coulomb/net-kingdom
2
0
Fork 0
generated from coulomb/repo-seed
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Record State Hub IDs for onboarding readiness plan

Browse Source
This commit is contained in:
Bernd Worsch
2026-05-26 07:12:09 +02:00
parent c3cc548060
commit 733f77b448
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
View File

@@ -13,6 +13,7 @@ depends_on:
- NET-WP-0015
- NET-WP-0016
- RAIL-PL-WP-0002
state_hub_workstream_id: "385de708-fd59-4bab-a4f4-28c1c476b3ea"
---
# NET-WP-0017 - IT Security Readiness For User Onboarding
@@ -51,6 +52,7 @@ first non-root onboarding dry run must prove the lifecycle model.
id: NET-WP-0017-T01
status: in_progress
priority: high
state_hub_task_id: "9b087bbd-631b-4316-b94d-a8265a05b065"
```
Run the fixed OpenBao OIDC helper, record the non-secret completion flag, then
@@ -70,6 +72,7 @@ minted temporary operator token.
id: NET-WP-0017-T02
status: todo
priority: high
state_hub_task_id: "909944bd-843a-4a63-8c87-536cea052a88"
```
Resolve the remaining OpenBao production-trust gates:
@@ -88,6 +91,7 @@ Resolve the remaining OpenBao production-trust gates:
id: NET-WP-0017-T03
status: todo
priority: high
state_hub_task_id: "a6cd4325-8f3b-46bb-b810-ca816c35cb29"
```
Review all access paths created during the trial exposure and record the
@@ -108,6 +112,7 @@ revoked, reset, or explicitly accepted residual risk for:
id: NET-WP-0017-T04
status: todo
priority: high
state_hub_task_id: "12c31f76-68f4-4d2b-853a-f3185cfc761c"
```
Complete the minimum hardening before ordinary users are onboarded:
@@ -128,6 +133,7 @@ Complete the minimum hardening before ordinary users are onboarded:
id: NET-WP-0017-T05
status: todo
priority: high
state_hub_task_id: "aec3ac45-18be-4b04-a863-0c8c70693739"
```
Turn the documented user lifecycle UX into the first practical operator flow
@@ -148,6 +154,7 @@ access before saving and must not expose secrets.
id: NET-WP-0017-T06
status: todo
priority: high
state_hub_task_id: "c149b2f0-c9ee-4c95-a1df-b25ed0d20579"
```
Create a test or first real non-root user using the new lifecycle flow. Verify:
@@ -169,6 +176,7 @@ onboarding.
id: NET-WP-0017-T07
status: todo
priority: medium
state_hub_task_id: "e9ceafb2-14c0-4352-9ac7-e31628feb045"
```
After T01-T06 complete, review `NET-WP-0015`, `NET-WP-0016`,