SpectraStrike Documentation

Operational, architecture, SDK, and integration guidance

SpectraStrike UI Architecture and API Contracts (Sprint 9.6 Step 1)

SpectraStrike Logo

1. Scope

This document defines the UI baseline architecture and API contracts for Sprint 9.6 with a strict local-only, dockerized runtime model.

2. Dockerized UI Topology

UI components (planned for implementation in next Sprint 9.6 steps):

Traffic model:

  1. Operator browser -> nginx (TLS edge).
  2. nginx routes /ui/* and /api/* to internal services.
  3. ui-web calls orchestrator API over internal Docker network.
  4. ui-admin calls orchestrator API over internal Docker network.

Security model:

3. UI Service Boundaries

ui-web responsibilities:

ui-admin responsibilities:

app (orchestrator/API) responsibilities:

4. API Contract Baseline

All endpoints are internal API contracts served by orchestrator and consumed by both UI clients.

4.1 Authentication

4.2 Dashboard and Telemetry

4.3 Findings and Evidence

4.4 Operator Actions

5. Shared Schema Contracts

TelemetryEvent:

Finding:

EvidenceItem:

6. Non-Functional Requirements

7. Delivery Note

This is the contract and architecture baseline for Sprint 9.6 Step 1 only. Implementation of web/admin UI containers and endpoint wiring is tracked in the next Sprint 9.6 items.