Add SAGE-SQL session manager app, shared work items board, update session log

- Session manager: self-service RDP session reset for Dataforth users (Default.aspx + web.config) - WORKITEMS.md: shared task board for Mike/Howard with @tagging, syncs via Gitea - Session log: deployment deferred due to VPN connectivity issues Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-17 20:05:36 -07:00
parent 0a7f3368a6
commit fe3b5b0382
4 changed files with 483 additions and 0 deletions
--- a/session-logs/2026-04-17-session.md
+++ b/session-logs/2026-04-17-session.md
@@ -215,3 +215,49 @@ Built `/syncro` slash command for ticket management via Syncro REST API.
 - Ollama URL: `http://100.92.127.64:11434`
 - Firewall: inbound TCP 11434 from 100.0.0.0/8 only
 - Env var: `OLLAMA_HOST=0.0.0.0:11434` (User scope on DESKTOP-0O8A1RL)
+
+---
+
+## Update: 20:00 — SAGE-SQL session manager, shared work items
+
+### Dataforth SAGE-SQL session manager — built, not yet deployed
+Built self-service session reset web app for Dataforth users on SAGE-SQL (192.168.0.153, Windows Server 2016).
+
+**Problem:** Users connect via RemoteApps to SAGE. Sessions hang/disconnect and require IT to remote in and logoff sessions manually.
+
+**Solution:** Single-file ASP.NET WebForms app (`Default.aspx` + `web.config`) that:
+- Uses Windows Authentication (auto-identifies domain user, no login needed)
+- Shows only the authenticated user's own RDP/RemoteApp sessions
+- Only allows resetting disconnected ("Disc") sessions, not active ones
+- Confirmation prompt before reset
+- Logs all reset actions to monthly log files at `~/logs/YYYY-MM.log`
+- Dark themed UI
+
+**Files:**
+- `clients/dataforth/session-manager/Default.aspx` — full app (server-side C# + HTML/CSS)
+- `clients/dataforth/session-manager/web.config` — IIS config (Windows Auth on, Anonymous off)
+
+**Deployment blocked:** VPN connectivity issues — SSH to AD2 times out (ICMP works, TCP blocked), WinRM to SAGE-SQL blocked, RMM API at 172.16.3.30:3001 unreachable. Deferred to next session.
+
+**Deployment steps (for tomorrow):**
+1. Create `C:\inetpub\sessions\` on SAGE-SQL
+2. Copy Default.aspx + web.config to that directory
+3. Create IIS application: `New-WebApplication -Name "sessions" -Site "Default Web Site" -PhysicalPath "C:\inetpub\sessions" -ApplicationPool "DefaultAppPool"`
+4. Verify Windows Auth enabled, Anonymous Auth disabled
+5. Test at `http://sage-sql/sessions/`
+6. App pool identity (NetworkService) should have permission to run `logoff` command
+
+**WinRM TrustedHosts updated:** Added `192.168.0.153,SAGE-SQL` to local TrustedHosts for future NTLM auth (workstation not domain-joined).
+
+### Shared work items board — created
+Created `WORKITEMS.md` at repo root — shared task list that syncs via Gitea.
+- Both Mike and Howard can add/claim/complete items
+- Uses `@mike`/`@howard`/`@unassigned` tagging
+- Populated with all carry-over items from this session and previous days
+- Claude can read/update it on request ("show work items", "add work item: ...")
+
+### Network issues (end of day)
+- AD2 (192.168.0.6): ICMP ping works (23-46ms), SSH port 22 times out
+- SAGE-SQL (192.168.0.153): WinRM port 5985 unreachable from workstation
+- RMM server (172.16.3.30:3001): connection times out
+- Likely VPN/firewall filtering TCP but passing ICMP