sbbb/README.md

# The Super Boujee Business Box ✨

A self-hosted, open-core collaboration suite for teams who want ownership over their tools, data, and workflows — built on [La Suite Numérique](https://lasuite.numerique.gouv.fr/), wrapped in custom infrastructure that actually slaps.

One box. One bill. All yours. 💅

> **Status:** Early beta. The platform is fully functional and we run our entire studio on it daily — every feature you see here is tested in production by us first. We're still building out integrations and polishing edges. It works, we're just making it boujee-ier. ✨

---

## What's in the box?

The Super Boujee Business Box ✨ is everything your team needs to collaborate, communicate, and create — without handing your data to a dozen different SaaS companies.

| App | What it does | Vibe |
|-----|-------------|------|
| **Docs** | Collaborative document editing with real-time sync | Google Docs, but it's yours |
| **Drive** | File storage with versioning and smart organization | Dropbox who? |
| **Mail** | Full email platform with personal and shared mailboxes | Gmail without the surveillance |
| **Messages** | End-to-end encrypted chat on Matrix | Slack, but make it private |
| **Meet** | Video/audio calls powered by LiveKit | Zoom, but self-hosted and gorgeous |
| **Calendar** | Scheduling with team availability | It's giving organization |
| **Projects** | Kanban boards for docs, tasks, and databases | Trello walked so this could run |
| **People** | User and team management hub | The directory, darling |

Every app shares context by default. Switching between tools feels like moving through rooms in the same house — not jumping between separate buildings. One login gets you everywhere.

### The custom stuff that makes it boujee

| Component | What it is | Why it's special |
|-----------|-----------|-----------------|
| [**Sol☀️**](docs/sol.md) | AI presence living in your Matrix chat | A virtual employee — works *with* you, not *for* you. Has opinions, remembers you, pushes back. |
| [**Pingora Proxy**](docs/proxy.md) | ML-powered reverse proxy in Rust | Your bouncer. DDoS detection, scanner blocking, rate limiting — models compiled into the binary. |
| [**Sunbeam CLI**](docs/cli.md) | One command to run everything | `sunbeam up` and you're live. Kustomize, Helm, kubectl, OpenBao — all wrapped in one binary. |

---

## Architecture at a glance

```
The Super Boujee Business Box ✨
├── ingress/        The Front Door — Pingora reverse proxy (Rust, ML-powered)
├── ory/            The Velvet Rope — Ory Kratos + Hydra (unified OIDC auth)
├── lasuite/        The Apps — Docs, Drive, Mail, Meet, Calendar, Projects, People
├── matrix/         The Chat — Tuwunel (Matrix homeserver) + Sol☀️ (AI agent)
├── media/          The Stage — LiveKit (WebRTC video/audio + TURN relay)
├── data/           The Pantry — PostgreSQL, Valkey, OpenSearch, OpenBao, SearXNG
├── storage/        The Closet — SeaweedFS (S3-compatible object storage)
├── devtools/       The Workshop — Gitea (self-hosted Git + CI + LFS)
├── mesh/           The Meshy Bits — Linkerd (mTLS service mesh, zero config)
├── monitoring/     The Observatory — Prometheus, Grafana, Loki, Tempo, AlertManager
├── cert-manager/   The Certificates — Let's Encrypt automation
├── longhorn/       The Persistence — Volume management
└── vso/            The Secrets — Vault Secrets Operator
```

All of this runs on a single server. One Scaleway Elastic Metal box in Paris. European data sovereignty by default. No multi-vendor sprawl, no per-seat SaaS fees, no vendor lock-in.

---

## The deep cuts

| Doc | What you'll find |
|-----|-----------------|
| [What's In The Box, Babe?](docs/the-box.md) | Full architectural overview — every layer, every service, how it all connects |
| [Meet Sol☀️](docs/sol.md) | The AI agent — capabilities, personality, integration depth |
| [The Bouncer](docs/proxy.md) | Pingora proxy — ML threat detection, routing, TLS, caching |
| [The Remote Control](docs/cli.md) | Sunbeam CLI — every command, every shortcut |
| [The Guest List](docs/identity.md) | Authentication — OIDC, sessions, identity schemas |
| [The Observatory](docs/monitoring.md) | Observability — Prometheus, Grafana, Loki, Tempo, alerts |
| [Setting Up Your Vanity](docs/local-dev.md) | Local dev setup — Lima, k3s, mkcert, sslip.io |
| [Serving Looks in Production](docs/deployment.md) | Production deployment — Scaleway, DNS, certs, backups |
| [When Things Go Sideways](docs/ops.md) | Ops runbooks — incidents, recovery, diagnostics |
| [House Rules](docs/conventions.md) | Coding conventions — kustomize patterns, secrets, naming |

---

## The team

The Super Boujee Business Box ✨ is built and maintained by **Sunbeam Studios** — a three-person game studio that needed collaboration tools and decided to make them *unreasonably* good.

- **Sienna** — Californian engineer. Built the infrastructure, writes the Rust, breaks and fixes the things.
- **Amber** — South African designer. Marketing & design. Makes everything look intentional, from brand identity to game assets.
- **Lonni** — Dutch producer. Keeps the trains running. Lives in Projects and Calendar so the rest of us don't have to think about deadlines.

We built this because we wanted to own our tools, own our data, and have a stack that felt like *us* — not like an enterprise procurement committee picked it. Every feature here runs in our production environment first. If it's in the docs, we use it daily.

---

## License

[Fair Source](LICENSE.md) — free for small teams, commercial license for larger deployments.

Questions? `hello@sunbeam.pt` ✨