Chapter 21: Cloud Tasks, Identity, and Remote Work
Reading Contract: Use this chapter to read cloud tasks as explicit contracts. Track task identity, remote work state, apply flows, and the local verification that closes the loop.
Chapter 20 showed that local multi-agent coordination becomes understandable when each relationship is explicit: spawn edges, mailbox deliveries, result edges, and close events. This chapter moves the same discipline to remote work. Cloud tasks are not a second agent loop hidden behind a button. They are a backend task workflow with its own identity, environment, attempts, diffs, and local apply path.
The separation is crucial. Local Codex turns stream model output and execute tools in a local permission context. Cloud tasks submit work to a backend environment, later fetch task state, and may apply a returned patch to the current working tree. Those are related product experiences, but they are not the same execution boundary.
Source boundary: the backend task surface is verified source in cloud-tasks-client/src/api.rs, HTTP transport is verified source in http.rs, and the mock implementation is verified source in cloud-tasks-mock-client. Claims that connect task identity, remote workflow, and local apply are surrounding contract inference from those client shapes, agent-identity, and the local diff discipline in turn_diff_tracker.rs.
Task Workflows Are Backend Contracts
The cloud task client is shaped around a small backend interface. It can list tasks, fetch a summary, fetch a diff, fetch assistant messages, fetch task text, list sibling attempts, create a task, run apply preflight, and apply a task. That interface hides HTTP path details from the CLI and TUI. It also lets a mock backend satisfy the same contract during development and tests.
This layout prevents the UI from becoming the source of task semantics. A list view may filter review-only tasks, a diff overlay may switch between attempts, and a modal may show apply conflicts. Those are presentation choices. The backend contract remains the architectural center for remote state, while the local patch path remains the only path that mutates the checkout.
The task data model is deliberately compact:
| Concept | Meaning |
|---|---|
| task id | stable handle for one cloud task |
| task summary | title, status, environment label, update time, diff summary |
| task text | creating prompt, messages, turn id, sibling attempt ids |
| turn attempt | one assistant attempt in a best-of-N task |
| apply outcome | local result: success, partial, or error with affected paths |
The status vocabulary is small for the same reason the graph store in Chapter 20 is small. Product surfaces need a predictable state machine; detailed backend bodies can still be parsed and mapped behind the client boundary.
Creating a Task Resolves Environment and Branch
A cloud task needs more than a prompt. It needs a target environment and a git reference. Codex resolves both before calling the backend.
Environment detection begins with local git origins. If an origin identifies a repository hosted by a supported provider, Codex asks the backend for repo-specific environments. If no single repo-specific choice is good enough, it falls back to the broader environment list. Selection prefers an explicit label match, then a single available environment, then a pinned environment, then a usage-count heuristic.
Branch detection follows a similar conservative path. An explicit branch wins. Otherwise Codex asks git for the current branch, then for the default branch, then falls back to a generic default only when local discovery fails. The important point is that cloud execution should be anchored to a branch the user can reason about, not an implicit local guess buried in a request body.
// Pseudocode - illustrative pattern.
procedure create_cloud_task(prompt, requested_environment, branch_override):
backend = initialize_authenticated_backend()
environment = resolve_environment(requested_environment)
git_ref = resolve_branch(branch_override)
attempts = validate_attempt_count()
task = backend.create_task(
environment_id = environment.id,
prompt = prompt,
git_ref = git_ref,
attempts = attempts
)
return task_url(task.id)
procedure resolve_branch(branch_override):
if branch_override is non_empty:
return branch_override
if current_git_branch exists:
return current_git_branch
if default_git_branch exists:
return default_git_branch
return generic_default_branchThe concrete cloud-task client named in the source map owns the backend request, but the contract is the same: resolve context locally, submit a bounded request remotely, and return a stable task handle.
Attempts Are First-Class
Cloud tasks support multiple assistant attempts for the same requested work. The UI therefore cannot treat “task detail” as a single diff and a single message stream. It needs a base task, optional sibling turns, attempt status, attempt placement, prompt text, messages, and an optional diff per attempt.
This is why apply and diff commands accept an attempt selector. Applying an attempt should use that attempt’s diff, not accidentally refetch the base diff and ignore the user’s selection. The task detail view keeps the currently selected attempt as state, then copies that attempt’s diff and text into the visible fields.
The broader architecture lesson is that remote work often has a result set, not a result. Once a backend can produce alternatives, every local operation that acts on “the answer” must name which answer it means.
Apply Is Local Patch Work
The most important boundary in cloud tasks is apply. A task may run in the cloud, but applying its diff is a local filesystem operation. Codex fetches or selects a unified diff, validates that it is actually a compatible diff format, and then runs local patch preflight or application. The backend does not get to declare that the user’s working tree changed.
Preflight matters because remote output can be stale relative to the local checkout. Even if the cloud task was correct when produced, the user may have changed files since then. A local preflight turns that uncertainty into a visible result before mutation.
