feat(v7.0.0): multi-tenant identity and governance profiles#342
Closed
saurabhjain1592 wants to merge 1 commit intomainfrom
Closed
feat(v7.0.0): multi-tenant identity and governance profiles#342saurabhjain1592 wants to merge 1 commit intomainfrom
saurabhjain1592 wants to merge 1 commit intomainfrom
Conversation
Commits: e2b3df97,20f53023,ab04cd8f,ac208c8c,d7277a41,14f567e6,d19239e7,c72c187b,0cdb9224,8cc0ea33,dd932652,816c81e2,a95b4384,5d4a5fbd,1977f4c9,48a0bb1f,556dd02b,29e790b6,11b1261d,c070a7e9,3bce0fb6,9d731a84,a27b7c4a,f68497e5,4339c362,142c935f,fdbd6327,c7e1046b,500cb409,2e41f287,ad567817,ca6c5406,5e10f5c0,83a30aff,ffdf908d,966fde23,80e79335,546cf4dd,b1ea2d7f,028eecc6 ### Security - Ed25519 enterprise license signing key rotated (was embedded in setup-e2e-testing.sh) - Rotation tool rewrites all active licenses across regions dynamically - Removed validateClient() mock auth fallback — enterprise MCP handlers now reject unauthenticated requests with 401 - Pre-commit gitleaks rule blocks Ed25519 seed commits - Resolved all high/critical Trivy and Dependabot vulnerabilities ### Added - Community SaaS evaluation server (try.getaxonflow.com): self-registration, rate limiting, Ollama-only, 30-day expiry - Migration 068: community_saas_registrations + daily usage tables - Governance profiles via AXONFLOW_PROFILE env var (dev/default/strict/compliance) - Per-category enforcement via AXONFLOW_ENFORCE env var (pii,sqli,dangerous_commands,all,none) - Profile banner at startup — logs active profile + resolved per-category actions - Telemetry endpoint_type field on all SDKs (localhost/private_network/remote/community-saas) - SoX-compliant telemetry governance: source classification, provenance chain, update workflow - Customer portal multi-tenant identity (migration 065: tenant_id on user_sessions) - Agent test coverage restored to 77% with DB-backed auth/MCP/handler tests - SDK version sweep for v6.1.0 across all examples ### Changed - Platform version bumped from 6.2.0 to 7.0.0 - Default PII_ACTION relaxed from redact to warn (set AXONFLOW_PROFILE=strict to restore) - SQLi and sensitive-data defaults also relaxed to warn - Migration 066: system-default policies rewritten to match new defaults - Canonical contact email standardized to hello@getaxonflow.com ### Fixed - Multi-tenant IDOR: X-Org-ID now derived from validated client license, not deployment env var - Nine workflow service methods now enforce tenant/org ownership (was classic IDOR on GetWorkflow) - Unified execution handler requires both X-Tenant-ID and X-Org-ID (previously optional) - MCP check-input/check-output audit log OrgID derived from authenticated client - deploy-client.sh JWT path no longer silently falls back to hardcoded SM path - Invalid env var values (PII_ACTION=typo) now preserve active profile instead of reverting to legacy defaults - AXONFLOW_ENFORCE=all/none now match documented profile aliases exactly - LoadEnforceFromEnv returns error instead of log.Fatalf (no longer crashes test binaries) - Portal shows real completed step count in executions list - Evaluation tier MaxPendingApprovals corrected from 100 to 25 - Community-saas post-deploy: Grafana DB auth, Ollama OLLAMA_HOST binding, config key naming, provision workflow - Excluded infrastructure/cloudformation/ from community sync (internal deployment templates) - Tidied go.mod after testcontainers v0.42.0 upgrade
Member
Author
|
Closing — found enterprise-only content leaking through sync: customer portal migration (065), community-saas compose, update-telemetry-records workflow, integration_activation.go. Need to add exclusions before re-syncing. |
github-merge-queue
bot
removed this pull request from the merge queue due to a manual request
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Sync from Enterprise Repository
This PR syncs changes from the enterprise repository to the Community repository.
Summary
Review Checklist
Auto-generated by sync-community-repo workflow (ADR-016)