← Sites

Grecos Workspace

Navigation remains inside site context. Existing modules are embedded as workspace sections, not unrelated global jumps.

/sites/grecos/?section=analytics /sites/grecos/?section=content /sites/grecos/?section=forms /sites/grecos/?section=media /sites/grecos/?section=releases /sites/grecos/?section=revisions

Secrets & Credentials Vault

Placeholder vault contract for deployment adapters. No real credentials are stored. No plaintext is displayed after creation.

/sites/grecos/?section=secrets secret_created secret_rotated secret_revoked secret_used_by_deployment secret_access_denied vault://nubflow
Supported secret types

10 types

Storage policy

No plaintext returned after creation

Runtime policy

Adapters resolve only during deployment execution

Credential placeholders

LabelTypeProviderStatusVault referenceActions
Grecos DirectAdmin API placeholderdirectadmin_apidirectadminactivevault://nubflow/org_nubdesigns/ws_grecos/site_grecos/directadmin/sec_grecos_directadmin_placeholder_001Add placeholder Rotate placeholder Revoke placeholder
Grecos SFTP publishing placeholdersftpsftpactivevault://nubflow/org_nubdesigns/ws_grecos/site_grecos/sftp/sec_grecos_sftp_placeholder_001Add placeholder Rotate placeholder Revoke placeholder
Future Cloudflare DNS placeholdercloudflare_apicloudflarerevokedvault://nubflow/org_nubdesigns/ws_grecos/site_grecos/cloudflare/sec_grecos_cloudflare_placeholder_001Add placeholder Rotate placeholder Revoke placeholder

Usage view

TargetAdapterCredential refPolicy
env_grecos_proddirectadminvault://nubflow/org_nubdesigns/ws_grecos/site_grecos/directadmin/sec_grecos_directadmin_placeholder_001resolve only inside deployment worker; never returned to UI
env_grecos_prodsftpvault://nubflow/org_nubdesigns/ws_grecos/site_grecos/sftp/sec_grecos_sftp_placeholder_001resolve only inside deployment worker; never returned to UI

API and audit contract

GET /v1/secrets

metadata list; encrypted_payload is masked; plaintext never returned

POST /v1/secrets

secret metadata and vault reference only after creation

PATCH /v1/secrets/{id}/rotate

new secret_version and same credentials_reference unless target ref is changed

PATCH /v1/secrets/{id}/revoke

status=revoked; runtime resolution denied

GET /v1/secrets/{id}/usage

deployment targets/adapters referencing credentials_reference

Audit events: secret_created · secret_rotated · secret_revoked · secret_used_by_deployment · secret_access_denied

Unified Activity Timeline

global_component_release — Global Header edited once and published to referenced Home, Contact, and Dinner Menu pages 2026-06-11T19:03:03Z
rendered_release — Runtime Renderer generated deployable Grecos release package 2026-06-10T18:10:00Z
rollback — Release rolled back 2026-06-10T15:09:00Z
release — Release created 2026-06-10T15:07:00Z
draft_save — Draft saved 2026-06-10T15:05:00Z
form_edit — Reservation form modified 2026-06-10T15:04:00Z
media_change — Menu image replaced 2026-06-10T15:02:00Z
content_edit — Menu price changed 2026-06-10T15:00:00Z
analytics_review — Analytics dashboard reviewed for operational activity 2026-06-10T14:00:00Z
content_edit — Spanakopita price updated in structured content 2026-06-10T13:00:00Z
media_change — Hero image focal point adjusted 2026-06-10T13:05:00Z
form_submission — Reservation Request received from Jason 2026-06-10T13:10:00Z
release — Published form and menu changes 2026-06-10T13:15:00Z
rollback — Rollback restored release rel_grecos_001 2026-06-10T13:20:00Z
page_edit — Home hero heading draft saved 2026-06-10T13:25:00Z
design_system_update — Design System & Theme Manager V1 added centralized design tokens and global style references 2026-06-11T19:19:01Z