Core

The RootCX Core is a Rust daemon. It manages your entire fleet of Applications, AI Agents, Integrations, and MCP Servers. It enforces authentication and RBAC, runs backend processes, and serves the REST API.

When you create a project on rootcx.com, a dedicated Core instance is provisioned for you automatically. You can also run the Core yourself -- see Self-Hosting.

What the Core Does

Every request, every tool call, every data mutation flows through the Core:

1. Auth: validates JWTs, manages sessions (Argon2id hashing, HS256 tokens).
2. RBAC: resolves role assignments, walks inheritance, enforces policies before SQL runs.
3. Data API: auto-generates CRUD endpoints from your manifest. Schema Sync Engine handles migrations.
4. Backend & RPC: spawns and supervises backend processes (Bun), proxies RPC calls via JSON-line IPC.
5. Job Queue: PostgreSQL-backed durable queue.
6. Secret Vault: AES-256-GCM encrypted key-value store. Secrets injected as env vars.
7. Audit Log: PostgreSQL triggers capture every INSERT/UPDATE/DELETE. Immutable.
8. Real-time Logs: captures stdout/stderr from backends, broadcasts via SSE.
9. MCP: auto-generates MCP tools for every Application's entities.

PostgreSQL

By default, the Core manages a bundled PostgreSQL instance. The database is initialized automatically on first boot and managed entirely by the daemon. No installation, no configuration.

You can connect directly for debugging:

psql -h 127.0.0.1 -p 5480 -U postgres postgres

Platforms

Binary per platform (requires bundled PostgreSQL and Bun in the resources directory):

Health Check

curl https://<your-ref>.rootcx.com/health
# {"status":"ok"}

# Full status (JSON with subsystem details)
curl https://<your-ref>.rootcx.com/api/v1/status

[!TIP] Self-hosting When self-hosting, the Core listens on localhost:9100 by default. See Self-Hosting.