authentication caching system implemented in DeployStack frontend.
+sidebarTitle: Router Optimization
---
# Router Optimization & Authentication Caching
diff --git a/docs/development/frontend/storage.mdx b/development/frontend/storage.mdx
similarity index 99%
rename from docs/development/frontend/storage.mdx
rename to development/frontend/storage.mdx
index 8123518..1267a38 100644
--- a/docs/development/frontend/storage.mdx
+++ b/development/frontend/storage.mdx
@@ -1,7 +1,7 @@
---
title: Frontend Storage System
description: Complete guide to using the enhanced event bus storage system for persistent data management in the DeployStack frontend.
-sidebar: Storage
+sidebarTitle: Storage System
---
# Frontend Storage System
diff --git a/docs/development/frontend/custom-ui-components.mdx b/development/frontend/ui/custom-ui-components.mdx
similarity index 99%
rename from docs/development/frontend/custom-ui-components.mdx
rename to development/frontend/ui/custom-ui-components.mdx
index 48dc067..7f9a6b6 100644
--- a/docs/development/frontend/custom-ui-components.mdx
+++ b/development/frontend/ui/custom-ui-components.mdx
@@ -1,7 +1,6 @@
---
title: Custom UI Components
description: Complete guide for creating, managing, and extending custom UI components in the DeployStack frontend, including best practices for integrating with shadcn/vue.
-sidebar: Custom Components
---
# Custom UI Components
@@ -590,4 +589,4 @@ When shadcn/vue adds a component you've built custom:
---
-For questions about custom components, refer to the [UI Design System](/development/frontend/ui-design-system) documentation or reach out to the frontend team.
+For questions about custom components, refer to the [UI Design System](/development/frontend/ui/) documentation or reach out to the frontend team.
diff --git a/docs/development/frontend/ui-design-button-loading.mdx b/development/frontend/ui/design-button-loading.mdx
similarity index 93%
rename from docs/development/frontend/ui-design-button-loading.mdx
rename to development/frontend/ui/design-button-loading.mdx
index 2281b7b..13d2059 100644
--- a/docs/development/frontend/ui-design-button-loading.mdx
+++ b/development/frontend/ui/design-button-loading.mdx
@@ -1,7 +1,6 @@
---
title: Button with Loading States
description: Guide for using the enhanced Button component with built-in loading states.
-sidebar: Button Loading
---
# Button with Loading States
@@ -81,5 +80,5 @@ For implementation details, see the source code at `services/frontend/src/compon
## Related Documentation
-- [UI Design System](/development/frontend/ui-design-system) - Overall design patterns
-- [Global Sonner Toast System](/development/frontend/ui-design-global-sonner) - Toast notifications
+- [UI Design System](/development/frontend/ui/) - Overall design patterns
+- [Global Sonner Toast System](/development/frontend/ui/design-global-sonner) - Toast notifications
diff --git a/docs/development/frontend/ui-design-charts.mdx b/development/frontend/ui/design-charts.mdx
similarity index 99%
rename from docs/development/frontend/ui-design-charts.mdx
rename to development/frontend/ui/design-charts.mdx
index 10c0922..b187efc 100644
--- a/docs/development/frontend/ui-design-charts.mdx
+++ b/development/frontend/ui/design-charts.mdx
@@ -1,7 +1,6 @@
---
title: Charts with Vue ECharts
description: Guide to using Apache ECharts for data visualization in DeployStack frontend
-sidebar: Charts
---
# Charts with Vue ECharts
diff --git a/docs/development/frontend/ui-design-global-sonner.mdx b/development/frontend/ui/design-global-sonner.mdx
similarity index 99%
rename from docs/development/frontend/ui-design-global-sonner.mdx
rename to development/frontend/ui/design-global-sonner.mdx
index ddd785f..bd413de 100644
--- a/docs/development/frontend/ui-design-global-sonner.mdx
+++ b/development/frontend/ui/design-global-sonner.mdx
@@ -1,7 +1,6 @@
---
title: Global Sonner Toast System
description: Developer guide for using the global Sonner toast notification system in the DeployStack frontend.
-sidebar: Sonner Toasts
---
# Global Sonner Toast System
diff --git a/docs/development/frontend/ui-design-syntax-highlighter.mdx b/development/frontend/ui/design-syntax-highlighter.mdx
similarity index 97%
rename from docs/development/frontend/ui-design-syntax-highlighter.mdx
rename to development/frontend/ui/design-syntax-highlighter.mdx
index 506872f..df5c7e6 100644
--- a/docs/development/frontend/ui-design-syntax-highlighter.mdx
+++ b/development/frontend/ui/design-syntax-highlighter.mdx
@@ -1,7 +1,6 @@
---
title: Syntax Highlighting
description: Guide for using the CodeHighlight component to display syntax-highlighted code blocks.
-sidebar: Syntax Highlighting
---
# Syntax Highlighting
@@ -186,4 +185,4 @@ The component handles errors gracefully:
## Related Documentation
-- [UI Design System](/development/frontend/ui-design-system) - Overall design patterns
+- [UI Design System](/development/frontend/ui/) - Overall design patterns
diff --git a/docs/development/frontend/ui-design-system-pagination.mdx b/development/frontend/ui/design-system-pagination.mdx
similarity index 99%
rename from docs/development/frontend/ui-design-system-pagination.mdx
rename to development/frontend/ui/design-system-pagination.mdx
index 6ae9ad4..3257b9c 100644
--- a/docs/development/frontend/ui-design-system-pagination.mdx
+++ b/development/frontend/ui/design-system-pagination.mdx
@@ -1,6 +1,7 @@
---
title: Frontend Pagination Implementation Guide
description: Developer guide for implementing pagination in DeployStack frontend using the PaginationControls component.
+sidebarTitle: Pagination Guide
---
# Frontend Pagination Implementation Guide
diff --git a/docs/development/frontend/ui-design-system-structured-data.mdx b/development/frontend/ui/design-system-structured-data.mdx
similarity index 96%
rename from docs/development/frontend/ui-design-system-structured-data.mdx
rename to development/frontend/ui/design-system-structured-data.mdx
index e3f0c86..d8c7b9e 100644
--- a/docs/development/frontend/ui-design-system-structured-data.mdx
+++ b/development/frontend/ui/design-system-structured-data.mdx
@@ -1,7 +1,6 @@
---
title: Structured Data Display Pattern
description: Mandatory design pattern for displaying structured information consistently throughout the DeployStack frontend using description lists.
-sidebar: Structured Data
---
# Structured Data Display Pattern
@@ -307,7 +306,7 @@ When using this pattern within pages that require the ContentWrapper (tabbed con
```
-For more information about ContentWrapper usage, see the [Layout Design Patterns](/development/frontend/ui-design-system#layout-design-patterns) section.
+For more information about ContentWrapper usage, see the [Layout Design Patterns](/development/frontend/ui/#layout-design-patterns) section.
## Typography and Spacing Standards
@@ -481,9 +480,9 @@ For working examples of this pattern, see:
## Related Documentation
-- [UI Design System](/development/frontend/ui-design-system) - Overall design patterns and component guidelines
-- [ContentWrapper Pattern](/development/frontend/ui-design-system#layout-design-patterns) - Mandatory wrapper for tabbed content
-- [Form Design Patterns](/development/frontend/ui-design-system#form-design-patterns) - Additional form styling guidelines
+- [UI Design System](/development/frontend/ui/) - Overall design patterns and component guidelines
+- [ContentWrapper Pattern](/development/frontend/ui/#layout-design-patterns) - Mandatory wrapper for tabbed content
+- [Form Design Patterns](/development/frontend/ui/#form-design-patterns) - Additional form styling guidelines
---
diff --git a/docs/development/frontend/ui-design-system-table.mdx b/development/frontend/ui/design-system-table.mdx
similarity index 100%
rename from docs/development/frontend/ui-design-system-table.mdx
rename to development/frontend/ui/design-system-table.mdx
diff --git a/docs/development/frontend/ui-design-system.mdx b/development/frontend/ui/index.mdx
similarity index 98%
rename from docs/development/frontend/ui-design-system.mdx
rename to development/frontend/ui/index.mdx
index bbd5a7a..5f2113e 100644
--- a/docs/development/frontend/ui-design-system.mdx
+++ b/development/frontend/ui/index.mdx
@@ -1,7 +1,7 @@
---
title: UI Design System
description: Comprehensive guide to UI components, styling patterns, and design standards for the DeployStack frontend.
-sidebar: UI & Design
+sidebarTitle: Overview
---
# UI Design System
@@ -121,9 +121,9 @@ This hierarchy is a **design system requirement** and must be followed consisten
## Data Tables
-For data table implementation, see the dedicated [Table Design System](/development/frontend/ui-design-system-table) guide.
