> ## Documentation Index > Fetch the complete documentation index at: https://docs.sdk.fdo.alexvwan.me/llms.txt > Use this file to discover all available pages before exploring further. # OPERATOR PLUGIN PATTERNS # Operator Plugin Patterns This guide defines the recommended SDK pattern for serious operational plugins. ## Target Plugin Classes The SDK supports plugins that behave more like operational consoles than small UI widgets. Examples: * Docker Desktop analogue * Kubernetes dashboard * Helm release manager * Terraform/operator console * local cluster or environment controller ## Recommended Model Use three layers: 1. Iframe UI runtime for interaction and presentation 2. Plugin backend/runtime for orchestration logic 3. Host-mediated privileged actions for sensitive execution Do not collapse those layers into unrestricted shell execution from plugin code. ## Preferred Decision Order When choosing an operator authoring pattern, prefer this order: 1. start from the closest operator fixture under `examples/fixtures/` 2. use curated capability presets for known tool families 3. use `requestOperatorTool(...)` for known tool families 4. use `requestScopedWorkflow(...)` when the plugin needs a structured multi-step host-mediated flow 5. use `requestScopedProcessExec(...)` for host-specific/internal tools not covered by curated presets 6. use lower-level request-building helpers only when transport-level control is explicitly needed This ordering is intentional. It is the default path AI tooling and documentation should recommend first. This recommendation order is the public SDK authoring guidance and should be preserved across docs, examples, and host/editor integrations. ## Execution Pattern For tool execution, prefer: * broad capability: `system.process.exec` * narrow capability: `system.process.scope.` * action: `system.process.exec` Examples of scope ids: * `docker-cli` * `kubectl` * `helm` * `terraform` The SDK now exposes both generic and curated authoring helpers: * generic: * `createScopedProcessExecActionRequest(scopeId, payload)` * `requestScopedProcessExec(scopeId, payload, options?)` * curated presets for common DevOps/SRE tooling: * `getOperatorToolPreset(presetId)` * `listOperatorToolPresets()` * `createOperatorToolCapabilityPreset(presetId)` * `createOperatorToolActionRequest(presetId, payload)` * `requestOperatorTool(presetId, payload, options?)` Curated preset ids currently include: * `docker-cli` * `kubectl` * `helm` * `terraform` * `ansible` * `aws-cli` * `gcloud` * `azure-cli` * `podman` * `kustomize` * `gh` * `git` * `vault` * `nomad` Reference fixtures: * `examples/fixtures/operator-kubernetes-plugin.fixture.ts` * `examples/fixtures/operator-terraform-plugin.fixture.ts` * `examples/fixtures/operator-custom-tool-plugin.fixture.ts` Use the curated fixtures for known tool families and the custom-tool fixture for host-specific scopes. The host should map each scope to: * allowed executable absolute paths * allowed working directory roots * allowed environment variable keys * argument policy * timeout ceiling * confirmation policy ## Plugin-Side Request Pattern ```ts theme={null} import { createPrivilegedActionBackendRequest, createProcessExecActionRequest, formatPrivilegedActionError, isPrivilegedActionErrorResponse, isPrivilegedActionSuccessResponse, requestPrivilegedAction, } from "@anikitenko/fdo-sdk"; const request = createProcessExecActionRequest({ action: "system.process.exec", payload: { scope: "docker-cli", command: "/usr/local/bin/docker", args: ["ps", "--format", "json"], timeoutMs: 5000, dryRun: true, reason: "list running containers", }, }); const response = await requestPrivilegedAction(request, { correlationIdPrefix: "docker-cli", }); if (isPrivilegedActionSuccessResponse(response)) { // response.result } else if (isPrivilegedActionErrorResponse(response)) { const message = formatPrivilegedActionError(response, { context: "Operator tool request failed", }); // stable correlation id + code + stderr/stdout details when present } ``` If you need the transport payload without sending it immediately, use: ```ts theme={null} const payload = createPrivilegedActionBackendRequest(request, { correlationIdPrefix: "docker-cli", }); // payload = { correlationId, request } ``` For serialized `renderOnLoad()` handlers, prefer the self-contained `requestPrivilegedAction(...)