Brokered control boundary for remote agent sessions.
Remote clients may use Erlang distribution as the transport for the MVP, but they should call only this module across the node boundary. The public contract is the verb set here, not arbitrary :erpc into SessionManager, Session, or other internals.
The trust model is deliberately explicit. The Erlang cookie gates trusted node membership and is all-or-nothing: any cookie holder can bypass this broker with raw distribution. The per-session token checked here is defense in depth for Minga's own clients and the seam for a future socket transport; it is not isolation from an untrusted cookie holder.
Summary
Types
Attach result returned by the broker.
Remote attachment role.
Public session record returned by the broker.
Functions
Adds a system message to a session through the broker.
Responds to a tool approval as an attached driver.
Responds to a stable tool approval id as an attached driver.
Attaches a client process to a session as driver or viewer.
Authorizes a broker call with the per-session token.
Begins a server-side manual OAuth flow through the broker.
Completes a server-side manual OAuth flow through the broker.
Detaches a client process from a session without stopping the session.
Lists live sessions through the broker.
Sends a prompt as an attached driver.
Loads persisted session data through the broker for an ended session.
Loads persisted session data through the broker for a live token-authorized session.
Starts or returns the stable session for a server-side working directory.
Starts a new session through the broker.
Stops a session through the broker.
Stops the existing stable session for a workdir through the broker.
Types
@type attach_result() :: MingaAgent.RemoteAPI.AttachResult.t()
Attach result returned by the broker.
@type role() :: :driver | :viewer
Remote attachment role.
@type session_info() :: MingaAgent.RemoteAPI.SessionInfo.t()
Public session record returned by the broker.
Functions
@spec add_system_message(String.t(), String.t(), pid(), String.t(), :info | :error) :: :ok | {:error, term()}
Adds a system message to a session through the broker.
@spec approve(String.t(), String.t(), pid(), MingaAgent.Session.approval_decision()) :: :ok | {:error, term()}
Responds to a tool approval as an attached driver.
@spec approve( String.t(), String.t(), pid(), String.t() | nil, MingaAgent.Session.approval_decision() ) :: :ok | {:error, term()}
Responds to a stable tool approval id as an attached driver.
Attaches a client process to a session as driver or viewer.
Authorizes a broker call with the per-session token.
@spec begin_oauth(String.t(), String.t(), pid()) :: {:ok, String.t(), String.t()} | {:error, term()}
Begins a server-side manual OAuth flow through the broker.
@spec complete_oauth(String.t(), String.t(), pid(), String.t(), String.t()) :: {:ok, :openai} | {:error, term()}
Completes a server-side manual OAuth flow through the broker.
Detaches a client process from a session without stopping the session.
@spec list_sessions() :: [session_info()]
Lists live sessions through the broker.
@spec send_prompt( String.t(), String.t(), pid(), String.t() | [ReqLLM.Message.ContentPart.t()] ) :: :ok | {:queued, :steering} | {:error, term()}
Sends a prompt as an attached driver.
@spec session_data(String.t()) :: {:ok, MingaAgent.SessionStore.session_data()} | {:error, term()}
Loads persisted session data through the broker for an ended session.
@spec session_data(String.t(), String.t()) :: {:ok, MingaAgent.SessionStore.session_data()} | {:error, term()}
Loads persisted session data through the broker for a live token-authorized session.
@spec start_or_get_for_workdir( String.t(), keyword() ) :: {:ok, session_info()} | {:error, term()}
Starts or returns the stable session for a server-side working directory.
@spec start_session(keyword()) :: {:ok, session_info()} | {:error, term()}
Starts a new session through the broker.
Stops a session through the broker.
Stops the existing stable session for a workdir through the broker.