+For data table implementation, see the dedicated [Table Design System](/development/frontend/ui/-table) guide.
-For pagination implementation, see the [Pagination Implementation Guide](/development/frontend/ui-design-system-pagination).
+For pagination implementation, see the [Pagination Implementation Guide](/development/frontend/ui/-pagination).
## Badge Design Patterns
@@ -215,7 +215,7 @@ Use `AlertDialog` for forms in modals:
## Button Patterns
### Loading States
-Buttons now include built-in loading state functionality. For comprehensive loading button documentation, see the [Button Loading States Guide](/development/frontend/ui-design-button-loading).
+Buttons now include built-in loading state functionality. For comprehensive loading button documentation, see the [Button Loading States Guide](/development/frontend/ui/design-button-loading).
```html
diff --git a/docs/development/index.mdx b/development/index.mdx
similarity index 96%
rename from docs/development/index.mdx
rename to development/index.mdx
index dd72f5a..db99d57 100644
--- a/docs/development/index.mdx
+++ b/development/index.mdx
@@ -1,11 +1,9 @@
---
title: Development Guide
description: Complete development documentation for DeployStack - the first MCP-as-a-Service platform with satellite infrastructure and cloud control plane.
-icon: FileCode
---
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Code2, Server, Cloud, Users } from 'lucide-react';
+
# DeployStack Development
@@ -23,9 +21,9 @@ DeployStack implements an MCP-as-a-Service architecture that eliminates installa
## Development Areas
-
+}
+ icon="code"
href="/development/frontend"
title="Frontend Development"
>
@@ -33,7 +31,7 @@ DeployStack implements an MCP-as-a-Service architecture that eliminates installa
}
+ icon="server"
href="/development/backend"
title="Backend Development"
>
@@ -41,13 +39,13 @@ DeployStack implements an MCP-as-a-Service architecture that eliminates installa
}
+ icon="cloud"
href="/development/satellite"
title="Satellite Development"
>
MCP-as-a-Service infrastructure with global satellites, team satellites, zero-installation access, and enterprise-grade security.
-
+
## Getting Started
diff --git a/docs/development/satellite/architecture.mdx b/development/satellite/architecture.mdx
similarity index 99%
rename from docs/development/satellite/architecture.mdx
rename to development/satellite/architecture.mdx
index 571ae08..9530e82 100644
--- a/docs/development/satellite/architecture.mdx
+++ b/development/satellite/architecture.mdx
@@ -1,11 +1,8 @@
---
title: Satellite Architecture Design
description: Complete architectural overview of DeployStack Satellite - from current MCP transport implementation to full enterprise MCP management platform.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
-
# DeployStack Satellite Architecture
DeployStack Satellite is an edge worker service that manages MCP servers with dual deployment support: HTTP proxy for external endpoints and stdio subprocess for local MCP servers. This document covers both the current MCP transport implementation and the planned full architecture.
diff --git a/docs/development/satellite/backend-communication.mdx b/development/satellite/backend-communication.mdx
similarity index 98%
rename from docs/development/satellite/backend-communication.mdx
rename to development/satellite/backend-communication.mdx
index 5464501..10698b8 100644
--- a/docs/development/satellite/backend-communication.mdx
+++ b/development/satellite/backend-communication.mdx
@@ -1,10 +1,10 @@
---
title: Backend Communication
description: How DeployStack Satellite communicates with the Backend from the satellite perspective - HTTP polling, command processing, and status reporting.
-sidebar: Satellite Development
+sidebarTitle: Overview
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Satellite Backend Communication
@@ -103,7 +103,7 @@ if (connectionStatus.connection_status === 'connected') {
Satellite registration is now fully implemented with secure JWT-based token authentication preventing unauthorized satellite connections.
-For complete registration documentation, see [Satellite Registration](/development/satellite/registration). For backend token management details, see [Registration Token Authentication](/development/backend/api-security#registration-token-authentication).
+For complete registration documentation, see [Satellite Registration](/development/satellite/registration). For backend token management details, see [Registration Token Authentication](/development/backend/api/security#registration-token-authentication).
### Phase 3: Heartbeat Authentication ✅
@@ -445,6 +445,6 @@ server.log.info({
4. Add comprehensive monitoring and alerting
5. End-to-end testing and performance validation
-
+
The satellite communication system is designed for enterprise deployment with complete team isolation, resource management, and audit logging while maintaining the developer experience that defines the DeployStack platform.
-
+
diff --git a/docs/development/satellite/background-jobs.mdx b/development/satellite/background-jobs.mdx
similarity index 98%
rename from docs/development/satellite/background-jobs.mdx
rename to development/satellite/background-jobs.mdx
index 47a58be..33eed8e 100644
--- a/docs/development/satellite/background-jobs.mdx
+++ b/development/satellite/background-jobs.mdx
@@ -1,10 +1,9 @@
---
title: Background Jobs System
description: Cron-like job system for managing recurring background tasks in DeployStack Satellite with automatic error handling and monitoring.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Background Jobs System
@@ -108,9 +107,9 @@ jobManager.register(new ProcessHealthJob(server.log));
await jobManager.startAll();
```
-
+
That's it! Your job will start running immediately and then execute every 2 minutes automatically.
-
+
## Job Intervals
@@ -588,6 +587,6 @@ Planned improvements to the job system:
- 🚧 Job status API endpoint
- 🚧 Advanced monitoring features
-
+
The job system is production-ready and actively used for the heartbeat service. The pattern has proven stable and is ready for additional jobs.
-
+
diff --git a/docs/development/satellite/commands.mdx b/development/satellite/commands.mdx
similarity index 99%
rename from docs/development/satellite/commands.mdx
rename to development/satellite/commands.mdx
index 5132848..d4ea517 100644
--- a/docs/development/satellite/commands.mdx
+++ b/development/satellite/commands.mdx
@@ -1,7 +1,6 @@
---
title: Satellite Commands Reference
description: Complete reference of satellite command types, priorities, and their purposes in the DeployStack satellite system.
-sidebar: Commands
---
# Satellite Commands Reference
diff --git a/docs/development/satellite/event-system.mdx b/development/satellite/event-system.mdx
similarity index 99%
rename from docs/development/satellite/event-system.mdx
rename to development/satellite/event-system.mdx
index c1f861c..63c4712 100644
--- a/docs/development/satellite/event-system.mdx
+++ b/development/satellite/event-system.mdx
@@ -1,10 +1,9 @@
---
title: Event System
description: Real-time event emission from satellite to backend for operational visibility, audit trails, and user feedback.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Satellite Event System
@@ -63,6 +62,9 @@ Satellite Components EventBus Backend
- Handles partial success responses
## Event Types
+
+**Naming Convention**: All event data fields use **snake_case** (e.g., `server_id`, `team_id`, `spawn_duration_ms`) to match the backend API convention.
+
The satellite emits 10 event types across 4 categories:
@@ -306,9 +308,9 @@ The in-memory queue holds a maximum of 10,000 events:
- 10,000 events ≈ 10-20MB RAM
- Acceptable footprint for satellite process
-
+
Queue is in-memory only. Satellite restarts clear the queue. This is acceptable because events are operational telemetry, not critical data requiring persistence.
-
+
## Error Handling
diff --git a/docs/development/satellite/index.mdx b/development/satellite/index.mdx
similarity index 90%
rename from docs/development/satellite/index.mdx
rename to development/satellite/index.mdx
index 725a492..56605aa 100644
--- a/docs/development/satellite/index.mdx
+++ b/development/satellite/index.mdx
@@ -1,11 +1,10 @@
---
title: Satellite Development
description: Complete guide to developing and contributing to DeployStack Satellite - edge workers that manage MCP servers with team isolation and enterprise security.
-sidebar: Getting Started
+sidebarTitle: Overview
---
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Cloud, Shield, Plug, Settings, Network, TestTube, Wrench, BookOpen, Terminal, Users, Timer } from 'lucide-react';
+
# DeployStack Satellite Development
@@ -93,103 +92,103 @@ npm run release # Release management
## Development Guides
-
+}
- href="/development/satellite/architecture"
title="Architecture Design"
+ icon="book-open"
+ href="/development/satellite/architecture"
>
Learn the satellite system architecture, current implementation, and planned features.
}
- href="/development/satellite/mcp-transport"
title="MCP Transport Protocols"
+ icon="network"
+ href="/development/satellite/mcp-transport"
>
External communication endpoints for MCP client integration - SSE, Streamable HTTP, and Direct HTTP.
}
- href="/development/satellite/logging"
title="Logging & Configuration"
+ icon="terminal"
+ href="/development/satellite/logging"
>
Pino logging setup, log levels, environment configuration, and development patterns.
}
- href="/development/satellite/global-satellites"
title="Global Satellites"
+ icon="cloud"
+ href="/development/satellite/global-satellites"
>
Managed satellite infrastructure, auto-scaling, multi-region deployment, and freemium model.