` helper over manually building `window.createBackendReq("requestPrivilegedAction", ...)`. If you do use the raw bridge after fetching a backend-built envelope through `UI_MESSAGE`, extract the validated request object first: ```ts theme={null} const envelopeOrRequest = await window.createBackendReq("UI_MESSAGE", { handler: "operator.buildRequest", content: {}, }); const requestPayload = extractPrivilegedActionRequest(envelopeOrRequest); const response = await window.createBackendReq("requestPrivilegedAction", requestPayload); ``` Do not forward the full backend envelope object directly into the raw host bridge. For `renderOnLoad()` string runtimes, use: * `getInlinePrivilegedActionErrorFormatterSource()` * assign `const formatPrivilegedActionError = ${formatPrivilegedActionErrorSource};` * format all error responses with a stable context and fallback correlation id ## Capability Presets For common tool families, prefer SDK capability presets over manually repeating strings: ```ts theme={null} import { createOperatorToolCapabilityPreset } from "@anikitenko/fdo-sdk"; const capabilities = createOperatorToolCapabilityPreset("terraform"); // ["system.process.exec", "system.process.scope.terraform"] ``` The generic bundle helpers follow the same pattern when the scope is host-specific: ```ts theme={null} import { createProcessCapabilityBundle } from "@anikitenko/fdo-sdk"; const capabilities = createProcessCapabilityBundle("internal-runner"); // ["system.process.exec", "system.process.scope.internal-runner"] ``` For unknown or host-specific tool families, use the generic scoped helper pattern: ```ts theme={null} import { createProcessScopeCapability } from "@anikitenko/fdo-sdk"; const capabilities = [ "system.process.exec", createProcessScopeCapability("internal-runner"), ]; ``` ## Tool-Family Request Helpers For common DevOps/SRE tools, the curated helper path keeps request code short and AI-friendly: ```ts theme={null} import { requestOperatorTool } from "@anikitenko/fdo-sdk"; const response = await requestOperatorTool("kubectl", { command: "/usr/local/bin/kubectl", args: ["get", "pods", "-A"], timeoutMs: 5000, dryRun: true, }); ``` For custom scopes that are not part of the curated preset set, keep using the generic helper: ```ts theme={null} import { requestScopedProcessExec } from "@anikitenko/fdo-sdk"; const response = await requestScopedProcessExec("internal-runner", { command: "/usr/local/bin/internal-runner", args: ["status"], timeoutMs: 3000, dryRun: true, }); ``` ## Structured Workflow Helpers When a plugin is about to chain multiple host-mediated process steps into one operator flow, prefer the workflow helper instead of plugin-private orchestration: ```ts theme={null} import { requestScopedWorkflow } from "@anikitenko/fdo-sdk"; const response = await requestScopedWorkflow("terraform", { kind: "process-sequence", title: "Terraform preview and apply", steps: [ { id: "plan", title: "Generate plan", phase: "preview", command: "/usr/local/bin/terraform", args: ["plan", "-input=false"], }, { id: "apply", title: "Apply plan", phase: "apply", command: "/usr/local/bin/terraform", args: ["apply", "-input=false", "tfplan"], onError: "abort", }, ], confirmation: { message: "Apply infrastructure changes?", requiredForStepIds: ["apply"], }, }); ``` Use this path for preview/apply and inspect/act style flows when one request is no longer enough. ## Many Commands And Troubleshooting Runbooks Do not model a serious troubleshooting plugin around ten separate UI buttons or around raw shell chaining. Use this decision rule instead: 1. one command: `requestOperatorTool(...)` 2. several independent read-only commands collected by one backend method: loop over `requestOperatorTool(...)` or `requestScopedProcessExec(...)` in backend code 3. one named multi-step troubleshooting runbook with ordering, shared summary, audit visibility, or step-level failure handling: `requestScopedWorkflow(...)