refactor(k8s): replace per-user dynamic PVCs with shared PVC + subPath

[jacoblee-io]

Summary

• Replace per-user dynamically provisioned PVCs with a single shared PVC (siclaw-data)
• Gateway creates per-user subdirectories (users/{userId}/{workspaceId}/) on the shared volume
• AgentBox pods mount via subPath for isolation — no dynamic provisioning or StorageClass required
• Sanitize userId/workspaceId in path segments to prevent traversal and invalid directory names

Details

Before: Each user got a dedicated PVC (siclaw-user-{userId}) created on demand via K8s API, requiring a StorageClass that supports dynamic provisioning.

After: Operator pre-creates one shared ReadWriteMany PVC. Gateway mounts it and creates subdirectories at spawn time; AgentBox pods mount the user-specific subdirectory via subPath.

Changes

• k8s-spawner.ts: Remove ensureUserPvc()/userPvcName(), add ensureUserDir()/sanitizePathSegment(), use shared PVC claimName + subPath
• gateway-main.ts: Replace storageClass/accessMode/size env vars with claimName/mountPath
• Helm values: Simplify persistence config to enabled + claimName
• Helm gateway-deployment: Mount shared PVC on gateway, pass SICLAW_PERSISTENCE_MOUNT_PATH
• Helm RBAC: Remove PVC create verb (only get/list needed)
• siclaw-data-pvc.yaml: Update to ReadWriteMany, 10Gi, updated comments

Test plan

• Deploy with persistence.enabled=true, verify gateway creates users/{userId}/{workspaceId}/ on the shared PVC
• Spawn AgentBox pod, verify it mounts the correct subPath and user data persists across pod restarts
• Verify special characters in userId/workspaceId are sanitized (no path traversal)
• Deploy with persistence.enabled=false (default), verify emptyDir fallback still works
• Verify RBAC: gateway no longer needs PVC create permission

[jacoblee-io]

Good refactor — dynamic PVC provisioning per user was unnecessarily complex. Shared PVC + subPath is the right call. A few issues below, one of which could cause silent bugs.

[jacoblee-io]

mountPath default is a relative path — fragile.

The Helm template always passes an absolute path (/app/.siclaw/shared-data), but the code defaults here and in gateway-main.ts are relative (.siclaw/shared-data). If someone runs without Helm or the env var isn't set, path.resolve() resolves against CWD, which depends on container WORKDIR and can silently break.

Suggest making the default absolute:

const mountPath = this.config.persistence?.mountPath || "/app/.siclaw/shared-data";

And same in gateway-main.ts:31.

[jacoblee-io]

Nit: double sanitization.

safeUserId/safeWorkspaceId are computed at lines 183-184, but ensureUserDir() takes the raw userId/workspaceId and sanitizes internally again. Both produce the same result, so it's correct, but the pattern is confusing — a reader might wonder if they diverge.

Consider either:

• Passing safeUserId/safeWorkspaceId and removing sanitizePathSegment from ensureUserDir, or
• Having ensureUserDir return the safe values so the caller doesn't need to compute them separately.

[jacoblee-io]

Hardcoded mount path not configurable via values.yaml.

The SICLAW_PERSISTENCE_MOUNT_PATH env var is hardcoded to /app/.siclaw/shared-data, and the volumeMount.mountPath on line 83 is also hardcoded to the same value. If someone changes one but not the other, they'll silently diverge.

Consider either:

• Adding mountPath to values.yaml and templating both, or
• Adding a comment noting these two must stay in sync.

[jacoblee-io]

Previous comments all addressed — nice. Two small nits remaining, neither is a blocker.

[jacoblee-io]

Nit: stale JSDoc default.

The comment says (default: ".siclaw/shared-data") but the actual default in ensureUserDir (line 352) is now "/app/.siclaw/user-data". Should be:

/** Local mount path of the shared PVC on the gateway (default: "/app/.siclaw/user-data") */

[jacoblee-io]

Nit: users/ vs user/ prefix inconsistency on the same PVC.

User data subPath is now users/{USER_ID}/{WORKSPACE_ID} (plural), but three lines below (line 114), credentials still use user/{USER_ID}/... (singular). Skills also use user/ (lines 107-108). Having both users/ and user/ as top-level directories on the same PVC is a readability trap — someone will inevitably confuse them.

Consider aligning all to one convention (either users/ everywhere or user/ everywhere) if there's no hard reason to keep them separate.

[jacoblee-io]

Re: stale JSDoc — Fixed, now reads "/app/.siclaw/user-data".

Re: users/ vs user/ prefix — Intentional. user/ is the skills PVC directory layout (skills, credentials, kube configs), while users/ is the shared data PVC layout (memory, sessions). These are different volumes in the actual K8s spawner; the template co-locates them on one PVC for reference only. Renaming user/ would break existing skills sync paths in local-spawner.ts and resource-handlers.ts.

[jacoblee-io]

All previous comments addressed — JSDoc default fixed, double sanitization cleaned up, mountPath templated via values.yaml. No remaining issues. LGTM, ready to merge.