}
- href="/development/satellite/team-satellites"
title="Team Satellites"
+ icon="users"
+ href="/development/satellite/team-satellites"
>
Enterprise on-premise deployment, internal resource access, and complete team isolation.
}
- href="/development/satellite/security"
title="Security & Isolation"
+ icon="shield"
+ href="/development/satellite/security"
>
Resource jailing, team isolation, credential management, and enterprise security features.
}
- href="/development/satellite/mcp-servers"
title="MCP Server Management"
+ icon="plug"
+ href="/development/satellite/mcp-servers"
>
Satellite-hosted MCP servers, process management, and tool availability.
}
- href="/development/satellite/configuration"
title="Configuration Management"
+ icon="settings"
+ href="/development/satellite/configuration"
>
Satellite configuration, team settings, and deployment parameters.
}
- href="/development/satellite/testing"
title="Testing Strategy"
+ icon="flask"
+ href="/development/satellite/testing"
>
Testing satellite infrastructure, deployment validation, and integration testing.
}
- href="/development/satellite/deployment"
title="Deployment & Operations"
+ icon="wrench"
+ href="/development/satellite/deployment"
>
Satellite deployment patterns, monitoring, scaling, and operational considerations.
}
- href="/development/satellite/background-jobs"
title="Background Jobs"
+ icon="clock"
+ href="/development/satellite/background-jobs"
>
Cron-like job system for recurring tasks with automatic error handling and monitoring.
}
- href="/development/satellite/event-system"
title="Event System"
+ icon="network"
+ href="/development/satellite/event-system"
>
Real-time event emission from satellite to backend with automatic batching and error handling.
-
+
## Current Features
diff --git a/docs/development/satellite/logging.mdx b/development/satellite/logging.mdx
similarity index 98%
rename from docs/development/satellite/logging.mdx
rename to development/satellite/logging.mdx
index 00f6cfd..d895fca 100644
--- a/docs/development/satellite/logging.mdx
+++ b/development/satellite/logging.mdx
@@ -1,11 +1,9 @@
---
title: Satellite Logging & Log Level Configuration
description: Complete guide to configuring and using log levels in the DeployStack Satellite for development and production environments.
-sidebar: Logging
---
-import { Callout } from 'fumadocs-ui/components/callout';
-import { CodeBlock } from 'fumadocs-ui/components/codeblock';
+
# Satellite Log Level Configuration
@@ -471,9 +469,9 @@ server.addHook('onRequest', async (request) => {
## Migration from Console.log
-
+
**Important**: Replace all `console.log` statements with proper Pino logger calls to ensure consistent formatting and log level filtering.
-
+
### Problem: Inconsistent Log Output
diff --git a/docs/development/satellite/mcp-transport.mdx b/development/satellite/mcp-transport.mdx
similarity index 100%
rename from docs/development/satellite/mcp-transport.mdx
rename to development/satellite/mcp-transport.mdx
diff --git a/docs/development/satellite/oauth-authentication.mdx b/development/satellite/oauth-authentication.mdx
similarity index 99%
rename from docs/development/satellite/oauth-authentication.mdx
rename to development/satellite/oauth-authentication.mdx
index c056942..7b0068a 100644
--- a/docs/development/satellite/oauth-authentication.mdx
+++ b/development/satellite/oauth-authentication.mdx
@@ -1,10 +1,9 @@
---
title: OAuth Authentication Implementation
description: Technical implementation of multi-team OAuth 2.1 Resource Server functionality in DeployStack Satellite for MCP client authentication.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# OAuth Authentication Implementation
@@ -807,6 +806,6 @@ LOG_LEVEL=debug npm run dev
The OAuth authentication implementation provides enterprise-grade security with complete team isolation while maintaining the existing satellite architecture and performance characteristics. The database-backed storage ensures MCP clients can cache credentials and maintain persistent authentication across sessions.
-
+
**Implementation Status**: OAuth authentication is fully implemented and operational with database-backed dynamic client registration. The system successfully authenticates MCP clients (including VS Code, Cursor, Claude.ai, and Cline) with team-aware access control, filters tools based on team permissions, and maintains complete team isolation while preserving all existing satellite functionality. Dynamic client registration enables seamless MCP client integration with persistent authentication.
-
+
diff --git a/docs/development/satellite/polling.mdx b/development/satellite/polling.mdx
similarity index 99%
rename from docs/development/satellite/polling.mdx
rename to development/satellite/polling.mdx
index 8e2d338..a735182 100644
--- a/docs/development/satellite/polling.mdx
+++ b/development/satellite/polling.mdx
@@ -1,10 +1,9 @@
---
title: Backend Polling Implementation
description: Technical implementation of satellite-to-backend polling system for command orchestration and configuration management.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Backend Polling Implementation
@@ -393,9 +392,9 @@ Polling generates predictable network patterns:
- **Heartbeats**: Regular status reports every 30 seconds
- **Command Results**: Small JSON responses after command execution
-
+
**Implementation Status**: The polling system is fully implemented and operational. It successfully handles command orchestration, configuration synchronization, and status reporting through outbound-only HTTP communication with the backend.
-
+
## Troubleshooting
diff --git a/docs/development/satellite/process-management.mdx b/development/satellite/process-management.mdx
similarity index 98%
rename from docs/development/satellite/process-management.mdx
rename to development/satellite/process-management.mdx
index e8c746b..c495c82 100644
--- a/docs/development/satellite/process-management.mdx
+++ b/development/satellite/process-management.mdx
@@ -1,10 +1,9 @@
---
title: Process Management
description: Technical implementation of stdio subprocess management for local MCP servers in DeployStack Satellite.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# stdio Process Management
@@ -41,9 +40,9 @@ The system automatically selects the appropriate spawning mode based on environm
- Non-root user (99999:99999)
- Network access enabled
-
+
**Mode Selection**: The system uses `process.env.NODE_ENV === 'production' && process.platform === 'linux'` to determine isolation mode. This ensures development works seamlessly on all platforms while production deployments get full security.
-
+
### Process Configuration
@@ -178,9 +177,9 @@ The system detects crashes based on exit conditions:
4. Attempt restart via `spawnProcess()`
5. Emit 'processRestarted' or 'restartLimitExceeded' event
-
+
**Permanently Failed State**: After 3 failed restart attempts, processes enter a permanently_failed state and are tracked separately for reporting. They will not be restarted automatically and require manual intervention.
-
+
## RuntimeState Integration
diff --git a/docs/development/satellite/registration.mdx b/development/satellite/registration.mdx
similarity index 98%
rename from docs/development/satellite/registration.mdx
rename to development/satellite/registration.mdx
index 59ee1d7..9498af7 100644
--- a/docs/development/satellite/registration.mdx
+++ b/development/satellite/registration.mdx
@@ -1,10 +1,9 @@
---
title: Satellite Registration
description: Complete guide to DeployStack Satellite registration process - environment variables, validation rules, upsert logic, and database integration.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Satellite Registration
@@ -62,9 +61,9 @@ rm services/satellite/persistent_data/backend.key.json
cat services/satellite/persistent_data/backend.key.json
```
-
+
**Important**: The `persistent_data/` directory must be writable by the satellite process. In production deployments, ensure proper volume mounting and permissions.
-
+
## Registration Overview
@@ -115,7 +114,7 @@ The registration system requires **valid JWT registration tokens** for security:
- **Admin-Controlled**: Only administrators can generate registration tokens
- **No Open Registration**: Satellites cannot register without proper authorization
-For detailed token management, see [Registration Token Authentication](/development/backend/api-security#registration-token-authentication).
+For detailed token management, see [Registration Token Authentication](/development/backend/api/security#registration-token-authentication).
## Environment Variables
@@ -447,6 +446,6 @@ open http://localhost:3001/documentation
- 🚧 API key rotation and renewal
- 🚧 Registration status monitoring and alerts
-
-The satellite registration system implements secure JWT-based pairing to prevent unauthorized satellite connections. Once registered with a valid token, satellites receive permanent API keys for ongoing communication. See [Backend API Security](/development/backend/api-security#registration-token-authentication) for complete token management details.
-
+
+The satellite registration system implements secure JWT-based pairing to prevent unauthorized satellite connections. Once registered with a valid token, satellites receive permanent API keys for ongoing communication. See [Backend API Security](/development/backend/api/security#registration-token-authentication) for complete token management details.
