#!/usr/bin/env bash
# First boot on rented Forge pod (Vast/RunPod 24GB) · your disk · no GitHub vault
set -euo pipefail
export DEBIAN_FRONTEND=noninteractive

echo "=== FORGE FIRST BOOT ==="
nvidia-smi || { echo "FAIL no GPU"; exit 1; }

mkdir -p ~/.stan ~/jane /opt/forge
chmod 700 ~/.stan

# Keys live HERE on your pod — plain files you control · not GitHub · not cloud vault
touch ~/.stan/forge.env
chmod 600 ~/.stan/forge.env
grep -q '^FORGE_BOX=1' ~/.stan/forge.env 2>/dev/null || echo 'FORGE_BOX=1' >> ~/.stan/forge.env

if ! command -v ollama >/dev/null 2>&1; then
  curl -fsSL https://ollama.com/install.sh | sh
fi
systemctl enable ollama 2>/dev/null || true
systemctl start ollama 2>/dev/null || true
sleep 2
ollama pull qwen2.5:7b-instruct-q4_K_M || ollama pull mistral:7b-instruct-q4_K_M || true

echo "FORGE OK — ollama on $(hostname)"
echo "NEXT: private setup (keys · daddy · puppy)"
if curl -fsSL https://forge.hitme.dev/bootstrap/forge_private_setup.sh -o /tmp/forge_private_setup.sh 2>/dev/null; then
  bash /tmp/forge_private_setup.sh
else
  echo "WARN: fetch forge_private_setup.sh failed · run manually after jane/ copied"
fi
nvidia-smi --query-gpu=name,memory.total --format=csv,noheader
