From 733f77b448f900046790397e1a0fb40c971d365d Mon Sep 17 00:00:00 2001
From: tegwick <bernd.worsch@gmail.com>
Date: Tue, 26 May 2026 07:12:09 +0200
Subject: [PATCH] Record State Hub IDs for onboarding readiness plan

---
 ...T-WP-0017-it-security-readiness-for-user-onboarding.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md b/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
index 1100944..8e330cc 100644
--- a/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
+++ b/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
@@ -13,6 +13,7 @@ depends_on:
   - NET-WP-0015
   - NET-WP-0016
   - RAIL-PL-WP-0002
+state_hub_workstream_id: "385de708-fd59-4bab-a4f4-28c1c476b3ea"
 ---
 
 # NET-WP-0017 - IT Security Readiness For User Onboarding
@@ -51,6 +52,7 @@ first non-root onboarding dry run must prove the lifecycle model.
 id: NET-WP-0017-T01
 status: in_progress
 priority: high
+state_hub_task_id: "9b087bbd-631b-4316-b94d-a8265a05b065"
 ```
 
 Run the fixed OpenBao OIDC helper, record the non-secret completion flag, then
@@ -70,6 +72,7 @@ minted temporary operator token.
 id: NET-WP-0017-T02
 status: todo
 priority: high
+state_hub_task_id: "909944bd-843a-4a63-8c87-536cea052a88"
 ```
 
 Resolve the remaining OpenBao production-trust gates:
@@ -88,6 +91,7 @@ Resolve the remaining OpenBao production-trust gates:
 id: NET-WP-0017-T03
 status: todo
 priority: high
+state_hub_task_id: "a6cd4325-8f3b-46bb-b810-ca816c35cb29"
 ```
 
 Review all access paths created during the trial exposure and record the
@@ -108,6 +112,7 @@ revoked, reset, or explicitly accepted residual risk for:
 id: NET-WP-0017-T04
 status: todo
 priority: high
+state_hub_task_id: "12c31f76-68f4-4d2b-853a-f3185cfc761c"
 ```
 
 Complete the minimum hardening before ordinary users are onboarded:
@@ -128,6 +133,7 @@ Complete the minimum hardening before ordinary users are onboarded:
 id: NET-WP-0017-T05
 status: todo
 priority: high
+state_hub_task_id: "aec3ac45-18be-4b04-a863-0c8c70693739"
 ```
 
 Turn the documented user lifecycle UX into the first practical operator flow
@@ -148,6 +154,7 @@ access before saving and must not expose secrets.
 id: NET-WP-0017-T06
 status: todo
 priority: high
+state_hub_task_id: "c149b2f0-c9ee-4c95-a1df-b25ed0d20579"
 ```
 
 Create a test or first real non-root user using the new lifecycle flow. Verify:
@@ -169,6 +176,7 @@ onboarding.
 id: NET-WP-0017-T07
 status: todo
 priority: medium
+state_hub_task_id: "e9ceafb2-14c0-4352-9ac7-e31628feb045"
 ```
 
 After T01-T06 complete, review `NET-WP-0015`, `NET-WP-0016`,