+
diff --git a/docs/development/satellite/team-isolation.mdx b/development/satellite/team-isolation.mdx
similarity index 98%
rename from docs/development/satellite/team-isolation.mdx
rename to development/satellite/team-isolation.mdx
index 006c39a..0ddd9c5 100644
--- a/docs/development/satellite/team-isolation.mdx
+++ b/development/satellite/team-isolation.mdx
@@ -1,10 +1,9 @@
---
title: Team Isolation Implementation
description: Technical implementation of OAuth-based team separation in DeployStack Satellite for multi-tenant MCP server access control.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
+
# Team Isolation Implementation
@@ -273,9 +272,9 @@ Team isolation maintains full MCP client compatibility:
- **No Team Awareness**: Clients remain unaware of team concepts
- **Standard MCP**: Full compliance with MCP protocol specification
-
+
**Implementation Status**: Team isolation is fully implemented and operational. The system provides complete team separation while maintaining MCP client compatibility and leveraging existing OAuth 2.1 authentication infrastructure.
-
+
## Related Documentation
diff --git a/docs/development/satellite/tool-discovery.mdx b/development/satellite/tool-discovery.mdx
similarity index 98%
rename from docs/development/satellite/tool-discovery.mdx
rename to development/satellite/tool-discovery.mdx
index 814c0d7..20f9c0e 100644
--- a/docs/development/satellite/tool-discovery.mdx
+++ b/development/satellite/tool-discovery.mdx
@@ -1,18 +1,15 @@
---
title: Tool Discovery Implementation
description: Technical implementation of MCP server tool discovery in DeployStack Satellite - unified architecture supporting both HTTP/SSE remote servers and stdio subprocess servers.
-sidebar: Satellite Development
---
-import { Callout } from 'fumadocs-ui/components/callout';
-
# Tool Discovery Implementation
DeployStack Satellite implements automatic tool discovery from MCP servers across both HTTP/SSE remote endpoints and stdio subprocess servers. This unified system provides dynamic tool availability without manual configuration, enabling MCP clients to discover and execute tools through the satellite's interface.
-
+
**Current Implementation**: Tool discovery fully supports both HTTP/SSE remote MCP servers and stdio subprocess servers through a unified architecture. The `UnifiedToolDiscoveryManager` coordinates discovery across both transport types, merging tools into a single cache for seamless client access.
-
+
For information about the overall satellite architecture, see [Satellite Architecture Design](/development/satellite/architecture). For details about the MCP transport protocols that expose discovered tools, see [MCP Transport Protocols](/development/satellite/mcp-transport).
@@ -243,9 +240,9 @@ curl http://localhost:3001/api/status/debug
- Discovery statistics for both managers
- Process status for stdio servers
-
+
**Security Notice**: The debug endpoint exposes detailed system information. Disable in production with `DEPLOYSTACK_STATUS_SHOW_MCP_DEBUG_ROUTE=false`.
-
+
### Testing Strategies
@@ -291,9 +288,9 @@ curl -X POST http://localhost:3001/mcp \
- HTTP: Limited by network connection pool
- stdio: Limited by system process limits
-
+
**Implementation Status**: Tool discovery is fully operational for both HTTP/SSE remote servers and stdio subprocess servers. The unified manager successfully coordinates discovery, merges tools, and routes execution requests to the appropriate transport.
-
+
## Future Enhancements
diff --git a/docs.json b/docs.json
new file mode 100644
index 0000000..6086916
--- /dev/null
+++ b/docs.json
@@ -0,0 +1,254 @@
+{
+ "$schema": "https://mintlify.com/docs.json",
+ "theme": "mint",
+ "name": "DeployStack - Enterprise Control Plane for MCP",
+ "colors": {
+ "primary": "#16A34A",
+ "light": "#07C983",
+ "dark": "#15803D"
+ },
+ "favicon": "/favicon.png",
+ "navigation": {
+ "tabs": [
+ {
+ "tab": "General",
+ "groups": [
+ {
+ "group": "Essentials",
+ "pages": [
+ "index",
+ "general/architecture",
+ "general/teams",
+ "general/roles",
+ "general/onboard-new-team-members",
+ "general/global-settings",
+ "general/security"
+ ]
+ },
+ {
+ "group": "MCP Server",
+ "pages": [
+ "/general/mcp-catalog",
+ "/general/mcp-installation",
+ "/general/mcp-categories",
+ "/general/mcp-admin-schema-workflow"
+ ]
+ },
+ {
+ "group": "MCP Server Configuration",
+ "pages": [
+ "/general/mcp-configuration",
+ "/general/mcp-user-configuration",
+ "/general/mcp-team-installation"
+ ]
+ }
+ ]
+ },
+ {
+ "tab": "Self Hosted",
+ "groups": [
+ {
+ "group": "Guides",
+ "pages": [
+ "self-hosted/quick-start",
+ "self-hosted/setup",
+ "self-hosted/docker-compose",
+ "self-hosted/upgrade-guide",
+ "self-hosted/database-setup"
+ ]
+ },
+ {
+ "group": "Administration",
+ "pages": [
+ "/general/auth",
+ "/general/github-application",
+ "/general/github-oauth-setup",
+ "/general/troubleshooting",
+ "/general/local-setup"
+ ]
+ }
+ ]
+ },
+ {
+ "tab": "Frontend Development",
+ "groups": [
+ {
+ "group": "Basics",
+ "pages": [
+ "/development/frontend/index",
+ "/development/frontend/architecture",
+ "/development/frontend/environment-variables",
+ "/development/frontend/event-bus",
+ "/development/frontend/global-settings",
+ "/development/frontend/internationalization",
+ "/development/frontend/plugins",
+ "/development/frontend/router-optimization",
+ "/development/frontend/storage"
+ ]
+ },
+ {
+ "group": "UI System",
+ "pages": [
+ "/development/frontend/ui/index",
+ "/development/frontend/ui/design-button-loading",
+ "/development/frontend/ui/design-charts",
+ "/development/frontend/ui/design-global-sonner",
+ "/development/frontend/ui/design-syntax-highlighter",
+ "/development/frontend/ui/design-system-pagination",
+ "/development/frontend/ui/design-system-structured-data",
+ "/development/frontend/ui/design-system-table",
+ "/development/frontend/ui/custom-ui-components"
+ ]
+ }
+ ]
+ },
+ {
+ "tab": "Backend Development",
+ "groups": [
+ {
+ "group": "Basics",
+ "pages": [
+ "/development/backend/index",
+ "/development/backend/environment-variables",
+ "/development/backend/plugins",
+ "/development/backend/security",
+ "/development/backend/logging",
+ "/development/backend/test"
+ ]
+ },
+ {
+ "group": "Advanced",
+ "pages": [
+ "/development/backend/user-preferences-system",
+ "/development/backend/events",
+ "/development/backend/global-settings",
+ "/development/backend/job-queue",
+ "/development/backend/mail",
+ "/development/backend/cloud-credentials"
+ ]
+ },
+ {
+ "group": "API",
+ "pages": [
+ "/development/backend/api/index",
+ "/development/backend/api/security",
+ "/development/backend/api/pagination"
+ ]
+ },
+ {
+ "group": "Database",
+ "pages": [
+ "/development/backend/database/index",
+ "/development/backend/database/sqlite",
+ "/development/backend/database/turso"
+ ]
+ },
+ {
+ "group": "Auth",
+ "pages": [
+ "/development/backend/roles",
+ "/development/backend/auth",
+ "/development/backend/oauth-providers",
+ "/development/backend/oauth2-server"
+ ]
+ },
+ {
+ "group": "Satellite",
+ "pages": [
+ "/development/backend/satellite/communication",
+ "/development/backend/satellite/events"
+ ]
+ }
+ ]
+ },
+ {
+ "tab": "Satellite Development",
+ "groups": [
+ {
+ "group": "Basics",
+ "pages": [
+ "/development/satellite/index",
+ "/development/satellite/architecture",
+ "/development/satellite/logging"
+ ]
+ },
+ {
+ "group": "Advanced",
+ "pages": [
+ "/development/satellite/background-jobs",
+ "/development/satellite/oauth-authentication"
+ ]
+ },
+ {
+ "group": "MCP Server Management",
+ "pages": [
+ "/development/satellite/mcp-transport",
+ "/development/satellite/process-management",
+ "/development/satellite/team-isolation",
+ "/development/satellite/tool-discovery"
+ ]
+ },
+ {
+ "group": "Backend Communication",
+ "pages": [
+ "/development/satellite/backend-communication",
+ "/development/satellite/event-system",
+ "/development/satellite/polling",
+ "/development/satellite/commands",
+ "/development/satellite/registration"
+ ]
+ }
+ ]
+ }
+ ],
+ "global": {
+ "anchors": [
+ {
+ "anchor": "Login to DeployStack",
+ "href": "https://cloud.deploystack.io",
+ "icon": "user-key"
+ },
+ {
+ "anchor": "Discord",
+ "href": "https://discord.gg/42Ce3S7b3b",
+ "icon": "discord"
+ }
+ ]
+ }
+ },
+ "logo": {
+ "light": "/assets/images/logo/light.webp",
+ "dark": "/assets/images/logo/dark.webp"
+ },
+ "navbar": {
+ "links": [
+ {
+ "label": "Changelog",
+ "href": "https://deploystack.io/changelog"
+ }
+ ],
+ "primary": {
+ "type": "button",
+ "label": "Dashboard",
+ "href": "https://cloud.deploystack.io/"
+ }
+ },
+ "contextual": {
+ "options": [
+ "copy",
+ "view",
+ "chatgpt",
+ "claude",
+ "perplexity",
+ "mcp",
+ "cursor",
+ "vscode"
+ ]
+ },
+ "footer": {
+ "socials": {
+ "x": "https://x.com/deploystack",
+ "github": "https://github.com/deploystackio"
+ }
+ }
+}
diff --git a/docs/development/backend/meta.json b/docs/development/backend/meta.json
deleted file mode 100644
index 6b9020e..0000000
--- a/docs/development/backend/meta.json
+++ /dev/null
@@ -1,9 +0,0 @@
-{
- "title": "Backend Development",
- "description": "Documentation for DeployStack Backend Development",
- "icon": "Server",
- "root": false,
- "pages": [
- "..."
