Federation credential isolation #360

New Issue

Closed

opened 2026-02-07 17:12:42 +00:00 by jason.woltje · 0 comments

jason.woltje commented 2026-02-07 17:12:42 +00:00

Owner

Copy Link

Phase 5b - Federation Credential Isolation

Problem

User credentials must never leak across federation boundaries. The federation module allows querying and commanding across instances, and we need to ensure credential data is explicitly excluded from all federation pathways.

Requirements

1. Add explicit deny-list in federation QueryService to prevent UserCredential entities from appearing in federated query results
2. Verify existing federation message payloads never include credential data
3. Ensure federation CommandService cannot create/modify/delete credentials on remote instances
4. Document federation credential isolation guarantees

Implementation Notes

• QueryService at apps/api/src/federation/query.service.ts handles incoming federated queries
• CommandService at apps/api/src/federation/command.service.ts handles incoming federated commands
• FederationMessage.payload must never contain credential values
• Transit key isolation: mosaic-credentials key is separate from mosaic-federation key
• Each federated instance runs its own OpenBao (or falls back to its own ENCRYPTION_KEY)
• Even if a Transit key were compromised on one instance, it cannot decrypt credentials from another

Files

• apps/api/src/federation/query.service.ts (modify - deny-list UserCredential entity type)
• apps/api/src/federation/command.service.ts (modify - deny-list credential operations)
• apps/api/src/federation/federation.service.ts (verify - no credential data in federation messages)

Acceptance Criteria

• Federated queries cannot return UserCredential data
• Federated commands cannot create/modify/delete credentials
• No credential plaintext in federation message payloads
• Integration test: federated query for credentials returns empty/denied
• Documentation of isolation guarantees

Dependencies

• Depends on: UserCredential model (Phase 3a)
• Depends on: Credential CRUD API (Phase 3b)

Refs #346

## Phase 5b - Federation Credential Isolation ### Problem User credentials must never leak across federation boundaries. The federation module allows querying and commanding across instances, and we need to ensure credential data is explicitly excluded from all federation pathways. ### Requirements 1. Add explicit deny-list in federation QueryService to prevent UserCredential entities from appearing in federated query results 2. Verify existing federation message payloads never include credential data 3. Ensure federation CommandService cannot create/modify/delete credentials on remote instances 4. Document federation credential isolation guarantees ### Implementation Notes - QueryService at apps/api/src/federation/query.service.ts handles incoming federated queries - CommandService at apps/api/src/federation/command.service.ts handles incoming federated commands - FederationMessage.payload must never contain credential values - Transit key isolation: mosaic-credentials key is separate from mosaic-federation key - Each federated instance runs its own OpenBao (or falls back to its own ENCRYPTION_KEY) - Even if a Transit key were compromised on one instance, it cannot decrypt credentials from another ### Files - apps/api/src/federation/query.service.ts (modify - deny-list UserCredential entity type) - apps/api/src/federation/command.service.ts (modify - deny-list credential operations) - apps/api/src/federation/federation.service.ts (verify - no credential data in federation messages) ### Acceptance Criteria - [ ] Federated queries cannot return UserCredential data - [ ] Federated commands cannot create/modify/delete credentials - [ ] No credential plaintext in federation message payloads - [ ] Integration test: federated query for credentials returns empty/denied - [ ] Documentation of isolation guarantees ### Dependencies - Depends on: UserCredential model (Phase 3a) - Depends on: Credential CRUD API (Phase 3b) Refs #346

jason.woltje added this to the M9-CredentialSecurity (0.0.9) milestone 2026-02-07 17:12:42 +00:00

jason.woltje added the securityapiapip1 labels 2026-02-07 17:12:43 +00:00

jason.woltje referenced this issue 2026-02-07 17:13:29 +00:00

Security: Vault-based credential storage for agents and CI #346

jason.woltje closed this issue 2026-02-07 23:01:15 +00:00

jason.woltje referenced this issue from a commit 2026-02-07 23:24:18 +00:00

feat(#360): Add federation credential isolation

jason.woltje referenced this issue from a commit 2026-02-12 18:47:51 +00:00

chore(orchestrator): Bootstrap M11-CIPipeline tasks from CI report #360

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

fix/ci-glibc-image

fix/dockerfile-npmrc

fix/matrix-native-binary

fix/kaniko-cache

fix/base-image-kaniko-v2

fix/base-image-kaniko

feat/custom-base-image

ci/pnpm-cache

fix/interceptor-tests

fix/kanban-tests

feat/wire-chat

feat/usage-widget

fix/security-hardening

fix/project-domain-v2

feat/kanban-add-task

fix/project-domain-attach

fix/logs-page-clean

fix/workspace-members

fix/ci-lint-632

fix/file-manager-tags

fix/csrf-debug-log

fix/controller-type-imports

fix/system-admin-env

fix/gateway-cors-trusted-origins

feat/project-detail-page

fix/fleet-provider-form-dto-v2

fix/ms22-audit

fix/orchestrator-widgets

fix/fleet-provider-form-dto

fix/csrf-bearer-bypass

fix/ms22-missing-authmodule-imports

fix/container-lifecycle-config-module

fix/swarm-compose-ms22-vars

chore/ms22-p1-complete

feat/ms22-p1h-settings-ui

feat/ms22-p1f-onboarding-ui

feat/ms22-p1i-chat-proxy

feat/ms22-p1k-idle-reaper

feat/ms22-p1j-docker

feat/ms22-p1e-onboarding-api

feat/ms22-p1g-settings-api

feat/ms22-p1d-container-mgr

feat/ms22-p1c-config-api

chore/ms22-prd-tracking

feat/ms22-p1a-schema

feat/ms22-p1b-crypto

chore/ms22-p1-tasks

docs/ms22-architecture

feat/ms22-openclaw-docker

feat/ms22-openclaw-gateway-module

chore/ms21-complete

chore/ms21-final-tasks-done

fix/ms21-ui-001-qa

test/ms21-ui-tests

chore/ms21-tasks-sync

chore/ms22-phase0-complete

feat/ms22-ingest-clean

feat/ms21-ui-users-members

feat/ms22-task-agent

chore/tasks-final

chore/tasks-update

feat/ms21-session-invalidation

feat/ms21-rbac-settings

feat/ms21-teams-page

feat/ms21-users-page

feat/ms19-terminal-persistence

v0.0.21

v0.20.0

v0.0.15

v0.0.2

Labels

Clear labels

ai

AI/LLM integration

api

Backend/API work

api

auth

Authentication

database

database

Database/schema work

devops

Docker/deployment

docs

Documentation

frontend

graph

knowledge-module

migration

Data migration

orchestrator

Orchestrator service (apps/orchestrator/)

p0

Critical priority

p1

High priority

p2

Medium priority

p3

Low priority

performance

Performance work

phase-1

phase-2

phase-3

phase-4

phase-5

plugin

MoltBot plugin work

search

security

Security-related

setup

Initial setup

testing

Testing/QA

web

Frontend work

No Label api api p1 security

Milestone

No items

No Milestone M9-CredentialSecurity (0.0.9)

Projects

Clear projects

No project

Assignees

Clear assignees

jason.woltje

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: mosaic/stack#360