feat(gateway): expose Mos coordination boundary #737

Merged
jason.woltje merged 1 commits from fix/tess-m4-reachability into main 2026-07-13 13:14:45 +00:00
Owner

Summary

  • add AuthGuard-protected handoff, observe, and result routes for the existing Mos coordination service
  • derive actor and tenant only from the authenticated session; require correlation header before service invocation
  • preserve the existing server-configured requester identity and all service authority checks

Verification

  • pnpm --filter @mosaicstack/gateway test -- mos-coordination.controller.test.ts
  • pnpm --filter @mosaicstack/gateway typecheck
  • pnpm --filter @mosaicstack/gateway lint

Part of TESS-M4-W / #710.

## Summary - add AuthGuard-protected handoff, observe, and result routes for the existing Mos coordination service - derive actor and tenant only from the authenticated session; require correlation header before service invocation - preserve the existing server-configured requester identity and all service authority checks ## Verification - `pnpm --filter @mosaicstack/gateway test -- mos-coordination.controller.test.ts` - `pnpm --filter @mosaicstack/gateway typecheck` - `pnpm --filter @mosaicstack/gateway lint` Part of TESS-M4-W / #710.
jason.woltje added 1 commit 2026-07-13 12:59:14 +00:00
feat(gateway): expose Mos coordination boundary
All checks were successful
ci/woodpecker/pr/ci Pipeline was successful
f7b95f6066
Author
Owner

VERIFIED APPROVE reviewer-of-record [W-jarvis:reviewer] head f7b95f6066

Findings: CI pipeline 1758 is green at the exact head. This partial slice is limited to the AuthGuard-protected Mos coordination consumer routes plus module registration; it exposes only handoff, observe, and result, with no runtime-provider registration or operator-memory consumer changes.
The controller derives actor/tenant scope via CurrentUser/scopeFromUser, requires X-Correlation-Id before service invocation, and leaves the previously reviewed MosCoordinationService authority boundary unchanged. apps/gateway/src/commands/command-authorization.service.ts is byte-identical to origin/main (hash a9f829e7ecec721c6c585fe0da56fb5d6a6441e9); no live creds or hardcoded Tess identity were introduced.

Marker: ROR-737-APPROVE-f7b95f60

VERIFIED APPROVE reviewer-of-record [W-jarvis:reviewer] head f7b95f60666a4abbbad9a08669637b19fa87c430 Findings: CI pipeline `1758` is green at the exact head. This partial slice is limited to the AuthGuard-protected Mos coordination consumer routes plus module registration; it exposes only `handoff`, `observe`, and `result`, with no runtime-provider registration or operator-memory consumer changes. The controller derives actor/tenant scope via `CurrentUser`/`scopeFromUser`, requires `X-Correlation-Id` before service invocation, and leaves the previously reviewed MosCoordinationService authority boundary unchanged. `apps/gateway/src/commands/command-authorization.service.ts` is byte-identical to `origin/main` (hash `a9f829e7ecec721c6c585fe0da56fb5d6a6441e9`); no live creds or hardcoded Tess identity were introduced. Marker: ROR-737-APPROVE-f7b95f60
jason.woltje merged commit e2376190e5 into main 2026-07-13 13:14:45 +00:00
jason.woltje deleted branch fix/tess-m4-reachability 2026-07-13 13:14:45 +00:00
Sign in to join this conversation.
No Reviewers
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: mosaicstack/stack#737