- ]
-}
diff --git a/docs/development/frontend/meta.json b/docs/development/frontend/meta.json
deleted file mode 100644
index 75513a8..0000000
--- a/docs/development/frontend/meta.json
+++ /dev/null
@@ -1,9 +0,0 @@
-{
- "title": "Frontend Development",
- "description": "Documentation for DeployStack Frontend Development",
- "icon": "Monitor",
- "root": false,
- "pages": [
- "..."
- ]
-}
diff --git a/docs/development/meta.json b/docs/development/meta.json
deleted file mode 100644
index caffe29..0000000
--- a/docs/development/meta.json
+++ /dev/null
@@ -1,13 +0,0 @@
-{
- "title": "Development",
- "description": "Development documentation for DeployStack",
- "icon": "Code",
- "root": false,
- "pages": [
- "index",
- "---Sections---",
- "frontend",
- "backend",
- "satellite"
- ]
-}
\ No newline at end of file
diff --git a/docs/meta.json b/docs/meta.json
deleted file mode 100644
index 6173308..0000000
--- a/docs/meta.json
+++ /dev/null
@@ -1,43 +0,0 @@
-{
- "title": "DeployStack",
- "description": "Documentation for DeployStack",
- "icon": "DeployStackLogo",
- "pages": [
- "[DeployStackLogo][DeployStack](https://deploystack.io)",
- "[MessageCircle][Discord](https://discord.com/invite/42Ce3S7b3b)",
- "quick-start",
- "---General---",
- "architecture",
- "teams",
- "roles",
- "onboard-new-team-members",
- "global-settings",
- "security",
- "---MCP Server---",
- "mcp-catalog",
- "mcp-installation",
- "mcp-categories",
- "mcp-admin-schema-workflow",
- "---MCP Server Configuration---",
- "mcp-configuration",
- "mcp-team-installation",
- "mcp-user-configuration",
- "---Administration---",
- "auth",
- "github-application",
- "github-oauth-setup",
- "troubleshooting",
- "local-setup",
- "---Self Hosted---",
- "self-hosted/quick-start",
- "self-hosted/setup",
- "self-hosted/docker-compose",
- "self-hosted/upgrade-guide",
- "self-hosted/database-setup",
- "---Development---",
- "development/index",
- "development/frontend",
- "development/backend",
- "development/satellite"
- ]
-}
\ No newline at end of file
diff --git a/docs/self-hosted/meta.json b/docs/self-hosted/meta.json
deleted file mode 100644
index af1e00a..0000000
--- a/docs/self-hosted/meta.json
+++ /dev/null
@@ -1,5 +0,0 @@
-{
- "title": "Self Hosted",
- "description": "Self-hosted DeployStack",
- "root": false
-}
diff --git a/public/favicon.ico b/favicon.ico
similarity index 100%
rename from public/favicon.ico
rename to favicon.ico
diff --git a/public/favicon.png b/favicon.png
similarity index 100%
rename from public/favicon.png
rename to favicon.png
diff --git a/docs/architecture.mdx b/general/architecture.mdx
similarity index 97%
rename from docs/architecture.mdx
rename to general/architecture.mdx
index e6fcd5e..51b85bd 100644
--- a/docs/architecture.mdx
+++ b/general/architecture.mdx
@@ -1,13 +1,9 @@
---
title: Architecture Overview
description: Complete architectural overview of DeployStack's Control Plane / Data Plane system for enterprise MCP management
-sidebar: Architecture
-icon: Network
---
-import { Callout } from 'fumadocs-ui/components/callout';
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Zap, Shield, Monitor, Cloud, Settings, Users } from 'lucide-react';
+
# DeployStack Architecture
@@ -54,28 +50,28 @@ DeployStack introduces a **Control Plane / Satellite architecture** that brings
## Core Components
-
+}
title="Control Plane"
+ icon="cloud"
>
**cloud.deploystack.io** - Centralized management platform for teams, credentials, and MCP server configurations
}
title="Satellite Infrastructure"
+ icon="shield"
>
**Global & Team Satellites** - Managed MCP infrastructure providing instant access with zero installation
}
title="Developer Interface"
+ icon="monitor"
>
**Simple URL Configuration** - VS Code, Claude, and other MCP clients connect via HTTPS URL with OAuth
-
+
### Control Plane: cloud.deploystack.io
@@ -288,9 +284,9 @@ DeployStack supports multiple team memberships with instant context switching:
- **Instant Deployment**: Push configuration changes to all team members (coming soon)
- **Operational Insights**: Real-time monitoring and analytics (coming soon)
-
+
**MCP-as-a-Service**: DeployStack transforms MCP from individual developer tools into enterprise-ready infrastructure with zero installation friction, providing the security, governance, and operational control that organizations need while maintaining the developer experience that teams love.
-
+
---
diff --git a/docs/auth.mdx b/general/auth.mdx
similarity index 98%
rename from docs/auth.mdx
rename to general/auth.mdx
index 48ef630..39b5adc 100644
--- a/docs/auth.mdx
+++ b/general/auth.mdx
@@ -229,4 +229,4 @@ For developers and integrations, DeployStack provides REST API endpoints for aut
---
-For technical implementation details, see the [Backend Authentication Documentation](/development/backend/api) and [Global Settings Management](/global-settings).
+For technical implementation details, see the [Backend Authentication Documentation](/development/backend/api/) and [Global Settings Management](/global-settings).
diff --git a/docs/github-application.mdx b/general/github-application.mdx
similarity index 99%
rename from docs/github-application.mdx
rename to general/github-application.mdx
index f044773..032af77 100644
--- a/docs/github-application.mdx
+++ b/general/github-application.mdx
@@ -1,7 +1,6 @@
---
title: GitHub Application Integration
description: Understanding how DeployStack's GitHub integration works for MCP server creation and repository information extraction.
-sidebar: GitHub Application
---
# GitHub Application Integration
diff --git a/docs/github-oauth-setup.mdx b/general/github-oauth-setup.mdx
similarity index 99%
rename from docs/github-oauth-setup.mdx
rename to general/github-oauth-setup.mdx
index 6b593cf..6c23334 100644
--- a/docs/github-oauth-setup.mdx
+++ b/general/github-oauth-setup.mdx
@@ -1,7 +1,6 @@
---
title: GitHub OAuth Setup
description: Configure GitHub OAuth for user authentication and single sign-on in DeployStack.
-sidebar: GitHub OAuth
---
# GitHub OAuth Setup
diff --git a/docs/global-settings.mdx b/general/global-settings.mdx
similarity index 100%
rename from docs/global-settings.mdx
rename to general/global-settings.mdx
diff --git a/docs/local-setup.mdx b/general/local-setup.mdx
similarity index 58%
rename from docs/local-setup.mdx
rename to general/local-setup.mdx
index 628478e..177f51a 100644
--- a/docs/local-setup.mdx
+++ b/general/local-setup.mdx
@@ -1,103 +1,82 @@
---
title: Local Development Setup
description: Set up DeployStack for local development with npm scripts and hot reloading.
-sidebar: Local Setup
-icon: Code2
---
-import { Callout } from 'fumadocs-ui/components/callout';
-import { Tabs, Tab } from 'fumadocs-ui/components/tabs';
-import { Steps, Step } from 'fumadocs-ui/components/steps';
-
# Local Development Setup
This guide is for contributors and developers who want to run DeployStack locally for development purposes. If you want to deploy DeployStack for production use, see our [Self-Hosted Documentation](/self-hosted).
-
+
For production deployments, use our [Docker Compose setup](/self-hosted/docker-compose) instead.
