sandbox connected and streaming

deploy/k8s/base/gateway-rbac.yaml

@@ -1,6 +1,6 @@
-# RBAC for gateway to CREATE agent deployments only
+# RBAC for gateway to CREATE sandbox deployments only
 # Principle of least privilege: gateway can ONLY create deployments/services/PVCs
-# in the dexorder-agents namespace. Deletion is handled by the lifecycle sidecar.
+# in the dexorder-sandboxes namespace. Deletion is handled by the lifecycle sidecar.
 # No pods, secrets, exec, or cross-namespace access.
 ---
 apiVersion: v1
@@ -8,12 +8,12 @@ kind: ServiceAccount
 metadata:
   name: gateway
 ---
-# Role scoped to dexorder-agents namespace only
+# Role scoped to dexorder-sandboxes namespace only
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  name: agent-creator
-  namespace: dexorder-agents
+  name: sandbox-creator
+  namespace: dexorder-sandboxes
 rules:
   # Deployments: create and read only (deletion handled by sidecar)
   - apiGroups: ["apps"]
@@ -25,7 +25,7 @@ rules:
     resources: ["persistentvolumeclaims"]
     verbs: ["create", "get", "list", "watch"]
 
-  # Services: create and manage agent MCP endpoints
+  # Services: create and manage sandbox MCP endpoints
   - apiGroups: [""]
     resources: ["services"]
     verbs: ["create", "get", "list", "watch", "patch", "update"]
@@ -52,13 +52,13 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  name: gateway-agent-creator
-  namespace: dexorder-agents
+  name: gateway-sandbox-creator
+  namespace: dexorder-sandboxes
 subjects:
   - kind: ServiceAccount
     name: gateway
     namespace: default
 roleRef:
   kind: Role
-  name: agent-creator
+  name: sandbox-creator
   apiGroup: rbac.authorization.k8s.io