Harbor

Appearance

Run the Harbor dev loop

Harbor's local-iteration loop is two processes: harbor dev (the Runtime — Protocol server on :18080, the agent yaml's tools / LLM / planner all wired) and harbor console (the Svelte SPA on :18790 that attaches to the Runtime over the Protocol). They're separate binaries' worth of work but the same harbor static binary — pick by subcommand. Choose between two postures:

  • Single-process — Runtime + Console both at the same workstation, no auth ceremony. Easiest. Default for development.
  • Multi-process — Runtime on a workstation or VM; Console on a different machine, browser tab, or laptop. Production posture. Needs the CORS allowlist (server.allowed_origins) configured in the yaml.

1. Single-process dev

Open a single terminal and run the Console, which boots a co-resident Runtime:

bash
harbor console

Open the printed URL (default http://127.0.0.1:18790). On first load, the Console redirects to the Settings page. Click Attach to local Runtime. The Console attaches to the co-resident Runtime in one click — no localStorage ceremony.

The token is minted fresh by the bootstrap endpoint and stored in localStorage automatically. Every subsequent page load reads the token and the Console is attached instantly.

If you prefer to attach manually (e.g. to a Runtime in a different terminal), fill the six-field form in Settings → Connected Runtimes → Add Runtime: name, base URL, token, tenant, user, session.

2. Multi-process dev (attach from a remote machine)

Start the Runtime on the first machine:

bash
cd ~/my-agent
harbor dev

Start the Console on a second machine (or a second terminal, or a browser tab pointing at a remote harbor console process):

bash
harbor console --port 18790

Open the Console URL. On first load it redirects to Settings. Fill the six-field form in Settings → Connected Runtimes → Add Runtime:

  • Name: any label (e.g. "staging")
  • Base URL: the Runtime's URL (e.g. http://10.0.0.42:18080)
  • Token: the HARBOR_DEV_TOKEN from the Runtime's stderr output
  • Tenant / User / Session: dev / dev / dev (the dev identity triple)

Click Add. The Console attaches to the remote Runtime. If the Runtime is on a different origin, configure the CORS allowlist:

yaml
server:
  allowed_origins:
    - http://127.0.0.1:18790
    - http://10.0.0.99:18790

3. Hot reload

harbor dev runs an fsnotify watcher over the project directory:

  • harbor.yaml changes → the Runtime drains in-flight runs, re-reads the config, re-wires the LLM / tools / memory, and restarts the Protocol server. The watcher debounces — a flurry of saves coalesces to one reload.
  • In-process tool .go file changes → harbor dev does NOT recompile your binary automatically. You re-run go build && harbor dev for code changes. Yaml-only changes (provider model swap, new MCP server entry, memory budget tweak) flow through the hot-reload path.

The watcher policy is drain with a 5s timeout — in-flight tasks are given 5s to settle; longer-running runs are cancelled at the 5s mark. The drain window is set by cli.dev_hot_reload.drain_timeout (default 5s) — NOT server.shutdown_grace_period (that's the ~30s HTTP-listener shutdown knob, a different thing). The cli.dev_hot_reload.* config is read once when harbor dev boots its supervisor, so changing it is restart-required — a reload won't pick up a new drain timeout.

SQLite in the project dir is safe. The watcher ignores all SQLite/db files — the main .sqlite / .db file plus its -wal / -shm / -journal sidecars — so an in-project state.dsn: ./harbor-state.sqlite no longer triggers a reboot loop. Keeping the DSN outside the project tree (/tmp/harbor-validation/<project>-state.sqlite or ~/.harbor/<project>.sqlite, as the init template does) is optional tidiness, not a requirement.

4. Token re-seed (the 24h expiry trap)

HARBOR_DEV_TOKEN is signed with an in-memory ephemeral ES256 key minted per harbor dev boot. Every restart mints a new key + a new token:

  • The OLD token is still in your browser's localStorage.
  • The NEW token's kid doesn't match the one the OLD signed with.
  • Every Protocol call from the Console fails 401.

When this happens you see the Console footer flipping to "Disconnected"; DevTools shows a wall of 401 Unauthorized browser errors. Fix: copy the new token from the Runtime's stderr and reseed localStorage.setItem('harbor.runtime.token', ...). Reload.

Tokens also expire after 24h — a Console session left open overnight needs the same reseed.

5. Logs — where to look

There are two log streams, and they're easy to mix up:

  • Boot output on stderrharbor dev (and harbor console) write their startup banner, the HARBOR_DEV_TOKEN, and lifecycle lines to stderr as human-readable text, always. This is the stream you watch while iterating; it's not configurable to JSON.
  • The subsystem logger on stdout — the Runtime's structured logger (per-request, per-task slog records) writes to stdout, and telemetry.log_format (json | text) + telemetry.log_level govern it:
yaml
telemetry:
  log_format: json   # json for machine ingest, text for eyeballing
  log_level: debug   # bump to debug for the noisy traces

Per-task events ALSO go to the Console's Events page in real time (assuming events.driver: inmem — the dev default — keeps events in memory while the Console is attached). Use the Events page when you want a live stream; use stderr when you want grep-able history.

Power-user / scripted attach

If you prefer to seed the connection directly (CI scripts, one-liner test harnesses, DevTools-first workflows), the localStorage keys are:

js
localStorage.clear();
localStorage.setItem('harbor.runtime.base_url', 'http://127.0.0.1:18080');
localStorage.setItem('harbor.runtime.token', '<the HARBOR_DEV_TOKEN>');
localStorage.setItem('harbor.runtime.tenant', 'dev');
localStorage.setItem('harbor.runtime.user', 'dev');
localStorage.setItem('harbor.runtime.session', 'dev');
localStorage.setItem('harbor.runtime.scopes', 'admin console:fleet');

Or call the bootstrap endpoint directly:

bash
curl -sS -X POST http://127.0.0.1:18080/v1/dev/bootstrap.json -d '{}'

The response is a ready-to-use connection envelope containing base_url, token, identity, scopes, and protocol_version.

Common failure modes

  • Console shows "Disconnected" after I restart harbor dev. Token rotated. Reseed localStorage. See §4.
  • Browser DevTools floods with 401 Unauthorized. Same root cause — stale token. Reseed.
  • harbor dev reboots in a loop with fsnotify events. This used to be the SQLite-WAL trap; the watcher now ignores all SQLite/db files (see §3), so a state DB is no longer the cause. If you still see a loop, look for another tool or build step rewriting a watched file on each cycle.
  • CORS preflight failing on multi-process Console. Your server.allowed_origins doesn't list the Console's origin. The Runtime defaults to default-deny — explicitly add the Console URL.
  • Port conflict on :18080 / :18790. Another harbor dev is already running. lsof -nP -iTCP:18080,18790 -sTCP:LISTEN | awk 'NR>1 {print $2}' | xargs -r kill.

See also

Apache-2.0 licensed — see LICENSE.

© Harbor contributors. Generated by VitePress (Phase 103).