-
+
## Prerequisites
-
-
- Before you can install and use DeployStack locally, make sure you have the following installed:
-
- - **[Git](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)**: Version control system
- - **[Node.js v18+](https://nodejs.org/en/download)**: JavaScript runtime (v18 or higher required)
- - **[npm v8+](https://docs.npmjs.com/getting-started)**: Package manager (comes with Node.js)
- - **[Docker](https://docs.docker.com/get-docker/)**: For running databases (optional but recommended)
-
- ### Verify Installation
-
- ```bash
- # Check versions
- git --version
- node --version # Should be v18 or higher
- npm --version # Should be v8 or higher
- docker --version
- ```
-
-
-
- For Windows development, we recommend using Windows Subsystem for Linux (WSL2):
-
- 1. **Install WSL2**: Follow [Microsoft's WSL installation guide](https://docs.microsoft.com/en-us/windows/wsl/install)
- 2. **Install Ubuntu**: From Microsoft Store or command line
- 3. **Install development tools in WSL**:
-
- ```bash
- # Update package list
- sudo apt update
-
- # Install Git
- sudo apt install git
-
- # Install Node.js v18 via NodeSource
- curl -fsSL https://deb.nodesource.com/setup_18.x | sudo -E bash -
- sudo apt-get install -y nodejs
-
- # Install Docker
- curl -fsSL https://get.docker.com -o get-docker.sh
- sudo sh get-docker.sh
- sudo usermod -aG docker $USER
- ```
-
- ### Verify Installation
-
- ```bash
- # Check versions
- git --version
- node --version # Should be v18 or higher
- npm --version # Should be v8 or higher
- docker --version
- ```
-
-
- After installing Docker, you may need to restart your WSL session or run `newgrp docker` to use Docker without sudo.
-
-
-
+
+```bash Linux/macOS
+# Before you can install and use DeployStack locally, make sure you have:
+# - Git: Version control system
+# - Node.js v18+: JavaScript runtime (v18 or higher required)
+# - npm v8+: Package manager (comes with Node.js)
+# - Docker: For running databases (optional but recommended)
+
+# Verify Installation
+git --version
+node --version # Should be v18 or higher
+npm --version # Should be v8 or higher
+docker --version
+```
+
+```bash Windows (WSL)
+# For Windows development, we recommend using WSL2
+# 1. Install WSL2: Follow Microsoft's WSL installation guide
+# 2. Install Ubuntu: From Microsoft Store or command line
+# 3. Install development tools in WSL:
+
+# Update package list
+sudo apt update
+
+# Install Git
+sudo apt install git
+
+# Install Node.js v18 via NodeSource
+curl -fsSL https://deb.nodesource.com/setup_18.x | sudo -E bash -
+sudo apt-get install -y nodejs
+
+# Install Docker
+curl -fsSL https://get.docker.com -o get-docker.sh
+sudo sh get-docker.sh
+sudo usermod -aG docker $USER
+
+# Verify Installation
+git --version
+node --version # Should be v18 or higher
+npm --version # Should be v8 or higher
+docker --version
+```
+
+
+
+ **Windows (WSL) Users**: After installing Docker, you may need to restart your WSL session or run `newgrp docker` to use Docker without sudo.
+
## Step 1: Clone the Repository
-
-
- If you haven't set up SSH keys, learn how [here](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/about-ssh).
-
- ```bash
- git clone git@github.com:deploystackio/deploystack.git
- cd deploystack
- ```
-
-
-
- ```bash
- git clone https://github.com/deploystackio/deploystack.git
- cd deploystack
- ```
-
-
+
+```bash SSH (Recommended)
+# If you haven't set up SSH keys, learn how at:
+# https://docs.github.com/en/authentication/connecting-to-github-with-ssh/about-ssh
+
+git clone git@github.com:deploystackio/deploystack.git
+cd deploystack
+```
+
+```bash HTTPS
+git clone https://github.com/deploystackio/deploystack.git
+cd deploystack
+```
+
## Step 2: Install Dependencies
@@ -108,9 +87,9 @@ Install all project dependencies using npm workspaces:
npm install
```
-
+
DeployStack uses npm workspaces to manage dependencies across frontend and backend services. The root `npm install` will install dependencies for all services.
-
+
## Step 3: Set Up Environment Variables
@@ -159,67 +138,52 @@ VITE_APP_TITLE=DeployStack (Dev)
### Generate Encryption Secret
-
-
- Generate a secure 32-character secret:
-
- ```bash
- # Using OpenSSL (recommended)
- openssl rand -hex 16
-
- # Alternative using Node.js
- node -e "console.log(require('crypto').randomBytes(16).toString('hex'))"
- ```
-
-
-
- Generate a secure secret using PowerShell or Node.js:
-
- ```powershell
- # Using PowerShell
- -join ((1..32) | ForEach {'{0:X}' -f (Get-Random -Max 16)})
-
- # Using Node.js (if available)
- node -e "console.log(require('crypto').randomBytes(16).toString('hex'))"
- ```
-
-
+
+```bash Linux/macOS
+# Using OpenSSL (recommended)
+openssl rand -hex 16
+
+# Alternative using Node.js
+node -e "console.log(require('crypto').randomBytes(16).toString('hex'))"
+```
+
+```powershell Windows
+# Using PowerShell
+-join ((1..32) | ForEach {'{0:X}' -f (Get-Random -Max 16)})
+
+# Using Node.js (if available)
+node -e "console.log(require('crypto').randomBytes(16).toString('hex'))"
+```
+
## Step 4: Set Up Database (Optional)
DeployStack uses SQLite by default for development, but you can optionally set up PostgreSQL:
-
-
- No additional setup required. DeployStack will create a SQLite database automatically in `services/backend/persistent_data/`.
-
- The database file will be created on first run:
- ```
- services/backend/persistent_data/database/deploystack.db
- ```
-
-
-
- If you prefer PostgreSQL for development:
-
- ```bash
- # Start PostgreSQL with Docker
- docker run -d \
- --name deploystack-postgres \
- -e POSTGRES_DB=deploystack \
- -e POSTGRES_USER=deploystack \
- -e POSTGRES_PASSWORD=deploystack \
- -p 5432:5432 \
- postgres:16
- ```
-
- Update your `services/backend/.env`:
- ```bash
- # Add PostgreSQL configuration
- DATABASE_URL=postgresql://deploystack:deploystack@localhost:5432/deploystack
- ```
-
-
+
+```text SQLite (Default)
+No additional setup required. DeployStack will create a SQLite database automatically in services/backend/persistent_data/.
+
+The database file will be created on first run:
+services/backend/persistent_data/database/deploystack.db
+```
+
+```bash PostgreSQL (Optional)
+# If you prefer PostgreSQL for development:
+
+# Start PostgreSQL with Docker
+docker run -d \
+ --name deploystack-postgres \
+ -e POSTGRES_DB=deploystack \
+ -e POSTGRES_USER=deploystack \
+ -e POSTGRES_PASSWORD=deploystack \
+ -p 5432:5432 \
+ postgres:16
+
+# Update your services/backend/.env:
+DATABASE_URL=postgresql://deploystack:deploystack@localhost:5432/deploystack
+```
+
## Step 5: Running the Development Servers
@@ -241,30 +205,26 @@ npm run dev:frontend
Run both services from a single terminal:
-
-
- ```bash
- # Start backend in background
- npm run dev:backend &
-
- # Start frontend
- npm run dev:frontend
-
- # To stop background processes later:
- # pkill -f "npm run dev:backend"
- ```
-
-
-
- ```powershell
- # Start backend in new window
- Start-Process powershell -ArgumentList "-NoExit", "-Command", "npm run dev:backend"
-
- # Start frontend in current window
- npm run dev:frontend
- ```
-
-
+
+```bash Linux/macOS
+# Start backend in background
+npm run dev:backend &
+
+# Start frontend
+npm run dev:frontend
+
+# To stop background processes later:
+# pkill -f "npm run dev:backend"
+```
+
+```powershell Windows
+# Start backend in new window
+Start-Process powershell -ArgumentList "-NoExit", "-Command", "npm run dev:backend"
+
+# Start frontend in current window
+npm run dev:frontend
+```
+
### Development URLs
@@ -277,9 +237,7 @@ Once both services are running:
## Step 6: Verify Installation
-
- **Check Service Status**
-
+
Verify both services are running:
```bash
# Check if ports are listening
@@ -288,15 +246,11 @@ Once both services are running:
```
-
- **Access the Application**
-
+
Open [http://localhost:5173](http://localhost:5173) in your browser. You should see the DeployStack interface.
-
- **Create First User**
-
+
Follow the on-screen setup wizard to create your first admin user and configure basic settings.
@@ -388,21 +342,19 @@ nvm use 18
#### Permission Errors
-
-
- ```bash
- # Fix npm permissions
- sudo chown -R $(whoami) ~/.npm
-
- # Fix project permissions
- sudo chown -R $(whoami) .
