Mastermind — 7DTD AI Server Manager

Control Plane + Host Agent for managing 7 Days to Die (and other game) servers. Instead of SSH’ing into each box, you run a small agent on every host; the control plane sends jobs (start, stop, restart, RCON, etc.) and the agent runs them locally.

---

Architecture overview

    ┌─────────────────────────────────────────────────────────────────┐
    │                     CONTROL PLANE (NestJS)                       │
    │  Web (Next.js) ◄── API + WebSocket ◄── Postgres + Redis/BullMQ   │
    └─────────────────────────────────────────────────────────────────┘
        │                    │
        │ HTTPS/WS           │ Job queue / heartbeat
        ▼                    ▼
    ┌─────────────────────────────────────────────────────────────────┐
    │  HOST: Agent (Go) — pairing, heartbeat, job runner, game adapters │
    │         ◄──────────────────────────────────────────────────────►  │
    │                        Game server (7DTD, etc.)                   │
    └─────────────────────────────────────────────────────────────────┘

• Control plane: REST API, Postgres (orgs, hosts, server instances, jobs), Redis/BullMQ (job queues), pairing tokens, auth, org membership guards.
• Web: Next.js UI — login/register, dashboard, hosts, jobs, schedules/alerts/settings pages.
• Agent: Go binary on each game host — pairs with a one-time token, heartbeats, polls for jobs, runs them via game adapters (7DTD, Minecraft, etc.).

---

Tech stack

Layer	Tech
Control plane	NestJS, TypeScript, Prisma, BullMQ
Web	Next.js 14, React, TypeScript
Agent	Go 1.22+
Data	PostgreSQL 16, Redis 7
Local dev	Docker Compose

---

Repo layout

├── control-plane/    # NestJS API (REST + WS), Prisma, jobs, pairing, alerts
├── web/              # Next.js frontend
├── agent/            # Go host agent (pairing, heartbeat, job runner)
├── infra/            # Docker Compose for local dev
├── docs/             # Architecture, security, design docs
├── prompts/          # Prompt library
├── scripts/          # bootstrap.sh, start.sh, dev.sh, doctor.sh
├── .github/          # Issue/PR templates
├── Makefile          # make start, bootstrap, up, down, logs, test
├── pnpm-workspace.yaml
└── README.md

---

Release 0.0.4 (April 8, 2026)

Highlights

• Windows onboarding now matches the Linux flow via scripts/setup.ps1 and scripts/start.ps1.
• Alerts, schedules, settings, and Frigate-backed detection flows are wired through live backend APIs.
• Same-host Linux 7DTD autodiscovery: the agent can read local server config, mods, and admin XML and auto-register the server instance.
• Agent job execution now routes through real game adapters and the control-plane/agent JSON contracts line up for pairing, polling, and result reporting.
• Health/version/docs updated across the stack for release 0.0.4.

---

Current known features (v0.0.4)

Implemented end-to-end

• User auth: register, login, GET /api/auth/me (JWT).
• Org management: create org, list my orgs, get org details.
• Agent onboarding: generate pairing token, pair agent, rotate key, heartbeat ingestion.
• Agent installer script endpoint for one-line setup: GET /install.sh.
• Agent-driven 7DTD server autodiscovery and auto-registration for same-host Linux installs.
• Host inventory: list hosts, host details, online/offline status from heartbeat.
• Server instances: CRUD for org-scoped server definitions.
• Job dispatch: create/list jobs, queue-backed execution, job run status/result reporting from agents.
• Agent polling loop: host fetches pending jobs and posts job results back.
• Game type registry: 7dtd and minecraft seeded with capabilities.
• Schedules CRUD API + queue integration.
• Alert rule CRUD API.
• Org settings update API (Discord webhook supported).
• Web UI pages:
  • Login/Register
  • Dashboard (host + recent job summaries)
  • Hosts (pair token generation, server registration)
  • Jobs (create start/stop/restart/rcon/custom jobs + view output)
  • Schedules (create/list/edit/delete schedule rules, job types aligned to SERVER_START/STOP/RESTART)
  • Alerts (create/list/edit/delete alert rules annotated with SERVER_DOWN / SERVER_RESTART / AGENT_OFFLINE)
  • Settings (org/account + Discord webhook update)

---

Prerequisites

• Node.js 20 LTS (or 20.x)
• pnpm 9.x (corepack enable && corepack prepare pnpm@latest --activate)
• Go 1.22+ (for building the agent)
• Docker and Docker Compose v2 (for Postgres, Redis, and optional full stack)

---

Quickstart (copy-paste)

git clone https://github.com/248Tech/Mastermind-7DTD-AI-Server-Manager.git
cd Mastermind-7DTD-AI-Server-Manager

# Recommended one-line start (v0.0.3)
make start
# or: bash scripts/start.sh

Open http://localhost:3000/login and sign in with the seeded account:

• admin@mastermind.local
• changeme

Health check: http://localhost:3001/health.

