Summary
Add FleetService.WhoAmI plus an OperatorIdentity message so the Fleet Manager can echo the operator identity it verified from the presented mTLS client certificate (subject CN, certificate serial, access level).
Motivation
Slice A of the productionize effort replaces the manager's dev auth stub with real mTLS client-cert auth. The browser cannot easily read its own installed client certificate, so the manager needs an endpoint that returns the verified identity/level for the web to render role-aware UI.
Scope
WhoAmI(WhoAmIRequest) returns (WhoAmIResponse) on FleetService.
OperatorIdentity { string cn; string serial; string level; }.
- Regenerate Go + TS via buf.
Summary
Add
FleetService.WhoAmIplus anOperatorIdentitymessage so the Fleet Manager can echo the operator identity it verified from the presented mTLS client certificate (subject CN, certificate serial, access level).Motivation
Slice A of the productionize effort replaces the manager's dev auth stub with real mTLS client-cert auth. The browser cannot easily read its own installed client certificate, so the manager needs an endpoint that returns the verified identity/level for the web to render role-aware UI.
Scope
WhoAmI(WhoAmIRequest) returns (WhoAmIResponse)onFleetService.OperatorIdentity { string cn; string serial; string level; }.