FED-M7: multi-user RBAC hardening + acceptance suite #466
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Epic: Federation v1 — see
docs/federation/PRD.mdanddocs/federation/MILESTONES.md.Goal
Full multi-tenant scenario from PRD §4 works end-to-end with no cross-user leakage under any circumstance.
Scope
Deliverables
tools/federation-harness/acceptance/apps/websurfaces for peer/grant/audit managementdocs/federation/RUNBOOK.md,ONBOARDING.md,TROUBLESHOOTING.mdAcceptance Tests
All PRD §15 criteria automated and green. Plus:
Dependencies
Blocked by FED-M4, FED-M5, FED-M6.
Estimated budget
~25K tokens
Risk notes
Security-critical milestone. Budget review time is non-negotiable — plan for two independent code reviews (internal + security-focused) before merge.