The make start command handles dependency install, agent binary builds, Postgres/Redis startup, Prisma push/seed, and starts both app services.

Detailed setup options (full Docker, local dev, API reference): see QUICKSTART.md.

---

Configuration

Variable	Where	Description
DATABASE_URL	control-plane	Postgres connection string (e.g. postgresql://mastermind:changeme@localhost:5432/mastermind)
REDIS_HOST, REDIS_PORT	control-plane	Redis for BullMQ (default localhost:6379)
JWT_SECRET	control-plane	Secret for user JWTs (never use default in prod)
JWT_AGENT_SECRET	control-plane	Secret for agent JWTs (separate from user secret)
PORT	control-plane	API port (default 3001)
NEXT_PUBLIC_CONTROL_PLANE_URL	web	Backend URL for the browser (e.g. http://localhost:3001)
Agent	agent	See agent/config.yaml.example — control_plane_url, pairing_token, agent_key_path

Copy .env.example to .env (and control-plane/.env.example to control-plane/.env, etc.). Never commit .env.

---

First-run walkthrough

1. Run one command: make start (or bash scripts/start.sh).
2. Login: open http://localhost:3000/login and sign in with seeded admin credentials.
3. Pair a host: in Hosts, click Pair New Host, set host name / control-plane URL, and generate a token.
4. Start agent (recommended): run the generated one-liner from the Hosts page:
   • curl -sSL "http://<control-plane>:3001/install.sh?token=<token>&url=http://<control-plane>:3001&name=<host-name>" | sudo bash
5. Manual fallback: in agent/, copy config.yaml.example to config.yaml, set control_plane_url + pairing_token, then run go run .
   • For same-box Linux 7DTD installs, enable discovery.seven_dtd and point it at your real paths (for example serverfiles/serverconfig.xml, serverfiles/Mods, .local/share/7DaysToDie/Saves/serveradmin.xml). The agent will auto-register/update the 7DTD server instance for that host.
6. Register a server instance: in Hosts, use the Register Server form (game type 7dtd or minecraft). If autodiscovery is enabled and working, this may already be done for you.
7. Run jobs: in Jobs, create start / stop / restart / rcon / custom jobs and monitor status/output.

Same-Host 7DTD Autodiscovery Example

If the agent runs on the same Linux machine as your 7DTD dedicated server, use config like:

control_plane_url: "http://YOUR_CONTROL_PLANE_IP:3001"
pairing_token: "PAIRING_TOKEN"
agent_key_path: "/var/lib/mastermind-agent/agent.key"

heartbeat:
  interval_sec: 5

jobs:
  poll_interval_sec: 5
  long_poll_sec: 30

host:
  name: "7dtd-box"

discovery:
  enabled: true
  seven_dtd:
    enabled: true
    install_path: "/home/xxxxxxx/serverfiles"
    server_config_path: "/home/xxxxxxx/serverfiles/sdtdserver.xml"
    mods_path: "/home/xxxxxxx/serverfiles/Mods"
    saves_path: "/home/xxxxxxxx/.local/share/7DaysToDie/Saves"
    server_admin_xml_path: "/home/xxxxxxxx/.local/share/7DaysToDie/Saves/serveradmin.xml"
    start_command: "/bin/sh /home/xxxxxxx/serverfiles/startserver.sh"

On first run, the agent will pair, read the local 7DTD paths, and auto-create or update the matching 7DTD server instance in Mastermind.

---

Troubleshooting

Issue	What to do
Port 3000, 3001, 5432, or 6379 in use	Change ports in .env and infra/docker-compose.yml, or stop the process using the port.
Schema sync fails	Ensure Postgres is up and DATABASE_URL is correct, then run cd control-plane && pnpm prisma db push.
Compose build fails	Run make bootstrap first. Ensure Docker has enough memory. For control-plane, run pnpm prisma generate locally if needed.
Login fails for default admin	Run cd control-plane && pnpm prisma:seed and try admin@mastermind.local / changeme.
Web shows backend/API errors	Ensure control plane is running on the URL in NEXT_PUBLIC_CONTROL_PLANE_URL (default http://localhost:3001).
Auth failures	Check JWT_SECRET and that the user is in the org. For agent, check JWT_AGENT_SECRET and that the host’s key version matches.

---

Security notes

• Signed jobs: Agents authenticate with a JWT; the control plane only gives jobs to the correct host. See docs/security-agent-pairing.md.
• Allowlists: The agent runs commands via game adapters (no arbitrary shell by default). See docs/security-review.md.
• Discord: Webhook URL is stored per org; don’t log it. Rate limit outbound alerts.

---

Roadmap

• Phase 1 (MVP): Control plane + web + agent, pairing, server CRUD, job dispatch, basic 7DTD adapter.
• Phase 2: Schedules, bulk operations, Discord alerts, command macros.
• Phase 3: Multi-host, observability, command palette, further game adapters.

---

License

MIT — see LICENSE.