# Session: July 8, 2026 (Morning — Full Audit + DRE Portal Enhancements) ## Model Changes - **Opus 4.8 added** as delegation fallback 1 (after Opus 4.7 primary) - Fallback chain now: Opus 4.7 → Opus 4.8 → Llama 3.2 (local) - DeepSeek V4 Flash was NOT a fallback before — removed from chain, Ollama is the only real fallback - **Conversation model has NO fallback chain** — only delegation chain has fallbacks ## DRE Portal Fixes & Features Built ### Internal Portal Landing Page - Created `/var/www/internal/index.html` — dark landing with 4 card links - Cloudflare Access policy: `Team` = any @germainebrown.com or @yahoo.com - `try_files {path} {path}.html /index.html` added to Caddy for clean URLs ### Login Page - Created `/var/www/capabilities/login.html` — SSO-only gateway - Links to internal.debtrecoveryexperts.com for authentication - "New customer" link back to intake form ### Persistent Nav — All Pages - **Standardized to 5 links:** Home, Claims, Aging, Letters, Inbox - **Clients removed** — DRE team doesn't use that nav link - **Nav-link CSS** converted from @apply to real CSS everywhere - Logo: D|R|E with colored separators (gray pipes) ### Document Upload Fix - Added real ``, drag-and-drop JS, file list with remove, 20MB limit - Was a decorative `
` before — did nothing on click ### Agent DRE Identity - Both public (portal) and internal (letter queue) chatbots updated: - Welcome message includes "Texas-registered debt collection agency" - "what is DRE" response includes "registered with the state of Texas" and "FDCPA compliant" - Internal chatbot got `'about'` intent detection for identity queries ### + New Letter Modal - Two-screen modal: client search → stage-gated template selection - Templates load with `[CLAIM]`, `[DEBTOR]`, `[AMOUNT]`, `[CLIENT]` placeholder substitution - Stage-to-template mapping prevents backward progression: - soft-touch → formal-demand - formal-demand → lien-threat, escalation - lien-threat → escalation, legal-action - escalation → legal-action - legal-action → disabled (referred to counsel) ### 8 Canned Letter Templates Saved to references/dre-letter-templates.md. 1-3 auto, 4-8 queued for dual approval. ### DRE Mail IMAP Poller - `/root/.hermes/scripts/dre-mail-poller.py` - Polls dre@ + collections@ every 60s via IMAP - Writes to `/var/www/internal/data/dre-mails.json` - Cron job in no_agent mode ### Inbox UI Page - `/var/www/internal/inbox.html` — unified inbox for both mailboxes - Stats, search, mailbox filter, expand/collapse, mark-as-read - Data source: `/data/dre-mails.json` ### Letter Composer Readability Fix - All `@apply` directives replaced with real CSS in letter-queue.html - Textarea was rendering white-on-white (invisible text) ### Custom Letters Policy - Per user directive: custom letters should be handled through email - The "+ New Letter" modal should only offer stage-appropriate templates, NOT a free-form text option ## Apex Fixes ### SPF: Silent Email Drop - Apex form notifications silently dropped by MXroute filter - SiteGround SMTP relay (c1113726.sgvps.net / 35.212.86.161) was not in SPF - Fixed by adding `ip4:35.212.86.161` to SiteGround DNS TXT record - Form notifications now also send to g@germainebrown.com ### NASA Form + Waiver Fixes - Added g@germainebrown.com to both form notifications (IDs 270, 268) - SQL UPDATE via REPLACE, verified 2 rows affected ## Credential Audit Full audit completed Jul 8 @ ~10:00 AM. 6/7 credentials verified working. - All .env keys, config secrets, DB passwords, IMAP passwords OK - iCloud calendar password expired — replaced with new app-specific password - iCloud CalDAV connection now working (principal/auth verified via PROPFIND) ## iCloud CalDAV - Added to `/root/.config/himalaya/config.toml` as `germaine-calendar` account - CalDAV verified via PROPFIND to caldav.icloud.com — status 207 - App-specific password stored in `g-germainebrown-icloud-calendar.pass` - Password generated at appleid.apple.com → App-Specific Passwords ## Home Lab Reminder - Cron set for 8 PM ET today (Jul 8): remind Germaine to spin up a Linux VM for ShoNuff SSH access ## DRE Queue Items (not yet built/finished) 1. AI Analysis page — recovery success rates, AI scores, metrics dashboard 2. Legal research: can DRE report to credit bureaus? 3. Light/dark theme toggle for internal portal 4. Internal Agent DRE on the letter queue page should include registered debt collector in the welcome message (DONE — first welcome chat bubble updated to include DRE identity)