The apply outcome reports three classes: success, partial, and error. Partial is not a cosmetic state. It tells the client that some paths were applied or conflicted while others were skipped, which changes how the user should inspect the working tree.
The Cloud TUI Is a Task Operator
The cloud TUI is not a thin table. It holds app state for the task list, environment modal, best-of attempt selector, diff overlay, prompt/messages view, background enrichment, preflight spinner, apply spinner, and result modal. That complexity is justified because remote work is asynchronous and multi-result.
However, the TUI still does not own backend semantics. It uses the backend contract to load tasks and attempts. It uses environment detection helpers to populate filters. It uses apply preflight before local mutation. It uses attempt state to render the right diff or prompt. The UI is an operator’s control surface over a task system, not the task system itself.
That distinction keeps remote work from leaking into the local turn loop. A local session may still use model streaming, tool execution, approvals, and rollout persistence. Cloud task browsing and application are separate flows that meet the local machine only at auth, git context, and patch application.
Agent Identity Binds Runtime to Task
Cloud work also needs identity. Codex uses agent runtime key material, signed task authorization, task registration, encrypted task ids, JWT claims, and an agent bill of materials to bind a running agent to a backend task.
The identity layer has a distinct job from ordinary user authentication:
- generate or load runtime key material;
- derive a public key that can be registered;
- sign task authorization payloads with the runtime key;
- register a task and accept either a plain or encrypted task id response;
- decode identity JWT claims, verifying them when trusted keys are available;
- attach bill-of-material metadata such as agent version, harness, and running location.
The design avoids conflating “the user is logged in” with “this runtime may act for this task.” User auth can establish account context; agent identity binds a particular runtime key to a particular task authorization. That distinction is what lets a backend reason about remote agents without trusting arbitrary local processes by name.
Local and Remote Execution Stay Separate
The easiest cloud-task mistake is to describe it as “Codex running somewhere else.” That is too vague. A cloud task has a backend lifecycle. A local turn has a runtime lifecycle. They may share concepts such as prompts, diffs, models, and agent identity, but their control planes differ.
| Local turn execution | Cloud task workflow |
|---|---|
| session and turn loop controls streaming | backend task status controls progress |
| local permissions gate tools | backend environment gates remote execution |
| rollout records local runtime events | task APIs return summaries, messages, diffs |
| approvals guard local side effects | local preflight guards applying remote diffs |
| client sees live event stream | client polls or fetches task detail |
This separation is why cloud tasks can be integrated without rewriting the core agent loop. The system adds a task operator surface and identity layer around remote work, then uses the existing local patch discipline when remote output comes back to the user’s checkout.
Failure Modes
Cloud task failures cluster around boundary errors. Authentication may be missing or may not use the backend mode required for cloud tasks. Environment detection may find no matching environment or multiple environments with the same label. Branch discovery may fall back because the current directory is not a git checkout. A backend detail response may lack a diff, produce an incompatible diff shape, or expose multiple attempts that the user must choose between. Local preflight may fail because the worktree moved.
Identity has its own failure modes. A runtime id can mismatch stored key material. A JWT can be decoded for inspection but only verified when trusted keys are present. A registration response can omit the direct task id and require decryption. These are not UI errors; they are proof boundaries.
The practical rule is simple: do not let a remote success imply a local success until the local boundary has checked it. A completed task means the backend has produced an outcome. It does not mean the user’s current checkout accepted that outcome.
Apply This
- Backend/local split. Solves cloud-task ambiguity -> keep backend task lifecycle separate from local turn lifecycle -> Pitfall: saying remote success means local mutation succeeded.
- Explicit environment resolution. Solves wrong remote target selection -> resolve repo, branch, and environment before creating work -> Pitfall: inferring target environment from UI labels alone.
- Attempt selection. Solves multi-attempt ambiguity -> require local actions to name the selected attempt -> Pitfall: applying the newest diff just because it is newest.
- Local preflight. Solves unsafe remote diffs -> apply remote output through local patch checks -> Pitfall: bypassing local workspace state because the backend reports completion.
- Task-scoped identity. Solves credential overreach -> separate user auth from signed task identity -> Pitfall: reusing broad user credentials for task-local authority.
Closing
Cloud tasks extend Codex beyond one local turn without blurring the runtime boundary. Remote work is created, listed, inspected, and authorized through backend contracts; local mutation still goes through local patch checks. Chapter 22 applies the same separation to long-term state: memories are useful because they are a controlled side channel, not because they secretly become another chat history.
Source Map
| Concept | Source anchor |
|---|---|
| Cloud task API | codex-rs/cloud-tasks-client/src/api.rs |
| HTTP backend client | codex-rs/cloud-tasks-client/src/http.rs |
| Mock backend | codex-rs/cloud-tasks-mock-client/src/mock.rs |
| Agent identity material | codex-rs/agent-identity/src/lib.rs |
| Local diff discipline | codex-rs/core/src/turn_diff_tracker.rs |