26 lines
1.4 KiB
Markdown
26 lines
1.4 KiB
Markdown
# Concelier Tenant Scoping
|
|
|
|
## Module
|
|
Concelier
|
|
|
|
## Status
|
|
IMPLEMENTED
|
|
|
|
## Description
|
|
Tenant-scoped advisory data isolation with scope normalization and capabilities endpoint for multi-tenant Concelier deployments. Not in the known list as a Concelier-specific feature.
|
|
|
|
## Implementation Details
|
|
- **Modules**: `src/Concelier/__Libraries/StellaOps.Concelier.Core/Tenancy/`
|
|
- **Key Classes**:
|
|
- `TenantScopeNormalizer` (`src/Concelier/__Libraries/StellaOps.Concelier.Core/Tenancy/TenantScopeNormalizer.cs`) - normalizes tenant scope identifiers for consistent isolation
|
|
- `LinkNotMergeTenantCapabilitiesProvider` (`src/Concelier/__Libraries/StellaOps.Concelier.Core/Tenancy/TenantCapabilitiesEndpoint.cs`) - exposes tenant capabilities including LNM support
|
|
- `TenantScopeException` (`src/Concelier/__Libraries/StellaOps.Concelier.Core/Tenancy/TenantScope.cs`) - exception for tenant scope violations
|
|
- **Interfaces**: `ITenantCapabilitiesProvider`
|
|
- **Source**: Sprint 0115 (batch_14/file_16.md)
|
|
|
|
## E2E Test Plan
|
|
- [ ] Create advisories under tenant A and verify they are not visible to tenant B
|
|
- [ ] Verify `TenantScopeNormalizer` normalizes different scope formats to a canonical form
|
|
- [ ] Verify capabilities endpoint: query tenant capabilities and confirm LNM feature availability is reported
|
|
- [ ] Verify scope violation: attempt cross-tenant access and confirm `TenantScopeException` is thrown
|