aasm gateway
Manage the aa-gateway governance daemon directly — the process that holds
the agent registry, evaluates the policy engine, and writes the audit log.
aasm gateway startruns the gateway with low-level flags (listen address, socket, policy path). For the higher-level local developer workflow (deployment mode + dashboard), seeaasm start.
Synopsis
aasm gateway <SUBCOMMAND> [OPTIONS]
| Subcommand | Purpose |
|---|---|
start | Spawn aa-gateway as a detached background process. |
stop | Terminate a running gateway (SIGTERM → SIGKILL fallback). |
status | Report whether the gateway is running and serving gRPC. |
logs | Tail the gateway log file. |
aasm gateway start
Spawn aa-gateway in the background (or foreground with --no-detach). The
binary is resolved from $PATH, then ~/.cargo/bin, then
./target/release, then ./target/debug.
| Flag | Type | Default | Description |
|---|---|---|---|
--policy <POLICY> | path | $AA_POLICY → ~/.aasm/policy.yaml → /etc/aasm/policy.yaml | Policy YAML file. |
--listen <LISTEN> | string | 127.0.0.1:50051 | TCP listen address. |
--socket <SOCKET> | path | — | Unix domain socket path. Takes precedence over --listen. |
--no-detach | flag | off | Block the caller instead of detaching to the background. |
--log-file <LOG_FILE> | path | ~/.aasm/logs/gateway.log | Log file for gateway stdout/stderr. |
aasm gateway start --listen 127.0.0.1:50051 --policy ./policy.yaml
aasm gateway stop
Terminate a running gateway gracefully (SIGTERM, escalating to SIGKILL). Takes no flags.
aasm gateway stop
aasm gateway status
Report whether aa-gateway is running and serving gRPC.
| Flag | Type | Default | Description |
|---|---|---|---|
--json | flag | off | Emit machine-readable JSON instead of human-readable text. |
aasm gateway status --json
{ "running": true, "pid": 48213, "listen": "127.0.0.1:50051", "uptime_seconds": 8133 }
aasm gateway logs
Tail the gateway log file, with optional level filtering. Non-JSON lines pass through so operator notes are preserved.
| Flag | Type | Default | Description |
|---|---|---|---|
-f, --follow | flag | off | Stream new log entries in real time (like tail -f). |
--lines <LINES> | integer | 50 | Number of lines to show from the end of the log. |
--level <LEVEL> | log level | — | Filter entries by minimum severity. |
--log-file <LOG_FILE> | path | ~/.aasm/logs/gateway.log | Path to the log file. |
aasm gateway logs --follow --level warn
Last updated: 2026-06-11 by Chisanan232