- ```
-
-
-
- Run your terminal as Administrator or ensure you have write permissions to the project directory.
-
-
+
+```bash Linux/macOS
+# Fix npm permissions
+sudo chown -R $(whoami) ~/.npm
+
+# Fix project permissions
+sudo chown -R $(whoami) .
+```
+
+```text Windows
+Run your terminal as Administrator or ensure you have write permissions to the project directory.
+```
+
#### Database Connection Issues
diff --git a/docs/mcp-admin-schema-workflow.mdx b/general/mcp-admin-schema-workflow.mdx
similarity index 99%
rename from docs/mcp-admin-schema-workflow.mdx
rename to general/mcp-admin-schema-workflow.mdx
index fc0cb46..ead3b35 100644
--- a/docs/mcp-admin-schema-workflow.mdx
+++ b/general/mcp-admin-schema-workflow.mdx
@@ -1,7 +1,7 @@
---
title: MCP Schema Creation Workflow for Global Administrators
description: Learn how global administrators transform raw MCP configurations into DeployStack's secure three-tier schema system with lock/unlock controls.
-sidebar: Admin Schema Workflow
+sidebarTitle: MCP Schema Creation Workflow
---
# MCP Schema Creation Workflow for Global Administrators
diff --git a/docs/mcp-catalog.mdx b/general/mcp-catalog.mdx
similarity index 99%
rename from docs/mcp-catalog.mdx
rename to general/mcp-catalog.mdx
index 41b3970..1e7b6ee 100644
--- a/docs/mcp-catalog.mdx
+++ b/general/mcp-catalog.mdx
@@ -1,7 +1,6 @@
---
title: MCP Server Catalog
description: Discover, manage, and deploy Model Context Protocol (MCP) servers through DeployStack's comprehensive catalog system.
-sidebar: MCP Catalog
---
# MCP Server Catalog
diff --git a/docs/mcp-categories.mdx b/general/mcp-categories.mdx
similarity index 98%
rename from docs/mcp-categories.mdx
rename to general/mcp-categories.mdx
index d2ab2d3..36b25a7 100644
--- a/docs/mcp-categories.mdx
+++ b/general/mcp-categories.mdx
@@ -1,7 +1,6 @@
---
title: MCP Categories
description: Understanding MCP server categories in DeployStack - simple organizational labels for finding the right MCP servers.
-sidebar: MCP Categories
---
# MCP Categories
diff --git a/docs/mcp-configuration.mdx b/general/mcp-configuration.mdx
similarity index 99%
rename from docs/mcp-configuration.mdx
rename to general/mcp-configuration.mdx
index bd88825..8778c0b 100644
--- a/docs/mcp-configuration.mdx
+++ b/general/mcp-configuration.mdx
@@ -1,7 +1,6 @@
---
title: MCP Configuration System
description: Understand DeployStack's three-tier configuration architecture that manages MCP server arguments, environment variables, and credentials with granular lock/unlock controls.
-sidebar: MCP Configuration
---
# MCP Configuration System
diff --git a/docs/mcp-installation.mdx b/general/mcp-installation.mdx
similarity index 99%
rename from docs/mcp-installation.mdx
rename to general/mcp-installation.mdx
index bc0c88f..cb35493 100644
--- a/docs/mcp-installation.mdx
+++ b/general/mcp-installation.mdx
@@ -1,7 +1,6 @@
---
title: MCP Server Installation
description: Learn how to install and manage MCP servers within your team workspace and understand the relationship between catalog, installations, and user configurations.
-sidebar: MCP Installation
---
# MCP Server Installation
diff --git a/docs/mcp-team-installation.mdx b/general/mcp-team-installation.mdx
similarity index 99%
rename from docs/mcp-team-installation.mdx
rename to general/mcp-team-installation.mdx
index 6efc8a9..4d9e49b 100644
--- a/docs/mcp-team-installation.mdx
+++ b/general/mcp-team-installation.mdx
@@ -1,7 +1,7 @@
---
title: MCP Team Installation and Configuration
description: Learn how team administrators configure MCP server installations, manage shared team settings, and control user access through lock/unlock controls.
-sidebar: Team Installation
+sidebarTitle: MCP Team Installation
---
# MCP Team Installation and Configuration
diff --git a/docs/mcp-user-configuration.mdx b/general/mcp-user-configuration.mdx
similarity index 99%
rename from docs/mcp-user-configuration.mdx
rename to general/mcp-user-configuration.mdx
index 526bfcb..0c07a57 100644
--- a/docs/mcp-user-configuration.mdx
+++ b/general/mcp-user-configuration.mdx
@@ -1,7 +1,7 @@
---
title: MCP User Configuration and Personal Settings
description: Learn how individual users configure personal MCP settings, customize their workflow, and work within team-defined boundaries.
-sidebar: User Configuration
+sidebarTitle: MCP User Configuration
---
# MCP User Configuration and Personal Settings
diff --git a/docs/onboard-new-team-members.mdx b/general/onboard-new-team-members.mdx
similarity index 94%
rename from docs/onboard-new-team-members.mdx
rename to general/onboard-new-team-members.mdx
index 462bb85..7e4cd33 100644
--- a/docs/onboard-new-team-members.mdx
+++ b/general/onboard-new-team-members.mdx
@@ -3,8 +3,6 @@ title: Onboard New Team Members
description: Step-by-step guide to onboard new team members to your DeployStack team and MCP server environment.
---
-import { Steps, Step } from 'fumadocs-ui/components/steps';
-
# Onboard New Team Members
This guide walks you through adding new developers to your existing DeployStack team. Before starting, ensure you already have:
@@ -26,9 +24,7 @@ Before inviting team members, make sure:
The new team member needs to complete these steps first:
-
- **Create DeployStack Account**
-
+
Go to [cloud.deploystack.io](https://cloud.deploystack.io) and create a new account:
- Sign up with their email address
@@ -52,18 +48,14 @@ Read more about Roles: [Team Roles](/roles)
After the team invitation is accepted, the new member needs to:
-
- **Accept Team Invitation**
-
+
The new member should:
- Check their DeployStack dashboard for the team invitation
- Accept the invitation to join the team
-
- **Create OAuth Credentials**
-
+
Configure satellite access for the team:
1. Navigate to the **Satellite** section in the dashboard
@@ -75,9 +67,7 @@ After the team invitation is accepted, the new member needs to:
- **Client Secret**: `deploystack_mcp_secret_xyz789abc123def456ghi789jkl012`
-
- **Update MCP Configuration**
-
+
Replace your VS Code MCP configuration with the DeployStack Satellite:
**Before (Individual MCP Servers):**
@@ -170,4 +160,4 @@ Once new team members are successfully onboarded:
- **Schedule Training**: Consider hands-on training for complex MCP workflows
- **Gather Feedback**: Collect feedback on the onboarding process for improvements
-New team members should now have secure, credential-free access to all team MCP servers through the DeployStack Satellite, enabling them to be productive immediately without any installations or complex credential management.
+New team members should now have secure, credential-free access to all team MCP servers through the DeployStack Satellite, enabling them to be productive immediately without any installations or complex credential management.
\ No newline at end of file
diff --git a/docs/quick-start.mdx b/general/quick-start.mdx
similarity index 92%
rename from docs/quick-start.mdx
rename to general/quick-start.mdx
index f503bb5..c150dae 100644
--- a/docs/quick-start.mdx
+++ b/general/quick-start.mdx
@@ -1,14 +1,8 @@
---
title: Quick Start
description: Get started with DeployStack in minutes - create your free account, configure MCP servers, and connect instantly with just a URL.
-sidebar: Quick Start
-icon: Zap
---
-import { Callout } from 'fumadocs-ui/components/callout';
-import { Tabs, Tab } from 'fumadocs-ui/components/tabs';
-import { Steps, Step } from 'fumadocs-ui/components/steps';
-
# Quick Start
Get started with DeployStack in minutes. This guide walks you through creating a free account, configuring your first MCP server, and connecting your development environment with zero installation.
@@ -30,9 +24,7 @@ By the end of this guide, you'll have:
## Step 1: Create Your Free Account
-
- **Sign Up for DeployStack**
-
+
Visit [cloud.deploystack.io](https://cloud.deploystack.io) and create your free account:
- Sign up with your email address or GitHub account
@@ -40,9 +32,7 @@ By the end of this guide, you'll have:
- You'll automatically get your own default team
-
- **Explore Your Dashboard**
-
+
Once logged in, you'll see preinstalled MCP servers in your dashboard.
We have preinstalled popular MCP servers like Sequential Thinking. You can add more whenever you want to.
@@ -53,9 +43,7 @@ By the end of this guide, you'll have:
DeployStack Satellite provides instant MCP access through managed infrastructure - no installation required.