` This distinction matters because a real troubleshooting runbook is not just "many commands". It is one operator flow with: * a shared intent * ordered steps * step-level auditability * a normalized summary * clear failure and remediation points If the commands are just independent inspections, a backend loop is acceptable: ```ts theme={null} const commands = [ ["sts", "get-caller-identity"], ["ec2", "describe-instances"], ["ecs", "list-clusters"], ] as const; const results = []; for (const args of commands) { results.push( await requestOperatorTool("aws-cli", { command: "/usr/local/bin/aws", args: [...args, "--output", "json"], timeoutMs: 5000, dryRun: true, reason: `inspect aws state: ${args.join(" ")}`, }) ); } ``` If the commands are one troubleshooting runbook, prefer a workflow: ```ts theme={null} const response = await requestScopedWorkflow("aws-cli", { kind: "process-sequence", title: "AWS troubleshooting workflow", summary: "Collect identity, EC2, ECS, and CloudWatch diagnostics", dryRun: true, steps: [ { id: "whoami", title: "Get caller identity", phase: "inspect", command: "/usr/local/bin/aws", args: ["sts", "get-caller-identity", "--output", "json"], timeoutMs: 5000, reason: "inspect current AWS identity", onError: "abort", }, { id: "ec2", title: "Describe EC2 instances", phase: "inspect", command: "/usr/local/bin/aws", args: ["ec2", "describe-instances", "--output", "json"], timeoutMs: 5000, reason: "inspect EC2 state", onError: "continue", }, { id: "ecs", title: "List ECS clusters", phase: "inspect", command: "/usr/local/bin/aws", args: ["ecs", "list-clusters", "--output", "json"], timeoutMs: 5000, reason: "inspect ECS state", onError: "continue", }, ], }); ``` For AWS-style troubleshooting plugins, best practice is: * declare capabilities up front with `declareCapabilities()` * prefer `createOperatorToolCapabilityPreset("aws-cli")` for the capability bundle * keep the CLI scope narrow (`system.process.scope.aws-cli`) * keep orchestration in backend code, not in iframe UI code * avoid `sh -c`, shell interpolation, and ad hoc command chaining * promote the sequence to `requestScopedWorkflow(...)` once it becomes a real runbook rather than a bag of unrelated commands Capability model for the first workflow slice: * reuse `system.process.exec` * reuse `system.process.scope.` * do not introduce a second broad workflow capability for the same underlying process authority ## Supported But Non-Default Paths These paths remain supported, but should not be recommended first when a safer or more opinionated operator path fits: * `requestPrivilegedAction(...)` with manually constructed operator request payloads for known tool families * `createProcessExecActionRequest(...)` as the first-choice authoring pattern for known curated tool families * generic numbered learning examples as the first production scaffold * removed legacy scaffolds or ad hoc legacy copies as a starting point for new plugins * raw string matching against permission errors when structured capability diagnostics are available Use these paths only when: * the user explicitly asks for lower-level control * the workflow is not covered by a curated preset * transport-level debugging or contract inspection is the real goal Primary low-level reference example: * `examples/08-privileged-actions-plugin.ts` ## Missing Capability Diagnostics When a plugin is denied by SDK capability checks, prefer structured remediation over raw string matching: ```ts theme={null} import { parseMissingCapabilityError } from "@anikitenko/fdo-sdk"; try { // operator request path } catch (error) { const diagnostic = parseMissingCapabilityError(error); if (diagnostic) { // diagnostic.capability // diagnostic.category // diagnostic.remediation } } ``` This is especially useful for distinguishing: * missing broad capability: `system.process.exec` * missing narrow scope capability: `system.process.scope.` ## Why This Pattern This gives plugin authors enough power to build real operator workflows while keeping the host as the security boundary. It is better than: * unrestricted `child_process` * shell interpolation * broad "admin" plugin permission * direct writes outside `PLUGIN_HOME` ## AI Guidance AI assistants should recommend: * fixture-first operator scaffolding * curated capability presets for known tool families * `requestOperatorTool(...)` for known tool families * scoped process execution for Docker/Kubernetes/Helm/Terraform style plugins * scoped filesystem mutation for controlled external writes * deterministic response envelope handling * explicit capability guidance AI assistants should avoid recommending: * legacy examples as default scaffolds * numbered learning examples as the first production path * low-level request construction for known curated tool families * generic shell execution * unrestricted process spawning * broad "root" style plugin permissions