From 81fe5b7381346b45f3aa585464becb7df73361b7 Mon Sep 17 00:00:00 2001 From: tegwick Date: Sun, 17 May 2026 12:24:35 +0200 Subject: [PATCH] chore(consistency): sync task status from DB [auto] MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Updated by fix-consistency on 2026-05-17: - NK-WP-0006-T3: pending → todo --- ...sive-platform-identity-security-architecture.md | 14 +++++++++++--- 1 file changed, 11 insertions(+), 3 deletions(-) diff --git a/workplans/NK-WP-0006-recursive-platform-identity-security-architecture.md b/workplans/NK-WP-0006-recursive-platform-identity-security-architecture.md index 2b05ced..9c50ef6 100644 --- a/workplans/NK-WP-0006-recursive-platform-identity-security-architecture.md +++ b/workplans/NK-WP-0006-recursive-platform-identity-security-architecture.md @@ -2,17 +2,18 @@ id: NK-WP-0006 type: workplan title: Recursive platform identity and security architecture -domain: identity-security +domain: netkingdom repo: net-kingdom status: proposed owner: Bernd Worsch -topic_slug: recursive-platform-identity-security +topic_slug: netkingdom created: 2026-05-17 updated: 2026-05-17 depends_on: - NK-WP-0001 - NK-WP-0004 - NK-WP-0005 +state_hub_workstream_id: "2eb8a5e0-4e33-4ed3-8996-a2eec3aad862" --- # NK-WP-0006 - Recursive Platform Identity and Security Architecture @@ -67,6 +68,7 @@ Out of scope: id: NK-WP-0006-T1 status: done priority: high +state_hub_task_id: "3e1c432a-f1ef-4c96-bb7a-79d1b955cd82" ``` Document the recursive multi-tenant identity/security architecture in `docs/platform-identity-security-architecture.md`. @@ -75,14 +77,16 @@ Document the recursive multi-tenant identity/security architecture in id: NK-WP-0006-T2 status: done priority: high +state_hub_task_id: "194fe3d5-d47c-449e-a32d-50996fd39e66" ``` Record the architecture decision in an ADR so later repo work can point to a stable decision. ```task id: NK-WP-0006-T3 -status: pending +status: todo priority: high +state_hub_task_id: "842ba5a7-5199-490a-8af5-3150388e0d42" ``` Review flex-auth workplans and add tenant/control-plane implications: CARING descriptors, policy packages, decision envelopes, Topaz adapter @@ -92,6 +96,7 @@ scope, audit/explain records, and platform-root guardrails. id: NK-WP-0006-T4 status: pending priority: high +state_hub_task_id: "ce153339-f493-44ed-a2c5-befb578334fe" ``` Review NetKingdom credential/bootstrap workplans and add explicit trust state transitions: bare host, cluster, secrets, bootstrap identity, @@ -101,6 +106,7 @@ runtime identity, runtime authorization, tenant onboarding. id: NK-WP-0006-T5 status: pending priority: medium +state_hub_task_id: "6c9a3561-4e63-4acd-87a7-bf0f374fa6b2" ``` Map the first Coulomb tenant onboarding path: identity claims, tenant id, resource registration, policy package import, Topaz initialization, and @@ -110,6 +116,7 @@ audit readiness. id: NK-WP-0006-T6 status: pending priority: medium +state_hub_task_id: "27760e30-f773-4552-97f4-7fbe56507f9e" ``` Decide whether orchestration should stay as Railiance playbooks or become a dedicated repo. Capture the decision as an ADR before implementation. @@ -118,6 +125,7 @@ a dedicated repo. Capture the decision as an ADR before implementation. id: NK-WP-0006-T7 status: pending priority: medium +state_hub_task_id: "f09519ac-cf97-4f8b-8a7b-6ff828bbd8d9" ``` Define production readiness checks for the security platform: MFA state, secret rotation state, flex-auth policy state, Topaz health, audit sink,