-
- **Create OAuth Client Credentials**
-
+
In your DeployStack dashboard:
1. Navigate to the **Satellite** section
@@ -74,9 +62,7 @@ DeployStack Satellite provides instant MCP access through managed infrastructure
Now connect VS Code or Cursor to use your team's MCP servers via satellite.
-
- **Configure VS Code MCP Settings**
-
+
Open your VS Code settings and configure MCP to use the DeployStack Satellite.
**Location**: `.vscode/settings.json` or global VS Code settings
@@ -116,9 +102,7 @@ Now connect VS Code or Cursor to use your team's MCP servers via satellite.
```
-
- **Test MCP Connection**
-
+
1. **Restart VS Code** to load the new MCP configuration
2. **Open Claude or compatible MCP client**
3. **Test a tool**: Try using one of your configured MCP servers
@@ -131,27 +115,21 @@ Now connect VS Code or Cursor to use your team's MCP servers via satellite.
Now that everything is connected, explore what you can do:
-
- **Test Available Tools**
-
+
In your VS Code MCP client:
- All configured MCP tools are instantly available
- No local processes or installations required
- Tools automatically include your team's credentials
-
- **Monitor Usage**
-
+
View activity in your [DeployStack dashboard](https://cloud.deploystack.io):
- Real-time MCP tool usage
- Team activity and analytics
- Satellite performance metrics
-
- **Manage Your Team**
-
+
Back in the [DeployStack dashboard](https://cloud.deploystack.io):
- Add more MCP servers to your team
- Manage credentials securely
diff --git a/docs/roles.mdx b/general/roles.mdx
similarity index 100%
rename from docs/roles.mdx
rename to general/roles.mdx
diff --git a/docs/security.mdx b/general/security.mdx
similarity index 100%
rename from docs/security.mdx
rename to general/security.mdx
diff --git a/docs/teams.mdx b/general/teams.mdx
similarity index 99%
rename from docs/teams.mdx
rename to general/teams.mdx
index cfbaf19..7fabf79 100644
--- a/docs/teams.mdx
+++ b/general/teams.mdx
@@ -1,7 +1,6 @@
---
title: Teams Structure in DeployStack
description: Organize your MCP server management with teams - your workspace for managing servers and configurations in DeployStack.
-sidebar: Teams
---
# Teams
diff --git a/docs/troubleshooting.mdx b/general/troubleshooting.mdx
similarity index 93%
rename from docs/troubleshooting.mdx
rename to general/troubleshooting.mdx
index 1f9eb2a..31ec629 100644
--- a/docs/troubleshooting.mdx
+++ b/general/troubleshooting.mdx
@@ -1,7 +1,6 @@
---
title: Troubleshooting DeployStack
description: Common issues and solutions for DeployStack MCP Serverdeployments
-sidebar: Troubleshooting
---
# Troubleshooting DeployStack
diff --git a/docs/index.mdx b/index.mdx
similarity index 67%
rename from docs/index.mdx
rename to index.mdx
index c4316ab..5527de0 100644
--- a/docs/index.mdx
+++ b/index.mdx
@@ -1,22 +1,18 @@
---
-title: DeployStack Documentation
+title: DeployStack - Enterprise Control Plane for MCP Dcs
description: Official DeployStack documentation - The Enterprise Control Plane for MCP servers. Secure, centralized management of your organization's AI tool landscape with the DeployStack Satellite.
-sidebar: Introduction
-icon: Star
+sidebarTitle: Overview
---
-import { Card, Cards } from 'fumadocs-ui/components/card';
-import { Plug, Settings, Users, Code2, Server, Zap, Shield, Wrench, Terminal, Container, BookOpenText, FileText, MessageCircleHeart } from 'lucide-react';
-
# DeployStack - Enterprise Control Plane for MCP
DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MCP) ecosystem**. We provide a secure, centralized platform to manage your company's entire AI tool landscape, eliminating credential sprawl and enabling developers to move faster and more securely through edge DeployStack Satellite.
## User Guides
-
+}
+ icon="terminal"
href="/quick-start"
title="DeployStack Quick Start"
>
@@ -24,7 +20,7 @@ DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MC
}
+ icon="users"
href="/onboard-new-team-members"
title="Onboard New Team Members"
>
@@ -32,7 +28,7 @@ DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MC
}
+ icon="server"
href="/self-hosted/quick-start"
title="Self-Hosted DeployStack"
>
@@ -40,21 +36,21 @@ DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MC
}
+ icon="shield"
href="/security"
title="Security & Governance"
>
Understand how DeployStack eliminates credential sprawl and provides enterprise security
-
+
## Developer Documentation
**For developers** extending or contributing to DeployStack:
-
+}
+ icon="code"
href="/development/frontend"
title="Frontend Development"
>
@@ -62,7 +58,7 @@ DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MC
}
+ icon="code"
href="/development/backend"
title="Backend Development"
>
@@ -70,43 +66,44 @@ DeployStack is the **Enterprise Control Plane for the Model Context Protocol (MC
}
+ icon="plug"
href="/development/satellite"
title="Satellite Development"
>
Build and extend the DeployStack Satellite for secure MCP server management
-
-
-## User Guides
-
-**For administrators and team members** using DeployStack:
-
-
+
## Our Repository Structure
DeployStack consists of several integrated components that work together to provide enterprise-grade MCP server management:
-
-} title="deploystack" href="https://github.com/deploystackio/deploystack">
-The main platform providing centralized MCP server management, team collaboration, and secure credential storage
-
-} title="documentation" href="https://github.com/deploystackio/documentation">
-Comprehensive guides for MCP server management, security, and team collaboration
-
-
+
+
+ The main platform providing centralized MCP server management, team collaboration, and secure credential storage
+
+
+
+ Comprehensive guides for MCP server management, security, and team collaboration
+
+
## Community & Resources
-
+}
+ icon="users"
href="https://discord.gg/UjFWwByB"
title="Join our Discord"
- external
>
Get help and connect with the DeployStack community
-
-
+
\ No newline at end of file
diff --git a/lib/components/DeployStackLogo.tsx b/lib/components/DeployStackLogo.tsx
deleted file mode 100644
index 5b009e3..0000000
--- a/lib/components/DeployStackLogo.tsx
+++ /dev/null
@@ -1,14 +0,0 @@
-import React from 'react';
-import Image from 'next/image';
-
-export const DeployStackLogo: React.FC<{ className?: string }> = ({ className = "w-4 h-4" }) => {
- return (
-
- );
-};
diff --git a/lib/debug-source.ts b/lib/debug-source.ts
deleted file mode 100644
index 4d5a5b5..0000000
--- a/lib/debug-source.ts
+++ /dev/null
@@ -1,26 +0,0 @@
-// Debug script to see what's being loaded
-import { docs } from '../.source/index';
-
-const allDocs = docs.docs;
-const allMeta = docs.meta;
-
-console.log('=== ALL DOCS ===');
-allDocs.forEach((doc: any) => {
- console.log('Path:', doc._file.path, 'Flattened:', doc._file.flattenedPath);
-});
-
-console.log('\n=== DEVELOPMENT DOCS ===');
-const developmentDocs = allDocs.filter((doc: any) =>
- doc._file.path.startsWith('development/')
-);
-developmentDocs.forEach((doc: any) => {
- console.log('Path:', doc._file.path, 'Flattened:', doc._file.flattenedPath);
-});
-
-console.log('\n=== SELF-HOSTED DOCS ===');
-const selfHostedDocs = allDocs.filter((doc: any) =>
- doc._file.path.startsWith('self-hosted/')
-);
-selfHostedDocs.forEach((doc: any) => {
- console.log('Path:', doc._file.path, 'Flattened:', doc._file.flattenedPath);
-});
diff --git a/lib/h1-extractor.ts b/lib/h1-extractor.ts
deleted file mode 100644
index 66a2117..0000000
--- a/lib/h1-extractor.ts
+++ /dev/null
@@ -1,60 +0,0 @@
-/**
- * Utility to extract H1 heading from MDX content for use in page titles
- */
-
-export interface H1ExtractionResult {
- h1Title: string | null;
- fallbackTitle: string;
-}
-
-/**
- * Extracts the first H1 heading from MDX content
- * Supports both markdown syntax (# Heading) and JSX syntax (
Heading
)
- */
-export function extractH1FromMDX(content: string): string | null {
- if (!content) return null;
-
- // Remove frontmatter first
- const contentWithoutFrontmatter = content.replace(/^---[\s\S]*?---\n?/, '');
-
- // Pattern for markdown H1: # Heading
- const markdownH1Match = contentWithoutFrontmatter.match(/^#\s+(.+)$/m);
- if (markdownH1Match) {
- return markdownH1Match[1].trim();
- }
-
- // Pattern for JSX H1: