Enable host access by default with --no-host-access flag

gricha · claude · gricha · commit 5b00f48e41ee · 2026-01-05T03:55:03.000Z
- Host access is now enabled by default for direct machine access - Add --no-host-access flag to `workspace agent run` and `workspace agent install` - Support WS_NO_HOST_ACCESS=true environment variable for systemd - Update getting started docs with host access information 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
diff --git a/docs/docs/getting-started.md b/docs/docs/getting-started.md
@@ -7,23 +7,42 @@ sidebar_position: 3
 ## Start Agent
 
 ```bash
-ws agent start
+workspace agent run
 ```
 
 Web UI: `http://localhost:7391`
 
 Options:
 ```bash
-ws agent start --port 3000     # Custom port
-ws agent start --host 0.0.0.0  # Remote access
+workspace agent run --port 3000       # Custom port
+workspace agent run --no-host-access  # Disable direct host machine access
+```
+
+## Host Access
+
+By default, the agent enables direct access to your host machine. This allows running terminals and AI coding agents directly on your machine without Docker isolation.
+
+To disable host access (workspaces-only mode):
+```bash
+workspace agent run --no-host-access
+```
+
+Or via environment variable:
+```bash
+WS_NO_HOST_ACCESS=true workspace agent run
+```
+
+For systemd service installation:
+```bash
+workspace agent install --no-host-access
 ```
 
 ## Create Workspace
 
 CLI:
 ```bash
-ws create myproject
-ws create myproject --clone git@github.com:user/repo.git
+workspace create myproject
+workspace create myproject --clone git@github.com:user/repo.git
 ```
 
 Web UI:
@@ -36,7 +55,7 @@ Web UI:
 
 SSH:
 ```bash
-ws list  # Find port
+workspace list  # Find port
 ssh -p 2201 workspace@localhost
 ```
 
@@ -45,10 +64,9 @@ Web Terminal: Click workspace → Terminal
 ## Commands
 
 ```bash
-ws list              # List all
-ws start <name>      # Start
-ws stop <name>       # Stop
-ws delete <name>     # Delete
-ws logs <name>       # Logs
-ws agent stop        # Stop agent
+workspace list              # List all
+workspace start <name>      # Start
+workspace stop <name>       # Stop
+workspace delete <name>     # Delete
+workspace logs <name>       # Logs
 ```
diff --git a/src/agent/run.ts b/src/agent/run.ts
@@ -130,6 +130,7 @@ function createAgentServer(configDir: string, config: AgentConfig) {
 export interface StartAgentOptions {
   port?: number;
   configDir?: string;
+  noHostAccess?: boolean;
 }
 
 async function getProcessUsingPort(port: number): Promise<string | null> {
@@ -159,6 +160,11 @@ export async function startAgent(options: StartAgentOptions = {}): Promise<void>
   await ensureConfigDir(configDir);
 
   const config = await loadAgentConfig(configDir);
+
+  if (options.noHostAccess || process.env.WS_NO_HOST_ACCESS === 'true') {
+    config.allowHostAccess = false;
+  }
+
   const port =
     options.port || parseInt(process.env.WS_PORT || '', 10) || config.port || DEFAULT_AGENT_PORT;
 
diff --git a/src/agent/systemd.ts b/src/agent/systemd.ts
@@ -19,6 +19,7 @@ function getServicePath(): string {
 interface InstallOptions {
   port?: number;
   configDir?: string;
+  noHostAccess?: boolean;
 }
 
 export function generateServiceFile(options: InstallOptions = {}): string {
@@ -28,6 +29,16 @@ export function generateServiceFile(options: InstallOptions = {}): string {
   const nodePath = process.execPath;
   const agentPath = path.resolve(__dirname, 'index.js');
 
+  const envLines = [
+    `Environment=WS_PORT=${port}`,
+    `Environment=WS_CONFIG_DIR=${configDir}`,
+    `Environment=NODE_ENV=production`,
+  ];
+
+  if (options.noHostAccess) {
+    envLines.push(`Environment=WS_NO_HOST_ACCESS=true`);
+  }
+
   return `[Unit]
 Description=${SERVICE_DESCRIPTION}
 After=network.target docker.service
@@ -38,9 +49,7 @@ Type=simple
 ExecStart=${nodePath} ${agentPath}
 Restart=on-failure
 RestartSec=5
-Environment=WS_PORT=${port}
-Environment=WS_CONFIG_DIR=${configDir}
-Environment=NODE_ENV=production
+${envLines.join('\n')}
 
 [Install]
 WantedBy=default.target
diff --git a/src/config/loader.ts b/src/config/loader.ts
@@ -21,6 +21,7 @@ export function createDefaultAgentConfig(): AgentConfig {
     },
     scripts: {},
     agents: {},
+    allowHostAccess: true,
   };
 }
 
@@ -39,7 +40,7 @@ export async function loadAgentConfig(configDir?: string): Promise<AgentConfig>
       },
       scripts: config.scripts || {},
       agents: config.agents || {},
-      allowHostAccess: config.allowHostAccess || false,
+      allowHostAccess: config.allowHostAccess ?? true,
     };
   } catch (err: unknown) {
     if ((err as NodeJS.ErrnoException).code === 'ENOENT') {
diff --git a/src/index.ts b/src/index.ts
@@ -31,10 +31,12 @@ agentCmd
   .description('Start the agent daemon')
   .option('-p, --port <port>', 'Port to listen on', parseInt)
   .option('-c, --config-dir <dir>', 'Configuration directory')
+  .option('--no-host-access', 'Disable direct host machine access')
   .action(async (options) => {
     await startAgent({
       port: options.port,
       configDir: options.configDir,
+      noHostAccess: options.hostAccess === false,
     });
   });
 
@@ -43,10 +45,12 @@ agentCmd
   .description('Install agent as systemd user service')
   .option('-p, --port <port>', 'Port to listen on', parseInt)
   .option('-c, --config-dir <dir>', 'Configuration directory')
+  .option('--no-host-access', 'Disable direct host machine access')
   .action(async (options) => {
     await installService({
       port: options.port,
       configDir: options.configDir,
+      noHostAccess: options.hostAccess === false,
     });
   });
 
